162.142.125.16

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Censys Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	firewall-block, port(s): 5984/tcp	2020-10-08 07:02:19
attackspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-10-07 15:31:28
attack	TCP (SYN) 162.142.125.16:19845 -> port 143, len 44	2020-10-04 07:22:48
attack	" "	2020-10-03 23:37:54
attack	Fail2Ban Ban Triggered	2020-10-03 15:21:31
attackspambots	TCP (SYN) 162.142.125.16:24639 -> port 8090, len 44	2020-09-18 22:37:27
attack	" "	2020-09-18 14:52:14
attack	firewall-block, port(s): 8088/tcp	2020-09-18 05:08:59
attack	TCP (SYN) 162.142.125.16:10334 -> port 5672, len 44	2020-09-17 23:11:08
attackspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-09-17 15:17:01
attackspam	ET DROP Dshield Block Listed Source group 1 - port: 5900 proto: tcp cat: Misc Attackbytes: 60	2020-09-17 06:25:31
attackbots	81/tcp 1911/tcp 1433/tcp... [2020-08-21/09-06]103pkt,52pt.(tcp),4pt.(udp)	2020-09-06 21:36:14
attackspambots	TCP (SYN) 162.142.125.16:22400 -> port 11211, len 44	2020-09-06 13:10:47
attack	TCP (SYN) 162.142.125.16:50074 -> port 443, len 44	2020-09-06 05:28:00
attackspam	TCP (SYN) 162.142.125.16:23452 -> port 5432, len 44	2020-08-27 07:01:13

相同子网IP讨论:

IP	类型	评论内容	时间
162.142.125.86	botsattack	Bad IP	2025-03-06 19:09:23
162.142.125.197	attackproxy	Fraud connect	2024-09-05 12:48:39
162.142.125.12	proxy	Scan	2023-06-05 16:37:12
162.142.125.11	proxy	VPN fraud	2023-06-05 12:59:49
162.142.125.223	proxy	VPN fraud	2023-05-31 21:46:50
162.142.125.225	proxy	VPN fraud	2023-05-29 12:47:59
162.142.125.84	proxy	VPN scan	2023-05-22 12:51:31
162.142.125.224	proxy	VPN fraud	2023-05-18 12:47:47
162.142.125.89	proxy	VPN f	2023-05-13 12:57:08
162.142.125.217	proxy	VPN fraud	2023-05-13 12:54:50
162.142.125.14	proxy	VPN fraud	2023-05-12 14:21:18
162.142.125.214	proxy	VPN fraud	2023-03-31 12:54:37
162.142.125.87	proxy	VPN fraud	2023-03-29 12:58:45
162.142.125.13	proxy	VPN fraud	2023-03-29 12:56:42
162.142.125.10	attack	DANGER DUDE ATTACK	2022-02-18 10:02:36

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.142.125.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44299
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.142.125.16.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082602 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Aug 27 07:01:09 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

