必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): Kaunas

省份(region): Kaunas

国家(country): Republic of Lithuania

运营商(isp): Tele Asia Limited

主机名(hostname): unknown

机构(organization): Tele Asia Limited

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attackspam
Rude login attack (7 tries in 1d)
2019-09-27 08:09:16
相同子网IP讨论:
IP 类型 评论内容 时间
45.125.66.22 attackbots
(ftpd) Failed FTP login from 45.125.66.22 (LT/Republic of Lithuania/-): 5 in the last 3600 secs; Ports: 20,21; Direction: in; Trigger: LF_FTPD; Logs: Oct 14 01:10:24 hostingremote proftpd[702140]: 0.0.0.0 (45.125.66.22[45.125.66.22]) - USER akttrading (Login failed): Incorrect password
Oct 14 01:10:25 hostingremote proftpd[702141]: 0.0.0.0 (45.125.66.22[45.125.66.22]) - USER akttrading.com: no such user found from 45.125.66.22 [45.125.66.22] to 88.99.147.18:21
Oct 14 01:10:25 hostingremote proftpd[702142]: 0.0.0.0 (45.125.66.22[45.125.66.22]) - USER admin@akttrading.com: no such user found from 45.125.66.22 [45.125.66.22] to 88.99.147.18:21
Oct 14 01:10:25 hostingremote proftpd[702144]: 0.0.0.0 (45.125.66.22[45.125.66.22]) - USER akttrading@akttrading.com: no such user found from 45.125.66.22 [45.125.66.22] to 88.99.147.18:21
Oct 14 01:10:25 hostingremote proftpd[702145]: 0.0.0.0 (45.125.66.22[45.125.66.22]) - USER akttradi: no such user found from 45.125.66.22 [45.125.66.22] to 88.99.147.18:21
2020-10-14 03:56:58
45.125.66.22 attackspambots
proto=tcp  .  spt=61669  .  dpt=110  .  src=45.125.66.22  .  dst=xx.xx.4.1  .       Found on   Github Combined on 3 lists      (58)
2020-10-13 19:17:53
45.125.66.21 attackspambots
Tried our host z.
2020-09-28 02:06:03
45.125.66.21 attackbots
Tried our host z.
2020-09-27 18:10:29
45.125.66.137 attackspambots
lfd: (smtpauth) Failed SMTP AUTH login from 45.125.66.137 (mex.creativityconsultation.com): 5 in the last 3600 secs - Wed Aug 29 11:51:07 2018
2020-09-26 08:00:09
45.125.66.137 attackbots
lfd: (smtpauth) Failed SMTP AUTH login from 45.125.66.137 (mex.creativityconsultation.com): 5 in the last 3600 secs - Wed Aug 29 11:51:07 2018
2020-09-26 01:15:10
45.125.66.137 attackspambots
lfd: (smtpauth) Failed SMTP AUTH login from 45.125.66.137 (mex.creativityconsultation.com): 5 in the last 3600 secs - Wed Aug 29 11:51:07 2018
2020-09-25 16:52:35
45.125.66.26 attackbotsspam
Firewall Dropped Connection
2020-08-26 02:29:25
45.125.66.22 attackbots
(ftpd) Failed FTP login from 45.125.66.22 (LT/Republic of Lithuania/-): 10 in the last 3600 secs
2020-08-13 19:49:57
45.125.66.205 attackspam
[2020-06-17 08:05:13] NOTICE[1273][C-00001dce] chan_sip.c: Call from '' (45.125.66.205:5070) to extension '442037697412' rejected because extension not found in context 'public'.
[2020-06-17 08:05:13] SECURITY[1288] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-06-17T08:05:13.562-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="442037697412",SessionID="0x7f31c02f97a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.66.205/5070",ACLName="no_extension_match"
[2020-06-17 08:05:13] NOTICE[1273][C-00001dcf] chan_sip.c: Call from '' (45.125.66.205:5070) to extension '00442037697412' rejected because extension not found in context 'public'.
[2020-06-17 08:05:13] SECURITY[1288] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-06-17T08:05:13.905-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00442037697412",SessionID="0x7f31c02f97a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.66.2
...
2020-06-17 20:44:21
45.125.66.204 attackbotsspam
[portscan] tcp/81 [alter-web/web-proxy]
*(RWIN=1024)(04301449)
2020-05-01 01:46:02
45.125.66.168 attack
Rude login attack (7 tries in 1d)
2020-02-16 08:11:35
45.125.66.212 attack
Rude login attack (6 tries in 1d)
2020-02-16 08:07:45
45.125.66.68 attack
Rude login attack (4 tries in 1d)
2020-02-16 08:01:43
45.125.66.231 attackbots
Rude login attack (4 tries in 1d)
2020-02-16 07:59:20
WHOIS信息:
b
DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.125.66.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7690
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.125.66.99.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041200 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 12 18:33:39 +08 2019
;; MSG SIZE  rcvd: 116

HOST信息:
99.66.125.45.in-addr.arpa domain name pointer mx2.topdica.com.br.
NSLOOKUP信息:
Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
99.66.125.45.in-addr.arpa	name = mx2.topdica.com.br.

