120.131.14.125

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Kingsoft Cloud Internet Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	prod8 ...	2020-10-07 03:25:26
attackspam	Oct 6 10:24:02 mellenthin sshd[17072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125 user=root Oct 6 10:24:04 mellenthin sshd[17072]: Failed password for invalid user root from 120.131.14.125 port 37302 ssh2	2020-10-06 19:26:00
attackbotsspam	k+ssh-bruteforce	2020-09-14 15:48:05
attackspam	Sep 14 00:57:10 mellenthin sshd[23680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125 Sep 14 00:57:11 mellenthin sshd[23680]: Failed password for invalid user admin from 120.131.14.125 port 22372 ssh2	2020-09-14 07:40:37
attackbotsspam	2020-08-11T12:18:15.960379dreamphreak.com sshd[46879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125 user=root 2020-08-11T12:18:17.943620dreamphreak.com sshd[46879]: Failed password for root from 120.131.14.125 port 19160 ssh2 ...	2020-08-12 02:17:53
attackbots	2020-07-24T02:19:40.290298afi-git.jinr.ru sshd[12328]: Invalid user cdn from 120.131.14.125 port 12820 2020-07-24T02:19:40.293495afi-git.jinr.ru sshd[12328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125 2020-07-24T02:19:40.290298afi-git.jinr.ru sshd[12328]: Invalid user cdn from 120.131.14.125 port 12820 2020-07-24T02:19:42.163290afi-git.jinr.ru sshd[12328]: Failed password for invalid user cdn from 120.131.14.125 port 12820 ssh2 2020-07-24T02:23:45.225827afi-git.jinr.ru sshd[13839]: Invalid user nicolas from 120.131.14.125 port 16096 ...	2020-07-24 07:36:50
attackbots	Jul 23 16:39:42 marvibiene sshd[26718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125 Jul 23 16:39:44 marvibiene sshd[26718]: Failed password for invalid user produkcja from 120.131.14.125 port 20094 ssh2	2020-07-24 03:14:23
attack	Brute-force attempt banned	2020-07-10 01:10:48
attackbots	Jul 7 07:06:04 jumpserver sshd[371895]: Invalid user hadoop from 120.131.14.125 port 57456 Jul 7 07:06:06 jumpserver sshd[371895]: Failed password for invalid user hadoop from 120.131.14.125 port 57456 ssh2 Jul 7 07:09:58 jumpserver sshd[371954]: Invalid user wmdemo from 120.131.14.125 port 42156 ...	2020-07-07 15:58:28
attack	Jun 16 05:49:31 OPSO sshd\[10894\]: Invalid user admins from 120.131.14.125 port 61968 Jun 16 05:49:31 OPSO sshd\[10894\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125 Jun 16 05:49:32 OPSO sshd\[10894\]: Failed password for invalid user admins from 120.131.14.125 port 61968 ssh2 Jun 16 05:55:17 OPSO sshd\[11596\]: Invalid user student from 120.131.14.125 port 56176 Jun 16 05:55:17 OPSO sshd\[11596\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125	2020-06-16 12:14:34
attackspambots	SSH Bruteforce attack	2020-06-12 00:56:31
attackbots	Jun 4 20:03:58 ws25vmsma01 sshd[137545]: Failed password for root from 120.131.14.125 port 16798 ssh2 ...	2020-06-05 06:33:03
attackbots	SSH bruteforce	2020-05-26 03:15:59
attackbotsspam	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125 Failed password for invalid user sek from 120.131.14.125 port 19778 ssh2 Invalid user qws from 120.131.14.125 port 57184 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125 Failed password for invalid user qws from 120.131.14.125 port 57184 ssh2	2020-05-20 00:33:18
attackbotsspam	20 attempts against mh-ssh on cloud	2020-05-14 08:19:28
attackspam	Apr 29 15:25:27 host sshd[31900]: Invalid user testuser from 120.131.14.125 port 7714 ...	2020-04-29 21:47:03
attack	(sshd) Failed SSH login from 120.131.14.125 (CN/China/-): 5 in the last 3600 secs	2020-04-28 18:25:26
attack	Apr 21 23:20:07 vpn01 sshd[23967]: Failed password for root from 120.131.14.125 port 41118 ssh2 ...	2020-04-22 05:32:56
attackspam	Apr 21 16:36:10 OPSO sshd\[2460\]: Invalid user git from 120.131.14.125 port 25950 Apr 21 16:36:10 OPSO sshd\[2460\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125 Apr 21 16:36:11 OPSO sshd\[2460\]: Failed password for invalid user git from 120.131.14.125 port 25950 ssh2 Apr 21 16:40:56 OPSO sshd\[3187\]: Invalid user hu from 120.131.14.125 port 15866 Apr 21 16:40:56 OPSO sshd\[3187\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.14.125	2020-04-22 01:06:06
attackspambots	Invalid user git from 120.131.14.125 port 56726	2020-04-20 20:29:35

