125.138.89.140

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea, Republic of

运营商(isp): KT Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Dec 7 15:03:24 web8 sshd\[17927\]: Invalid user authoriz from 125.138.89.140 Dec 7 15:03:24 web8 sshd\[17927\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.138.89.140 Dec 7 15:03:26 web8 sshd\[17927\]: Failed password for invalid user authoriz from 125.138.89.140 port 53037 ssh2 Dec 7 15:10:23 web8 sshd\[21126\]: Invalid user admin from 125.138.89.140 Dec 7 15:10:23 web8 sshd\[21126\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.138.89.140	2019-12-07 23:16:07
attackspam	21 attempts against mh-ssh on cloud.magehost.pro	2019-12-07 03:00:33
attackspam	$f2bV_matches	2019-12-06 22:39:59
attack	Nov 29 03:08:03 xxxxxxx0 sshd[19740]: Invalid user baharom from 125.138.89.140 port 53831 Nov 29 03:08:03 xxxxxxx0 sshd[19740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.138.89.140 Nov 29 03:08:05 xxxxxxx0 sshd[19740]: Failed password for invalid user baharom from 125.138.89.140 port 53831 ssh2 Nov 29 03:11:37 xxxxxxx0 sshd[20263]: Invalid user juneau from 125.138.89.140 port 44405 Nov 29 03:11:37 xxxxxxx0 sshd[20263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.138.89.140 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=125.138.89.140	2019-12-01 13:41:35

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.138.89.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64041
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.138.89.140.			IN	A

;; AUTHORITY SECTION:
.			114	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019113002 1800 900 604800 86400

