181.139.42.31 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Colombia

运营商(isp): EPM Telecomunicaciones S.A. E.S.P.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Automatic report - Port Scan Attack	2019-10-16 12:33:46

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 181.139.42.31
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53719
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;181.139.42.31.			IN	A

;; AUTHORITY SECTION:
.			537	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101501 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 16 12:33:42 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

31.42.139.181.in-addr.arpa domain name pointer hfc-181-139-42-31.une.net.co.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
31.42.139.181.in-addr.arpa	name = hfc-181-139-42-31.une.net.co.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
123.58.109.42	attack	Aug 20 15:09:01 eventyay sshd[27030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.58.109.42 Aug 20 15:09:02 eventyay sshd[27030]: Failed password for invalid user munge from 123.58.109.42 port 39386 ssh2 Aug 20 15:13:50 eventyay sshd[27169]: Failed password for root from 123.58.109.42 port 45828 ssh2 ...	2020-08-20 23:31:44
157.48.173.97	attackbotsspam	1597925088 - 08/20/2020 14:04:48 Host: 157.48.173.97/157.48.173.97 Port: 445 TCP Blocked	2020-08-20 23:30:23
84.228.10.144	attack	Automatic report - Banned IP Access	2020-08-20 23:08:57
114.124.132.214	attackspambots	port scan and connect, tcp 443 (https)	2020-08-20 23:36:45
85.209.0.253	attack	(sshd) Failed SSH login from 85.209.0.253 (RU/Russia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 20 17:10:44 amsweb01 sshd[28895]: Did not receive identification string from 85.209.0.253 port 16062 Aug 20 17:10:49 amsweb01 sshd[28896]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.209.0.253 user=root Aug 20 17:10:49 amsweb01 sshd[28898]: Did not receive identification string from 85.209.0.253 port 20864 Aug 20 17:10:49 amsweb01 sshd[28899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.209.0.253 user=root Aug 20 17:10:51 amsweb01 sshd[28896]: Failed password for root from 85.209.0.253 port 59038 ssh2	2020-08-20 23:25:33
139.155.68.58	attackbotsspam	2020-08-20T18:01:37.244006mail.standpoint.com.ua sshd[24943]: Failed password for invalid user integral from 139.155.68.58 port 53251 ssh2 2020-08-20T18:03:04.007789mail.standpoint.com.ua sshd[25131]: Invalid user yseo from 139.155.68.58 port 58313 2020-08-20T18:03:04.010551mail.standpoint.com.ua sshd[25131]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.68.58 2020-08-20T18:03:04.007789mail.standpoint.com.ua sshd[25131]: Invalid user yseo from 139.155.68.58 port 58313 2020-08-20T18:03:06.099754mail.standpoint.com.ua sshd[25131]: Failed password for invalid user yseo from 139.155.68.58 port 58313 ssh2 ...	2020-08-20 23:35:44
212.129.242.171	attackspam	Aug 20 14:35:28 rocket sshd[25178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.242.171 Aug 20 14:35:31 rocket sshd[25178]: Failed password for invalid user ftpuser from 212.129.242.171 port 32856 ssh2 ...	2020-08-20 23:28:13
1.170.5.111	attack	1597925070 - 08/20/2020 14:04:30 Host: 1.170.5.111/1.170.5.111 Port: 445 TCP Blocked	2020-08-20 23:41:48
129.154.67.65	attackspambots	2020-08-20T12:00:28.808859vps1033 sshd[27429]: Invalid user templates from 129.154.67.65 port 36721 2020-08-20T12:00:28.814415vps1033 sshd[27429]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=oc-129-154-67-65.compute.oraclecloud.com 2020-08-20T12:00:28.808859vps1033 sshd[27429]: Invalid user templates from 129.154.67.65 port 36721 2020-08-20T12:00:30.836138vps1033 sshd[27429]: Failed password for invalid user templates from 129.154.67.65 port 36721 ssh2 2020-08-20T12:04:33.728740vps1033 sshd[3637]: Invalid user nosaj from 129.154.67.65 port 51376 ...	2020-08-20 23:38:40
