61.244.222.145

基本信息:

城市(city): Tuen Mun

省份(region): Tuen Mun

国家(country): Hong Kong

运营商(isp): Hong Kong Broadband Network Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 61.244.222.145 to port 445	2019-12-26 04:31:29

相同子网IP讨论:

IP	类型	评论内容	时间
61.244.222.25	attackspambots	1433/tcp 445/tcp... [2020-08-13/09-13]5pkt,2pt.(tcp)	2020-09-14 14:22:33
61.244.222.25	attackbots	Icarus honeypot on github	2020-09-14 06:20:29
61.244.222.25	attackspambots	TCP (SYN) 61.244.222.25:43143 -> port 445, len 40	2020-08-24 01:42:09

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.244.222.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57344
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;61.244.222.145.			IN	A

;; AUTHORITY SECTION:
.			412	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122502 1800 900 604800 86400

;; Query time: 82 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 26 04:31:27 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

145.222.244.61.in-addr.arpa domain name pointer 061244222145.ctinets.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
145.222.244.61.in-addr.arpa	name = 061244222145.ctinets.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
148.70.116.223	attackspambots	Oct 8 21:04:40 game-panel sshd[16574]: Failed password for root from 148.70.116.223 port 33073 ssh2 Oct 8 21:09:24 game-panel sshd[16827]: Failed password for root from 148.70.116.223 port 52919 ssh2	2019-10-09 05:23:36
201.174.46.234	attackspambots	$f2bV_matches	2019-10-09 06:02:57
182.190.4.53	attackbots	Automatic report - Banned IP Access	2019-10-09 05:20:04
173.56.69.86	attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2019-10-09 05:59:57
81.22.45.218	attackspam	Port scan: Attack repeated for 24 hours	2019-10-09 05:37:28
193.169.39.254	attackbots	Oct 8 23:31:09 SilenceServices sshd[18769]: Failed password for root from 193.169.39.254 port 41430 ssh2 Oct 8 23:35:21 SilenceServices sshd[19881]: Failed password for root from 193.169.39.254 port 51222 ssh2	2019-10-09 05:58:40
222.186.180.147	attack	DATE:2019-10-08 23:40:02, IP:222.186.180.147, PORT:ssh SSH brute force auth on honeypot server (honey-neo-dc-bis)	2019-10-09 05:51:14
139.155.112.94	attackbotsspam	Oct 8 22:34:24 markkoudstaal sshd[3786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.112.94 Oct 8 22:34:26 markkoudstaal sshd[3786]: Failed password for invalid user 12345QWERT from 139.155.112.94 port 49646 ssh2 Oct 8 22:38:41 markkoudstaal sshd[4134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.112.94	2019-10-09 06:00:19
185.220.101.3	attackspambots	abcdata-sys.de:80 185.220.101.3 - - \[08/Oct/2019:22:03:58 +0200\] "POST /xmlrpc.php HTTP/1.0" 301 497 "-" "Mozilla/5.0 $X11\; Linux x86_64\; rv:61.0$ Gecko/20100101 Firefox/61.0" www.goldgier.de 185.220.101.3 \[08/Oct/2019:22:03:59 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 4081 "-" "Mozilla/5.0 $X11\; Linux x86_64\; rv:61.0$ Gecko/20100101 Firefox/61.0"	2019-10-09 05:56:37
222.186.173.119	attack	$f2bV_matches	2019-10-09 05:57:09
132.145.170.174	attack	Oct 8 23:09:58 MK-Soft-VM7 sshd[11774]: Failed password for root from 132.145.170.174 port 26648 ssh2 ...	2019-10-09 05:43:59
159.203.189.152	attackspambots	2019-10-09T00:16:59.913568tmaserv sshd\[4592\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.189.152 user=root 2019-10-09T00:17:02.054207tmaserv sshd\[4592\]: Failed password for root from 159.203.189.152 port 53706 ssh2 2019-10-09T00:21:18.783755tmaserv sshd\[4805\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.189.152 user=root 2019-10-09T00:21:20.476966tmaserv sshd\[4805\]: Failed password for root from 159.203.189.152 port 38314 ssh2 2019-10-09T00:25:44.403712tmaserv sshd\[4909\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.189.152 user=root 2019-10-09T00:25:46.614974tmaserv sshd\[4909\]: Failed password for root from 159.203.189.152 port 51158 ssh2 ...	2019-10-09 05:38:24
92.53.90.132	attack	Port Scan: TCP/3162	2019-10-09 05:17:35
153.36.242.143	attack	Oct 8 23:41:24 vmanager6029 sshd\[32303\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.143 user=root Oct 8 23:41:25 vmanager6029 sshd\[32303\]: Failed password for root from 153.36.242.143 port 62160 ssh2 Oct 8 23:41:27 vmanager6029 sshd\[32303\]: Failed password for root from 153.36.242.143 port 62160 ssh2	2019-10-09 05:46:27
106.12.131.50	attack	Oct 8 23:47:16 sauna sshd[29297]: Failed password for root from 106.12.131.50 port 54758 ssh2 ...	2019-10-09 05:42:48

最近上报的IP列表

141.133.254.46	121.14.11.163	106.67.221.82	93.84.85.213
84.33.80.68	79.98.116.129	167.71.205.13	121.138.134.71
191.242.51.160	121.136.37.239	204.31.72.176	93.62.254.230
117.200.128.87	104.129.32.9	253.49.125.139	198.154.88.34
120.92.217.35	12.96.45.164	93.62.225.218	223.89.87.16