61.52.3.245 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
61.52.33.241	attack	CN_MAINT-CNCGROUP-HA_<177>1585257355 [1:2010935:3] ET SCAN Suspicious inbound to MSSQL port 1433 [Classification: Potentially Bad Traffic] [Priority: 2]: {TCP} 61.52.33.241:41875	2020-03-27 09:25:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.52.3.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44735
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;61.52.3.245.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 47 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 01:25:17 CST 2022
;; MSG SIZE  rcvd: 104

Host info

245.3.52.61.in-addr.arpa domain name pointer hn.kd.dhcp.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
245.3.52.61.in-addr.arpa	name = hn.kd.dhcp.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
157.230.235.233	attackspambots	Jul 2 18:33:07 nextcloud sshd\[3929\]: Invalid user sa from 157.230.235.233 Jul 2 18:33:07 nextcloud sshd\[3929\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.235.233 Jul 2 18:33:10 nextcloud sshd\[3929\]: Failed password for invalid user sa from 157.230.235.233 port 53820 ssh2 ...	2019-07-03 00:45:42
54.36.130.88	attack	Jul 2 17:00:06 MK-Soft-Root2 sshd\[14860\]: Invalid user developers from 54.36.130.88 port 41286 Jul 2 17:00:06 MK-Soft-Root2 sshd\[14860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.130.88 Jul 2 17:00:08 MK-Soft-Root2 sshd\[14860\]: Failed password for invalid user developers from 54.36.130.88 port 41286 ssh2 ...	2019-07-03 00:34:40
112.164.137.44	attackspam	Unauthorised access (Jul 2) SRC=112.164.137.44 LEN=40 TTL=51 ID=47169 TCP DPT=8080 WINDOW=65057 SYN Unauthorised access (Jul 2) SRC=112.164.137.44 LEN=40 TTL=51 ID=8855 TCP DPT=8080 WINDOW=39489 SYN	2019-07-03 00:32:29
60.246.1.176	attack	Jul 2 08:57:02 mailman dovecot: imap-login: Disconnected (auth failed, 1 attempts): user=, method=PLAIN, rip=60.246.1.176, lip=[munged], TLS	2019-07-03 00:49:11
89.132.74.172	attackspam	Jul 2 15:44:10 *** sshd[25953]: User root from 89.132.74.172 not allowed because not listed in AllowUsers	2019-07-03 00:50:14
189.45.37.254	attackbotsspam	Feb 23 00:42:08 motanud sshd\[21951\]: Invalid user ec2-user from 189.45.37.254 port 56604 Feb 23 00:42:08 motanud sshd\[21951\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.45.37.254 Feb 23 00:42:09 motanud sshd\[21951\]: Failed password for invalid user ec2-user from 189.45.37.254 port 56604 ssh2	2019-07-03 00:57:32
114.99.51.25	attack	imap-login: Disconnected \(auth failed, 1 attempts in 5	2019-07-03 00:22:20
111.205.247.2	attackspambots	Jul 2 15:46:12 mail sshd\[31016\]: Invalid user nithya from 111.205.247.2 port 50102 Jul 2 15:46:12 mail sshd\[31016\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.205.247.2 Jul 2 15:46:15 mail sshd\[31016\]: Failed password for invalid user nithya from 111.205.247.2 port 50102 ssh2 Jul 2 15:47:16 mail sshd\[31179\]: Invalid user user7 from 111.205.247.2 port 61674 Jul 2 15:47:16 mail sshd\[31179\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.205.247.2	2019-07-03 00:46:52
92.42.160.34	attackspambots	Unauthorized connection attempt from IP address 92.42.160.34 on Port 445(SMB)	2019-07-03 00:01:12
218.92.1.135	attackbots	2019-07-02T13:57:51.108336hub.schaetter.us sshd\[31824\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.1.135 user=root 2019-07-02T13:57:53.036220hub.schaetter.us sshd\[31824\]: Failed password for root from 218.92.1.135 port 58047 ssh2 2019-07-02T13:57:55.527902hub.schaetter.us sshd\[31824\]: Failed password for root from 218.92.1.135 port 58047 ssh2 2019-07-02T13:57:57.959388hub.schaetter.us sshd\[31824\]: Failed password for root from 218.92.1.135 port 58047 ssh2 2019-07-02T13:59:53.349345hub.schaetter.us sshd\[31836\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.1.135 user=root ...	2019-07-03 00:24:39
117.232.105.98	attack	" "	2019-07-03 00:25:59
183.151.215.156	attackbotsspam	Unauthorized connection attempt from IP address 183.151.215.156 on Port 445(SMB)	2019-07-03 00:03:21
42.114.30.208	attackspam	Unauthorized connection attempt from IP address 42.114.30.208 on Port 445(SMB)	2019-07-03 00:09:02
191.102.123.132	attack	scan z	2019-07-03 00:40:07
186.37.53.35	attackbots	Unauthorised access (Jul 2) SRC=186.37.53.35 LEN=52 TTL=113 ID=8932 DF TCP DPT=445 WINDOW=8192 SYN	2019-07-03 00:38:51

Recently Reported IPs

14.97.43.13	187.53.48.181	85.202.168.72	95.67.127.46
114.119.134.207	183.158.24.112	78.171.6.203	164.90.223.25
23.118.223.57	120.85.114.189	195.133.157.204	14.186.164.211
112.231.226.239	36.73.86.235	138.199.59.183	111.85.161.80
37.131.137.202	182.116.91.229	186.233.37.88	115.231.231.247