109.231.204.128

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United Kingdom of Great Britain and Northern Ireland (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.231.204.128
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61760
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;109.231.204.128.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020401 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 03:04:37 CST 2025
;; MSG SIZE  rcvd: 108

HOST信息:

128.204.231.109.in-addr.arpa domain name pointer 109-231-204-128.cust-109.exponential-e.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
128.204.231.109.in-addr.arpa	name = 109-231-204-128.cust-109.exponential-e.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
190.36.225.248	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-18 06:54:51
134.209.146.247	attackbotsspam	2019-07-18T04:58:18.094349enmeeting.mahidol.ac.th sshd\[16125\]: Invalid user acer from 134.209.146.247 port 57592 2019-07-18T04:58:18.108284enmeeting.mahidol.ac.th sshd\[16125\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.146.247 2019-07-18T04:58:19.708320enmeeting.mahidol.ac.th sshd\[16125\]: Failed password for invalid user acer from 134.209.146.247 port 57592 ssh2 ...	2019-07-18 06:47:03
203.121.239.105	attack	203.121.239.105 - - \[18/Jul/2019:00:26:44 +0800\] "GET /wp-admin/post.php\?post=56732\&action=edit HTTP/2.0" 403 311 "https://blog.hamibook.com.tw/wp-admin/edit.php\?s=Japan+Walker\&post_status=all\&post_type=post\&action=-1\&m=0\&cat=0\&paged=1\&action2=-1" "Mozilla/5.0 \(Windows NT 10.0\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/75.0.3770.100 Safari/537.36"	2019-07-18 06:24:36
92.101.56.37	attackbots	SMTP AUTH LOGIN	2019-07-18 06:34:15
104.248.57.21	attackbotsspam	Jul 18 00:39:22 MainVPS sshd[10925]: Invalid user frappe from 104.248.57.21 port 55058 Jul 18 00:39:22 MainVPS sshd[10925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.57.21 Jul 18 00:39:22 MainVPS sshd[10925]: Invalid user frappe from 104.248.57.21 port 55058 Jul 18 00:39:24 MainVPS sshd[10925]: Failed password for invalid user frappe from 104.248.57.21 port 55058 ssh2 Jul 18 00:43:48 MainVPS sshd[11231]: Invalid user squirrelmail from 104.248.57.21 port 51752 ...	2019-07-18 06:50:19
125.141.139.23	attack	Jul 17 18:32:54 vps200512 sshd\[14984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.141.139.23 user=root Jul 17 18:32:55 vps200512 sshd\[14984\]: Failed password for root from 125.141.139.23 port 57942 ssh2 Jul 17 18:38:47 vps200512 sshd\[15114\]: Invalid user odoo from 125.141.139.23 Jul 17 18:38:47 vps200512 sshd\[15114\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.141.139.23 Jul 17 18:38:49 vps200512 sshd\[15114\]: Failed password for invalid user odoo from 125.141.139.23 port 56968 ssh2	2019-07-18 06:50:04
122.195.200.14	attack	Jul 17 23:56:40 arianus sshd\[23599\]: Unable to negotiate with 122.195.200.14 port 26369: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 \[preauth\] ...	2019-07-18 06:18:29
190.120.6.60	attackbotsspam	Brute force attack targeting wordpress (admin) access	2019-07-18 06:13:31
104.198.93.19	attackspambots	Jul 17 22:31:31 sshgateway sshd\[23193\]: Invalid user monitor from 104.198.93.19 Jul 17 22:31:31 sshgateway sshd\[23193\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.198.93.19 Jul 17 22:31:33 sshgateway sshd\[23193\]: Failed password for invalid user monitor from 104.198.93.19 port 50662 ssh2	2019-07-18 06:32:16
