125.160.20.149

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
125.160.204.32	attackbots	Automatic report - Port Scan Attack	2020-08-21 01:25:00
125.160.202.210	attackbots	Jul 16 23:30:08 r.ca sshd[10426]: Failed password for invalid user guest from 125.160.202.210 port 51528 ssh2	2020-07-17 18:39:55
125.160.205.74	attackbots	Unauthorized connection attempt from IP address 125.160.205.74 on Port 445(SMB)	2020-07-06 05:18:57
125.160.202.206	attackbots	Automatic report - Port Scan Attack	2020-07-05 13:44:29
125.160.201.242	attackbots	[Tue Mar 17 06:39:38.053375 2020] [:error] [pid 20853:tid 140439655249664] [client 125.160.201.242:35608] [client 125.160.201.242] ModSecurity: Access denied with code 403 (phase 4). Pattern match "^5\\\\d{2}$" at RESPONSE_STATUS. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/RESPONSE-950-DATA-LEAKAGES.conf"] [line "118"] [id "950100"] [msg "The Application Returned a 500-Level Status Code"] [data "Matched Data: 500 found within RESPONSE_STATUS: 500"] [severity "ERROR"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-disclosure"] [tag "WASCTC/WASC-13"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.6"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php"] [unique_id "XnAOOaEzxiYbKEFqAfoYhwAAAAE"] ...	2020-03-17 08:03:06
125.160.204.190	attack	1576477420 - 12/16/2019 07:23:40 Host: 125.160.204.190/125.160.204.190 Port: 445 TCP Blocked	2019-12-16 21:24:29
125.160.207.154	attack	Unauthorized connection attempt from IP address 125.160.207.154 on Port 445(SMB)	2019-12-07 06:01:33
125.160.207.186	attackspambots	Unauthorized connection attempt from IP address 125.160.207.186 on Port 445(SMB)	2019-11-20 22:51:27
125.160.207.249	attack	Unauthorized connection attempt from IP address 125.160.207.249 on Port 445(SMB)	2019-11-02 17:57:23
125.160.207.157	attackbotsspam	Honeypot attack, port: 445, PTR: 157.subnet125-160-207.speedy.telkom.net.id.	2019-10-31 16:00:55
125.160.207.36	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 28-10-2019 11:50:22.	2019-10-29 00:29:58
125.160.201.46	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 25-10-2019 04:55:16.	2019-10-25 13:51:35
125.160.207.82	attackbots	[portscan] tcp/23 [TELNET] *(RWIN=14600)(09161116)	2019-09-17 02:52:19
125.160.207.129	attack	445/tcp 445/tcp 445/tcp... [2019-09-08]6pkt,1pt.(tcp)	2019-09-08 22:12:32
125.160.207.158	attackbotsspam	Automatic report - Port Scan Attack	2019-08-04 21:12:59

