125.162.55.106

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT Telekomunikasi Indonesia

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized connection attempt from IP address 125.162.55.106 on Port 445(SMB)	2020-03-09 22:45:52

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.162.55.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3565
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.162.55.106.			IN	A

;; AUTHORITY SECTION:
.			518	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030901 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 09 22:45:47 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

106.55.162.125.in-addr.arpa domain name pointer 106.subnet125-162-55.speedy.telkom.net.id.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
106.55.162.125.in-addr.arpa	name = 106.subnet125-162-55.speedy.telkom.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
198.199.114.34	attackbotsspam	Attempted connection to port 2376.	2020-06-26 19:10:30
114.37.168.126	attackbotsspam	TCP (SYN) 114.37.168.126:46595 -> port 23, len 44	2020-06-26 19:06:52
112.85.76.248	attackbotsspam	Unauthorised access (Jun 26) SRC=112.85.76.248 LEN=40 TTL=47 ID=59724 TCP DPT=8080 WINDOW=13834 SYN Unauthorised access (Jun 26) SRC=112.85.76.248 LEN=40 TTL=47 ID=8458 TCP DPT=8080 WINDOW=13834 SYN Unauthorised access (Jun 26) SRC=112.85.76.248 LEN=40 TTL=47 ID=28897 TCP DPT=8080 WINDOW=13834 SYN	2020-06-26 18:53:47
189.43.102.34	attack	Jun 25 22:26:57 vayu sshd[867771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.43.102.34 user=r.r Jun 25 22:27:00 vayu sshd[867771]: Failed password for r.r from 189.43.102.34 port 14423 ssh2 Jun 25 22:27:00 vayu sshd[867771]: Received disconnect from 189.43.102.34: 11: Bye Bye [preauth] Jun 25 22:43:02 vayu sshd[874335]: Invalid user plex from 189.43.102.34 Jun 25 22:43:02 vayu sshd[874335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.43.102.34 Jun 25 22:43:03 vayu sshd[874335]: Failed password for invalid user plex from 189.43.102.34 port 41330 ssh2 Jun 25 22:43:03 vayu sshd[874335]: Received disconnect from 189.43.102.34: 11: Bye Bye [preauth] Jun 25 22:45:52 vayu sshd[875749]: Invalid user dev from 189.43.102.34 Jun 25 22:45:52 vayu sshd[875749]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.43.102.34 ........ ----------------------------------------------- htt	2020-06-26 19:20:49
113.14.110.50	attackspam	port 23	2020-06-26 19:30:55
27.71.95.149	attack	1593143354 - 06/26/2020 05:49:14 Host: 27.71.95.149/27.71.95.149 Port: 445 TCP Blocked	2020-06-26 18:59:34
1.193.160.164	attackspambots	ssh brute force	2020-06-26 19:27:24
193.122.167.164	attack	Jun 26 11:55:24 roki sshd[13619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.122.167.164 user=root Jun 26 11:55:26 roki sshd[13619]: Failed password for root from 193.122.167.164 port 45564 ssh2 Jun 26 12:01:15 roki sshd[14025]: Invalid user aman from 193.122.167.164 Jun 26 12:01:15 roki sshd[14025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.122.167.164 Jun 26 12:01:18 roki sshd[14025]: Failed password for invalid user aman from 193.122.167.164 port 35362 ssh2 ...	2020-06-26 18:54:51
144.255.180.117	attackspam	Unauthorised access (Jun 26) SRC=144.255.180.117 LEN=52 TTL=52 ID=30660 DF TCP DPT=445 WINDOW=8192 SYN	2020-06-26 19:32:38
159.203.219.38	attack	$f2bV_matches	2020-06-26 19:34:31
130.162.64.72	attackbotsspam	SSH Honeypot -> SSH Bruteforce / Login	2020-06-26 18:58:39
103.198.80.104	attack	failed_logins	2020-06-26 18:52:46
216.244.66.242	attack	20 attempts against mh-misbehave-ban on creek	2020-06-26 19:09:17
185.157.222.47	attackspambots	xmlrpc attack	2020-06-26 19:14:32
1.9.78.242	attack	Jun 26 03:48:44 *** sshd[8050]: User root from 1.9.78.242 not allowed because not listed in AllowUsers	2020-06-26 19:24:58

最近上报的IP列表

171.221.212.15	14.164.203.15	187.60.95.44	218.29.63.34
190.194.146.126	167.52.135.190	118.25.182.177	63.82.48.119
197.1.168.207	198.46.81.57	118.72.24.232	131.196.155.151
167.172.245.109	122.121.48.233	177.155.36.147	116.206.40.117
45.143.223.209	212.96.79.58	182.247.238.25	95.239.250.81