109.127.132.80

基本信息:

城市(city): Shchigry

省份(region): Kurskaya Oblast'

国家(country): Russia

运营商(isp): Rostelecom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
109.127.132.251	attackspambots	Unauthorized connection attempt detected from IP address 109.127.132.251 to port 445 [T]	2020-05-09 03:37:24

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.127.132.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62893
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;109.127.132.80.			IN	A

;; AUTHORITY SECTION:
.			240	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041602 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 17 05:39:25 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

80.132.127.109.in-addr.arpa domain name pointer 109-127-132-80.dyn.adsl.kursknet.ru.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
80.132.127.109.in-addr.arpa	name = 109-127-132-80.dyn.adsl.kursknet.ru.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
93.43.76.70	attackspambots	Nov 4 21:55:12 server2 sshd[17722]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-43-76-70.ip91.fastwebnet.hostname user=r.r Nov 4 21:55:14 server2 sshd[17722]: Failed password for r.r from 93.43.76.70 port 45252 ssh2 Nov 4 21:55:14 server2 sshd[17722]: Received disconnect from 93.43.76.70: 11: Bye Bye [preauth] Nov 4 22:25:22 server2 sshd[20948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-43-76-70.ip91.fastwebnet.hostname user=r.r Nov 4 22:25:24 server2 sshd[20948]: Failed password for r.r from 93.43.76.70 port 45968 ssh2 Nov 4 22:25:24 server2 sshd[20948]: Received disconnect from 93.43.76.70: 11: Bye Bye [preauth] Nov 4 22:43:53 server2 sshd[22278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-43-76-70.ip91.fastwebnet.hostname user=r.r Nov 4 22:43:55 server2 sshd[22278]: Failed password for r.r from 93.43.76.70 port 380........ -------------------------------	2019-11-05 19:20:58
188.166.159.148	attackspambots	Nov 5 09:24:31 server sshd\[26407\]: User root from 188.166.159.148 not allowed because listed in DenyUsers Nov 5 09:24:31 server sshd\[26407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.159.148 user=root Nov 5 09:24:33 server sshd\[26407\]: Failed password for invalid user root from 188.166.159.148 port 49325 ssh2 Nov 5 09:28:10 server sshd\[32748\]: Invalid user reception from 188.166.159.148 port 40050 Nov 5 09:28:10 server sshd\[32748\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.159.148	2019-11-05 19:51:46
118.97.140.237	attack	(sshd) Failed SSH login from 118.97.140.237 (ID/Indonesia/Jakarta/Jakarta/-/[AS17974 PT Telekomunikasi Indonesia]): 1 in the last 3600 secs	2019-11-05 19:18:35
117.0.39.22	attackbots	Unauthorised access (Nov 5) SRC=117.0.39.22 LEN=52 TTL=106 ID=10762 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-05 19:41:33
77.42.124.246	attackbotsspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-11-05 19:41:54
222.186.175.148	attack	Triggered by Fail2Ban at Vostok web server	2019-11-05 19:42:35
189.79.97.62	attackbotsspam	Nov 4 07:04:58 server2101 sshd[12548]: Invalid user 0p9o8i7u6y from 189.79.97.62 port 52264 Nov 4 07:04:58 server2101 sshd[12548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.79.97.62 Nov 4 07:05:00 server2101 sshd[12548]: Failed password for invalid user 0p9o8i7u6y from 189.79.97.62 port 52264 ssh2 Nov 4 07:05:00 server2101 sshd[12548]: Received disconnect from 189.79.97.62 port 52264:11: Bye Bye [preauth] Nov 4 07:05:00 server2101 sshd[12548]: Disconnected from 189.79.97.62 port 52264 [preauth] Nov 4 07:10:15 server2101 sshd[12799]: Invalid user pisek from 189.79.97.62 port 60640 Nov 4 07:10:15 server2101 sshd[12799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.79.97.62 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=189.79.97.62	2019-11-05 19:31:56
