16.94.220.125 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 16.94.220.125
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59536
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;16.94.220.125.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025013100 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 31 21:12:19 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 125.220.94.16.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 125.220.94.16.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
104.244.74.28	attack	2020-09-20T07:27:05+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-09-20 18:07:24
222.186.175.215	attackbotsspam	SSH brutforce	2020-09-20 17:58:41
139.99.148.4	attack	139.99.148.4 - - [20/Sep/2020:09:02:17 +0200] "GET /wp-login.php HTTP/1.1" 200 8558 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [20/Sep/2020:09:02:19 +0200] "POST /wp-login.php HTTP/1.1" 200 8809 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [20/Sep/2020:09:02:20 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-20 17:34:25
188.50.200.70	attackspambots	1600534765 - 09/19/2020 18:59:25 Host: 188.50.200.70/188.50.200.70 Port: 445 TCP Blocked	2020-09-20 18:08:42
45.14.150.140	attackspam	45.14.150.140 (RO/Romania/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 20 01:43:25 server2 sshd[12632]: Failed password for root from 51.79.84.101 port 47466 ssh2 Sep 20 01:43:10 server2 sshd[12434]: Failed password for root from 149.56.132.202 port 43078 ssh2 Sep 20 01:43:15 server2 sshd[12610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.127.59 user=root Sep 20 01:43:17 server2 sshd[12610]: Failed password for root from 139.155.127.59 port 53912 ssh2 Sep 20 01:43:34 server2 sshd[12715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.140 user=root IP Addresses Blocked: 51.79.84.101 (CA/Canada/-) 149.56.132.202 (CA/Canada/-) 139.155.127.59 (CN/China/-)	2020-09-20 17:33:15
173.201.196.143	attackbots	[SatSep1918:59:32.2084472020][:error][pid3072:tid47839016244992][client173.201.196.143:28696][client173.201.196.143]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(wp-\)\?config\\\\\\\\.\(php\)\?\\\\\\\\.\(\?:bac\?k\\|o\(\?:ld\\|rig\)\\|copy\\|tmp\\|s\(\?:ave\\|wp\)\\|vim\?\\\\\\\\.\\|~\)"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1254"][id"390597"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-DataLeakage-attempttoaccessbackupsystem/applicationconfigfile\(disablethisruleonlyifyouwanttoallowanyoneaccesstothesebackupfiles\)"][severity"CRITICAL"][hostname"lacasadeitesori.com"][uri"/wp-config.php.save"][unique_id"X2Y49LJ5zn41gxH-9QEj4wAAAVM"][SatSep1918:59:38.9376942020][:error][pid2772:tid47839009941248][client173.201.196.143:29296][client173.201.196.143]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(wp-\)\?config\\\\\\\\.\(php\)\?\\\\\\\\.\(\?:bac\?k\\|o\(\?:ld\\|rig\)\\|copy\\|tmp\\|s\(\?:ave\\|wp\)\\|vim\?\\\\\\\\.\\|~\)"atREQUEST_FIL	2020-09-20 17:45:04
216.218.206.122	attackbotsspam	Found on CINS badguys / proto=17 . srcport=34439 . dstport=500 . (735)	2020-09-20 17:43:47
170.130.187.26	attackspam	Honeypot hit.	2020-09-20 17:51:57
183.234.11.43	attackbots	k+ssh-bruteforce	2020-09-20 17:42:30
217.182.68.93	attackbotsspam	(sshd) Failed SSH login from 217.182.68.93 (FR/France/93.ip-217-182-68.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 20 05:09:47 server sshd[10366]: Invalid user userftp from 217.182.68.93 port 53152 Sep 20 05:09:50 server sshd[10366]: Failed password for invalid user userftp from 217.182.68.93 port 53152 ssh2 Sep 20 05:23:02 server sshd[21133]: Invalid user system from 217.182.68.93 port 53900 Sep 20 05:23:04 server sshd[21133]: Failed password for invalid user system from 217.182.68.93 port 53900 ssh2 Sep 20 05:27:12 server sshd[25409]: Failed password for root from 217.182.68.93 port 36682 ssh2	2020-09-20 18:00:50
218.92.0.248	attackbotsspam	Sep 20 11:58:08 ip106 sshd[3683]: Failed password for root from 218.92.0.248 port 62358 ssh2 Sep 20 11:58:12 ip106 sshd[3683]: Failed password for root from 218.92.0.248 port 62358 ssh2 ...	2020-09-20 17:59:10
180.218.122.191	attack	Portscan detected	2020-09-20 17:39:09
111.231.195.159	attack	2020-09-19 14:45:25,692 fail2ban.actions [730]: NOTICE [sshd] Ban 111.231.195.159 2020-09-19 19:14:56,078 fail2ban.actions [497755]: NOTICE [sshd] Ban 111.231.195.159 2020-09-19 22:14:29,039 fail2ban.actions [596888]: NOTICE [sshd] Ban 111.231.195.159	2020-09-20 17:39:36
162.247.74.201	attackspambots	Sep 20 10:10:26 host2 sshd[446418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.74.201 user=root Sep 20 10:10:28 host2 sshd[446418]: Failed password for root from 162.247.74.201 port 51346 ssh2 Sep 20 10:10:26 host2 sshd[446418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.74.201 user=root Sep 20 10:10:28 host2 sshd[446418]: Failed password for root from 162.247.74.201 port 51346 ssh2 Sep 20 10:10:38 host2 sshd[446418]: Failed password for root from 162.247.74.201 port 51346 ssh2 ...	2020-09-20 17:37:04
217.182.252.30	attackbots	Sep 19 22:38:47 php1 sshd\[9774\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.252.30 user=root Sep 19 22:38:49 php1 sshd\[9774\]: Failed password for root from 217.182.252.30 port 52228 ssh2 Sep 19 22:45:38 php1 sshd\[10441\]: Invalid user admin9 from 217.182.252.30 Sep 19 22:45:38 php1 sshd\[10441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.252.30 Sep 19 22:45:40 php1 sshd\[10441\]: Failed password for invalid user admin9 from 217.182.252.30 port 34640 ssh2	2020-09-20 17:48:26

最近上报的IP列表

220.108.97.216	31.58.101.28	8.229.115.138	191.118.27.216
243.228.100.120	205.142.70.152	179.131.14.255	221.27.238.65
58.127.39.123	250.191.26.218	78.10.164.162	15.252.138.147
118.33.112.175	73.59.113.58	237.133.165.136	28.226.218.12
128.49.163.159	175.137.41.1	197.58.196.133	140.200.188.187