158.127.194.149

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 158.127.194.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16552
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;158.127.194.149.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021901 1800 900 604800 86400

;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 04:24:30 CST 2025
;; MSG SIZE  rcvd: 108

HOST信息:

Host 149.194.127.158.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.194.127.158.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
77.247.181.162	attackbots	CMS (WordPress or Joomla) login attempt.	2020-07-21 22:38:11
103.107.17.139	attack	Jul 21 17:01:11 ift sshd\[4532\]: Invalid user lab from 103.107.17.139Jul 21 17:01:13 ift sshd\[4532\]: Failed password for invalid user lab from 103.107.17.139 port 58114 ssh2Jul 21 17:04:46 ift sshd\[4930\]: Invalid user wsd from 103.107.17.139Jul 21 17:04:48 ift sshd\[4930\]: Failed password for invalid user wsd from 103.107.17.139 port 48900 ssh2Jul 21 17:08:18 ift sshd\[5577\]: Invalid user test1 from 103.107.17.139 ...	2020-07-21 22:19:16
218.92.0.223	attack	2020-07-21T14:34:58.192299randservbullet-proofcloud-66.localdomain sshd[17647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.223 user=root 2020-07-21T14:35:00.699656randservbullet-proofcloud-66.localdomain sshd[17647]: Failed password for root from 218.92.0.223 port 51936 ssh2 2020-07-21T14:35:04.182684randservbullet-proofcloud-66.localdomain sshd[17647]: Failed password for root from 218.92.0.223 port 51936 ssh2 2020-07-21T14:34:58.192299randservbullet-proofcloud-66.localdomain sshd[17647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.223 user=root 2020-07-21T14:35:00.699656randservbullet-proofcloud-66.localdomain sshd[17647]: Failed password for root from 218.92.0.223 port 51936 ssh2 2020-07-21T14:35:04.182684randservbullet-proofcloud-66.localdomain sshd[17647]: Failed password for root from 218.92.0.223 port 51936 ssh2 ...	2020-07-21 22:40:45
52.137.5.231	attackbotsspam	94.102.50.156 - - [21/Jul/2020:14:33:02 +0300] "GET /NonExistence HTTP/1.1" 404 196 "-" "GoScraper" 94.102.50.156 - - [21/Jul/2020:14:33:22 +0300] "GET /shell HTTP/1.1" 404 196 "-" 94.102.50.156 - - [21/Jul/2020:14:33:24 +0300] "GET /cgi-bin/admin/servetest HTTP/1.1" 404 196 "-" "GoScraper" ...	2020-07-21 22:52:18
112.85.42.181	attackspam	Jul 21 16:54:35 * sshd[732]: Failed password for root from 112.85.42.181 port 25908 ssh2 Jul 21 16:54:48 * sshd[732]: error: maximum authentication attempts exceeded for root from 112.85.42.181 port 25908 ssh2 [preauth]	2020-07-21 22:55:29
62.112.11.223	attackspam	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-07-21T12:45:29Z and 2020-07-21T13:00:50Z	2020-07-21 22:37:03
116.1.235.57	attackbots	Port Scan ...	2020-07-21 22:53:34
200.219.61.2	attackspam	Jul 21 04:53:09 venus sshd[26798]: Invalid user martin from 200.219.61.2 port 54866 Jul 21 04:53:09 venus sshd[26798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.219.61.2 Jul 21 04:53:11 venus sshd[26798]: Failed password for invalid user martin from 200.219.61.2 port 54866 ssh2 Jul 21 05:00:08 venus sshd[27650]: Invalid user elbert from 200.219.61.2 port 60804 Jul 21 05:00:08 venus sshd[27650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.219.61.2 Jul 21 05:00:10 venus sshd[27650]: Failed password for invalid user elbert from 200.219.61.2 port 60804 ssh2 Jul 21 05:05:14 venus sshd[28623]: Invalid user admin from 200.219.61.2 port 46540 Jul 21 05:05:14 venus sshd[28623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.219.61.2 Jul 21 05:05:16 venus sshd[28623]: Failed password for invalid user admin from 200.219.61.2 port 46540 ssh2 ........ ------------------------------	2020-07-21 22:33:00
89.25.226.129	attackbotsspam	Unauthorized connection attempt from IP address 89.25.226.129 on Port 445(SMB)	2020-07-21 22:46:48
210.151.176.198	attackbots	Unauthorized connection attempt detected from IP address 210.151.176.198 to port 23 [T]	2020-07-21 22:58:51
198.71.230.1	attackspambots	198.71.230.1 - - [21/Jul/2020:15:01:03 +0200] "POST /xmlrpc.php HTTP/2.0" 403 1026 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" 198.71.230.1 - - [21/Jul/2020:15:01:03 +0200] "POST /xmlrpc.php HTTP/2.0" 403 1026 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" ...	2020-07-21 22:17:53
66.220.149.118	attackspambots	[Tue Jul 21 20:00:49.531939 2020] [:error] [pid 27371:tid 140185811801856] [client 66.220.149.118:49158] [client 66.220.149.118] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/images/Klimatologi/Prakiraan/02-Prakiraan-Dasarian/Prakiraan_Probabilistik_Curah_Hujan_Dasarian/Prakiraan_Probabilistik_Curah_Hujan_Dasarian_Provinsi_Jawa_Timur/2020/07_Juli_2020/Das-II/Peta_Prakiraan-Dasarian-Probabilistik_Curah_Hujan_Dasarian-III-JULI_2020_Provinsi_Jawa_Timur_Upda ...	2020-07-21 22:43:40
200.219.243.150	attack	Unauthorized connection attempt from IP address 200.219.243.150 on Port 445(SMB)	2020-07-21 22:37:54
180.251.223.94	attackspambots	1595336444 - 07/21/2020 15:00:44 Host: 180.251.223.94/180.251.223.94 Port: 445 TCP Blocked	2020-07-21 22:45:52
91.121.183.15	attack	91.121.183.15 - - [21/Jul/2020:15:00:33 +0100] "POST /wp-login.php HTTP/1.1" 200 5830 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 91.121.183.15 - - [21/Jul/2020:15:02:35 +0100] "POST /wp-login.php HTTP/1.1" 200 5830 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 91.121.183.15 - - [21/Jul/2020:15:04:39 +0100] "POST /wp-login.php HTTP/1.1" 200 5830 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ...	2020-07-21 22:09:42

最近上报的IP列表

4.194.196.49	9.179.223.61	244.64.51.142	25.35.69.14
208.110.219.70	155.29.132.137	25.234.13.144	118.94.68.81
94.40.213.53	91.55.107.184	157.214.25.195	76.133.166.214
163.225.171.253	214.212.243.189	91.113.24.136	44.87.33.73
43.128.80.195	129.78.114.91	133.245.126.243	101.82.133.141