56.31.116.31 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 56.31.116.31
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53074
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;56.31.116.31.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021300 1800 900 604800 86400

;; Query time: 44 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 00:17:00 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

b'Host 31.116.31.56.in-addr.arpa not found: 2(SERVFAIL)
'

NSLOOKUP信息:

server can't find 56.31.116.31.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
175.138.209.110	attackspambots	Brute forcing Wordpress login	2019-07-29 19:32:26
40.40.80.115	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2019-07-29 19:08:32
153.36.242.114	attackspambots	Jul 29 13:46:32 legacy sshd[3119]: Failed password for root from 153.36.242.114 port 24402 ssh2 Jul 29 13:46:59 legacy sshd[3129]: Failed password for root from 153.36.242.114 port 12129 ssh2 ...	2019-07-29 19:51:31
116.255.206.63	attack	ECShop Remote Code Execution Vulnerability, PTR: PTR record not found	2019-07-29 19:39:07
116.196.116.9	attackspam	Jul 29 06:07:49 rama sshd[303078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.116.9 user=r.r Jul 29 06:07:51 rama sshd[303078]: Failed password for r.r from 116.196.116.9 port 34180 ssh2 Jul 29 06:07:51 rama sshd[303078]: Received disconnect from 116.196.116.9: 11: Bye Bye [preauth] Jul 29 06:32:56 rama sshd[316650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.116.9 user=r.r Jul 29 06:32:58 rama sshd[316650]: Failed password for r.r from 116.196.116.9 port 43428 ssh2 Jul 29 06:32:58 rama sshd[316650]: Received disconnect from 116.196.116.9: 11: Bye Bye [preauth] Jul 29 06:36:47 rama sshd[319399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.116.9 user=r.r Jul 29 06:36:49 rama sshd[319399]: Failed password for r.r from 116.196.116.9 port 60982 ssh2 Jul 29 06:36:49 rama sshd[319399]: Received disconnect from 116.196........ -------------------------------	2019-07-29 19:17:44
5.249.145.245	attack	Jul 29 08:14:14 debian sshd\[8217\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.249.145.245 user=root Jul 29 08:14:15 debian sshd\[8217\]: Failed password for root from 5.249.145.245 port 34629 ssh2 ...	2019-07-29 19:08:57
45.227.253.215	attackspam	Jul 29 12:01:02 mailserver postfix/anvil[26806]: statistics: max connection rate 2/60s for (smtps:45.227.253.215) at Jul 29 11:53:37 Jul 29 12:53:45 mailserver postfix/smtps/smtpd[43599]: warning: hostname hosting-by.directwebhost.org does not resolve to address 45.227.253.215: hostname nor servname provided, or not known Jul 29 12:53:45 mailserver postfix/smtps/smtpd[43599]: connect from unknown[45.227.253.215] Jul 29 12:53:48 mailserver dovecot: auth-worker(43588): sql([hidden],45.227.253.215): unknown user Jul 29 12:53:50 mailserver postfix/smtps/smtpd[43599]: warning: unknown[45.227.253.215]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 29 12:53:50 mailserver postfix/smtps/smtpd[43599]: lost connection after AUTH from unknown[45.227.253.215] Jul 29 12:53:50 mailserver postfix/smtps/smtpd[43599]: disconnect from unknown[45.227.253.215] Jul 29 12:53:50 mailserver postfix/smtps/smtpd[43599]: warning: hostname hosting-by.directwebhost.org does not resolve to address 45.227.253.215: hostname nor servname	2019-07-29 19:09:56
187.103.3.241	attack	CloudCIX Reconnaissance Scan Detected, PTR: 187-103-3-241.newnet.com.br.	2019-07-29 19:31:30
45.119.212.105	attack	DATE:2019-07-29 12:50:12, IP:45.119.212.105, PORT:ssh SSH brute force auth on honeypot server (honey-neo-dc-bis)	2019-07-29 19:41:33
41.159.18.20	attackspambots	Jul 29 08:22:52 mail sshd[10941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.159.18.20 user=root Jul 29 08:22:54 mail sshd[10941]: Failed password for root from 41.159.18.20 port 39101 ssh2 Jul 29 08:38:08 mail sshd[18518]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.159.18.20 user=root Jul 29 08:38:10 mail sshd[18518]: Failed password for root from 41.159.18.20 port 50989 ssh2 Jul 29 08:46:45 mail sshd[22754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.159.18.20 user=root Jul 29 08:46:47 mail sshd[22754]: Failed password for root from 41.159.18.20 port 48752 ssh2 ...	2019-07-29 19:33:27
220.120.106.254	attackspam	2019-07-29T09:10:02.728489abusebot-3.cloudsearch.cf sshd\[19141\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.120.106.254 user=root	2019-07-29 19:48:20
156.155.136.254	attackspambots	2019-07-29T08:30:44.338981Z \[cowrie.ssh.factory.CowrieSSHFactory\] New connection: 156.155.136.254:38626 \(107.175.91.48:22\) \[session: 7fc91a085022\] 2019-07-29T08:30:44.477298Z \[cowrie.ssh.factory.CowrieSSHFactory\] New connection: 156.155.136.254:38632 \(107.175.91.48:22\) \[session: ecc26c1317e1\] ...	2019-07-29 19:14:35
194.156.126.76	attack	scan z	2019-07-29 19:19:53
190.191.194.9	attackbotsspam	Jul 29 07:27:41 localhost sshd\[15249\]: Invalid user Abcde123 from 190.191.194.9 port 38593 Jul 29 07:27:41 localhost sshd\[15249\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.191.194.9 Jul 29 07:27:42 localhost sshd\[15249\]: Failed password for invalid user Abcde123 from 190.191.194.9 port 38593 ssh2 Jul 29 07:33:36 localhost sshd\[15402\]: Invalid user segredo from 190.191.194.9 port 35101 Jul 29 07:33:36 localhost sshd\[15402\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.191.194.9 ...	2019-07-29 19:16:09
94.74.177.254	attackbots	Brute force SMTP login attempts.	2019-07-29 20:02:41

最近上报的IP列表

140.105.21.176	186.156.187.16	120.19.167.128	150.134.35.9
79.211.71.162	62.192.197.44	255.88.161.25	47.100.197.245
167.175.198.203	165.176.89.150	180.200.154.121	136.158.201.91
245.184.129.49	6.245.102.124	50.132.63.194	227.161.162.156
97.148.82.213	85.81.149.191	88.208.45.175	154.68.195.192