必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.13.149.109
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44106
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;54.13.149.109.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020300 1800 900 604800 86400

;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 16:18:14 CST 2025
;; MSG SIZE  rcvd: 106
HOST信息:
Host 109.149.13.54.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 109.149.13.54.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
180.117.134.186 attackspam
Aug 21 05:47:39 web1 sshd\[23810\]: Invalid user admin from 180.117.134.186
Aug 21 05:47:39 web1 sshd\[23810\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.117.134.186
Aug 21 05:47:41 web1 sshd\[23810\]: Failed password for invalid user admin from 180.117.134.186 port 54324 ssh2
Aug 21 05:47:44 web1 sshd\[23810\]: Failed password for invalid user admin from 180.117.134.186 port 54324 ssh2
Aug 21 05:47:45 web1 sshd\[23810\]: Failed password for invalid user admin from 180.117.134.186 port 54324 ssh2
2019-08-22 02:53:22
92.100.59.125 attack
Fail2Ban Ban Triggered
2019-08-22 02:34:05
207.154.243.255 attack
$f2bV_matches
2019-08-22 02:58:27
101.177.139.44 attackbotsspam
port scan and connect, tcp 23 (telnet)
2019-08-22 02:42:05
223.24.94.99 attackspambots
2019-08-21 x@x
2019-08-21 x@x
2019-08-21 x@x
2019-08-21 x@x
2019-08-21 13:53:41 dovecot_plain authenticator failed for ppp-223-24-94-99.revip6.asianet.co.th (ACER-PC) [223.24.94.99]:16925: 535 Incorrect authentication data (set_id=tina)
2019-08-21 13:53:48 dovecot_login authenticator failed for ppp-223-24-94-99.revip6.asianet.co.th (ACER-PC) [223.24.94.99]:16925: 535 Incorrect authentication data (set_id=tina)
2019-08-21 13:53:55 dovecot_plain authenticator failed for ppp-223-24-94-99.revip6.asianet.co.th (ACER-PC) [223.24.94.99]:23151: 535 Incorrect authentication data (set_id=tina)
2019-08-21 13:53:58 dovecot_login authenticator failed for ppp-223-24-94-99.revip6.asianet.co.th (ACER-PC) [223.24.94.99]:23151: 535 Incorrect authentication data (set_id=tina)
2019-08-21 x@x
2019-08-21 x@x
2019-08-21 x@x
2019-08-21 x@x
2019-08-21 13:54:12 dovecot_plain authenticator failed for ppp-223-24-94-99.revip6.asianet.co.th (ACER-PC) [223.24.94.99]:63836: 535 Incorrect authentication........
------------------------------
2019-08-22 02:27:16
79.137.72.171 attackbotsspam
Aug 21 20:41:54 SilenceServices sshd[5880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.72.171
Aug 21 20:41:56 SilenceServices sshd[5880]: Failed password for invalid user cornelia from 79.137.72.171 port 57640 ssh2
Aug 21 20:46:27 SilenceServices sshd[9798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.72.171
2019-08-22 02:54:36
113.177.120.101 attackbotsspam
Aug 21 12:57:55 mxgate1 postfix/postscreen[15099]: CONNECT from [113.177.120.101]:21895 to [176.31.12.44]:25
Aug 21 12:57:55 mxgate1 postfix/dnsblog[15101]: addr 113.177.120.101 listed by domain zen.spamhaus.org as 127.0.0.11
Aug 21 12:57:55 mxgate1 postfix/dnsblog[15101]: addr 113.177.120.101 listed by domain zen.spamhaus.org as 127.0.0.4
Aug 21 12:57:55 mxgate1 postfix/dnsblog[15102]: addr 113.177.120.101 listed by domain cbl.abuseat.org as 127.0.0.2
Aug 21 12:57:55 mxgate1 postfix/dnsblog[15100]: addr 113.177.120.101 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2
Aug 21 12:57:55 mxgate1 postfix/dnsblog[15110]: addr 113.177.120.101 listed by domain b.barracudacentral.org as 127.0.0.2
Aug 21 12:58:01 mxgate1 postfix/postscreen[15099]: DNSBL rank 5 for [113.177.120.101]:21895
Aug x@x
Aug 21 12:58:02 mxgate1 postfix/postscreen[15099]: HANGUP after 0.77 from [113.177.120.101]:21895 in tests after SMTP handshake
Aug 21 12:58:02 mxgate1 postfix/postscreen[15099]: DISCONN........
-------------------------------
2019-08-22 03:02:52
178.128.99.193 attackbots
Aug 21 19:59:13 ArkNodeAT sshd\[12626\]: Invalid user www from 178.128.99.193
Aug 21 19:59:13 ArkNodeAT sshd\[12626\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.99.193
Aug 21 19:59:15 ArkNodeAT sshd\[12626\]: Failed password for invalid user www from 178.128.99.193 port 53784 ssh2
2019-08-22 02:19:31
5.196.7.123 attack
Aug 21 06:29:32 tdfoods sshd\[19554\]: Invalid user ssh from 5.196.7.123
Aug 21 06:29:32 tdfoods sshd\[19554\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.ip-5-196-7.eu
Aug 21 06:29:34 tdfoods sshd\[19554\]: Failed password for invalid user ssh from 5.196.7.123 port 41390 ssh2
Aug 21 06:33:39 tdfoods sshd\[19887\]: Invalid user san from 5.196.7.123
Aug 21 06:33:39 tdfoods sshd\[19887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.ip-5-196-7.eu
2019-08-22 02:34:31
181.196.1.44 attack
Aug 21 12:53:15 econome sshd[20556]: reveeclipse mapping checking getaddrinfo for 44.1.196.181.static.anycast.cnt-grms.ec [181.196.1.44] failed - POSSIBLE BREAK-IN ATTEMPT!
Aug 21 12:53:15 econome sshd[20556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.196.1.44  user=r.r
Aug 21 12:53:17 econome sshd[20556]: Failed password for r.r from 181.196.1.44 port 52440 ssh2
Aug 21 12:53:19 econome sshd[20556]: Failed password for r.r from 181.196.1.44 port 52440 ssh2
Aug 21 12:53:21 econome sshd[20556]: Failed password for r.r from 181.196.1.44 port 52440 ssh2
Aug 21 12:53:24 econome sshd[20556]: Failed password for r.r from 181.196.1.44 port 52440 ssh2
Aug 21 12:53:26 econome sshd[20556]: Failed password for r.r from 181.196.1.44 port 52440 ssh2
Aug 21 12:53:29 econome sshd[20556]: Failed password for r.r from 181.196.1.44 port 52440 ssh2
Aug 21 12:53:29 econome sshd[20556]: Disconnecting: Too many authentication failures for r.r ........
-------------------------------
2019-08-22 02:24:11
45.227.253.114 attackbotsspam
Aug 21 20:18:48 relay postfix/smtpd\[3893\]: warning: unknown\[45.227.253.114\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Aug 21 20:18:56 relay postfix/smtpd\[24811\]: warning: unknown\[45.227.253.114\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Aug 21 20:19:41 relay postfix/smtpd\[5087\]: warning: unknown\[45.227.253.114\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Aug 21 20:19:49 relay postfix/smtpd\[28253\]: warning: unknown\[45.227.253.114\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Aug 21 20:31:39 relay postfix/smtpd\[3893\]: warning: unknown\[45.227.253.114\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
...
2019-08-22 02:33:16
79.126.65.110 attackspam
Unauthorised access (Aug 21) SRC=79.126.65.110 LEN=52 TTL=115 ID=10792 DF TCP DPT=445 WINDOW=8192 SYN
2019-08-22 03:03:40
103.73.237.48 attack
Aug 21 12:57:49 garuda postfix/smtpd[24660]: connect from unknown[103.73.237.48]
Aug 21 12:57:53 garuda postfix/smtpd[24660]: warning: unknown[103.73.237.48]: SASL CRAM-MD5 authentication failed: authentication failure
Aug 21 12:57:53 garuda postfix/smtpd[24660]: warning: unknown[103.73.237.48]: SASL PLAIN authentication failed: authentication failure
Aug 21 12:57:54 garuda postfix/smtpd[24660]: warning: unknown[103.73.237.48]: SASL LOGIN authentication failed: authentication failure
Aug 21 12:57:55 garuda postfix/smtpd[24660]: lost connection after AUTH from unknown[103.73.237.48]
Aug 21 12:57:55 garuda postfix/smtpd[24660]: disconnect from unknown[103.73.237.48] ehlo=1 auth=0/3 commands=1/4


