114.129.25.70 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Lao People's Democratic Republic

运营商(isp): Enterprise of Telecommunications Lao

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt from IP address 114.129.25.70 on Port 445(SMB)	2020-06-04 20:09:45

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.129.25.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44682
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.129.25.70.			IN	A

;; AUTHORITY SECTION:
.			537	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060400 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 04 20:09:40 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 70.25.129.114.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 70.25.129.114.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
182.61.12.9	attackspambots	Sep 18 17:22:10 h2779839 sshd[3351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.12.9 user=root Sep 18 17:22:12 h2779839 sshd[3351]: Failed password for root from 182.61.12.9 port 41050 ssh2 Sep 18 17:23:30 h2779839 sshd[3362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.12.9 user=root Sep 18 17:23:32 h2779839 sshd[3362]: Failed password for root from 182.61.12.9 port 54416 ssh2 Sep 18 17:24:53 h2779839 sshd[3385]: Invalid user dude from 182.61.12.9 port 39560 Sep 18 17:24:53 h2779839 sshd[3385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.12.9 Sep 18 17:24:53 h2779839 sshd[3385]: Invalid user dude from 182.61.12.9 port 39560 Sep 18 17:24:55 h2779839 sshd[3385]: Failed password for invalid user dude from 182.61.12.9 port 39560 ssh2 Sep 18 17:26:20 h2779839 sshd[3417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ...	2020-09-19 02:52:38
91.121.173.41	attackbots	2020-09-18T16:14:30.568898abusebot-8.cloudsearch.cf sshd[22140]: Invalid user centos from 91.121.173.41 port 37486 2020-09-18T16:14:30.575167abusebot-8.cloudsearch.cf sshd[22140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns362298.ip-91-121-173.eu 2020-09-18T16:14:30.568898abusebot-8.cloudsearch.cf sshd[22140]: Invalid user centos from 91.121.173.41 port 37486 2020-09-18T16:14:32.483945abusebot-8.cloudsearch.cf sshd[22140]: Failed password for invalid user centos from 91.121.173.41 port 37486 ssh2 2020-09-18T16:18:20.233195abusebot-8.cloudsearch.cf sshd[22149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns362298.ip-91-121-173.eu user=root 2020-09-18T16:18:22.198316abusebot-8.cloudsearch.cf sshd[22149]: Failed password for root from 91.121.173.41 port 49742 ssh2 2020-09-18T16:22:15.503251abusebot-8.cloudsearch.cf sshd[22165]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty= ...	2020-09-19 02:56:33
64.225.14.25	attackbots	64.225.14.25 - - [18/Sep/2020:19:14:18 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 64.225.14.25 - - [18/Sep/2020:19:14:20 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 64.225.14.25 - - [18/Sep/2020:19:14:21 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-19 02:52:24
1.9.78.242	attack	$f2bV_matches	2020-09-19 03:14:15
218.92.0.247	attackbots	Sep 18 20:55:05 vps639187 sshd\[30598\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.247 user=root Sep 18 20:55:07 vps639187 sshd\[30598\]: Failed password for root from 218.92.0.247 port 2614 ssh2 Sep 18 20:55:09 vps639187 sshd\[30598\]: Failed password for root from 218.92.0.247 port 2614 ssh2 ...	2020-09-19 02:58:13
159.203.179.230	attackspam	Sep 18 19:53:15 nuernberg-4g-01 sshd[5105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.179.230 Sep 18 19:53:17 nuernberg-4g-01 sshd[5105]: Failed password for invalid user saiyou from 159.203.179.230 port 53006 ssh2 Sep 18 19:56:55 nuernberg-4g-01 sshd[6300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.179.230	2020-09-19 02:56:08
