142.32.104.8 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.32.104.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27702
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.32.104.8.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021901 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 02:20:48 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 8.104.32.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 8.104.32.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
34.76.135.80	attackspam	Oct 7 14:49:54 localhost kernel: [4212013.822983] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=34.76.135.80 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=54321 PROTO=TCP SPT=42894 DPT=16993 WINDOW=65535 RES=0x00 SYN URGP=0 Oct 7 14:49:54 localhost kernel: [4212013.823008] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=34.76.135.80 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=54321 PROTO=TCP SPT=42894 DPT=16993 SEQ=3811388902 ACK=0 WINDOW=65535 RES=0x00 SYN URGP=0 Oct 7 15:52:22 localhost kernel: [4215761.555386] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=34.76.135.80 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=54321 PROTO=TCP SPT=42383 DPT=23 WINDOW=65535 RES=0x00 SYN URGP=0 Oct 7 15:52:22 localhost kernel: [4215761.555411] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=34.76.135.80 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=	2019-10-08 05:03:26
185.83.115.196	attackspambots	Oct 6 21:47:21 toyboy sshd[15716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.83.115.196 user=r.r Oct 6 21:47:23 toyboy sshd[15716]: Failed password for r.r from 185.83.115.196 port 35516 ssh2 Oct 6 21:47:23 toyboy sshd[15716]: Received disconnect from 185.83.115.196: 11: Bye Bye [preauth] Oct 6 22:09:54 toyboy sshd[17178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.83.115.196 user=r.r Oct 6 22:09:56 toyboy sshd[17178]: Failed password for r.r from 185.83.115.196 port 43808 ssh2 Oct 6 22:09:56 toyboy sshd[17178]: Received disconnect from 185.83.115.196: 11: Bye Bye [preauth] Oct 6 22:13:56 toyboy sshd[17471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.83.115.196 user=r.r Oct 6 22:13:57 toyboy sshd[17471]: Failed password for r.r from 185.83.115.196 port 55230 ssh2 Oct 6 22:13:58 toyboy sshd[17471]: Received discon........ -------------------------------	2019-10-08 05:01:12
106.13.217.93	attackbotsspam	Oct 6 08:04:41 uapps sshd[14145]: User r.r from 106.13.217.93 not allowed because not listed in AllowUsers Oct 6 08:04:41 uapps sshd[14145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.217.93 user=r.r Oct 6 08:04:43 uapps sshd[14145]: Failed password for invalid user r.r from 106.13.217.93 port 43594 ssh2 Oct 6 08:04:45 uapps sshd[14145]: Received disconnect from 106.13.217.93: 11: Bye Bye [preauth] Oct 6 08:14:46 uapps sshd[14220]: User r.r from 106.13.217.93 not allowed because not listed in AllowUsers Oct 6 08:14:46 uapps sshd[14220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.217.93 user=r.r Oct 6 08:14:48 uapps sshd[14220]: Failed password for invalid user r.r from 106.13.217.93 port 45258 ssh2 Oct 6 08:14:49 uapps sshd[14220]: Received disconnect from 106.13.217.93: 11: Bye Bye [preauth] Oct 6 08:19:31 uapps sshd[14244]: User r.r from 106.13.217.93 not........ -------------------------------	2019-10-08 05:23:55
179.9.179.52	attack	Port scan: Attack repeated for 24 hours	2019-10-08 05:25:25
185.176.27.42	attack	10/07/2019-22:15:28.977342 185.176.27.42 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-08 05:05:51
