104.131.114.207

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.114.207
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5106
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.131.114.207.		IN	A

;; AUTHORITY SECTION:
.			182	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 19:17:39 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

Host 207.114.131.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 207.114.131.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
61.177.172.142	attack	SSH Login Bruteforce	2020-08-14 17:09:57
202.155.211.226	attackspam	Aug 14 10:58:04 host sshd[6971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.155.211.226 user=root Aug 14 10:58:06 host sshd[6971]: Failed password for root from 202.155.211.226 port 38790 ssh2 ...	2020-08-14 17:19:09
164.132.48.179	attackspambots	164.132.48.179 - - [14/Aug/2020:09:39:25 +0100] "POST /wp-login.php HTTP/1.1" 200 2178 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.132.48.179 - - [14/Aug/2020:09:39:26 +0100] "POST /wp-login.php HTTP/1.1" 200 2154 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.132.48.179 - - [14/Aug/2020:09:39:27 +0100] "POST /wp-login.php HTTP/1.1" 200 2157 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-14 16:54:44
78.186.204.231	attackspambots	[Fri Aug 14 10:35:38.438759 2020] [:error] [pid 8827:tid 140221286971136] [client 78.186.204.231:37503] [client 78.186.204.231] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XzYGioneH1-ohNzfeYifSgAAARA"] ...	2020-08-14 17:22:20
165.22.101.100	attack	165.22.101.100 - - [14/Aug/2020:09:01:08 +0100] "POST /wp-login.php HTTP/1.1" 200 1875 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.101.100 - - [14/Aug/2020:09:01:10 +0100] "POST /wp-login.php HTTP/1.1" 200 1860 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.101.100 - - [14/Aug/2020:09:01:14 +0100] "POST /wp-login.php HTTP/1.1" 200 1857 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-14 17:06:50
106.201.34.58	attack	Invalid user pi from 106.201.34.58 port 34552	2020-08-14 17:08:07
114.118.5.130	attack	SSH Brute Force	2020-08-14 17:17:50
125.124.254.31	attackspambots	Aug 14 10:36:13 pornomens sshd\[6184\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.254.31 user=root Aug 14 10:36:15 pornomens sshd\[6184\]: Failed password for root from 125.124.254.31 port 36568 ssh2 Aug 14 10:41:54 pornomens sshd\[6244\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.254.31 user=root ...	2020-08-14 17:25:22
192.35.168.219	attackbots	Unauthorized connection attempt detected from IP address 192.35.168.219 to port 82 [T]	2020-08-14 17:13:37
51.161.107.92	attack	Brute forcing email accounts	2020-08-14 17:05:00
45.55.237.182	attackbotsspam	Aug 14 05:41:24 vps333114 sshd[12773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.237.182 user=root Aug 14 05:41:26 vps333114 sshd[12773]: Failed password for root from 45.55.237.182 port 53528 ssh2 ...	2020-08-14 17:15:55
106.13.95.100	attackspam	Aug 14 07:58:43 vm1 sshd[878]: Failed password for root from 106.13.95.100 port 56070 ssh2 ...	2020-08-14 17:21:29
222.186.42.57	attackbotsspam	Unauthorized connection attempt detected from IP address 222.186.42.57 to port 22 [T]	2020-08-14 17:05:48
61.177.172.54	attack	Aug 14 10:35:30 PorscheCustomer sshd[7945]: Failed password for root from 61.177.172.54 port 26223 ssh2 Aug 14 10:35:44 PorscheCustomer sshd[7945]: error: maximum authentication attempts exceeded for root from 61.177.172.54 port 26223 ssh2 [preauth] Aug 14 10:35:52 PorscheCustomer sshd[7958]: Failed password for root from 61.177.172.54 port 53812 ssh2 ...	2020-08-14 16:49:50
192.241.239.215	attack	8088/tcp 771/tcp 587/tcp... [2020-06-25/08-13]22pkt,19pt.(tcp),1pt.(udp)	2020-08-14 17:00:44

最近上报的IP列表

104.131.112.64	104.131.116.158	104.131.114.181	104.131.112.25
104.131.112.74	104.131.117.199	104.131.117.211	37.12.211.241
104.131.117.140	101.109.150.197	104.131.116.100	104.131.117.85
104.131.118.88	104.131.119.133	104.131.119.169	104.131.119.107
104.131.122.155	104.131.120.251	104.131.122.20	101.109.150.2