必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Austria

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.164.70.125
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43238
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;192.164.70.125.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012100 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 21 23:10:46 CST 2025
;; MSG SIZE  rcvd: 107
HOST信息:
125.70.164.192.in-addr.arpa domain name pointer 192-164-70-125.adsl.highway.telekom.at.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
125.70.164.192.in-addr.arpa	name = 192-164-70-125.adsl.highway.telekom.at.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
193.31.24.77 attackspambots
193.31.24.77 - - [29/Aug/2020:18:30:06 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
193.31.24.77 - - [29/Aug/2020:18:30:06 +0200] "POST /wp-login.php HTTP/1.1" 200 1811 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
193.31.24.77 - - [29/Aug/2020:18:30:06 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
193.31.24.77 - - [29/Aug/2020:18:30:06 +0200] "POST /wp-login.php HTTP/1.1" 200 1790 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
193.31.24.77 - - [29/Aug/2020:18:30:06 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
193.31.24.77 - - [29/Aug/2020:18:30:06 +0200] "POST /wp-login.php HTTP/1.1" 200 1790 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/6
...
2020-08-30 01:43:48
192.241.229.55 attackbotsspam
"Found User-Agent associated with security scanner - Matched Data: zgrab found within REQUEST_HEADERS:User-Agent: mozilla/5.0 zgrab/0.x"
2020-08-30 01:32:15
103.39.216.123 attack
SSH brute force attempt
2020-08-30 01:41:01
139.59.40.233 attack
139.59.40.233 - - [29/Aug/2020:16:39:51 +0200] "GET /wp-login.php HTTP/1.1" 200 8537 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.40.233 - - [29/Aug/2020:16:39:54 +0200] "POST /wp-login.php HTTP/1.1" 200 8788 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.40.233 - - [29/Aug/2020:16:39:56 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-08-30 01:20:37
141.85.216.231 attackspambots
141.85.216.231 - - [29/Aug/2020:16:48:54 +0100] "POST /wp-login.php HTTP/1.1" 200 2213 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
141.85.216.231 - - [29/Aug/2020:16:48:55 +0100] "POST /wp-login.php HTTP/1.1" 200 2234 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
141.85.216.231 - - [29/Aug/2020:16:48:56 +0100] "POST /wp-login.php HTTP/1.1" 200 2233 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-08-30 01:34:48
51.254.129.170 attack
Aug 29 05:55:51 dignus sshd[7447]: Failed password for invalid user pokemon from 51.254.129.170 port 52918 ssh2
Aug 29 05:59:44 dignus sshd[7953]: Invalid user dave from 51.254.129.170 port 34276
Aug 29 05:59:44 dignus sshd[7953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.129.170
Aug 29 05:59:46 dignus sshd[7953]: Failed password for invalid user dave from 51.254.129.170 port 34276 ssh2
Aug 29 06:03:40 dignus sshd[8577]: Invalid user knight from 51.254.129.170 port 43878
...
2020-08-30 01:54:25
51.91.158.178 attack
Port scan denied
2020-08-30 01:23:14
112.85.42.238 attack
Aug 29 17:16:50 jumpserver sshd[88393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.238  user=root
Aug 29 17:16:51 jumpserver sshd[88393]: Failed password for root from 112.85.42.238 port 47544 ssh2
Aug 29 17:16:54 jumpserver sshd[88393]: Failed password for root from 112.85.42.238 port 47544 ssh2
...
2020-08-30 01:19:13
124.156.64.88 attackbotsspam
Port Scan/VNC login attempt
...
2020-08-30 01:58:00
49.235.73.19 attack
Aug 29 15:06:21 minden010 sshd[31186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.73.19
Aug 29 15:06:23 minden010 sshd[31186]: Failed password for invalid user jabber from 49.235.73.19 port 29925 ssh2
Aug 29 15:08:29 minden010 sshd[31886]: Failed password for root from 49.235.73.19 port 52533 ssh2
...
2020-08-30 01:46:35
114.119.163.4 attack
[Sat Aug 29 19:06:48.719056 2020] [:error] [pid 14205:tid 139817367504640] [client 114.119.163.4:2970] [client 114.119.163.4] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/agroklimatologi/kalender-tanam/1528-kalender-tanam-katam-terpadu-pulau-jawa/kalender-tanam-katam-terpadu-provinsi-jawa-timur/kalender-tanam-katam-terpadu-kabupaten-tranggalek"] [unique_id "X0pE2Mn7VYhmitREAl4agwAAARA"]
...
2020-08-30 01:29:40
222.186.30.76 attack
Aug 29 22:41:30 gw1 sshd[5983]: Failed password for root from 222.186.30.76 port 51276 ssh2
...
2020-08-30 01:42:23
23.97.180.45 attackbots
Aug 29 15:40:29 electroncash sshd[56805]: Failed password for root from 23.97.180.45 port 39361 ssh2
Aug 29 15:44:38 electroncash sshd[57856]: Invalid user toby from 23.97.180.45 port 43104
Aug 29 15:44:38 electroncash sshd[57856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.97.180.45 
Aug 29 15:44:38 electroncash sshd[57856]: Invalid user toby from 23.97.180.45 port 43104
Aug 29 15:44:40 electroncash sshd[57856]: Failed password for invalid user toby from 23.97.180.45 port 43104 ssh2
...
2020-08-30 01:43:26
206.189.132.8 attackspambots
2020-08-29T07:06:48.921075linuxbox-skyline sshd[22344]: Invalid user ftpuser from 206.189.132.8 port 43160
...
2020-08-30 01:45:12
156.204.188.215 attackspambots
Port probing on unauthorized port 5501
2020-08-30 01:28:04

最近上报的IP列表

73.25.112.228 54.29.187.31 171.161.133.130 97.208.179.106
79.195.2.52 202.183.217.42 104.163.199.151 188.36.18.58
95.192.202.13 17.6.181.13 236.241.47.147 104.229.77.178
40.79.150.22 167.166.226.138 35.77.74.220 253.147.139.185
71.74.238.104 66.241.55.33 238.79.38.48 26.233.143.110