68.183.31.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	[munged]::80 68.183.31.42 - - [31/Jul/2019:10:10:09 +0200] "POST /[munged]: HTTP/1.1" 200 2062 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 68.183.31.42 - - [31/Jul/2019:10:10:10 +0200] "POST /[munged]: HTTP/1.1" 200 2061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 68.183.31.42 - - [31/Jul/2019:10:10:10 +0200] "POST /[munged]: HTTP/1.1" 200 2061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 68.183.31.42 - - [31/Jul/2019:10:10:11 +0200] "POST /[munged]: HTTP/1.1" 200 2056 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 68.183.31.42 - - [31/Jul/2019:10:10:11 +0200] "POST /[munged]: HTTP/1.1" 200 2056 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 68.183.31.42 - - [31/Jul/2019:10:10:12 +0200] "POST /[munged]: HTTP/1.1" 200 2060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x8	2019-07-31 17:03:22
attackbots	blogonese.net 68.183.31.42 \[26/Jul/2019:01:05:27 +0200\] "POST /wp-login.php HTTP/1.1" 200 5771 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" blogonese.net 68.183.31.42 \[26/Jul/2019:01:05:28 +0200\] "POST /wp-login.php HTTP/1.1" 200 5731 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-07-26 10:37:27
attackspam	Automatic report - Banned IP Access	2019-07-16 08:15:35
attackbots	schuetzenmusikanten.de 68.183.31.42 \[10/Jul/2019:15:03:58 +0200\] "POST /wp-login.php HTTP/1.1" 200 5684 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" schuetzenmusikanten.de 68.183.31.42 \[10/Jul/2019:15:03:59 +0200\] "POST /wp-login.php HTTP/1.1" 200 5650 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" schuetzenmusikanten.de 68.183.31.42 \[10/Jul/2019:15:04:01 +0200\] "POST /wp-login.php HTTP/1.1" 200 5641 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-07-11 02:44:58
attackbotsspam	Automatic report - Web App Attack	2019-06-30 16:57:21

相同子网IP讨论:

