120.131.14.125

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Kingsoft Cloud Internet Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	prod8 ...	2020-10-07 03:25:26
attackspam	Oct 6 10:24:02 mellenthin sshd[17072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125 user=root Oct 6 10:24:04 mellenthin sshd[17072]: Failed password for invalid user root from 120.131.14.125 port 37302 ssh2	2020-10-06 19:26:00
attackbotsspam	k+ssh-bruteforce	2020-09-14 15:48:05
attackspam	Sep 14 00:57:10 mellenthin sshd[23680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125 Sep 14 00:57:11 mellenthin sshd[23680]: Failed password for invalid user admin from 120.131.14.125 port 22372 ssh2	2020-09-14 07:40:37
attackbotsspam	2020-08-11T12:18:15.960379dreamphreak.com sshd[46879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125 user=root 2020-08-11T12:18:17.943620dreamphreak.com sshd[46879]: Failed password for root from 120.131.14.125 port 19160 ssh2 ...	2020-08-12 02:17:53
attackbots	2020-07-24T02:19:40.290298afi-git.jinr.ru sshd[12328]: Invalid user cdn from 120.131.14.125 port 12820 2020-07-24T02:19:40.293495afi-git.jinr.ru sshd[12328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125 2020-07-24T02:19:40.290298afi-git.jinr.ru sshd[12328]: Invalid user cdn from 120.131.14.125 port 12820 2020-07-24T02:19:42.163290afi-git.jinr.ru sshd[12328]: Failed password for invalid user cdn from 120.131.14.125 port 12820 ssh2 2020-07-24T02:23:45.225827afi-git.jinr.ru sshd[13839]: Invalid user nicolas from 120.131.14.125 port 16096 ...	2020-07-24 07:36:50
attackbots	Jul 23 16:39:42 marvibiene sshd[26718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125 Jul 23 16:39:44 marvibiene sshd[26718]: Failed password for invalid user produkcja from 120.131.14.125 port 20094 ssh2	2020-07-24 03:14:23
attack	Brute-force attempt banned	2020-07-10 01:10:48
attackbots	Jul 7 07:06:04 jumpserver sshd[371895]: Invalid user hadoop from 120.131.14.125 port 57456 Jul 7 07:06:06 jumpserver sshd[371895]: Failed password for invalid user hadoop from 120.131.14.125 port 57456 ssh2 Jul 7 07:09:58 jumpserver sshd[371954]: Invalid user wmdemo from 120.131.14.125 port 42156 ...	2020-07-07 15:58:28
attack	Jun 16 05:49:31 OPSO sshd\[10894\]: Invalid user admins from 120.131.14.125 port 61968 Jun 16 05:49:31 OPSO sshd\[10894\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125 Jun 16 05:49:32 OPSO sshd\[10894\]: Failed password for invalid user admins from 120.131.14.125 port 61968 ssh2 Jun 16 05:55:17 OPSO sshd\[11596\]: Invalid user student from 120.131.14.125 port 56176 Jun 16 05:55:17 OPSO sshd\[11596\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125	2020-06-16 12:14:34
attackspambots	SSH Bruteforce attack	2020-06-12 00:56:31
attackbots	Jun 4 20:03:58 ws25vmsma01 sshd[137545]: Failed password for root from 120.131.14.125 port 16798 ssh2 ...	2020-06-05 06:33:03
attackbots	SSH bruteforce	2020-05-26 03:15:59
attackbotsspam	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125 Failed password for invalid user sek from 120.131.14.125 port 19778 ssh2 Invalid user qws from 120.131.14.125 port 57184 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125 Failed password for invalid user qws from 120.131.14.125 port 57184 ssh2	2020-05-20 00:33:18
attackbotsspam	20 attempts against mh-ssh on cloud	2020-05-14 08:19:28
attackspam	Apr 29 15:25:27 host sshd[31900]: Invalid user testuser from 120.131.14.125 port 7714 ...	2020-04-29 21:47:03
attack	(sshd) Failed SSH login from 120.131.14.125 (CN/China/-): 5 in the last 3600 secs	2020-04-28 18:25:26
attack	Apr 21 23:20:07 vpn01 sshd[23967]: Failed password for root from 120.131.14.125 port 41118 ssh2 ...	2020-04-22 05:32:56
attackspam	Apr 21 16:36:10 OPSO sshd\[2460\]: Invalid user git from 120.131.14.125 port 25950 Apr 21 16:36:10 OPSO sshd\[2460\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125 Apr 21 16:36:11 OPSO sshd\[2460\]: Failed password for invalid user git from 120.131.14.125 port 25950 ssh2 Apr 21 16:40:56 OPSO sshd\[3187\]: Invalid user hu from 120.131.14.125 port 15866 Apr 21 16:40:56 OPSO sshd\[3187\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125	2020-04-22 01:06:06
attackspambots	Invalid user git from 120.131.14.125 port 56726	2020-04-20 20:29:35

相同子网IP讨论:

IP	类型	评论内容	时间
120.131.14.235	attackspambots	unauthorized connection attempt	2020-03-06 18:26:14
120.131.14.235	attackbotsspam	Unauthorized connection attempt detected from IP address 120.131.14.235 to port 8080 [J]	2020-01-07 07:32:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.131.14.125
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58180
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;120.131.14.125.			IN	A

;; AUTHORITY SECTION:
.			418	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042000 1800 900 604800 86400

