105.144.118.150

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.144.118.150
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29164
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;105.144.118.150.		IN	A

;; AUTHORITY SECTION:
.			408	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023112203 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 23 10:25:07 CST 2023
;; MSG SIZE  rcvd: 108

HOST信息:

Host 150.118.144.105.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 150.118.144.105.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
119.251.90.45	attack	Telnet Server BruteForce Attack	2019-10-19 05:14:50
150.95.52.111	attack	www.fahrschule-mihm.de 150.95.52.111 \[18/Oct/2019:22:23:17 +0200\] "POST /wp-login.php HTTP/1.1" 200 5756 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" www.fahrschule-mihm.de 150.95.52.111 \[18/Oct/2019:22:23:18 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4105 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-10-19 05:24:10
46.38.144.57	attack	Brute Force attack - banned by Fail2Ban	2019-10-19 05:10:47
221.229.219.188	attackspam	Oct 18 22:55:02 * sshd[32760]: Failed password for root from 221.229.219.188 port 60255 ssh2	2019-10-19 05:04:34
5.135.138.188	attackbots	Automatic report - Banned IP Access	2019-10-19 05:12:28
177.11.42.72	attackspam	$f2bV_matches	2019-10-19 05:06:12
213.32.24.225	attack	Lines containing failures of 213.32.24.225 Oct 18 20:10:46 ariston sshd[8680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.24.225 user=r.r Oct 18 20:10:48 ariston sshd[8680]: Failed password for r.r from 213.32.24.225 port 36532 ssh2 Oct 18 20:10:48 ariston sshd[8680]: Received disconnect from 213.32.24.225 port 36532:11: Bye Bye [preauth] Oct 18 20:10:48 ariston sshd[8680]: Disconnected from authenticating user r.r 213.32.24.225 port 36532 [preauth] Oct 18 20:15:53 ariston sshd[10914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.24.225 user=r.r Oct 18 20:15:56 ariston sshd[10914]: Failed password for r.r from 213.32.24.225 port 52862 ssh2 Oct 18 20:15:58 ariston sshd[10914]: Received disconnect from 213.32.24.225 port 52862:11: Bye Bye [preauth] Oct 18 20:15:58 ariston sshd[10914]: Disconnected from authenticating user r.r 213.32.24.225 port 52862 [preauth] Oct 18 20:........ ------------------------------	2019-10-19 05:15:21
49.232.60.2	attackspambots	$f2bV_matches	2019-10-19 05:00:53
182.177.202.31	attackbotsspam	Oct 18 21:32:51 mxgate1 postfix/postscreen[19432]: CONNECT from [182.177.202.31]:63001 to [176.31.12.44]:25 Oct 18 21:32:51 mxgate1 postfix/dnsblog[19433]: addr 182.177.202.31 listed by domain zen.spamhaus.org as 127.0.0.11 Oct 18 21:32:51 mxgate1 postfix/dnsblog[19433]: addr 182.177.202.31 listed by domain zen.spamhaus.org as 127.0.0.4 Oct 18 21:32:51 mxgate1 postfix/dnsblog[19482]: addr 182.177.202.31 listed by domain cbl.abuseat.org as 127.0.0.2 Oct 18 21:32:51 mxgate1 postfix/dnsblog[19437]: addr 182.177.202.31 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Oct 18 21:32:51 mxgate1 postfix/dnsblog[19436]: addr 182.177.202.31 listed by domain b.barracudacentral.org as 127.0.0.2 Oct 18 21:32:51 mxgate1 postfix/postscreen[19432]: PREGREET 23 after 0.21 from [182.177.202.31]:63001: EHLO [182.177.197.22] Oct 18 21:32:51 mxgate1 postfix/postscreen[19432]: DNSBL rank 5 for [182.177.202.31]:63001 Oct x@x Oct 18 21:32:53 mxgate1 postfix/postscreen[19432]: HANGUP after 1.7........ -------------------------------	2019-10-19 05:21:08
5.55.10.26	attack	Telnet Server BruteForce Attack	2019-10-19 05:05:48
188.254.0.112	attackbotsspam	Oct 18 23:10:20 localhost sshd\[6897\]: Invalid user contasys from 188.254.0.112 port 45382 Oct 18 23:10:20 localhost sshd\[6897\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.112 Oct 18 23:10:22 localhost sshd\[6897\]: Failed password for invalid user contasys from 188.254.0.112 port 45382 ssh2	2019-10-19 05:30:26
