106.125.245.207

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.125.245.207
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15123
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.125.245.207.		IN	A

;; AUTHORITY SECTION:
.			101	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 14:29:32 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

Host 207.245.125.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 207.245.125.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
139.155.44.100	attackspam	Oct 11 16:09:21 jane sshd[24424]: Failed password for root from 139.155.44.100 port 43866 ssh2 ...	2019-10-11 23:48:07
206.189.239.103	attackspam	Oct 11 08:59:25 tdfoods sshd\[19555\]: Invalid user 1qaz2WSX3EDC from 206.189.239.103 Oct 11 08:59:25 tdfoods sshd\[19555\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.239.103 Oct 11 08:59:27 tdfoods sshd\[19555\]: Failed password for invalid user 1qaz2WSX3EDC from 206.189.239.103 port 54640 ssh2 Oct 11 09:02:57 tdfoods sshd\[19930\]: Invalid user 1qaz2WSX3EDC from 206.189.239.103 Oct 11 09:02:57 tdfoods sshd\[19930\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.239.103	2019-10-12 06:13:44
103.95.12.132	attackbotsspam	2019-10-11T15:10:08.796057abusebot.cloudsearch.cf sshd\[8739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.95.12.132 user=root	2019-10-11 23:30:40
128.201.101.77	attack	Oct 11 17:12:45 localhost sshd\[22563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.201.101.77 user=root Oct 11 17:12:47 localhost sshd\[22563\]: Failed password for root from 128.201.101.77 port 55732 ssh2 Oct 11 17:17:30 localhost sshd\[23558\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.201.101.77 user=root	2019-10-11 23:27:42
222.186.175.6	attackspambots	scan z	2019-10-12 06:10:59
159.253.32.120	attackbotsspam	159.253.32.120 - - [11/Oct/2019:16:06:30 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.253.32.120 - - [11/Oct/2019:16:06:30 +0200] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.253.32.120 - - [11/Oct/2019:16:06:31 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.253.32.120 - - [11/Oct/2019:16:06:31 +0200] "POST /wp-login.php HTTP/1.1" 200 1631 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.253.32.120 - - [11/Oct/2019:16:06:31 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.253.32.120 - - [11/Oct/2019:16:06:31 +0200] "POST /wp-login.php HTTP/1.1" 200 1630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-10-11 23:46:40
167.114.0.23	attack	Oct 11 13:59:45 ovpn sshd\[5177\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.0.23 user=root Oct 11 13:59:47 ovpn sshd\[5177\]: Failed password for root from 167.114.0.23 port 41640 ssh2 Oct 11 14:13:41 ovpn sshd\[8176\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.0.23 user=root Oct 11 14:13:43 ovpn sshd\[8176\]: Failed password for root from 167.114.0.23 port 59606 ssh2 Oct 11 14:17:28 ovpn sshd\[8987\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.0.23 user=root	2019-10-11 23:45:05
109.202.116.233	attackbots	10/11/2019-11:17:15.688971 109.202.116.233 Protocol: 6 ET SCAN Potential SSH Scan	2019-10-11 23:50:09
185.176.27.178	attackbots	Oct 11 20:58:22 mc1 kernel: \[2106689.695964\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=6083 PROTO=TCP SPT=50169 DPT=59289 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 11 20:58:43 mc1 kernel: \[2106710.086042\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=57490 PROTO=TCP SPT=50169 DPT=26405 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 11 21:03:00 mc1 kernel: \[2106967.262835\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=21241 PROTO=TCP SPT=50169 DPT=33642 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-12 06:12:31
