109.103.157.234

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Romania

运营商(isp): Telekom Romania Communication S.A

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	port scan and connect, tcp 23 (telnet)	2020-03-27 06:56:19

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.103.157.234
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57715
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;109.103.157.234.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051400 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue May 14 15:00:27 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 234.157.103.109.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 234.157.103.109.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
138.68.90.158	attackspam	Sep 20 18:15:20 auw2 sshd\[7041\]: Invalid user bert from 138.68.90.158 Sep 20 18:15:20 auw2 sshd\[7041\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.pay2me.pl Sep 20 18:15:22 auw2 sshd\[7041\]: Failed password for invalid user bert from 138.68.90.158 port 59522 ssh2 Sep 20 18:18:58 auw2 sshd\[7352\]: Invalid user steamserver from 138.68.90.158 Sep 20 18:18:58 auw2 sshd\[7352\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.pay2me.pl	2019-09-21 17:20:55
120.52.152.18	attackspam	Port scan attempt detected by AWS-CCS, CTS, India	2019-09-21 17:15:01
145.239.0.81	attack	\[2019-09-21 10:48:32\] NOTICE\[29653\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '\' failed for '145.239.0.81:50184' $callid: 77174822-1309346008-1391373692$ - Failed to authenticate \[2019-09-21 10:48:32\] SECURITY\[1715\] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2019-09-21T10:48:32.153+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="\",SessionID="77174822-1309346008-1391373692",LocalAddress="IPV4/UDP/188.40.118.248/5060",RemoteAddress="IPV4/UDP/145.239.0.81/50184",Challenge="1569055712/c63deb322dea58b9ab7889fac6d36200",Response="531c392b7364222530ea16c7095ea3e1",ExpectedResponse="" \[2019-09-21 10:48:32\] NOTICE\[7412\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '\' failed for '145.239.0.81:50184' $callid: 77174822-1309346008-1391373692$ - Failed to authenticate \[2019-09-21 10:48:32\] SECURITY\[1715\] res_security_log.c: SecurityEvent="ChallengeResponseFail	2019-09-21 16:53:16
117.6.160.51	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 02:51:46,793 INFO [amun_request_handler] PortScan Detected on Port: 445 (117.6.160.51)	2019-09-21 17:26:33
31.14.142.109	attackbots	$f2bV_matches	2019-09-21 16:56:51
128.199.230.56	attackspam	Sep 21 11:03:00 pkdns2 sshd\[34453\]: Invalid user ubuntu from 128.199.230.56Sep 21 11:03:01 pkdns2 sshd\[34453\]: Failed password for invalid user ubuntu from 128.199.230.56 port 37048 ssh2Sep 21 11:07:59 pkdns2 sshd\[34657\]: Invalid user ecqadmin from 128.199.230.56Sep 21 11:08:01 pkdns2 sshd\[34657\]: Failed password for invalid user ecqadmin from 128.199.230.56 port 57654 ssh2Sep 21 11:12:52 pkdns2 sshd\[34868\]: Invalid user victoire from 128.199.230.56Sep 21 11:12:54 pkdns2 sshd\[34868\]: Failed password for invalid user victoire from 128.199.230.56 port 50025 ssh2 ...	2019-09-21 17:10:03
54.36.148.223	attack	Automatic report - Banned IP Access	2019-09-21 17:12:40
209.97.169.136	attackbotsspam	Invalid user mall from 209.97.169.136 port 43870	2019-09-21 17:33:17
49.88.112.54	attackbotsspam	web-1 [ssh] SSH Attack	2019-09-21 17:29:53
128.199.253.133	attackbots	Invalid user mercedes from 128.199.253.133 port 53061	2019-09-21 17:26:51
118.127.10.152	attack	Sep 21 08:56:11 mail sshd\[10422\]: Invalid user nuan from 118.127.10.152 port 44731 Sep 21 08:56:11 mail sshd\[10422\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.127.10.152 Sep 21 08:56:13 mail sshd\[10422\]: Failed password for invalid user nuan from 118.127.10.152 port 44731 ssh2 Sep 21 09:01:45 mail sshd\[11527\]: Invalid user notes from 118.127.10.152 port 37782 Sep 21 09:01:45 mail sshd\[11527\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.127.10.152	2019-09-21 16:54:11
159.192.139.106	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 03:10:23,206 INFO [shellcode_manager] (159.192.139.106) no match, writing hexdump (246e0795beca36c923f25aa0a860126a :1864263) - MS17010 (EternalBlue)	2019-09-21 17:02:06
141.255.152.2	attackbots	SMB Server BruteForce Attack	2019-09-21 16:53:45
106.13.142.212	attackspambots	Sep 21 06:54:44 MK-Soft-VM6 sshd[2778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.142.212 Sep 21 06:54:47 MK-Soft-VM6 sshd[2778]: Failed password for invalid user administrator from 106.13.142.212 port 57982 ssh2 ...	2019-09-21 17:41:06
92.222.69.186	attackbotsspam	$f2bV_matches	2019-09-21 17:10:32

最近上报的IP列表

169.128.38.247	95.244.239.9	89.218.204.194	27.124.18.72
113.63.188.144	5.180.33.107	195.158.2.214	199.249.230.120
81.188.29.54	82.114.85.109	66.249.64.70	62.210.116.201
51.68.189.227	94.155.221.133	89.46.106.94	180.232.99.46
119.29.203.106	73.29.110.75	14.160.34.214	175.136.241.161