相同子网IP讨论:

IP	类型	评论内容	时间
120.131.14.235	attackspambots	unauthorized connection attempt	2020-03-06 18:26:14
120.131.14.235	attackbotsspam	Unauthorized connection attempt detected from IP address 120.131.14.235 to port 8080 [J]	2020-01-07 07:32:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.131.14.125
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58180
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;120.131.14.125.			IN	A

;; AUTHORITY SECTION:
.			418	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042000 1800 900 604800 86400

;; Query time: 153 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 20 20:29:28 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 125.14.131.120.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 125.14.131.120.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
159.203.124.234	attackbots	Apr 23 11:36:36 server sshd[20044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.124.234 Apr 23 11:36:38 server sshd[20044]: Failed password for invalid user firefart from 159.203.124.234 port 37246 ssh2 Apr 23 11:41:27 server sshd[20616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.124.234 ...	2020-04-23 22:32:00
162.243.130.8	attackspambots	Unauthorized connection attempt from IP address 162.243.130.8 on Port 3306(MYSQL)	2020-04-23 22:45:38
64.91.249.207	attackspam	firewall-block, port(s): 6111/tcp	2020-04-23 22:07:33
83.239.38.2	attackspambots	"Unauthorized connection attempt on SSHD detected"	2020-04-23 22:24:19
183.89.9.101	attackbotsspam	Unauthorized connection attempt from IP address 183.89.9.101 on Port 445(SMB)	2020-04-23 22:24:44
188.163.16.170	attackbots	Unauthorized connection attempt from IP address 188.163.16.170 on Port 445(SMB)	2020-04-23 22:39:07
95.112.107.97	attack	Email rejected due to spam filtering	2020-04-23 22:29:08
66.168.63.224	attackbotsspam	WEB_SERVER 403 Forbidden	2020-04-23 22:11:36
151.69.170.146	attackspambots	Apr 23 10:33:10 vpn01 sshd[28506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.69.170.146 Apr 23 10:33:12 vpn01 sshd[28506]: Failed password for invalid user geoclue from 151.69.170.146 port 36792 ssh2 ...	2020-04-23 22:17:27
83.136.238.46	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-04-23 22:26:00
119.42.114.42	attack	Unauthorized connection attempt from IP address 119.42.114.42 on Port 445(SMB)	2020-04-23 22:50:55
125.213.132.130	attackbotsspam	Automatic report - XMLRPC Attack	2020-04-23 22:37:26
46.101.209.178	attack	Apr 23 13:57:22 game-panel sshd[25030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.209.178 Apr 23 13:57:24 game-panel sshd[25030]: Failed password for invalid user wa from 46.101.209.178 port 39236 ssh2 Apr 23 14:02:49 game-panel sshd[25279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.209.178	2020-04-23 22:16:57
122.176.44.163	attack	Apr 23 13:38:55 vps647732 sshd[19339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.176.44.163 Apr 23 13:38:57 vps647732 sshd[19339]: Failed password for invalid user ja from 122.176.44.163 port 52200 ssh2 ...	2020-04-23 22:50:19
178.130.149.198	attackbotsspam	Unauthorised access (Apr 23) SRC=178.130.149.198 LEN=40 TTL=247 ID=975 DF TCP DPT=23 WINDOW=14600 SYN	2020-04-23 22:14:56

最近上报的IP列表

208.195.125.148	252.149.253.135	29.163.98.160	168.20.201.177
106.203.31.201	18.103.46.153	64.225.106.133	61.19.86.219
47.148.172.82	37.188.83.174	35.220.251.197	35.200.168.65
31.7.62.115	27.150.183.32	98.211.9.243	14.253.69.143
14.236.150.177	223.194.7.107	212.129.242.171	202.186.38.188