109.152.20.119

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United Kingdom of Great Britain and Northern Ireland

运营商(isp): British Telecommunications PLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Mar 31 00:31:16 debian-2gb-nbg1-2 kernel: \[7866531.573286\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=109.152.20.119 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=50 ID=0 DF PROTO=TCP SPT=7547 DPT=26021 WINDOW=14520 RES=0x00 ACK SYN URGP=0	2020-03-31 09:34:04

类型

评论内容

时间

attackspam

Mar 31 00:31:16 debian-2gb-nbg1-2 kernel: \[7866531.573286\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=109.152.20.119 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=50 ID=0 DF PROTO=TCP SPT=7547 DPT=26021 WINDOW=14520 RES=0x00 ACK SYN URGP=0

2020-03-31 09:34:04

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.152.20.119
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40448
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;109.152.20.119.			IN	A

;; AUTHORITY SECTION:
.			585	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020033001 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 31 09:33:56 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

119.20.152.109.in-addr.arpa domain name pointer host109-152-20-119.range109-152.btcentralplus.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
119.20.152.109.in-addr.arpa	name = host109-152-20-119.range109-152.btcentralplus.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
52.243.94.243	attack	Sep 25 08:09:39 ns381471 sshd[20224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.243.94.243 Sep 25 08:09:41 ns381471 sshd[20224]: Failed password for invalid user refino from 52.243.94.243 port 34037 ssh2	2020-09-25 14:12:08
120.79.29.217	attackspambots	WordPress login Brute force / Web App Attack on client site.	2020-09-25 14:51:14
45.86.15.111	attack	(From graciela.bentham@gmail.com) I WILL FIND POTENTIAL CUSTOMERS FOR YOU I’m talking about a better promotion method than all that exists on the market right now, even better than email marketing. Just like you received this message from me, this is exactly how you can promote your business or product. SEE MORE => https://bit.ly/3lr6nLV	2020-09-25 14:19:00
176.63.165.142	attackbots	Hits on port : 445	2020-09-25 14:26:19
52.138.16.245	attackbotsspam	Sep 24 22:22:39 sip sshd[11083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.138.16.245 Sep 24 22:22:41 sip sshd[11083]: Failed password for invalid user 107 from 52.138.16.245 port 56685 ssh2 Sep 25 08:18:41 sip sshd[8790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.138.16.245	2020-09-25 14:23:41
103.27.61.101	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-25 14:48:48
101.231.146.34	attackbotsspam	2020-09-25T07:59:12.375311ollin.zadara.org sshd[1255302]: Invalid user eric from 101.231.146.34 port 59605 2020-09-25T07:59:14.225233ollin.zadara.org sshd[1255302]: Failed password for invalid user eric from 101.231.146.34 port 59605 ssh2 ...	2020-09-25 14:27:37
222.186.175.150	attack	Sep 25 06:30:35 scw-6657dc sshd[13416]: Failed password for root from 222.186.175.150 port 34318 ssh2 Sep 25 06:30:35 scw-6657dc sshd[13416]: Failed password for root from 222.186.175.150 port 34318 ssh2 Sep 25 06:30:38 scw-6657dc sshd[13416]: Failed password for root from 222.186.175.150 port 34318 ssh2 ...	2020-09-25 14:38:12
178.62.33.222	attack	178.62.33.222 - - [24/Sep/2020:22:42:50 +0200] "POST /xmlrpc.php HTTP/1.1" 403 461 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.62.33.222 - - [24/Sep/2020:23:08:23 +0200] "POST /xmlrpc.php HTTP/1.1" 403 16729 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-25 14:48:15
51.116.184.135	attackbotsspam	Sep 25 08:12:30 vpn01 sshd[24462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.116.184.135 Sep 25 08:12:31 vpn01 sshd[24462]: Failed password for invalid user video from 51.116.184.135 port 46331 ssh2 ...	2020-09-25 14:21:51
125.163.79.159	attackspam	Honeypot attack, port: 445, PTR: 159.subnet125-163-79.speedy.telkom.net.id.	2020-09-25 14:11:47
221.197.216.53	attackbots	Brute force blocker - service: proftpd1 - aantal: 135 - Wed Sep 5 07:50:14 2018	2020-09-25 14:33:18
97.75.150.250	attack	Automatic report - Port Scan Attack	2020-09-25 14:21:21
58.39.236.132	attackbots	Brute force blocker - service: proftpd1 - aantal: 44 - Wed Sep 5 17:50:15 2018	2020-09-25 14:18:37
14.207.21.240	attack	Port Scan ...	2020-09-25 14:06:59

最近上报的IP列表

78.94.246.112	180.215.204.136	149.91.88.140	120.132.117.50
3.123.237.206	35.241.122.141	74.90.210.156	46.252.24.197
140.238.242.102	104.126.189.193	134.122.85.23	124.104.34.107
110.52.140.106	218.88.232.201	208.113.200.80	175.236.13.20
236.167.7.236	185.168.158.243	203.193.249.168	210.118.134.168