31.173.80.106 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Russian Federation

运营商(isp): PJSC MegaFon

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	1597235979 - 08/12/2020 14:39:39 Host: 31.173.80.106/31.173.80.106 Port: 445 TCP Blocked	2020-08-13 00:55:38

相同子网IP讨论:

IP	类型	评论内容	时间
31.173.80.182	attack	Unauthorized connection attempt from IP address 31.173.80.182 on Port 445(SMB)	2020-04-01 02:04:42
31.173.80.48	attack	Mar 29 14:36:39 mxgate1 postfix/postscreen[1093]: CONNECT from [31.173.80.48]:15545 to [176.31.12.44]:25 Mar 29 14:36:40 mxgate1 postfix/dnsblog[1105]: addr 31.173.80.48 listed by domain b.barracudacentral.org as 127.0.0.2 Mar 29 14:36:40 mxgate1 postfix/dnsblog[1103]: addr 31.173.80.48 listed by domain zen.spamhaus.org as 127.0.0.3 Mar 29 14:36:40 mxgate1 postfix/dnsblog[1103]: addr 31.173.80.48 listed by domain zen.spamhaus.org as 127.0.0.4 Mar 29 14:36:40 mxgate1 postfix/dnsblog[1103]: addr 31.173.80.48 listed by domain zen.spamhaus.org as 127.0.0.11 Mar 29 14:36:40 mxgate1 postfix/dnsblog[1106]: addr 31.173.80.48 listed by domain cbl.abuseat.org as 127.0.0.2 Mar 29 14:36:45 mxgate1 postfix/postscreen[1093]: DNSBL rank 4 for [31.173.80.48]:15545 Mar 29 14:36:46 mxgate1 postfix/tlsproxy[1124]: CONNECT from [31.173.80.48]:15545 Mar x@x Mar 29 14:36:47 mxgate1 postfix/tlsproxy[1124]: DISCONNECT [31.173.80.48]:15545 Mar 29 14:36:47 mxgate1 postfix/postscreen[1093]: HANGU........ -------------------------------	2020-03-30 05:00:50

类型

评论内容

时间

31.173.80.182

attack

Unauthorized connection attempt from IP address 31.173.80.182 on Port 445(SMB)

2020-04-01 02:04:42

31.173.80.48

attack

Mar 29 14:36:39 mxgate1 postfix/postscreen[1093]: CONNECT from [31.173.80.48]:15545 to [176.31.12.44]:25
Mar 29 14:36:40 mxgate1 postfix/dnsblog[1105]: addr 31.173.80.48 listed by domain b.barracudacentral.org as 127.0.0.2
Mar 29 14:36:40 mxgate1 postfix/dnsblog[1103]: addr 31.173.80.48 listed by domain zen.spamhaus.org as 127.0.0.3
Mar 29 14:36:40 mxgate1 postfix/dnsblog[1103]: addr 31.173.80.48 listed by domain zen.spamhaus.org as 127.0.0.4
Mar 29 14:36:40 mxgate1 postfix/dnsblog[1103]: addr 31.173.80.48 listed by domain zen.spamhaus.org as 127.0.0.11
Mar 29 14:36:40 mxgate1 postfix/dnsblog[1106]: addr 31.173.80.48 listed by domain cbl.abuseat.org as 127.0.0.2
Mar 29 14:36:45 mxgate1 postfix/postscreen[1093]: DNSBL rank 4 for [31.173.80.48]:15545
Mar 29 14:36:46 mxgate1 postfix/tlsproxy[1124]: CONNECT from [31.173.80.48]:15545
Mar x@x
Mar 29 14:36:47 mxgate1 postfix/tlsproxy[1124]: DISCONNECT [31.173.80.48]:15545
Mar 29 14:36:47 mxgate1 postfix/postscreen[1093]: HANGU........
-------------------------------

2020-03-30 05:00:50

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 31.173.80.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1061
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;31.173.80.106.			IN	A

