104.131.242.70

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.242.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 335
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.131.242.70.			IN	A

;; AUTHORITY SECTION:
.			470	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021700 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 01:32:12 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

70.242.131.104.in-addr.arpa domain name pointer pr1.dony2.advancedopen.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
70.242.131.104.in-addr.arpa	name = pr1.dony2.advancedopen.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
80.82.77.189	attack	Apr 8 19:35:06 debian-2gb-nbg1-2 kernel: \[8626322.683776\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=80.82.77.189 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=53855 PROTO=TCP SPT=58650 DPT=12078 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-09 02:23:50
123.207.161.12	attackbots	Apr 8 13:38:28 pi sshd[26733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.161.12 Apr 8 13:38:31 pi sshd[26733]: Failed password for invalid user deploy from 123.207.161.12 port 45428 ssh2	2020-04-09 02:11:01
185.208.211.65	attackspambots	2020-04-08T14:38:09.465964+02:00 lumpi kernel: [11639256.255676] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=185.208.211.65 DST=78.46.199.189 LEN=52 TOS=0x00 PREC=0x00 TTL=111 ID=12507 DF PROTO=TCP SPT=58202 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ...	2020-04-09 02:27:18
157.230.190.1	attackbots	Apr 8 19:39:27 v22018086721571380 sshd[23508]: Failed password for invalid user vbox from 157.230.190.1 port 41598 ssh2	2020-04-09 02:54:25
192.82.66.181	attack	Apr 8 15:33:58 srv01 sshd[6144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.82.66.181 user=root Apr 8 15:34:00 srv01 sshd[6144]: Failed password for root from 192.82.66.181 port 58053 ssh2 Apr 8 15:42:00 srv01 sshd[6638]: Invalid user hduser from 192.82.66.181 port 50368 ...	2020-04-09 02:20:44
51.15.119.193	attack	ssh brute force	2020-04-09 02:08:19
92.63.194.7	attackbotsspam	palm trees	2020-04-09 02:30:19
217.160.214.48	attackspambots	Apr 8 14:34:41 ns381471 sshd[30468]: Failed password for root from 217.160.214.48 port 51096 ssh2 Apr 8 14:38:38 ns381471 sshd[30587]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.160.214.48	2020-04-09 02:07:29
185.123.164.52	attack	Apr 8 20:03:19 vpn01 sshd[23597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.123.164.52 Apr 8 20:03:21 vpn01 sshd[23597]: Failed password for invalid user deploy from 185.123.164.52 port 33942 ssh2 ...	2020-04-09 02:07:50
14.245.76.37	attack	Automatic report - Port Scan Attack	2020-04-09 02:29:21
58.55.25.88	attack	$f2bV_matches	2020-04-09 02:30:39
192.3.48.122	attack	(sshd) Failed SSH login from 192.3.48.122 (US/United States/192-3-48-122-host.colocrossing.com): 5 in the last 3600 secs	2020-04-09 02:26:22
122.51.167.200	attackbots	(sshd) Failed SSH login from 122.51.167.200 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 8 18:42:57 amsweb01 sshd[21032]: Invalid user user from 122.51.167.200 port 45416 Apr 8 18:42:59 amsweb01 sshd[21032]: Failed password for invalid user user from 122.51.167.200 port 45416 ssh2 Apr 8 18:51:16 amsweb01 sshd[21938]: Invalid user test01 from 122.51.167.200 port 45438 Apr 8 18:51:18 amsweb01 sshd[21938]: Failed password for invalid user test01 from 122.51.167.200 port 45438 ssh2 Apr 8 18:56:33 amsweb01 sshd[22706]: Invalid user postgres from 122.51.167.200 port 48428	2020-04-09 02:35:37
141.98.9.137	attack	Apr 8 19:16:03 debian64 sshd[22453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.137 Apr 8 19:16:05 debian64 sshd[22453]: Failed password for invalid user admin from 141.98.9.137 port 33121 ssh2 ...	2020-04-09 02:46:28
49.233.75.234	attackspam	ssh intrusion attempt	2020-04-09 02:28:57

最近上报的IP列表

104.131.25.249	104.131.19.149	104.131.21.84	104.131.176.229
104.131.33.191	104.131.28.36	104.131.32.88	104.21.63.147
104.131.31.92	104.131.30.165	104.131.43.102	104.131.40.20
104.131.49.56	104.131.60.26	104.131.45.115	104.131.58.204
104.131.62.36	104.131.45.30	104.131.73.60	104.131.5.83