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=103.73.237.48
2019-08-22 02:59:43
112.85.42.89 attackbots
Aug 21 14:24:21 dcd-gentoo sshd[17552]: User root from 112.85.42.89 not allowed because none of user's groups are listed in AllowGroups
Aug 21 14:24:23 dcd-gentoo sshd[17552]: error: PAM: Authentication failure for illegal user root from 112.85.42.89
Aug 21 14:24:21 dcd-gentoo sshd[17552]: User root from 112.85.42.89 not allowed because none of user's groups are listed in AllowGroups
Aug 21 14:24:23 dcd-gentoo sshd[17552]: error: PAM: Authentication failure for illegal user root from 112.85.42.89
Aug 21 14:24:21 dcd-gentoo sshd[17552]: User root from 112.85.42.89 not allowed because none of user's groups are listed in AllowGroups
Aug 21 14:24:23 dcd-gentoo sshd[17552]: error: PAM: Authentication failure for illegal user root from 112.85.42.89
Aug 21 14:24:23 dcd-gentoo sshd[17552]: Failed keyboard-interactive/pam for invalid user root from 112.85.42.89 port 53289 ssh2
...
2019-08-22 02:45:30
130.61.121.78 attack
Aug 21 07:32:25 sachi sshd\[9758\]: Invalid user bill from 130.61.121.78
Aug 21 07:32:25 sachi sshd\[9758\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.121.78
Aug 21 07:32:28 sachi sshd\[9758\]: Failed password for invalid user bill from 130.61.121.78 port 59946 ssh2
Aug 21 07:36:30 sachi sshd\[10151\]: Invalid user dl from 130.61.121.78
Aug 21 07:36:30 sachi sshd\[10151\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.121.78
2019-08-22 02:32:31

最近上报的IP列表

73.246.58.243 51.54.209.255 62.133.100.12 81.128.92.182
159.173.4.182 50.62.115.187 118.75.198.247 64.61.93.196
154.65.99.96 19.169.203.167 75.175.85.149 61.53.212.184
65.8.99.69 51.159.98.95 104.230.255.128 122.234.16.208
213.161.109.52 62.106.131.159 141.183.8.10 88.49.92.99