104.131.54.221

基本信息:

城市(city): Clifton

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.131.54.149	attack	104.131.54.149 - - [27/Aug/2020:12:46:58 +0300] "GET /adminer-3.5.0.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/12.1 Safari/605.1.15"	2020-08-28 18:41:28
104.131.54.4	attackbotsspam	Brute force SMTP login attempted. ...	2019-11-30 19:58:40

类型

评论内容

时间

104.131.54.149

attack

104.131.54.149 - - [27/Aug/2020:12:46:58 +0300] "GET /adminer-3.5.0.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/12.1 Safari/605.1.15"

2020-08-28 18:41:28

104.131.54.4

attackbotsspam

Brute force SMTP login attempted.
...

2019-11-30 19:58:40

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.54.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44742
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.131.54.221.			IN	A

;; AUTHORITY SECTION:
.			445	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022032801 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 29 12:05:43 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

221.54.131.104.in-addr.arpa domain name pointer reverse-proxy.libcurl.so.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
221.54.131.104.in-addr.arpa	name = reverse-proxy.libcurl.so.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
122.55.19.115	attack	Jan 23 08:13:05 server sshd\[10918\]: Failed password for invalid user qhsupport from 122.55.19.115 port 48864 ssh2 Jan 23 21:11:36 server sshd\[3376\]: Invalid user administrator from 122.55.19.115 Jan 23 21:11:36 server sshd\[3376\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=nkym.com.ph Jan 23 21:11:38 server sshd\[3376\]: Failed password for invalid user administrator from 122.55.19.115 port 35121 ssh2 Jan 23 21:12:37 server sshd\[3565\]: Invalid user qhsupport from 122.55.19.115 ...	2020-01-24 02:25:38
111.229.58.117	attack	Jan 22 14:08:08 kmh-wsh-001-nbg03 sshd[2486]: Invalid user hidden from 111.229.58.117 port 53750 Jan 22 14:08:08 kmh-wsh-001-nbg03 sshd[2486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.58.117 Jan 22 14:08:10 kmh-wsh-001-nbg03 sshd[2486]: Failed password for invalid user hidden from 111.229.58.117 port 53750 ssh2 Jan 22 14:08:10 kmh-wsh-001-nbg03 sshd[2486]: Received disconnect from 111.229.58.117 port 53750:11: Bye Bye [preauth] Jan 22 14:08:10 kmh-wsh-001-nbg03 sshd[2486]: Disconnected from 111.229.58.117 port 53750 [preauth] Jan 22 14:23:51 kmh-wsh-001-nbg03 sshd[4246]: Invalid user postgres from 111.229.58.117 port 48140 Jan 22 14:23:51 kmh-wsh-001-nbg03 sshd[4246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.58.117 Jan 22 14:23:52 kmh-wsh-001-nbg03 sshd[4246]: Failed password for invalid user postgres from 111.229.58.117 port 48140 ssh2 Jan 22 14:23:53 kmh-wsh-0........ -------------------------------	2020-01-24 02:46:43
41.217.216.39	attack	SSH bruteforce (Triggered fail2ban)	2020-01-24 02:21:38
69.94.158.96	attack	Jan 23 17:07:11 grey postfix/smtpd\[7666\]: NOQUEUE: reject: RCPT from frog.swingthelamp.com\[69.94.158.96\]: 554 5.7.1 Service unavailable\; Client host \[69.94.158.96\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[69.94.158.96\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-24 02:55:19
87.122.221.79	attack	IP attempted unauthorised action	2020-01-24 02:47:50
