61.147.56.12 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.147.56.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48883
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;61.147.56.12.			IN	A

;; AUTHORITY SECTION:
.			420	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2021122800 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 28 22:13:14 CST 2021
;; MSG SIZE  rcvd: 105

HOST信息:

Host 12.56.147.61.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 12.56.147.61.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
60.169.95.112	attackbots	2020-03-20 22:49:48 H=(qEvYpSQxh) [60.169.95.112]:57990 I=[192.147.25.65]:25 F= rejected RCPT <2129823216@qq.com>: RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.2, 127.0.0.11, 127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBL468331) 2020-03-20 22:49:51 dovecot_login authenticator failed for (feG9AG) [60.169.95.112]:58303 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=hkcdtsradxes@lerctr.org) 2020-03-20 22:50:01 dovecot_login authenticator failed for (dwezN6Ts) [60.169.95.112]:58616 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=hkcdtsradxes@lerctr.org) ...	2020-03-21 16:52:57
196.52.43.52	attackspambots	Honeypot hit.	2020-03-21 16:45:47
139.59.67.82	attackspambots	fail2ban -- 139.59.67.82 ...	2020-03-21 17:15:41
51.159.59.241	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 34 - port: 389 proto: UDP cat: Misc Attack	2020-03-21 16:48:23
190.199.247.163	attack	Automatic report - Port Scan Attack	2020-03-21 16:56:22
31.44.247.180	attackspambots	Mar 21 07:09:23 prox sshd[9183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.44.247.180 Mar 21 07:09:26 prox sshd[9183]: Failed password for invalid user ts from 31.44.247.180 port 55651 ssh2	2020-03-21 17:10:07
106.53.20.179	attackspam	Mar 21 10:20:03 nextcloud sshd\[25860\]: Invalid user pontiac from 106.53.20.179 Mar 21 10:20:03 nextcloud sshd\[25860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.20.179 Mar 21 10:20:05 nextcloud sshd\[25860\]: Failed password for invalid user pontiac from 106.53.20.179 port 45974 ssh2	2020-03-21 17:21:25
182.61.49.27	attackbotsspam	DATE:2020-03-21 06:39:04, IP:182.61.49.27, PORT:ssh SSH brute force auth (docker-dc)	2020-03-21 16:48:09
82.64.247.98	attack	2020-03-21T04:15:39.896711shield sshd\[30702\]: Invalid user squid from 82.64.247.98 port 59527 2020-03-21T04:15:39.905938shield sshd\[30702\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82-64-247-98.subs.proxad.net 2020-03-21T04:15:42.213372shield sshd\[30702\]: Failed password for invalid user squid from 82.64.247.98 port 59527 ssh2 2020-03-21T04:21:00.721716shield sshd\[32556\]: Invalid user dchapman from 82.64.247.98 port 64731 2020-03-21T04:21:00.728853shield sshd\[32556\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82-64-247-98.subs.proxad.net	2020-03-21 17:07:48
218.61.178.35	attack	Unauthorized connection attempt detected from IP address 218.61.178.35 to port 5555 [T]	2020-03-21 16:51:10
167.99.67.209	attackbots	Invalid user remote from 167.99.67.209 port 47920	2020-03-21 17:20:40
173.252.87.12	attack	[Sat Mar 21 10:49:26.301951 2020] [:error] [pid 8243:tid 140035779888896] [client 173.252.87.12:38676] [client 173.252.87.12] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/comlink-worker-v1.js"] [unique_id "XnWOxk9P8QlH7eYVVSo6-gAAAAE"], referer: https://karangploso.jatim.bmkg.go.id/ ...	2020-03-21 17:16:49
61.230.98.182	attackbots	20/3/20@23:50:09: FAIL: Alarm-Network address from=61.230.98.182 ...	2020-03-21 16:44:10
186.58.185.63	attack	1584762588 - 03/21/2020 04:49:48 Host: 186.58.185.63/186.58.185.63 Port: 445 TCP Blocked	2020-03-21 17:01:19
103.107.17.205	attackspambots	<6 unauthorized SSH connections	2020-03-21 17:02:12

最近上报的IP列表

219.118.82.125	66.107.166.75	125.140.157.144	123.119.240.73
179.143.140.142	55.225.184.26	219.217.103.17	42.136.212.124
34.199.168.32	245.222.166.252	243.16.245.156	139.186.131.178
120.13.238.4	45.248.36.213	197.253.247.3	197.253.247.4
135.78.242.213	221.177.194.87	141.66.192.190	2600:387:b:982::49