104.144.225.31

基本信息:

城市(city): Buffalo

省份(region): New York

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.144.225.31
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25875
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.144.225.31.			IN	A

;; AUTHORITY SECTION:
.			88	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022100601 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 07 02:38:18 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

31.225.144.104.in-addr.arpa domain name pointer default.server.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
31.225.144.104.in-addr.arpa	name = default.server.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
195.88.66.108	attackbotsspam	Sep 9 10:20:00 lukav-desktop sshd\[31071\]: Invalid user ftpuser from 195.88.66.108 Sep 9 10:20:00 lukav-desktop sshd\[31071\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.88.66.108 Sep 9 10:20:01 lukav-desktop sshd\[31073\]: Invalid user ftpuser from 195.88.66.108 Sep 9 10:20:01 lukav-desktop sshd\[31073\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.88.66.108 Sep 9 10:20:02 lukav-desktop sshd\[31071\]: Failed password for invalid user ftpuser from 195.88.66.108 port 36443 ssh2	2019-09-09 22:04:46
202.51.74.189	attackspam	Sep 9 15:45:41 localhost sshd\[12767\]: Invalid user test from 202.51.74.189 port 47542 Sep 9 15:45:41 localhost sshd\[12767\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.51.74.189 Sep 9 15:45:43 localhost sshd\[12767\]: Failed password for invalid user test from 202.51.74.189 port 47542 ssh2	2019-09-09 22:01:20
59.25.197.138	attackbotsspam	Sep 9 00:30:19 Tower sshd[38029]: Connection from 59.25.197.138 port 57638 on 192.168.10.220 port 22 Sep 9 00:30:36 Tower sshd[38029]: Invalid user moria from 59.25.197.138 port 57638 Sep 9 00:30:36 Tower sshd[38029]: error: Could not get shadow information for NOUSER Sep 9 00:30:36 Tower sshd[38029]: Failed password for invalid user moria from 59.25.197.138 port 57638 ssh2 Sep 9 00:30:36 Tower sshd[38029]: Received disconnect from 59.25.197.138 port 57638:11: Bye Bye [preauth] Sep 9 00:30:36 Tower sshd[38029]: Disconnected from invalid user moria 59.25.197.138 port 57638 [preauth]	2019-09-09 22:58:03
213.142.157.12	attackbotsspam	Sep 10 00:21:20 our-server-hostname postfix/smtpd[18617]: connect from unknown[213.142.157.12] Sep x@x Sep x@x Sep x@x Sep 10 00:21:23 our-server-hostname postfix/smtpd[18617]: disconnect from unknown[213.142.157.12] Sep 10 00:21:33 our-server-hostname postfix/smtpd[13748]: connect from unknown[213.142.157.12] Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep 10 00:21:40 our-server-hostname postfix/smtpd[13748]: disconnect from unknown[213.142.157.12] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=213.142.157.12	2019-09-09 23:36:37
211.24.103.163	attackbots	Sep 9 04:07:35 auw2 sshd\[8165\]: Invalid user ftp_user123 from 211.24.103.163 Sep 9 04:07:35 auw2 sshd\[8165\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.24.103.163 Sep 9 04:07:37 auw2 sshd\[8165\]: Failed password for invalid user ftp_user123 from 211.24.103.163 port 37757 ssh2 Sep 9 04:15:45 auw2 sshd\[9143\]: Invalid user test from 211.24.103.163 Sep 9 04:15:45 auw2 sshd\[9143\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.24.103.163	2019-09-09 22:22:37
69.196.152.42	attack	WordPress wp-login brute force :: 69.196.152.42 0.056 BYPASS [09/Sep/2019:20:31:51 1000] [censored_4] "POST /wp-login.php HTTP/1.1" 200 3989 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-09-09 22:51:05
59.188.250.56	attackspambots	Sep 9 17:05:12 minden010 sshd[21830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.188.250.56 Sep 9 17:05:14 minden010 sshd[21830]: Failed password for invalid user web from 59.188.250.56 port 36356 ssh2 Sep 9 17:12:43 minden010 sshd[29781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.188.250.56 ...	2019-09-09 23:16:47
106.12.16.107	attack	Sep 9 11:08:58 localhost sshd\[6198\]: Invalid user admin1 from 106.12.16.107 port 36340 Sep 9 11:08:58 localhost sshd\[6198\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.16.107 Sep 9 11:09:01 localhost sshd\[6198\]: Failed password for invalid user admin1 from 106.12.16.107 port 36340 ssh2	2019-09-09 22:24:25
139.255.49.18	attackspambots	Unauthorized connection attempt from IP address 139.255.49.18 on Port 445(SMB)	2019-09-09 22:32:44
68.183.209.123	attackspambots	Sep 9 15:22:48 saschabauer sshd[4300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.209.123 Sep 9 15:22:50 saschabauer sshd[4300]: Failed password for invalid user tester from 68.183.209.123 port 36830 ssh2	2019-09-09 22:15:31
119.147.213.222	attackspambots	postfix-failedauth jail [ma]	2019-09-09 22:00:06
180.232.83.238	attack	Sep 3 18:19:03 itv-usvr-01 sshd[1315]: Invalid user popa from 180.232.83.238 Sep 3 18:19:03 itv-usvr-01 sshd[1315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.232.83.238 Sep 3 18:19:03 itv-usvr-01 sshd[1315]: Invalid user popa from 180.232.83.238 Sep 3 18:19:05 itv-usvr-01 sshd[1315]: Failed password for invalid user popa from 180.232.83.238 port 52610 ssh2 Sep 3 18:23:52 itv-usvr-01 sshd[1487]: Invalid user rms from 180.232.83.238	2019-09-09 22:37:38
114.33.108.250	attackbotsspam	port scan and connect, tcp 23 (telnet)	2019-09-09 22:53:43
205.212.73.15	attackspam	Posted spammy content - typically SEO webspam	2019-09-09 22:21:32
209.59.36.133	attackspam	Posted spammy content - typically SEO webspam	2019-09-09 22:32:14

最近上报的IP列表

20.169.25.127	106.59.238.248	20.222.193.77	124.198.57.89
144.168.152.116	117.63.74.217	20.226.188.200	113.93.242.97
27.158.120.200	103.115.21.125	20.197.204.29	20.230.43.183
110.182.225.181	117.60.113.198	20.100.219.201	38.107.221.148
95.181.151.58	206.189.192.16	52.201.105.156	156.239.54.252