61.159.252.20 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
61.159.252.2	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54377cc6a9cfe50e \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.0101097241 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 06:32:24

类型

评论内容

时间

61.159.252.2

attack

The IP has triggered Cloudflare WAF. CF-Ray: 54377cc6a9cfe50e | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: d.skk.moe | User-Agent: Mozilla/5.0101097241 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-12 06:32:24

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.159.252.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59854
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;61.159.252.20.			IN	A

;; AUTHORITY SECTION:
.			478	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 09:04:30 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 20.252.159.61.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

server can't find 61.159.252.20.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
119.196.83.22	attackbots	Nov 4 09:09:51 srv206 sshd[31377]: Invalid user batman from 119.196.83.22 ...	2019-11-04 16:40:24
91.121.101.159	attackspambots	Nov 4 09:21:15 vps01 sshd[19362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.101.159 Nov 4 09:21:17 vps01 sshd[19362]: Failed password for invalid user fletcher from 91.121.101.159 port 52860 ssh2	2019-11-04 16:21:56
54.37.230.15	attack	Nov 4 01:41:56 ny01 sshd[5252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.230.15 Nov 4 01:41:58 ny01 sshd[5252]: Failed password for invalid user davisito from 54.37.230.15 port 38372 ssh2 Nov 4 01:46:17 ny01 sshd[5639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.230.15	2019-11-04 16:31:24
193.70.39.175	attackbotsspam	Nov 4 09:33:12 vps01 sshd[19637]: Failed password for root from 193.70.39.175 port 34002 ssh2	2019-11-04 16:38:30
144.217.214.100	attackspam	Nov 4 03:24:43 firewall sshd[31810]: Failed password for root from 144.217.214.100 port 48536 ssh2 Nov 4 03:28:58 firewall sshd[31900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.214.100 user=root Nov 4 03:28:59 firewall sshd[31900]: Failed password for root from 144.217.214.100 port 58130 ssh2 ...	2019-11-04 16:56:46
125.161.127.209	attackbots	Unauthorized connection attempt from IP address 125.161.127.209 on Port 445(SMB)	2019-11-04 16:16:41
211.23.61.194	attackspambots	no	2019-11-04 16:51:02
51.38.232.93	attack	Lines containing failures of 51.38.232.93 Nov 4 07:22:02 zabbix sshd[29499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.232.93 user=r.r Nov 4 07:22:04 zabbix sshd[29499]: Failed password for r.r from 51.38.232.93 port 41052 ssh2 Nov 4 07:22:04 zabbix sshd[29499]: Received disconnect from 51.38.232.93 port 41052:11: Bye Bye [preauth] Nov 4 07:22:04 zabbix sshd[29499]: Disconnected from authenticating user r.r 51.38.232.93 port 41052 [preauth] Nov 4 07:47:25 zabbix sshd[30914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.232.93 user=r.r Nov 4 07:47:26 zabbix sshd[30914]: Failed password for r.r from 51.38.232.93 port 45240 ssh2 Nov 4 07:47:26 zabbix sshd[30914]: Received disconnect from 51.38.232.93 port 45240:11: Bye Bye [preauth] Nov 4 07:47:26 zabbix sshd[30914]: Disconnected from authenticating user r.r 51.38.232.93 port 45240 [preauth] Nov 4 07:51:57 zabbix ........ ------------------------------	2019-11-04 16:44:41
51.15.190.180	attackbotsspam	2019-11-04T08:25:22.205138shield sshd\[4101\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.190.180 user=root 2019-11-04T08:25:24.382201shield sshd\[4101\]: Failed password for root from 51.15.190.180 port 52756 ssh2 2019-11-04T08:31:47.146803shield sshd\[4685\]: Invalid user mj from 51.15.190.180 port 34216 2019-11-04T08:31:47.153412shield sshd\[4685\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.190.180 2019-11-04T08:31:49.184792shield sshd\[4685\]: Failed password for invalid user mj from 51.15.190.180 port 34216 ssh2	2019-11-04 16:34:41
105.228.136.148	attack	Unauthorised access (Nov 4) SRC=105.228.136.148 LEN=52 TOS=0x14 TTL=111 ID=24614 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Nov 4) SRC=105.228.136.148 LEN=52 TOS=0x14 TTL=111 ID=19497 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-04 16:40:40
125.212.182.60	attackbotsspam	namecheap spam	2019-11-04 16:17:38
165.22.125.61	attackbots	Nov 4 08:58:51 zulu412 sshd\[6068\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.125.61 user=root Nov 4 08:58:54 zulu412 sshd\[6068\]: Failed password for root from 165.22.125.61 port 44278 ssh2 Nov 4 09:06:20 zulu412 sshd\[6646\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.125.61 user=root ...	2019-11-04 16:26:30
189.212.229.192	attack	Automatic report - Port Scan Attack	2019-11-04 16:39:06
14.252.145.217	attackspambots	Nov 4 07:29:24 arianus sshd\[27887\]: Invalid user admin from 14.252.145.217 port 56870 ...	2019-11-04 16:42:38
23.254.203.243	attackspam	Unauthorised access (Nov 4) SRC=23.254.203.243 LEN=40 TOS=0x08 PREC=0x20 TTL=47 ID=33066 TCP DPT=8080 WINDOW=50776 SYN Unauthorised access (Nov 4) SRC=23.254.203.243 LEN=40 TOS=0x08 PREC=0x20 TTL=47 ID=47399 TCP DPT=8080 WINDOW=11606 SYN Unauthorised access (Nov 4) SRC=23.254.203.243 LEN=40 TOS=0x08 PREC=0x20 TTL=47 ID=48150 TCP DPT=8080 WINDOW=11606 SYN Unauthorised access (Nov 3) SRC=23.254.203.243 LEN=40 TOS=0x08 PREC=0x20 TTL=47 ID=35057 TCP DPT=8080 WINDOW=26819 SYN	2019-11-04 16:46:42

最近上报的IP列表

61.159.249.62	61.163.150.228	61.163.157.33	61.159.252.140
61.163.198.102	61.159.252.106	61.164.160.130	61.164.128.118
61.166.166.187	61.166.192.123	61.166.183.93	61.166.192.221
61.170.195.159	61.164.200.250	61.166.192.235	61.167.234.106
61.172.16.173	61.166.192.80	61.166.192.240	61.166.192.224