212.159.44.179	attackbots	Lines containing failures of 212.159.44.179 (max 1000) Jan 22 16:52:10 mm sshd[2919]: pam_unix(sshd:auth): authentication fail= ure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D212.159.44.= 179 user=3Dr.r Jan 22 16:52:12 mm sshd[2919]: Failed password for r.r from 212.159.44= .179 port 38383 ssh2 Jan 22 16:52:12 mm sshd[2919]: Received disconnect from 212.159.44.179 = port 38383:11: Bye Bye [preauth] Jan 22 16:52:12 mm sshd[2919]: Disconnected from authenticating user ro= ot 212.159.44.179 port 38383 [preauth] Jan 22 17:02:04 mm sshd[2963]: Invalid user monique from 212.159.44.179= port 59343 Jan 22 17:02:04 mm sshd[2963]: pam_unix(sshd:auth): authentication fail= ure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D212.159.44.= 179 Jan 22 17:02:06 mm sshd[2963]: Failed password for invalid user monique= from 212.159.44.179 port 59343 ssh2 Jan 22 17:02:06 mm sshd[2963]: Received disconnect from 212.159.44.179 = port 59343:11: Bye Bye [preauth] Jan 22........ ------------------------------	2020-01-24 03:00:29
3.84.125.88	attack	Jan 23 19:11:50 sip sshd[2269]: Failed password for bin from 3.84.125.88 port 45780 ssh2 Jan 23 19:15:22 sip sshd[3214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.84.125.88 Jan 23 19:15:24 sip sshd[3214]: Failed password for invalid user daemond from 3.84.125.88 port 43236 ssh2	2020-01-24 03:02:15
128.199.235.49	attack	Unauthorized connection attempt detected from IP address 128.199.235.49 to port 2220 [J]	2020-01-24 02:51:56
81.242.40.11	attackbotsspam	Unauthorized connection attempt detected from IP address 81.242.40.11 to port 23 [J]	2020-01-24 02:21:13
119.81.194.206	attackbots	Jan 23 18:32:28 game-panel sshd[20328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.81.194.206 Jan 23 18:32:30 game-panel sshd[20328]: Failed password for invalid user noah from 119.81.194.206 port 44204 ssh2 Jan 23 18:35:34 game-panel sshd[20529]: Failed password for root from 119.81.194.206 port 41794 ssh2	2020-01-24 02:38:16
49.235.138.2	attack	Jan 23 18:15:16 game-panel sshd[19300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.138.2 Jan 23 18:15:18 game-panel sshd[19300]: Failed password for invalid user hadoop from 49.235.138.2 port 57692 ssh2 Jan 23 18:18:47 game-panel sshd[19461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.138.2	2020-01-24 02:30:45
213.240.66.6	attackspam	Unauthorized connection attempt detected from IP address 213.240.66.6 to port 22 [J]	2020-01-24 02:37:45
172.113.183.83	attackspam	Jan 23 20:08:36 pkdns2 sshd\[48233\]: Invalid user tommy from 172.113.183.83Jan 23 20:08:37 pkdns2 sshd\[48233\]: Failed password for invalid user tommy from 172.113.183.83 port 41640 ssh2Jan 23 20:10:40 pkdns2 sshd\[48395\]: Invalid user zein from 172.113.183.83Jan 23 20:10:42 pkdns2 sshd\[48395\]: Failed password for invalid user zein from 172.113.183.83 port 33098 ssh2Jan 23 20:12:49 pkdns2 sshd\[48498\]: Invalid user gay from 172.113.183.83Jan 23 20:12:52 pkdns2 sshd\[48498\]: Failed password for invalid user gay from 172.113.183.83 port 52790 ssh2 ...	2020-01-24 02:22:06
203.95.212.41	attack	Unauthorized connection attempt detected from IP address 203.95.212.41 to port 2220 [J]	2020-01-24 02:24:22
14.29.205.220	attackspambots	2020-01-23T11:29:54.204408-07:00 suse-nuc sshd[26161]: Invalid user user from 14.29.205.220 port 34196 ...	2020-01-24 02:48:50

最近上报的IP列表

104.131.42.95	104.131.58.29	104.131.58.99	104.131.63.229
104.131.66.115	104.131.83.133	104.140.108.236	104.140.12.194
104.140.159.49	104.140.63.170	104.143.45.4	104.144.105.194
104.144.125.2	104.144.128.142	104.144.129.214	104.144.139.55
104.16.201.246	104.16.201.94	104.16.203.216	104.16.215.17