1.109.194.23 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Korea

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): Korea Telecom

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.109.194.23
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21425
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.109.194.23.			IN	A

;; AUTHORITY SECTION:
.			2554	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061300 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 13 18:28:58 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 23.194.109.1.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 23.194.109.1.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
194.55.187.12	attackspambots	Jul 28 18:39:55 eventyay sshd[18659]: Failed password for root from 194.55.187.12 port 54384 ssh2 Jul 28 18:39:59 eventyay sshd[18661]: Failed password for root from 194.55.187.12 port 45200 ssh2 ...	2019-07-29 00:44:52
170.78.123.14	attackspambots	Jul 28 07:24:14 web1 postfix/smtpd[5383]: warning: unknown[170.78.123.14]: SASL PLAIN authentication failed: authentication failure ...	2019-07-29 00:33:24
114.236.79.42	attackspambots	Jul 28 13:07:43 vm8 sshd[18921]: Bad protocol version identification '' from 114.236.79.42 port 34156 Jul 28 13:07:47 vm8 sshd[18933]: Connection closed by 114.236.79.42 port 34628 [preauth] Jul 28 13:07:50 vm8 sshd[18956]: Connection closed by 114.236.79.42 port 35307 [preauth] Jul 28 13:07:53 vm8 sshd[18974]: Connection closed by 114.236.79.42 port 35946 [preauth] Jul 28 13:07:56 vm8 sshd[18994]: Connection closed by 114.236.79.42 port 36608 [preauth] Jul 28 13:08:03 vm8 sshd[19042]: Connection closed by 114.236.79.42 port 37980 [preauth] Jul 28 13:08:04 vm8 sshd[19017]: Connection closed by 114.236.79.42 port 37316 [preauth] Jul 28 13:08:06 vm8 sshd[19064]: Connection closed by 114.236.79.42 port 38945 [preauth] Jul 28 13:08:09 vm8 sshd[19084]: Connection closed by 114.236.79.42 port 39635 [preauth] Jul 28 13:08:12 vm8 sshd[19107]: Connection closed by 114.236.79.42 port 40319 [preauth] Jul 28 13:08:15 vm8 sshd[19121]: Connection closed by 114.236.79.42 port 41014 [p........ -------------------------------	2019-07-29 00:53:17
49.69.175.172	attackspam	20 attempts against mh-ssh on sky.magehost.pro	2019-07-29 00:53:44
109.169.89.246	attackbotsspam	Jul 28 09:29:48 h2022099 sshd[9286]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.169.89.246 user=r.r Jul 28 09:29:49 h2022099 sshd[9286]: Failed password for r.r from 109.169.89.246 port 43790 ssh2 Jul 28 09:29:49 h2022099 sshd[9286]: Received disconnect from 109.169.89.246: 11: Bye Bye [preauth] Jul 28 10:25:03 h2022099 sshd[17192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.169.89.246 user=r.r Jul 28 10:25:05 h2022099 sshd[17192]: Failed password for r.r from 109.169.89.246 port 43844 ssh2 Jul 28 10:25:05 h2022099 sshd[17192]: Received disconnect from 109.169.89.246: 11: Bye Bye [preauth] Jul 28 10:44:18 h2022099 sshd[19139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.169.89.246 user=r.r Jul 28 10:44:20 h2022099 sshd[19139]: Failed password for r.r from 109.169.89.246 port 60358 ssh2 Jul 28 10:44:20 h2022099 sshd[19139]: ........ -------------------------------	2019-07-29 00:49:19
52.63.48.248	attack	xmlrpc attack	2019-07-29 00:32:16
114.67.68.52	attackspambots	2019-07-28T13:29:57.153623abusebot-7.cloudsearch.cf sshd\[16192\]: Invalid user ys123456 from 114.67.68.52 port 41248	2019-07-29 00:50:50
94.66.56.250	attackspam	Jul 28 07:45:59 our-server-hostname postfix/smtpd[18322]: connect from unknown[94.66.56.250] Jul x@x Jul x@x Jul 28 07:46:06 our-server-hostname postfix/smtpd[18322]: lost connection after DATA from unknown[94.66.56.250] Jul 28 07:46:06 our-server-hostname postfix/smtpd[18322]: disconnect from unknown[94.66.56.250] Jul 28 08:18:14 our-server-hostname postfix/smtpd[11331]: connect from unknown[94.66.56.250] Jul x@x Jul x@x Jul 28 08:18:27 our-server-hostname postfix/smtpd[11331]: lost connection after DATA from unknown[94.66.56.250] Jul 28 08:18:27 our-server-hostname postfix/smtpd[11331]: disconnect from unknown[94.66.56.250] Jul 28 20:37:41 our-server-hostname postfix/smtpd[12648]: connect from unknown[94.66.56.250] Jul x@x Jul x@x Jul 28 20:37:47 our-server-hostname postfix/smtpd[12648]: lost connection after DATA from unknown[94.66.56.250] Jul 28 20:37:47 our-server-hostname postfix/smtpd[12648]: disconnect from unknown[94.66.56.250] Jul 28 20:42:44 our-server-hostna........ -------------------------------	2019-07-29 01:01:02
27.50.165.199	attack	Looking for resource vulnerabilities	2019-07-29 00:49:58
93.61.134.60	attack	Jul 28 16:04:28 OPSO sshd\[28171\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.61.134.60 user=root Jul 28 16:04:30 OPSO sshd\[28171\]: Failed password for root from 93.61.134.60 port 59360 ssh2 Jul 28 16:09:06 OPSO sshd\[28855\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.61.134.60 user=root Jul 28 16:09:08 OPSO sshd\[28855\]: Failed password for root from 93.61.134.60 port 52330 ssh2 Jul 28 16:13:40 OPSO sshd\[29261\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.61.134.60 user=root	2019-07-29 01:03:47
104.130.137.83	attack	Jul 28 18:22:19 localhost sshd\[3097\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.130.137.83 user=root Jul 28 18:22:22 localhost sshd\[3097\]: Failed password for root from 104.130.137.83 port 32974 ssh2 Jul 28 18:26:55 localhost sshd\[3512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.130.137.83 user=root	2019-07-29 00:31:28
51.254.135.50	attack	fail2ban honeypot	2019-07-28 23:52:34
193.29.13.20	attack	firewall-block, port(s): 7889/tcp	2019-07-29 00:02:04
77.42.111.59	attackbots	Port Scan detected from 77.42.111.59 (IR/Iran/-). 4 hits in the last 35 seconds	2019-07-28 23:54:31
128.199.222.176	attackbots	fail2ban honeypot	2019-07-29 00:39:18

最近上报的IP列表

185.93.2.76	89.53.62.150	77.182.105.239	171.237.106.72
117.25.46.123	179.172.121.18	186.23.217.213	158.241.20.82
103.87.143.4	39.152.33.49	223.179.91.121	149.203.186.136
89.208.9.104	165.91.161.229	35.103.61.83	205.92.95.57
223.199.255.114	92.213.69.236	40.69.98.84	37.214.172.30