109.22.111.149

基本信息:

城市(city): Saintes

省份(region): Nouvelle-Aquitaine

国家(country): France

运营商(isp): SFR

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.22.111.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53683
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;109.22.111.149.			IN	A

;; AUTHORITY SECTION:
.			393	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042201 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 23 05:27:29 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

149.111.22.109.in-addr.arpa domain name pointer 149.111.22.109.rev.sfr.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
149.111.22.109.in-addr.arpa	name = 149.111.22.109.rev.sfr.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
212.237.52.230	attackspam	212.237.52.230 - - [23/Aug/2019:23:46:30 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.237.52.230 - - [23/Aug/2019:23:46:33 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.237.52.230 - - [23/Aug/2019:23:46:34 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.237.52.230 - - [23/Aug/2019:23:46:37 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.237.52.230 - - [23/Aug/2019:23:46:38 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.237.52.230 - - [23/Aug/2019:23:46:41 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-08-24 07:28:01
51.253.15.27	attackspambots	This IP address was blacklisted for the following reason: /nl/jobs/financial-economical-crime-analist-m-v/%27%20and%20%27x%27%3D%27y @ 2019-08-09T15:32:33+02:00.	2019-08-24 07:39:55
89.207.90.131	attack	[portscan] Port scan	2019-08-24 07:19:24
181.67.35.145	attack	2019-08-23 17:26:44 unexpected disconnection while reading SMTP command from ([181.67.35.145]) [181.67.35.145]:18763 I=[10.100.18.20]:25 (error: Connection reset by peer) 2019-08-23 17:27:05 unexpected disconnection while reading SMTP command from ([181.67.35.145]) [181.67.35.145]:9639 I=[10.100.18.20]:25 (error: Connection reset by peer) 2019-08-23 17:27:35 unexpected disconnection while reading SMTP command from ([181.67.35.145]) [181.67.35.145]:30410 I=[10.100.18.20]:25 (error: Connection reset by peer) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=181.67.35.145	2019-08-24 07:10:34
78.29.86.21	attack	Lines containing failures of 78.29.86.21 Aug 23 17:30:39 srv02 sshd[17807]: Did not receive identification string from 78.29.86.21 port 60857 Aug 23 17:30:42 srv02 sshd[17808]: Invalid user user from 78.29.86.21 port 60679 Aug 23 17:30:43 srv02 sshd[17808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.29.86.21 Aug 23 17:30:44 srv02 sshd[17808]: Failed password for invalid user user from 78.29.86.21 port 60679 ssh2 Aug 23 17:30:44 srv02 sshd[17808]: Connection closed by invalid user user 78.29.86.21 port 60679 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=78.29.86.21	2019-08-24 07:39:04
147.75.94.141	attackspambots	64689/udp 32219/udp 8782/udp... [2019-06-23/08-23]168pkt,168pt.(udp)	2019-08-24 07:25:18
211.23.61.194	attackspambots	Aug 23 12:57:51 lcprod sshd\[20964\]: Invalid user frappe from 211.23.61.194 Aug 23 12:57:51 lcprod sshd\[20964\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211-23-61-194.hinet-ip.hinet.net Aug 23 12:57:53 lcprod sshd\[20964\]: Failed password for invalid user frappe from 211.23.61.194 port 42518 ssh2 Aug 23 13:02:32 lcprod sshd\[21379\]: Invalid user ksg from 211.23.61.194 Aug 23 13:02:32 lcprod sshd\[21379\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211-23-61-194.hinet-ip.hinet.net	2019-08-24 07:08:41
103.81.69.22	attackbotsspam	2019-08-23T22:03:49.518957abusebot.cloudsearch.cf sshd\[14594\]: Invalid user server from 103.81.69.22 port 49732 2019-08-23T22:03:49.523811abusebot.cloudsearch.cf sshd\[14594\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.81.69.22	2019-08-24 06:57:34
58.21.255.140	attackspambots	60001/tcp 23/tcp 60001/tcp [2019-08-21/22]3pkt	2019-08-24 07:12:27
171.61.129.94	attackbots	Lines containing failures of 171.61.129.94 Aug 23 17:54:52 myhost sshd[16821]: User r.r from 171.61.129.94 not allowed because not listed in AllowUsers Aug 23 17:54:52 myhost sshd[16821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.61.129.94 user=r.r Aug 23 17:54:54 myhost sshd[16821]: Failed password for invalid user r.r from 171.61.129.94 port 41243 ssh2 Aug 23 17:55:05 myhost sshd[16821]: message repeated 5 serveres: [ Failed password for invalid user r.r from 171.61.129.94 port 41243 ssh2] Aug 23 17:55:05 myhost sshd[16821]: error: maximum authentication attempts exceeded for invalid user r.r from 171.61.129.94 port 41243 ssh2 [preauth] Aug 23 17:55:05 myhost sshd[16821]: Disconnecting invalid user r.r 171.61.129.94 port 41243: Too many authentication failures [preauth] Aug 23 17:55:05 myhost sshd[16821]: PAM 5 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.61.129.94 user=r.r ........ ----------------------------------------	2019-08-24 07:03:20
165.22.212.168	attack	failed_logins	2019-08-24 07:05:33
90.216.146.133	attackbotsspam	TCP Port: 443 _ invalid blocked dnsbl-sorbs rbldns-ru _ _ Client xx.xx.4.108 _ _ (984)	2019-08-24 07:03:50
108.128.26.6	attackspambots	TCP Port: 443 _ invalid blocked zen-spamhaus rbldns-ru _ _ Client xx.xx.4.108 _ _ (983)	2019-08-24 07:18:29
119.27.189.46	attackbots	Aug 23 19:55:02 vps691689 sshd[22512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.27.189.46 Aug 23 19:55:04 vps691689 sshd[22512]: Failed password for invalid user test from 119.27.189.46 port 42688 ssh2 Aug 23 19:57:16 vps691689 sshd[22577]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.27.189.46 ...	2019-08-24 07:23:22
187.33.248.242	attackbotsspam	Aug 23 23:23:58 h2177944 sshd\[2119\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.33.248.242 Aug 23 23:24:00 h2177944 sshd\[2119\]: Failed password for invalid user deploy from 187.33.248.242 port 38382 ssh2 Aug 24 00:24:23 h2177944 sshd\[4332\]: Invalid user lucia from 187.33.248.242 port 58600 Aug 24 00:24:23 h2177944 sshd\[4332\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.33.248.242 ...	2019-08-24 07:14:57

最近上报的IP列表

61.145.148.17	221.53.207.87	151.20.143.161	185.254.70.34
202.168.156.104	89.243.176.149	106.54.255.15	103.205.179.19
216.103.85.92	189.142.177.119	190.135.157.156	37.120.149.122
201.105.30.14	79.108.85.232	174.37.111.63	105.245.53.134
24.50.149.120	105.246.15.113	203.98.77.219	143.50.255.132