IP	类型	评论内容	时间
68.183.31.114	attack	Sep 23 18:38:35 mx sshd[907654]: Invalid user allen from 68.183.31.114 port 59912 Sep 23 18:38:35 mx sshd[907654]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.31.114 Sep 23 18:38:35 mx sshd[907654]: Invalid user allen from 68.183.31.114 port 59912 Sep 23 18:38:37 mx sshd[907654]: Failed password for invalid user allen from 68.183.31.114 port 59912 ssh2 Sep 23 18:42:18 mx sshd[907762]: Invalid user josh from 68.183.31.114 port 41564 ...	2020-09-23 21:39:53
68.183.31.114	attackbots	Sep 23 05:51:28 ip-172-31-42-142 sshd\[27165\]: Invalid user hadoop from 68.183.31.114\ Sep 23 05:51:30 ip-172-31-42-142 sshd\[27165\]: Failed password for invalid user hadoop from 68.183.31.114 port 41512 ssh2\ Sep 23 05:55:11 ip-172-31-42-142 sshd\[27180\]: Failed password for ubuntu from 68.183.31.114 port 51624 ssh2\ Sep 23 05:58:48 ip-172-31-42-142 sshd\[27190\]: Invalid user teste from 68.183.31.114\ Sep 23 05:58:50 ip-172-31-42-142 sshd\[27190\]: Failed password for invalid user teste from 68.183.31.114 port 33502 ssh2\	2020-09-23 13:59:52
68.183.31.114	attackbotsspam	SSH Invalid Login	2020-09-23 05:49:05
68.183.31.114	attackbots	(sshd) Failed SSH login from 68.183.31.114 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 19 08:11:55 server2 sshd[25334]: Invalid user prueba from 68.183.31.114 Sep 19 08:11:55 server2 sshd[25334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.31.114 Sep 19 08:11:57 server2 sshd[25334]: Failed password for invalid user prueba from 68.183.31.114 port 59398 ssh2 Sep 19 08:24:37 server2 sshd[4754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.31.114 user=root Sep 19 08:24:39 server2 sshd[4754]: Failed password for root from 68.183.31.114 port 59994 ssh2	2020-09-19 21:32:12
68.183.31.114	attack	Sep 18 20:23:38 mavik sshd[29122]: Invalid user admin from 68.183.31.114 Sep 18 20:23:38 mavik sshd[29122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.31.114 Sep 18 20:23:40 mavik sshd[29122]: Failed password for invalid user admin from 68.183.31.114 port 35522 ssh2 Sep 18 20:27:27 mavik sshd[29298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.31.114 user=root Sep 18 20:27:29 mavik sshd[29298]: Failed password for root from 68.183.31.114 port 46790 ssh2 ...	2020-09-19 05:04:16
68.183.31.114	attack	Sep 18 12:38:15 ns382633 sshd\[29251\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.31.114 user=root Sep 18 12:38:16 ns382633 sshd\[29251\]: Failed password for root from 68.183.31.114 port 50466 ssh2 Sep 18 12:48:09 ns382633 sshd\[31154\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.31.114 user=root Sep 18 12:48:11 ns382633 sshd\[31154\]: Failed password for root from 68.183.31.114 port 47390 ssh2 Sep 18 12:51:50 ns382633 sshd\[31796\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.31.114 user=root	2020-09-18 22:15:57
68.183.31.114	attack	2020-09-18T08:45:47.648175lavrinenko.info sshd[24448]: Failed password for invalid user sniffer from 68.183.31.114 port 36404 ssh2 2020-09-18T08:49:28.081886lavrinenko.info sshd[24573]: Invalid user bernadette from 68.183.31.114 port 46944 2020-09-18T08:49:28.088183lavrinenko.info sshd[24573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.31.114 2020-09-18T08:49:28.081886lavrinenko.info sshd[24573]: Invalid user bernadette from 68.183.31.114 port 46944 2020-09-18T08:49:30.105241lavrinenko.info sshd[24573]: Failed password for invalid user bernadette from 68.183.31.114 port 46944 ssh2 ...	2020-09-18 14:30:52
68.183.31.114	attack	68.183.31.114 (US/United States/-), 12 distributed sshd attacks on account [root] in the last 3600 secs	2020-09-18 04:48:18
68.183.31.114	attackspam	2020-09-08T15:59:37+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-09-08 22:59:30
68.183.31.114	attackspam	Failed password for invalid user emecha from 68.183.31.114 port 37664 ssh2	2020-09-08 14:43:32
68.183.31.114	attackspambots	2020-09-07T23:27:44.949326amanda2.illicoweb.com sshd\[1891\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.31.114 user=root 2020-09-07T23:27:47.060639amanda2.illicoweb.com sshd\[1891\]: Failed password for root from 68.183.31.114 port 47972 ssh2 2020-09-07T23:30:56.062722amanda2.illicoweb.com sshd\[1967\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.31.114 user=root 2020-09-07T23:30:58.530476amanda2.illicoweb.com sshd\[1967\]: Failed password for root from 68.183.31.114 port 53748 ssh2 2020-09-07T23:34:14.606012amanda2.illicoweb.com sshd\[2091\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.31.114 user=root ...	2020-09-08 07:14:47
68.183.31.114	attackspam	Aug 23 20:28:40 php1 sshd\[9910\]: Invalid user newadmin from 68.183.31.114 Aug 23 20:28:40 php1 sshd\[9910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.31.114 Aug 23 20:28:42 php1 sshd\[9910\]: Failed password for invalid user newadmin from 68.183.31.114 port 43008 ssh2 Aug 23 20:32:40 php1 sshd\[10263\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.31.114 user=root Aug 23 20:32:42 php1 sshd\[10263\]: Failed password for root from 68.183.31.114 port 53090 ssh2	2020-08-24 15:14:11
68.183.31.114	attackbotsspam	Invalid user gbc from 68.183.31.114 port 50994	2020-08-23 17:18:17
68.183.31.114	attack	Aug 19 15:32:36 home sshd[1611173]: Invalid user yly from 68.183.31.114 port 52056 Aug 19 15:32:36 home sshd[1611173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.31.114 Aug 19 15:32:36 home sshd[1611173]: Invalid user yly from 68.183.31.114 port 52056 Aug 19 15:32:38 home sshd[1611173]: Failed password for invalid user yly from 68.183.31.114 port 52056 ssh2 Aug 19 15:36:17 home sshd[1613282]: Invalid user lc from 68.183.31.114 port 60354 ...	2020-08-19 21:46:04
68.183.31.167	attackbotsspam	xmlrpc attack	2020-06-07 07:06:15

