61.216.140.68 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, Province of China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt from IP address 61.216.140.68 on Port 445(SMB)	2020-07-29 02:57:44

相同子网IP讨论:

IP	类型	评论内容	时间
61.216.140.180	attackbotsspam	Unauthorized connection attempt from IP address 61.216.140.180 on Port 445(SMB)	2020-09-06 03:35:06
61.216.140.180	attackbotsspam	Unauthorized connection attempt from IP address 61.216.140.180 on Port 445(SMB)	2020-09-05 19:12:22
61.216.140.52	attack	Jan 9 08:13:26 vpn sshd[20844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.140.52 Jan 9 08:13:27 vpn sshd[20844]: Failed password for invalid user edi from 61.216.140.52 port 53206 ssh2 Jan 9 08:17:15 vpn sshd[20852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.140.52	2020-01-05 20:27:21
61.216.140.85	attack	Unauthorized connection attempt from IP address 61.216.140.85 on Port 445(SMB)	2019-12-11 08:29:18
61.216.140.85	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 21-09-2019 13:50:24.	2019-09-22 04:13:21

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.216.140.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23955
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;61.216.140.68.			IN	A

;; AUTHORITY SECTION:
.			489	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072801 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 29 02:57:41 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

68.140.216.61.in-addr.arpa domain name pointer 61-216-140-68.HINET-IP.hinet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
68.140.216.61.in-addr.arpa	name = 61-216-140-68.HINET-IP.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
190.28.183.222	attack	Lines containing failures of 190.28.183.222 Dec 30 22:32:47 shared11 sshd[30996]: Invalid user admin from 190.28.183.222 port 54245 Dec 30 22:32:47 shared11 sshd[30996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.28.183.222 Dec 30 22:32:49 shared11 sshd[30996]: Failed password for invalid user admin from 190.28.183.222 port 54245 ssh2 Dec 30 22:32:49 shared11 sshd[30996]: Connection closed by invalid user admin 190.28.183.222 port 54245 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=190.28.183.222	2020-01-03 13:53:57
79.116.188.47	attackbotsspam	Jan 3 05:52:41 debian-2gb-nbg1-2 kernel: \[286489.009651\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=79.116.188.47 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=42814 DF PROTO=TCP SPT=53737 DPT=81 WINDOW=14600 RES=0x00 SYN URGP=0	2020-01-03 14:26:08
60.167.112.176	attackspambots	2020-01-02 22:53:00 H=(v1AL3a34W1) [60.167.112.176]:55101 I=[192.147.25.65]:25 F= rejected RCPT <1142411189@qq.com>: Sender verify failed 2020-01-02 22:53:05 dovecot_login authenticator failed for (wKeezBqcG) [60.167.112.176]:55422 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=hgow@lerctr.org) 2020-01-02 22:53:12 dovecot_login authenticator failed for (pY8qbp) [60.167.112.176]:55803 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=hgow@lerctr.org) ...	2020-01-03 14:09:53
51.38.65.178	attack	Jan 3 01:28:18 plusreed sshd[29505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.65.178 user=postgres Jan 3 01:28:20 plusreed sshd[29505]: Failed password for postgres from 51.38.65.178 port 33108 ssh2 ...	2020-01-03 14:29:54
181.110.240.194	attackbots	Jan 3 06:01:41 zeus sshd[13979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.110.240.194 Jan 3 06:01:43 zeus sshd[13979]: Failed password for invalid user on from 181.110.240.194 port 41748 ssh2 Jan 3 06:05:13 zeus sshd[14091]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.110.240.194 Jan 3 06:05:15 zeus sshd[14091]: Failed password for invalid user paula from 181.110.240.194 port 42298 ssh2	2020-01-03 14:14:28
190.5.241.138	attack	Jan 3 06:57:36 markkoudstaal sshd[19874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.5.241.138 Jan 3 06:57:38 markkoudstaal sshd[19874]: Failed password for invalid user tester from 190.5.241.138 port 39896 ssh2 Jan 3 06:59:36 markkoudstaal sshd[20026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.5.241.138	2020-01-03 14:03:07
106.12.137.226	attackspambots	Jan 3 05:52:49 MK-Soft-Root1 sshd[30569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.226 Jan 3 05:52:51 MK-Soft-Root1 sshd[30569]: Failed password for invalid user bws from 106.12.137.226 port 57906 ssh2 ...	2020-01-03 14:20:35
106.12.178.246	attack	2020-01-03T04:45:36.300059shield sshd\[671\]: Invalid user hj from 106.12.178.246 port 50934 2020-01-03T04:45:36.304911shield sshd\[671\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.178.246 2020-01-03T04:45:38.184591shield sshd\[671\]: Failed password for invalid user hj from 106.12.178.246 port 50934 ssh2 2020-01-03T04:53:32.506402shield sshd\[3983\]: Invalid user prueba from 106.12.178.246 port 43694 2020-01-03T04:53:32.510441shield sshd\[3983\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.178.246	2020-01-03 14:02:37
110.137.83.138	attack	1578027230 - 01/03/2020 05:53:50 Host: 110.137.83.138/110.137.83.138 Port: 445 TCP Blocked	2020-01-03 13:51:34
165.227.179.138	attack	Invalid user bijons from 165.227.179.138 port 51836	2020-01-03 14:13:12
119.207.126.21	attackspambots	Invalid user dotan from 119.207.126.21 port 45882	2020-01-03 14:05:00
218.92.0.201	attackspambots	Jan 3 06:40:37 amit sshd\[30423\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.201 user=root Jan 3 06:40:38 amit sshd\[30423\]: Failed password for root from 218.92.0.201 port 22678 ssh2 Jan 3 06:41:43 amit sshd\[30430\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.201 user=root ...	2020-01-03 13:55:40
106.53.33.77	attackspambots	Jan 3 07:44:57 server sshd\[5784\]: Invalid user svk from 106.53.33.77 Jan 3 07:44:57 server sshd\[5784\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.33.77 Jan 3 07:44:58 server sshd\[5784\]: Failed password for invalid user svk from 106.53.33.77 port 37928 ssh2 Jan 3 08:45:25 server sshd\[21030\]: Invalid user test1 from 106.53.33.77 Jan 3 08:45:25 server sshd\[21030\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.33.77 ...	2020-01-03 14:01:46
200.100.115.76	attack	Automatic report - Port Scan Attack	2020-01-03 14:00:44
37.49.231.163	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-03 14:26:20

最近上报的IP列表

202.102.144.114	90.196.163.76	189.246.146.236	182.181.62.250
158.174.140.229	188.165.197.116	103.25.136.193	91.251.166.20
112.141.80.122	94.159.17.227	180.76.175.164	94.25.225.72
182.185.38.25	47.245.34.6	119.155.46.125	182.253.34.33
103.58.115.102	123.13.211.107	89.42.205.74	209.13.179.113