81.171.107.175	attackbotsspam	\[2019-10-07 17:07:39\] NOTICE\[1887\] chan_sip.c: Registration from '\' failed for '81.171.107.175:52874' - Wrong password \[2019-10-07 17:07:39\] SECURITY\[1898\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-07T17:07:39.482-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="232",SessionID="0x7fc3acb54d28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/81.171.107.175/52874",Challenge="1cf91b4c",ReceivedChallenge="1cf91b4c",ReceivedHash="ac0fdfb6cd4bb61a78a958825f81b126" \[2019-10-07 17:16:05\] NOTICE\[1887\] chan_sip.c: Registration from '\' failed for '81.171.107.175:58784' - Wrong password \[2019-10-07 17:16:05\] SECURITY\[1898\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-07T17:16:05.582-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="9284",SessionID="0x7fc3aca55248",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/81.171.1	2019-10-08 05:20:35
188.127.249.159	attack	port scan and connect, tcp 27017 (mongodb)	2019-10-08 05:18:56
50.225.152.178	attack	Oct 7 07:42:16 xb0 sshd[8911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.225.152.178 user=r.r Oct 7 07:42:19 xb0 sshd[8911]: Failed password for r.r from 50.225.152.178 port 48340 ssh2 Oct 7 07:42:19 xb0 sshd[8911]: Received disconnect from 50.225.152.178: 11: Bye Bye [preauth] Oct 7 07:54:56 xb0 sshd[16263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.225.152.178 user=r.r Oct 7 07:54:58 xb0 sshd[16263]: Failed password for r.r from 50.225.152.178 port 37573 ssh2 Oct 7 07:54:58 xb0 sshd[16263]: Received disconnect from 50.225.152.178: 11: Bye Bye [preauth] Oct 7 07:58:47 xb0 sshd[12657]: Failed password for invalid user 123 from 50.225.152.178 port 58281 ssh2 Oct 7 07:58:47 xb0 sshd[12657]: Received disconnect from 50.225.152.178: 11: Bye Bye [preauth] Oct x@x Oct 7 08:02:36 xb0 sshd[10758]: Received disconnect from 50.225.152.178: 11: Bye Bye [preauth] Oct x@x Oct........ -------------------------------	2019-10-08 04:59:56
222.127.97.91	attackspambots	Oct 7 23:08:34 mail sshd[14337]: Failed password for root from 222.127.97.91 port 54685 ssh2 Oct 7 23:13:12 mail sshd[15089]: Failed password for root from 222.127.97.91 port 54964 ssh2	2019-10-08 05:30:45
104.227.191.170	attack	1,20-05/05 [bc02/m52] concatform PostRequest-Spammer scoring: wien2018	2019-10-08 05:08:02
103.89.91.156	attackspambots	RDP brute force attack detected by fail2ban	2019-10-08 04:58:14
111.231.89.197	attack	Oct 7 23:00:15 mout sshd[24489]: Invalid user Montecarlo123 from 111.231.89.197 port 36038	2019-10-08 05:01:45
94.191.87.254	attackspambots	Automatic report - Banned IP Access	2019-10-08 05:02:06
209.17.96.106	attackspam	Connection by 209.17.96.106 on port: 8000 got caught by honeypot at 10/7/2019 12:52:00 PM	2019-10-08 05:21:06
216.186.250.53	attack	Oct 7 21:51:33 km20725 sshd\[29235\]: Invalid user 666666 from 216.186.250.53Oct 7 21:51:35 km20725 sshd\[29235\]: Failed password for invalid user 666666 from 216.186.250.53 port 44506 ssh2Oct 7 21:51:40 km20725 sshd\[29242\]: Invalid user 888888 from 216.186.250.53Oct 7 21:51:43 km20725 sshd\[29242\]: Failed password for invalid user 888888 from 216.186.250.53 port 44622 ssh2 ...	2019-10-08 05:30:07

最近上报的IP列表

194.10.9.88	91.32.2.252	233.187.236.84	41.100.20.168
93.97.139.154	96.126.118.205	32.87.64.93	68.145.70.213
159.61.38.77	167.15.54.66	255.193.214.59	218.211.173.57
252.94.163.119	68.55.37.206	218.217.6.71	30.116.37.214
24.103.210.9	7.34.129.113	200.135.64.49	161.67.181.200