;; AUTHORITY SECTION:
.			580	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081201 1800 900 604800 86400

;; Query time: 29 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Aug 13 00:55:32 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 106.80.173.31.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 106.80.173.31.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
136.169.243.80	attackspambots	Spam	2019-07-04 05:07:44
183.179.55.112	attackspambots	Scanning random ports - tries to find possible vulnerable services	2019-07-04 04:50:50
84.255.152.10	attack	$f2bV_matches	2019-07-04 05:00:14
118.24.5.135	attackbots	Jul 3 16:14:02 server01 sshd\[7717\]: Invalid user travis from 118.24.5.135 Jul 3 16:14:02 server01 sshd\[7717\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.5.135 Jul 3 16:14:04 server01 sshd\[7717\]: Failed password for invalid user travis from 118.24.5.135 port 37014 ssh2 ...	2019-07-04 04:53:34
185.193.125.42	attackbotsspam	3389BruteforceFW21	2019-07-04 05:24:48
81.200.61.78	attackspambots	Jul 3 14:15:10 MK-Soft-VM4 sshd\[7373\]: Invalid user lawbreakers from 81.200.61.78 port 35926 Jul 3 14:15:10 MK-Soft-VM4 sshd\[7373\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.200.61.78 Jul 3 14:15:12 MK-Soft-VM4 sshd\[7373\]: Failed password for invalid user lawbreakers from 81.200.61.78 port 35926 ssh2 ...	2019-07-04 04:55:59
104.206.128.18	attackspambots	firewall-block, port(s): 5432/tcp	2019-07-04 05:08:39
199.249.230.105	attack	Jul 3 21:26:54 lnxweb62 sshd[1577]: Failed password for root from 199.249.230.105 port 25220 ssh2 Jul 3 21:26:57 lnxweb62 sshd[1577]: Failed password for root from 199.249.230.105 port 25220 ssh2 Jul 3 21:27:01 lnxweb62 sshd[1577]: Failed password for root from 199.249.230.105 port 25220 ssh2 Jul 3 21:27:04 lnxweb62 sshd[1577]: Failed password for root from 199.249.230.105 port 25220 ssh2	2019-07-04 05:08:54
71.6.233.36	attackbotsspam	22222/tcp 8761/tcp 1024/tcp... [2019-05-03/07-03]7pkt,7pt.(tcp)	2019-07-04 05:16:19
134.209.70.255	attackspam	leo_www	2019-07-04 05:06:28
190.124.30.206	attackbots	Lines containing failures of 190.124.30.206 Jul 3 15:03:33 omfg postfix/smtpd[18914]: connect from unknown[190.124.30.206] Jul x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=190.124.30.206	2019-07-04 05:28:50
103.104.121.195	attack	Wordpress Admin Login attack	2019-07-04 05:14:39
42.7.180.147	attack	Telnet Server BruteForce Attack	2019-07-04 05:27:52
14.170.188.20	attack	Jul 3 15:14:07 vpn01 sshd\[10518\]: Invalid user nagesh from 14.170.188.20 Jul 3 15:14:13 vpn01 sshd\[10518\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.170.188.20 Jul 3 15:14:15 vpn01 sshd\[10518\]: Failed password for invalid user nagesh from 14.170.188.20 port 65192 ssh2	2019-07-04 04:47:54
89.248.169.12	attackbotsspam	8010/tcp 8889/tcp 8800/tcp... [2019-05-10/07-03]157pkt,18pt.(tcp)	2019-07-04 05:25:18

最近上报的IP列表

178.19.182.43	178.19.175.245	178.19.158.165	149.129.227.5
140.148.249.67	138.75.47.224	124.202.208.122	119.115.205.233
116.96.238.228	114.29.105.13	111.248.16.153	105.96.57.44
103.142.218.2	95.54.39.74	91.240.118.4	91.144.21.200
91.124.36.20	86.34.243.21	80.13.210.119	78.188.235.212