138.201.16.125

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
138.201.16.157	attackspambots	Jun 11 17:59:11 melroy-server sshd[3992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.201.16.157 Jun 11 17:59:13 melroy-server sshd[3992]: Failed password for invalid user admin from 138.201.16.157 port 40524 ssh2 ...	2020-06-12 02:20:00

类型

评论内容

时间

138.201.16.157

attackspambots

Jun 11 17:59:11 melroy-server sshd[3992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.201.16.157 
Jun 11 17:59:13 melroy-server sshd[3992]: Failed password for invalid user admin from 138.201.16.157 port 40524 ssh2
...

2020-06-12 02:20:00

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.201.16.125
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46281
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.201.16.125.			IN	A

;; AUTHORITY SECTION:
.			112	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 11:55:19 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

125.16.201.138.in-addr.arpa domain name pointer 0lik.ru.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
125.16.201.138.in-addr.arpa	name = 0lik.ru.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
2.229.4.181	attackspambots	Jun 22 08:22:18 ny01 sshd[27463]: Failed password for root from 2.229.4.181 port 37818 ssh2 Jun 22 08:25:41 ny01 sshd[28186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.229.4.181 Jun 22 08:25:42 ny01 sshd[28186]: Failed password for invalid user vsftpd from 2.229.4.181 port 37794 ssh2	2020-06-22 20:39:05
27.78.14.83	attackbotsspam	SSH Brute-Force reported by Fail2Ban	2020-06-22 20:56:11
202.103.37.40	attack	Jun 22 13:33:13 gestao sshd[24298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.103.37.40 Jun 22 13:33:15 gestao sshd[24298]: Failed password for invalid user ray from 202.103.37.40 port 37630 ssh2 Jun 22 13:36:58 gestao sshd[24428]: Failed password for root from 202.103.37.40 port 54594 ssh2 ...	2020-06-22 20:47:35
178.62.104.58	attackbotsspam	Jun 22 02:05:13 web1 sshd\[27253\]: Invalid user sammy from 178.62.104.58 Jun 22 02:05:13 web1 sshd\[27253\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.104.58 Jun 22 02:05:16 web1 sshd\[27253\]: Failed password for invalid user sammy from 178.62.104.58 port 59552 ssh2 Jun 22 02:08:09 web1 sshd\[27741\]: Invalid user webmaster from 178.62.104.58 Jun 22 02:08:09 web1 sshd\[27741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.104.58	2020-06-22 20:18:41
124.251.110.148	attack	Jun 22 14:35:02 PorscheCustomer sshd[30460]: Failed password for root from 124.251.110.148 port 36560 ssh2 Jun 22 14:38:12 PorscheCustomer sshd[30544]: Failed password for root from 124.251.110.148 port 34262 ssh2 ...	2020-06-22 20:49:13
90.145.172.213	attackspambots	Jun 22 11:28:56 zimbra sshd[10812]: Invalid user deployer from 90.145.172.213 Jun 22 11:28:56 zimbra sshd[10812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.145.172.213 Jun 22 11:28:58 zimbra sshd[10812]: Failed password for invalid user deployer from 90.145.172.213 port 56712 ssh2 Jun 22 11:28:58 zimbra sshd[10812]: Received disconnect from 90.145.172.213 port 56712:11: Bye Bye [preauth] Jun 22 11:28:58 zimbra sshd[10812]: Disconnected from 90.145.172.213 port 56712 [preauth] Jun 22 11:37:05 zimbra sshd[18151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.145.172.213 user=r.r Jun 22 11:37:07 zimbra sshd[18151]: Failed password for r.r from 90.145.172.213 port 51456 ssh2 Jun 22 11:37:07 zimbra sshd[18151]: Received disconnect from 90.145.172.213 port 51456:11: Bye Bye [preauth] Jun 22 11:37:07 zimbra sshd[18151]: Disconnected from 90.145.172.213 port 51456 [preauth] ........ ---------------------------------------	2020-06-22 20:37:07
