54.13.149.109 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.13.149.109
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44106
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;54.13.149.109.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020300 1800 900 604800 86400

;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 16:18:14 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 109.149.13.54.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 109.149.13.54.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
180.117.134.186	attackspam	Aug 21 05:47:39 web1 sshd\[23810\]: Invalid user admin from 180.117.134.186 Aug 21 05:47:39 web1 sshd\[23810\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.117.134.186 Aug 21 05:47:41 web1 sshd\[23810\]: Failed password for invalid user admin from 180.117.134.186 port 54324 ssh2 Aug 21 05:47:44 web1 sshd\[23810\]: Failed password for invalid user admin from 180.117.134.186 port 54324 ssh2 Aug 21 05:47:45 web1 sshd\[23810\]: Failed password for invalid user admin from 180.117.134.186 port 54324 ssh2	2019-08-22 02:53:22
92.100.59.125	attack	Fail2Ban Ban Triggered	2019-08-22 02:34:05
207.154.243.255	attack	$f2bV_matches	2019-08-22 02:58:27
101.177.139.44	attackbotsspam	port scan and connect, tcp 23 (telnet)	2019-08-22 02:42:05
223.24.94.99	attackspambots	2019-08-21 x@x 2019-08-21 x@x 2019-08-21 x@x 2019-08-21 x@x 2019-08-21 13:53:41 dovecot_plain authenticator failed for ppp-223-24-94-99.revip6.asianet.co.th (ACER-PC) [223.24.94.99]:16925: 535 Incorrect authentication data (set_id=tina) 2019-08-21 13:53:48 dovecot_login authenticator failed for ppp-223-24-94-99.revip6.asianet.co.th (ACER-PC) [223.24.94.99]:16925: 535 Incorrect authentication data (set_id=tina) 2019-08-21 13:53:55 dovecot_plain authenticator failed for ppp-223-24-94-99.revip6.asianet.co.th (ACER-PC) [223.24.94.99]:23151: 535 Incorrect authentication data (set_id=tina) 2019-08-21 13:53:58 dovecot_login authenticator failed for ppp-223-24-94-99.revip6.asianet.co.th (ACER-PC) [223.24.94.99]:23151: 535 Incorrect authentication data (set_id=tina) 2019-08-21 x@x 2019-08-21 x@x 2019-08-21 x@x 2019-08-21 x@x 2019-08-21 13:54:12 dovecot_plain authenticator failed for ppp-223-24-94-99.revip6.asianet.co.th (ACER-PC) [223.24.94.99]:63836: 535 Incorrect authentication........ ------------------------------	2019-08-22 02:27:16
79.137.72.171	attackbotsspam	Aug 21 20:41:54 SilenceServices sshd[5880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.72.171 Aug 21 20:41:56 SilenceServices sshd[5880]: Failed password for invalid user cornelia from 79.137.72.171 port 57640 ssh2 Aug 21 20:46:27 SilenceServices sshd[9798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.72.171	2019-08-22 02:54:36
113.177.120.101	attackbotsspam	Aug 21 12:57:55 mxgate1 postfix/postscreen[15099]: CONNECT from [113.177.120.101]:21895 to [176.31.12.44]:25 Aug 21 12:57:55 mxgate1 postfix/dnsblog[15101]: addr 113.177.120.101 listed by domain zen.spamhaus.org as 127.0.0.11 Aug 21 12:57:55 mxgate1 postfix/dnsblog[15101]: addr 113.177.120.101 listed by domain zen.spamhaus.org as 127.0.0.4 Aug 21 12:57:55 mxgate1 postfix/dnsblog[15102]: addr 113.177.120.101 listed by domain cbl.abuseat.org as 127.0.0.2 Aug 21 12:57:55 mxgate1 postfix/dnsblog[15100]: addr 113.177.120.101 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Aug 21 12:57:55 mxgate1 postfix/dnsblog[15110]: addr 113.177.120.101 listed by domain b.barracudacentral.org as 127.0.0.2 Aug 21 12:58:01 mxgate1 postfix/postscreen[15099]: DNSBL rank 5 for [113.177.120.101]:21895 Aug x@x Aug 21 12:58:02 mxgate1 postfix/postscreen[15099]: HANGUP after 0.77 from [113.177.120.101]:21895 in tests after SMTP handshake Aug 21 12:58:02 mxgate1 postfix/postscreen[15099]: DISCONN........ -------------------------------	2019-08-22 03:02:52
178.128.99.193	attackbots	Aug 21 19:59:13 ArkNodeAT sshd\[12626\]: Invalid user www from 178.128.99.193 Aug 21 19:59:13 ArkNodeAT sshd\[12626\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.99.193 Aug 21 19:59:15 ArkNodeAT sshd\[12626\]: Failed password for invalid user www from 178.128.99.193 port 53784 ssh2	2019-08-22 02:19:31
5.196.7.123	attack	Aug 21 06:29:32 tdfoods sshd\[19554\]: Invalid user ssh from 5.196.7.123 Aug 21 06:29:32 tdfoods sshd\[19554\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.ip-5-196-7.eu Aug 21 06:29:34 tdfoods sshd\[19554\]: Failed password for invalid user ssh from 5.196.7.123 port 41390 ssh2 Aug 21 06:33:39 tdfoods sshd\[19887\]: Invalid user san from 5.196.7.123 Aug 21 06:33:39 tdfoods sshd\[19887\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.ip-5-196-7.eu	2019-08-22 02:34:31
