125.106.244.166

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.106.244.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47017
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.106.244.166.		IN	A

;; AUTHORITY SECTION:
.			357	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032401 1800 900 604800 86400

;; Query time: 129 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 25 02:50:49 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 166.244.106.125.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 166.244.106.125.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
118.24.221.245	attackspam	Restricted File Access Attempt Matched phrase "wp-config.php" at REQUEST_FILENAME. PHP Injection Attack: High-Risk PHP Function Name Found Matched phrase "call_user_func" at ARGS:function. PHP Injection Attack: Serialized Object Injection Pattern match "[oOcC]:\\d+:".+?":\\d+:{.*}" at REQUEST_HEADERS:X-Forwarded-For.	2019-07-16 11:05:26
129.204.91.238	attackspam	port scan and connect, tcp 80 (http)	2019-07-16 11:37:18
223.111.160.251	attackspambots	Request content type is not allowed by policy Match of "rx ^%{tx.allowed_request_content_type}$" against "TX:0" required.	2019-07-16 11:03:30
140.143.57.159	attack	Jul 16 04:57:08 s64-1 sshd[9840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.57.159 Jul 16 04:57:11 s64-1 sshd[9840]: Failed password for invalid user sirene from 140.143.57.159 port 35140 ssh2 Jul 16 05:02:38 s64-1 sshd[9983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.57.159 ...	2019-07-16 11:12:18
125.212.203.113	attack	Jul 16 08:37:59 areeb-Workstation sshd\[25068\]: Invalid user jeff from 125.212.203.113 Jul 16 08:37:59 areeb-Workstation sshd\[25068\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.203.113 Jul 16 08:38:01 areeb-Workstation sshd\[25068\]: Failed password for invalid user jeff from 125.212.203.113 port 55828 ssh2 ...	2019-07-16 11:29:32
139.59.239.185	attackspambots	Jul 16 05:04:38 legacy sshd[30977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.239.185 Jul 16 05:04:40 legacy sshd[30977]: Failed password for invalid user g from 139.59.239.185 port 39898 ssh2 Jul 16 05:13:03 legacy sshd[31197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.239.185 ...	2019-07-16 11:32:20
167.99.161.15	attackspam	Jul 16 03:38:56 ArkNodeAT sshd\[3440\]: Invalid user teamspeak5 from 167.99.161.15 Jul 16 03:38:56 ArkNodeAT sshd\[3440\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.161.15 Jul 16 03:38:58 ArkNodeAT sshd\[3440\]: Failed password for invalid user teamspeak5 from 167.99.161.15 port 53174 ssh2	2019-07-16 11:25:47
172.247.109.168	attackbotsspam	login attempts	2019-07-16 11:36:13
23.228.101.194	attackspambots	PHP Injection Attack: Variables Found Matched phrase "$_POST" at ARGS:refiles[1]. PHP Injection Attack: High-Risk PHP Function Call Found Pattern match "(?i)\\b(?:s(?:e(?:t(?:_(?:e(?:xception\|rror)_handler\|magic_quotes_runtime\|include_path)\|defaultstub)\|ssion_s(?:et_save_handler\|tart))\|qlite_(?:(?:(?:unbuffered\|single\|array)_)?query\|create_(?:aggregate\|function)\|p?open\|exec)\|tr(?:eam_(?:context_create\| ..." at ARGS:refiles[1]. SQL Injection Attack Detected via libinjection Matched Data: sc found within REQUEST_HEADERS:Referer: 554fcae493e564ee0dc75bdf2ebf94caads\|a:2:{s:3:\x22num\x22;s:288:\x22/ union select 1,0x272f2a,3,4,5,6,7,8,0x7b24617364275D3B617373657274286261736536345F6465636F646528275A6D6C735A56397764585266593239756447567564484D6F4A325A6B5A334575634768774A79776E50443977614841675A585A686243676B583142505531526262475678645630704F79412F506963702729293B2F2F7D787878,10-- -\x22;s:2:\x22id\x22;s:3:\x22'/\x22;} PHP Injection Attack: PHP Open Tag Found Pattern ma	2019-07-16 11:06:20
176.58.124.134	attack	GET or HEAD Request with Body Content. Match of "rx ^0?$" against "REQUEST_HEADERS:Content-Length" required.	2019-07-16 10:58:37
37.59.38.65	attackspam	Jul 16 08:36:55 vibhu-HP-Z238-Microtower-Workstation sshd\[28442\]: Invalid user ts from 37.59.38.65 Jul 16 08:36:55 vibhu-HP-Z238-Microtower-Workstation sshd\[28442\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.38.65 Jul 16 08:36:56 vibhu-HP-Z238-Microtower-Workstation sshd\[28442\]: Failed password for invalid user ts from 37.59.38.65 port 41391 ssh2 Jul 16 08:42:10 vibhu-HP-Z238-Microtower-Workstation sshd\[29542\]: Invalid user simo from 37.59.38.65 Jul 16 08:42:10 vibhu-HP-Z238-Microtower-Workstation sshd\[29542\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.38.65 ...	2019-07-16 11:21:14
54.38.192.96	attackspam	Jul 16 05:05:49 SilenceServices sshd[29493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.192.96 Jul 16 05:05:51 SilenceServices sshd[29493]: Failed password for invalid user web2 from 54.38.192.96 port 39668 ssh2 Jul 16 05:10:27 SilenceServices sshd[32420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.192.96	2019-07-16 11:16:34
185.234.216.220	attackspam	Jul 16 04:11:47 mail postfix/smtpd\[15570\]: warning: unknown\[185.234.216.220\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 16 04:14:42 mail postfix/smtpd\[14909\]: warning: unknown\[185.234.216.220\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 16 04:18:45 mail postfix/smtpd\[14909\]: warning: unknown\[185.234.216.220\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 16 04:49:00 mail postfix/smtpd\[16388\]: warning: unknown\[185.234.216.220\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-07-16 11:05:54
81.22.45.22	attack	Jul 16 05:33:05 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.22 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=16740 PROTO=TCP SPT=49228 DPT=3364 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-07-16 11:38:09
81.177.140.31	attackspam	SQL Injection Attack Detected via libinjection Matched Data: n&1 found within ARGS:lang: es_ES and 1=1 Detects MSSQL code execution and information gathering attempts Pattern match "(?i:(?:\\s?(?:exec\|execute).?(?:\\W)xp_cmdshell)\|(?:["'`]\\s?!\\s?["'`\\w])\|(?:from\\W+information_schema\\W)\|(?:(?:(?:current_)?user\|database\|schema\|connection_id)\\s?\$[^\$]?)\|(?:["'`];?\\s?(?:select\|union\|having)\\b\\s?[^\\s])\|(?:\\wiif ..." at ARGS:lang.	2019-07-16 11:06:46

最近上报的IP列表

117.102.74.28	55.169.168.242	101.108.42.71	198.58.119.210
168.101.215.190	1.4.188.72	156.96.46.121	186.193.25.201
83.56.47.20	106.13.213.76	185.82.67.186	171.228.219.173
167.249.171.110	49.51.160.139	1.53.136.89	1.170.22.202
42.232.153.245	103.141.229.101	190.121.227.178	190.78.25.78