61.139.2.69 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
61.139.23.102	attackspambots	1593991623 - 07/06/2020 01:27:03 Host: 61.139.23.102/61.139.23.102 Port: 445 TCP Blocked	2020-07-06 08:02:28
61.139.23.69	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-06-22 02:09:55
61.139.25.34	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-08 02:32:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.139.2.69
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37697
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;61.139.2.69.			IN	A

;; AUTHORITY SECTION:
.			433	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022092200 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 22 15:05:24 CST 2022
;; MSG SIZE  rcvd: 104

Host info

69.2.139.61.in-addr.arpa domain name pointer ns.sc.cninfo.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
69.2.139.61.in-addr.arpa	name = ns.sc.cninfo.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
172.104.72.116	attack	ET SCAN Suspicious inbound to mySQL port 3306 - port: 3306 proto: TCP cat: Potentially Bad Traffic	2020-06-08 16:05:20
201.141.76.191	attackbots	2020-06-08T05:50:29.4222221240 sshd\[31201\]: Invalid user admin from 201.141.76.191 port 41371 2020-06-08T05:50:30.2753711240 sshd\[31201\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.141.76.191 2020-06-08T05:50:32.0884191240 sshd\[31201\]: Failed password for invalid user admin from 201.141.76.191 port 41371 ssh2 ...	2020-06-08 15:57:02
78.138.96.3	attack	REQUESTED PAGE: /wp-login.php	2020-06-08 16:20:13
99.11.1.97	attackbots	Jun 8 08:34:46 nas sshd[16571]: Failed password for root from 99.11.1.97 port 53772 ssh2 Jun 8 08:45:16 nas sshd[17008]: Failed password for root from 99.11.1.97 port 43920 ssh2 ...	2020-06-08 16:19:29
185.250.205.84	attackbots	firewall-block, port(s): 17430/tcp, 36250/tcp, 43314/tcp, 47088/tcp, 50622/tcp, 57464/tcp, 58599/tcp	2020-06-08 16:00:28
112.91.145.58	attack	Jun 7 21:37:53 dignus sshd[11295]: Failed password for root from 112.91.145.58 port 52760 ssh2 Jun 7 21:39:22 dignus sshd[11402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.145.58 user=root Jun 7 21:39:24 dignus sshd[11402]: Failed password for root from 112.91.145.58 port 52771 ssh2 Jun 7 21:40:56 dignus sshd[11523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.145.58 user=root Jun 7 21:40:59 dignus sshd[11523]: Failed password for root from 112.91.145.58 port 52782 ssh2 ...	2020-06-08 15:41:00
139.155.17.13	attack	Jun 8 06:48:52 vpn01 sshd[30804]: Failed password for root from 139.155.17.13 port 58498 ssh2 ...	2020-06-08 15:54:10
80.78.70.91	attack	RDP brute forcing (r)	2020-06-08 16:12:56
144.217.228.125	attackbotsspam	2020-06-08T07:31:58.017016vps773228.ovh.net sshd[2573]: Failed password for root from 144.217.228.125 port 47916 ssh2 2020-06-08T07:38:11.460318vps773228.ovh.net sshd[2663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip125.ip-144-217-228.net user=root 2020-06-08T07:38:13.262591vps773228.ovh.net sshd[2663]: Failed password for root from 144.217.228.125 port 33099 ssh2 2020-06-08T07:44:01.828563vps773228.ovh.net sshd[2763]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip125.ip-144-217-228.net user=root 2020-06-08T07:44:03.680916vps773228.ovh.net sshd[2763]: Failed password for root from 144.217.228.125 port 46495 ssh2 ...	2020-06-08 15:39:03
78.157.225.42	attackspambots	Automatic report - Banned IP Access	2020-06-08 15:47:57
185.55.47.1	attackbotsspam	$f2bV_matches	2020-06-08 15:54:42
92.63.197.95	attackbotsspam	Jun 8 10:42:23 debian kernel: [504700.866668] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=92.63.197.95 DST=89.252.131.35 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=41984 PROTO=TCP SPT=50065 DPT=33441 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-08 16:10:27
185.240.65.251	attackspam	Jun 8 01:33:53 server1 sshd\[4034\]: Invalid user avahi-autoipd from 185.240.65.251 Jun 8 01:33:53 server1 sshd\[4034\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.240.65.251 Jun 8 01:33:56 server1 sshd\[4034\]: Failed password for invalid user avahi-autoipd from 185.240.65.251 port 6664 ssh2 Jun 8 01:42:33 server1 sshd\[6401\]: Invalid user avahi-autoipd from 185.240.65.251 Jun 8 01:42:33 server1 sshd\[6401\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.240.65.251 ...	2020-06-08 15:50:22
203.195.214.104	attackbotsspam	Jun 8 06:55:39 fhem-rasp sshd[16068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.214.104 user=root Jun 8 06:55:41 fhem-rasp sshd[16068]: Failed password for root from 203.195.214.104 port 43621 ssh2 ...	2020-06-08 15:58:35
36.72.173.216	attackspambots	1591588211 - 06/08/2020 05:50:11 Host: 36.72.173.216/36.72.173.216 Port: 445 TCP Blocked	2020-06-08 16:11:01

Recently Reported IPs

233.154.23.70	218.206.129.33	249.146.237.207	163.172.105.12
199.234.128.116	166.99.19.147	161.249.128.234	40.94.87.126
149.56.103.197	103.123.163.242	3.235.111.225	37.189.9.196
37.189.67.98	37.189.129.226	187.86.209.65	37.189.193.92
37.189.66.104	118.216.44.160	102.206.29.246	37.189.251.244