必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): Incheon

省份(region): Incheon Metropolitan City

国家(country): South Korea

运营商(isp): Tplus

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.243.107.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6850
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;125.243.107.145.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021902 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 09:17:07 CST 2025
;; MSG SIZE  rcvd: 108
HOST信息:
Host 145.107.243.125.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.107.243.125.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
1.186.45.250 attack
Nov 21 07:18:05 h2177944 sshd\[5937\]: Invalid user rootmail from 1.186.45.250 port 55139
Nov 21 07:18:05 h2177944 sshd\[5937\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.186.45.250
Nov 21 07:18:08 h2177944 sshd\[5937\]: Failed password for invalid user rootmail from 1.186.45.250 port 55139 ssh2
Nov 21 07:22:42 h2177944 sshd\[6086\]: Invalid user 123abcdef from 1.186.45.250 port 44759
...
2019-11-21 20:19:55
202.88.234.107 attackbots
Nov 20 20:19:05 php1 sshd\[24334\]: Invalid user leobbsidc from 202.88.234.107
Nov 20 20:19:05 php1 sshd\[24334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.88.234.107
Nov 20 20:19:07 php1 sshd\[24334\]: Failed password for invalid user leobbsidc from 202.88.234.107 port 59560 ssh2
Nov 20 20:23:26 php1 sshd\[24673\]: Invalid user vvvvv from 202.88.234.107
Nov 20 20:23:26 php1 sshd\[24673\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.88.234.107
2019-11-21 19:57:51
199.231.185.113 attack
199.231.185.113 - - \[21/Nov/2019:07:23:09 +0100\] "POST /wp-login.php HTTP/1.0" 200 5731 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
199.231.185.113 - - \[21/Nov/2019:07:23:10 +0100\] "POST /wp-login.php HTTP/1.0" 200 5598 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
199.231.185.113 - - \[21/Nov/2019:07:23:12 +0100\] "POST /wp-login.php HTTP/1.0" 200 5594 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2019-11-21 20:06:23
117.71.53.105 attack
Nov 21 08:14:36 firewall sshd[3485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.71.53.105  user=root
Nov 21 08:14:38 firewall sshd[3485]: Failed password for root from 117.71.53.105 port 45988 ssh2
Nov 21 08:19:19 firewall sshd[3579]: Invalid user kadoya from 117.71.53.105
...
2019-11-21 19:45:01
83.228.50.42 attack
port scan and connect, tcp 23 (telnet)
2019-11-21 20:19:33
219.250.188.2 attackspambots
6379/tcp
[2019-11-21]1pkt
2019-11-21 19:53:52
39.45.30.117 attackbots
Nov 21 07:16:03 tamoto postfix/smtpd[14666]: connect from unknown[39.45.30.117]
Nov 21 07:16:04 tamoto postfix/smtpd[14666]: warning: unknown[39.45.30.117]: SASL CRAM-MD5 authentication failed: authentication failure
Nov 21 07:16:04 tamoto postfix/smtpd[14666]: warning: unknown[39.45.30.117]: SASL PLAIN authentication failed: authentication failure
Nov 21 07:16:05 tamoto postfix/smtpd[14666]: warning: unknown[39.45.30.117]: SASL LOGIN authentication failed: authentication failure
Nov 21 07:16:05 tamoto postfix/smtpd[14666]: lost connection after AUTH from unknown[39.45.30.117]
Nov 21 07:16:05 tamoto postfix/smtpd[14666]: disconnect from unknown[39.45.30.117]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=39.45.30.117
2019-11-21 20:04:40
27.128.175.209 attackspam
2019-11-21 05:13:15,010 fail2ban.actions        \[14488\]: NOTICE  \[sshd\] Ban 27.128.175.209
2019-11-21 05:44:09,428 fail2ban.actions        \[14488\]: NOTICE  \[sshd\] Ban 27.128.175.209
2019-11-21 06:20:04,238 fail2ban.actions        \[14488\]: NOTICE  \[sshd\] Ban 27.128.175.209
2019-11-21 06:52:02,254 fail2ban.actions        \[14488\]: NOTICE  \[sshd\] Ban 27.128.175.209
2019-11-21 07:23:38,335 fail2ban.actions        \[14488\]: NOTICE  \[sshd\] Ban 27.128.175.209
...
2019-11-21 19:46:50
118.24.101.182 attackspam
Nov 21 08:23:27 microserver sshd[53409]: Invalid user ryanb from 118.24.101.182 port 39900
Nov 21 08:23:27 microserver sshd[53409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.101.182
Nov 21 08:23:30 microserver sshd[53409]: Failed password for invalid user ryanb from 118.24.101.182 port 39900 ssh2
Nov 21 08:27:50 microserver sshd[54034]: Invalid user calvin from 118.24.101.182 port 45986
Nov 21 08:27:50 microserver sshd[54034]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.101.182
Nov 21 08:41:32 microserver sshd[56002]: Invalid user guest from 118.24.101.182 port 36030
Nov 21 08:41:32 microserver sshd[56002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.101.182
Nov 21 08:41:34 microserver sshd[56002]: Failed password for invalid user guest from 118.24.101.182 port 36030 ssh2
Nov 21 08:46:10 microserver sshd[56636]: Invalid user lpwi from 118.24.101.182 port 42
2019-11-21 20:18:17
141.105.66.254 attack
Nov 21 07:12:26 mxgate1 postfix/postscreen[7403]: CONNECT from [141.105.66.254]:63166 to [176.31.12.44]:25
Nov 21 07:12:26 mxgate1 postfix/dnsblog[7468]: addr 141.105.66.254 listed by domain zen.spamhaus.org as 127.0.0.3
Nov 21 07:12:26 mxgate1 postfix/dnsblog[7466]: addr 141.105.66.254 listed by domain b.barracudacentral.org as 127.0.0.2
Nov 21 07:12:32 mxgate1 postfix/postscreen[7403]: DNSBL rank 3 for [141.105.66.254]:63166
Nov x@x
Nov 21 07:12:32 mxgate1 postfix/postscreen[7403]: DISCONNECT [141.105.66.254]:63166


