125.94.214.136

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Guangdong Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorised access (Sep 1) SRC=125.94.214.136 LEN=40 TTL=237 ID=10978 TCP DPT=445 WINDOW=1024 SYN Unauthorised access (Aug 26) SRC=125.94.214.136 LEN=40 TTL=237 ID=50191 TCP DPT=445 WINDOW=1024 SYN	2019-09-02 10:50:52

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.94.214.136
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49068
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.94.214.136.			IN	A

;; AUTHORITY SECTION:
.			3499	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090101 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Sep 02 10:50:46 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 136.214.94.125.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 136.214.94.125.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
142.93.199.72	attackbotsspam	Aug 19 02:33:40 hiderm sshd\[11259\]: Invalid user mai1 from 142.93.199.72 Aug 19 02:33:40 hiderm sshd\[11259\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.199.72 Aug 19 02:33:42 hiderm sshd\[11259\]: Failed password for invalid user mai1 from 142.93.199.72 port 55840 ssh2 Aug 19 02:37:56 hiderm sshd\[11668\]: Invalid user password from 142.93.199.72 Aug 19 02:37:56 hiderm sshd\[11668\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.199.72	2019-08-19 20:53:21
132.232.82.244	attackbotsspam	Aug 19 12:23:52 game-panel sshd[19744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.82.244 Aug 19 12:23:53 game-panel sshd[19744]: Failed password for invalid user potsdam from 132.232.82.244 port 50914 ssh2 Aug 19 12:29:13 game-panel sshd[19992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.82.244	2019-08-19 20:35:12
129.211.76.101	attack	Aug 19 14:16:46 dev0-dcfr-rnet sshd[30940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.76.101 Aug 19 14:16:48 dev0-dcfr-rnet sshd[30940]: Failed password for invalid user vncuser from 129.211.76.101 port 51618 ssh2 Aug 19 14:21:42 dev0-dcfr-rnet sshd[30976]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.76.101	2019-08-19 21:18:00
92.118.160.37	attack	Honeypot attack, port: 139, PTR: 92.118.160.37.netsystemsresearch.com.	2019-08-19 20:30:56
43.228.126.182	attackbotsspam	Aug 19 13:59:02 * sshd[29082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.228.126.182 Aug 19 13:59:05 * sshd[29082]: Failed password for invalid user css from 43.228.126.182 port 36258 ssh2	2019-08-19 20:59:48
95.163.214.206	attackbots	Aug 19 14:01:51 dedicated sshd[12593]: Invalid user nec from 95.163.214.206 port 54986	2019-08-19 20:26:29
91.227.28.120	attackbots	Honeypot attack, port: 23, PTR: PTR record not found	2019-08-19 20:23:29
117.50.46.36	attackspambots	Invalid user catchall from 117.50.46.36 port 38414	2019-08-19 20:41:41
134.175.32.10	attackspam	Aug 19 11:33:22 mail sshd\[7777\]: Invalid user jarod from 134.175.32.10 port 59896 Aug 19 11:33:22 mail sshd\[7777\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.32.10 Aug 19 11:33:24 mail sshd\[7777\]: Failed password for invalid user jarod from 134.175.32.10 port 59896 ssh2 Aug 19 11:39:35 mail sshd\[8999\]: Invalid user ksgdb from 134.175.32.10 port 49354 Aug 19 11:39:35 mail sshd\[8999\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.32.10	2019-08-19 20:50:40
203.189.201.165	attackbotsspam	Aug 19 13:31:19 mail postfix/smtpd\[28806\]: warning: unknown\[203.189.201.165\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 19 13:31:44 mail postfix/smtpd\[27406\]: warning: unknown\[203.189.201.165\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 19 13:31:51 mail postfix/smtpd\[27393\]: warning: unknown\[203.189.201.165\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-08-19 20:48:13
189.175.208.44	attackbotsspam	Automatic report - Port Scan Attack	2019-08-19 20:43:12
81.22.45.133	attack	Honeypot attack, port: 5555, PTR: PTR record not found	2019-08-19 20:40:16
123.136.161.146	attackbotsspam	Aug 19 01:08:11 auw2 sshd\[11366\]: Invalid user mata from 123.136.161.146 Aug 19 01:08:11 auw2 sshd\[11366\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.136.161.146 Aug 19 01:08:13 auw2 sshd\[11366\]: Failed password for invalid user mata from 123.136.161.146 port 49334 ssh2 Aug 19 01:13:30 auw2 sshd\[11948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.136.161.146 user=root Aug 19 01:13:32 auw2 sshd\[11948\]: Failed password for root from 123.136.161.146 port 38978 ssh2	2019-08-19 21:06:25
122.199.152.114	attack	Aug 19 14:29:08 mail sshd\[9438\]: Invalid user shadow from 122.199.152.114 port 9233 Aug 19 14:29:08 mail sshd\[9438\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114 Aug 19 14:29:11 mail sshd\[9438\]: Failed password for invalid user shadow from 122.199.152.114 port 9233 ssh2 Aug 19 14:34:30 mail sshd\[10211\]: Invalid user bp from 122.199.152.114 port 32279 Aug 19 14:34:30 mail sshd\[10211\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114	2019-08-19 20:51:04
185.176.27.186	attackspam	Aug 19 12:43:23 h2177944 kernel: \[4535059.577625\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.186 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=24200 PROTO=TCP SPT=59125 DPT=18933 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 19 12:44:37 h2177944 kernel: \[4535133.264325\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.186 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=15774 PROTO=TCP SPT=59125 DPT=33389 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 19 12:57:57 h2177944 kernel: \[4535933.545264\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.186 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=1181 PROTO=TCP SPT=59125 DPT=33892 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 19 12:58:34 h2177944 kernel: \[4535970.722932\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.186 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=7458 PROTO=TCP SPT=59125 DPT=23389 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 19 13:04:53 h2177944 kernel: \[4536349.102337\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.186 DST=85.21	2019-08-19 20:27:22

最近上报的IP列表

20.194.5.249	69.105.219.254	128.173.156.206	89.1.175.108
218.98.26.176	124.88.92.71	185.156.177.235	209.161.114.183
216.76.78.102	91.1.35.184	88.84.209.145	42.191.235.92
45.153.12.3	112.9.18.84	101.174.176.142	112.93.220.29
18.13.52.81	45.55.2.44	119.160.195.53	177.46.86.65