103.145.12.176	attackbots	\[Jun 22 22:36:12\] NOTICE\[31025\] chan_sip.c: Registration from '"408" \' failed for '103.145.12.176:5977' - Wrong password \[Jun 22 22:36:12\] NOTICE\[31025\] chan_sip.c: Registration from '"408" \' failed for '103.145.12.176:5977' - Wrong password \[Jun 22 22:36:13\] NOTICE\[31025\] chan_sip.c: Registration from '"408" \' failed for '103.145.12.176:5977' - Wrong password \[Jun 22 22:36:13\] NOTICE\[31025\] chan_sip.c: Registration from '"408" \' failed for '103.145.12.176:5977' - Wrong password \[Jun 22 22:36:13\] NOTICE\[31025\] chan_sip.c: Registration from '"408" \' failed for '103.145.12.176:5977' - Wrong password \[Jun 22 22:36:13\] NOTICE\[31025\] chan_sip.c: Registration from '"408" \' failed for '103.145.12.176:5977' - Wrong password \[Jun 22 22:36:13\] NOTICE\[31025\] chan_sip.c: Registration from '"4 ...	2020-06-22 20:41:04
197.45.110.217	attackbots	Honeypot attack, port: 445, PTR: host-197.45.110.217.tedata.net.	2020-06-22 20:29:43
43.230.27.44	attackbots	Jun 22 12:01:46 ghostname-secure sshd[17441]: reveeclipse mapping checking getaddrinfo for 43-230-27-44.rev.th.secureax.com [43.230.27.44] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 22 12:01:48 ghostname-secure sshd[17441]: Failed password for invalid user postgres from 43.230.27.44 port 49050 ssh2 Jun 22 12:01:49 ghostname-secure sshd[17441]: Received disconnect from 43.230.27.44: 11: Bye Bye [preauth] Jun 22 12:05:02 ghostname-secure sshd[17493]: reveeclipse mapping checking getaddrinfo for 43-230-27-44.rev.th.secureax.com [43.230.27.44] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 22 12:05:04 ghostname-secure sshd[17493]: Failed password for invalid user zvo from 43.230.27.44 port 34454 ssh2 Jun 22 12:05:04 ghostname-secure sshd[17493]: Received disconnect from 43.230.27.44: 11: Bye Bye [preauth] Jun 22 12:06:41 ghostname-secure sshd[17501]: reveeclipse mapping checking getaddrinfo for 43-230-27-44.rev.th.secureax.com [43.230.27.44] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 22........ -------------------------------	2020-06-22 20:53:13
94.25.181.32	attackspambots	failed_logins	2020-06-22 20:53:52
51.89.142.90	attackspam	Jun 22 14:07:46 mail postfix/postscreen[10293]: DNSBL rank 4 for [51.89.142.90]:61813 ...	2020-06-22 20:47:08
5.63.162.11	attack	Repeated brute force against a port	2020-06-22 20:58:23
210.12.49.162	attack	DATE:2020-06-22 14:07:59, IP:210.12.49.162, PORT:ssh SSH brute force auth (docker-dc)	2020-06-22 20:33:00
61.161.250.202	attackbots	detected by Fail2Ban	2020-06-22 20:52:42
106.13.71.1	attackspam	Jun 22 15:25:42 pkdns2 sshd\[56125\]: Invalid user cpf from 106.13.71.1Jun 22 15:25:43 pkdns2 sshd\[56125\]: Failed password for invalid user cpf from 106.13.71.1 port 47214 ssh2Jun 22 15:29:13 pkdns2 sshd\[56246\]: Invalid user wangtao from 106.13.71.1Jun 22 15:29:15 pkdns2 sshd\[56246\]: Failed password for invalid user wangtao from 106.13.71.1 port 38700 ssh2Jun 22 15:32:55 pkdns2 sshd\[56402\]: Invalid user rp from 106.13.71.1Jun 22 15:32:57 pkdns2 sshd\[56402\]: Failed password for invalid user rp from 106.13.71.1 port 58444 ssh2 ...	2020-06-22 20:46:35

最近上报的IP列表

138.201.154.86	138.201.158.218	138.201.157.180	138.201.154.66
138.201.154.83	138.201.157.227	138.201.159.113	138.201.16.123
138.201.150.210	138.201.152.130	138.201.16.243	138.201.16.47
138.201.162.195	138.201.167.253	138.201.168.218	138.201.16.96
138.201.167.140	138.201.16.13	138.201.169.221	138.201.169.61