137.110.196.54

基本信息:

城市(city): San Diego

省份(region): California

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.110.196.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41334
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;137.110.196.54.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021300 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 01:02:00 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

54.196.110.137.in-addr.arpa domain name pointer ext-0270lab.ucsd.edu.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
54.196.110.137.in-addr.arpa	name = ext-0270lab.ucsd.edu.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
71.6.146.185	attack	03/13/2020-02:05:38.843156 71.6.146.185 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 71	2020-03-13 14:15:38
66.151.211.170	attack	firewall-block, port(s): 82/tcp, 85/tcp, 8083/tcp	2020-03-13 14:20:46
222.186.15.158	attack	Unauthorized connection attempt detected from IP address 222.186.15.158 to port 22 [T]	2020-03-13 14:37:34
218.92.0.173	attack	2020-03-13T07:22:22.204221scmdmz1 sshd[4965]: Failed password for root from 218.92.0.173 port 37070 ssh2 2020-03-13T07:22:25.270396scmdmz1 sshd[4965]: Failed password for root from 218.92.0.173 port 37070 ssh2 2020-03-13T07:22:28.415829scmdmz1 sshd[4965]: Failed password for root from 218.92.0.173 port 37070 ssh2 ...	2020-03-13 14:31:03
128.199.123.170	attackspam	Mar 13 03:47:58 ip-172-31-62-245 sshd\[20077\]: Invalid user shuangbo from 128.199.123.170\ Mar 13 03:48:00 ip-172-31-62-245 sshd\[20077\]: Failed password for invalid user shuangbo from 128.199.123.170 port 59474 ssh2\ Mar 13 03:51:14 ip-172-31-62-245 sshd\[20104\]: Invalid user apache from 128.199.123.170\ Mar 13 03:51:16 ip-172-31-62-245 sshd\[20104\]: Failed password for invalid user apache from 128.199.123.170 port 43000 ssh2\ Mar 13 03:54:45 ip-172-31-62-245 sshd\[20122\]: Failed password for root from 128.199.123.170 port 54752 ssh2\	2020-03-13 14:38:35
90.90.120.6	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 13-03-2020 03:55:10.	2020-03-13 14:19:12
36.90.68.10	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 13-03-2020 03:55:09.	2020-03-13 14:21:27
171.236.132.9	attackspam	2020-03-1304:54:361jCbP9-0003LT-L7\<=info@whatsup2013.chH=\(localhost\)[14.169.130.246]:52727P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2446id=3B3E88DBD0042A99454009B145F0F4EC@whatsup2013.chT="fromDarya"foreelectricalconstruction@gmail.comgentle.hands.only69@gmail.com2020-03-1304:55:081jCbPf-0003Nm-BY\<=info@whatsup2013.chH=mx-ll-183.89.212-168.dynamic.3bb.co.th\(localhost\)[183.89.212.168]:59525P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2356id=A3A61043489CB201DDD89129DD74CA4C@whatsup2013.chT="fromDarya"fordpete02@hotmail.comelgames2@yahoo.com2020-03-1304:53:401jCbOF-0003Ge-M0\<=info@whatsup2013.chH=\(localhost\)[171.236.132.9]:45149P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2380id=7673C5969D4967D4080D44FC08672078@whatsup2013.chT="fromDarya"forbrandonjenkins124@gmail.comrasheed99stackhouse@gmail.com2020-03-1304:53:561jCbOV-0003Hk-9x\<=info@whatsup2013.chH=\(loca	2020-03-13 14:14:43
177.189.209.143	attackspam	Invalid user server from 177.189.209.143 port 15169	2020-03-13 14:16:17