;; Query time: 133 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 01 13:41:31 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 140.89.138.125.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 140.89.138.125.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
94.232.42.179	attackbots	[H1.VM8] Blocked by UFW	2020-10-12 18:24:04
52.130.85.214	attack	Oct 12 11:19:16 plg sshd[15896]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.130.85.214 Oct 12 11:19:18 plg sshd[15896]: Failed password for invalid user mikael from 52.130.85.214 port 53962 ssh2 Oct 12 11:21:20 plg sshd[15923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.130.85.214 Oct 12 11:21:22 plg sshd[15923]: Failed password for invalid user duckie from 52.130.85.214 port 52394 ssh2 Oct 12 11:23:25 plg sshd[15927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.130.85.214 user=root Oct 12 11:23:27 plg sshd[15927]: Failed password for invalid user root from 52.130.85.214 port 50798 ssh2 ...	2020-10-12 18:01:06
103.76.191.2	attackbotsspam	Port Scan ...	2020-10-12 18:38:07
157.245.240.22	attackbots	Automatic report - Banned IP Access	2020-10-12 18:31:33
220.186.133.3	attack	220.186.133.3 (CN/China/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 12 06:21:53 server5 sshd[20058]: Failed password for root from 49.235.234.199 port 39380 ssh2 Oct 12 06:21:37 server5 sshd[19576]: Failed password for root from 176.122.172.102 port 33592 ssh2 Oct 12 06:26:42 server5 sshd[22203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.186.133.3 user=root Oct 12 06:23:18 server5 sshd[20538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.178.171 user=root Oct 12 06:23:20 server5 sshd[20538]: Failed password for root from 206.189.178.171 port 44296 ssh2 Oct 12 06:21:52 server5 sshd[20058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.234.199 user=root IP Addresses Blocked: 49.235.234.199 (CN/China/-) 176.122.172.102 (US/United States/-)	2020-10-12 18:27:09
35.232.233.148	attackbotsspam	35.232.233.148:37828 - - [12/Oct/2020:09:25:31 +0200] "\x16\x03\x01\x01\xb3\x01" 400 311 35.232.233.148:36874 - - [12/Oct/2020:09:25:31 +0200] "\x16\x03\x01\x01\x9c\x01" 400 311 35.232.233.148:35784 - - [12/Oct/2020:09:25:30 +0200] "\x16\x03\x01\x01\xa6\x01" 400 311 35.232.233.148:34792 - - [12/Oct/2020:09:25:30 +0200] "\x16\x03\x01\x01\xa6\x01" 400 311 35.232.233.148:33922 - - [12/Oct/2020:09:25:30 +0200] "\x16\x03\x02\x01\x99\x01" 400 311 35.232.233.148:32958 - - [12/Oct/2020:09:25:30 +0200] "\x16\x03\x03\x01\x98\x01" 400 311 35.232.233.148:60366 - - [12/Oct/2020:09:25:29 +0200] "\x16\x03\x03\x01G\x01" 400 311 35.232.233.148:59654 - - [12/Oct/2020:09:25:29 +0200] "\x16\x03\x03\x01U\x01" 400 311 35.232.233.148:58952 - - [12/Oct/2020:09:25:29 +0200] "\x16\x03\x03\x01\xa4\x01" 400 311 35.232.233.148:58288 - - [12/Oct/2020:09:25:28 +0200] "\x16\x03\x03\x01\xa4\x01" 400 311	2020-10-12 18:21:21
27.223.99.130	attackspambots	$f2bV_matches	2020-10-12 18:15:10
92.81.222.217	attackbotsspam	$f2bV_matches	2020-10-12 18:22:30
103.253.145.125	attackspam	Oct 12 07:16:12 shivevps sshd[11036]: Failed password for invalid user newsmagazine from 103.253.145.125 port 45174 ssh2 Oct 12 07:20:20 shivevps sshd[11170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.253.145.125 user=root Oct 12 07:20:22 shivevps sshd[11170]: Failed password for root from 103.253.145.125 port 50512 ssh2 ...	2020-10-12 18:36:59
167.160.67.196	attackspambots	(From luft.kathlene@msn.com) Good evening.. I would like to have a talk with you regarding commercial videos. I will be available for one week so it will be great if you give me an appointment before that. I suggest something like this: https://www.youtube.com/watch?v=IxZdvejWGJ4 This is a backing soundtrack for commercial videos.	2020-10-12 18:10:47
187.212.199.107	attack	Oct 12 10:37:47 lnxded63 sshd[20954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.212.199.107	2020-10-12 18:21:39
220.186.184.60	attackbotsspam	(sshd) Failed SSH login from 220.186.184.60 (CN/China/60.184.186.220.broad.wz.zj.dynamic.163data.com.cn): 5 in the last 3600 secs	2020-10-12 18:27:44
74.208.29.91	attackbotsspam	(sshd) Failed SSH login from 74.208.29.91 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 16:41:35 optimus sshd[4121]: Invalid user diamond from 74.208.29.91 Oct 11 16:41:35 optimus sshd[4121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.208.29.91 Oct 11 16:41:38 optimus sshd[4121]: Failed password for invalid user diamond from 74.208.29.91 port 60860 ssh2 Oct 11 16:45:07 optimus sshd[6023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.208.29.91 user=root Oct 11 16:45:10 optimus sshd[6023]: Failed password for root from 74.208.29.91 port 39378 ssh2	2020-10-12 18:11:42
94.191.93.211	attackbotsspam	Oct 12 09:37:48 db sshd[18514]: User root from 94.191.93.211 not allowed because none of user's groups are listed in AllowGroups ...	2020-10-12 18:04:57
192.241.239.219	attackspambots	Oct 12 10:12:12 pi4 postfix/anvil[21659]: statistics: max connection rate 1/60s for (smtp:192.241.239.219) at Oct 12 10:08:52 ...	2020-10-12 18:07:18

最近上报的IP列表

142.21.99.201	185.92.150.236	95.78.9.232	177.93.152.1
79.142.76.244	103.5.1.214	18.195.235.2	177.76.164.94
222.170.204.168	177.22.123.90	220.172.193.180	113.94.48.2
220.158.216.129	114.32.161.69	174.211.208.246	57.108.243.195
48.183.63.24	106.74.156.119	209.150.119.224	98.186.169.178