;; Query time: 153 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 20 20:29:28 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 125.14.131.120.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 125.14.131.120.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
151.80.207.9	attack	Aug 31 08:28:50 TORMINT sshd\[29000\]: Invalid user lucky from 151.80.207.9 Aug 31 08:28:50 TORMINT sshd\[29000\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.207.9 Aug 31 08:28:53 TORMINT sshd\[29000\]: Failed password for invalid user lucky from 151.80.207.9 port 33803 ssh2 ...	2019-08-31 20:52:44
201.20.73.195	attack	Aug 31 11:56:23 hb sshd\[16229\]: Invalid user db from 201.20.73.195 Aug 31 11:56:23 hb sshd\[16229\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.20.73.195 Aug 31 11:56:25 hb sshd\[16229\]: Failed password for invalid user db from 201.20.73.195 port 34244 ssh2 Aug 31 12:01:25 hb sshd\[16652\]: Invalid user wwwdata from 201.20.73.195 Aug 31 12:01:25 hb sshd\[16652\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.20.73.195	2019-08-31 20:07:29
51.83.69.78	attack	Aug 31 08:44:03 plusreed sshd[25584]: Invalid user testuser from 51.83.69.78 ...	2019-08-31 20:45:39
54.36.180.236	attackspambots	Aug 31 13:58:11 ns3110291 sshd\[14271\]: Invalid user apc from 54.36.180.236 Aug 31 13:58:12 ns3110291 sshd\[14271\]: Failed password for invalid user apc from 54.36.180.236 port 35177 ssh2 Aug 31 14:01:46 ns3110291 sshd\[14582\]: Invalid user ts3soundboard from 54.36.180.236 Aug 31 14:01:48 ns3110291 sshd\[14582\]: Failed password for invalid user ts3soundboard from 54.36.180.236 port 56952 ssh2 Aug 31 14:05:30 ns3110291 sshd\[14975\]: Failed password for root from 54.36.180.236 port 50499 ssh2 ...	2019-08-31 20:07:00
158.69.205.21	attack	xmlrpc attack	2019-08-31 20:11:40
178.128.42.36	attackspambots	Aug 31 14:13:25 rpi sshd[27261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.42.36 Aug 31 14:13:28 rpi sshd[27261]: Failed password for invalid user qhsupport from 178.128.42.36 port 51918 ssh2	2019-08-31 20:28:03
142.93.71.94	attack	Aug 31 01:53:55 hcbb sshd\[13774\]: Invalid user admin from 142.93.71.94 Aug 31 01:53:55 hcbb sshd\[13774\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.71.94 Aug 31 01:53:57 hcbb sshd\[13774\]: Failed password for invalid user admin from 142.93.71.94 port 52650 ssh2 Aug 31 01:58:05 hcbb sshd\[14175\]: Invalid user wellington from 142.93.71.94 Aug 31 01:58:05 hcbb sshd\[14175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.71.94	2019-08-31 20:38:05
198.58.107.53	attackbots	Aug 31 13:41:28 rotator sshd\[12953\]: Failed password for root from 198.58.107.53 port 60774 ssh2Aug 31 13:41:30 rotator sshd\[12953\]: Failed password for root from 198.58.107.53 port 60774 ssh2Aug 31 13:41:33 rotator sshd\[12953\]: Failed password for root from 198.58.107.53 port 60774 ssh2Aug 31 13:41:36 rotator sshd\[12953\]: Failed password for root from 198.58.107.53 port 60774 ssh2Aug 31 13:41:39 rotator sshd\[12953\]: Failed password for root from 198.58.107.53 port 60774 ssh2Aug 31 13:41:41 rotator sshd\[12953\]: Failed password for root from 198.58.107.53 port 60774 ssh2 ...	2019-08-31 20:43:44
180.126.60.39	attackspambots	$f2bV_matches	2019-08-31 20:29:26
51.255.46.254	attackspambots	Aug 31 11:36:59 XXXXXX sshd[16770]: Invalid user opy from 51.255.46.254 port 34612	2019-08-31 20:25:35
180.250.115.121	attack	Aug 31 14:31:26 plex sshd[15617]: Invalid user copie from 180.250.115.121 port 51726	2019-08-31 20:48:07
51.77.222.232	attackspam	$f2bV_matches	2019-08-31 20:08:33
134.175.46.166	attackspam	Aug 31 13:27:30 icinga sshd[51396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.46.166 Aug 31 13:27:32 icinga sshd[51396]: Failed password for invalid user wb from 134.175.46.166 port 35478 ssh2 Aug 31 13:41:38 icinga sshd[60942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.46.166 ...	2019-08-31 20:50:15
95.226.88.13	attackbots	Aug 24 20:47:13 itv-usvr-01 sshd[5950]: Invalid user december from 95.226.88.13 Aug 24 20:47:13 itv-usvr-01 sshd[5950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.226.88.13 Aug 24 20:47:13 itv-usvr-01 sshd[5950]: Invalid user december from 95.226.88.13 Aug 24 20:47:15 itv-usvr-01 sshd[5950]: Failed password for invalid user december from 95.226.88.13 port 49826 ssh2 Aug 24 20:55:36 itv-usvr-01 sshd[6296]: Invalid user telnetd from 95.226.88.13	2019-08-31 20:49:34
51.68.44.13	attackspam	Aug 31 11:41:51 work-partkepr sshd\[8613\]: Invalid user webadmin from 51.68.44.13 port 58646 Aug 31 11:41:51 work-partkepr sshd\[8613\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.44.13 ...	2019-08-31 20:39:28

最近上报的IP列表

208.195.125.148	252.149.253.135	29.163.98.160	168.20.201.177
106.203.31.201	18.103.46.153	64.225.106.133	61.19.86.219
47.148.172.82	37.188.83.174	35.220.251.197	35.200.168.65
31.7.62.115	27.150.183.32	98.211.9.243	14.253.69.143
14.236.150.177	223.194.7.107	212.129.242.171	202.186.38.188