162.144.109.122	attackspambots	Oct 11 02:26:50 sachi sshd\[4636\]: Invalid user Senior@2017 from 162.144.109.122 Oct 11 02:26:50 sachi sshd\[4636\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.144.109.122 Oct 11 02:26:52 sachi sshd\[4636\]: Failed password for invalid user Senior@2017 from 162.144.109.122 port 54076 ssh2 Oct 11 02:31:04 sachi sshd\[4956\]: Invalid user C3nt0s123 from 162.144.109.122 Oct 11 02:31:04 sachi sshd\[4956\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.144.109.122	2019-10-11 23:46:18
167.114.102.185	attackbots	Oct 11 13:24:28 vm3 sshd[15927]: Did not receive identification string from 167.114.102.185 port 37396 Oct 11 13:25:24 vm3 sshd[15929]: Received disconnect from 167.114.102.185 port 54964:11: Normal Shutdown, Thank you for playing [preauth] Oct 11 13:25:24 vm3 sshd[15929]: Disconnected from 167.114.102.185 port 54964 [preauth] Oct 11 13:26:14 vm3 sshd[15931]: Received disconnect from 167.114.102.185 port 41338:11: Normal Shutdown, Thank you for playing [preauth] Oct 11 13:26:14 vm3 sshd[15931]: Disconnected from 167.114.102.185 port 41338 [preauth] Oct 11 13:27:07 vm3 sshd[15933]: Received disconnect from 167.114.102.185 port 55940:11: Normal Shutdown, Thank you for playing [preauth] Oct 11 13:27:07 vm3 sshd[15933]: Disconnected from 167.114.102.185 port 55940 [preauth] Oct 11 13:27:59 vm3 sshd[15936]: Received disconnect from 167.114.102.185 port 42314:11: Normal Shutdown, Thank you for playing [preauth] Oct 11 13:27:59 vm3 sshd[15936]: Disconnected from 167.114.102.18........ -------------------------------	2019-10-11 23:44:38
210.217.24.226	attack	2019-10-11T12:33:22.791364abusebot-2.cloudsearch.cf sshd\[16256\]: Invalid user jboss from 210.217.24.226 port 42348	2019-10-11 23:39:22
103.240.250.45	attack	Oct 8 00:46:17 our-server-hostname postfix/smtpd[19605]: connect from unknown[103.240.250.45] Oct 8 00:46:19 our-server-hostname sqlgrey: grey: new: 103.240.250.45(103.240.250.45), x@x -> x@x Oct x@x Oct x@x Oct 8 00:46:22 our-server-hostname sqlgrey: grey: new: 103.240.250.45(103.240.250.45), x@x -> x@x Oct x@x Oct 8 00:46:22 our-server-hostname sqlgrey: grey: new: 103.240.250.45(103.240.250.45), x@x -> x@x Oct x@x Oct 8 00:46:23 our-server-hostname sqlgrey: grey: new: 103.240.250.45(103.240.250.45), x@x -> x@x Oct x@x Oct 8 00:46:23 our-server-hostname sqlgrey: grey: new: 103.240.250.45(103.240.250.45), x@x -> x@x Oct x@x Oct 8 00:46:24 our-server-hostname sqlgrey: grey: throttling: 103.240.250.45(103.240.250.45), x@x -> x@x Oct x@x Oct 8 00:46:24 our-server-hostname sqlgrey: grey: throttling: 103.240.250.45(103.240.250.45), x@x -> x@x Oct x@x Oct 8 00:46:25 our-server-hostname sqlgrey: grey: throttling: 103.240.250.45(103.240.250.45), x@x -> x@x Oct x@x Oct ........ -------------------------------	2019-10-12 06:12:11
221.237.154.56	attackspam	" "	2019-10-11 23:23:06
128.199.52.45	attackspam	Oct 11 05:44:25 php1 sshd\[30891\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.52.45 user=root Oct 11 05:44:27 php1 sshd\[30891\]: Failed password for root from 128.199.52.45 port 45962 ssh2 Oct 11 05:48:32 php1 sshd\[31355\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.52.45 user=root Oct 11 05:48:34 php1 sshd\[31355\]: Failed password for root from 128.199.52.45 port 56622 ssh2 Oct 11 05:52:33 php1 sshd\[31819\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.52.45 user=root	2019-10-12 03:01:27

最近上报的IP列表

106.125.245.208	106.125.245.226	106.125.245.229	106.125.245.212
106.125.245.232	106.125.245.24	106.125.245.253	106.125.245.59
106.125.245.57	106.125.245.32	106.125.245.60	106.125.245.66
106.125.245.89	106.14.199.91	106.125.246.152	106.125.245.91
106.125.246.155	106.125.246.161	106.125.246.168	106.125.246.208