164.68.125.106

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): Contabo GmbH

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Apr 8 06:05:38 host5 sshd[3972]: Invalid user relay from 164.68.125.106 port 39366 ...	2020-04-08 13:00:10

相同子网IP讨论:

IP	类型	评论内容	时间
164.68.125.182	attack	Lines containing failures of 164.68.125.182 May 13 17:49:04 g1 sshd[22375]: Invalid user test from 164.68.125.182 port 37248 May 13 17:49:04 g1 sshd[22375]: Failed password for invalid user test from 164.68.125.182 port 37248 ssh2 May 13 17:49:04 g1 sshd[22375]: Received disconnect from 164.68.125.182 port 37248:11: Bye Bye [preauth] May 13 17:49:04 g1 sshd[22375]: Disconnected from invalid user test 164.68.125.182 port 37248 [preauth] May 13 18:02:16 g1 sshd[1119]: Invalid user imc from 164.68.125.182 port 47300 May 13 18:02:16 g1 sshd[1119]: Failed password for invalid user imc from 164.68.125.182 port 47300 ssh2 May 13 18:02:16 g1 sshd[1119]: Received disconnect from 164.68.125.182 port 47300:11: Bye Bye [preauth] May 13 18:02:16 g1 sshd[1119]: Disconnected from invalid user imc 164.68.125.182 port 47300 [preauth] May 13 18:05:59 g1 sshd[3983]: Invalid user cacti from 164.68.125.182 port 60534 May 13 18:05:59 g1 sshd[3983]: Failed password for invalid user cacti from ........ ------------------------------	2020-05-16 08:29:48
164.68.125.156	attackspam	Jan 17 19:03:17 srv01 sshd[18015]: Invalid user Cisco from 164.68.125.156 port 33424 Jan 17 19:03:17 srv01 sshd[18015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.125.156 Jan 17 19:03:17 srv01 sshd[18015]: Invalid user Cisco from 164.68.125.156 port 33424 Jan 17 19:03:19 srv01 sshd[18015]: Failed password for invalid user Cisco from 164.68.125.156 port 33424 ssh2 Jan 17 19:03:17 srv01 sshd[18015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.125.156 Jan 17 19:03:17 srv01 sshd[18015]: Invalid user Cisco from 164.68.125.156 port 33424 Jan 17 19:03:19 srv01 sshd[18015]: Failed password for invalid user Cisco from 164.68.125.156 port 33424 ssh2 ...	2020-01-18 02:09:36
164.68.125.156	attackspam	Jan 12 23:28:36 ncomp sshd[21849]: Invalid user applmgr from 164.68.125.156 Jan 12 23:28:36 ncomp sshd[21849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.125.156 Jan 12 23:28:36 ncomp sshd[21849]: Invalid user applmgr from 164.68.125.156 Jan 12 23:28:38 ncomp sshd[21849]: Failed password for invalid user applmgr from 164.68.125.156 port 53908 ssh2	2020-01-13 06:10:57

类型

评论内容

时间

164.68.125.182

attack

Lines containing failures of 164.68.125.182
May 13 17:49:04 g1 sshd[22375]: Invalid user test from 164.68.125.182 port 37248
May 13 17:49:04 g1 sshd[22375]: Failed password for invalid user test from 164.68.125.182 port 37248 ssh2
May 13 17:49:04 g1 sshd[22375]: Received disconnect from 164.68.125.182 port 37248:11: Bye Bye [preauth]
May 13 17:49:04 g1 sshd[22375]: Disconnected from invalid user test 164.68.125.182 port 37248 [preauth]
May 13 18:02:16 g1 sshd[1119]: Invalid user imc from 164.68.125.182 port 47300
May 13 18:02:16 g1 sshd[1119]: Failed password for invalid user imc from 164.68.125.182 port 47300 ssh2
May 13 18:02:16 g1 sshd[1119]: Received disconnect from 164.68.125.182 port 47300:11: Bye Bye [preauth]
May 13 18:02:16 g1 sshd[1119]: Disconnected from invalid user imc 164.68.125.182 port 47300 [preauth]
May 13 18:05:59 g1 sshd[3983]: Invalid user cacti from 164.68.125.182 port 60534
May 13 18:05:59 g1 sshd[3983]: Failed password for invalid user cacti from ........
------------------------------

