104.131.106.23

基本信息:

城市(city): Clifton

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.131.106.203	attack	fail2ban/Sep 22 12:32:49 h1962932 sshd[22769]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.106.203 user=root Sep 22 12:32:51 h1962932 sshd[22769]: Failed password for root from 104.131.106.203 port 56742 ssh2 Sep 22 12:38:52 h1962932 sshd[23428]: Invalid user support from 104.131.106.203 port 38902 Sep 22 12:38:52 h1962932 sshd[23428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.106.203 Sep 22 12:38:52 h1962932 sshd[23428]: Invalid user support from 104.131.106.203 port 38902 Sep 22 12:38:54 h1962932 sshd[23428]: Failed password for invalid user support from 104.131.106.203 port 38902 ssh2	2020-09-22 20:55:58
104.131.106.203	attackspam	(sshd) Failed SSH login from 104.131.106.203 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 21 14:39:52 optimus sshd[17929]: Failed password for invalid user admin from 104.131.106.203 port 55952 ssh2 Sep 21 15:31:31 optimus sshd[22812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.106.203 user=root Sep 21 15:31:33 optimus sshd[22812]: Failed password for root from 104.131.106.203 port 32822 ssh2 Sep 21 15:32:18 optimus sshd[23139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.106.203 user=root Sep 21 15:32:20 optimus sshd[23139]: Failed password for root from 104.131.106.203 port 44230 ssh2	2020-09-22 05:05:27

类型

评论内容

时间

104.131.106.203

attack

fail2ban/Sep 22 12:32:49 h1962932 sshd[22769]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.106.203  user=root
Sep 22 12:32:51 h1962932 sshd[22769]: Failed password for root from 104.131.106.203 port 56742 ssh2
Sep 22 12:38:52 h1962932 sshd[23428]: Invalid user support from 104.131.106.203 port 38902
Sep 22 12:38:52 h1962932 sshd[23428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.106.203
Sep 22 12:38:52 h1962932 sshd[23428]: Invalid user support from 104.131.106.203 port 38902
Sep 22 12:38:54 h1962932 sshd[23428]: Failed password for invalid user support from 104.131.106.203 port 38902 ssh2

2020-09-22 20:55:58

104.131.106.203

attackspam

(sshd) Failed SSH login from 104.131.106.203 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 21 14:39:52 optimus sshd[17929]: Failed password for invalid user admin from 104.131.106.203 port 55952 ssh2
Sep 21 15:31:31 optimus sshd[22812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.106.203  user=root
Sep 21 15:31:33 optimus sshd[22812]: Failed password for root from 104.131.106.203 port 32822 ssh2
Sep 21 15:32:18 optimus sshd[23139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.106.203  user=root
Sep 21 15:32:20 optimus sshd[23139]: Failed password for root from 104.131.106.203 port 44230 ssh2

2020-09-22 05:05:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.106.23
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49989
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.131.106.23.			IN	A

;; AUTHORITY SECTION:
.			179	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031901 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 20 11:47:25 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 23.106.131.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 23.106.131.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
125.124.117.226	attackspambots	TCP (SYN) 125.124.117.226:56824 -> port 7537, len 44	2020-10-02 06:38:21
49.234.43.224	attackbotsspam	Total attacks: 2	2020-10-02 06:26:40
37.98.196.42	attack	Oct 1 21:22:28 ns382633 sshd\[17598\]: Invalid user teste from 37.98.196.42 port 41700 Oct 1 21:22:28 ns382633 sshd\[17598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.98.196.42 Oct 1 21:22:30 ns382633 sshd\[17598\]: Failed password for invalid user teste from 37.98.196.42 port 41700 ssh2 Oct 1 21:27:06 ns382633 sshd\[18205\]: Invalid user mine from 37.98.196.42 port 63022 Oct 1 21:27:06 ns382633 sshd\[18205\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.98.196.42	2020-10-02 06:20:59
110.49.70.248	attackspambots	Oct 1 22:38:14 roki-contabo sshd\[16978\]: Invalid user brian from 110.49.70.248 Oct 1 22:38:14 roki-contabo sshd\[16978\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.70.248 Oct 1 22:38:16 roki-contabo sshd\[16978\]: Failed password for invalid user brian from 110.49.70.248 port 51964 ssh2 Oct 1 23:54:59 roki-contabo sshd\[18949\]: Invalid user j from 110.49.70.248 Oct 1 23:54:59 roki-contabo sshd\[18949\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.70.248 ...	2020-10-02 06:23:22
49.233.147.147	attack	Invalid user lucia from 49.233.147.147 port 54016	2020-10-02 06:27:06
4.17.231.194	attackspambots	2020-10-01T23:35:51+0200 Failed SSH Authentication/Brute Force Attack.(Server 2)	2020-10-02 06:16:14
59.56.71.215	attackbotsspam	Port Scan ...	2020-10-02 06:36:55
91.21.19.114	attackbots	Automatic report - Port Scan Attack	2020-10-02 06:22:30
193.248.191.48	attackbots	Port scan on 1 port(s): 445	2020-10-02 06:30:18
170.210.221.48	attack	Banned for a week because repeated abuses, for example SSH, but not only	2020-10-02 06:32:00
190.58.4.185	attackbotsspam	20/9/30@16:39:06: FAIL: Alarm-Network address from=190.58.4.185 ...	2020-10-02 06:39:03
212.70.149.68	attackspam	Oct 1 23:23:51 s1 postfix/smtps/smtpd\[22512\]: warning: unknown\[212.70.149.68\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 1 23:25:46 s1 postfix/smtps/smtpd\[22512\]: warning: unknown\[212.70.149.68\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 1 23:27:42 s1 postfix/smtps/smtpd\[22512\]: warning: unknown\[212.70.149.68\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 1 23:29:37 s1 postfix/smtps/smtpd\[23528\]: warning: unknown\[212.70.149.68\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 1 23:31:32 s1 postfix/smtps/smtpd\[23528\]: warning: unknown\[212.70.149.68\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 1 23:33:28 s1 postfix/smtps/smtpd\[23528\]: warning: unknown\[212.70.149.68\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 1 23:35:23 s1 postfix/smtps/smtpd\[23528\]: warning: unknown\[212.70.149.68\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 1 23:37:19 s1 postfix/smtps/smtpd\[23528\]: warning: unknown\[212.70.149.68\]: SASL LOGIN authenticati	2020-10-02 06:31:19
41.231.82.93	attackbotsspam	F2B blocked SSH BF	2020-10-02 06:19:10
119.61.19.84	attack	SSH Invalid Login	2020-10-02 06:38:49
156.54.171.41	attackbots	2020-10-01T23:51:01.900688hostname sshd[13285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.54.171.41 2020-10-01T23:51:01.859544hostname sshd[13285]: Invalid user vlc from 156.54.171.41 port 50804 2020-10-01T23:51:03.543770hostname sshd[13285]: Failed password for invalid user vlc from 156.54.171.41 port 50804 ssh2 ...	2020-10-02 06:24:08

最近上报的IP列表

177.152.185.130	104.131.108.172	104.131.113.239	104.131.113.74
104.131.12.61	104.131.127.132	104.131.127.199	104.131.130.231
104.131.131.168	104.131.132.133	104.131.132.148	172.221.218.249
104.131.133.124	104.131.136.214	104.131.137.177	104.131.139.80
104.131.143.147	104.131.15.247	168.253.202.212	104.131.158.169