109.207.199.70

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Ukraine

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.207.199.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 743
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;109.207.199.70.			IN	A

;; AUTHORITY SECTION:
.			114	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020601 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 12:52:07 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 70.199.207.109.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 70.199.207.109.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
163.172.229.131	attack	\[2019-09-25 15:53:03\] NOTICE\[1970\] chan_sip.c: Registration from '\' failed for '163.172.229.131:50923' - Wrong password \[2019-09-25 15:53:03\] SECURITY\[1978\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-25T15:53:03.547-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="9000000",SessionID="0x7f9b34331198",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.229.131/50923",Challenge="66cd2bcc",ReceivedChallenge="66cd2bcc",ReceivedHash="09e80b29fd1561a8002fd9a6c25b69b5" \[2019-09-25 15:57:41\] NOTICE\[1970\] chan_sip.c: Registration from '\' failed for '163.172.229.131:63179' - Wrong password \[2019-09-25 15:57:41\] SECURITY\[1978\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-25T15:57:41.396-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="4071",SessionID="0x7f9b3403d098",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/U	2019-09-26 04:13:55
86.161.164.240	attackspam	Automatic report - Port Scan Attack	2019-09-26 04:05:27
149.129.251.152	attackbots	Sep 25 20:48:50 server sshd\[16010\]: Invalid user qwe@123 from 149.129.251.152 port 37558 Sep 25 20:48:50 server sshd\[16010\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.129.251.152 Sep 25 20:48:52 server sshd\[16010\]: Failed password for invalid user qwe@123 from 149.129.251.152 port 37558 ssh2 Sep 25 20:53:56 server sshd\[15735\]: Invalid user q1w2e3r4t5 from 149.129.251.152 port 50282 Sep 25 20:53:56 server sshd\[15735\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.129.251.152	2019-09-26 04:17:13
94.6.219.175	attackspam	Sep 25 14:11:46 localhost sshd\[31957\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.6.219.175 user=backup Sep 25 14:11:47 localhost sshd\[31957\]: Failed password for backup from 94.6.219.175 port 60797 ssh2 Sep 25 14:15:34 localhost sshd\[580\]: Invalid user odoo from 94.6.219.175 port 37446 Sep 25 14:15:34 localhost sshd\[580\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.6.219.175	2019-09-26 03:44:13
103.232.67.58	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2019-09-26 04:08:57
75.162.183.122	attackspam	20 attempts against mh-misbehave-ban on plane.magehost.pro	2019-09-26 03:50:31
67.207.255.53	attack	"Fail2Ban detected SSH brute force attempt"	2019-09-26 04:13:07
201.52.45.218	attackspambots	Sep 25 14:08:47 mail sshd[9972]: Invalid user gh from 201.52.45.218 Sep 25 14:08:47 mail sshd[9972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.52.45.218 Sep 25 14:08:47 mail sshd[9972]: Invalid user gh from 201.52.45.218 Sep 25 14:08:49 mail sshd[9972]: Failed password for invalid user gh from 201.52.45.218 port 58800 ssh2 Sep 25 14:15:26 mail sshd[10870]: Invalid user reception from 201.52.45.218 ...	2019-09-26 03:49:19
176.58.137.135	attackspam	Honeypot attack, port: 23, PTR: adsl-135.176.58.137.tellas.gr.	2019-09-26 03:56:30
106.51.139.172	attackspambots	Honeypot attack, port: 23, PTR: broadband.actcorp.in.	2019-09-26 03:58:32
115.124.29.97	attack	Spam from qdt@tritonchina.com	2019-09-26 04:11:58
94.102.50.103	attackbots	tries continue to unauth access to smtp server	2019-09-26 04:22:17
107.148.251.203	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2019-09-26 03:54:09
222.186.175.167	attack	Sep 25 21:56:09 Ubuntu-1404-trusty-64-minimal sshd\[27615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.167 user=root Sep 25 21:56:10 Ubuntu-1404-trusty-64-minimal sshd\[27615\]: Failed password for root from 222.186.175.167 port 32932 ssh2 Sep 25 21:56:34 Ubuntu-1404-trusty-64-minimal sshd\[27793\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.167 user=root Sep 25 21:56:37 Ubuntu-1404-trusty-64-minimal sshd\[27793\]: Failed password for root from 222.186.175.167 port 31368 ssh2 Sep 25 21:57:05 Ubuntu-1404-trusty-64-minimal sshd\[27966\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.167 user=root	2019-09-26 03:57:32
123.4.191.98	attack	Unauthorised access (Sep 25) SRC=123.4.191.98 LEN=40 TTL=49 ID=47863 TCP DPT=8080 WINDOW=12702 SYN Unauthorised access (Sep 25) SRC=123.4.191.98 LEN=40 TTL=49 ID=29109 TCP DPT=8080 WINDOW=12702 SYN	2019-09-26 04:03:43

最近上报的IP列表

34.116.125.217	211.32.0.174	5.235.242.50	196.44.117.51
201.141.127.187	54.242.251.133	114.119.132.207	93.126.28.232
101.255.77.6	99.33.195.164	201.203.183.234	188.80.203.65
162.62.223.6	2.176.17.152	78.179.137.29	222.169.36.94
197.57.225.216	124.121.182.119	59.94.207.189	83.145.36.70