31.21.57.56 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 31.21.57.56
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37856
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;31.21.57.56.			IN	A

;; AUTHORITY SECTION:
.			568	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011002 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 11 15:13:00 CST 2022
;; MSG SIZE  rcvd: 104

HOST信息:

56.57.21.31.in-addr.arpa domain name pointer 56-57-21-31.ftth.glasoperator.nl.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
56.57.21.31.in-addr.arpa	name = 56-57-21-31.ftth.glasoperator.nl.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
115.97.193.152	attack	srvr3: (mod_security) mod_security (id:920350) triggered by 115.97.193.152 (IN/-/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/13 18:57:22 [error] 479773#0: 2523 [client 115.97.193.152] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/GponForm/diag_Form"] [unique_id "160001624233.989233"] [ref "o0,12v48,12"], client: 115.97.193.152, [redacted] request: "POST /GponForm/diag_Form?images/ HTTP/1.1" [redacted]	2020-09-14 14:05:21
134.119.189.180	attackbots	[HOST2] Port Scan detected	2020-09-14 14:20:46
51.210.96.169	attackbots	Sep 14 08:13:11 nextcloud sshd\[28373\]: Invalid user cftest from 51.210.96.169 Sep 14 08:13:11 nextcloud sshd\[28373\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.210.96.169 Sep 14 08:13:13 nextcloud sshd\[28373\]: Failed password for invalid user cftest from 51.210.96.169 port 45931 ssh2	2020-09-14 14:20:24
114.67.85.74	attackspambots	Sep 14 07:08:57 lunarastro sshd[10040]: Failed password for root from 114.67.85.74 port 46374 ssh2 Sep 14 07:24:45 lunarastro sshd[10641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.85.74	2020-09-14 14:16:42
181.114.208.114	attackbots	(smtpauth) Failed SMTP AUTH login from 181.114.208.114 (AR/Argentina/host-208-114.adc.net.ar): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-09-13 21:27:38 plain authenticator failed for ([181.114.208.114]) [181.114.208.114]: 535 Incorrect authentication data (set_id=int)	2020-09-14 13:48:41
218.92.0.133	attack	[MK-VM4] SSH login failed	2020-09-14 14:07:22
206.189.72.161	attackbotsspam	Sep 14 06:16:23 h2779839 sshd[24173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.72.161 user=root Sep 14 06:16:25 h2779839 sshd[24173]: Failed password for root from 206.189.72.161 port 43848 ssh2 Sep 14 06:20:10 h2779839 sshd[24222]: Invalid user oracle from 206.189.72.161 port 50472 Sep 14 06:20:10 h2779839 sshd[24222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.72.161 Sep 14 06:20:10 h2779839 sshd[24222]: Invalid user oracle from 206.189.72.161 port 50472 Sep 14 06:20:12 h2779839 sshd[24222]: Failed password for invalid user oracle from 206.189.72.161 port 50472 ssh2 Sep 14 06:23:58 h2779839 sshd[24300]: Invalid user admin from 206.189.72.161 port 57134 Sep 14 06:23:58 h2779839 sshd[24300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.72.161 Sep 14 06:23:58 h2779839 sshd[24300]: Invalid user admin from 206.189.72.161 port 57134 ...	2020-09-14 14:06:44
51.15.118.15	attack	Sep 14 06:23:06 ns3164893 sshd[21137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.118.15 user=root Sep 14 06:23:08 ns3164893 sshd[21137]: Failed password for root from 51.15.118.15 port 37150 ssh2 ...	2020-09-14 13:57:58
37.49.224.205	attack	MAIL: User Login Brute Force Attempt	2020-09-14 13:49:53
192.99.57.32	attack	Sep 13 19:32:34 auw2 sshd\[23829\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.57.32 user=root Sep 13 19:32:36 auw2 sshd\[23829\]: Failed password for root from 192.99.57.32 port 32796 ssh2 Sep 13 19:36:59 auw2 sshd\[24176\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.57.32 user=root Sep 13 19:37:01 auw2 sshd\[24176\]: Failed password for root from 192.99.57.32 port 49328 ssh2 Sep 13 19:41:23 auw2 sshd\[24638\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.57.32 user=root	2020-09-14 14:01:15
202.143.111.42	attackspambots	$f2bV_matches	2020-09-14 13:50:20
217.170.205.71	attackspam	Automatic report - Banned IP Access	2020-09-14 14:19:42
106.124.136.103	attackbots	(sshd) Failed SSH login from 106.124.136.103 (CN/China/Guangdong/Guangzhou Shi/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 13 16:11:09 atlas sshd[24228]: Invalid user Admin from 106.124.136.103 port 46766 Sep 13 16:11:11 atlas sshd[24228]: Failed password for invalid user Admin from 106.124.136.103 port 46766 ssh2 Sep 13 16:26:38 atlas sshd[27956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.136.103 user=root Sep 13 16:26:39 atlas sshd[27956]: Failed password for root from 106.124.136.103 port 48258 ssh2 Sep 13 16:34:59 atlas sshd[29785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.136.103 user=root	2020-09-14 14:19:57
195.154.235.104	attack	Automatic report - XMLRPC Attack	2020-09-14 13:51:32
116.59.25.196	attackbotsspam	2020-09-14T00:46:15.6727591495-001 sshd[36618]: Invalid user postgres from 116.59.25.196 port 59276 2020-09-14T00:46:17.7863301495-001 sshd[36618]: Failed password for invalid user postgres from 116.59.25.196 port 59276 ssh2 2020-09-14T00:48:47.3251891495-001 sshd[36803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116-59-25-196.emome-ip.hinet.net user=root 2020-09-14T00:48:49.6363221495-001 sshd[36803]: Failed password for root from 116.59.25.196 port 38412 ssh2 2020-09-14T00:51:17.5850841495-001 sshd[36958]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116-59-25-196.emome-ip.hinet.net user=root 2020-09-14T00:51:19.8252921495-001 sshd[36958]: Failed password for root from 116.59.25.196 port 45786 ssh2 ...	2020-09-14 14:10:25

最近上报的IP列表

239.253.195.101	198.87.151.246	31.28.53.225	55.94.8.171
227.163.88.70	247.60.153.59	241.214.245.53	229.106.202.243
216.53.101.253	184.82.60.200	60.255.59.137	151.140.137.194
28.103.27.70	115.176.29.154	204.197.17.204	248.123.180.200
150.41.182.69	144.130.178.64	111.225.227.141	54.180.9.105