必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT Telkom Indonesia

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
类型 评论内容 时间
attack
Unauthorized connection attempt from IP address 125.160.152.55 on Port 445(SMB)
2020-06-08 20:12:59
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.160.152.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44341
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.160.152.55.			IN	A

;; AUTHORITY SECTION:
.			358	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060800 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 08 20:12:56 CST 2020
;; MSG SIZE  rcvd: 118
HOST信息:
55.152.160.125.in-addr.arpa domain name pointer 55.subnet125-160-152.speedy.telkom.net.id.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
55.152.160.125.in-addr.arpa	name = 55.subnet125-160-152.speedy.telkom.net.id.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
198.58.119.85 attackspam
SSH login attempts with user root.
2020-03-18 23:13:48
1.203.115.141 attackbots
Dec  8 10:08:33 woltan sshd[20441]: Failed password for invalid user admin from 1.203.115.141 port 39037 ssh2
2020-03-18 22:46:21
179.180.229.4 attack
Attempt to attack host OS, exploiting network vulnerabilities, on 18-03-2020 13:10:35.
2020-03-18 23:18:20
222.186.175.220 attack
Mar 18 16:16:17 srv206 sshd[5600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.220  user=root
Mar 18 16:16:19 srv206 sshd[5600]: Failed password for root from 222.186.175.220 port 58308 ssh2
...
2020-03-18 23:17:23
220.142.55.17 attack
Attempt to attack host OS, exploiting network vulnerabilities, on 18-03-2020 13:10:39.
2020-03-18 23:08:46
5.120.23.200 attackspam
Attempt to attack host OS, exploiting network vulnerabilities, on 18-03-2020 13:10:44.
2020-03-18 23:00:49
113.10.207.50 attackbotsspam
SMB Server BruteForce Attack
2020-03-18 22:34:24
222.186.175.148 attackbots
Mar 18 15:58:54 vpn01 sshd[13272]: Failed password for root from 222.186.175.148 port 22976 ssh2
Mar 18 15:59:08 vpn01 sshd[13272]: error: maximum authentication attempts exceeded for root from 222.186.175.148 port 22976 ssh2 [preauth]
...
2020-03-18 23:08:09
179.99.5.217 attackbotsspam
Port probing on unauthorized port 8080
2020-03-18 22:49:07
60.246.86.187 attack
Attempt to attack host OS, exploiting network vulnerabilities, on 18-03-2020 13:10:45.
2020-03-18 22:58:24
94.176.189.32 attackbots
SpamScore above: 10.0
2020-03-18 22:37:50
94.49.60.67 attackspam
Attempt to attack host OS, exploiting network vulnerabilities, on 18-03-2020 13:10:48.
2020-03-18 22:52:22
23.245.200.98 attackbots
Attempt to attack host OS, exploiting network vulnerabilities, on 18-03-2020 13:10:39.
2020-03-18 23:09:59
68.127.49.11 attack
Mar 16 17:12:25 our-server-hostname sshd[6794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.127.49.11  user=r.r
Mar 16 17:12:28 our-server-hostname sshd[6794]: Failed password for r.r from 68.127.49.11 port 49112 ssh2
Mar 16 17:15:32 our-server-hostname sshd[7055]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.127.49.11  user=r.r
Mar 16 17:15:34 our-server-hostname sshd[7055]: Failed password for r.r from 68.127.49.11 port 55866 ssh2
Mar 16 17:18:03 our-server-hostname sshd[7350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.127.49.11  user=r.r
Mar 16 17:18:04 our-server-hostname sshd[7350]: Failed password for r.r from 68.127.49.11 port 54330 ssh2


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=68.127.49.11
2020-03-18 22:36:20
112.215.113.10 attackbotsspam
2020-03-18T14:47:36.143050shield sshd\[18188\]: Invalid user bkroot from 112.215.113.10 port 40156
2020-03-18T14:47:36.150994shield sshd\[18188\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.215.113.10
2020-03-18T14:47:38.486380shield sshd\[18188\]: Failed password for invalid user bkroot from 112.215.113.10 port 40156 ssh2
2020-03-18T14:51:10.316030shield sshd\[18992\]: Invalid user ts3user from 112.215.113.10 port 43901
2020-03-18T14:51:10.325300shield sshd\[18992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.215.113.10
2020-03-18 23:21:25

最近上报的IP列表

10.11.28.88 34.243.105.122 74.176.2.89 64.225.28.124
45.148.122.114 167.172.61.169 36.7.82.194 197.53.52.92
102.39.166.38 171.100.71.158 50.195.136.210 46.101.226.91
115.79.219.155 183.67.95.182 122.60.71.242 167.249.136.4
107.173.202.218 221.227.109.54 73.86.126.155 117.55.252.33