16.125.142.162.in-addr.arpa domain name pointer scanner-01.ch1.censys-scanner.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
16.125.142.162.in-addr.arpa	name = scanner-01.ch1.censys-scanner.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
54.39.145.59	attackbotsspam	Aug 23 07:50:59 hanapaa sshd\[13771\]: Invalid user tec from 54.39.145.59 Aug 23 07:50:59 hanapaa sshd\[13771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.ip-54-39-145.net Aug 23 07:51:01 hanapaa sshd\[13771\]: Failed password for invalid user tec from 54.39.145.59 port 37188 ssh2 Aug 23 07:54:56 hanapaa sshd\[14145\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.ip-54-39-145.net user=root Aug 23 07:54:58 hanapaa sshd\[14145\]: Failed password for root from 54.39.145.59 port 54142 ssh2	2019-08-24 01:59:58
116.6.56.218	attackspam	30301/udp 8000/udp 30301/udp [2019-08-21/22]3pkt	2019-08-24 01:58:11
52.42.7.30	attackbotsspam	52.42.7.30 - - [23/Aug/2019:19:15:38 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.42.7.30 - - [23/Aug/2019:19:15:38 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.42.7.30 - - [23/Aug/2019:19:15:38 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.42.7.30 - - [23/Aug/2019:19:15:39 +0200] "POST /wp-login.php HTTP/1.1" 200 1486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.42.7.30 - - [23/Aug/2019:19:15:39 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.42.7.30 - - [23/Aug/2019:19:15:40 +0200] "POST /wp-login.php HTTP/1.1" 200 1486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-08-24 02:08:48
195.178.209.23	attackspambots	SSH Brute Force, server-1 sshd[1349]: Failed password for invalid user uftp from 195.178.209.23 port 50089 ssh2	2019-08-24 02:16:44
106.12.185.189	attack	Aug 23 18:09:59 mail sshd\[9403\]: Failed password for invalid user petru from 106.12.185.189 port 44762 ssh2 Aug 23 18:25:05 mail sshd\[9668\]: Invalid user bear from 106.12.185.189 port 60418 ...	2019-08-24 01:38:33
103.53.172.106	attack	2019-08-23T19:27:32.455186 sshd[17035]: Invalid user smtp from 103.53.172.106 port 57039 2019-08-23T19:27:32.468996 sshd[17035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.53.172.106 2019-08-23T19:27:32.455186 sshd[17035]: Invalid user smtp from 103.53.172.106 port 57039 2019-08-23T19:27:34.406554 sshd[17035]: Failed password for invalid user smtp from 103.53.172.106 port 57039 ssh2 2019-08-23T19:32:28.495757 sshd[17133]: Invalid user nadege from 103.53.172.106 port 51435 ...	2019-08-24 01:35:45
120.14.164.80	attackbots	Unauthorised access (Aug 23) SRC=120.14.164.80 LEN=40 TTL=114 ID=38523 TCP DPT=8080 WINDOW=64824 SYN Unauthorised access (Aug 23) SRC=120.14.164.80 LEN=40 TTL=114 ID=7803 TCP DPT=8080 WINDOW=64824 SYN Unauthorised access (Aug 23) SRC=120.14.164.80 LEN=40 TTL=114 ID=5273 TCP DPT=8080 WINDOW=4622 SYN Unauthorised access (Aug 23) SRC=120.14.164.80 LEN=40 TTL=114 ID=40874 TCP DPT=8080 WINDOW=4622 SYN Unauthorised access (Aug 23) SRC=120.14.164.80 LEN=40 TTL=114 ID=14762 TCP DPT=8080 WINDOW=64824 SYN	2019-08-24 01:53:11
139.59.3.151	attackspambots	Aug 23 07:50:44 php1 sshd\[1897\]: Invalid user marcia from 139.59.3.151 Aug 23 07:50:44 php1 sshd\[1897\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.3.151 Aug 23 07:50:45 php1 sshd\[1897\]: Failed password for invalid user marcia from 139.59.3.151 port 36506 ssh2 Aug 23 07:55:22 php1 sshd\[2275\]: Invalid user p@ssword from 139.59.3.151 Aug 23 07:55:22 php1 sshd\[2275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.3.151	2019-08-24 02:02:35
51.254.222.6	attackbots	Aug 23 08:04:55 lcprod sshd\[26395\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=6.ip-51-254-222.eu user=proxy Aug 23 08:04:57 lcprod sshd\[26395\]: Failed password for proxy from 51.254.222.6 port 46231 ssh2 Aug 23 08:08:52 lcprod sshd\[26723\]: Invalid user ftp from 51.254.222.6 Aug 23 08:08:52 lcprod sshd\[26723\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=6.ip-51-254-222.eu Aug 23 08:08:54 lcprod sshd\[26723\]: Failed password for invalid user ftp from 51.254.222.6 port 40325 ssh2	2019-08-24 02:13:04
106.12.215.130	attackspambots	Aug 23 18:21:25 mout sshd[18069]: Invalid user server from 106.12.215.130 port 38896	2019-08-24 02:25:00
200.199.69.75	attack	Aug 23 17:27:33 web8 sshd\[16602\]: Invalid user mcserver from 200.199.69.75 Aug 23 17:27:33 web8 sshd\[16602\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.199.69.75 Aug 23 17:27:36 web8 sshd\[16602\]: Failed password for invalid user mcserver from 200.199.69.75 port 20809 ssh2 Aug 23 17:32:30 web8 sshd\[19147\]: Invalid user porno from 200.199.69.75 Aug 23 17:32:30 web8 sshd\[19147\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.199.69.75	2019-08-24 01:49:00
137.116.193.70	attackspambots	SSH Brute Force, server-1 sshd[1094]: Failed password for root from 137.116.193.70 port 45248 ssh2	2019-08-24 02:23:25
139.99.107.166	attackspam	Aug 23 18:40:28 SilenceServices sshd[31065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.107.166 Aug 23 18:40:29 SilenceServices sshd[31065]: Failed password for invalid user austin from 139.99.107.166 port 58326 ssh2 Aug 23 18:45:09 SilenceServices sshd[3075]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.107.166	2019-08-24 02:04:41
181.170.1.89	attack	Aug 23 07:39:20 kapalua sshd\[15378\]: Invalid user motahar from 181.170.1.89 Aug 23 07:39:20 kapalua sshd\[15378\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.170.1.89 Aug 23 07:39:22 kapalua sshd\[15378\]: Failed password for invalid user motahar from 181.170.1.89 port 52032 ssh2 Aug 23 07:44:46 kapalua sshd\[15871\]: Invalid user hauptinhaltsverzeichnis from 181.170.1.89 Aug 23 07:44:46 kapalua sshd\[15871\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.170.1.89	2019-08-24 01:55:13
202.166.217.117	attackbotsspam	Brute force SMTP login attempts.	2019-08-24 02:04:09

最近上报的IP列表

45.136.7.185	177.220.174.42	77.247.178.140	36.33.151.108
202.44.196.3	37.90.128.59	153.247.83.78	202.84.32.203
204.198.33.94	1.147.118.161	45.29.97.132	205.50.84.91
82.168.127.31	196.198.199.98	191.149.113.215	39.142.125.54
132.98.241.107	163.184.101.146	228.45.48.229	68.215.142.1