31.132.66.104 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Poland

运营商(isp): NEANET Lukasz Lugowski

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Honeypot attack, port: 445, PTR: host-104.ggprofit.pl.	2020-01-30 22:14:38

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 31.132.66.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33975
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;31.132.66.104.			IN	A

;; AUTHORITY SECTION:
.			192	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020013001 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 22:14:30 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

104.66.132.31.in-addr.arpa domain name pointer host-104.ggprofit.pl.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 104.66.132.31.in-addr.arpa.: No answer

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
159.65.57.1	attackspam	Jul 31 16:39:26 wp sshd[6472]: Did not receive identification string from 159.65.57.1 Jul 31 16:41:04 wp sshd[6491]: reveeclipse mapping checking getaddrinfo for 307594.cloudwaysapps.com [159.65.57.1] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 31 16:41:04 wp sshd[6491]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.57.1 user=r.r Jul 31 16:41:07 wp sshd[6491]: Failed password for r.r from 159.65.57.1 port 57044 ssh2 Jul 31 16:41:07 wp sshd[6491]: Received disconnect from 159.65.57.1: 11: Bye Bye [preauth] Jul 31 16:44:28 wp sshd[6555]: reveeclipse mapping checking getaddrinfo for 307594.cloudwaysapps.com [159.65.57.1] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 31 16:44:28 wp sshd[6555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.57.1 user=r.r Jul 31 16:44:30 wp sshd[6555]: Failed password for r.r from 159.65.57.1 port 36489 ssh2 Jul 31 16:44:30 wp sshd[6555]: Received disconn........ -------------------------------	2019-08-02 16:04:53
149.56.44.101	attack	Aug 2 06:32:34 server sshd[18895]: Failed password for invalid user administrator from 149.56.44.101 port 46342 ssh2 Aug 2 06:39:52 server sshd[19520]: Failed password for invalid user va from 149.56.44.101 port 48968 ssh2 Aug 2 06:43:34 server sshd[19806]: Failed password for invalid user gallagher from 149.56.44.101 port 41328 ssh2	2019-08-02 16:03:46
51.83.76.139	attack	2019-07-28T23:45:58.453226wiz-ks3 sshd[8054]: Invalid user administrator from 51.83.76.139 port 45226 2019-07-28T23:45:58.455349wiz-ks3 sshd[8054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.ip-51-83-76.eu 2019-07-28T23:45:58.453226wiz-ks3 sshd[8054]: Invalid user administrator from 51.83.76.139 port 45226 2019-07-28T23:46:00.500457wiz-ks3 sshd[8054]: Failed password for invalid user administrator from 51.83.76.139 port 45226 ssh2 2019-07-28T23:46:02.928701wiz-ks3 sshd[8056]: Invalid user amx from 51.83.76.139 port 45794 2019-07-28T23:46:02.930838wiz-ks3 sshd[8056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.ip-51-83-76.eu 2019-07-28T23:46:02.928701wiz-ks3 sshd[8056]: Invalid user amx from 51.83.76.139 port 45794 2019-07-28T23:46:05.527581wiz-ks3 sshd[8056]: Failed password for invalid user amx from 51.83.76.139 port 45794 ssh2 2019-07-28T23:46:02.930838wiz-ks3 sshd[8056]: pam_unix(sshd:auth): authentication fail	2019-08-02 15:19:58
180.250.115.93	attackbots	Aug 2 06:16:35 dedicated sshd[7461]: Invalid user ll from 180.250.115.93 port 42756	2019-08-02 16:07:30
159.65.152.201	attack	SSH Bruteforce @ SigaVPN honeypot	2019-08-02 15:49:17
173.11.72.13	attackspambots	2019-08-01T23:44:17.644655abusebot-2.cloudsearch.cf sshd\[20817\]: Invalid user kaitlin from 173.11.72.13 port 53894	2019-08-02 15:52:20
40.84.147.220	attack	Aug 1 19:29:17 xb0 sshd[10531]: Failed password for invalid user user from 40.84.147.220 port 41648 ssh2 Aug 1 19:29:17 xb0 sshd[10531]: Received disconnect from 40.84.147.220: 11: Bye Bye [preauth] Aug 1 19:42:11 xb0 sshd[3752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.84.147.220 user=r.r Aug 1 19:42:13 xb0 sshd[3752]: Failed password for r.r from 40.84.147.220 port 48866 ssh2 Aug 1 19:42:14 xb0 sshd[3752]: Received disconnect from 40.84.147.220: 11: Bye Bye [preauth] Aug 1 19:48:51 xb0 sshd[5145]: Failed password for invalid user andrew from 40.84.147.220 port 46914 ssh2 Aug 1 19:48:51 xb0 sshd[5145]: Received disconnect from 40.84.147.220: 11: Bye Bye [preauth] Aug 1 19:53:24 xb0 sshd[2596]: Failed password for invalid user correo from 40.84.147.220 port 44400 ssh2 Aug 1 19:53:24 xb0 sshd[2596]: Received disconnect from 40.84.147.220: 11: Bye Bye [preauth] Aug 1 19:58:07 xb0 sshd[1050]: Failed password for ........ -------------------------------	2019-08-02 15:48:16
83.217.219.82	attackbots	Many RDP login attempts detected by IDS script	2019-08-02 15:54:12
180.76.196.179	attackbots	Aug 1 21:54:39 vtv3 sshd\[2736\]: Invalid user john from 180.76.196.179 port 39334 Aug 1 21:54:39 vtv3 sshd\[2736\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.196.179 Aug 1 21:54:41 vtv3 sshd\[2736\]: Failed password for invalid user john from 180.76.196.179 port 39334 ssh2 Aug 1 21:57:42 vtv3 sshd\[4291\]: Invalid user demarini from 180.76.196.179 port 42804 Aug 1 21:57:42 vtv3 sshd\[4291\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.196.179 Aug 1 22:09:57 vtv3 sshd\[10059\]: Invalid user shell from 180.76.196.179 port 56674 Aug 1 22:09:57 vtv3 sshd\[10059\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.196.179 Aug 1 22:09:59 vtv3 sshd\[10059\]: Failed password for invalid user shell from 180.76.196.179 port 56674 ssh2 Aug 1 22:13:15 vtv3 sshd\[11794\]: Invalid user rodica from 180.76.196.179 port 60140 Aug 1 22:13:15 vtv3 sshd\[11794\]:	2019-08-02 15:53:16
198.108.66.38	attackspam	3389BruteforceFW23	2019-08-02 15:35:27
51.255.213.181	attack	Aug 2 08:49:17 eventyay sshd[23521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.213.181 Aug 2 08:49:19 eventyay sshd[23521]: Failed password for invalid user cara from 51.255.213.181 port 52646 ssh2 Aug 2 08:54:10 eventyay sshd[24743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.213.181 ...	2019-08-02 15:25:52
106.75.8.129	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2019-08-02 15:12:58
82.245.177.183	attackspam	$f2bV_matches	2019-08-02 16:07:51
192.160.102.165	attack	SSH bruteforce	2019-08-02 15:16:21
186.159.1.81	attackspam	email spam	2019-08-02 15:06:31

最近上报的IP列表

187.132.28.163	118.99.109.208	41.39.61.35	125.164.80.205
52.90.217.199	218.161.106.223	26.117.235.212	179.197.34.6
176.136.122.97	117.5.47.170	197.156.80.240	41.42.204.240
202.194.96.156	37.235.153.142	115.203.105.61	171.6.207.16
209.250.240.248	115.203.105.253	217.182.129.39	113.21.98.208