102.81.149.198

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Uganda

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.81.149.198
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7440
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;102.81.149.198.			IN	A

;; AUTHORITY SECTION:
.			135	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011000 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 10 19:20:28 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

198.149.81.102.in-addr.arpa domain name pointer 198-149-81-102.r.airtel.ug.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
198.149.81.102.in-addr.arpa	name = 198-149-81-102.r.airtel.ug.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
77.40.40.180	attackspambots	$f2bV_matches	2019-07-09 15:43:39
113.178.46.51	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-08 12:41:30,686 INFO [shellcode_manager] (113.178.46.51) no match, writing hexdump (d76e6d1c770f52d0826f4349174c7655 :2084854) - MS17010 (EternalBlue)	2019-07-09 16:36:28
188.131.170.119	attackbotsspam	Jul 9 05:23:47 mail sshd\[24894\]: Invalid user tmp from 188.131.170.119 port 48518 Jul 9 05:23:47 mail sshd\[24894\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.170.119 Jul 9 05:23:49 mail sshd\[24894\]: Failed password for invalid user tmp from 188.131.170.119 port 48518 ssh2 Jul 9 05:25:41 mail sshd\[25172\]: Invalid user admin from 188.131.170.119 port 37398 Jul 9 05:25:41 mail sshd\[25172\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.170.119	2019-07-09 15:53:40
196.41.122.250	attackbotsspam	Jul 8 09:30:37 josie sshd[32551]: Invalid user upload from 196.41.122.250 Jul 8 09:30:37 josie sshd[32551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.41.122.250 Jul 8 09:30:40 josie sshd[32551]: Failed password for invalid user upload from 196.41.122.250 port 60458 ssh2 Jul 8 09:30:40 josie sshd[32556]: Received disconnect from 196.41.122.250: 11: Bye Bye Jul 8 09:32:55 josie sshd[1596]: Invalid user test from 196.41.122.250 Jul 8 09:32:55 josie sshd[1596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.41.122.250 Jul 8 09:32:57 josie sshd[1596]: Failed password for invalid user test from 196.41.122.250 port 52174 ssh2 Jul 8 09:32:57 josie sshd[1597]: Received disconnect from 196.41.122.250: 11: Bye Bye Jul 8 09:34:48 josie sshd[3163]: Invalid user reg from 196.41.122.250 Jul 8 09:34:48 josie sshd[3163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 e........ -------------------------------	2019-07-09 16:00:57
104.153.251.139	attackbotsspam	php WP PHPmyadamin ABUSE blocked for 12h	2019-07-09 16:09:02
123.182.231.248	attack	Port Scan detected from 123.182.231.248 (CN/China/-). 4 hits in the last 135 seconds	2019-07-09 16:32:30
134.209.83.125	attackbots	Jul 8 08:07:43 GIZ-Server-02 sshd[12090]: User r.r from 134.209.83.125 not allowed because not listed in AllowUsers Jul 8 08:07:43 GIZ-Server-02 sshd[12090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.83.125 user=r.r Jul 8 08:07:45 GIZ-Server-02 sshd[12090]: Failed password for invalid user r.r from 134.209.83.125 port 55052 ssh2 Jul 8 08:07:45 GIZ-Server-02 sshd[12090]: Received disconnect from 134.209.83.125: 11: Bye Bye [preauth] Jul 8 08:07:45 GIZ-Server-02 sshd[12109]: Invalid user admin from 134.209.83.125 Jul 8 08:07:45 GIZ-Server-02 sshd[12109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.83.125 Jul 8 08:07:47 GIZ-Server-02 sshd[12109]: Failed password for invalid user admin from 134.209.83.125 port 57154 ssh2 Jul 8 08:07:47 GIZ-Server-02 sshd[12109]: Received disconnect from 134.209.83.125: 11: Bye Bye [preauth] Jul 8 08:07:48 GIZ-Server-02 sshd[1........ -------------------------------	2019-07-09 16:08:09
106.38.91.120	attack	Jul 8 01:20:07 kmh-wsh-001-nbg03 sshd[3825]: Invalid user fhem from 106.38.91.120 port 40316 Jul 8 01:20:07 kmh-wsh-001-nbg03 sshd[3825]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.38.91.120 Jul 8 01:20:09 kmh-wsh-001-nbg03 sshd[3825]: Failed password for invalid user fhem from 106.38.91.120 port 40316 ssh2 Jul 8 01:20:09 kmh-wsh-001-nbg03 sshd[3825]: Received disconnect from 106.38.91.120 port 40316:11: Bye Bye [preauth] Jul 8 01:20:09 kmh-wsh-001-nbg03 sshd[3825]: Disconnected from 106.38.91.120 port 40316 [preauth] Jul 8 01:22:16 kmh-wsh-001-nbg03 sshd[3865]: Invalid user adminixxxr from 106.38.91.120 port 59750 Jul 8 01:22:16 kmh-wsh-001-nbg03 sshd[3865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.38.91.120 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.38.91.120	2019-07-09 15:43:04
35.247.214.122	attack	Multiple failed RDP login attempts	2019-07-09 16:08:32
94.191.68.224	attack	Jul 9 11:25:38 localhost sshd[6143]: Invalid user uranus from 94.191.68.224 port 33368 Jul 9 11:25:38 localhost sshd[6143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.68.224 Jul 9 11:25:38 localhost sshd[6143]: Invalid user uranus from 94.191.68.224 port 33368 Jul 9 11:25:40 localhost sshd[6143]: Failed password for invalid user uranus from 94.191.68.224 port 33368 ssh2 ...	2019-07-09 16:14:01
188.165.29.110	attack	WordPress login Brute force / Web App Attack on client site.	2019-07-09 16:06:45
198.46.84.182	attackspambots	xmlrpc attack	2019-07-09 16:21:15
121.126.79.157	attack	SSH Bruteforce	2019-07-09 16:05:35
186.232.141.147	attack	Brute force attempt	2019-07-09 15:46:29
123.25.108.139	attack	TCP port 445 (SMB) attempt blocked by firewall. [2019-07-09 05:25:18]	2019-07-09 15:54:41

最近上报的IP列表

7.241.143.235	130.36.118.14	107.185.155.163	148.161.159.87
14.228.126.150	223.10.62.108	209.206.124.51	134.112.104.112
114.178.173.106	95.79.162.198	160.148.101.173	189.76.108.91
16.243.149.239	100.31.94.199	156.8.176.97	210.115.232.157
234.29.90.181	206.186.202.88	14.81.44.118	144.181.221.97