109.102.228.130

基本信息:

城市(city): Iasi

省份(region): Judetul Iasi

国家(country): Romania

运营商(isp): Telekom Romania Communication S.A

主机名(hostname): unknown

机构(organization): Telekom Romania Communication S.A

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt from IP address 109.102.228.130	2019-10-11 23:00:31

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.102.228.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56125
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;109.102.228.130.		IN	A

;; AUTHORITY SECTION:
.			1800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061200 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 13 00:14:01 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 130.228.102.109.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 130.228.102.109.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
170.130.212.178	attack	2020-09-19 11:58:36.979043-0500 localhost smtpd[25603]: NOQUEUE: reject: RCPT from unknown[170.130.212.178]: 554 5.7.1 Service unavailable; Client host [170.130.212.178] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<00ea91a1.powerhigh.co>	2020-09-20 04:30:14
195.206.107.147	attack	Sep 19 14:03:15 ws22vmsma01 sshd[130349]: Failed password for root from 195.206.107.147 port 60920 ssh2 Sep 19 14:03:18 ws22vmsma01 sshd[130349]: Failed password for root from 195.206.107.147 port 60920 ssh2 ...	2020-09-20 04:15:58
116.27.175.103	attackspambots	[portscan] Port scan	2020-09-20 04:02:30
211.253.133.48	attackspam	Sep 19 10:31:37 dignus sshd[31993]: Failed password for root from 211.253.133.48 port 54383 ssh2 Sep 19 10:32:37 dignus sshd[32125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.253.133.48 user=ubuntu Sep 19 10:32:39 dignus sshd[32125]: Failed password for ubuntu from 211.253.133.48 port 33548 ssh2 Sep 19 10:33:49 dignus sshd[32305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.253.133.48 user=root Sep 19 10:33:51 dignus sshd[32305]: Failed password for root from 211.253.133.48 port 40955 ssh2 ...	2020-09-20 04:10:02
81.68.112.145	attackbots	2020-09-19T20:02:34.644247shield sshd\[21472\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.112.145 user=root 2020-09-19T20:02:36.489230shield sshd\[21472\]: Failed password for root from 81.68.112.145 port 56824 ssh2 2020-09-19T20:06:27.333882shield sshd\[21948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.112.145 user=root 2020-09-19T20:06:29.499936shield sshd\[21948\]: Failed password for root from 81.68.112.145 port 44834 ssh2 2020-09-19T20:10:12.813740shield sshd\[22386\]: Invalid user Admin from 81.68.112.145 port 60796	2020-09-20 04:26:44
95.142.121.18	attackspam	slow and persistent scanner	2020-09-20 04:11:03
198.23.148.137	attack	Sep 19 21:07:39 raspberrypi sshd[3746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.23.148.137 Sep 19 21:07:41 raspberrypi sshd[3746]: Failed password for invalid user mysql from 198.23.148.137 port 54592 ssh2 ...	2020-09-20 04:08:37
161.35.2.88	attackbotsspam	2020-09-19T12:24:24.6029221495-001 sshd[23619]: Invalid user admin from 161.35.2.88 port 47906 2020-09-19T12:24:24.6059921495-001 sshd[23619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.2.88 2020-09-19T12:24:24.6029221495-001 sshd[23619]: Invalid user admin from 161.35.2.88 port 47906 2020-09-19T12:24:26.0905801495-001 sshd[23619]: Failed password for invalid user admin from 161.35.2.88 port 47906 ssh2 2020-09-19T12:40:57.5158381495-001 sshd[24534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.2.88 user=root 2020-09-19T12:40:59.6531561495-001 sshd[24534]: Failed password for root from 161.35.2.88 port 49364 ssh2 ...	2020-09-20 04:00:16
67.205.143.88	attackbots	67.205.143.88 - - [19/Sep/2020:20:38:09 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 67.205.143.88 - - [19/Sep/2020:20:38:11 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 67.205.143.88 - - [19/Sep/2020:20:38:13 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-20 04:04:54
222.186.173.238	attack	2020-09-19T23:09:22.456072afi-git.jinr.ru sshd[5607]: Failed password for root from 222.186.173.238 port 15214 ssh2 2020-09-19T23:09:25.386503afi-git.jinr.ru sshd[5607]: Failed password for root from 222.186.173.238 port 15214 ssh2 2020-09-19T23:09:28.061442afi-git.jinr.ru sshd[5607]: Failed password for root from 222.186.173.238 port 15214 ssh2 2020-09-19T23:09:28.061587afi-git.jinr.ru sshd[5607]: error: maximum authentication attempts exceeded for root from 222.186.173.238 port 15214 ssh2 [preauth] 2020-09-19T23:09:28.061601afi-git.jinr.ru sshd[5607]: Disconnecting: Too many authentication failures [preauth] ...	2020-09-20 04:09:38
101.133.174.69	attackbots	101.133.174.69 - - [19/Sep/2020:19:41:31 +0100] "POST /wp-login.php HTTP/1.1" 200 2254 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 101.133.174.69 - - [19/Sep/2020:19:41:34 +0100] "POST /wp-login.php HTTP/1.1" 200 2285 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 101.133.174.69 - - [19/Sep/2020:19:41:37 +0100] "POST /wp-login.php HTTP/1.1" 200 2282 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-20 04:26:05
165.22.53.207	attackspam	2020-09-19T11:58:50.350495server.mjenks.net sshd[2039255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.53.207 2020-09-19T11:58:50.343239server.mjenks.net sshd[2039255]: Invalid user ts3server1 from 165.22.53.207 port 10292 2020-09-19T11:58:52.126173server.mjenks.net sshd[2039255]: Failed password for invalid user ts3server1 from 165.22.53.207 port 10292 ssh2 2020-09-19T12:03:09.594758server.mjenks.net sshd[2039744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.53.207 user=root 2020-09-19T12:03:11.258877server.mjenks.net sshd[2039744]: Failed password for root from 165.22.53.207 port 21710 ssh2 ...	2020-09-20 04:22:03
210.153.161.138	attack	Automatic report - Port Scan Attack	2020-09-20 04:27:15
54.37.159.45	attackbots	Sep 19 18:33:11 plex-server sshd[2235648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.159.45 Sep 19 18:33:11 plex-server sshd[2235648]: Invalid user uftp from 54.37.159.45 port 33570 Sep 19 18:33:14 plex-server sshd[2235648]: Failed password for invalid user uftp from 54.37.159.45 port 33570 ssh2 Sep 19 18:36:34 plex-server sshd[2236985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.159.45 user=root Sep 19 18:36:36 plex-server sshd[2236985]: Failed password for root from 54.37.159.45 port 33590 ssh2 ...	2020-09-20 04:06:04
177.100.244.79	attackbotsspam	2020-09-19 11:57:35.885403-0500 localhost smtpd[24990]: NOQUEUE: reject: RCPT from unknown[177.100.244.79]: 554 5.7.1 Service unavailable; Client host [177.100.244.79] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/177.100.244.79; from= to= proto=ESMTP helo=	2020-09-20 04:29:55

最近上报的IP列表

5.101.244.92	211.250.86.21	111.250.179.70	69.237.234.63
24.20.43.120	184.73.111.212	187.185.255.220	225.198.173.131
185.146.241.155	187.189.148.24	212.100.91.11	119.31.209.124
223.159.84.230	51.81.7.103	71.6.232.2	128.227.173.52
87.179.170.222	201.100.91.177	160.89.203.23	37.1.23.130