2020-05-16 08:29:48

164.68.125.156

attackspam

Jan 17 19:03:17 srv01 sshd[18015]: Invalid user Cisco from 164.68.125.156 port 33424
Jan 17 19:03:17 srv01 sshd[18015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.125.156
Jan 17 19:03:17 srv01 sshd[18015]: Invalid user Cisco from 164.68.125.156 port 33424
Jan 17 19:03:19 srv01 sshd[18015]: Failed password for invalid user Cisco from 164.68.125.156 port 33424 ssh2
Jan 17 19:03:17 srv01 sshd[18015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.125.156
Jan 17 19:03:17 srv01 sshd[18015]: Invalid user Cisco from 164.68.125.156 port 33424
Jan 17 19:03:19 srv01 sshd[18015]: Failed password for invalid user Cisco from 164.68.125.156 port 33424 ssh2
...

2020-01-18 02:09:36

164.68.125.156

attackspam

Jan 12 23:28:36 ncomp sshd[21849]: Invalid user applmgr from 164.68.125.156
Jan 12 23:28:36 ncomp sshd[21849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.125.156
Jan 12 23:28:36 ncomp sshd[21849]: Invalid user applmgr from 164.68.125.156
Jan 12 23:28:38 ncomp sshd[21849]: Failed password for invalid user applmgr from 164.68.125.156 port 53908 ssh2

2020-01-13 06:10:57

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.68.125.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42028
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;164.68.125.106.			IN	A

;; AUTHORITY SECTION:
.			554	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040702 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 08 13:00:05 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

106.125.68.164.in-addr.arpa domain name pointer vmi272976.contaboserver.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
106.125.68.164.in-addr.arpa	name = vmi272976.contaboserver.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.65.245.227	attackspam	firewall-block, port(s): 445/tcp, 1433/tcp	2020-07-01 15:51:24
49.233.90.108	attack	2020-06-30T10:36:36.153600mail.csmailer.org sshd[12394]: Invalid user postgres from 49.233.90.108 port 50144 2020-06-30T10:36:36.157212mail.csmailer.org sshd[12394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.90.108 2020-06-30T10:36:36.153600mail.csmailer.org sshd[12394]: Invalid user postgres from 49.233.90.108 port 50144 2020-06-30T10:36:38.065415mail.csmailer.org sshd[12394]: Failed password for invalid user postgres from 49.233.90.108 port 50144 ssh2 2020-06-30T10:40:25.916614mail.csmailer.org sshd[13376]: Invalid user gerrit from 49.233.90.108 port 36748 ...	2020-07-01 15:39:43
162.62.16.15	attackbots	unauthorized connection attempt	2020-07-01 15:27:45
43.243.214.20	attackspambots	TCP (SYN) 43.243.214.20:35909 -> port 8080, len 44	2020-07-01 15:40:45
223.75.105.214	attackspambots	Unauthorized connection attempt detected from IP address 223.75.105.214 to port 23	2020-07-01 15:45:28
139.180.224.122	attack	Automatic report - Banned IP Access	2020-07-01 15:45:01
117.6.247.166	attackbotsspam	unauthorized connection attempt	2020-07-01 15:28:41
204.48.16.150	attackspambots	"Found User-Agent associated with security scanner - Matched Data: masscan found within REQUEST_HEADERS:User-Agent: masscan/1.0 (hs://github.com/robertdavidgraham/masscan)"	2020-07-01 16:14:30
114.25.18.87	attackspambots	TCP (SYN) 114.25.18.87:63730 -> port 23, len 44	2020-07-01 15:52:17
49.233.212.154	attackspambots	$f2bV_matches	2020-07-01 15:57:25
36.237.9.52	attack	unauthorized connection attempt	2020-07-01 15:50:31
115.75.131.203	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-07-01 15:51:58
78.26.180.129	attack	TCP (SYN) 78.26.180.129:11926 -> port 8080, len 40	2020-07-01 15:46:33
197.14.49.131	attack	IP 197.14.49.131 attacked honeypot on port: 23 at 6/30/2020 10:36:53 AM	2020-07-01 15:54:26
64.53.101.72	attackbots	Automatic report - Banned IP Access	2020-07-01 15:25:01

最近上报的IP列表

190.159.119.55	112.97.251.179	62.196.196.248	41.236.89.20
73.197.63.248	141.103.235.136	10.139.134.111	187.162.109.229
107.141.108.37	176.107.131.9	204.96.24.216	144.45.69.231
121.87.191.24	70.55.252.69	148.37.165.247	225.59.106.14
27.119.91.60	206.80.236.101	212.42.116.68	25.241.46.137