162.142.125.9 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Censys Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	firewall-block, port(s): 1433/tcp	2020-08-30 13:43:52

相同子网IP讨论:

IP	类型	评论内容	时间
162.142.125.86	botsattack	Bad IP	2025-03-06 19:09:23
162.142.125.197	attackproxy	Fraud connect	2024-09-05 12:48:39
162.142.125.12	proxy	Scan	2023-06-05 16:37:12
162.142.125.11	proxy	VPN fraud	2023-06-05 12:59:49
162.142.125.223	proxy	VPN fraud	2023-05-31 21:46:50
162.142.125.225	proxy	VPN fraud	2023-05-29 12:47:59
162.142.125.84	proxy	VPN scan	2023-05-22 12:51:31
162.142.125.224	proxy	VPN fraud	2023-05-18 12:47:47
162.142.125.89	proxy	VPN f	2023-05-13 12:57:08
162.142.125.217	proxy	VPN fraud	2023-05-13 12:54:50
162.142.125.14	proxy	VPN fraud	2023-05-12 14:21:18
162.142.125.214	proxy	VPN fraud	2023-03-31 12:54:37
162.142.125.87	proxy	VPN fraud	2023-03-29 12:58:45
162.142.125.13	proxy	VPN fraud	2023-03-29 12:56:42
162.142.125.10	attack	DANGER DUDE ATTACK	2022-02-18 10:02:36

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.142.125.9
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34350
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.142.125.9.			IN	A

;; AUTHORITY SECTION:
.			290	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082901 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Aug 30 13:43:47 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

9.125.142.162.in-addr.arpa domain name pointer scanner-01.ch1.censys-scanner.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
9.125.142.162.in-addr.arpa	name = scanner-01.ch1.censys-scanner.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
190.133.98.42	attackbots	Automatic report - Port Scan Attack	2020-03-17 11:39:32
118.25.3.220	attackspambots	Mar 17 01:16:06 srv-ubuntu-dev3 sshd[36570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.3.220 user=root Mar 17 01:16:08 srv-ubuntu-dev3 sshd[36570]: Failed password for root from 118.25.3.220 port 58184 ssh2 Mar 17 01:18:18 srv-ubuntu-dev3 sshd[36931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.3.220 user=root Mar 17 01:18:21 srv-ubuntu-dev3 sshd[36931]: Failed password for root from 118.25.3.220 port 38172 ssh2 Mar 17 01:20:37 srv-ubuntu-dev3 sshd[37294]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.3.220 user=root Mar 17 01:20:39 srv-ubuntu-dev3 sshd[37294]: Failed password for root from 118.25.3.220 port 46390 ssh2 Mar 17 01:22:56 srv-ubuntu-dev3 sshd[37747]: Invalid user st from 118.25.3.220 Mar 17 01:22:56 srv-ubuntu-dev3 sshd[37747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.2 ...	2020-03-17 12:08:12
54.38.242.164	attackspam	[TueMar1700:33:44.1408382020][:error][pid28280:tid47485661804288][client54.38.242.164:41360][client54.38.242.164]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|boot\\\\\\\\.ini\\|web.config\)\\\\\\\\b\\|$\\|\^\\|\\\\\\\\.\\\\\\\\.$/etc/\\|/\\\\\\\\.$\?:history\\|bash_history\\|sh_history\\|env$\$\)"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"211"][id"390709"][rev"30"][msg"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely"][data"/.env"][severity"CRITICAL"][hostname"fit-easy.com"][uri"/.env"][unique_id"XnAM2DznIPW7lSPm5YLbdgAAAM8"][TueMar1700:33:45.0075242020][:error][pid28454:tid47485672310528][client54.38.242.164:41492][client54.38.242.164]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|bo	2020-03-17 11:40:06
111.231.103.192	attackspambots	Mar 17 05:34:03 hosting sshd[6484]: Invalid user tongxin from 111.231.103.192 port 51266 ...	2020-03-17 11:58:15
185.180.91.252	attackbots	Automatic report - Port Scan Attack	2020-03-17 11:31:44
186.210.158.183	attack	Unauthorized connection attempt from IP address 186.210.158.183 on Port 445(SMB)	2020-03-17 12:00:50
116.100.115.228	attackspambots	Automatic report - Port Scan Attack	2020-03-17 11:30:17
106.12.184.233	attackbotsspam	Mar 17 04:33:56 hosting sshd[31239]: Invalid user steam from 106.12.184.233 port 50422 Mar 17 04:33:56 hosting sshd[31239]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.184.233 Mar 17 04:33:56 hosting sshd[31239]: Invalid user steam from 106.12.184.233 port 50422 Mar 17 04:33:58 hosting sshd[31239]: Failed password for invalid user steam from 106.12.184.233 port 50422 ssh2 Mar 17 04:47:40 hosting sshd[32586]: Invalid user xuyz from 106.12.184.233 port 51628 ...	2020-03-17 11:50:43
178.33.252.96	attackspam	Brute force attack against VPN service	2020-03-17 11:52:00
193.112.19.133	attackspam	Mar 17 00:26:49 santamaria sshd\[13180\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.19.133 user=root Mar 17 00:26:51 santamaria sshd\[13180\]: Failed password for root from 193.112.19.133 port 33780 ssh2 Mar 17 00:34:04 santamaria sshd\[13304\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.19.133 user=root ...	2020-03-17 11:27:57
121.58.212.89	attackbots	Mar 17 04:23:46 [munged] sshd[20587]: Failed password for root from 121.58.212.89 port 55387 ssh2	2020-03-17 11:29:06
91.121.16.153	attackbotsspam	Mar 16 20:05:40 lanister sshd[28036]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.16.153 user=root Mar 16 20:05:41 lanister sshd[28036]: Failed password for root from 91.121.16.153 port 42905 ssh2 Mar 16 20:16:42 lanister sshd[28246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.16.153 user=root Mar 16 20:16:44 lanister sshd[28246]: Failed password for root from 91.121.16.153 port 40935 ssh2	2020-03-17 11:38:04
61.175.121.76	attack	This client attempted to login to an administrator account on a Website, or abused from another resource.	2020-03-17 11:41:34
45.5.0.7	attackspam	Scanned 3 times in the last 24 hours on port 22	2020-03-17 11:36:43
194.193.164.163	attackbots	Unauthorised access (Mar 17) SRC=194.193.164.163 LEN=44 TTL=49 ID=20225 TCP DPT=8080 WINDOW=64824 SYN	2020-03-17 11:37:34

最近上报的IP列表

161.117.50.179	188.166.48.124	122.160.33.201	203.238.39.115
192.241.205.86	54.221.210.216	49.205.176.246	117.34.109.166
103.217.253.125	154.8.172.35	211.93.21.211	190.98.54.66
205.217.246.233	167.172.252.73	80.240.129.245	187.188.14.182
51.83.33.58	51.210.110.128	45.40.58.195	5.11.172.58