Authoritative answers can be found from:

相关IP信息:
最新评论:
IP 类型 评论内容 时间
142.93.215.102 attack
$f2bV_matches
2019-10-04 23:33:12
115.77.187.18 attack
Oct  4 15:37:03 bouncer sshd\[26471\]: Invalid user Alpine@123 from 115.77.187.18 port 34406
Oct  4 15:37:03 bouncer sshd\[26471\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.77.187.18 
Oct  4 15:37:05 bouncer sshd\[26471\]: Failed password for invalid user Alpine@123 from 115.77.187.18 port 34406 ssh2
...
2019-10-04 23:45:34
117.158.15.171 attackbots
Oct  4 14:25:50 ns41 sshd[2620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.158.15.171
Oct  4 14:25:50 ns41 sshd[2620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.158.15.171
2019-10-04 23:48:50
212.92.122.26 attack
3389BruteforceStormFW22
2019-10-04 23:41:48
139.219.0.29 attackspam
Oct  4 17:24:57 legacy sshd[17092]: Failed password for root from 139.219.0.29 port 49772 ssh2
Oct  4 17:29:46 legacy sshd[17168]: Failed password for root from 139.219.0.29 port 57754 ssh2
...
2019-10-04 23:59:45
163.172.207.104 attackbotsspam
\[2019-10-04 08:19:01\] SECURITY\[2006\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-04T08:19:01.414-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="900000000011972592277524",SessionID="0x7f1e1c02d9c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.207.104/63620",ACLName="no_extension_match"
\[2019-10-04 08:23:41\] SECURITY\[2006\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-04T08:23:41.479-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9000000000011972592277524",SessionID="0x7f1e1c3735b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.207.104/59655",ACLName="no_extension_match"
\[2019-10-04 08:25:49\] SECURITY\[2006\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-04T08:25:49.550-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011972595725636",SessionID="0x7f1e1cfa9b18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.207.
2019-10-04 23:46:25
81.22.45.202 attackspambots
Unauthorized connection attempt from IP address 81.22.45.202 on Port 3306(MYSQL)
2019-10-04 23:35:09
82.221.105.7 attackspam
8888/udp 445/tcp 500/udp...
[2019-08-03/10-04]180pkt,122pt.(tcp),19pt.(udp)
2019-10-05 00:07:24
45.227.194.14 attack
Oct  4 **REMOVED** dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 5 secs\): user=\<**REMOVED**.dekks@**REMOVED**.de\>, method=PLAIN, rip=45.227.194.14, lip=**REMOVED**, TLS: Disconnected, session=\
Oct  4 **REMOVED** dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 6 secs\): user=\, method=PLAIN, rip=45.227.194.14, lip=**REMOVED**, TLS: Disconnected, session=\
Oct  4 **REMOVED** dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 5 secs\): user=\, method=PLAIN, rip=45.227.194.14, lip=**REMOVED**, TLS, session=\<7980zRSUCr4t48IO\>
2019-10-04 23:46:53
128.199.123.170 attackbots
Automatic report - Banned IP Access
2019-10-04 23:47:12
198.108.67.93 attackspambots
2382/tcp 6352/tcp 9606/tcp...
[2019-08-04/10-03]122pkt,115pt.(tcp)
2019-10-04 23:35:41
42.119.115.154 attack
(Oct  4)  LEN=40 TTL=47 ID=11052 TCP DPT=8080 WINDOW=21789 SYN 
 (Oct  4)  LEN=40 TTL=47 ID=51729 TCP DPT=8080 WINDOW=44520 SYN 
 (Oct  4)  LEN=40 TTL=47 ID=18591 TCP DPT=8080 WINDOW=44520 SYN 
 (Oct  3)  LEN=40 TTL=47 ID=27450 TCP DPT=8080 WINDOW=56216 SYN 
 (Oct  3)  LEN=40 TTL=47 ID=53200 TCP DPT=8080 WINDOW=44520 SYN 
 (Oct  3)  LEN=40 TTL=47 ID=47286 TCP DPT=8080 WINDOW=5981 SYN 
 (Oct  3)  LEN=40 TTL=47 ID=60117 TCP DPT=8080 WINDOW=21789 SYN 
 (Oct  3)  LEN=40 TTL=47 ID=47884 TCP DPT=8080 WINDOW=56216 SYN 
 (Oct  2)  LEN=40 TTL=47 ID=12437 TCP DPT=8080 WINDOW=56216 SYN 
 (Oct  1)  LEN=40 TTL=47 ID=57269 TCP DPT=8080 WINDOW=56216 SYN 
 (Oct  1)  LEN=40 TTL=47 ID=8533 TCP DPT=8080 WINDOW=44520 SYN 
 (Oct  1)  LEN=40 TTL=47 ID=14283 TCP DPT=8080 WINDOW=56216 SYN
2019-10-05 00:00:06
88.214.26.74 attack
3495/tcp 33892/tcp 9005/tcp...
[2019-08-11/10-04]491pkt,114pt.(tcp)
2019-10-04 23:34:46
86.35.153.146 attackspambots
Automatic report - Port Scan Attack
2019-10-04 23:57:11
198.108.67.100 attackspambots
9110/tcp 623/tcp 8190/tcp...
[2019-08-03/10-03]135pkt,123pt.(tcp)
2019-10-04 23:52:39

最近上报的IP列表

187.253.192.166 94.51.63.58 14.98.27.38 194.132.234.49
182.180.163.223 180.159.95.67 87.252.99.76 195.68.103.10
193.188.22.56 180.110.186.135 176.155.81.2 14.248.139.135
186.88.102.210 115.49.217.125 112.196.165.159 104.148.64.26
85.175.101.3 188.2.81.45 178.92.152.249 183.193.76.58