109.103.157.234

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Romania

运营商(isp): Telekom Romania Communication S.A

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	port scan and connect, tcp 23 (telnet)	2020-03-27 06:56:19

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.103.157.234
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57715
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;109.103.157.234.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051400 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue May 14 15:00:27 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 234.157.103.109.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 234.157.103.109.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
198.50.179.115	attack	Too many connections or unauthorized access detected from Arctic banned ip	2019-12-14 14:22:11
45.143.220.103	attackbots	firewall-block, port(s): 5060/udp	2019-12-14 14:44:14
202.105.96.91	attack	Dec 14 07:29:59 MK-Soft-VM3 sshd[2858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.105.96.91 Dec 14 07:30:01 MK-Soft-VM3 sshd[2858]: Failed password for invalid user richardo from 202.105.96.91 port 38172 ssh2 ...	2019-12-14 14:41:01
163.172.63.244	attack	Lines containing failures of 163.172.63.244 Dec 12 20:29:21 mailserver sshd[16507]: Invalid user postgres from 163.172.63.244 port 44688 Dec 12 20:29:21 mailserver sshd[16507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.63.244 Dec 12 20:29:24 mailserver sshd[16507]: Failed password for invalid user postgres from 163.172.63.244 port 44688 ssh2 Dec 12 20:29:24 mailserver sshd[16507]: Received disconnect from 163.172.63.244 port 44688:11: Bye Bye [preauth] Dec 12 20:29:24 mailserver sshd[16507]: Disconnected from invalid user postgres 163.172.63.244 port 44688 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=163.172.63.244	2019-12-14 13:55:37
77.247.109.82	attackbots	Dec 14 06:57:57 debian-2gb-nbg1-2 kernel: \[24584606.304390\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=77.247.109.82 DST=195.201.40.59 LEN=438 TOS=0x00 PREC=0x00 TTL=54 ID=0 DF PROTO=UDP SPT=5082 DPT=5060 LEN=418	2019-12-14 14:00:06
1.53.179.124	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 14-12-2019 04:55:15.	2019-12-14 14:04:13
143.205.174.219	attackbots	Dec 14 07:15:59 OPSO sshd\[13180\]: Invalid user uucp from 143.205.174.219 port 55273 Dec 14 07:15:59 OPSO sshd\[13180\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.205.174.219 Dec 14 07:16:01 OPSO sshd\[13180\]: Failed password for invalid user uucp from 143.205.174.219 port 55273 ssh2 Dec 14 07:25:00 OPSO sshd\[14435\]: Invalid user organisation from 143.205.174.219 port 60437 Dec 14 07:25:00 OPSO sshd\[14435\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.205.174.219	2019-12-14 14:26:58
116.110.80.6	attackbotsspam	2019-12-14T06:24:14.556516talon sshd[2294464]: Invalid user ftpuser from 116.110.80.6 port 57502 2019-12-14T06:24:29.754989talon sshd[2294472]: Invalid user system from 116.110.80.6 port 36708 2019-12-14T06:24:31.593823talon sshd[2294474]: Invalid user admin from 116.110.80.6 port 37854 2019-12-14T06:24:39.694830talon sshd[2294478]: Invalid user test from 116.110.80.6 port 41564 2019-12-14T06:24:42.934040talon sshd[2294480]: Invalid user PlcmSpIp from 116.110.80.6 port 63948	2019-12-14 14:28:48
180.168.156.212	attackspam	2019-12-14T05:45:11.777396shield sshd\[4096\]: Invalid user pub from 180.168.156.212 port 56034 2019-12-14T05:45:11.781866shield sshd\[4096\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.156.212 2019-12-14T05:45:14.143692shield sshd\[4096\]: Failed password for invalid user pub from 180.168.156.212 port 56034 ssh2 2019-12-14T05:51:32.384729shield sshd\[5693\]: Invalid user lukacsko from 180.168.156.212 port 63991 2019-12-14T05:51:32.389116shield sshd\[5693\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.156.212	2019-12-14 14:11:26
137.74.5.149	attack	Invalid user thuman from 137.74.5.149 port 55958	2019-12-14 14:04:38
146.185.130.101	attackbotsspam	Invalid user ducktsai from 146.185.130.101 port 38374	2019-12-14 14:01:22
131.161.15.76	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-14 13:59:44
115.77.187.18	attackspam	Dec 14 06:34:26 h2177944 sshd\[29694\]: Invalid user yoyo from 115.77.187.18 port 38166 Dec 14 06:34:26 h2177944 sshd\[29694\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.77.187.18 Dec 14 06:34:28 h2177944 sshd\[29694\]: Failed password for invalid user yoyo from 115.77.187.18 port 38166 ssh2 Dec 14 06:41:54 h2177944 sshd\[29949\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.77.187.18 user=root ...	2019-12-14 13:58:19
195.158.8.206	attackbots	Dec 14 07:18:08 OPSO sshd\[13432\]: Invalid user delece from 195.158.8.206 port 56484 Dec 14 07:18:08 OPSO sshd\[13432\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.158.8.206 Dec 14 07:18:11 OPSO sshd\[13432\]: Failed password for invalid user delece from 195.158.8.206 port 56484 ssh2 Dec 14 07:24:05 OPSO sshd\[14290\]: Invalid user za from 195.158.8.206 port 35978 Dec 14 07:24:05 OPSO sshd\[14290\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.158.8.206	2019-12-14 14:24:43
51.38.153.207	attackbots	Invalid user ireneusz from 51.38.153.207 port 33036	2019-12-14 14:07:31

最近上报的IP列表

169.128.38.247	95.244.239.9	89.218.204.194	27.124.18.72
113.63.188.144	5.180.33.107	195.158.2.214	199.249.230.120
81.188.29.54	82.114.85.109	66.249.64.70	62.210.116.201
51.68.189.227	94.155.221.133	89.46.106.94	180.232.99.46
119.29.203.106	73.29.110.75	14.160.34.214	175.136.241.161