125.21.43.74 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): India

运营商(isp): AirTel

主机名(hostname): unknown

机构(organization): BHARTI Airtel Ltd.

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
125.21.43.82	attack	Unauthorized connection attempt detected from IP address 125.21.43.82 to port 445 [T]	2020-08-14 03:47:26
125.21.43.50	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-11 06:15:31
125.21.43.90	attackspam	Unauthorized connection attempt from IP address 125.21.43.90 on Port 445(SMB)	2020-02-10 21:09:48
125.21.43.90	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 02:29:38,755 INFO [shellcode_manager] (125.21.43.90) no match, writing hexdump (fe16dee412013049c9fd59b87fb7a7c3 :2134265) - MS17010 (EternalBlue)	2019-07-03 14:25:37

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.21.43.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13568
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.21.43.74.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040601 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Apr 07 06:47:05 +08 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 74.43.21.125.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 74.43.21.125.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
129.28.188.115	attackspambots	Apr 13 06:57:01 vpn01 sshd[27963]: Failed password for root from 129.28.188.115 port 36706 ssh2 ...	2020-04-13 14:48:03
144.217.6.146	attackbotsspam	Apr 13 07:17:40 server378 sshd[32588]: Invalid user admin from 144.217.6.146 port 46840 Apr 13 07:17:40 server378 sshd[32588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.6.146 Apr 13 07:17:42 server378 sshd[32588]: Failed password for invalid user admin from 144.217.6.146 port 46840 ssh2 Apr 13 07:17:43 server378 sshd[32588]: Connection closed by 144.217.6.146 port 46840 [preauth] Apr 13 07:19:45 server378 sshd[32643]: Invalid user admin from 144.217.6.146 port 52052 Apr 13 07:19:45 server378 sshd[32643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.6.146 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=144.217.6.146	2020-04-13 14:31:46
106.54.200.209	attackbotsspam	IP blocked	2020-04-13 14:25:17
141.98.9.137	attackbots	Trying ports that it shouldn't be.	2020-04-13 14:30:21
192.162.101.91	attack	192.162.101.91 - - \[13/Apr/2020:05:56:04 +0200\] "POST //xmlrpc.php HTTP/1.0" 200 854 "-" "Mozilla/5.0 \(Windows NT 10.0\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/78.0.3904.108 Safari/537.36" 192.162.101.91 - - \[13/Apr/2020:05:56:04 +0200\] "POST //xmlrpc.php HTTP/1.0" 200 855 "-" "Mozilla/5.0 \(Windows NT 10.0\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/78.0.3904.108 Safari/537.36" 192.162.101.91 - - \[13/Apr/2020:05:56:05 +0200\] "POST //xmlrpc.php HTTP/1.0" 200 854 "-" "Mozilla/5.0 \(Windows NT 10.0\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/78.0.3904.108 Safari/537.36"	2020-04-13 14:55:14
182.43.242.46	attackbotsspam	Apr 13 05:37:29 hcbbdb sshd\[1620\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.43.242.46 user=root Apr 13 05:37:30 hcbbdb sshd\[1620\]: Failed password for root from 182.43.242.46 port 33106 ssh2 Apr 13 05:41:06 hcbbdb sshd\[2003\]: Invalid user dalia from 182.43.242.46 Apr 13 05:41:06 hcbbdb sshd\[2003\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.43.242.46 Apr 13 05:41:08 hcbbdb sshd\[2003\]: Failed password for invalid user dalia from 182.43.242.46 port 50180 ssh2	2020-04-13 14:46:52
212.64.16.31	attack	Apr 13 06:25:28 pve sshd[23020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.16.31 Apr 13 06:25:30 pve sshd[23020]: Failed password for invalid user chesser from 212.64.16.31 port 59808 ssh2 Apr 13 06:28:25 pve sshd[25239]: Failed password for root from 212.64.16.31 port 42260 ssh2	2020-04-13 14:24:32
49.234.13.235	attack	Apr 13 08:26:13 eventyay sshd[9610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.13.235 Apr 13 08:26:15 eventyay sshd[9610]: Failed password for invalid user jonyimbo from 49.234.13.235 port 42160 ssh2 Apr 13 08:30:12 eventyay sshd[9729]: Failed password for root from 49.234.13.235 port 55500 ssh2 ...	2020-04-13 14:43:14
51.178.16.227	attackspam	Unauthorised connection attempt detected at AUO NODE 1. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-04-13 14:41:06
185.175.93.104	attackbotsspam	04/13/2020-02:13:44.420218 185.175.93.104 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-04-13 14:23:23
222.186.169.194	attackbotsspam	2020-04-13T08:46:46.021337 sshd[9902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.194 user=root 2020-04-13T08:46:47.879299 sshd[9902]: Failed password for root from 222.186.169.194 port 39040 ssh2 2020-04-13T08:46:52.312713 sshd[9902]: Failed password for root from 222.186.169.194 port 39040 ssh2 2020-04-13T08:46:46.021337 sshd[9902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.194 user=root 2020-04-13T08:46:47.879299 sshd[9902]: Failed password for root from 222.186.169.194 port 39040 ssh2 2020-04-13T08:46:52.312713 sshd[9902]: Failed password for root from 222.186.169.194 port 39040 ssh2 ...	2020-04-13 14:54:16
37.120.164.199	attackbotsspam	Apr 13 05:58:54 ms-srv sshd[12922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.120.164.199 Apr 13 05:58:56 ms-srv sshd[12922]: Failed password for invalid user applmgr from 37.120.164.199 port 54114 ssh2	2020-04-13 14:59:40
104.248.116.140	attackspam	Apr 13 07:58:22 legacy sshd[31955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.116.140 Apr 13 07:58:24 legacy sshd[31955]: Failed password for invalid user apache from 104.248.116.140 port 34860 ssh2 Apr 13 08:02:20 legacy sshd[32157]: Failed password for root from 104.248.116.140 port 44152 ssh2 ...	2020-04-13 14:36:02
103.78.209.204	attack	Unauthorized SSH login attempts	2020-04-13 14:38:31
67.218.145.167	attackspambots	SSH Brute-Force Attack	2020-04-13 14:44:40

最近上报的IP列表

131.153.37.2	27.221.121.5	23.234.32.80	121.129.112.106
111.231.121.30	193.112.199.114	202.65.154.110	140.143.224.130
116.255.168.158	78.28.118.206	42.237.141.106	106.51.79.65
138.186.23.1	106.12.10.103	185.210.244.88	103.111.29.58
213.60.147.139	125.89.95.133	36.91.50.251	190.254.23.187