103.194.242.254	attack	postfix (unknown user, SPF fail or relay access denied)	2019-11-05 19:20:42
106.248.41.245	attackspam	Nov 5 05:19:10 firewall sshd[9168]: Invalid user oe0bji5m from 106.248.41.245 Nov 5 05:19:11 firewall sshd[9168]: Failed password for invalid user oe0bji5m from 106.248.41.245 port 59524 ssh2 Nov 5 05:23:23 firewall sshd[9297]: Invalid user changeme from 106.248.41.245 ...	2019-11-05 19:19:38
198.23.251.238	attackspam	Lines containing failures of 198.23.251.238 Nov 5 03:53:45 jarvis sshd[25851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.23.251.238 user=r.r Nov 5 03:53:47 jarvis sshd[25851]: Failed password for r.r from 198.23.251.238 port 46351 ssh2 Nov 5 03:53:48 jarvis sshd[25851]: Received disconnect from 198.23.251.238 port 46351:11: Bye Bye [preauth] Nov 5 03:53:48 jarvis sshd[25851]: Disconnected from authenticating user r.r 198.23.251.238 port 46351 [preauth] Nov 5 04:13:11 jarvis sshd[30023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.23.251.238 user=r.r Nov 5 04:13:12 jarvis sshd[30023]: Failed password for r.r from 198.23.251.238 port 45980 ssh2 Nov 5 04:13:13 jarvis sshd[30023]: Received disconnect from 198.23.251.238 port 45980:11: Bye Bye [preauth] Nov 5 04:13:13 jarvis sshd[30023]: Disconnected from authenticating user r.r 198.23.251.238 port 45980 [preauth] Nov ........ ------------------------------	2019-11-05 19:17:44
59.56.74.165	attackbots	Nov 5 09:17:53 server sshd\[12397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.56.74.165 user=root Nov 5 09:17:55 server sshd\[12397\]: Failed password for root from 59.56.74.165 port 36751 ssh2 Nov 5 09:24:10 server sshd\[13877\]: Invalid user snw from 59.56.74.165 Nov 5 09:24:10 server sshd\[13877\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.56.74.165 Nov 5 09:24:12 server sshd\[13877\]: Failed password for invalid user snw from 59.56.74.165 port 59347 ssh2 ...	2019-11-05 19:15:49
49.231.148.149	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2019-11-05 19:28:16
189.213.42.184	attackbots	Automatic report - Port Scan Attack	2019-11-05 19:51:19
59.63.169.50	attackspambots	Nov 5 10:35:28 MK-Soft-VM5 sshd[5418]: Failed password for root from 59.63.169.50 port 50196 ssh2 ...	2019-11-05 19:27:40
132.145.170.174	attackbotsspam	Nov 5 16:26:04 itv-usvr-02 sshd[29616]: Invalid user developer from 132.145.170.174 port 36333 Nov 5 16:26:04 itv-usvr-02 sshd[29616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.170.174 Nov 5 16:26:04 itv-usvr-02 sshd[29616]: Invalid user developer from 132.145.170.174 port 36333 Nov 5 16:26:07 itv-usvr-02 sshd[29616]: Failed password for invalid user developer from 132.145.170.174 port 36333 ssh2 Nov 5 16:31:31 itv-usvr-02 sshd[29664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.170.174 user=root Nov 5 16:31:33 itv-usvr-02 sshd[29664]: Failed password for root from 132.145.170.174 port 19518 ssh2	2019-11-05 19:25:45

最近上报的IP列表

32.115.152.213	220.52.250.33	63.48.135.78	54.81.114.210
202.129.168.162	52.95.135.246	99.31.58.42	51.68.214.213
64.0.160.233	223.176.95.59	166.142.93.194	99.13.240.122
24.243.246.251	45.218.113.16	129.79.122.8	230.111.214.84
49.233.188.133	21.120.161.237	232.208.219.222	93.168.225.55