102.116.104.31

Basic Info

City: unknown

Region: unknown

Country: Mauritius

Internet Service Provider: Mauritius Telecom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Honeypot attack, port: 4567, PTR: PTR record not found	2020-01-26 23:28:39

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.116.104.31
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6953
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;102.116.104.31.			IN	A

;; AUTHORITY SECTION:
.			585	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012600 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 26 23:28:33 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 31.104.116.102.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 31.104.116.102.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.161.70.70	attack	981. On May 28 2020 experienced a Brute Force SSH login attempt -> 2 unique times by 51.161.70.70.	2020-05-29 06:51:48
49.248.3.10	attackbotsspam	May 28 14:40:41 dignus sshd[6406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.248.3.10 May 28 14:40:42 dignus sshd[6406]: Failed password for invalid user admin from 49.248.3.10 port 53629 ssh2 May 28 14:44:33 dignus sshd[6700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.248.3.10 user=root May 28 14:44:35 dignus sshd[6700]: Failed password for root from 49.248.3.10 port 55840 ssh2 May 28 14:48:18 dignus sshd[6977]: Invalid user shenleiyu from 49.248.3.10 port 58319 ...	2020-05-29 06:41:43
183.134.40.228	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-29 06:50:35
85.209.0.100	attack	May 29 02:06:46 server2 sshd\[9271\]: User root from 85.209.0.100 not allowed because not listed in AllowUsers May 29 02:06:47 server2 sshd\[9273\]: User root from 85.209.0.100 not allowed because not listed in AllowUsers May 29 02:06:47 server2 sshd\[9272\]: User root from 85.209.0.100 not allowed because not listed in AllowUsers May 29 02:06:47 server2 sshd\[9270\]: User root from 85.209.0.100 not allowed because not listed in AllowUsers May 29 02:06:48 server2 sshd\[9279\]: User root from 85.209.0.100 not allowed because not listed in AllowUsers May 29 02:06:48 server2 sshd\[9276\]: User root from 85.209.0.100 not allowed because not listed in AllowUsers	2020-05-29 07:12:44
94.191.70.187	attackbots	(sshd) Failed SSH login from 94.191.70.187 (CN/China/-): 5 in the last 3600 secs	2020-05-29 06:33:22
222.186.173.142	attack	$f2bV_matches	2020-05-29 06:56:36
221.195.1.201	attackspam	Invalid user ts from 221.195.1.201 port 38154	2020-05-29 06:52:17
62.171.161.205	attackbots	May 29 00:37:26 debian-2gb-nbg1-2 kernel: \[12964234.538740\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=62.171.161.205 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=63695 PROTO=TCP SPT=58774 DPT=3392 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-29 06:54:44
207.180.239.42	attackspam	Invalid user 1q2w3e4r5t from 207.180.239.42 port 54076	2020-05-29 06:47:22
106.13.36.10	attackbotsspam	k+ssh-bruteforce	2020-05-29 06:51:16
185.56.153.229	attackbotsspam	Invalid user qvj from 185.56.153.229 port 46012	2020-05-29 06:53:38
181.120.24.75	attackspam	Honeypot attack, port: 445, PTR: static-75-24-120-181.telecel.com.py.	2020-05-29 06:39:35
68.168.128.94	attackspam	SASL PLAIN auth failed: ruser=...	2020-05-29 06:36:42
162.243.137.90	attack	28-5-2020 22:07:49 Unauthorized connection attempt (Brute-Force). 28-5-2020 22:07:49 Connection from IP address: 162.243.137.90 on port: 465 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=162.243.137.90	2020-05-29 06:45:39
82.137.14.203	attack	(sshd) Failed SSH login from 82.137.14.203 (RO/Romania/82-137-14-203.rdsnet.ro): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 28 23:04:35 s1 sshd[15897]: Invalid user ZAQ!xsw2 from 82.137.14.203 port 19220 May 28 23:04:41 s1 sshd[15897]: Failed password for invalid user ZAQ!xsw2 from 82.137.14.203 port 19220 ssh2 May 28 23:05:03 s1 sshd[15897]: Failed password for invalid user ZAQ!xsw2 from 82.137.14.203 port 19220 ssh2 May 28 23:07:24 s1 sshd[15974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.137.14.203 user=root May 28 23:07:26 s1 sshd[15974]: Failed password for root from 82.137.14.203 port 18279 ssh2	2020-05-29 07:09:29

Recently Reported IPs

117.7.76.45	79.141.154.61	175.112.151.20	185.244.234.58
122.54.157.1	41.82.0.199	51.39.204.227	220.88.113.136
113.23.16.235	116.24.64.92	41.105.12.237	103.18.166.42
37.252.68.153	85.209.0.208	59.127.234.96	212.64.60.187
154.165.90.66	123.108.187.142	23.28.114.171	220.93.199.150