61.216.140.52 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Republic of China (ROC)

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jan 9 08:13:26 vpn sshd[20844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.140.52 Jan 9 08:13:27 vpn sshd[20844]: Failed password for invalid user edi from 61.216.140.52 port 53206 ssh2 Jan 9 08:17:15 vpn sshd[20852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.140.52	2020-01-05 20:27:21

类型

评论内容

时间

attack

Jan  9 08:13:26 vpn sshd[20844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.140.52
Jan  9 08:13:27 vpn sshd[20844]: Failed password for invalid user edi from 61.216.140.52 port 53206 ssh2
Jan  9 08:17:15 vpn sshd[20852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.140.52

2020-01-05 20:27:21

相同子网IP讨论:

IP	类型	评论内容	时间
61.216.140.180	attackbotsspam	Unauthorized connection attempt from IP address 61.216.140.180 on Port 445(SMB)	2020-09-06 03:35:06
61.216.140.180	attackbotsspam	Unauthorized connection attempt from IP address 61.216.140.180 on Port 445(SMB)	2020-09-05 19:12:22
61.216.140.68	attackspam	Unauthorized connection attempt from IP address 61.216.140.68 on Port 445(SMB)	2020-07-29 02:57:44
61.216.140.85	attack	Unauthorized connection attempt from IP address 61.216.140.85 on Port 445(SMB)	2019-12-11 08:29:18
61.216.140.85	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 21-09-2019 13:50:24.	2019-09-22 04:13:21

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.216.140.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42146
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;61.216.140.52.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042801 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 29 05:49:52 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

52.140.216.61.in-addr.arpa domain name pointer git.rifartek.com.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
52.140.216.61.in-addr.arpa	name = git.rifartek.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
117.50.38.246	attackbots	$f2bV_matches	2019-11-18 00:52:34
164.132.54.215	attackspambots	Nov 17 18:09:23 MK-Soft-VM4 sshd[14486]: Failed password for root from 164.132.54.215 port 60892 ssh2 ...	2019-11-18 01:16:33
123.12.225.162	attackspambots	Honeypot attack, port: 23, PTR: hn.kd.ny.adsl.	2019-11-18 01:08:15
121.15.11.9	attackbotsspam	Nov 17 11:40:34 ny01 sshd[27881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.15.11.9 Nov 17 11:40:36 ny01 sshd[27881]: Failed password for invalid user plane from 121.15.11.9 port 16210 ssh2 Nov 17 11:46:58 ny01 sshd[28454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.15.11.9	2019-11-18 00:47:14
112.85.42.227	attackspambots	Nov 17 11:34:39 TORMINT sshd\[25083\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.227 user=root Nov 17 11:34:40 TORMINT sshd\[25083\]: Failed password for root from 112.85.42.227 port 23962 ssh2 Nov 17 11:34:43 TORMINT sshd\[25083\]: Failed password for root from 112.85.42.227 port 23962 ssh2 ...	2019-11-18 00:49:50
181.49.117.130	attackspam	Nov 17 17:24:22 SilenceServices sshd[32113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.49.117.130 Nov 17 17:24:24 SilenceServices sshd[32113]: Failed password for invalid user heisann from 181.49.117.130 port 28099 ssh2 Nov 17 17:28:49 SilenceServices sshd[945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.49.117.130	2019-11-18 00:48:48
106.12.46.104	attackspambots	Nov 17 16:53:39 venus sshd\[18928\]: Invalid user ge from 106.12.46.104 port 35042 Nov 17 16:53:39 venus sshd\[18928\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.46.104 Nov 17 16:53:42 venus sshd\[18928\]: Failed password for invalid user ge from 106.12.46.104 port 35042 ssh2 ...	2019-11-18 01:03:51
52.186.168.121	attackbots	Nov 17 17:47:22 MK-Soft-Root2 sshd[17720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.186.168.121 Nov 17 17:47:24 MK-Soft-Root2 sshd[17720]: Failed password for invalid user swannack from 52.186.168.121 port 47354 ssh2 ...	2019-11-18 01:14:58
117.43.50.129	attackspambots	badbot	2019-11-18 01:09:06
129.211.131.152	attackbots	Nov 17 18:52:21 sauna sshd[62775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.131.152 Nov 17 18:52:24 sauna sshd[62775]: Failed password for invalid user senko from 129.211.131.152 port 42632 ssh2 ...	2019-11-18 00:59:43
60.2.10.190	attackspam	Nov 17 17:20:37 microserver sshd[3811]: Invalid user ariko from 60.2.10.190 port 46362 Nov 17 17:20:37 microserver sshd[3811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.2.10.190 Nov 17 17:20:39 microserver sshd[3811]: Failed password for invalid user ariko from 60.2.10.190 port 46362 ssh2 Nov 17 17:25:15 microserver sshd[4413]: Invalid user super from 60.2.10.190 port 46166 Nov 17 17:25:15 microserver sshd[4413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.2.10.190 Nov 17 17:36:56 microserver sshd[6036]: Invalid user zr from 60.2.10.190 port 45562 Nov 17 17:36:56 microserver sshd[6036]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.2.10.190 Nov 17 17:36:58 microserver sshd[6036]: Failed password for invalid user zr from 60.2.10.190 port 45562 ssh2 Nov 17 17:40:49 microserver sshd[6674]: Invalid user nagios1 from 60.2.10.190 port 45358 Nov 17 17:40:49 microserver sshd[667	2019-11-18 00:41:18
172.105.89.161	attack	172.105.89.161 was recorded 12 times by 11 hosts attempting to connect to the following ports: 26712,28248. Incident counter (4h, 24h, all-time): 12, 84, 1172	2019-11-18 00:37:14
129.211.14.39	attackbots	Nov 17 15:26:06 vtv3 sshd\[18641\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.14.39 user=root Nov 17 15:26:08 vtv3 sshd\[18641\]: Failed password for root from 129.211.14.39 port 50196 ssh2 Nov 17 15:34:22 vtv3 sshd\[20392\]: Invalid user ident from 129.211.14.39 port 59674 Nov 17 15:34:22 vtv3 sshd\[20392\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.14.39 Nov 17 15:34:24 vtv3 sshd\[20392\]: Failed password for invalid user ident from 129.211.14.39 port 59674 ssh2 Nov 17 15:48:39 vtv3 sshd\[24020\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.14.39 user=root Nov 17 15:48:42 vtv3 sshd\[24020\]: Failed password for root from 129.211.14.39 port 37650 ssh2 Nov 17 15:55:50 vtv3 sshd\[26018\]: Invalid user caston from 129.211.14.39 port 40742 Nov 17 15:55:50 vtv3 sshd\[26018\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0	2019-11-18 01:06:41
167.71.232.235	attackspambots	Wordpress Admin Login attack	2019-11-18 00:45:59
113.172.129.226	attackspam	$f2bV_matches	2019-11-18 00:51:23

最近上报的IP列表

190.114.32.118	191.68.161.14	217.233.77.63	214.13.88.134
244.254.212.106	248.249.101.2	125.190.158.87	115.85.227.85
221.33.90.130	200.59.66.207	45.232.92.113	220.3.44.231
213.59.155.225	168.196.67.197	213.137.10.41	220.164.2.120
103.28.38.166	220.171.48.39	60.169.65.62	207.46.13.91