104.131.57.63 - IPInfo

基本信息:

城市(city): Clifton

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.131.57.95	attack	104.131.57.95 - - [20/Aug/2020:11:51:16 +0200] "GET /wp-login.php HTTP/1.1" 200 9040 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.131.57.95 - - [20/Aug/2020:11:51:18 +0200] "POST /wp-login.php HTTP/1.1" 200 9291 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.131.57.95 - - [20/Aug/2020:11:51:19 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-20 19:11:49
104.131.57.95	attackbotsspam	104.131.57.95 - - [15/Aug/2020:21:39:51 +0100] "POST /wp-login.php HTTP/1.1" 200 1933 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.131.57.95 - - [15/Aug/2020:21:39:51 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.131.57.95 - - [15/Aug/2020:21:42:29 +0100] "POST /wp-login.php HTTP/1.1" 200 1875 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-16 08:37:25
104.131.57.95	attackbots	104.131.57.95 - - [09/Aug/2020:07:01:17 +0100] "POST /wp-login.php HTTP/1.1" 200 4434 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.131.57.95 - - [09/Aug/2020:07:01:19 +0100] "POST /wp-login.php HTTP/1.1" 200 4434 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.131.57.95 - - [09/Aug/2020:07:01:19 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-09 14:44:09
104.131.57.95	attack	104.131.57.95 - - \[05/Aug/2020:15:50:38 +0200\] "POST /wp-login.php HTTP/1.0" 200 5993 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 104.131.57.95 - - \[05/Aug/2020:15:50:40 +0200\] "POST /wp-login.php HTTP/1.0" 200 5995 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 104.131.57.95 - - \[05/Aug/2020:15:50:40 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 935 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-08-06 01:56:50
104.131.57.95	attackbotsspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-08-02 19:00:40
104.131.57.95	attackspam	104.131.57.95 - - [30/Jul/2020:20:27:40 +0200] "POST /xmlrpc.php HTTP/1.1" 403 461 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.131.57.95 - - [30/Jul/2020:20:31:07 +0200] "POST /xmlrpc.php HTTP/1.1" 403 611 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-31 03:04:42
104.131.57.95	attackspambots	104.131.57.95 - - [29/Jul/2020:09:46:20 +0200] "POST /xmlrpc.php HTTP/1.1" 403 461 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.131.57.95 - - [29/Jul/2020:10:10:21 +0200] "POST /xmlrpc.php HTTP/1.1" 403 12787 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-29 17:41:32
104.131.57.95	attackbots	MYH,DEF GET /wp-login.php	2020-07-26 14:05:47
104.131.57.95	attackbotsspam	(mod_security) mod_security (id:230011) triggered by 104.131.57.95 (US/United States/-): 5 in the last 3600 secs	2020-07-25 14:05:20
104.131.57.180	attackbotsspam	Port scan(s) [2 denied]	2020-05-20 03:08:14

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.57.63
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5122
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.131.57.63.			IN	A

;; AUTHORITY SECTION:
.			542	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031901 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 20 11:49:29 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

63.57.131.104.in-addr.arpa domain name pointer ankidroid.org.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
63.57.131.104.in-addr.arpa	name = ankidroid.org.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
213.234.252.110	attackbots	SSH Brute-Forcing (server1)	2020-04-22 01:57:16
179.171.29.98	attack	Invalid user admin from 179.171.29.98 port 43036	2020-04-22 02:11:07
188.166.23.215	attack	(sshd) Failed SSH login from 188.166.23.215 (NL/Netherlands/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 21 15:12:45 amsweb01 sshd[12594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.23.215 user=root Apr 21 15:12:47 amsweb01 sshd[12594]: Failed password for root from 188.166.23.215 port 34604 ssh2 Apr 21 15:19:59 amsweb01 sshd[13169]: User admin from 188.166.23.215 not allowed because not listed in AllowUsers Apr 21 15:19:59 amsweb01 sshd[13169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.23.215 user=admin Apr 21 15:20:01 amsweb01 sshd[13169]: Failed password for invalid user admin from 188.166.23.215 port 35512 ssh2	2020-04-22 02:07:03
181.49.153.74	attackbotsspam	SSH Brute-Force attacks	2020-04-22 02:09:53
131.108.60.30	attack	Unauthorized connection attempt detected from IP address 131.108.60.30 to port 11597	2020-04-22 02:21:28
219.250.188.142	attackspam	21 attempts against mh-ssh on echoip	2020-04-22 01:55:09
185.61.137.143	attackspam	Invalid user support from 185.61.137.143 port 34030	2020-04-22 02:07:38
181.94.221.17	attackbotsspam	Invalid user test123 from 181.94.221.17 port 49996	2020-04-22 02:09:28
118.89.190.90	attackbots	Invalid user cp from 118.89.190.90 port 49816	2020-04-22 02:28:40
180.76.103.63	attackbots	Invalid user virtualuser from 180.76.103.63 port 46760	2020-04-22 02:10:45
117.200.76.158	attackspambots	Invalid user matt from 117.200.76.158 port 50440	2020-04-22 02:30:30
177.69.237.54	attack	SSH Brute Force	2020-04-22 02:12:32
212.129.242.171	attack	SSH Brute Force	2020-04-22 01:58:06
191.30.37.10	attackbotsspam	Lines containing failures of 191.30.37.10 Apr 20 18:04:02 UTC__SANYALnet-Labs__cac12 sshd[31108]: Connection from 191.30.37.10 port 35658 on 45.62.253.138 port 22 Apr 20 18:04:07 UTC__SANYALnet-Labs__cac12 sshd[31108]: reveeclipse mapping checking getaddrinfo for 191.30.37.10.dynamic.adsl.gvt.net.br [191.30.37.10] failed - POSSIBLE BREAK-IN ATTEMPT! Apr 20 18:04:07 UTC__SANYALnet-Labs__cac12 sshd[31108]: Invalid user vy from 191.30.37.10 port 35658 Apr 20 18:04:07 UTC__SANYALnet-Labs__cac12 sshd[31108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.30.37.10 Apr 20 18:04:09 UTC__SANYALnet-Labs__cac12 sshd[31108]: Failed password for invalid user vy from 191.30.37.10 port 35658 ssh2 Apr 20 18:04:09 UTC__SANYALnet-Labs__cac12 sshd[31108]: Received disconnect from 191.30.37.10 port 35658:11: Bye Bye [preauth] Apr 20 18:04:09 UTC__SANYALnet-Labs__cac12 sshd[31108]: Disconnected from 191.30.37.10 port 35658 [preauth] Apr 20 18:41:0........ ------------------------------	2020-04-22 02:05:25
122.227.75.14	attack	Invalid user solr from 122.227.75.14 port 34752	2020-04-22 02:25:18

最近上报的IP列表

104.131.50.131	104.131.59.177	104.131.60.152	104.131.63.84
104.131.65.46	104.131.69.47	104.131.71.19	104.131.71.198
104.131.72.143	104.131.74.141	104.131.76.60	104.131.83.159
104.131.86.177	104.131.87.179	104.131.9.105	104.131.92.33
104.140.207.78	104.143.94.170	170.231.7.147	104.144.150.195