5.57.33.71	attack	(sshd) Failed SSH login from 5.57.33.71 (IR/Iran/-): 5 in the last 3600 secs	2020-08-20 23:52:23
50.238.150.158	attackbots	2020-08-20T08:05:06.110182devel sshd[6011]: Failed password for invalid user admin from 50.238.150.158 port 45182 ssh2 2020-08-20T08:05:06.656038devel sshd[6027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.238.150.158 user=root 2020-08-20T08:05:09.173275devel sshd[6027]: Failed password for root from 50.238.150.158 port 45354 ssh2	2020-08-20 23:16:28
119.8.40.235	attackbotsspam	Aug 20 10:49:08 v11 sshd[11614]: Invalid user evelyn from 119.8.40.235 port 54172 Aug 20 10:49:08 v11 sshd[11614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.8.40.235 Aug 20 10:49:11 v11 sshd[11614]: Failed password for invalid user evelyn from 119.8.40.235 port 54172 ssh2 Aug 20 10:49:11 v11 sshd[11614]: Received disconnect from 119.8.40.235 port 54172:11: Bye Bye [preauth] Aug 20 10:49:11 v11 sshd[11614]: Disconnected from 119.8.40.235 port 54172 [preauth] Aug 20 10:49:32 v11 sshd[11635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.8.40.235 user=r.r Aug 20 10:49:34 v11 sshd[11635]: Failed password for r.r from 119.8.40.235 port 54746 ssh2 Aug 20 10:49:34 v11 sshd[11635]: Received disconnect from 119.8.40.235 port 54746:11: Bye Bye [preauth] Aug 20 10:49:34 v11 sshd[11635]: Disconnected from 119.8.40.235 port 54746 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/v	2020-08-20 23:26:40
178.33.212.220	attackspambots	prod6 ...	2020-08-20 23:30:37
152.254.132.67	attackspam	Aug 20 09:38:46 vestacp sshd[5298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.254.132.67 user=r.r Aug 20 09:38:48 vestacp sshd[5298]: Failed password for r.r from 152.254.132.67 port 54460 ssh2 Aug 20 09:38:49 vestacp sshd[5298]: Received disconnect from 152.254.132.67 port 54460:11: Bye Bye [preauth] Aug 20 09:38:49 vestacp sshd[5298]: Disconnected from authenticating user r.r 152.254.132.67 port 54460 [preauth] Aug 20 09:47:03 vestacp sshd[6111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.254.132.67 user=r.r Aug 20 09:47:05 vestacp sshd[6111]: Failed password for r.r from 152.254.132.67 port 42696 ssh2 Aug 20 09:47:07 vestacp sshd[6111]: Received disconnect from 152.254.132.67 port 42696:11: Bye Bye [preauth] Aug 20 09:47:07 vestacp sshd[6111]: Disconnected from authenticating user r.r 152.254.132.67 port 42696 [preauth] Aug 20 09:49:18 vestacp sshd[6306]: Invalid user........ -------------------------------	2020-08-20 23:17:50
154.66.218.218	attackspam	Aug 20 15:39:02 home sshd[2203087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.66.218.218 user=root Aug 20 15:39:05 home sshd[2203087]: Failed password for root from 154.66.218.218 port 9083 ssh2 Aug 20 15:42:17 home sshd[2204303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.66.218.218 user=root Aug 20 15:42:20 home sshd[2204303]: Failed password for root from 154.66.218.218 port 40950 ssh2 Aug 20 15:45:35 home sshd[2205480]: Invalid user user from 154.66.218.218 port 17214 ...	2020-08-20 23:40:09

最近上报的IP列表

42.118.50.116	208.99.160.56	112.109.20.242	36.71.234.11
82.52.165.140	8.9.15.143	177.244.52.30	191.162.245.176
211.23.25.208	67.225.190.88	209.133.209.211	192.115.165.3
14.235.153.253	202.179.10.106	1.54.196.254	178.249.187.222
14.174.101.209	178.176.185.242	122.96.40.124	124.156.55.172