157.149.160.221

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.149.160.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35046
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;157.149.160.221.		IN	A

;; AUTHORITY SECTION:
.			590	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022010901 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 10 08:30:12 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

Host 221.160.149.157.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 221.160.149.157.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
94.191.94.179	attackspam	unauthorized connection attempt	2020-06-29 12:54:04
185.143.73.175	attack	2020-06-29 05:04:36 auth_plain authenticator failed for (User) [185.143.73.175]: 535 Incorrect authentication data (set_id=unimi@csmailer.org) 2020-06-29 05:05:52 auth_plain authenticator failed for (User) [185.143.73.175]: 535 Incorrect authentication data (set_id=ajk@csmailer.org) 2020-06-29 05:07:05 auth_plain authenticator failed for (User) [185.143.73.175]: 535 Incorrect authentication data (set_id=waits@csmailer.org) 2020-06-29 05:08:17 auth_plain authenticator failed for (User) [185.143.73.175]: 535 Incorrect authentication data (set_id=dcomm1995@csmailer.org) 2020-06-29 05:09:28 auth_plain authenticator failed for (User) [185.143.73.175]: 535 Incorrect authentication data (set_id=stripe@csmailer.org) ...	2020-06-29 13:10:46
51.38.188.101	attackspambots	Invalid user ngu from 51.38.188.101 port 49928	2020-06-29 13:19:29
51.38.231.78	attackspambots	Jun 29 05:51:29 server sshd[25058]: Failed password for invalid user test from 51.38.231.78 port 47532 ssh2 Jun 29 05:54:44 server sshd[27622]: Failed password for invalid user usuario from 51.38.231.78 port 47714 ssh2 Jun 29 05:57:58 server sshd[30082]: Failed password for invalid user gpr from 51.38.231.78 port 47784 ssh2	2020-06-29 12:47:32
188.165.255.134	attackbots	188.165.255.134 - - [29/Jun/2020:06:21:54 +0200] "GET /wp-login.php HTTP/1.1" 200 6310 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 188.165.255.134 - - [29/Jun/2020:06:21:56 +0200] "POST /wp-login.php HTTP/1.1" 200 6561 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 188.165.255.134 - - [29/Jun/2020:06:21:57 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-29 12:36:46
192.222.178.234	attack	192.222.178.234 - - [29/Jun/2020:04:54:14 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 192.222.178.234 - - [29/Jun/2020:04:54:15 +0100] "POST /wp-login.php HTTP/1.1" 200 5422 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 192.222.178.234 - - [29/Jun/2020:04:57:24 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ...	2020-06-29 13:14:24
51.254.32.102	attack	Jun 29 06:36:31 vps sshd[869270]: Invalid user shimada from 51.254.32.102 port 39460 Jun 29 06:36:31 vps sshd[869270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.ip-51-254-32.eu Jun 29 06:36:33 vps sshd[869270]: Failed password for invalid user shimada from 51.254.32.102 port 39460 ssh2 Jun 29 06:39:54 vps sshd[883753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.ip-51-254-32.eu user=root Jun 29 06:39:55 vps sshd[883753]: Failed password for root from 51.254.32.102 port 39774 ssh2 ...	2020-06-29 12:49:16
13.69.136.204	attackbotsspam	2020-06-28 23:43:32.004691-0500 localhost sshd[69188]: Failed password for root from 13.69.136.204 port 16121 ssh2	2020-06-29 13:12:17
190.3.179.66	attackbots	Automatic report BANNED IP	2020-06-29 12:56:30
139.199.25.110	attack	$f2bV_matches	2020-06-29 13:11:13
193.118.53.194	attackbots	[Mon Jun 29 10:57:54.420265 2020] [:error] [pid 31487:tid 140462790842112] [client 193.118.53.194:59398] [client 193.118.53.194] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/"] [unique_id "XvlmwjjnXN636DJDseAp8QAAAh4"] ...	2020-06-29 12:41:25
203.195.157.137	attack	Jun 29 06:42:49 eventyay sshd[23056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.157.137 Jun 29 06:42:51 eventyay sshd[23056]: Failed password for invalid user oracle from 203.195.157.137 port 54670 ssh2 Jun 29 06:47:04 eventyay sshd[23267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.157.137 ...	2020-06-29 12:58:08
62.92.48.244	attackbotsspam	2020-06-29T03:56:35.344580abusebot-6.cloudsearch.cf sshd[18820]: Invalid user dir from 62.92.48.244 port 54589 2020-06-29T03:56:35.350633abusebot-6.cloudsearch.cf sshd[18820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=244.48.92.62.static.cust.telenor.com 2020-06-29T03:56:35.344580abusebot-6.cloudsearch.cf sshd[18820]: Invalid user dir from 62.92.48.244 port 54589 2020-06-29T03:56:37.124435abusebot-6.cloudsearch.cf sshd[18820]: Failed password for invalid user dir from 62.92.48.244 port 54589 ssh2 2020-06-29T03:59:39.931502abusebot-6.cloudsearch.cf sshd[18878]: Invalid user sonia from 62.92.48.244 port 10667 2020-06-29T03:59:39.937239abusebot-6.cloudsearch.cf sshd[18878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=244.48.92.62.static.cust.telenor.com 2020-06-29T03:59:39.931502abusebot-6.cloudsearch.cf sshd[18878]: Invalid user sonia from 62.92.48.244 port 10667 2020-06-29T03:59:41.972283abusebot-6 ...	2020-06-29 13:17:17
92.42.131.229	attackbotsspam	unauthorized connection attempt	2020-06-29 13:04:00
119.42.73.135	attackspam	1593403041 - 06/29/2020 05:57:21 Host: 119.42.73.135/119.42.73.135 Port: 445 TCP Blocked	2020-06-29 13:18:11

最近上报的IP列表

220.206.12.68	142.251.42.189	121.13.108.64	220.217.77.149
174.111.48.161	231.93.154.174	221.158.44.56	210.115.121.127
136.227.111.2	217.182.43.215	195.14.145.182	19.119.16.78
191.101.45.96	82.68.219.120	244.181.147.182	145.70.4.242
176.117.2.244	159.220.233.126	117.65.41.67	135.211.225.36