222.120.192.98	attackspam	Jul 16 00:39:15 sinope sshd[27431]: Invalid user tf2server from 222.120.192.98 Jul 16 00:39:15 sinope sshd[27431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.120.192.98 Jul 16 00:39:17 sinope sshd[27431]: Failed password for invalid user tf2server from 222.120.192.98 port 55514 ssh2 Jul 16 00:39:17 sinope sshd[27431]: Received disconnect from 222.120.192.98: 11: Bye Bye [preauth] Jul 16 01:16:16 sinope sshd[31228]: Invalid user jules from 222.120.192.98 Jul 16 01:16:16 sinope sshd[31228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.120.192.98 Jul 16 01:16:18 sinope sshd[31228]: Failed password for invalid user jules from 222.120.192.98 port 46448 ssh2 Jul 16 01:16:18 sinope sshd[31228]: Received disconnect from 222.120.192.98: 11: Bye Bye [preauth] Jul 16 01:23:58 sinope sshd[32034]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=22........ -------------------------------	2019-07-18 06:57:13
177.67.82.34	attackbots	Jul 18 00:34:16 localhost sshd\[21628\]: Invalid user db2fenc1 from 177.67.82.34 port 52384 Jul 18 00:34:16 localhost sshd\[21628\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.67.82.34 Jul 18 00:34:18 localhost sshd\[21628\]: Failed password for invalid user db2fenc1 from 177.67.82.34 port 52384 ssh2	2019-07-18 06:47:39
222.120.192.102	attackbots	Jul 16 00:01:37 shared09 sshd[1306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.120.192.102 user=mysql Jul 16 00:01:38 shared09 sshd[1306]: Failed password for mysql from 222.120.192.102 port 54100 ssh2 Jul 16 00:01:38 shared09 sshd[1306]: Received disconnect from 222.120.192.102 port 54100:11: Bye Bye [preauth] Jul 16 00:01:38 shared09 sshd[1306]: Disconnected from 222.120.192.102 port 54100 [preauth] Jul 16 01:37:46 shared09 sshd[4464]: Invalid user www from 222.120.192.102 Jul 16 01:37:46 shared09 sshd[4464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.120.192.102 Jul 16 01:37:48 shared09 sshd[4464]: Failed password for invalid user www from 222.120.192.102 port 51058 ssh2 Jul 16 01:37:48 shared09 sshd[4464]: Received disconnect from 222.120.192.102 port 51058:11: Bye Bye [preauth] Jul 16 01:37:48 shared09 sshd[4464]: Disconnected from 222.120.192.102 port 51058 [preauth........ -------------------------------	2019-07-18 06:27:58
42.236.139.27	attack	Jul 15 22:10:04 archiv sshd[20270]: Address 42.236.139.27 maps to hn.kd.ny.adsl, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jul 15 22:10:04 archiv sshd[20270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.236.139.27 user=r.r Jul 15 22:10:06 archiv sshd[20270]: Failed password for r.r from 42.236.139.27 port 46420 ssh2 Jul 15 22:10:07 archiv sshd[20270]: Received disconnect from 42.236.139.27 port 46420:11: Bye Bye [preauth] Jul 15 22:10:07 archiv sshd[20270]: Disconnected from 42.236.139.27 port 46420 [preauth] Jul 15 22:36:48 archiv sshd[20347]: Connection closed by 42.236.139.27 port 37704 [preauth] Jul 15 22:57:41 archiv sshd[20551]: Address 42.236.139.27 maps to hn.kd.ny.adsl, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jul 15 22:57:41 archiv sshd[20551]: Invalid user Nicole from 42.236.139.27 port 48450 Jul 15 22:57:41 archiv sshd[20551]: pam_unix(sshd:auth): authe........ -------------------------------	2019-07-18 06:53:37
113.190.253.184	attackbotsspam	Jul 17 18:26:23 ns3367391 sshd\[17767\]: Invalid user admin from 113.190.253.184 port 46215 Jul 17 18:26:23 ns3367391 sshd\[17767\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.190.253.184 ...	2019-07-18 06:32:41
95.9.202.235	attackbotsspam	Unauthorised access (Jul 17) SRC=95.9.202.235 LEN=44 TTL=49 ID=162 TCP DPT=23 WINDOW=62709 SYN	2019-07-18 06:19:29

最近上报的IP列表

203.227.70.76	74.68.117.228	142.25.203.101	210.198.60.117
90.118.50.201	143.136.186.8	15.178.229.180	67.115.192.184
178.175.73.111	38.247.45.56	246.173.58.106	228.228.133.9
190.18.245.112	204.160.181.36	175.198.227.138	235.131.245.192
126.157.171.54	181.83.252.197	176.23.205.239	151.252.64.105