31.10.142.24 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Switzerland

运营商(isp): UPC Schweiz GmbH

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Attempts against non-existent wp-login	2020-09-01 04:49:14

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 31.10.142.24
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15066
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;31.10.142.24.			IN	A

;; AUTHORITY SECTION:
.			544	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020083101 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Sep 01 04:49:11 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

24.142.10.31.in-addr.arpa domain name pointer 31-10-142-24.cgn.dynamic.upc.ch.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
24.142.10.31.in-addr.arpa	name = 31-10-142-24.cgn.dynamic.upc.ch.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
111.243.41.194	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/111.243.41.194/ TW - 1H : (2806) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN3462 IP : 111.243.41.194 CIDR : 111.243.0.0/16 PREFIX COUNT : 390 UNIQUE IP COUNT : 12267520 WYKRYTE ATAKI Z ASN3462 : 1H - 280 3H - 1102 6H - 2233 12H - 2709 24H - 2718 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-09-24 01:47:56
81.174.227.29	attackspam	2019-09-23T16:59:21.688016abusebot-4.cloudsearch.cf sshd\[28140\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=sanyaade.plus.com	2019-09-24 01:43:41
192.99.17.189	attackbots	Sep 23 14:31:41 vps691689 sshd[7918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.17.189 Sep 23 14:31:43 vps691689 sshd[7918]: Failed password for invalid user kb from 192.99.17.189 port 54342 ssh2 ...	2019-09-24 02:02:06
113.214.28.242	attackbotsspam	Chat Spam	2019-09-24 01:55:15
81.174.227.31	attackspam	2019-09-23T16:59:21.688016abusebot-4.cloudsearch.cf sshd\[28140\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=sanyaade.plus.com	2019-09-24 01:48:42
49.88.112.55	attackspambots	Sep 23 15:34:16 server2 sshd\[19224\]: User root from 49.88.112.55 not allowed because not listed in AllowUsers Sep 23 15:34:16 server2 sshd\[19223\]: User root from 49.88.112.55 not allowed because not listed in AllowUsers Sep 23 15:34:16 server2 sshd\[19227\]: User root from 49.88.112.55 not allowed because not listed in AllowUsers Sep 23 15:34:16 server2 sshd\[19221\]: User root from 49.88.112.55 not allowed because not listed in AllowUsers Sep 23 15:34:17 server2 sshd\[19229\]: User root from 49.88.112.55 not allowed because not listed in AllowUsers Sep 23 15:36:31 server2 sshd\[19524\]: User root from 49.88.112.55 not allowed because not listed in AllowUsers	2019-09-24 01:39:33
220.130.178.36	attackbots	Sep 23 05:45:03 tdfoods sshd\[18136\]: Invalid user maxime from 220.130.178.36 Sep 23 05:45:03 tdfoods sshd\[18136\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-130-178-36.hinet-ip.hinet.net Sep 23 05:45:04 tdfoods sshd\[18136\]: Failed password for invalid user maxime from 220.130.178.36 port 54648 ssh2 Sep 23 05:49:53 tdfoods sshd\[18598\]: Invalid user upload from 220.130.178.36 Sep 23 05:49:53 tdfoods sshd\[18598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-130-178-36.hinet-ip.hinet.net	2019-09-24 02:06:13
112.85.42.194	attackspam	Sep 23 17:46:26 piServer sshd[1104]: Failed password for root from 112.85.42.194 port 15976 ssh2 Sep 23 17:46:29 piServer sshd[1104]: Failed password for root from 112.85.42.194 port 15976 ssh2 Sep 23 17:46:31 piServer sshd[1104]: Failed password for root from 112.85.42.194 port 15976 ssh2 ...	2019-09-24 01:45:11
112.85.42.173	attack	k+ssh-bruteforce	2019-09-24 01:25:20
45.55.190.106	attack	Sep 23 14:36:03 pornomens sshd\[26910\]: Invalid user student from 45.55.190.106 port 48170 Sep 23 14:36:03 pornomens sshd\[26910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.190.106 Sep 23 14:36:05 pornomens sshd\[26910\]: Failed password for invalid user student from 45.55.190.106 port 48170 ssh2 ...	2019-09-24 02:06:35
182.73.123.118	attack	Reported by AbuseIPDB proxy server.	2019-09-24 01:35:40
114.38.187.19	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/114.38.187.19/ TW - 1H : (2809) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN3462 IP : 114.38.187.19 CIDR : 114.38.0.0/16 PREFIX COUNT : 390 UNIQUE IP COUNT : 12267520 WYKRYTE ATAKI Z ASN3462 : 1H - 283 3H - 1104 6H - 2236 12H - 2712 24H - 2721 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-09-24 01:38:36
118.121.168.19	attack	Unauthorised access (Sep 23) SRC=118.121.168.19 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=54202 TCP DPT=8080 WINDOW=60190 SYN Unauthorised access (Sep 23) SRC=118.121.168.19 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=40799 TCP DPT=8080 WINDOW=12254 SYN Unauthorised access (Sep 23) SRC=118.121.168.19 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=13669 TCP DPT=8080 WINDOW=12254 SYN Unauthorised access (Sep 23) SRC=118.121.168.19 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=12390 TCP DPT=8080 WINDOW=51518 SYN	2019-09-24 01:53:16
50.31.8.151	attackbotsspam	50.31.8.151 - - [23/Sep/2019:08:16:41 -0400] "GET /?page=products&action=../../../../../../../../../etc/passwd%00&manufacturerID=1&productID=6501.15M&linkID=3128 HTTP/1.1" 200 17212 "https://baldwinbrasshardware.com/?page=products&action=../../../../../../../../../etc/passwd%00&manufacturerID=1&productID=6501.15M&linkID=3128" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ...	2019-09-24 01:38:03
180.66.207.67	attackbots	fraudulent SSH attempt	2019-09-24 02:09:41

最近上报的IP列表

52.60.76.207	45.79.203.198	115.236.67.42	66.133.14.50
142.93.211.192	82.99.171.211	118.107.42.185	5.188.84.247
49.34.38.159	193.95.115.134	2001:4c4c:235b:3200:59ac:2fcf:3ea4:9c46	37.110.224.111
187.149.63.127	40.122.215.196	31.207.33.100	85.206.26.249
159.242.42.6	14.168.144.191	177.36.251.39	95.163.255.138