必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
125.164.43.137 attack
IP 125.164.43.137 attacked honeypot on port: 139 at 7/19/2020 8:48:54 PM
2020-07-20 20:26:24
125.164.44.98 attack
Unauthorized connection attempt from IP address 125.164.44.98 on Port 445(SMB)
2020-03-06 03:04:34
125.164.47.236 attackspam
Honeypot attack, port: 445, PTR: 236.subnet125-164-47.speedy.telkom.net.id.
2020-01-25 06:21:51
125.164.42.134 attackspambots
Bruteforce on SSH Honeypot
2020-01-04 20:52:34
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.164.4.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32913
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;125.164.4.149.			IN	A

;; AUTHORITY SECTION:
.			591	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 02:55:51 CST 2022
;; MSG SIZE  rcvd: 106
HOST信息:
Host 149.4.164.125.in-addr.arpa not found: 2(SERVFAIL)
NSLOOKUP信息:
;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 149.4.164.125.in-addr.arpa: SERVFAIL
相关IP信息:
最新评论:
IP 类型 评论内容 时间
191.32.132.149 attackbots
TCP Port Scanning
2019-11-02 13:59:51
138.204.235.30 attackbotsspam
2019-11-02T04:43:21.134156shield sshd\[26264\]: Invalid user q1w2e3r4 from 138.204.235.30 port 48644
2019-11-02T04:43:21.142369shield sshd\[26264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.235.30
2019-11-02T04:43:23.482582shield sshd\[26264\]: Failed password for invalid user q1w2e3r4 from 138.204.235.30 port 48644 ssh2
2019-11-02T04:47:58.576752shield sshd\[27482\]: Invalid user Blood123 from 138.204.235.30 port 39622
2019-11-02T04:47:58.582282shield sshd\[27482\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.235.30
2019-11-02 14:13:17
1.204.239.19 attackbotsspam
Automatic report - Port Scan
2019-11-02 14:06:07
162.214.14.3 attackspam
Nov  2 06:59:54 server sshd\[25770\]: Invalid user test1 from 162.214.14.3 port 52418
Nov  2 06:59:54 server sshd\[25770\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.214.14.3
Nov  2 06:59:56 server sshd\[25770\]: Failed password for invalid user test1 from 162.214.14.3 port 52418 ssh2
Nov  2 07:03:40 server sshd\[28606\]: User root from 162.214.14.3 not allowed because listed in DenyUsers
Nov  2 07:03:40 server sshd\[28606\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.214.14.3  user=root
2019-11-02 13:18:12
201.38.172.76 attackbotsspam
2019-11-02T04:54:50.457086abusebot.cloudsearch.cf sshd\[23660\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cs-201-38-172-76.embratelcloud.com.br  user=root
2019-11-02 13:22:03
185.216.32.170 attack
11/02/2019-06:32:05.112810 185.216.32.170 Protocol: 6 ET TOR Known Tor Exit Node Traffic group 30
2019-11-02 13:50:27
45.180.7.233 attackbotsspam
port scan and connect, tcp 23 (telnet)
2019-11-02 13:18:46
187.162.51.63 attack
Nov  1 19:14:14 auw2 sshd\[29947\]: Invalid user bamboo from 187.162.51.63
Nov  1 19:14:14 auw2 sshd\[29947\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187-162-51-63.static.axtel.net
Nov  1 19:14:16 auw2 sshd\[29947\]: Failed password for invalid user bamboo from 187.162.51.63 port 55408 ssh2
Nov  1 19:18:26 auw2 sshd\[30305\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187-162-51-63.static.axtel.net  user=root
Nov  1 19:18:29 auw2 sshd\[30305\]: Failed password for root from 187.162.51.63 port 46409 ssh2
2019-11-02 13:26:11
185.176.27.242 attackbots
Nov  2 05:03:54 mail kernel: [4047553.597486] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=185.176.27.242 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=4753 PROTO=TCP SPT=47834 DPT=58994 WINDOW=1024 RES=0x00 SYN URGP=0 
