125.42.254.247

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Henan Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH login attempts.	2020-02-17 17:16:16

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.42.254.247
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13025
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.42.254.247.			IN	A

;; AUTHORITY SECTION:
.			428	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021700 1800 900 604800 86400

;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 17 17:16:12 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

247.254.42.125.in-addr.arpa domain name pointer hn.kd.ny.adsl.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
247.254.42.125.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.186.30.76	attackspam	Sep 30 05:45:36 gw1 sshd[15335]: Failed password for root from 222.186.30.76 port 37319 ssh2 ...	2020-09-30 08:46:31
182.61.49.179	attackspam	Sep 29 22:40:18 marvibiene sshd[1828]: Invalid user adm from 182.61.49.179 port 55296 Sep 29 22:40:18 marvibiene sshd[1828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.49.179 Sep 29 22:40:18 marvibiene sshd[1828]: Invalid user adm from 182.61.49.179 port 55296 Sep 29 22:40:20 marvibiene sshd[1828]: Failed password for invalid user adm from 182.61.49.179 port 55296 ssh2	2020-09-30 08:28:58
174.235.12.188	attackspambots	Brute forcing email accounts	2020-09-30 08:59:49
107.182.178.177	attack	Lines containing failures of 107.182.178.177 (max 1000) Sep 29 04:33:55 UTC__SANYALnet-Labs__cac12 sshd[25229]: Connection from 107.182.178.177 port 42028 on 64.137.176.96 port 22 Sep 29 04:33:56 UTC__SANYALnet-Labs__cac12 sshd[25229]: User r.r from 107.182.178.177.16clouds.com not allowed because not listed in AllowUsers Sep 29 04:33:56 UTC__SANYALnet-Labs__cac12 sshd[25229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.182.178.177.16clouds.com user=r.r Sep 29 04:33:59 UTC__SANYALnet-Labs__cac12 sshd[25229]: Failed password for invalid user r.r from 107.182.178.177 port 42028 ssh2 Sep 29 04:34:00 UTC__SANYALnet-Labs__cac12 sshd[25229]: Received disconnect from 107.182.178.177 port 42028:11: Bye Bye [preauth] Sep 29 04:34:00 UTC__SANYALnet-Labs__cac12 sshd[25229]: Disconnected from 107.182.178.177 port 42028 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=107.182.178.177	2020-09-30 08:28:39
134.122.20.211	attackspam	134.122.20.211 - - [30/Sep/2020:01:44:22 +0100] "POST /wp-login.php HTTP/1.1" 200 2660 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.20.211 - - [30/Sep/2020:01:44:28 +0100] "POST /wp-login.php HTTP/1.1" 200 2668 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.20.211 - - [30/Sep/2020:01:44:31 +0100] "POST /wp-login.php HTTP/1.1" 200 2626 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-30 08:52:54
111.90.158.145	attackspambots	2020-09-28T20:35:02.393017morrigan.ad5gb.com sshd[2575]: Disconnected from invalid user cssserver 111.90.158.145 port 52036 [preauth]	2020-09-30 08:26:55
190.171.133.10	attackspambots	SSH Invalid Login	2020-09-30 08:42:46
208.38.35.162	attack	20/9/28@16:34:07: FAIL: Alarm-Network address from=208.38.35.162 20/9/28@16:34:07: FAIL: Alarm-Network address from=208.38.35.162 ...	2020-09-30 08:55:03
165.232.47.122	attack	20 attempts against mh-ssh on rock	2020-09-30 08:54:12
112.78.11.50	attackspam	Lines containing failures of 112.78.11.50 Sep 28 15:27:59 kopano sshd[28245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.78.11.50 user=r.r Sep 28 15:28:01 kopano sshd[28245]: Failed password for r.r from 112.78.11.50 port 34072 ssh2 Sep 28 15:28:01 kopano sshd[28245]: Received disconnect from 112.78.11.50 port 34072:11: Bye Bye [preauth] Sep 28 15:28:01 kopano sshd[28245]: Disconnected from authenticating user r.r 112.78.11.50 port 34072 [preauth] Sep 28 15:34:37 kopano sshd[28451]: Invalid user felipe from 112.78.11.50 port 43008 Sep 28 15:34:37 kopano sshd[28451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.78.11.50 Sep 28 15:34:39 kopano sshd[28451]: Failed password for invalid user felipe from 112.78.11.50 port 43008 ssh2 Sep 28 15:34:40 kopano sshd[28451]: Received disconnect from 112.78.11.50 port 43008:11: Bye Bye [preauth] Sep 28 15:34:40 kopano sshd[28451]: Disconne........ ------------------------------	2020-09-30 09:06:19
106.13.167.3	attackspam	[SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.	2020-09-30 09:10:02
134.175.17.32	attackbotsspam	Sep 29 23:46:04 sip sshd[29987]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.17.32 Sep 29 23:46:06 sip sshd[29987]: Failed password for invalid user server from 134.175.17.32 port 41148 ssh2 Sep 29 23:56:55 sip sshd[335]: Failed password for root from 134.175.17.32 port 55704 ssh2	2020-09-30 08:37:39
134.175.154.145	attackspambots	2020-09-29T19:51:52.9234141495-001 sshd[29701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.154.145 user=root 2020-09-29T19:51:54.6553251495-001 sshd[29701]: Failed password for root from 134.175.154.145 port 46940 ssh2 2020-09-29T19:57:53.1330021495-001 sshd[30067]: Invalid user web0 from 134.175.154.145 port 53488 2020-09-29T19:57:53.1375181495-001 sshd[30067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.154.145 2020-09-29T19:57:53.1330021495-001 sshd[30067]: Invalid user web0 from 134.175.154.145 port 53488 2020-09-29T19:57:55.0951101495-001 sshd[30067]: Failed password for invalid user web0 from 134.175.154.145 port 53488 ssh2 ...	2020-09-30 08:43:12
121.225.25.168	attack	Sep 29 23:24:15 vps647732 sshd[20510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.225.25.168 Sep 29 23:24:17 vps647732 sshd[20510]: Failed password for invalid user postgres from 121.225.25.168 port 56798 ssh2 ...	2020-09-30 08:55:35
185.132.53.14	attackbotsspam	The sucker tried to brute force my teeny tiny SSH server	2020-09-30 08:20:09

最近上报的IP列表

50.41.189.165	72.35.23.4	156.70.255.142	192.254.239.58
34.123.162.74	172.202.122.117	198.57.151.206	31.7.241.25
24.90.145.15	192.241.197.65	171.242.84.244	24.76.121.110
216.70.64.58	104.31.66.63	196.218.185.62	173.194.222.27
207.174.214.245	64.26.60.153	196.218.174.139	167.99.235.29