149.198.18.105

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.198.18.105
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37906
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.198.18.105.			IN	A

;; AUTHORITY SECTION:
.			267	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011000 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 10 21:53:21 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 105.18.198.149.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 105.18.198.149.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
46.219.3.139	attackspam	Feb 21 10:05:58 ift sshd\[9452\]: Failed password for news from 46.219.3.139 port 58160 ssh2Feb 21 10:09:00 ift sshd\[9936\]: Failed password for lp from 46.219.3.139 port 58276 ssh2Feb 21 10:11:55 ift sshd\[10550\]: Invalid user couchdb from 46.219.3.139Feb 21 10:11:58 ift sshd\[10550\]: Failed password for invalid user couchdb from 46.219.3.139 port 58390 ssh2Feb 21 10:14:55 ift sshd\[10863\]: Invalid user gitlab-psql from 46.219.3.139 ...	2020-02-21 20:09:56
104.236.52.94	attackbotsspam	21 attempts against mh-ssh on cloud	2020-02-21 20:09:32
129.211.83.206	attack	Invalid user michael from 129.211.83.206 port 45424	2020-02-21 19:50:56
94.15.12.211	attackspambots	Feb 21 11:28:37 server sshd\[1392\]: Invalid user www from 94.15.12.211 Feb 21 11:28:37 server sshd\[1392\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.15.12.211 Feb 21 11:28:39 server sshd\[1392\]: Failed password for invalid user www from 94.15.12.211 port 33736 ssh2 Feb 21 11:31:56 server sshd\[2095\]: Invalid user administrator from 94.15.12.211 Feb 21 11:31:56 server sshd\[2095\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.15.12.211 ...	2020-02-21 20:27:20
167.99.81.101	attackspam	Invalid user mia from 167.99.81.101 port 37598	2020-02-21 20:01:34
218.64.73.149	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-21 20:12:09
186.67.248.5	attackbotsspam	Feb 21 10:28:41 sshd\[25151\]: Invalid user user from 186.67.248.5Feb 21 10:28:43 sshd\[25151\]: Failed password for invalid user user from 186.67.248.5 port 33165 ssh2 ...	2020-02-21 20:26:36
92.63.194.107	attackbots	SSH Brute Force	2020-02-21 19:49:32
112.85.42.87	attackbotsspam	2020-02-20 UTC: 3x - root(3x)	2020-02-21 20:10:45
220.88.1.208	attackspam	$f2bV_matches	2020-02-21 19:51:15
122.225.107.15	attackbotsspam	Feb 21 11:18:34 gw1 sshd[20951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.225.107.15 Feb 21 11:18:36 gw1 sshd[20951]: Failed password for invalid user cpanel from 122.225.107.15 port 46124 ssh2 ...	2020-02-21 20:03:57
170.238.109.147	attack	[Fri Feb 21 11:47:58.358801 2020] [:error] [pid 20394:tid 140697617295104] [client 170.238.109.147:50195] [client 170.238.109.147] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197:80"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "Xk9g-jhmjzOh6lcXzQl-dgAAAKg"] ...	2020-02-21 20:30:00
106.105.197.197	attackspam	Honeypot attack, port: 5555, PTR: 106.105.197.197.adsl.dynamic.seed.net.tw.	2020-02-21 20:07:25
157.245.70.224	attack	$f2bV_matches	2020-02-21 19:59:57
92.63.194.106	attackbotsspam	Feb 21 12:21:10 ks10 sshd[1653135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.106 Feb 21 12:21:11 ks10 sshd[1653135]: Failed password for invalid user user from 92.63.194.106 port 38271 ssh2 ...	2020-02-21 19:54:47

最近上报的IP列表

167.213.250.181	223.154.206.184	214.214.12.152	110.43.43.128
173.238.183.153	126.56.88.49	172.46.73.192	26.91.145.162
131.26.22.66	122.149.2.133	139.180.95.139	21.132.150.67
108.25.202.202	151.254.54.53	74.151.57.204	48.250.106.163
189.252.119.0	10.103.174.14	140.243.160.28	117.112.46.2