104.31.186.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.31.186.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54128
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.31.186.42.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021301 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 11:37:27 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 42.186.31.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.186.31.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
61.7.240.185	attackbotsspam	2020-08-30 19:48:16,983 fail2ban.actions [1312]: NOTICE [sshd] Ban 61.7.240.185 2020-08-30 20:05:01,030 fail2ban.actions [1312]: NOTICE [sshd] Ban 61.7.240.185 2020-08-30 20:21:40,728 fail2ban.actions [1312]: NOTICE [sshd] Ban 61.7.240.185 2020-08-30 20:38:21,318 fail2ban.actions [1312]: NOTICE [sshd] Ban 61.7.240.185 2020-08-30 20:54:46,522 fail2ban.actions [1312]: NOTICE [sshd] Ban 61.7.240.185 ...	2020-09-05 03:05:20
45.160.180.241	attack	Sep 3 18:43:27 mellenthin postfix/smtpd[20267]: NOQUEUE: reject: RCPT from unknown[45.160.180.241]: 554 5.7.1 Service unavailable; Client host [45.160.180.241] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/45.160.180.241; from= to= proto=ESMTP helo=<241-180-160-45.conectnet.inf.br>	2020-09-05 03:42:50
113.140.80.174	attack	Invalid user ali from 113.140.80.174 port 40853	2020-09-05 03:42:37
49.88.112.117	attack	Sep 4 20:57:01 OPSO sshd\[1539\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.117 user=root Sep 4 20:57:03 OPSO sshd\[1539\]: Failed password for root from 49.88.112.117 port 34201 ssh2 Sep 4 20:57:05 OPSO sshd\[1539\]: Failed password for root from 49.88.112.117 port 34201 ssh2 Sep 4 20:57:08 OPSO sshd\[1539\]: Failed password for root from 49.88.112.117 port 34201 ssh2 Sep 4 20:59:03 OPSO sshd\[1721\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.117 user=root	2020-09-05 03:16:44
93.64.5.34	attack	(sshd) Failed SSH login from 93.64.5.34 (IT/Italy/net-93-64-5-34.cust.vodafonedsl.it): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 4 15:14:06 amsweb01 sshd[1158]: Invalid user angel from 93.64.5.34 port 4730 Sep 4 15:14:08 amsweb01 sshd[1158]: Failed password for invalid user angel from 93.64.5.34 port 4730 ssh2 Sep 4 15:22:59 amsweb01 sshd[2432]: Invalid user yang from 93.64.5.34 port 11198 Sep 4 15:23:01 amsweb01 sshd[2432]: Failed password for invalid user yang from 93.64.5.34 port 11198 ssh2 Sep 4 15:26:29 amsweb01 sshd[3144]: Invalid user zz from 93.64.5.34 port 37844	2020-09-05 03:32:23
142.93.122.161	attackspambots	142.93.122.161 - - [04/Sep/2020:19:08:15 +0000] "GET /wp-login.php HTTP/1.1" 403 154 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-05 03:39:19
190.203.55.55	attackspam	Honeypot attack, port: 445, PTR: 190-203-55-55.dyn.dsl.cantv.net.	2020-09-05 03:12:17
192.241.239.54	attackspambots	Port scan denied	2020-09-05 03:18:24
111.201.131.153	attack	Invalid user tester from 111.201.131.153 port 47806	2020-09-05 03:15:00
116.212.131.90	attackspam	srvr3: (mod_security) mod_security (id:920350) triggered by 116.212.131.90 (AU/Australia/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/03 18:43:28 [error] 365944#0: 1946 [client 116.212.131.90] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159915140894.207379"] [ref "o0,14v21,14"], client: 116.212.131.90, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-09-05 03:39:55
42.104.109.194	attackspambots	Invalid user eric from 42.104.109.194 port 58674	2020-09-05 03:32:03
151.177.108.50	attackspam	sshd: Failed password for invalid user .... from 151.177.108.50 port 56068 ssh2	2020-09-05 03:41:08
45.148.10.28	attackbots	Scanning an empty webserver with deny all robots.txt	2020-09-05 03:18:46
183.82.100.169	attackbots	Honeypot attack, port: 445, PTR: broadband.actcorp.in.	2020-09-05 03:15:27
106.13.190.51	attackbots	2020-09-04T12:52:33.717392linuxbox-skyline sshd[82272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.190.51 user=root 2020-09-04T12:52:35.613963linuxbox-skyline sshd[82272]: Failed password for root from 106.13.190.51 port 54548 ssh2 ...	2020-09-05 03:26:08

最近上报的IP列表

61.247.239.138	175.58.239.69	198.132.32.156	227.132.240.172
227.1.197.170	97.85.101.201	130.91.183.37	215.213.36.46
154.114.86.97	96.200.120.244	209.244.164.76	12.62.134.202
178.212.193.145	154.88.48.220	215.21.195.36	99.94.137.150
243.111.224.61	180.28.130.33	95.210.148.129	139.244.46.235