124.12.52.31 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, Province of China

运营商(isp): Taiwan Fixed Network Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Honeypot attack, port: 445, PTR: 124-12-52-31.dynamic.tfn.net.tw.	2019-12-02 15:27:35

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.12.52.31
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12611
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.12.52.31.			IN	A

;; AUTHORITY SECTION:
.			482	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120200 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 02 15:27:31 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

31.52.12.124.in-addr.arpa domain name pointer 124-12-52-31.dynamic.tfn.net.tw.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
31.52.12.124.in-addr.arpa	name = 124-12-52-31.dynamic.tfn.net.tw.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
114.34.109.184	attack	Aug 20 04:39:03 unicornsoft sshd\[18398\]: Invalid user cacti from 114.34.109.184 Aug 20 04:39:03 unicornsoft sshd\[18398\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.34.109.184 Aug 20 04:39:05 unicornsoft sshd\[18398\]: Failed password for invalid user cacti from 114.34.109.184 port 34706 ssh2	2019-08-20 13:03:17
201.127.97.114	attack	firewall-block, port(s): 23/tcp	2019-08-20 13:21:23
142.93.58.123	attackspam	SSH Bruteforce attack	2019-08-20 13:15:31
178.33.50.135	attackbotsspam	Aug 20 06:27:28 SilenceServices sshd[12271]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.50.135 Aug 20 06:27:31 SilenceServices sshd[12271]: Failed password for invalid user wargames from 178.33.50.135 port 42642 ssh2 Aug 20 06:31:24 SilenceServices sshd[15413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.50.135	2019-08-20 12:44:42
45.227.253.114	attackbots	Aug 20 06:40:38 mailserver postfix/anvil[74486]: statistics: max connection rate 2/60s for (smtps:45.227.253.114) at Aug 20 06:39:19 Aug 20 07:47:57 mailserver postfix/smtps/smtpd[74932]: warning: hostname hosting-by.directwebhost.org does not resolve to address 45.227.253.114: hostname nor servname provided, or not known Aug 20 07:47:57 mailserver postfix/smtps/smtpd[74932]: connect from unknown[45.227.253.114] Aug 20 07:48:00 mailserver dovecot: auth-worker(74934): sql([hidden],45.227.253.114): Password mismatch Aug 20 07:48:02 mailserver postfix/smtps/smtpd[74932]: warning: unknown[45.227.253.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 20 07:48:02 mailserver postfix/smtps/smtpd[74932]: lost connection after AUTH from unknown[45.227.253.114] Aug 20 07:48:02 mailserver postfix/smtps/smtpd[74932]: disconnect from unknown[45.227.253.114] Aug 20 07:48:02 mailserver postfix/smtps/smtpd[74932]: warning: hostname hosting-by.directwebhost.org does not resolve to address 45.227.253.114: hostname nor ser	2019-08-20 13:51:36
5.3.6.166	attack	Aug 20 06:39:39 debian sshd\[7781\]: Invalid user nick from 5.3.6.166 port 37516 Aug 20 06:39:39 debian sshd\[7781\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.3.6.166 ...	2019-08-20 13:53:26
162.158.123.139	attackspambots	8443/tcp 8443/tcp 8443/tcp... [2019-08-20]4pkt,1pt.(tcp)	2019-08-20 13:00:49
116.52.225.68	attack	52869/tcp [2019-08-20]1pkt	2019-08-20 13:44:09
83.97.20.160	attackspam	5353/udp 5353/udp [2019-08-20]2pkt	2019-08-20 13:09:44
40.73.108.181	attack	Aug 19 18:07:09 lcprod sshd\[23231\]: Invalid user stan from 40.73.108.181 Aug 19 18:07:09 lcprod sshd\[23231\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.108.181 Aug 19 18:07:12 lcprod sshd\[23231\]: Failed password for invalid user stan from 40.73.108.181 port 38978 ssh2 Aug 19 18:10:22 lcprod sshd\[23628\]: Invalid user leslie from 40.73.108.181 Aug 19 18:10:22 lcprod sshd\[23628\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.108.181	2019-08-20 13:26:43
37.59.54.90	attackbots	2019-08-20T05:29:32.099631abusebot-8.cloudsearch.cf sshd\[17779\]: Invalid user nikolay from 37.59.54.90 port 33638	2019-08-20 13:52:01
134.175.59.235	attackbots	Aug 20 08:00:01 yabzik sshd[28920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.59.235 Aug 20 08:00:03 yabzik sshd[28920]: Failed password for invalid user lxm from 134.175.59.235 port 39771 ssh2 Aug 20 08:04:34 yabzik sshd[30528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.59.235	2019-08-20 13:12:54
105.159.254.100	attack	2019-08-20T04:42:27.264217abusebot-8.cloudsearch.cf sshd\[17508\]: Invalid user admin from 105.159.254.100 port 35708	2019-08-20 12:55:53
195.154.27.239	attackspambots	Aug 20 08:25:53 server sshd\[3127\]: Invalid user ftb from 195.154.27.239 port 42453 Aug 20 08:25:53 server sshd\[3127\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.154.27.239 Aug 20 08:25:54 server sshd\[3127\]: Failed password for invalid user ftb from 195.154.27.239 port 42453 ssh2 Aug 20 08:30:02 server sshd\[19973\]: User root from 195.154.27.239 not allowed because listed in DenyUsers Aug 20 08:30:02 server sshd\[19973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.154.27.239 user=root	2019-08-20 13:41:18
185.185.253.39	attack	Aug 20 07:46:44 www sshd\[65673\]: Invalid user ftpuser1 from 185.185.253.39 Aug 20 07:46:44 www sshd\[65673\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.185.253.39 Aug 20 07:46:46 www sshd\[65673\]: Failed password for invalid user ftpuser1 from 185.185.253.39 port 34816 ssh2 ...	2019-08-20 12:56:19

最近上报的IP列表

84.105.140.152	208.124.172.246	185.150.64.252	111.43.223.32
126.183.217.55	123.171.152.176	210.64.145.3	12.71.19.208
42.179.129.46	192.143.78.62	52.134.141.144	172.68.171.71
198.20.210.91	63.121.93.115	199.185.93.73	193.240.227.84
36.162.202.233	91.118.165.136	65.226.15.69	73.13.181.129