182.99.128.149

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Jiangxi Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 182.99.128.149 to port 6656 [T]	2020-01-30 15:56:58

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 182.99.128.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55370
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;182.99.128.149.			IN	A

;; AUTHORITY SECTION:
.			427	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020013001 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 15:56:53 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 149.128.99.182.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.128.99.182.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
2002:44b7:6cc1::44b7:6cc1	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 54374218cce1efed \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: US \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36 \| CF_DC: EWR. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 00:02:57
190.145.238.214	attackbotsspam	1576077038 - 12/11/2019 16:10:38 Host: 190.145.238.214/190.145.238.214 Port: 445 TCP Blocked	2019-12-11 23:58:23
162.144.141.141	attackspam	Automatic report - XMLRPC Attack	2019-12-11 23:43:27
222.186.180.17	attackbotsspam	Dec 11 16:21:52 mail sshd\[9370\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root Dec 11 16:21:54 mail sshd\[9370\]: Failed password for root from 222.186.180.17 port 30240 ssh2 Dec 11 16:22:17 mail sshd\[9576\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root ...	2019-12-11 23:22:40
106.13.98.119	attackspam	Dec 11 06:47:27 sanyalnet-cloud-vps4 sshd[6078]: Connection from 106.13.98.119 port 40340 on 64.137.160.124 port 22 Dec 11 06:47:30 sanyalnet-cloud-vps4 sshd[6078]: Invalid user kari from 106.13.98.119 Dec 11 06:47:30 sanyalnet-cloud-vps4 sshd[6078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.98.119 Dec 11 06:47:33 sanyalnet-cloud-vps4 sshd[6078]: Failed password for invalid user kari from 106.13.98.119 port 40340 ssh2 Dec 11 06:48:07 sanyalnet-cloud-vps4 sshd[6078]: Received disconnect from 106.13.98.119: 11: Bye Bye [preauth] Dec 11 07:03:18 sanyalnet-cloud-vps4 sshd[6465]: Connection from 106.13.98.119 port 49754 on 64.137.160.124 port 22 Dec 11 07:03:27 sanyalnet-cloud-vps4 sshd[6465]: Connection closed by 106.13.98.119 [preauth] Dec 11 07:10:29 sanyalnet-cloud-vps4 sshd[6679]: Connection from 106.13.98.119 port 42576 on 64.137.160.124 port 22 Dec 11 07:10:37 sanyalnet-cloud-vps4 sshd[6679]: Connection closed by 1........ -------------------------------	2019-12-11 23:54:25
144.172.64.111	attack	Dec 11 16:10:43 exim[2338]: [1\72] 1if3dR-0000bi-0M H=server2.webwebmail.info [144.172.64.111] F= rejected after DATA: This message scored 22.8 spam points.	2019-12-11 23:37:04
159.65.84.164	attackbots	Dec 11 05:21:59 sachi sshd\[20261\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.84.164 user=root Dec 11 05:22:01 sachi sshd\[20261\]: Failed password for root from 159.65.84.164 port 48098 ssh2 Dec 11 05:27:31 sachi sshd\[20877\]: Invalid user raleigh from 159.65.84.164 Dec 11 05:27:31 sachi sshd\[20877\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.84.164 Dec 11 05:27:33 sachi sshd\[20877\]: Failed password for invalid user raleigh from 159.65.84.164 port 56394 ssh2	2019-12-11 23:42:10
111.230.228.183	attack	SSH bruteforce (Triggered fail2ban)	2019-12-12 00:01:13
223.200.155.28	attackspam	Dec 11 05:55:16 riskplan-s sshd[11712]: Invalid user azumatam from 223.200.155.28 Dec 11 05:55:16 riskplan-s sshd[11712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223-200-155-28.hinet-ip.hinet.net Dec 11 05:55:18 riskplan-s sshd[11712]: Failed password for invalid user azumatam from 223.200.155.28 port 57738 ssh2 Dec 11 05:55:18 riskplan-s sshd[11712]: Received disconnect from 223.200.155.28: 11: Bye Bye [preauth] Dec 11 06:09:03 riskplan-s sshd[11967]: Invalid user heinkele from 223.200.155.28 Dec 11 06:09:03 riskplan-s sshd[11967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223-200-155-28.hinet-ip.hinet.net Dec 11 06:09:04 riskplan-s sshd[11967]: Failed password for invalid user heinkele from 223.200.155.28 port 42890 ssh2 Dec 11 06:09:05 riskplan-s sshd[11967]: Received disconnect from 223.200.155.28: 11: Bye Bye [preauth] Dec 11 06:18:13 riskplan-s sshd[12150]: Invalid user........ -------------------------------	2019-12-11 23:45:22
177.128.120.22	attack	Dec 11 16:03:59 minden010 sshd[29562]: Failed password for root from 177.128.120.22 port 49682 ssh2 Dec 11 16:11:12 minden010 sshd[7454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.128.120.22 Dec 11 16:11:15 minden010 sshd[7454]: Failed password for invalid user farinas from 177.128.120.22 port 52418 ssh2 ...	2019-12-11 23:24:49
112.85.42.173	attackspambots	Dec 11 10:11:01 mail sshd\[24710\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.173 user=root ...	2019-12-11 23:40:42
187.75.145.66	attackbots	Dec 11 15:08:41 web8 sshd\[2089\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.75.145.66 user=root Dec 11 15:08:43 web8 sshd\[2089\]: Failed password for root from 187.75.145.66 port 58449 ssh2 Dec 11 15:15:40 web8 sshd\[5576\]: Invalid user admin from 187.75.145.66 Dec 11 15:15:40 web8 sshd\[5576\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.75.145.66 Dec 11 15:15:42 web8 sshd\[5576\]: Failed password for invalid user admin from 187.75.145.66 port 60021 ssh2	2019-12-11 23:21:07
157.230.129.73	attack	Dec 11 16:37:14 vps647732 sshd[12838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.129.73 Dec 11 16:37:16 vps647732 sshd[12838]: Failed password for invalid user morneau from 157.230.129.73 port 60555 ssh2 ...	2019-12-12 00:00:07
188.165.250.228	attackspam	Dec 11 16:37:35 meumeu sshd[27409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.250.228 Dec 11 16:37:37 meumeu sshd[27409]: Failed password for invalid user swami from 188.165.250.228 port 60303 ssh2 Dec 11 16:42:53 meumeu sshd[28153]: Failed password for root from 188.165.250.228 port 36016 ssh2 ...	2019-12-11 23:56:39
195.24.207.199	attackspambots	2019-12-11T16:04:24.014162 sshd[4915]: Invalid user ident from 195.24.207.199 port 54006 2019-12-11T16:04:24.029443 sshd[4915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.24.207.199 2019-12-11T16:04:24.014162 sshd[4915]: Invalid user ident from 195.24.207.199 port 54006 2019-12-11T16:04:26.655037 sshd[4915]: Failed password for invalid user ident from 195.24.207.199 port 54006 ssh2 2019-12-11T16:11:12.810657 sshd[5040]: Invalid user portal_user from 195.24.207.199 port 38078 ...	2019-12-11 23:26:22

最近上报的IP列表

112.225.204.101	112.195.97.97	112.113.118.177	112.85.45.57
111.67.197.26	110.52.224.249	106.35.34.44	106.6.232.188
106.6.232.113	106.5.8.225	101.206.232.134	59.58.57.176
49.71.151.151	46.211.151.119	159.178.214.165	42.117.213.59
182.235.19.67	242.2.254.91	150.136.183.246	97.14.103.43