61.231.5.42 - IPInfo

基本信息:

城市(city): Taipei

省份(region): Taipei City

国家(country): Taiwan, China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): Data Communication Business Group

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt from IP address 61.231.5.42 on Port 445(SMB)	2019-08-27 02:10:10

相同子网IP讨论:

IP	类型	评论内容	时间
61.231.5.216	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 14-02-2020 04:50:15.	2020-02-14 21:08:45
61.231.58.145	attack	Fail2Ban - FTP Abuse Attempt	2020-01-15 13:02:31
61.231.58.200	attack	TW Taiwan 61-231-58-200.dynamic-ip.hinet.net Failures: 20 ftpd	2019-11-13 21:31:09
61.231.53.31	attack	Unauthorized connection attempt from IP address 61.231.53.31 on Port 445(SMB)	2019-11-02 01:57:35

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.231.5.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41829
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;61.231.5.42.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082601 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 27 02:09:47 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

42.5.231.61.in-addr.arpa domain name pointer 61-231-5-42.dynamic-ip.hinet.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
42.5.231.61.in-addr.arpa	name = 61-231-5-42.dynamic-ip.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
40.73.101.100	attackbots	Automatic report - Banned IP Access	2019-10-14 02:43:31
120.52.96.216	attackspambots	2019-10-13T18:21:31.775805abusebot-8.cloudsearch.cf sshd\[17463\]: Invalid user Problem_123 from 120.52.96.216 port 37806	2019-10-14 02:42:56
148.70.35.109	attack	Oct 13 13:25:47 tuxlinux sshd[36822]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.35.109 user=root Oct 13 13:25:49 tuxlinux sshd[36822]: Failed password for root from 148.70.35.109 port 44074 ssh2 Oct 13 13:25:47 tuxlinux sshd[36822]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.35.109 user=root Oct 13 13:25:49 tuxlinux sshd[36822]: Failed password for root from 148.70.35.109 port 44074 ssh2 Oct 13 13:46:11 tuxlinux sshd[37233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.35.109 user=root ...	2019-10-14 02:35:17
201.20.79.18	attack	Exploid host for vulnerabilities on 13-10-2019 12:45:27.	2019-10-14 03:02:56
116.1.1.165	attack	Fail2Ban - HTTP Exploit Attempt	2019-10-14 02:44:33
186.0.88.181	attack	Exploid host for vulnerabilities on 13-10-2019 12:45:24.	2019-10-14 03:06:58
67.55.92.89	attack	2019-10-13T18:20:55.882873abusebot-4.cloudsearch.cf sshd\[19343\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.55.92.89 user=root	2019-10-14 02:39:06
186.137.155.91	attack	Exploid host for vulnerabilities on 13-10-2019 12:45:25.	2019-10-14 03:05:58
119.10.115.36	attack	Jun 7 13:13:22 yesfletchmain sshd\[25412\]: Invalid user gfa from 119.10.115.36 port 59921 Jun 7 13:13:22 yesfletchmain sshd\[25412\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.10.115.36 Jun 7 13:13:24 yesfletchmain sshd\[25412\]: Failed password for invalid user gfa from 119.10.115.36 port 59921 ssh2 Jun 7 13:22:03 yesfletchmain sshd\[25558\]: Invalid user testftp from 119.10.115.36 port 42901 Jun 7 13:22:03 yesfletchmain sshd\[25558\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.10.115.36 ...	2019-10-14 02:48:13
222.186.180.6	attack	Brute force attempt	2019-10-14 02:56:17
185.211.245.198	attackspambots	2019-10-13 15:50:25,745 fail2ban.actions \[2697\]: NOTICE \[qpsmtpd\] Ban 185.211.245.198 2019-10-13 17:01:20,316 fail2ban.actions \[2697\]: NOTICE \[qpsmtpd\] Ban 185.211.245.198 2019-10-13 18:52:30,523 fail2ban.actions \[2697\]: NOTICE \[qpsmtpd\] Ban 185.211.245.198 2019-10-13 19:46:19,137 fail2ban.actions \[2697\]: NOTICE \[qpsmtpd\] Ban 185.211.245.198 2019-10-13 20:38:44,091 fail2ban.actions \[2697\]: NOTICE \[qpsmtpd\] Ban 185.211.245.198 ...	2019-10-14 02:46:34
106.12.212.141	attackspam	Oct 13 20:06:02 pornomens sshd\[31996\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.212.141 user=root Oct 13 20:06:04 pornomens sshd\[31996\]: Failed password for root from 106.12.212.141 port 35747 ssh2 Oct 13 20:10:38 pornomens sshd\[31998\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.212.141 user=root ...	2019-10-14 02:44:55
114.207.139.203	attackspambots	Sep 17 03:05:47 yesfletchmain sshd\[3248\]: Invalid user admin from 114.207.139.203 port 36642 Sep 17 03:05:47 yesfletchmain sshd\[3248\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.207.139.203 Sep 17 03:05:49 yesfletchmain sshd\[3248\]: Failed password for invalid user admin from 114.207.139.203 port 36642 ssh2 Sep 17 03:09:58 yesfletchmain sshd\[3398\]: Invalid user newadmin from 114.207.139.203 port 49596 Sep 17 03:09:58 yesfletchmain sshd\[3398\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.207.139.203 ...	2019-10-14 02:34:44
118.160.77.199	attackbots	Unauthorised access (Oct 13) SRC=118.160.77.199 LEN=40 PREC=0x20 TTL=50 ID=61924 TCP DPT=23 WINDOW=53912 SYN	2019-10-14 02:32:32
61.163.231.150	attackbots	Fail2Ban - HTTP Exploit Attempt	2019-10-14 03:13:20

最近上报的IP列表

213.236.154.114	36.160.161.10	142.190.168.16	220.176.152.54
122.159.199.63	106.51.226.196	45.168.90.142	112.249.42.207
68.183.178.27	39.42.104.9	165.22.78.212	79.106.149.37
45.235.193.72	218.82.69.103	45.236.152.16	45.235.205.12
255.143.38.123	61.94.149.234	180.192.14.60	45.79.214.232