138.94.31.239 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.94.31.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59060
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.94.31.239.			IN	A

;; AUTHORITY SECTION:
.			589	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:55:39 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 239.31.94.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 239.31.94.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
162.243.25.25	attackspambots	SSH Invalid Login	2020-05-09 08:07:43
120.88.46.226	attackbots	2020-05-09T01:32:00.743891amanda2.illicoweb.com sshd\[21547\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120-88-46-226.snat21.hns.net.in user=root 2020-05-09T01:32:02.179336amanda2.illicoweb.com sshd\[21547\]: Failed password for root from 120.88.46.226 port 34742 ssh2 2020-05-09T01:36:11.327772amanda2.illicoweb.com sshd\[21938\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120-88-46-226.snat21.hns.net.in user=root 2020-05-09T01:36:14.223272amanda2.illicoweb.com sshd\[21938\]: Failed password for root from 120.88.46.226 port 45190 ssh2 2020-05-09T01:40:09.539849amanda2.illicoweb.com sshd\[22074\]: Invalid user network from 120.88.46.226 port 55640 2020-05-09T01:40:09.542122amanda2.illicoweb.com sshd\[22074\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120-88-46-226.snat21.hns.net.in ...	2020-05-09 07:42:41
104.131.62.14	attackbotsspam	masscan/1.0+(https://github.com/robertdavidgraham/masscan)	2020-05-09 07:33:00
52.172.4.141	attackbots	May 8 23:35:23 OPSO sshd\[9182\]: Invalid user sybase from 52.172.4.141 port 39738 May 8 23:35:23 OPSO sshd\[9182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.4.141 May 8 23:35:26 OPSO sshd\[9182\]: Failed password for invalid user sybase from 52.172.4.141 port 39738 ssh2 May 8 23:40:01 OPSO sshd\[9627\]: Invalid user erick from 52.172.4.141 port 50920 May 8 23:40:01 OPSO sshd\[9627\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.4.141	2020-05-09 08:04:56
141.98.81.81	attack	May 8 20:29:54 firewall sshd[31703]: Invalid user 1234 from 141.98.81.81 May 8 20:29:56 firewall sshd[31703]: Failed password for invalid user 1234 from 141.98.81.81 port 32974 ssh2 May 8 20:30:30 firewall sshd[31771]: Invalid user user from 141.98.81.81 ...	2020-05-09 07:40:51
156.96.58.106	attack	[2020-05-08 19:38:59] NOTICE[1157][C-00001b58] chan_sip.c: Call from '' (156.96.58.106:51677) to extension '225441519470725' rejected because extension not found in context 'public'. [2020-05-08 19:38:59] SECURITY[1173] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-05-08T19:38:59.636-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="225441519470725",SessionID="0x7f5f100266a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/156.96.58.106/51677",ACLName="no_extension_match" [2020-05-08 19:40:44] NOTICE[1157][C-00001b60] chan_sip.c: Call from '' (156.96.58.106:62334) to extension '22500441519470725' rejected because extension not found in context 'public'. [2020-05-08 19:40:44] SECURITY[1173] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-05-08T19:40:44.498-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="22500441519470725",SessionID="0x7f5f1025af28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/ ...	2020-05-09 08:03:58
40.68.133.163	attackbotsspam	May 8 17:46:12 NPSTNNYC01T sshd[14331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.68.133.163 May 8 17:46:14 NPSTNNYC01T sshd[14331]: Failed password for invalid user postmaster from 40.68.133.163 port 55280 ssh2 May 8 17:50:19 NPSTNNYC01T sshd[14792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.68.133.163 ...	2020-05-09 07:55:12
185.50.149.12	attack	2020-05-09 01:45:23 dovecot_login authenticator failed for \(\[185.50.149.12\]\) \[185.50.149.12\]: 535 Incorrect authentication data \(set_id=support@orogest.it\) 2020-05-09 01:45:34 dovecot_login authenticator failed for \(\[185.50.149.12\]\) \[185.50.149.12\]: 535 Incorrect authentication data 2020-05-09 01:45:46 dovecot_login authenticator failed for \(\[185.50.149.12\]\) \[185.50.149.12\]: 535 Incorrect authentication data 2020-05-09 01:46:01 dovecot_login authenticator failed for \(\[185.50.149.12\]\) \[185.50.149.12\]: 535 Incorrect authentication data 2020-05-09 01:46:02 dovecot_login authenticator failed for \(\[185.50.149.12\]\) \[185.50.149.12\]: 535 Incorrect authentication data \(set_id=support\)	2020-05-09 07:50:05
14.215.165.133	attackspambots	May 8 19:30:33 mail sshd\[53102\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.215.165.133 user=root ...	2020-05-09 07:37:37
78.36.40.179	attackspam	(imapd) Failed IMAP login from 78.36.40.179 (RU/Russia/ip78-36-40-179.onego.ru): 1 in the last 3600 secs	2020-05-09 07:36:29
194.61.55.148	attack	RDP Brute-Force (Grieskirchen RZ1)	2020-05-09 07:53:31
207.46.13.70	attackbots	207.46.13.70 - - [08/May/2020:23:45:26 +0300] "GET /en/shop/data:text/javascript;base64,%20dmfyihdvb2nvbw1lcmnlx3bhcmftcz17imfqyxhfdxjsijoixc93cc1hzg1pblwvywrtaw4tywphec5wahailcj3y19hamf4x3vybci6ilwvzw5clz93yy1hamf4psulzw5kcg9pbnqljsj9ow== HTTP/1.0" 403 1523 "-" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" 207.46.13.70 - - [08/May/2020:23:46:06 +0300] "GET /en/cart/data:text/javascript;base64,%20dmfyihdjx2nhcnrfznjhz21lbnrzx3bhcmftcz17imfqyxhfdxjsijoixc93cc1hzg1pblwvywrtaw4tywphec5wahailcj3y19hamf4x3vybci6ilwvzw5clz93yy1hamf4psulzw5kcg9pbnqljsisimnhcnrfagfzaf9rzxkioij3y19jyxj0x2hhc2hfzgm0mjc4mtzjngfjnze3ntm2ntu5mtqznmi2ytdjotiilcjmcmfnbwvudf9uyw1lijoid2nfznjhz21lbnrzx2rjndi3ode2yzrhyzcxnzuznju1ote0mzzinme3yzkyiiwicmvxdwvzdf90aw1lb3v0ijointawmcj9ow== HTTP/1.0" 403 1523 "-" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" 207.46.13.70 - - [08/May/2020:23:46:53 +0300] "GET /en/shop/data:text/javascript;base64,%20alf1zxj5kcdib2r5jykuymluzcgnd2nfznjhz21 ...	2020-05-09 08:02:09
36.152.23.123	attack	SSH Invalid Login	2020-05-09 07:42:59
182.191.20.175	attackbots	Tried sshing with brute force.	2020-05-09 08:11:07
170.106.36.137	attackspambots	port scan and connect, tcp 23 (telnet)	2020-05-09 07:35:14

最近上报的IP列表

138.94.253.70	138.94.253.10	138.94.255.238	138.94.253.163
138.94.36.19	138.94.36.12	138.94.36.14	138.94.36.210
118.190.161.168	138.94.36.242	138.94.36.90	138.94.37.28
138.94.38.22	138.94.38.20	138.94.37.58	138.94.39.26
138.94.4.233	138.94.39.66	138.94.39.250	138.94.44.227