31.202.40.49 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Ukraine

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 31.202.40.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18837
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;31.202.40.49.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012902 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 10:13:16 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

49.40.202.31.in-addr.arpa domain name pointer 31-202-40-49-kh.maxnet.ua.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
49.40.202.31.in-addr.arpa	name = 31-202-40-49-kh.maxnet.ua.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
142.11.246.199	attackspam	May 4 01:57:50 lukav-desktop sshd\[31647\]: Invalid user noel from 142.11.246.199 May 4 01:57:50 lukav-desktop sshd\[31647\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.11.246.199 May 4 01:57:52 lukav-desktop sshd\[31647\]: Failed password for invalid user noel from 142.11.246.199 port 51546 ssh2 May 4 02:03:19 lukav-desktop sshd\[5576\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.11.246.199 user=root May 4 02:03:20 lukav-desktop sshd\[5576\]: Failed password for root from 142.11.246.199 port 34384 ssh2	2020-05-04 08:21:41
123.206.36.174	attackspambots	May 3 22:29:24 ns382633 sshd\[15211\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.36.174 user=root May 3 22:29:26 ns382633 sshd\[15211\]: Failed password for root from 123.206.36.174 port 55394 ssh2 May 3 22:41:19 ns382633 sshd\[17703\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.36.174 user=root May 3 22:41:22 ns382633 sshd\[17703\]: Failed password for root from 123.206.36.174 port 37422 ssh2 May 3 22:47:38 ns382633 sshd\[18705\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.36.174 user=root	2020-05-04 08:38:35
152.136.106.94	attack	May 4 00:04:01 PorscheCustomer sshd[22614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.106.94 May 4 00:04:03 PorscheCustomer sshd[22614]: Failed password for invalid user melvin from 152.136.106.94 port 33752 ssh2 May 4 00:10:18 PorscheCustomer sshd[22717]: Failed password for root from 152.136.106.94 port 44776 ssh2 ...	2020-05-04 08:09:17
194.149.95.211	attackspam	Lines containing failures of 194.149.95.211 May 2 21:43:26 linuxrulz sshd[13275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.149.95.211 user=r.r May 2 21:43:29 linuxrulz sshd[13275]: Failed password for r.r from 194.149.95.211 port 54580 ssh2 May 2 21:43:30 linuxrulz sshd[13275]: Received disconnect from 194.149.95.211 port 54580:11: Bye Bye [preauth] May 2 21:43:30 linuxrulz sshd[13275]: Disconnected from authenticating user r.r 194.149.95.211 port 54580 [preauth] May 2 21:56:16 linuxrulz sshd[15148]: Invalid user jh from 194.149.95.211 port 35886 May 2 21:56:16 linuxrulz sshd[15148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.149.95.211 May 2 21:56:19 linuxrulz sshd[15148]: Failed password for invalid user jh from 194.149.95.211 port 35886 ssh2 May 2 21:56:19 linuxrulz sshd[15148]: Received disconnect from 194.149.95.211 port 35886:11: Bye Bye [preauth] May 2 21........ ------------------------------	2020-05-04 08:24:17
193.106.31.130	attack	[Mon May 04 06:59:48.888601 2020] [:error] [pid 5814:tid 140405012096768] [client 193.106.31.130:58933] [client 193.106.31.130] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/administrator/index.php"] [unique_id "Xq9a9G4FUIT0i81cNYS77AAAAWk"] ...	2020-05-04 08:01:54
42.104.97.228	attackspambots	SSH Invalid Login	2020-05-04 08:07:23
103.138.64.54	attackspambots	9878/tcp 1322/tcp 32/tcp... [2020-04-21/05-03]31pkt,11pt.(tcp)	2020-05-04 08:30:00
185.153.196.230	attack	2020-05-04T02:19:03.802952ns386461 sshd\[18562\]: Invalid user 0 from 185.153.196.230 port 63018 2020-05-04T02:19:04.088160ns386461 sshd\[18562\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.153.196.230 2020-05-04T02:19:05.801702ns386461 sshd\[18562\]: Failed password for invalid user 0 from 185.153.196.230 port 63018 ssh2 2020-05-04T02:19:09.119024ns386461 sshd\[18646\]: Invalid user 22 from 185.153.196.230 port 47327 2020-05-04T02:19:10.073551ns386461 sshd\[18646\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.153.196.230 ...	2020-05-04 08:21:27
80.82.78.100	attack	80.82.78.100 was recorded 14 times by 8 hosts attempting to connect to the following ports: 48899,41092. Incident counter (4h, 24h, all-time): 14, 60, 26016	2020-05-04 08:02:11
64.225.114.148	attackbots	firewall-block, port(s): 85/tcp	2020-05-04 08:38:58
112.95.225.158	attack	(sshd) Failed SSH login from 112.95.225.158 (CN/China/-): 5 in the last 3600 secs	2020-05-04 08:08:20
165.22.35.107	attackspambots	Repeated brute force against a port	2020-05-04 08:03:17
222.186.30.35	attackspambots	May 4 06:47:17 webhost01 sshd[9254]: Failed password for root from 222.186.30.35 port 36118 ssh2 ...	2020-05-04 07:56:49
167.172.226.189	attackspambots	15485/tcp 16031/tcp 16138/tcp... [2020-04-12/05-03]69pkt,25pt.(tcp)	2020-05-04 08:34:56
89.228.208.134	attack	Automatic report - Port Scan Attack	2020-05-04 08:18:18

最近上报的IP列表

215.143.16.252	65.58.15.13	140.169.151.182	254.181.31.12
123.0.86.56	103.234.197.224	233.91.39.225	126.243.13.155
71.23.84.178	247.5.170.119	240.143.238.240	215.81.204.74
223.154.27.149	179.229.205.55	193.176.215.39	87.14.111.9
195.106.127.34	195.68.32.72	139.1.112.147	42.27.182.249