61.93.70.125 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Hong Kong Broadband Network Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	(sshd) Failed SSH login from 61.93.70.125 (HK/Hong Kong/061093070125.ctinets.com): 10 in the last 3600 secs	2020-08-16 17:39:33
attackspam	Multiple SSH authentication failures from 61.93.70.125	2020-08-09 02:10:45
attackbotsspam	Lines containing failures of 61.93.70.125 Aug 5 02:33:37 mellenthin sshd[19918]: User r.r from 61.93.70.125 not allowed because not listed in AllowUsers Aug 5 02:33:37 mellenthin sshd[19918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.93.70.125 user=r.r Aug 5 02:33:39 mellenthin sshd[19918]: Failed password for invalid user r.r from 61.93.70.125 port 50010 ssh2 Aug 5 02:33:39 mellenthin sshd[19918]: Received disconnect from 61.93.70.125 port 50010:11: Bye Bye [preauth] Aug 5 02:33:39 mellenthin sshd[19918]: Disconnected from invalid user r.r 61.93.70.125 port 50010 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=61.93.70.125	2020-08-05 13:28:31
attackspam	$f2bV_matches	2020-08-05 05:59:46

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.93.70.125
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7468
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;61.93.70.125.			IN	A

;; AUTHORITY SECTION:
.			385	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080401 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Aug 05 05:59:43 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

