162.142.125.41

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Censys Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Oct 9 23:44:33 baraca inetd[34221]: refused connection from scanner-04.ch1.censys-scanner.com, service sshd (tcp) Oct 9 23:44:35 baraca inetd[34222]: refused connection from scanner-04.ch1.censys-scanner.com, service sshd (tcp) Oct 9 23:44:36 baraca inetd[34225]: refused connection from scanner-04.ch1.censys-scanner.com, service sshd (tcp) ...	2020-10-11 04:04:38
attack	Oct 9 23:44:33 baraca inetd[34221]: refused connection from scanner-04.ch1.censys-scanner.com, service sshd (tcp) Oct 9 23:44:35 baraca inetd[34222]: refused connection from scanner-04.ch1.censys-scanner.com, service sshd (tcp) Oct 9 23:44:36 baraca inetd[34225]: refused connection from scanner-04.ch1.censys-scanner.com, service sshd (tcp) ...	2020-10-10 20:00:20
attack	Fail2Ban Ban Triggered	2020-08-31 15:14:52
attackbots	Aug 22 23:32:47 baraca inetd[9881]: refused connection from scanner-05.ch1.censys-scanner.com, service sshd (tcp) Aug 22 23:32:48 baraca inetd[9882]: refused connection from scanner-05.ch1.censys-scanner.com, service sshd (tcp) Aug 22 23:32:49 baraca inetd[9883]: refused connection from scanner-05.ch1.censys-scanner.com, service sshd (tcp) ...	2020-08-23 06:10:08
attackspambots	Hit honeypot r.	2020-08-21 17:22:57

相同子网IP讨论:

IP	类型	评论内容	时间
162.142.125.86	botsattack	Bad IP	2025-03-06 19:09:23
162.142.125.197	attackproxy	Fraud connect	2024-09-05 12:48:39
162.142.125.12	proxy	Scan	2023-06-05 16:37:12
162.142.125.11	proxy	VPN fraud	2023-06-05 12:59:49
162.142.125.223	proxy	VPN fraud	2023-05-31 21:46:50
162.142.125.225	proxy	VPN fraud	2023-05-29 12:47:59
162.142.125.84	proxy	VPN scan	2023-05-22 12:51:31
162.142.125.224	proxy	VPN fraud	2023-05-18 12:47:47
162.142.125.89	proxy	VPN f	2023-05-13 12:57:08
162.142.125.217	proxy	VPN fraud	2023-05-13 12:54:50
162.142.125.14	proxy	VPN fraud	2023-05-12 14:21:18
162.142.125.214	proxy	VPN fraud	2023-03-31 12:54:37
162.142.125.87	proxy	VPN fraud	2023-03-29 12:58:45
162.142.125.13	proxy	VPN fraud	2023-03-29 12:56:42
162.142.125.10	attack	DANGER DUDE ATTACK	2022-02-18 10:02:36

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.142.125.41
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22956
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.142.125.41.			IN	A

;; AUTHORITY SECTION:
.			411	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082001 1800 900 604800 86400

;; Query time: 28 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Aug 21 17:22:47 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