64.227.25.170	attackspambots	Lines containing failures of 64.227.25.170 Mar 11 12:52:21 shared02 sshd[11628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.25.170 user=r.r Mar 11 12:52:23 shared02 sshd[11628]: Failed password for r.r from 64.227.25.170 port 55142 ssh2 Mar 11 12:52:23 shared02 sshd[11628]: Received disconnect from 64.227.25.170 port 55142:11: Bye Bye [preauth] Mar 11 12:52:23 shared02 sshd[11628]: Disconnected from authenticating user r.r 64.227.25.170 port 55142 [preauth] Mar 11 12:59:41 shared02 sshd[14025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.25.170 user=r.r Mar 11 12:59:43 shared02 sshd[14025]: Failed password for r.r from 64.227.25.170 port 50548 ssh2 Mar 11 12:59:44 shared02 sshd[14025]: Received disconnect from 64.227.25.170 port 50548:11: Bye Bye [preauth] Mar 11 12:59:44 shared02 sshd[14025]: Disconnected from authenticating user r.r 64.227.25.170 port 50548 [preauth........ ------------------------------	2020-03-13 14:07:29
159.65.145.253	attackbots	" "	2020-03-13 14:17:26
179.181.186.224	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 13-03-2020 03:55:08.	2020-03-13 14:21:59
85.23.27.218	attackbots	Thu Mar 12 22:33:51 2020 - Child process 127227 handling connection Thu Mar 12 22:33:51 2020 - New connection from: 85.23.27.218:4303 Thu Mar 12 22:33:51 2020 - Sending data to client: [Login: ] Thu Mar 12 22:33:51 2020 - Got data: root Thu Mar 12 22:33:52 2020 - Sending data to client: [Password: ] Thu Mar 12 22:33:52 2020 - Child aborting Thu Mar 12 22:33:52 2020 - Reporting IP address: 85.23.27.218 - mflag: 0	2020-03-13 14:16:57
199.212.87.123	spam	AGAIN and AGAIN and ALWAYS the same REGISTRARS as namecheap.com, uniregistry.com and name.com TO STOP IMMEDIATELY for keeping LIERS, ROBERS and else since too many years ! The cheapest service, as usual... And Link as usual by bit.ly to delette IMMEDIATELY too ! MARRE de ces ORDURES et autres FILS de PUTE genre SOUS MERDES capables de POLLUER STUPIDEMENT pour ne pas dire CONNEMENT la Planète par des POURRIELS INUTILES sur des listes VOLÉES on ne sait où et SANS notre accord ! From: iris.mya13@gmail.com Reply-To: iris.mya13@gmail.com To: nncc-ddc-d-fr-4+owners@domainenameserv.online Message-Id: domainenameserv.online => namecheap.com domainenameserv.online => 192.64.119.226 192.64.119.226 => namecheap.com https://www.mywot.com/scorecard/domainenameserv.online https://www.mywot.com/scorecard/namecheap.com https://en.asytech.cn/check-ip/192.64.119.226 send to Link : http://bit.ly/39MqzBy which resend to : https://storage.googleapis.com/vccde50/mc21.html/ which resend again to : http://suggetat.com/r/d34d6336-9df2-4b8c-a33f-18059764e80a/ or : http://www.seedleafitem.com/o-rpcj-f12-8201fdd95225d9aa690066f3400bec8f suggetat.com => uniregistry.com suggetat.com => 199.212.87.123 199.212.87.123 => hostwinds.com https://www.mywot.com/scorecard/suggetat.com https://www.mywot.com/scorecard/uniregistry.com https://www.mywot.com/scorecard/hostwinds.com seedleafitem.com => name.com seedleafitem.com => 35.166.91.249 35.166.91.249 => amazon.com https://www.mywot.com/scorecard/seedleafitem.com https://www.mywot.com/scorecard/name.com https://www.mywot.com/scorecard/amazon.com https://www.mywot.com/scorecard/amazonaws.com https://en.asytech.cn/check-ip/199.212.87.123 https://en.asytech.cn/check-ip/35.166.91.249	2020-03-13 14:41:40
39.41.99.137	attack	Icarus honeypot on github	2020-03-13 14:02:17

最近上报的IP列表

8.0.108.178	84.57.238.179	137.33.15.204	164.211.78.15
61.101.135.85	135.83.36.92	205.242.113.61	135.155.27.59
196.52.123.64	150.204.19.243	140.194.126.165	117.138.27.181
122.57.5.201	230.124.210.32	128.195.148.95	255.143.31.187
180.219.161.48	214.37.15.209	188.208.200.58	208.149.249.50