149.154.154.153

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Austria

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.154.154.153
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42680
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.154.154.153.		IN	A

;; AUTHORITY SECTION:
.			377	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 21:29:28 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

153.154.154.149.in-addr.arpa domain name pointer server.romhacking.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
153.154.154.149.in-addr.arpa	name = server.romhacking.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
129.211.45.88	attackspambots	Apr 11 06:39:13 pkdns2 sshd\[6651\]: Invalid user lora from 129.211.45.88Apr 11 06:39:15 pkdns2 sshd\[6651\]: Failed password for invalid user lora from 129.211.45.88 port 39640 ssh2Apr 11 06:44:02 pkdns2 sshd\[6894\]: Invalid user nagios from 129.211.45.88Apr 11 06:44:04 pkdns2 sshd\[6894\]: Failed password for invalid user nagios from 129.211.45.88 port 35868 ssh2Apr 11 06:48:53 pkdns2 sshd\[7174\]: Invalid user akhan from 129.211.45.88Apr 11 06:48:55 pkdns2 sshd\[7174\]: Failed password for invalid user akhan from 129.211.45.88 port 60320 ssh2 ...	2020-04-11 17:40:04
159.89.115.126	attackspam	SSH invalid-user multiple login attempts	2020-04-11 17:09:04
222.186.42.7	attackspambots	04/11/2020-05:32:39.184420 222.186.42.7 Protocol: 6 ET SCAN Potential SSH Scan	2020-04-11 17:37:29
112.85.42.180	attackspambots	Apr 10 12:44:31 debian sshd[3230]: Unable to negotiate with 112.85.42.180 port 57099: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] Apr 11 04:58:05 debian sshd[15693]: Unable to negotiate with 112.85.42.180 port 46535: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ...	2020-04-11 17:01:58
111.229.75.27	attack	Apr 11 07:16:43 icinga sshd[51092]: Failed password for root from 111.229.75.27 port 46312 ssh2 Apr 11 07:25:27 icinga sshd[65210]: Failed password for root from 111.229.75.27 port 52384 ssh2 Apr 11 07:29:35 icinga sshd[6691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.75.27 ...	2020-04-11 17:18:57
222.249.235.237	attack	Apr 11 10:02:12 gw1 sshd[5776]: Failed password for root from 222.249.235.237 port 51790 ssh2 ...	2020-04-11 17:08:32
1.245.107.162	attack	SSH login attempts brute force.	2020-04-11 17:03:04
136.144.219.74	attackspambots	$f2bV_matches	2020-04-11 17:10:12
174.138.44.201	attack	174.138.44.201 - - [11/Apr/2020:11:27:57 +0200] "GET /wp-login.php HTTP/1.1" 200 5702 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 174.138.44.201 - - [11/Apr/2020:11:27:59 +0200] "POST /wp-login.php HTTP/1.1" 200 6601 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 174.138.44.201 - - [11/Apr/2020:11:28:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-11 17:32:46
202.168.64.24	attack	...	2020-04-11 17:05:38
62.33.8.211	attackspambots	SMTP brute force ...	2020-04-11 17:21:25
195.222.163.54	attackspambots	SSH invalid-user multiple login attempts	2020-04-11 17:04:01
119.96.189.97	attack	$f2bV_matches	2020-04-11 17:20:49
173.252.95.21	attackspambots	[Sat Apr 11 10:49:00.890668 2020] [:error] [pid 12080:tid 140248694216448] [client 173.252.95.21:43262] [client 173.252.95.21] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/prakiraan-dasarian/prakiraan-dasarian-daerah-potensi-banjir/555557973-prakiraan-dasarian-daerah-potensi-banjir-di-provinsi-jawa-timur-untuk-bulan-april-dasarian-iii-tanggal-21-30-tahun-2020-update-10-april-2020"] [unique_id "XpE@LFq0t-K8B9hNskSEpAAAAAE"] ...	2020-04-11 17:35:31
106.54.145.68	attack	Invalid user info from 106.54.145.68 port 56662	2020-04-11 17:28:12

最近上报的IP列表

189.6.236.172	114.30.186.177	221.14.173.247	120.84.9.198
64.90.40.26	37.8.6.153	27.45.36.15	220.97.203.174
197.37.158.64	202.44.196.104	190.108.200.176	113.160.184.32
106.75.152.15	113.99.79.60	112.94.96.242	95.125.229.23
103.217.73.125	177.81.59.54	103.68.43.186	189.212.4.146