1.61.116.80 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Heilongjiang Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-05-02 03:37:12

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.61.116.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6642
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.61.116.80.			IN	A

;; AUTHORITY SECTION:
.			465	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050102 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 02 03:37:09 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 80.116.61.1.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 80.116.61.1.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
41.44.207.160	attackspambots	Port Scan detected! ...	2020-08-23 17:55:15
95.211.109.38	attackbotsspam	2020-08-23T12:05:14.204378mail.standpoint.com.ua sshd[2292]: Failed password for storage from 95.211.109.38 port 34923 ssh2 2020-08-23T12:05:16.204007mail.standpoint.com.ua sshd[2292]: Failed password for storage from 95.211.109.38 port 34923 ssh2 2020-08-23T12:05:18.144039mail.standpoint.com.ua sshd[2292]: Failed password for storage from 95.211.109.38 port 34923 ssh2 2020-08-23T12:05:19.708141mail.standpoint.com.ua sshd[2292]: Failed password for storage from 95.211.109.38 port 34923 ssh2 2020-08-23T12:05:21.406515mail.standpoint.com.ua sshd[2292]: Failed password for storage from 95.211.109.38 port 34923 ssh2 ...	2020-08-23 17:41:00
176.40.242.207	attackspam	176.40.242.207 - - [23/Aug/2020:04:48:33 +0100] "POST /xmlrpc.php HTTP/1.1" 200 229 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" 176.40.242.207 - - [23/Aug/2020:04:48:36 +0100] "POST /xmlrpc.php HTTP/1.1" 200 229 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" 176.40.242.207 - - [23/Aug/2020:04:48:39 +0100] "POST /xmlrpc.php HTTP/1.1" 200 229 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" ...	2020-08-23 17:52:03
195.54.160.183	attackspam	Aug 23 11:56:37 ip40 sshd[20601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.54.160.183 Aug 23 11:56:39 ip40 sshd[20601]: Failed password for invalid user ftp from 195.54.160.183 port 45931 ssh2 ...	2020-08-23 17:57:14
38.109.219.159	attack	Aug 23 10:21:10 db sshd[2247]: Invalid user history from 38.109.219.159 port 32918 ...	2020-08-23 17:24:30
106.54.200.209	attack	Invalid user webnet from 106.54.200.209 port 38064	2020-08-23 17:34:42
121.22.5.83	attackbotsspam	Invalid user bxl from 121.22.5.83 port 47970	2020-08-23 17:27:00
220.161.81.131	attackbots	Aug 23 06:00:51 prod4 sshd\[30071\]: Failed password for root from 220.161.81.131 port 41326 ssh2 Aug 23 06:05:41 prod4 sshd\[31648\]: Invalid user daxiao from 220.161.81.131 Aug 23 06:05:43 prod4 sshd\[31648\]: Failed password for invalid user daxiao from 220.161.81.131 port 46588 ssh2 ...	2020-08-23 17:16:44
113.110.214.183	attackspambots	TCP (SYN) 113.110.214.183:5120 -> port 445, len 44	2020-08-23 17:27:52
129.211.65.242	attackspam	Lines containing failures of 129.211.65.242 Aug 23 03:37:02 shared10 sshd[31415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.65.242 user=r.r Aug 23 03:37:04 shared10 sshd[31415]: Failed password for r.r from 129.211.65.242 port 42664 ssh2 Aug 23 03:37:04 shared10 sshd[31415]: Received disconnect from 129.211.65.242 port 42664:11: Bye Bye [preauth] Aug 23 03:37:04 shared10 sshd[31415]: Disconnected from authenticating user r.r 129.211.65.242 port 42664 [preauth] Aug 23 03:49:45 shared10 sshd[5022]: Invalid user xxxxxxta from 129.211.65.242 port 38786 Aug 23 03:49:45 shared10 sshd[5022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.65.242 Aug 23 03:49:48 shared10 sshd[5022]: Failed password for invalid user xxxxxxta from 129.211.65.242 port 38786 ssh2 Aug 23 03:49:50 shared10 sshd[5022]: Received disconnect from 129.211.65.242 port 38786:11: Bye Bye [preauth] Aug 23 03:........ ------------------------------	2020-08-23 17:51:18
222.186.190.14	attack	Aug 23 19:51:19 localhost sshd[4022877]: Disconnected from 222.186.190.14 port 64780 [preauth] ...	2020-08-23 17:51:43
116.85.41.138	attackspambots	Too many connections or unauthorized access detected from Arctic banned ip	2020-08-23 17:41:51
200.89.154.99	attackspam	Aug 23 09:18:07 meumeu sshd[133081]: Invalid user ruud from 200.89.154.99 port 36008 Aug 23 09:18:07 meumeu sshd[133081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.89.154.99 Aug 23 09:18:07 meumeu sshd[133081]: Invalid user ruud from 200.89.154.99 port 36008 Aug 23 09:18:09 meumeu sshd[133081]: Failed password for invalid user ruud from 200.89.154.99 port 36008 ssh2 Aug 23 09:19:49 meumeu sshd[133124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.89.154.99 user=root Aug 23 09:19:52 meumeu sshd[133124]: Failed password for root from 200.89.154.99 port 36149 ssh2 Aug 23 09:21:17 meumeu sshd[133155]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.89.154.99 user=root Aug 23 09:21:19 meumeu sshd[133155]: Failed password for root from 200.89.154.99 port 33568 ssh2 Aug 23 09:22:47 meumeu sshd[133231]: Invalid user natanael from 200.89.154.99 port 59536 ...	2020-08-23 17:19:03
144.34.240.47	attack	Aug 23 10:32:36 * sshd[5787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.34.240.47 Aug 23 10:32:38 * sshd[5787]: Failed password for invalid user kuber from 144.34.240.47 port 33078 ssh2	2020-08-23 17:28:13
121.48.164.46	attackspam	Lines containing failures of 121.48.164.46 Aug 21 10:11:27 smtp-out sshd[13196]: Did not receive identification string from 121.48.164.46 port 54078 Aug 21 10:11:45 smtp-out sshd[13223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.48.164.46 user=r.r Aug 21 10:11:46 smtp-out sshd[13223]: Failed password for r.r from 121.48.164.46 port 47352 ssh2 Aug 21 10:11:47 smtp-out sshd[13223]: Received disconnect from 121.48.164.46 port 47352:11: Normal Shutdown, Thank you for playing [preauth] Aug 21 10:11:47 smtp-out sshd[13223]: Disconnected from authenticating user r.r 121.48.164.46 port 47352 [preauth] Aug 21 10:12:15 smtp-out sshd[13231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.48.164.46 user=r.r Aug 21 10:12:17 smtp-out sshd[13231]: Failed password for r.r from 121.48.164.46 port 33212 ssh2 Aug 21 10:12:17 smtp-out sshd[13231]: Received disconnect from 121.48.164.46 port 3321........ ------------------------------	2020-08-23 17:31:41

最近上报的IP列表

95.39.181.112	163.250.172.110	162.27.249.182	58.14.215.118
183.163.44.99	49.204.178.75	14.107.134.34	213.120.71.110
199.191.240.142	128.135.220.151	213.150.146.224	33.145.146.194
50.42.38.71	31.73.128.30	92.14.251.248	42.86.105.48
202.165.247.213	131.161.224.12	14.95.72.1	31.163.172.193