120.31.56.111 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Foshan Ruijiang Science and Tech Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Portscan or hack attempt detected by psad/fwsnort	2020-01-28 03:25:34
attack	unauthorized connection attempt	2020-01-09 21:09:49
attack	SIP/5060 Probe, BF, Hack -	2019-12-28 01:34:57

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.31.56.111
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49999
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;120.31.56.111.			IN	A

;; AUTHORITY SECTION:
.			552	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122700 1800 900 604800 86400

;; Query time: 171 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Dec 28 01:34:47 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

111.56.31.120.in-addr.arpa domain name pointer ns2.eflydns.net.
111.56.31.120.in-addr.arpa domain name pointer ns1.eflydns.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
111.56.31.120.in-addr.arpa	name = 120.31.56.111.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
78.36.97.216	attack	Too many connections or unauthorized access detected from Arctic banned ip	2019-09-24 19:10:54
202.175.46.170	attack	SSH Brute Force, server-1 sshd[14399]: Failed password for invalid user deploy from 202.175.46.170 port 41520 ssh2	2019-09-24 19:38:04
60.29.241.2	attackspam	Sep 24 06:54:02 rpi sshd[31189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.29.241.2 Sep 24 06:54:04 rpi sshd[31189]: Failed password for invalid user test from 60.29.241.2 port 8764 ssh2	2019-09-24 19:54:13
62.234.66.50	attackspam	Sep 24 13:39:31 saschabauer sshd[29750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.66.50 Sep 24 13:39:33 saschabauer sshd[29750]: Failed password for invalid user rootme from 62.234.66.50 port 56485 ssh2	2019-09-24 19:41:00
132.232.47.41	attackbotsspam	$f2bV_matches	2019-09-24 20:00:48
115.146.121.236	attackspambots	Sep 24 02:22:56 plusreed sshd[11971]: Invalid user odroid from 115.146.121.236 ...	2019-09-24 19:43:16
222.186.175.202	attack	Sep 24 13:54:17 root sshd[1820]: Failed password for root from 222.186.175.202 port 28034 ssh2 Sep 24 13:54:21 root sshd[1820]: Failed password for root from 222.186.175.202 port 28034 ssh2 Sep 24 13:54:25 root sshd[1820]: Failed password for root from 222.186.175.202 port 28034 ssh2 Sep 24 13:54:30 root sshd[1820]: Failed password for root from 222.186.175.202 port 28034 ssh2 ...	2019-09-24 19:57:24
178.128.74.234	attack	Automatic report - Banned IP Access	2019-09-24 19:39:15
120.36.182.222	attackspambots	(ftpd) Failed FTP login from 120.36.182.222 (CN/China/222.182.36.120.broad.xm.fj.dynamic.163data.com.cn): 10 in the last 3600 secs	2019-09-24 19:37:43
106.13.78.85	attackspam	Sep 23 23:51:47 web9 sshd\[18823\]: Invalid user scheduler from 106.13.78.85 Sep 23 23:51:47 web9 sshd\[18823\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85 Sep 23 23:51:50 web9 sshd\[18823\]: Failed password for invalid user scheduler from 106.13.78.85 port 40924 ssh2 Sep 23 23:56:23 web9 sshd\[19774\]: Invalid user admin from 106.13.78.85 Sep 23 23:56:23 web9 sshd\[19774\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85	2019-09-24 19:43:51
5.196.75.47	attack	Sep 24 06:28:19 SilenceServices sshd[30487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.75.47 Sep 24 06:28:21 SilenceServices sshd[30487]: Failed password for invalid user openerp2015 from 5.196.75.47 port 58966 ssh2 Sep 24 06:32:48 SilenceServices sshd[31680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.75.47	2019-09-24 19:54:33
139.217.103.62	attack	Sep 24 04:38:06 amida sshd[198976]: Invalid user lw from 139.217.103.62 Sep 24 04:38:06 amida sshd[198976]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.103.62 Sep 24 04:38:08 amida sshd[198976]: Failed password for invalid user lw from 139.217.103.62 port 43240 ssh2 Sep 24 04:38:09 amida sshd[198976]: Received disconnect from 139.217.103.62: 11: Bye Bye [preauth] Sep 24 04:55:03 amida sshd[209612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.103.62 user=ftp Sep 24 04:55:05 amida sshd[209612]: Failed password for ftp from 139.217.103.62 port 55534 ssh2 Sep 24 04:55:05 amida sshd[209612]: Received disconnect from 139.217.103.62: 11: Bye Bye [preauth] Sep 24 04:57:20 amida sshd[210572]: Invalid user both from 139.217.103.62 Sep 24 04:57:20 amida sshd[210572]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.103.62 Sep 24 ........ -------------------------------	2019-09-24 20:01:31
185.243.182.28	attackbots	Lines containing failures of 185.243.182.28 Sep 24 05:43:29 shared11 postfix/smtpd[30906]: connect from revr028.gthassurance.com[185.243.182.28] Sep x@x Sep x@x Sep 24 05:43:30 shared11 postfix/smtpd[30906]: disconnect from revr028.gthassurance.com[185.243.182.28] ehlo=1 mail=2 rcpt=0/2 data=0/2 eclipset=1 quhostname=1 commands=5/9 Sep 24 05:44:23 shared11 postfix/smtpd[5089]: connect from revr028.gthassurance.com[185.243.182.28] Sep x@x Sep x@x Sep x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=185.243.182.28	2019-09-24 19:17:29
150.164.122.1	attack	LGS,WP GET /wp-login.php	2019-09-24 19:04:56
177.92.60.116	attack	Sep 24 06:09:32 nandi sshd[3212]: reveeclipse mapping checking getaddrinfo for 116.60.92.177.dynamic.copel.net [177.92.60.116] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 24 06:09:32 nandi sshd[3212]: Invalid user pi from 177.92.60.116 Sep 24 06:09:32 nandi sshd[3209]: reveeclipse mapping checking getaddrinfo for 116.60.92.177.dynamic.copel.net [177.92.60.116] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 24 06:09:32 nandi sshd[3209]: Invalid user pi from 177.92.60.116 Sep 24 06:09:32 nandi sshd[3212]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.92.60.116 Sep 24 06:09:32 nandi sshd[3209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.92.60.116 Sep 24 06:09:34 nandi sshd[3212]: Failed password for invalid user pi from 177.92.60.116 port 10650 ssh2 Sep 24 06:09:34 nandi sshd[3209]: Failed password for invalid user pi from 177.92.60.116 port 32996 ssh2 Sep 24 06:09:35 nandi sshd[3209]: Co........ -------------------------------	2019-09-24 19:57:56

最近上报的IP列表

161.66.219.175	120.25.255.56	157.245.180.127	186.118.231.170
76.0.15.30	13.127.108.140	212.143.6.168	144.105.132.173
60.20.250.62	114.106.172.63	220.202.74.199	191.117.80.58
45.232.154.20	121.141.117.35	136.243.82.52	111.35.171.151
46.11.254.121	111.35.164.41	188.150.180.171	113.88.164.124