61.64.52.139 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, Province of China

运营商(isp): eASPNet Taiwan Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	1433/tcp 445/tcp... [2019-09-26/10-23]9pkt,2pt.(tcp)	2019-10-24 12:37:14

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.64.52.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45869
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;61.64.52.139.			IN	A

;; AUTHORITY SECTION:
.			530	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102301 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 24 12:37:09 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 139.52.64.61.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.52.64.61.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
138.68.11.242	attackspam	Honeypot hit.	2020-03-07 22:34:44
181.48.155.149	attack	Mar 7 15:08:49 sd-53420 sshd\[18814\]: Invalid user deploy from 181.48.155.149 Mar 7 15:08:49 sd-53420 sshd\[18814\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.155.149 Mar 7 15:08:51 sd-53420 sshd\[18814\]: Failed password for invalid user deploy from 181.48.155.149 port 43344 ssh2 Mar 7 15:13:41 sd-53420 sshd\[19347\]: Invalid user q3server from 181.48.155.149 Mar 7 15:13:41 sd-53420 sshd\[19347\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.155.149 ...	2020-03-07 22:21:50
218.92.0.212	attackbots	Mar 7 13:57:10 localhost sshd[50616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.212 user=root Mar 7 13:57:12 localhost sshd[50616]: Failed password for root from 218.92.0.212 port 47497 ssh2 Mar 7 13:57:15 localhost sshd[50616]: Failed password for root from 218.92.0.212 port 47497 ssh2 Mar 7 13:57:10 localhost sshd[50616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.212 user=root Mar 7 13:57:12 localhost sshd[50616]: Failed password for root from 218.92.0.212 port 47497 ssh2 Mar 7 13:57:15 localhost sshd[50616]: Failed password for root from 218.92.0.212 port 47497 ssh2 Mar 7 13:57:10 localhost sshd[50616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.212 user=root Mar 7 13:57:12 localhost sshd[50616]: Failed password for root from 218.92.0.212 port 47497 ssh2 Mar 7 13:57:15 localhost sshd[50616]: Failed password fo ...	2020-03-07 22:29:30
41.207.184.182	attackbots	Mar 7 14:57:02 ns41 sshd[24848]: Failed password for root from 41.207.184.182 port 41690 ssh2 Mar 7 14:57:02 ns41 sshd[24848]: Failed password for root from 41.207.184.182 port 41690 ssh2 Mar 7 15:01:37 ns41 sshd[25432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.207.184.182	2020-03-07 22:16:22
112.85.42.188	attackbotsspam	03/07/2020-09:48:12.970477 112.85.42.188 Protocol: 6 ET SCAN Potential SSH Scan	2020-03-07 22:49:47
192.138.210.121	attackbots	suspicious action Sat, 07 Mar 2020 10:34:20 -0300	2020-03-07 22:33:09
112.133.251.56	attackspambots	1583588067 - 03/07/2020 14:34:27 Host: 112.133.251.56/112.133.251.56 Port: 445 TCP Blocked	2020-03-07 22:28:04
123.206.229.175	attack	2020-03-07T14:26:35.528123vps773228.ovh.net sshd[10200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.229.175 user=root 2020-03-07T14:26:37.498972vps773228.ovh.net sshd[10200]: Failed password for root from 123.206.229.175 port 60680 ssh2 2020-03-07T14:33:15.063720vps773228.ovh.net sshd[10261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.229.175 user=root 2020-03-07T14:33:16.944700vps773228.ovh.net sshd[10261]: Failed password for root from 123.206.229.175 port 40766 ssh2 2020-03-07T14:48:49.737473vps773228.ovh.net sshd[10390]: Invalid user admin from 123.206.229.175 port 35898 2020-03-07T14:48:49.752337vps773228.ovh.net sshd[10390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.229.175 2020-03-07T14:48:49.737473vps773228.ovh.net sshd[10390]: Invalid user admin from 123.206.229.175 port 35898 2020-03-07T14:48:51.522617vps773228.ovh.n ...	2020-03-07 22:37:07
91.92.207.123	attack	Honeypot attack, port: 81, PTR: PTR record not found	2020-03-07 22:06:54
192.157.231.204	attackbots	Honeypot attack, port: 445, PTR: 229.231-157-192.rdns.scalabledns.com.	2020-03-07 22:20:10
5.104.47.158	attackspambots	1583588059 - 03/07/2020 14:34:19 Host: 5.104.47.158/5.104.47.158 Port: 445 TCP Blocked	2020-03-07 22:35:03
41.139.251.139	attackbotsspam	[SatMar0714:34:06.8543052020][:error][pid22865:tid47374152689408][client41.139.251.139:44116][client41.139.251.139]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\(DisableifyouwanttoallowMSIE6\)"][severity"WARNING"][hostname"patriziatodiosogna.ch"][uri"/"][unique_id"XmOizkxEYV9Jn2sXpUU-twAAANE"][SatMar0714:34:10.3300482020][:error][pid23072:tid47374131676928][client41.139.251.139:60334][client41.139.251.139]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\	2020-03-07 22:40:42
5.196.75.47	attackspambots	Mar 7 03:49:43 web1 sshd\[25165\]: Invalid user support from 5.196.75.47 Mar 7 03:49:43 web1 sshd\[25165\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.75.47 Mar 7 03:49:44 web1 sshd\[25165\]: Failed password for invalid user support from 5.196.75.47 port 47556 ssh2 Mar 7 03:57:12 web1 sshd\[25858\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.75.47 user=root Mar 7 03:57:14 web1 sshd\[25858\]: Failed password for root from 5.196.75.47 port 35916 ssh2	2020-03-07 22:32:27
85.17.27.210	attack	(smtpauth) Failed SMTP AUTH login from 85.17.27.210 (NL/Netherlands/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-03-07 17:04:17 login authenticator failed for (USER) [85.17.27.210]: 535 Incorrect authentication data (set_id=service@jahanayegh.com)	2020-03-07 22:36:14
54.38.242.206	attackbots	Mar 7 14:18:58 game-panel sshd[26212]: Failed password for lp from 54.38.242.206 port 59378 ssh2 Mar 7 14:23:02 game-panel sshd[26358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.242.206 Mar 7 14:23:04 game-panel sshd[26358]: Failed password for invalid user neutron from 54.38.242.206 port 47910 ssh2	2020-03-07 22:25:33

最近上报的IP列表

121.158.252.122	36.40.179.228	184.136.12.26	17.31.178.190
226.58.129.6	219.229.128.146	69.65.131.254	41.170.170.175
199.182.109.11	74.224.115.101	240.27.12.179	118.70.126.50
56.119.45.84	139.92.98.123	49.36.14.120	84.207.57.222
111.152.25.30	225.12.238.166	119.93.157.180	217.25.40.26