125.70.93.61.in-addr.arpa domain name pointer 061093070125.ctinets.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
125.70.93.61.in-addr.arpa	name = 061093070125.ctinets.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
189.39.13.1	attackspam	Oct 8 09:55:14 pornomens sshd\[12941\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.39.13.1 user=root Oct 8 09:55:16 pornomens sshd\[12941\]: Failed password for root from 189.39.13.1 port 43882 ssh2 Oct 8 10:09:14 pornomens sshd\[12951\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.39.13.1 user=root ...	2019-10-08 16:46:13
111.231.89.188	attack	Apr 25 22:58:32 ubuntu sshd[2264]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.89.188 Apr 25 22:58:34 ubuntu sshd[2264]: Failed password for invalid user luke from 111.231.89.188 port 58640 ssh2 Apr 25 23:01:02 ubuntu sshd[2329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.89.188	2019-10-08 16:31:03
169.197.108.6	attackbots	3389BruteforceFW22	2019-10-08 16:30:03
114.25.160.214	attackbotsspam	UTC: 2019-10-07 port: 23/tcp	2019-10-08 16:33:16
190.228.16.101	attackbots	Oct 8 10:23:35 meumeu sshd[19269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.228.16.101 Oct 8 10:23:36 meumeu sshd[19269]: Failed password for invalid user Cream2017 from 190.228.16.101 port 44296 ssh2 Oct 8 10:28:27 meumeu sshd[19858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.228.16.101 ...	2019-10-08 16:36:29
142.4.19.163	attack	WordPress wp-login brute force :: 142.4.19.163 0.052 BYPASS [08/Oct/2019:14:54:26 1100] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-08 16:19:54
164.68.105.103	attackbots	Oct 6 20:51:31 new sshd[24599]: Failed password for r.r from 164.68.105.103 port 58796 ssh2 Oct 6 20:51:31 new sshd[24599]: Received disconnect from 164.68.105.103: 11: Bye Bye [preauth] Oct 6 20:56:35 new sshd[25903]: Failed password for r.r from 164.68.105.103 port 49432 ssh2 Oct 6 20:56:35 new sshd[25903]: Received disconnect from 164.68.105.103: 11: Bye Bye [preauth] Oct 6 21:01:04 new sshd[27198]: Failed password for r.r from 164.68.105.103 port 36792 ssh2 Oct 6 21:01:04 new sshd[27198]: Received disconnect from 164.68.105.103: 11: Bye Bye [preauth] Oct 6 21:05:29 new sshd[28328]: Failed password for r.r from 164.68.105.103 port 52780 ssh2 Oct 6 21:05:29 new sshd[28328]: Received disconnect from 164.68.105.103: 11: Bye Bye [preauth] Oct 6 21:09:49 new sshd[29739]: Failed password for r.r from 164.68.105.103 port 40212 ssh2 Oct 6 21:09:49 new sshd[29739]: Received disconnect from 164.68.105.103: 11: Bye Bye [preauth] Oct 6 21:14:09 new sshd[30482]: Failed........ -------------------------------	2019-10-08 16:49:21
103.76.252.6	attackbotsspam	(sshd) Failed SSH login from 103.76.252.6 (IN/India/252-76-103-khetanisp.net): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 8 09:35:39 server2 sshd[11571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.76.252.6 user=root Oct 8 09:35:41 server2 sshd[11571]: Failed password for root from 103.76.252.6 port 56865 ssh2 Oct 8 09:45:52 server2 sshd[11878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.76.252.6 user=root Oct 8 09:45:55 server2 sshd[11878]: Failed password for root from 103.76.252.6 port 20930 ssh2 Oct 8 09:49:54 server2 sshd[11981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.76.252.6 user=root	2019-10-08 16:23:54
190.183.237.123	attack	2019-10-08T08:46:47.737102abusebot.cloudsearch.cf sshd\[15646\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.183.237.123 user=root	2019-10-08 16:55:41
111.231.83.112	attackspambots	Apr 19 15:40:13 ubuntu sshd[13080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.83.112 Apr 19 15:40:15 ubuntu sshd[13080]: Failed password for invalid user effectivecool from 111.231.83.112 port 39182 ssh2 Apr 19 15:42:34 ubuntu sshd[13138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.83.112 Apr 19 15:42:36 ubuntu sshd[13138]: Failed password for invalid user rick from 111.231.83.112 port 33672 ssh2	2019-10-08 16:37:43
179.98.149.38	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/179.98.149.38/ BR - 1H : (315) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN27699 IP : 179.98.149.38 CIDR : 179.98.0.0/16 PREFIX COUNT : 267 UNIQUE IP COUNT : 6569728 WYKRYTE ATAKI Z ASN27699 : 1H - 9 3H - 24 6H - 44 12H - 82 24H - 123 DateTime : 2019-10-08 05:54:04 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-08 16:34:08
177.102.132.126	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/177.102.132.126/ BR - 1H : (315) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN27699 IP : 177.102.132.126 CIDR : 177.102.0.0/16 PREFIX COUNT : 267 UNIQUE IP COUNT : 6569728 WYKRYTE ATAKI Z ASN27699 : 1H - 9 3H - 24 6H - 44 12H - 82 24H - 123 DateTime : 2019-10-08 05:54:04 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-08 16:34:25
66.249.73.26	attackspambots	AH01797: client denied by server configuration:	2019-10-08 16:42:22
111.231.72.253	attack	Apr 22 07:05:24 ubuntu sshd[10074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.72.253 Apr 22 07:05:26 ubuntu sshd[10074]: Failed password for invalid user volfe from 111.231.72.253 port 57900 ssh2 Apr 22 07:08:48 ubuntu sshd[10461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.72.253 Apr 22 07:08:50 ubuntu sshd[10461]: Failed password for invalid user tunnel from 111.231.72.253 port 51772 ssh2	2019-10-08 16:43:01
106.111.183.66	attack	SSH invalid-user multiple login attempts	2019-10-08 16:53:17

最近上报的IP列表

177.220.178.171	1.136.50.145	43.255.217.34	134.44.161.104
71.44.173.222	66.212.232.15	158.93.79.62	176.192.10.144
61.76.232.78	120.180.5.203	23.90.22.158	219.217.220.117
232.227.75.216	19.39.134.64	179.8.252.75	145.150.117.21
172.104.62.98	5.8.117.197	213.15.1.240	147.128.160.115