61.142.20.6 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Guangdong Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Automatic report - FTP Brute Force	2019-12-05 22:49:14

相同子网IP讨论:

IP	类型	评论内容	时间
61.142.20.29	attackspam	(ftpd) Failed FTP login from 61.142.20.29 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jun 8 08:47:08 ir1 pure-ftpd: (?@61.142.20.29) [WARNING] Authentication failed for user [anonymous]	2020-06-08 16:59:07
61.142.20.30	attackbots	Port scan on 1 port(s): 1433	2020-06-08 14:34:18
61.142.20.46	attackspambots	IP reached maximum auth failures	2020-06-08 13:21:11
61.142.20.34	attack	Brute forcing RDP port 3389	2020-05-13 12:59:00
61.142.208.100	attackbots	Unauthorized connection attempt from IP address 61.142.208.100 on Port 445(SMB)	2020-03-03 06:53:43
61.142.20.2	attack	Scanning	2019-12-26 19:39:45
61.142.20.29	attack	1433/tcp 1433/tcp 1433/tcp... [2019-11-28/12-08]4pkt,1pt.(tcp)	2019-12-09 06:59:44
61.142.20.16	attackspam	Automatic report - Banned IP Access	2019-11-27 15:03:41
61.142.20.29	attackspambots	Automatic report - Port Scan Attack	2019-11-13 20:18:18

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.142.20.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44826
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;61.142.20.6.			IN	A

;; AUTHORITY SECTION:
.			365	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120500 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 05 22:49:09 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 6.20.142.61.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 6.20.142.61.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
159.65.102.98	attack	fail2ban honeypot	2019-11-29 03:11:29
178.62.236.68	attack	xmlrpc attack	2019-11-29 03:27:58
51.75.195.25	attackspambots	Nov 28 18:50:59 hosting sshd[8425]: Invalid user mohtar from 51.75.195.25 port 35014 ...	2019-11-29 03:20:06
185.20.44.254	attackbotsspam	Unauthorized connection attempt from IP address 185.20.44.254 on Port 445(SMB)	2019-11-29 03:08:38
82.196.14.222	attackspambots	2019-11-28T19:12:03.637725abusebot-5.cloudsearch.cf sshd\[26263\]: Invalid user fuckyou from 82.196.14.222 port 34102	2019-11-29 03:15:54
78.128.113.124	attackspambots	Nov 26 21:03:11 xzibhostname postfix/smtpd[27245]: warning: hostname ip-113-124.4vendeta.com does not resolve to address 78.128.113.124: Name or service not known Nov 26 21:03:11 xzibhostname postfix/smtpd[27245]: connect from unknown[78.128.113.124] Nov 26 21:03:12 xzibhostname postfix/smtpd[27245]: warning: unknown[78.128.113.124]: SASL LOGIN authentication failed: authentication failure Nov 26 21:03:12 xzibhostname postfix/smtpd[27245]: lost connection after AUTH from unknown[78.128.113.124] Nov 26 21:03:12 xzibhostname postfix/smtpd[27245]: disconnect from unknown[78.128.113.124] Nov 26 21:03:12 xzibhostname postfix/smtpd[27245]: warning: hostname ip-113-124.4vendeta.com does not resolve to address 78.128.113.124: Name or service not known Nov 26 21:03:12 xzibhostname postfix/smtpd[27245]: connect from unknown[78.128.113.124] Nov 26 21:03:14 xzibhostname postfix/smtpd[27245]: warning: unknown[78.128.113.124]: SASL LOGIN authentication failed: authentication failure ........ -------------------------------	2019-11-29 03:06:39
106.13.113.161	attack	Nov 28 17:18:29 heissa sshd\[32476\]: Invalid user ftpuser from 106.13.113.161 port 60700 Nov 28 17:18:29 heissa sshd\[32476\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.113.161 Nov 28 17:18:31 heissa sshd\[32476\]: Failed password for invalid user ftpuser from 106.13.113.161 port 60700 ssh2 Nov 28 17:24:04 heissa sshd\[890\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.113.161 user=root Nov 28 17:24:06 heissa sshd\[890\]: Failed password for root from 106.13.113.161 port 58960 ssh2	2019-11-29 03:37:09
182.70.242.179	attackbotsspam	Unauthorized connection attempt from IP address 182.70.242.179 on Port 445(SMB)	2019-11-29 03:04:17
80.211.194.89	attack	dkim=pass header.i=@kaitoupa.com header.s=dk header.b=cTfIXx8M; spf=pass (google.com: domain of newsletter@kaitoupa.com designates 80.211.194.89 as permitted sender) smtp.mailfrom=newsletter@kaitoupa.com; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kaitoupa.com Return-Path: Received: from us.kaitoupa.com (us.kaitoupa.com. [80.211.194.89]) by mx.google.com with ESMTPS id 16si7882463wma.31.2019.11.28.00.14.28 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 28 Nov 2019 00:14:29 -0800 (PST)	2019-11-29 03:05:50
14.139.184.25	attackbotsspam	Unauthorized connection attempt from IP address 14.139.184.25 on Port 445(SMB)	2019-11-29 03:32:47
179.57.107.203	attackspambots	Unauthorized connection attempt from IP address 179.57.107.203 on Port 445(SMB)	2019-11-29 03:41:17
202.123.240.19	attackspam	Unauthorized connection attempt from IP address 202.123.240.19 on Port 445(SMB)	2019-11-29 03:35:03
178.46.160.203	attackspambots	Nov 28 17:31:43 auth-worker(16363): Info: sql(mobobmen-minsk@htcd.gov.by,178.46.160.203,): Password mismatch (given password: Minskmobobmen2020) Nov 28 17:31:43 auth: Info: checkpassword(mobobmen-minsk@htcd.gov.by,178.46.160.203,): Login failed (status=1) Nov 28 17:31:45 imap-login: Info: Disconnected (auth failed, 1 attempts in 4 secs): user=, method=PLAIN, rip=178.46.160.203, lip=192.168.216.3, TLS	2019-11-29 03:04:44
118.201.40.3	attackbots	Unauthorized connection attempt from IP address 118.201.40.3 on Port 445(SMB)	2019-11-29 03:19:24
51.83.55.197	attackbotsspam	port scan/probe/communication attempt	2019-11-29 03:41:40

最近上报的IP列表

54.166.189.33	211.214.251.80	89.109.129.130	23.254.225.191
130.105.67.127	88.214.11.102	190.113.211.182	153.197.35.223
163.172.166.212	125.76.177.199	7.64.10.194	115.186.191.2
215.182.131.154	239.173.4.220	118.49.57.238	82.79.88.140
168.99.221.20	212.89.49.236	86.254.222.146	138.217.241.51

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表