61.189.37.59 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '61.189.0.0 - 61.189.127.255'

% Abuse contact for '61.189.0.0 - 61.189.127.255' is 'zhaoyz3@chinaunicom.cn'

inetnum:        61.189.0.0 - 61.189.127.255
netname:        UNICOM-LN
descr:          China Unicom Liaoning province network
descr:          China Unicom
country:        CN
admin-c:        CH1302-AP
tech-c:         GZ84-AP
abuse-c:        AC1718-AP
status:         ALLOCATED PORTABLE
mnt-by:         APNIC-HM
mnt-lower:      MAINT-CNCGROUP-LN
mnt-routes:     MAINT-CNCGROUP-RR
mnt-irt:        IRT-CU-CN
last-modified:  2023-10-21T03:37:11Z
source:         APNIC

irt:            IRT-CU-CN
address:        No.21,Financial Street
address:        Beijing,100033
address:        P.R.China
e-mail:         zhaoyz3@chinaunicom.cn
abuse-mailbox:  zhaoyz3@chinaunicom.cn
admin-c:        CH1302-AP
tech-c:         CH1302-AP
auth:           # Filtered
remarks:        zhaoyz3@chinaunicom.cn was validated on 2025-10-17
mnt-by:         MAINT-CNCGROUP
last-modified:  2025-10-17T02:26:26Z
source:         APNIC

role:           ABUSE CUCN
country:        ZZ
address:        No.21,Financial Street
address:        Beijing,100033
address:        P.R.China
phone:          +000000000
e-mail:         zhaoyz3@chinaunicom.cn
admin-c:        CH1302-AP
tech-c:         CH1302-AP
nic-hdl:        AC1718-AP
remarks:        Generated from irt object IRT-CU-CN
remarks:        zhaoyz3@chinaunicom.cn was validated on 2025-10-17
abuse-mailbox:  zhaoyz3@chinaunicom.cn
mnt-by:         APNIC-ABUSE
last-modified:  2025-10-17T02:26:56Z
source:         APNIC

person:         ChinaUnicom Hostmaster
nic-hdl:        CH1302-AP
e-mail:         hqs-ipabuse@chinaunicom.cn
address:        No.21,Jin-Rong Street
address:        Beijing,100033
address:        P.R.China
phone:          +86-10-66259764
fax-no:         +86-10-66259764
country:        CN
mnt-by:         MAINT-CNCGROUP
last-modified:  2017-08-17T06:13:16Z
source:         APNIC

person:         Guangyu Zhan
nic-hdl:        GZ84-AP
e-mail:         hqs-ipabuse@chinaunicom.cn
address:        DATA Communication Bureau of Liaoning Province,China
address:        38 Lianhe Road,Dadong District Shenyang 110044,China
phone:          +86-24-22800809
fax-no:         +86-24-22800077
country:        CN
mnt-by:         MAINT-CNCGROUP-LN
last-modified:  2017-08-17T06:16:09Z
source:         APNIC

% Information related to '61.189.0.0/17AS4837'

route:          61.189.0.0/17
descr:          CNC Group CHINA169 Liaoning Province Network
country:        CN
origin:         AS4837
mnt-by:         MAINT-CNCGROUP-RR
last-modified:  2008-09-04T07:54:44Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5)