Nov  2 05:04:10 mail kernel: [4047570.241217] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=185.176.27.242 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=54500 PROTO=TCP SPT=47834 DPT=28334 WINDOW=1024 RES=0x00 SYN URGP=0 
Nov  2 05:05:41 mail kernel: [4047660.491523] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=185.176.27.242 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=45731 PROTO=TCP SPT=47834 DPT=59672 WINDOW=1024 RES=0x00 SYN URGP=0 
Nov  2 05:05:43 mail kernel: [4047662.484766] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=185.176.27.242 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=6342 PROTO=TCP SPT=47834 DPT=53047 WINDOW=1024 RES=0x0
2019-11-02 13:48:59
78.128.113.120 attackspambots
2019-11-02T06:51:54.228951mail01 postfix/smtpd[18797]: warning: unknown[78.128.113.120]: SASL PLAIN authentication failed:
2019-11-02T06:52:09.238100mail01 postfix/smtpd[6302]: warning: unknown[78.128.113.120]: SASL PLAIN authentication failed:
2019-11-02T06:52:32.154262mail01 postfix/smtpd[6302]: warning: unknown[78.128.113.120]: SASL PLAIN authentication failed:
2019-11-02 13:56:40
157.245.149.62 attackspam
Nov  2 04:32:27 h2022099 sshd[21829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.149.62  user=r.r
Nov  2 04:32:29 h2022099 sshd[21829]: Failed password for r.r from 157.245.149.62 port 46636 ssh2
Nov  2 04:32:30 h2022099 sshd[21829]: Received disconnect from 157.245.149.62: 11: Bye Bye [preauth]
Nov  2 04:36:46 h2022099 sshd[22456]: Invalid user bradley from 157.245.149.62
Nov  2 04:36:46 h2022099 sshd[22456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.149.62 
Nov  2 04:36:48 h2022099 sshd[22456]: Failed password for invalid user bradley from 157.245.149.62 port 59096 ssh2
Nov  2 04:36:48 h2022099 sshd[22456]: Received disconnect from 157.245.149.62: 11: Bye Bye [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=157.245.149.62
2019-11-02 14:03:20
222.186.175.140 attack
$f2bV_matches
2019-11-02 13:57:05
182.61.162.54 attack
Nov  2 07:25:32 server sshd\[21248\]: User root from 182.61.162.54 not allowed because listed in DenyUsers
Nov  2 07:25:32 server sshd\[21248\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.162.54  user=root
Nov  2 07:25:34 server sshd\[21248\]: Failed password for invalid user root from 182.61.162.54 port 50272 ssh2
Nov  2 07:30:16 server sshd\[23828\]: User root from 182.61.162.54 not allowed because listed in DenyUsers
Nov  2 07:30:16 server sshd\[23828\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.162.54  user=root
2019-11-02 13:46:41
190.151.105.182 attack
Nov  2 02:15:56 firewall sshd[17849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.151.105.182
Nov  2 02:15:56 firewall sshd[17849]: Invalid user yusak from 190.151.105.182
Nov  2 02:15:57 firewall sshd[17849]: Failed password for invalid user yusak from 190.151.105.182 port 58140 ssh2
...
2019-11-02 13:25:14
27.71.225.91 attackbotsspam
2019-11-02T04:59:03.691754abusebot-8.cloudsearch.cf sshd\[5800\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.71.225.91  user=root
2019-11-02 13:23:43

最近上报的IP列表

125.164.4.124 117.91.138.220 125.164.4.206 125.164.4.114
125.164.4.14 125.164.4.177 125.164.4.208 52.167.85.21
125.164.4.242 125.164.4.218 125.164.4.226 125.164.40.122
125.164.4.76 125.164.40.17 117.91.138.222 125.164.40.162
125.164.40.180 125.164.40.216 125.164.40.233 125.164.40.39