186.29.181.12	attackspambots	Port probing on unauthorized port 2323	2020-09-19 03:08:48
1.186.57.150	attackbots	Sep 18 20:46:52 santamaria sshd\[19271\]: Invalid user student from 1.186.57.150 Sep 18 20:46:52 santamaria sshd\[19271\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.186.57.150 Sep 18 20:46:54 santamaria sshd\[19271\]: Failed password for invalid user student from 1.186.57.150 port 34602 ssh2 ...	2020-09-19 03:04:26
107.189.11.160	attackbots	2020-09-18T20:58:17.034845 sshd[685988]: Invalid user oracle from 107.189.11.160 port 53452 2020-09-18T20:58:17.034849 sshd[685987]: Invalid user vagrant from 107.189.11.160 port 53446 2020-09-18T20:58:17.703684 sshd[685994]: Invalid user centos from 107.189.11.160 port 53444 2020-09-18T20:58:17.707149 sshd[685989]: Invalid user ubuntu from 107.189.11.160 port 53442 2020-09-18T20:58:17.708850 sshd[685993]: Invalid user admin from 107.189.11.160 port 53440 2020-09-18T20:58:17.710091 sshd[685990]: Invalid user postgres from 107.189.11.160 port 53448 2020-09-18T20:58:17.710808 sshd[685992]: Invalid user test from 107.189.11.160 port 53450	2020-09-19 03:06:37
78.96.147.168	attack	Automatic report - Port Scan Attack	2020-09-19 03:11:15
182.61.175.219	attackspambots	2020-09-18T18:17:49.758575shield sshd\[26351\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.175.219 user=root 2020-09-18T18:17:51.903858shield sshd\[26351\]: Failed password for root from 182.61.175.219 port 42152 ssh2 2020-09-18T18:22:07.110966shield sshd\[27721\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.175.219 user=root 2020-09-18T18:22:09.007233shield sshd\[27721\]: Failed password for root from 182.61.175.219 port 52136 ssh2 2020-09-18T18:26:28.219716shield sshd\[29366\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.175.219 user=root	2020-09-19 02:40:58
222.186.30.35	attackspam	2020-09-18T19:58:11.258015vps773228.ovh.net sshd[16126]: Failed password for root from 222.186.30.35 port 16311 ssh2 2020-09-18T19:58:13.600506vps773228.ovh.net sshd[16126]: Failed password for root from 222.186.30.35 port 16311 ssh2 2020-09-18T19:58:15.212644vps773228.ovh.net sshd[16126]: Failed password for root from 222.186.30.35 port 16311 ssh2 2020-09-18T20:53:20.870541vps773228.ovh.net sshd[16641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root 2020-09-18T20:53:22.561190vps773228.ovh.net sshd[16641]: Failed password for root from 222.186.30.35 port 49611 ssh2 ...	2020-09-19 03:03:13
116.72.202.152	attackbotsspam	Telnet Honeypot -> Telnet Bruteforce / Login	2020-09-19 02:53:18
98.231.181.48	attackspam	(sshd) Failed SSH login from 98.231.181.48 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 18 13:39:38 server2 sshd[19362]: Invalid user admin from 98.231.181.48 port 52093 Sep 18 13:39:40 server2 sshd[19362]: Failed password for invalid user admin from 98.231.181.48 port 52093 ssh2 Sep 18 13:39:41 server2 sshd[19365]: Invalid user admin from 98.231.181.48 port 52131 Sep 18 13:39:43 server2 sshd[19365]: Failed password for invalid user admin from 98.231.181.48 port 52131 ssh2 Sep 18 13:39:43 server2 sshd[19370]: Invalid user admin from 98.231.181.48 port 52172	2020-09-19 02:43:59
69.10.62.13	attackbots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-09-19 03:00:09

最近上报的IP列表

185.34.193.208	83.103.96.10	189.134.60.198	167.172.198.117
160.202.34.253	123.21.5.213	203.195.164.81	217.160.65.84
174.139.22.53	82.66.238.159	198.12.123.156	192.3.52.198
5.188.86.219	51.15.237.225	117.218.149.81	45.143.220.129
196.1.203.158	2a01:7a7:2:27d4:225:90ff:fe51:e396	165.84.180.36	181.188.176.153