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 68.183.31.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13923
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;68.183.31.42.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019060200 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jun 02 16:40:19 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 42.31.183.68.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 42.31.183.68.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
49.234.86.229	attackspambots	Dec 13 19:51:38 icinga sshd[18247]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.86.229 Dec 13 19:51:40 icinga sshd[18247]: Failed password for invalid user password123 from 49.234.86.229 port 40334 ssh2 ...	2019-12-14 03:41:48
114.143.210.139	attack	1576252598 - 12/13/2019 16:56:38 Host: 114.143.210.139/114.143.210.139 Port: 445 TCP Blocked	2019-12-14 03:42:54
138.68.93.14	attack	Dec 13 19:07:00 fr01 sshd[9721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.93.14 user=root Dec 13 19:07:02 fr01 sshd[9721]: Failed password for root from 138.68.93.14 port 40288 ssh2 Dec 13 19:17:22 fr01 sshd[11575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.93.14 user=root Dec 13 19:17:24 fr01 sshd[11575]: Failed password for root from 138.68.93.14 port 49784 ssh2 ...	2019-12-14 03:12:29
159.89.100.75	attackbotsspam	Dec 13 20:11:36 lnxded63 sshd[29035]: Failed password for root from 159.89.100.75 port 53396 ssh2 Dec 13 20:11:36 lnxded63 sshd[29035]: Failed password for root from 159.89.100.75 port 53396 ssh2	2019-12-14 03:42:10
49.234.44.48	attackbotsspam	fail2ban	2019-12-14 03:14:31
193.66.202.67	attack	Dec 13 20:05:22 loxhost sshd\[20380\]: Invalid user vcsa from 193.66.202.67 port 46618 Dec 13 20:05:22 loxhost sshd\[20380\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.66.202.67 Dec 13 20:05:23 loxhost sshd\[20380\]: Failed password for invalid user vcsa from 193.66.202.67 port 46618 ssh2 Dec 13 20:11:51 loxhost sshd\[20628\]: Invalid user guest from 193.66.202.67 port 53358 Dec 13 20:11:51 loxhost sshd\[20628\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.66.202.67 ...	2019-12-14 03:26:01
195.22.239.238	attackbotsspam	xmlrpc attack	2019-12-14 03:12:52
62.210.205.155	attackbotsspam	Dec 13 20:31:48 OPSO sshd\[6069\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.210.205.155 user=lp Dec 13 20:31:50 OPSO sshd\[6069\]: Failed password for lp from 62.210.205.155 port 44292 ssh2 Dec 13 20:36:43 OPSO sshd\[7180\]: Invalid user casie from 62.210.205.155 port 48532 Dec 13 20:36:43 OPSO sshd\[7180\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.210.205.155 Dec 13 20:36:45 OPSO sshd\[7180\]: Failed password for invalid user casie from 62.210.205.155 port 48532 ssh2	2019-12-14 03:39:25
106.13.18.86	attack	Dec 14 00:13:48 areeb-Workstation sshd[2001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.18.86 Dec 14 00:13:50 areeb-Workstation sshd[2001]: Failed password for invalid user humboldt from 106.13.18.86 port 45952 ssh2 ...	2019-12-14 03:20:43
77.247.110.19	attackbotsspam	firewall-block, port(s): 65476/udp	2019-12-14 03:34:32
209.17.97.122	attackbotsspam	Unauthorised access (Dec 13) SRC=209.17.97.122 LEN=44 TOS=0x08 PREC=0x20 TTL=241 ID=54321 TCP DPT=8080 WINDOW=65535 SYN	2019-12-14 03:08:02
159.89.139.228	attack	Dec 13 21:17:36 sauna sshd[40498]: Failed password for root from 159.89.139.228 port 60184 ssh2 ...	2019-12-14 03:32:54
222.186.175.181	attack	k+ssh-bruteforce	2019-12-14 03:39:58
125.231.221.213	attack	Dec 13 16:56:49 debian-2gb-nbg1-2 kernel: \[24534141.802549\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=125.231.221.213 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=49399 PROTO=TCP SPT=5640 DPT=23 WINDOW=32365 RES=0x00 SYN URGP=0	2019-12-14 03:32:09
110.49.70.242	attackspambots	2019-12-13T15:34:01.079470Z 9497be84e85e New connection: 110.49.70.242:55593 (172.17.0.6:2222) [session: 9497be84e85e] 2019-12-13T15:56:47.145123Z 22a4339d6c3b New connection: 110.49.70.242:27174 (172.17.0.6:2222) [session: 22a4339d6c3b]	2019-12-14 03:34:01

最近上报的IP列表

219.133.229.200	22.174.222.189	240.68.109.222	167.89.80.130
74.200.140.200	113.99.213.133	77.40.62.140	128.74.194.214
58.95.36.13	103.255.31.57	93.50.205.216	214.41.173.127
204.52.92.183	31.248.49.56	103.238.69.105	103.221.74.192
165.162.89.152	58.209.6.235	240.184.67.173	196.201.106.110