31.18.249.139 - IPInfo

基本信息:

城市(city): Garbsen

省份(region): Lower Saxony

国家(country): Germany

运营商(isp): Vodafone Kabel Deutschland GmbH

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Autoban 31.18.249.139 AUTH/CONNECT	2019-11-05 02:51:44

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 31.18.249.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26479
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;31.18.249.139.			IN	A

;; AUTHORITY SECTION:
.			280	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110401 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 05 02:51:41 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

139.249.18.31.in-addr.arpa domain name pointer ip1f12f98b.dynamic.kabel-deutschland.de.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.249.18.31.in-addr.arpa	name = ip1f12f98b.dynamic.kabel-deutschland.de.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
119.188.248.115	attack	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-05-10 20:22:33
104.168.47.118	attackbotsspam	Unauthorized connection attempt detected from IP address 104.168.47.118 to port 23	2020-05-10 20:08:25
202.188.101.106	attackspambots	May 10 09:12:29 firewall sshd[6951]: Invalid user testing from 202.188.101.106 May 10 09:12:31 firewall sshd[6951]: Failed password for invalid user testing from 202.188.101.106 port 54825 ssh2 May 10 09:15:47 firewall sshd[7021]: Invalid user lear from 202.188.101.106 ...	2020-05-10 20:31:47
222.41.193.211	attackspambots	2020-05-10T12:11:25.547765shield sshd\[3696\]: Invalid user user from 222.41.193.211 port 26107 2020-05-10T12:11:25.551703shield sshd\[3696\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.41.193.211 2020-05-10T12:11:28.150087shield sshd\[3696\]: Failed password for invalid user user from 222.41.193.211 port 26107 ssh2 2020-05-10T12:15:47.443907shield sshd\[5461\]: Invalid user ts3server from 222.41.193.211 port 50179 2020-05-10T12:15:47.447569shield sshd\[5461\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.41.193.211	2020-05-10 20:30:33
220.175.106.24	attackbotsspam	Unauthorized connection attempt from IP address 220.175.106.24 on Port 445(SMB)	2020-05-10 20:08:39
140.206.148.78	attackspambots	Sun May 10 14:15:27 2020 [pid 28939] [www] FAIL LOGIN: Client "140.206.148.78" Sun May 10 14:15:31 2020 [pid 28941] [www] FAIL LOGIN: Client "140.206.148.78" Sun May 10 14:15:35 2020 [pid 28943] [www] FAIL LOGIN: Client "140.206.148.78" Sun May 10 14:15:39 2020 [pid 28945] [www] FAIL LOGIN: Client "140.206.148.78" Sun May 10 14:15:44 2020 [pid 28947] [www] FAIL LOGIN: Client "140.206.148.78"	2020-05-10 20:33:12
222.186.175.182	attackbots	May 10 08:33:05 NPSTNNYC01T sshd[5037]: Failed password for root from 222.186.175.182 port 2934 ssh2 May 10 08:33:09 NPSTNNYC01T sshd[5037]: Failed password for root from 222.186.175.182 port 2934 ssh2 May 10 08:33:18 NPSTNNYC01T sshd[5037]: error: maximum authentication attempts exceeded for root from 222.186.175.182 port 2934 ssh2 [preauth] ...	2020-05-10 20:37:18
202.179.76.187	attackspambots	May 10 06:13:20 server1 sshd\[12577\]: Failed password for invalid user student from 202.179.76.187 port 37904 ssh2 May 10 06:14:28 server1 sshd\[12910\]: Invalid user openerp from 202.179.76.187 May 10 06:14:28 server1 sshd\[12910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.179.76.187 May 10 06:14:30 server1 sshd\[12910\]: Failed password for invalid user openerp from 202.179.76.187 port 55330 ssh2 May 10 06:15:41 server1 sshd\[13306\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.179.76.187 user=root ...	2020-05-10 20:33:38
117.157.99.102	attack	IP reached maximum auth failures	2020-05-10 20:02:39
94.76.97.127	attackspam	May 9 16:53:28 lamijardin sshd[6181]: Invalid user shashank from 94.76.97.127 May 9 16:53:28 lamijardin sshd[6181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.76.97.127 May 9 16:53:30 lamijardin sshd[6181]: Failed password for invalid user shashank from 94.76.97.127 port 57071 ssh2 May 9 16:53:30 lamijardin sshd[6181]: Received disconnect from 94.76.97.127 port 57071:11: Bye Bye [preauth] May 9 16:53:30 lamijardin sshd[6181]: Disconnected from 94.76.97.127 port 57071 [preauth] May 9 17:04:18 lamijardin sshd[6270]: Invalid user jcq from 94.76.97.127 May 9 17:04:19 lamijardin sshd[6270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.76.97.127 May 9 17:04:20 lamijardin sshd[6270]: Failed password for invalid user jcq from 94.76.97.127 port 44291 ssh2 May 9 17:04:21 lamijardin sshd[6270]: Received disconnect from 94.76.97.127 port 44291:11: Bye Bye [preauth] May 9 17:04:21........ -------------------------------	2020-05-10 20:06:36
84.241.25.141	attack	DATE:2020-05-10 14:15:41, IP:84.241.25.141, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-05-10 20:35:29
54.39.138.246	attackspambots	leo_www	2020-05-10 20:31:26
1.192.94.61	attack	(sshd) Failed SSH login from 1.192.94.61 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 10 13:21:38 amsweb01 sshd[30000]: Invalid user fauro from 1.192.94.61 port 44818 May 10 13:21:40 amsweb01 sshd[30000]: Failed password for invalid user fauro from 1.192.94.61 port 44818 ssh2 May 10 13:29:27 amsweb01 sshd[31099]: Invalid user vnc from 1.192.94.61 port 50476 May 10 13:29:28 amsweb01 sshd[31099]: Failed password for invalid user vnc from 1.192.94.61 port 50476 ssh2 May 10 13:32:51 amsweb01 sshd[31673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.192.94.61 user=root	2020-05-10 20:05:37
145.239.51.137	attack	client 145.239.51.137#29086 (VERSION.BIND): query: VERSION.BIND CH TXT +	2020-05-10 20:26:29
217.138.206.86	attack	Attempted connection to port 3129.	2020-05-10 20:17:32

最近上报的IP列表

77.42.79.88	14.171.218.250	222.106.156.106	115.66.158.44
172.104.89.43	46.135.96.70	128.69.246.147	106.12.2.26
190.199.185.61	95.174.30.127	180.104.6.149	123.18.27.138
90.109.108.151	77.42.121.24	2001:e68:506c:d8ab:1e5f:2bff:fe38:9078	171.4.234.93
117.85.116.203	189.13.38.244	36.81.7.174	77.68.41.126