185.42.170.203	attackspam	Oct 18 21:51:17 rotator sshd\[2154\]: Failed password for root from 185.42.170.203 port 1782 ssh2Oct 18 21:51:20 rotator sshd\[2154\]: Failed password for root from 185.42.170.203 port 1782 ssh2Oct 18 21:51:22 rotator sshd\[2154\]: Failed password for root from 185.42.170.203 port 1782 ssh2Oct 18 21:51:25 rotator sshd\[2154\]: Failed password for root from 185.42.170.203 port 1782 ssh2Oct 18 21:51:28 rotator sshd\[2154\]: Failed password for root from 185.42.170.203 port 1782 ssh2Oct 18 21:51:32 rotator sshd\[2154\]: Failed password for root from 185.42.170.203 port 1782 ssh2 ...	2019-10-19 05:31:52
193.32.160.154	attackspambots	Oct 17 12:59:47 rb06 postfix/smtpd[11790]: connect from unknown[193.32.160.154] Oct 17 12:59:47 rb06 postfix/smtpd[2672]: connect from unknown[193.32.160.154] Oct 17 12:59:48 rb06 postgrey[1052]: action=greylist, reason=new, client_name=unknown, client_address=193.32.160.154, sender=x@x recipient=x@x Oct 17 12:59:48 rb06 policyd-spf[11844]: None; identhostnamey=mailfrom; client-ip=193.32.160.154; helo=[193.32.160.146]; envelope-from=x@x Oct x@x Oct 17 12:59:48 rb06 postgrey[1052]: action=greylist, reason=new, client_name=unknown, client_address=193.32.160.154, sender=x@x recipient=x@x Oct 17 12:59:48 rb06 postgrey[1052]: action=greylist, reason=new, client_name=unknown, client_address=193.32.160.154, sender=x@x recipient=x@x Oct 17 12:59:48 rb06 postgrey[1052]: action=pass, reason=recipient whhostnameelist, client_name=unknown, client_address=193.32.160.154, sender=x@x recipient=x@x Oct x@x Oct 17 12:59:48 rb06 postgrey[1052]: 9BFD9C7C902BE: action=greylist, reason=new,........ -------------------------------	2019-10-19 05:33:05
121.157.186.96	attackspam	Unauthorised access (Oct 18) SRC=121.157.186.96 LEN=40 TTL=53 ID=1452 TCP DPT=23 WINDOW=58663 SYN Unauthorised access (Oct 18) SRC=121.157.186.96 LEN=40 TTL=53 ID=1452 TCP DPT=23 WINDOW=58663 SYN Unauthorised access (Oct 16) SRC=121.157.186.96 LEN=40 TTL=53 ID=1452 TCP DPT=23 WINDOW=58663 SYN Unauthorised access (Oct 15) SRC=121.157.186.96 LEN=40 TTL=53 ID=1452 TCP DPT=23 WINDOW=58663 SYN Unauthorised access (Oct 15) SRC=121.157.186.96 LEN=40 TTL=53 ID=1452 TCP DPT=23 WINDOW=58663 SYN Unauthorised access (Oct 14) SRC=121.157.186.96 LEN=40 TTL=53 ID=1452 TCP DPT=23 WINDOW=58663 SYN Unauthorised access (Oct 14) SRC=121.157.186.96 LEN=40 TTL=53 ID=1452 TCP DPT=23 WINDOW=58663 SYN Unauthorised access (Oct 14) SRC=121.157.186.96 LEN=40 TTL=53 ID=1452 TCP DPT=23 WINDOW=58663 SYN Unauthorised access (Oct 14) SRC=121.157.186.96 LEN=40 TTL=53 ID=1452 TCP DPT=23 WINDOW=58663 SYN	2019-10-19 05:13:09
120.132.29.158	attack	[FriOct1821:49:08.4570432019][:error][pid11873:tid46955520046848][client120.132.29.158:47512][client120.132.29.158]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"python-requests/"atREQUEST_HEADERS:User-Agent.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"211"][id"332039"][rev"4"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent$python-requests$.Disablethisruleifyouusepython-requests/."][severity"CRITICAL"][hostname"integratoriprovitaitalia.com"][uri"/"][unique_id"XaoXNNfLGR4GfdhemvYAiQAAAA8"][FriOct1821:51:22.0488222019][:error][pid11942:tid46955499034368][client120.132.29.158:60650][client120.132.29.158]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"python-requests/"atREQUEST_HEADERS:User-Agent.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"211"][id"332039"][rev"4"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent$python-requests$.Disablethisruleifyouusepython-requests/."][severity"CRITICAL"][hos	2019-10-19 05:41:28

最近上报的IP列表

105.144.81.114	105.144.150.105	105.144.132.28	105.144.210.111
105.144.109.17	105.144.223.57	105.144.131.60	105.144.151.18
105.144.165.138	105.144.182.199	105.143.86.189	105.143.70.202
105.144.172.71	105.144.14.232	105.144.110.24	105.143.7.100
105.144.0.58	105.143.45.211	105.143.81.127	105.143.97.105