124.12.52.31 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, Province of China

运营商(isp): Taiwan Fixed Network Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Honeypot attack, port: 445, PTR: 124-12-52-31.dynamic.tfn.net.tw.	2019-12-02 15:27:35

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.12.52.31
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12611
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.12.52.31.			IN	A

;; AUTHORITY SECTION:
.			482	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120200 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 02 15:27:31 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

31.52.12.124.in-addr.arpa domain name pointer 124-12-52-31.dynamic.tfn.net.tw.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
31.52.12.124.in-addr.arpa	name = 124-12-52-31.dynamic.tfn.net.tw.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
87.118.86.95	attack	Wordpress Admin Login attack	2019-08-01 04:22:38
185.222.211.3	attackbotsspam	NOQUEUE: reject: RCPT from unknown\[185.222.211.3\]: 554 5.7.1 Service unavailable\; host \[185.222.211.3\] blocked using sbl-xbl.spamhaus.org\; https://www.spamhaus.org/sbl/query/SBL442573	2019-08-01 04:18:22
15.164.110.20	attackspambots	Jul 31 14:23:59 archiv sshd[30331]: Invalid user mi from 15.164.110.20 port 38024 Jul 31 14:23:59 archiv sshd[30331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-15-164-110-20.ap-northeast-2.compute.amazonaws.com Jul 31 14:24:01 archiv sshd[30331]: Failed password for invalid user mi from 15.164.110.20 port 38024 ssh2 Jul 31 14:24:26 archiv sshd[30331]: Received disconnect from 15.164.110.20 port 38024:11: Bye Bye [preauth] Jul 31 14:24:26 archiv sshd[30331]: Disconnected from 15.164.110.20 port 38024 [preauth] Jul 31 15:17:23 archiv sshd[30608]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-15-164-110-20.ap-northeast-2.compute.amazonaws.com user=r.r Jul 31 15:17:24 archiv sshd[30608]: Failed password for r.r from 15.164.110.20 port 60940 ssh2 Jul 31 15:17:25 archiv sshd[30608]: Received disconnect from 15.164.110.20 port 60940:11: Bye Bye [preauth] Jul 31 15:17:25 archiv sshd........ -------------------------------	2019-08-01 04:56:50
91.121.157.83	attack	Jul 31 13:12:11 xb0 sshd[17400]: Failed password for invalid user david from 91.121.157.83 port 38128 ssh2 Jul 31 13:12:11 xb0 sshd[17400]: Received disconnect from 91.121.157.83: 11: Bye Bye [preauth] Jul 31 13:21:36 xb0 sshd[14061]: Failed password for invalid user colleen from 91.121.157.83 port 38176 ssh2 Jul 31 13:21:36 xb0 sshd[14061]: Received disconnect from 91.121.157.83: 11: Bye Bye [preauth] Jul 31 13:25:49 xb0 sshd[11346]: Failed password for invalid user luciana from 91.121.157.83 port 35444 ssh2 Jul 31 13:25:49 xb0 sshd[11346]: Received disconnect from 91.121.157.83: 11: Bye Bye [preauth] Jul 31 13:29:52 xb0 sshd[21508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.157.83 user=ntpd Jul 31 13:29:54 xb0 sshd[21508]: Failed password for ntpd from 91.121.157.83 port 32842 ssh2 Jul 31 13:29:54 xb0 sshd[21508]: Received disconnect from 91.121.157.83: 11: Bye Bye [preauth] Jul 31 13:34:01 xb0 sshd[20593]: Failed ........ -------------------------------	2019-08-01 04:44:34
153.36.236.46	attack	Jul 25 13:17:38 server sshd\[60576\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.46 user=root Jul 25 13:17:40 server sshd\[60576\]: Failed password for root from 153.36.236.46 port 17874 ssh2 Jul 25 13:18:02 server sshd\[60589\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.46 user=root ...	2019-08-01 04:43:49
5.70.112.146	attackspambots	Telnet/23 MH Probe, BF, Hack -	2019-08-01 04:51:31
104.131.63.104	attack	WordPress brute force	2019-08-01 04:25:56
59.188.250.56	attackspam	Aug 1 01:43:54 vibhu-HP-Z238-Microtower-Workstation sshd\[31346\]: Invalid user gx from 59.188.250.56 Aug 1 01:43:54 vibhu-HP-Z238-Microtower-Workstation sshd\[31346\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.188.250.56 Aug 1 01:43:56 vibhu-HP-Z238-Microtower-Workstation sshd\[31346\]: Failed password for invalid user gx from 59.188.250.56 port 49518 ssh2 Aug 1 01:48:48 vibhu-HP-Z238-Microtower-Workstation sshd\[31484\]: Invalid user cisco from 59.188.250.56 Aug 1 01:48:48 vibhu-HP-Z238-Microtower-Workstation sshd\[31484\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.188.250.56 ...	2019-08-01 04:19:54
208.112.85.149	attack	Jul 31 20:48:16 server postfix/smtpd[3306]: warning: lin-web60.hostmanagement.net[208.112.85.149]: SASL PLAIN authentication failed: Jul 31 20:48:23 server postfix/smtpd[3306]: warning: lin-web60.hostmanagement.net[208.112.85.149]: SASL PLAIN authentication failed: Jul 31 20:48:34 server postfix/smtps/smtpd[3311]: warning: lin-web60.hostmanagement.net[208.112.85.149]: SASL PLAIN authentication failed:	2019-08-01 04:36:13
51.79.69.48	attackspam	Jul 31 22:41:40 SilenceServices sshd[20665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.69.48 Jul 31 22:41:42 SilenceServices sshd[20665]: Failed password for invalid user mmy from 51.79.69.48 port 57790 ssh2 Jul 31 22:47:45 SilenceServices sshd[24503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.69.48	2019-08-01 04:50:45
178.62.127.32	attack	Jul 31 23:46:24 server sshd\[31426\]: Invalid user user5 from 178.62.127.32 port 32958 Jul 31 23:46:24 server sshd\[31426\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.127.32 Jul 31 23:46:25 server sshd\[31426\]: Failed password for invalid user user5 from 178.62.127.32 port 32958 ssh2 Jul 31 23:54:48 server sshd\[10381\]: Invalid user new from 178.62.127.32 port 58318 Jul 31 23:54:48 server sshd\[10381\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.127.32	2019-08-01 05:02:26
174.138.32.244	attackspambots	Jul 31 15:48:32 debian sshd\[18077\]: Invalid user informatica from 174.138.32.244 port 58724 Jul 31 15:48:32 debian sshd\[18077\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.32.244 Jul 31 15:48:34 debian sshd\[18077\]: Failed password for invalid user informatica from 174.138.32.244 port 58724 ssh2 ...	2019-08-01 04:49:52
119.81.39.105	attack	Port scan on 1 port(s): 111	2019-08-01 05:04:11
125.234.116.30	attackspambots	Brute force RDP, port 3389	2019-08-01 04:17:24
207.46.13.35	attack	Automatic report - Banned IP Access	2019-08-01 04:24:30

最近上报的IP列表

84.105.140.152	208.124.172.246	185.150.64.252	111.43.223.32
126.183.217.55	123.171.152.176	210.64.145.3	12.71.19.208
42.179.129.46	192.143.78.62	52.134.141.144	172.68.171.71
198.20.210.91	63.121.93.115	199.185.93.73	193.240.227.84
36.162.202.233	91.118.165.136	65.226.15.69	73.13.181.129