125.164.185.14

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT Telkom Indonesia

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	port scan and connect, tcp 23 (telnet)	2019-09-30 13:07:22

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.164.185.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48123
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.164.185.14.			IN	A

;; AUTHORITY SECTION:
.			478	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092901 1800 900 604800 86400

;; Query time: 362 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Sep 30 13:07:16 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

14.185.164.125.in-addr.arpa domain name pointer 14.subnet125-164-185.speedy.telkom.net.id.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
14.185.164.125.in-addr.arpa	name = 14.subnet125-164-185.speedy.telkom.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
218.92.0.173	attackbotsspam	SSH-bruteforce attempts	2020-04-26 05:47:54
67.220.187.50	attackspam	wp login attempts	2020-04-26 05:39:48
110.86.176.159	attackspambots	failed_logins	2020-04-26 05:36:58
121.40.177.178	attackspambots	121.40.177.178 - - [25/Apr/2020:22:27:00 +0200] "GET /wp-login.php HTTP/1.1" 200 5863 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 121.40.177.178 - - [25/Apr/2020:22:27:03 +0200] "POST /wp-login.php HTTP/1.1" 200 6114 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 121.40.177.178 - - [25/Apr/2020:22:27:06 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-26 05:32:59
36.89.182.3	attack	Spammers. Infected subnet. Blocked 36.89.182.0/24	2020-04-26 05:23:01
190.15.88.201	attackspambots	Automatic report - XMLRPC Attack	2020-04-26 05:30:46
217.20.113.137	attackspambots	Apr 25 22:26:53 mail sshd[1451]: Invalid user ntps from 217.20.113.137 Apr 25 22:26:53 mail sshd[1453]: Invalid user synthing from 217.20.113.137 Apr 25 22:26:53 mail sshd[1451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.20.113.137 Apr 25 22:26:53 mail sshd[1451]: Invalid user ntps from 217.20.113.137 Apr 25 22:26:55 mail sshd[1451]: Failed password for invalid user ntps from 217.20.113.137 port 42676 ssh2 Apr 25 22:26:53 mail sshd[1453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.20.113.137 Apr 25 22:26:53 mail sshd[1453]: Invalid user synthing from 217.20.113.137 Apr 25 22:26:55 mail sshd[1453]: Failed password for invalid user synthing from 217.20.113.137 port 45732 ssh2 Apr 25 22:26:55 mail sshd[1455]: Invalid user vnc from 217.20.113.137 ...	2020-04-26 05:41:43
103.145.12.87	attack	[2020-04-25 17:07:45] NOTICE[1170][C-00005542] chan_sip.c: Call from '' (103.145.12.87:65328) to extension '9011442037698349' rejected because extension not found in context 'public'. [2020-04-25 17:07:45] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-25T17:07:45.969-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011442037698349",SessionID="0x7f6c08101b78",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.145.12.87/65328",ACLName="no_extension_match" [2020-04-25 17:07:46] NOTICE[1170][C-00005543] chan_sip.c: Call from '' (103.145.12.87:49616) to extension '01146812400368' rejected because extension not found in context 'public'. [2020-04-25 17:07:46] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-25T17:07:46.061-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146812400368",SessionID="0x7f6c083c7058",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/ ...	2020-04-26 05:16:20
222.186.42.136	attack	Apr 26 02:24:36 gw1 sshd[18156]: Failed password for root from 222.186.42.136 port 30039 ssh2 ...	2020-04-26 05:31:38
111.229.156.243	attackbots	Apr 26 02:26:35 gw1 sshd[18322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.156.243 Apr 26 02:26:38 gw1 sshd[18322]: Failed password for invalid user farid from 111.229.156.243 port 56244 ssh2 ...	2020-04-26 05:34:18
51.83.108.93	attack	51.83.108.93 - - \[25/Apr/2020:22:26:48 +0200\] "POST /wp-login.php HTTP/1.0" 200 6809 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 51.83.108.93 - - \[25/Apr/2020:22:26:49 +0200\] "POST /wp-login.php HTTP/1.0" 200 6629 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 51.83.108.93 - - \[25/Apr/2020:22:26:51 +0200\] "POST /wp-login.php HTTP/1.0" 200 6637 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-04-26 05:44:34
218.92.0.210	attack	Apr 25 20:27:24 ip-172-31-61-156 sshd[24882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.210 user=root Apr 25 20:27:26 ip-172-31-61-156 sshd[24882]: Failed password for root from 218.92.0.210 port 34900 ssh2 ...	2020-04-26 05:17:12
222.186.180.130	attackspambots	2020-04-25T23:54:10.160621sd-86998 sshd[37546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.130 user=root 2020-04-25T23:54:11.614252sd-86998 sshd[37546]: Failed password for root from 222.186.180.130 port 49436 ssh2 2020-04-25T23:54:13.153223sd-86998 sshd[37546]: Failed password for root from 222.186.180.130 port 49436 ssh2 2020-04-25T23:54:10.160621sd-86998 sshd[37546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.130 user=root 2020-04-25T23:54:11.614252sd-86998 sshd[37546]: Failed password for root from 222.186.180.130 port 49436 ssh2 2020-04-25T23:54:13.153223sd-86998 sshd[37546]: Failed password for root from 222.186.180.130 port 49436 ssh2 2020-04-25T23:54:10.160621sd-86998 sshd[37546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.130 user=root 2020-04-25T23:54:11.614252sd-86998 sshd[37546]: Failed password for roo ...	2020-04-26 05:54:26
89.223.28.175	attackspambots	Apr 25 18:27:17 firewall sshd[15133]: Failed password for invalid user svsg from 89.223.28.175 port 39598 ssh2 Apr 25 18:30:50 firewall sshd[15218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.223.28.175 user=uucp Apr 25 18:30:52 firewall sshd[15218]: Failed password for uucp from 89.223.28.175 port 41988 ssh2 ...	2020-04-26 05:42:09
92.118.234.234	attackbotsspam	Automatic report - Port Scan Attack	2020-04-26 05:36:18

最近上报的IP列表

194.8.144.39	84.54.153.62	113.160.214.6	106.111.183.205
222.239.225.43	159.203.201.208	67.15.224.51	220.81.42.106
154.176.254.214	14.254.81.25	15.120.129.145	90.46.146.139
8.202.187.151	144.242.211.225	58.48.19.6	196.215.27.160
174.166.134.17	82.85.66.182	143.114.17.176	37.3.214.92