125.165.138.68

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT Telkom Indonesia

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt from IP address 125.165.138.68 on Port 445(SMB)	2019-12-11 20:45:35

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.165.138.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13664
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.165.138.68.			IN	A

;; AUTHORITY SECTION:
.			339	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121100 1800 900 604800 86400

;; Query time: 189 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 11 20:45:30 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 68.138.165.125.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 68.138.165.125.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
182.69.99.80	attackbots	Unauthorized connection attempt from IP address 182.69.99.80 on Port 445(SMB)	2019-10-12 06:31:03
222.239.255.89	attackbots	SMB Server BruteForce Attack	2019-10-12 06:24:34
49.88.112.90	attackbots	Oct 11 18:27:27 TORMINT sshd\[2095\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.90 user=root Oct 11 18:27:29 TORMINT sshd\[2095\]: Failed password for root from 49.88.112.90 port 15653 ssh2 Oct 11 18:27:31 TORMINT sshd\[2095\]: Failed password for root from 49.88.112.90 port 15653 ssh2 ...	2019-10-12 06:28:18
150.95.105.56	attackspam	2019-10-11T15:42:40.820908abusebot-8.cloudsearch.cf sshd\[5560\]: Invalid user P@\$\$@2018 from 150.95.105.56 port 51526	2019-10-11 23:47:02
149.202.59.85	attackspam	2019-10-11T14:09:23.969982hub.schaetter.us sshd\[16877\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.ip-149-202-59.eu user=root 2019-10-11T14:09:25.662786hub.schaetter.us sshd\[16877\]: Failed password for root from 149.202.59.85 port 47209 ssh2 2019-10-11T14:13:21.621869hub.schaetter.us sshd\[16945\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.ip-149-202-59.eu user=root 2019-10-11T14:13:23.320386hub.schaetter.us sshd\[16945\]: Failed password for root from 149.202.59.85 port 38641 ssh2 2019-10-11T14:17:24.851560hub.schaetter.us sshd\[16986\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.ip-149-202-59.eu user=root ...	2019-10-11 23:47:18
115.94.204.156	attack	Oct 11 02:49:21 auw2 sshd\[22092\]: Invalid user Pa\$\$word@1234 from 115.94.204.156 Oct 11 02:49:21 auw2 sshd\[22092\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.94.204.156 Oct 11 02:49:23 auw2 sshd\[22092\]: Failed password for invalid user Pa\$\$word@1234 from 115.94.204.156 port 40024 ssh2 Oct 11 02:54:15 auw2 sshd\[22507\]: Invalid user P@ssword01 from 115.94.204.156 Oct 11 02:54:15 auw2 sshd\[22507\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.94.204.156	2019-10-11 23:49:20
45.142.195.5	attackbotsspam	Brute Force attack - banned by Fail2Ban	2019-10-12 06:15:04
222.186.175.6	attackspambots	scan z	2019-10-12 06:10:59
119.76.148.159	attack	Portscan detected	2019-10-11 23:49:03
106.12.27.11	attack	2019-10-11T13:05:56.141922abusebot-4.cloudsearch.cf sshd\[9596\]: Invalid user 123 from 106.12.27.11 port 52868	2019-10-11 23:51:18
103.240.250.45	attack	Oct 8 00:46:17 our-server-hostname postfix/smtpd[19605]: connect from unknown[103.240.250.45] Oct 8 00:46:19 our-server-hostname sqlgrey: grey: new: 103.240.250.45(103.240.250.45), x@x -> x@x Oct x@x Oct x@x Oct 8 00:46:22 our-server-hostname sqlgrey: grey: new: 103.240.250.45(103.240.250.45), x@x -> x@x Oct x@x Oct 8 00:46:22 our-server-hostname sqlgrey: grey: new: 103.240.250.45(103.240.250.45), x@x -> x@x Oct x@x Oct 8 00:46:23 our-server-hostname sqlgrey: grey: new: 103.240.250.45(103.240.250.45), x@x -> x@x Oct x@x Oct 8 00:46:23 our-server-hostname sqlgrey: grey: new: 103.240.250.45(103.240.250.45), x@x -> x@x Oct x@x Oct 8 00:46:24 our-server-hostname sqlgrey: grey: throttling: 103.240.250.45(103.240.250.45), x@x -> x@x Oct x@x Oct 8 00:46:24 our-server-hostname sqlgrey: grey: throttling: 103.240.250.45(103.240.250.45), x@x -> x@x Oct x@x Oct 8 00:46:25 our-server-hostname sqlgrey: grey: throttling: 103.240.250.45(103.240.250.45), x@x -> x@x Oct x@x Oct ........ -------------------------------	2019-10-12 06:12:11
191.7.196.162	attackspambots	B: f2b postfix aggressive 3x	2019-10-11 23:41:10
202.163.126.134	attackbotsspam	Oct 11 22:24:11 webhost01 sshd[10889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.163.126.134 Oct 11 22:24:13 webhost01 sshd[10889]: Failed password for invalid user Fastfood123 from 202.163.126.134 port 51721 ssh2 ...	2019-10-11 23:40:43
206.189.239.103	attackspam	Oct 11 08:59:25 tdfoods sshd\[19555\]: Invalid user 1qaz2WSX3EDC from 206.189.239.103 Oct 11 08:59:25 tdfoods sshd\[19555\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.239.103 Oct 11 08:59:27 tdfoods sshd\[19555\]: Failed password for invalid user 1qaz2WSX3EDC from 206.189.239.103 port 54640 ssh2 Oct 11 09:02:57 tdfoods sshd\[19930\]: Invalid user 1qaz2WSX3EDC from 206.189.239.103 Oct 11 09:02:57 tdfoods sshd\[19930\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.239.103	2019-10-12 06:13:44
49.88.112.114	attack	Oct 11 12:14:17 wbs sshd\[28427\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Oct 11 12:14:19 wbs sshd\[28427\]: Failed password for root from 49.88.112.114 port 38324 ssh2 Oct 11 12:15:13 wbs sshd\[28511\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Oct 11 12:15:15 wbs sshd\[28511\]: Failed password for root from 49.88.112.114 port 34649 ssh2 Oct 11 12:18:24 wbs sshd\[28802\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root	2019-10-12 06:20:27

最近上报的IP列表

122.155.40.192	121.26.0.82	183.80.240.228	46.185.57.43
105.226.233.8	221.132.85.120	209.107.204.63	143.137.199.10
121.164.233.154	49.145.62.156	13.89.231.103	197.221.254.63
1.1.157.118	17.81.181.42	103.248.117.214	91.194.84.83
189.206.216.20	42.4.137.66	77.222.113.161	36.73.125.58