149.102.159.18

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United Kingdom of Great Britain and Northern Ireland (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.102.159.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17825
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.102.159.18.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025013101 1800 900 604800 86400

;; Query time: 85 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 01 03:35:33 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

18.159.102.149.in-addr.arpa domain name pointer vmi955999.contaboserver.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
18.159.102.149.in-addr.arpa	name = vmi955999.contaboserver.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
51.38.57.78	attackspambots	2019-08-06T05:12:43.521339lon01.zurich-datacenter.net sshd\[14902\]: Invalid user rcesd from 51.38.57.78 port 47340 2019-08-06T05:12:43.527859lon01.zurich-datacenter.net sshd\[14902\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3118043.ip-51-38-57.eu 2019-08-06T05:12:45.391098lon01.zurich-datacenter.net sshd\[14902\]: Failed password for invalid user rcesd from 51.38.57.78 port 47340 ssh2 2019-08-06T05:14:36.785111lon01.zurich-datacenter.net sshd\[14965\]: Invalid user qomo from 51.38.57.78 port 38470 2019-08-06T05:14:36.791712lon01.zurich-datacenter.net sshd\[14965\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3118043.ip-51-38-57.eu ...	2019-08-06 14:27:10
218.166.29.88	attack	Automatic report - Port Scan Attack	2019-08-06 14:37:57
180.168.70.190	attackspam	frenzy	2019-08-06 14:40:06
185.220.101.46	attack	Fail2Ban Ban Triggered	2019-08-06 14:10:17
181.60.252.163	attackspam	[Tue Aug 06 08:29:38.542376 2019] [:error] [pid 21842:tid 140058203973376] [client 181.60.252.163:51232] [client 181.60.252.163] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.1.1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "792"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197:80"] [severity "WARNING"] [ver "OWASP_CRS/3.1.1"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XUjYApLPHFqrRiwFel97igAAAFI"] ...	2019-08-06 15:04:11
85.209.0.11	attack	Port scan on 30 port(s): 18237 18879 19083 19974 20376 21365 21535 22138 22331 23084 23491 24439 25149 27667 30757 31666 33256 34283 37398 38771 46280 50269 52370 53712 53755 55915 56889 56965 57293 57332	2019-08-06 14:08:47
162.158.92.52	attack	Scan for word-press application/login	2019-08-06 14:51:11
180.167.54.190	attackspam	Aug 6 02:29:34 localhost sshd\[22330\]: Invalid user oracle from 180.167.54.190 port 45518 Aug 6 02:29:34 localhost sshd\[22330\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.167.54.190 ...	2019-08-06 15:05:21
61.144.244.211	attack	Aug 6 03:31:31 tuxlinux sshd[9680]: Invalid user hzh from 61.144.244.211 port 44078 Aug 6 03:31:31 tuxlinux sshd[9680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.144.244.211 Aug 6 03:31:31 tuxlinux sshd[9680]: Invalid user hzh from 61.144.244.211 port 44078 Aug 6 03:31:31 tuxlinux sshd[9680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.144.244.211 Aug 6 03:31:31 tuxlinux sshd[9680]: Invalid user hzh from 61.144.244.211 port 44078 Aug 6 03:31:31 tuxlinux sshd[9680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.144.244.211 Aug 6 03:31:33 tuxlinux sshd[9680]: Failed password for invalid user hzh from 61.144.244.211 port 44078 ssh2 ...	2019-08-06 14:43:35
80.211.69.250	attackspam	Automatic report - Banned IP Access	2019-08-06 14:17:52
106.52.95.68	attack	2019-08-06T06:29:16.354406abusebot-7.cloudsearch.cf sshd\[31052\]: Invalid user sue from 106.52.95.68 port 44336	2019-08-06 14:54:33
105.247.157.59	attack	Aug 6 08:15:53 ArkNodeAT sshd\[31836\]: Invalid user mysql from 105.247.157.59 Aug 6 08:15:53 ArkNodeAT sshd\[31836\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=105.247.157.59 Aug 6 08:15:54 ArkNodeAT sshd\[31836\]: Failed password for invalid user mysql from 105.247.157.59 port 57756 ssh2	2019-08-06 14:22:57
221.228.111.131	attack	Aug 5 23:19:48 dallas01 sshd[859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.228.111.131 Aug 5 23:19:50 dallas01 sshd[859]: Failed password for invalid user alimov from 221.228.111.131 port 48074 ssh2 Aug 5 23:28:14 dallas01 sshd[2225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.228.111.131	2019-08-06 14:37:31
175.118.165.63	attack	WordPress wp-login brute force :: 175.118.165.63 0.296 BYPASS [06/Aug/2019:11:30:13 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-08-06 14:50:28
71.6.158.166	attackbots	Port scan: Attacks repeated for a week	2019-08-06 14:56:36

最近上报的IP列表

86.160.59.103	197.124.53.185	242.160.236.2	29.88.14.205
254.197.119.147	98.41.76.208	218.121.54.31	30.174.149.75
50.192.72.218	70.202.83.169	202.142.155.46	144.9.238.132
163.11.56.197	220.250.62.210	173.140.202.145	50.164.79.72
167.64.254.102	27.241.225.232	73.1.176.208	255.204.236.35