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.189.37.59
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58106
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;61.189.37.59.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025110602 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 07 10:55:16 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 59.37.189.61.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 59.37.189.61.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
201.156.8.145	attack	Port scan on 1 port(s): 5555	2019-10-09 01:21:51
202.152.15.12	attack	Oct 8 07:05:56 rb06 sshd[10370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.152.15.12 user=r.r Oct 8 07:05:57 rb06 sshd[10370]: Failed password for r.r from 202.152.15.12 port 50538 ssh2 Oct 8 07:05:58 rb06 sshd[10370]: Received disconnect from 202.152.15.12: 11: Bye Bye [preauth] Oct 8 07:25:09 rb06 sshd[7112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.152.15.12 user=r.r Oct 8 07:25:11 rb06 sshd[7112]: Failed password for r.r from 202.152.15.12 port 44812 ssh2 Oct 8 07:25:11 rb06 sshd[7112]: Received disconnect from 202.152.15.12: 11: Bye Bye [preauth] Oct 8 07:29:44 rb06 sshd[30157]: Failed password for invalid user 321 from 202.152.15.12 port 54286 ssh2 Oct 8 07:29:44 rb06 sshd[30157]: Received disconnect from 202.152.15.12: 11: Bye Bye [preauth] Oct 8 07:34:21 rb06 sshd[1756]: Failed password for invalid user 123Outlook from 202.152.15.12 port 35542 ssh2 Oct........ -------------------------------	2019-10-09 01:44:50
45.136.110.11	attackspambots	Oct 8 18:30:17 h2177944 kernel: \[3428302.785124\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.11 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=25818 PROTO=TCP SPT=52754 DPT=73 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 8 18:34:58 h2177944 kernel: \[3428584.304903\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.11 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=3542 PROTO=TCP SPT=52754 DPT=460 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 8 18:35:46 h2177944 kernel: \[3428632.043486\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.11 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=8559 PROTO=TCP SPT=52754 DPT=568 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 8 18:36:10 h2177944 kernel: \[3428655.667086\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.11 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=11554 PROTO=TCP SPT=52754 DPT=944 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 8 18:40:40 h2177944 kernel: \[3428926.532442\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.11 DST=85.214.117.9 LEN=40	2019-10-09 01:25:19
221.194.5.152	attackspambots	Unauthorised access (Oct 8) SRC=221.194.5.152 LEN=40 TTL=49 ID=1421 TCP DPT=8080 WINDOW=32912 SYN Unauthorised access (Oct 8) SRC=221.194.5.152 LEN=40 TTL=49 ID=10605 TCP DPT=8080 WINDOW=53208 SYN Unauthorised access (Oct 7) SRC=221.194.5.152 LEN=40 TTL=49 ID=60515 TCP DPT=8080 WINDOW=32912 SYN Unauthorised access (Oct 7) SRC=221.194.5.152 LEN=40 TTL=49 ID=11199 TCP DPT=8080 WINDOW=32912 SYN	2019-10-09 01:39:29
219.233.217.123	attackspam	postfix (unknown user, SPF fail or relay access denied)	2019-10-09 01:31:51
80.211.80.154	attack	Oct 8 08:05:49 h2022099 sshd[1466]: reveeclipse mapping checking getaddrinfo for host154-80-211-80.serverdedicati.aruba.hostname [80.211.80.154] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 8 08:05:49 h2022099 sshd[1466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.80.154 user=r.r Oct 8 08:05:51 h2022099 sshd[1466]: Failed password for r.r from 80.211.80.154 port 33248 ssh2 Oct 8 08:05:51 h2022099 sshd[1466]: Received disconnect from 80.211.80.154: 11: Bye Bye [preauth] Oct 8 08:22:09 h2022099 sshd[4003]: reveeclipse mapping checking getaddrinfo for host154-80-211-80.serverdedicati.aruba.hostname [80.211.80.154] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 8 08:22:09 h2022099 sshd[4003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.80.154 user=r.r Oct 8 08:22:11 h2022099 sshd[4003]: Failed password for r.r from 80.211.80.154 port 57696 ssh2 Oct 8 08:22:11 h2022099 sshd[4........ -------------------------------	2019-10-09 01:53:01
134.209.203.238	attackspam	wp bruteforce	2019-10-09 01:20:36
152.169.156.105	attackspam	(pop3d) Failed POP3 login from 152.169.156.105 (AR/Argentina/105-156-169-152.fibertel.com.ar): 1 in the last 3600 secs	2019-10-09 01:28:05
37.59.38.216	attackbots	2019-10-08T17:12:13.277505abusebot-5.cloudsearch.cf sshd\[6690\]: Invalid user test from 37.59.38.216 port 53169 2019-10-08T17:12:13.282729abusebot-5.cloudsearch.cf sshd\[6690\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns331058.ip-37-59-38.eu	2019-10-09 01:42:30
201.8.101.156	attackbotsspam	Unauthorised access (Oct 8) SRC=201.8.101.156 LEN=52 TTL=110 ID=20132 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-09 01:45:09
219.69.83.16	attack	Sep 26 11:57:28 dallas01 sshd[16986]: Failed password for root from 219.69.83.16 port 44562 ssh2 Sep 26 11:57:29 dallas01 sshd[16986]: Failed password for root from 219.69.83.16 port 44562 ssh2 Sep 26 11:57:32 dallas01 sshd[16986]: Failed password for root from 219.69.83.16 port 44562 ssh2 Sep 26 11:57:34 dallas01 sshd[16986]: Failed password for root from 219.69.83.16 port 44562 ssh2	2019-10-09 01:39:44
49.207.177.235	attackbotsspam	Honeypot attack, port: 23, PTR: broadband.actcorp.in.	2019-10-09 01:29:11
35.241.134.161	attackbots	Automated reporting of Vulnerability scanning	2019-10-09 01:58:25
219.73.114.139	attack	Jun 4 06:54:04 ubuntu sshd[27763]: Failed password for invalid user sammy from 219.73.114.139 port 57822 ssh2 Jun 4 06:56:55 ubuntu sshd[27832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.73.114.139 Jun 4 06:56:57 ubuntu sshd[27832]: Failed password for invalid user data from 219.73.114.139 port 52694 ssh2	2019-10-09 01:34:35
71.6.142.86	attackbots	Automated reporting of Vulnerability scanning	2019-10-09 01:44:22

最近上报的IP列表

43.129.52.248	47.89.232.167	53.15.114.24	8.222.205.56
32.90.9.227	53.15.114.92	8.219.235.48	53.15.144.5
53.15.144.92	47.236.130.134	17.248.216.65	47.84.42.120
53.15.144.25	47.241.22.221	47.90.116.135	17.248.216.67
17.248.216.64	17.111.103.20	13.89.124.211	35.203.211.74