163.18.55.109 - IPInfo

基本信息:

城市(city): Kaohsiung

省份(region): Kaohsiung

国家(country): Taiwan, China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 163.18.55.109
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54905
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;163.18.55.109.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021300 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 13 18:10:28 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

109.55.18.163.in-addr.arpa domain name pointer F55109.nkfust.edu.tw.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
109.55.18.163.in-addr.arpa	name = F55109.nkfust.edu.tw.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
119.42.71.79	attackspam	Automatic report - Port Scan Attack	2020-01-02 01:16:58
112.85.42.178	attackspambots	Jan 1 18:23:43 vpn01 sshd[30693]: Failed password for root from 112.85.42.178 port 13050 ssh2 Jan 1 18:23:54 vpn01 sshd[30693]: Failed password for root from 112.85.42.178 port 13050 ssh2 ...	2020-01-02 01:34:21
87.79.238.217	attackbotsspam	RDPBruteGSL24	2020-01-02 01:29:20
222.186.52.178	attackbotsspam	Jan 1 09:05:59 XXX sshd[30890]: User r.r from 222.186.52.178 not allowed because none of user's groups are listed in AllowGroups Jan 1 09:05:59 XXX sshd[30890]: Received disconnect from 222.186.52.178: 11: [preauth] Jan 1 09:06:00 XXX sshd[30888]: User r.r from 222.186.52.178 not allowed because none of user's groups are listed in AllowGroups Jan 1 09:06:00 XXX sshd[30888]: Received disconnect from 222.186.52.178: 11: [preauth] Jan 1 09:06:00 XXX sshd[30892]: User r.r from 222.186.52.178 not allowed because none of user's groups are listed in AllowGroups Jan 1 09:06:00 XXX sshd[30892]: Received disconnect from 222.186.52.178: 11: [preauth] Jan 1 09:06:02 XXX sshd[30894]: User r.r from 222.186.52.178 not allowed because none of user's groups are listed in AllowGroups Jan 1 09:06:03 XXX sshd[30900]: User r.r from 222.186.52.178 not allowed because none of user's groups are listed in AllowGroups Jan 1 09:06:04 XXX sshd[30900]: Received disconnect from 222.186.5........ -------------------------------	2020-01-02 01:25:41
218.92.0.201	attack	Jan 1 18:14:01 silence02 sshd[23324]: Failed password for root from 218.92.0.201 port 58153 ssh2 Jan 1 18:14:03 silence02 sshd[23324]: Failed password for root from 218.92.0.201 port 58153 ssh2 Jan 1 18:14:06 silence02 sshd[23324]: Failed password for root from 218.92.0.201 port 58153 ssh2	2020-01-02 01:39:04
132.145.173.64	attack	Jan 1 18:11:54 mout sshd[13317]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.173.64 user=root Jan 1 18:11:55 mout sshd[13317]: Failed password for root from 132.145.173.64 port 34150 ssh2	2020-01-02 01:53:03
87.252.225.215	attack	[WedJan0115:50:46.0129522020][:error][pid7061:tid47392733406976][client87.252.225.215:51708][client87.252.225.215]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof"rx$MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com$"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected$DisableifyouwanttoallowMSIE6$"][severity"WARNING"][hostname"yex-swiss.ch"][uri"/"][unique_id"XgyxxQS5cGIbdJVuKZfB7QAAANc"][WedJan0115:50:48.7825022020][:error][pid29185:tid47392706090752][client87.252.225.215:51712][client87.252.225.215]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof"rx$MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com$"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\(Disableif	2020-01-02 01:12:45
80.211.9.126	attackspambots	Jan 1 16:36:52 sd-53420 sshd\[8085\]: Invalid user admin from 80.211.9.126 Jan 1 16:36:52 sd-53420 sshd\[8085\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.9.126 Jan 1 16:36:54 sd-53420 sshd\[8085\]: Failed password for invalid user admin from 80.211.9.126 port 38640 ssh2 Jan 1 16:38:14 sd-53420 sshd\[8543\]: User root from 80.211.9.126 not allowed because none of user's groups are listed in AllowGroups Jan 1 16:38:14 sd-53420 sshd\[8543\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.9.126 user=root ...	2020-01-02 01:26:36
202.149.220.50	attackspam	Fail2Ban Ban Triggered	2020-01-02 01:27:07
222.186.30.218	attack	2020-01-01 08:37:18,761 fail2ban.actions [2870]: NOTICE [sshd] Ban 222.186.30.218 2020-01-01 09:38:22,393 fail2ban.actions [2870]: NOTICE [sshd] Ban 222.186.30.218 2020-01-01 15:44:32,283 fail2ban.actions [2870]: NOTICE [sshd] Ban 222.186.30.218 2020-01-01 16:32:59,989 fail2ban.actions [2870]: NOTICE [sshd] Ban 222.186.30.218 2020-01-01 18:22:28,023 fail2ban.actions [2870]: NOTICE [sshd] Ban 222.186.30.218 ...	2020-01-02 01:31:03
145.255.31.52	attackspambots	$f2bV_matches	2020-01-02 01:23:12
106.13.25.242	attackbotsspam	Jan 1 17:41:26 mout sshd[10665]: Invalid user test from 106.13.25.242 port 39488	2020-01-02 01:30:18
125.214.51.34	attackspam	firewall-block, port(s): 1433/tcp	2020-01-02 01:36:30
217.112.128.70	attackspam	Postfix RBL failed	2020-01-02 01:18:38
185.244.167.52	attack	Jan 1 05:13:32 web9 sshd\[32103\]: Invalid user ubuntu from 185.244.167.52 Jan 1 05:13:32 web9 sshd\[32103\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.244.167.52 Jan 1 05:13:34 web9 sshd\[32103\]: Failed password for invalid user ubuntu from 185.244.167.52 port 56636 ssh2 Jan 1 05:14:54 web9 sshd\[32281\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.244.167.52 user=root Jan 1 05:14:57 web9 sshd\[32281\]: Failed password for root from 185.244.167.52 port 40422 ssh2	2020-01-02 01:27:34

最近上报的IP列表

29.129.146.195	176.19.221.147	135.200.129.243	228.134.158.118
7.179.87.135	75.102.127.15	127.194.175.140	16.126.171.213
175.151.54.236	191.110.58.144	15.30.46.234	200.43.155.14
27.233.165.23	188.67.77.240	108.72.178.136	25.18.109.173
181.145.252.102	143.149.2.252	31.254.59.113	20.32.100.60