181.196.1.44	attack	Aug 21 12:53:15 econome sshd[20556]: reveeclipse mapping checking getaddrinfo for 44.1.196.181.static.anycast.cnt-grms.ec [181.196.1.44] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 21 12:53:15 econome sshd[20556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.196.1.44 user=r.r Aug 21 12:53:17 econome sshd[20556]: Failed password for r.r from 181.196.1.44 port 52440 ssh2 Aug 21 12:53:19 econome sshd[20556]: Failed password for r.r from 181.196.1.44 port 52440 ssh2 Aug 21 12:53:21 econome sshd[20556]: Failed password for r.r from 181.196.1.44 port 52440 ssh2 Aug 21 12:53:24 econome sshd[20556]: Failed password for r.r from 181.196.1.44 port 52440 ssh2 Aug 21 12:53:26 econome sshd[20556]: Failed password for r.r from 181.196.1.44 port 52440 ssh2 Aug 21 12:53:29 econome sshd[20556]: Failed password for r.r from 181.196.1.44 port 52440 ssh2 Aug 21 12:53:29 econome sshd[20556]: Disconnecting: Too many authentication failures for r.r ........ -------------------------------	2019-08-22 02:24:11
45.227.253.114	attackbotsspam	Aug 21 20:18:48 relay postfix/smtpd\[3893\]: warning: unknown\[45.227.253.114\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 21 20:18:56 relay postfix/smtpd\[24811\]: warning: unknown\[45.227.253.114\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 21 20:19:41 relay postfix/smtpd\[5087\]: warning: unknown\[45.227.253.114\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 21 20:19:49 relay postfix/smtpd\[28253\]: warning: unknown\[45.227.253.114\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 21 20:31:39 relay postfix/smtpd\[3893\]: warning: unknown\[45.227.253.114\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-08-22 02:33:16
79.126.65.110	attackspam	Unauthorised access (Aug 21) SRC=79.126.65.110 LEN=52 TTL=115 ID=10792 DF TCP DPT=445 WINDOW=8192 SYN	2019-08-22 03:03:40
103.73.237.48	attack	Aug 21 12:57:49 garuda postfix/smtpd[24660]: connect from unknown[103.73.237.48] Aug 21 12:57:53 garuda postfix/smtpd[24660]: warning: unknown[103.73.237.48]: SASL CRAM-MD5 authentication failed: authentication failure Aug 21 12:57:53 garuda postfix/smtpd[24660]: warning: unknown[103.73.237.48]: SASL PLAIN authentication failed: authentication failure Aug 21 12:57:54 garuda postfix/smtpd[24660]: warning: unknown[103.73.237.48]: SASL LOGIN authentication failed: authentication failure Aug 21 12:57:55 garuda postfix/smtpd[24660]: lost connection after AUTH from unknown[103.73.237.48] Aug 21 12:57:55 garuda postfix/smtpd[24660]: disconnect from unknown[103.73.237.48] ehlo=1 auth=0/3 commands=1/4 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.73.237.48	2019-08-22 02:59:43
112.85.42.89	attackbots	Aug 21 14:24:21 dcd-gentoo sshd[17552]: User root from 112.85.42.89 not allowed because none of user's groups are listed in AllowGroups Aug 21 14:24:23 dcd-gentoo sshd[17552]: error: PAM: Authentication failure for illegal user root from 112.85.42.89 Aug 21 14:24:21 dcd-gentoo sshd[17552]: User root from 112.85.42.89 not allowed because none of user's groups are listed in AllowGroups Aug 21 14:24:23 dcd-gentoo sshd[17552]: error: PAM: Authentication failure for illegal user root from 112.85.42.89 Aug 21 14:24:21 dcd-gentoo sshd[17552]: User root from 112.85.42.89 not allowed because none of user's groups are listed in AllowGroups Aug 21 14:24:23 dcd-gentoo sshd[17552]: error: PAM: Authentication failure for illegal user root from 112.85.42.89 Aug 21 14:24:23 dcd-gentoo sshd[17552]: Failed keyboard-interactive/pam for invalid user root from 112.85.42.89 port 53289 ssh2 ...	2019-08-22 02:45:30
130.61.121.78	attack	Aug 21 07:32:25 sachi sshd\[9758\]: Invalid user bill from 130.61.121.78 Aug 21 07:32:25 sachi sshd\[9758\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.121.78 Aug 21 07:32:28 sachi sshd\[9758\]: Failed password for invalid user bill from 130.61.121.78 port 59946 ssh2 Aug 21 07:36:30 sachi sshd\[10151\]: Invalid user dl from 130.61.121.78 Aug 21 07:36:30 sachi sshd\[10151\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.121.78	2019-08-22 02:32:31

最近上报的IP列表

73.246.58.243	51.54.209.255	62.133.100.12	81.128.92.182
159.173.4.182	50.62.115.187	118.75.198.247	64.61.93.196
154.65.99.96	19.169.203.167	75.175.85.149	61.53.212.184
65.8.99.69	51.159.98.95	104.230.255.128	122.234.16.208
213.161.109.52	62.106.131.159	141.183.8.10	88.49.92.99