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=141.105.66.254
2019-11-21 19:52:48
119.86.182.79 attackspam
Nov 20 06:40:20 penfold postfix/smtpd[8227]: connect from unknown[119.86.182.79]
Nov x@x
Nov x@x
Nov x@x
Nov 20 06:40:22 penfold postfix/smtpd[8227]: disconnect from unknown[119.86.182.79] helo=1 mail=1 rcpt=0/3 quhostname=1 commands=3/6
Nov 20 06:40:25 penfold postfix/smtpd[8227]: connect from unknown[119.86.182.79]
Nov 20 06:40:26 penfold postfix/smtpd[8227]: 1D048205A2: client=unknown[119.86.182.79]
Nov x@x
Nov x@x
Nov 20 06:40:33 penfold opendkim[2690]: 1D048205A2: [119.86.182.79] [119.86.182.79] not internal
Nov 20 06:40:34 penfold postfix/smtpd[8227]: disconnect from unknown[119.86.182.79] helo=1 mail=1 rcpt=5/7 data=1 quhostname=1 commands=9/11
Nov 20 06:42:52 penfold postfix/smtpd[7514]: connect from unknown[119.86.182.79]
Nov 20 06:42:54 penfold postfix/smtpd[7514]: 4B1C5205A2: client=unknown[119.86.182.79]
Nov 20 06:43:10 penfold opendkim[2690]: 4B1C5205A2: [119.86.182.79] [119.86.182.79] not internal
Nov 20 06:43:10 penfold postfix/smtpd[1242]: connect from u........
-------------------------------
2019-11-21 19:55:08
1.53.222.163 attackbots
Nov 21 11:33:53 km20725 sshd\[22294\]: Invalid user pi from 1.53.222.163Nov 21 11:33:53 km20725 sshd\[22296\]: Invalid user pi from 1.53.222.163Nov 21 11:33:55 km20725 sshd\[22294\]: Failed password for invalid user pi from 1.53.222.163 port 39756 ssh2Nov 21 11:33:55 km20725 sshd\[22296\]: Failed password for invalid user pi from 1.53.222.163 port 39762 ssh2
...
2019-11-21 19:39:19
89.248.174.193 attack
11/21/2019-05:45:48.113747 89.248.174.193 Protocol: 6 ET DROP Dshield Block Listed Source group 1
2019-11-21 19:40:12
222.186.173.238 attackbotsspam
Nov 21 13:13:11 mail sshd[31056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.238  user=root
Nov 21 13:13:13 mail sshd[31056]: Failed password for root from 222.186.173.238 port 1354 ssh2
...
2019-11-21 20:16:42
81.28.100.129 attackspam
2019-11-21T07:22:39.507394stark.klein-stark.info postfix/smtpd\[2270\]: NOQUEUE: reject: RCPT from marmalade.shrewdmhealth.com\[81.28.100.129\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\
...
2019-11-21 20:15:20

最近上报的IP列表

199.124.239.85 181.199.230.50 243.41.157.81 252.185.44.246
254.229.243.64 144.56.249.84 87.175.107.236 69.36.177.128
253.136.137.185 16.117.105.200 42.73.224.73 46.50.199.161
169.157.97.93 214.125.63.42 5.236.214.175 124.94.147.86
20.85.59.26 178.163.154.33 38.127.232.153 123.80.168.11