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.160.20.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5131
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;125.160.20.149.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 02:34:10 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 149.20.160.125.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 149.20.160.125.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
191.53.239.169	attack	Brute force attempt	2019-07-28 22:57:45
112.85.42.72	attackspambots	Jul 28 16:23:41 srv-4 sshd\[13863\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.72 user=root Jul 28 16:23:44 srv-4 sshd\[13863\]: Failed password for root from 112.85.42.72 port 59934 ssh2 Jul 28 16:24:45 srv-4 sshd\[14023\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.72 user=root ...	2019-07-28 22:25:13
27.115.15.8	attackspam	Jul 28 15:36:13 mout sshd[18724]: Invalid user Password123$%^ from 27.115.15.8 port 42191	2019-07-28 22:12:39
63.143.35.146	attack	\[2019-07-28 10:15:08\] NOTICE\[2288\] chan_sip.c: Registration from '\' failed for '63.143.35.146:53620' - Wrong password \[2019-07-28 10:15:08\] SECURITY\[2326\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-28T10:15:08.444-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="811",SessionID="0x7ff4d0376cc8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/63.143.35.146/53620",Challenge="202d7bb7",ReceivedChallenge="202d7bb7",ReceivedHash="4e16d4be8f6a603a152483d522ca2911" \[2019-07-28 10:15:33\] NOTICE\[2288\] chan_sip.c: Registration from '\' failed for '63.143.35.146:57067' - Wrong password \[2019-07-28 10:15:33\] SECURITY\[2326\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-28T10:15:33.589-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1600",SessionID="0x7ff4d02ab878",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/63.143.35.1	2019-07-28 22:16:45
112.85.42.178	attackbots	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root Failed password for root from 112.85.42.178 port 62876 ssh2 Failed password for root from 112.85.42.178 port 62876 ssh2 Failed password for root from 112.85.42.178 port 62876 ssh2 Failed password for root from 112.85.42.178 port 62876 ssh2	2019-07-28 22:29:16
193.144.61.81	attack	Jul 28 07:59:38 aat-srv002 sshd[11282]: Failed password for root from 193.144.61.81 port 37822 ssh2 Jul 28 08:03:53 aat-srv002 sshd[11389]: Failed password for root from 193.144.61.81 port 33128 ssh2 Jul 28 08:08:14 aat-srv002 sshd[11468]: Failed password for root from 193.144.61.81 port 56664 ssh2 ...	2019-07-28 22:50:26
112.85.42.88	attack	Jul 28 15:45:45 debian64 sshd\[17062\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.88 user=root Jul 28 15:45:46 debian64 sshd\[17062\]: Failed password for root from 112.85.42.88 port 22855 ssh2 Jul 28 15:45:48 debian64 sshd\[17062\]: Failed password for root from 112.85.42.88 port 22855 ssh2 ...	2019-07-28 22:00:38
177.141.196.253	attack	Jul 28 13:10:17 Ubuntu-1404-trusty-64-minimal sshd\[20737\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.141.196.253 user=root Jul 28 13:10:19 Ubuntu-1404-trusty-64-minimal sshd\[20737\]: Failed password for root from 177.141.196.253 port 21249 ssh2 Jul 28 13:20:01 Ubuntu-1404-trusty-64-minimal sshd\[23203\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.141.196.253 user=root Jul 28 13:20:02 Ubuntu-1404-trusty-64-minimal sshd\[23203\]: Failed password for root from 177.141.196.253 port 14945 ssh2 Jul 28 13:26:54 Ubuntu-1404-trusty-64-minimal sshd\[27653\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.141.196.253 user=root	2019-07-28 22:36:38
27.34.245.238	attackbotsspam	Jul 28 12:52:29 localhost sshd\[107662\]: Invalid user wove from 27.34.245.238 port 35238 Jul 28 12:52:29 localhost sshd\[107662\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.34.245.238 Jul 28 12:52:31 localhost sshd\[107662\]: Failed password for invalid user wove from 27.34.245.238 port 35238 ssh2 Jul 28 13:04:21 localhost sshd\[108020\]: Invalid user Animals from 27.34.245.238 port 50898 Jul 28 13:04:21 localhost sshd\[108020\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.34.245.238 ...	2019-07-28 22:37:08
185.176.27.14	attackspam	firewall-block, port(s): 23296/tcp	2019-07-28 22:34:43
115.239.244.198	attack	failed_logins	2019-07-28 22:19:10
102.165.37.59	attackspam	DATE:2019-07-28_13:26:50, IP:102.165.37.59, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-07-28 22:40:47
119.197.26.181	attackbotsspam	Jul 28 14:27:03 eventyay sshd[22746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.197.26.181 Jul 28 14:27:05 eventyay sshd[22746]: Failed password for invalid user Travis from 119.197.26.181 port 36646 ssh2 Jul 28 14:32:33 eventyay sshd[24190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.197.26.181 ...	2019-07-28 22:55:14
139.0.26.14	attackspam	Jul 28 12:37:05 localhost sshd\[41931\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.0.26.14 user=root Jul 28 12:37:07 localhost sshd\[41931\]: Failed password for root from 139.0.26.14 port 35201 ssh2 ...	2019-07-28 22:21:15
37.48.82.52	attackbotsspam	Too many connections or unauthorized access detected from Arctic banned ip	2019-07-28 22:28:55

最近上报的IP列表

125.160.20.119	125.160.199.69	125.160.200.107	125.160.199.71
125.160.200.113	117.86.185.9	125.160.200.239	125.160.200.244
125.160.200.4	125.160.200.90	125.160.201.243	125.160.202.10
125.160.201.69	117.86.19.135	125.160.202.2	125.160.202.28
125.160.202.85	125.160.202.228	125.160.203.116	125.160.202.5

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表