41.125.142.162.in-addr.arpa domain name pointer scanner-05.ch1.censys-scanner.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
41.125.142.162.in-addr.arpa	name = scanner-05.ch1.censys-scanner.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.176.27.174	attackbots	09/29/2019-22:52:28.221904 185.176.27.174 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-09-30 05:28:38
123.130.206.201	attackbots	2323/tcp 23/tcp [2019-09-24/29]2pkt	2019-09-30 05:24:31
85.192.35.167	attackbots	Repeated brute force against a port	2019-09-30 05:16:05
27.8.70.104	attackbots	Unauthorised access (Sep 29) SRC=27.8.70.104 LEN=40 TTL=49 ID=33160 TCP DPT=23 WINDOW=48412 SYN	2019-09-30 05:29:00
77.247.110.199	attack	VoIP Brute Force - 77.247.110.199 - Auto Report ...	2019-09-30 05:30:01
222.186.175.169	attackspambots	Sep 29 23:06:20 MK-Soft-Root1 sshd[5622]: Failed password for root from 222.186.175.169 port 37816 ssh2 Sep 29 23:06:25 MK-Soft-Root1 sshd[5622]: Failed password for root from 222.186.175.169 port 37816 ssh2 ...	2019-09-30 05:10:16
5.54.217.217	attackbots	Telnet Server BruteForce Attack	2019-09-30 05:11:16
69.167.210.114	attackspam	Sep 29 23:03:26 eventyay sshd[29972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.167.210.114 Sep 29 23:03:28 eventyay sshd[29972]: Failed password for invalid user zr from 69.167.210.114 port 57678 ssh2 Sep 29 23:08:44 eventyay sshd[30107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.167.210.114 ...	2019-09-30 05:17:15
106.75.21.242	attackspam	2019-09-29T23:52:09.696729tmaserv sshd\[31728\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.21.242 2019-09-29T23:52:11.346258tmaserv sshd\[31728\]: Failed password for invalid user 1234 from 106.75.21.242 port 49952 ssh2 2019-09-30T00:04:54.101571tmaserv sshd\[32322\]: Invalid user qm@123 from 106.75.21.242 port 50592 2019-09-30T00:04:54.106088tmaserv sshd\[32322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.21.242 2019-09-30T00:04:55.444226tmaserv sshd\[32322\]: Failed password for invalid user qm@123 from 106.75.21.242 port 50592 ssh2 2019-09-30T00:08:27.191655tmaserv sshd\[32553\]: Invalid user sixaola from 106.75.21.242 port 50756 ...	2019-09-30 05:24:00
171.36.204.44	attackbots	22/tcp 22/tcp [2019-09-27/28]2pkt	2019-09-30 05:20:50
81.171.56.142	attack	Sep 30 06:52:56 luisaranguren wordpress(life.luisaranguren.com)[1775276]: Authentication attempt for unknown user admin from 81.171.56.142 ...	2019-09-30 05:07:52
159.89.231.172	attack	09/29/2019-16:57:22.597684 159.89.231.172 Protocol: 6 ET COMPROMISED Known Compromised or Hostile Host Traffic group 12	2019-09-30 05:19:29
134.175.141.166	attackspam	Sep 29 10:46:27 php1 sshd\[27908\]: Invalid user ginnie from 134.175.141.166 Sep 29 10:46:27 php1 sshd\[27908\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.141.166 Sep 29 10:46:29 php1 sshd\[27908\]: Failed password for invalid user ginnie from 134.175.141.166 port 56177 ssh2 Sep 29 10:52:55 php1 sshd\[28617\]: Invalid user carry from 134.175.141.166 Sep 29 10:52:55 php1 sshd\[28617\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.141.166	2019-09-30 05:09:23
41.45.57.39	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/41.45.57.39/ EG - 1H : (72) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : EG NAME ASN : ASN8452 IP : 41.45.57.39 CIDR : 41.45.32.0/19 PREFIX COUNT : 833 UNIQUE IP COUNT : 7610368 WYKRYTE ATAKI Z ASN8452 : 1H - 4 3H - 9 6H - 19 12H - 30 24H - 54 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-09-30 05:38:10
95.67.220.32	attackspam	1588/tcp 8080/tcp [2019-09-27]2pkt	2019-09-30 05:15:51

最近上报的IP列表

83.38.133.211	17.85.109.229	103.101.225.244	170.254.3.194
171.241.69.227	199.35.155.196	206.189.184.16	65.185.153.162
114.97.143.181	182.53.6.90	60.114.238.87	59.33.4.185
169.146.38.225	67.255.202.37	122.245.90.125	211.93.109.84
23.216.215.180	5.9.105.38	195.123.195.243	171.7.65.2