125.231.139.104

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized connection attempt from IP address 125.231.139.104 on Port 445(SMB)	2020-04-28 19:08:00

相同子网IP讨论:

IP	类型	评论内容	时间
125.231.139.111	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-19 17:50:07
125.231.139.203	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/125.231.139.203/ TW - 1H : (2831) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN3462 IP : 125.231.139.203 CIDR : 125.231.0.0/16 PREFIX COUNT : 390 UNIQUE IP COUNT : 12267520 WYKRYTE ATAKI Z ASN3462 : 1H - 286 3H - 1110 6H - 2238 12H - 2733 24H - 2742 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-09-23 23:27:37

类型

评论内容

时间

125.231.139.111

attack

MultiHost/MultiPort Probe, Scan, Hack -

2020-02-19 17:50:07

125.231.139.203

attackspambots

IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/125.231.139.203/ 
 TW - 1H : (2831)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : TW 
 NAME ASN : ASN3462 
 
 IP : 125.231.139.203 
 
 CIDR : 125.231.0.0/16 
 
 PREFIX COUNT : 390 
 
 UNIQUE IP COUNT : 12267520 
 
 
 WYKRYTE ATAKI Z ASN3462 :  
  1H - 286 
  3H - 1110 
  6H - 2238 
 12H - 2733 
 24H - 2742 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery

2019-09-23 23:27:37

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.231.139.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7473
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.231.139.104.		IN	A

;; AUTHORITY SECTION:
.			568	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042800 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 28 19:07:56 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

104.139.231.125.in-addr.arpa domain name pointer 125-231-139-104.dynamic-ip.hinet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
104.139.231.125.in-addr.arpa	name = 125-231-139-104.dynamic-ip.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
206.189.156.198	attackbotsspam	Dec 5 16:50:44 hcbbdb sshd\[15801\]: Invalid user art from 206.189.156.198 Dec 5 16:50:44 hcbbdb sshd\[15801\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.156.198 Dec 5 16:50:46 hcbbdb sshd\[15801\]: Failed password for invalid user art from 206.189.156.198 port 46982 ssh2 Dec 5 16:57:03 hcbbdb sshd\[16492\]: Invalid user ftp from 206.189.156.198 Dec 5 16:57:03 hcbbdb sshd\[16492\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.156.198	2019-12-06 01:00:32
61.0.242.100	attackspam	Dec 5 16:02:59 mail sshd[31601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.0.242.100 Dec 5 16:03:01 mail sshd[31601]: Failed password for invalid user postgres from 61.0.242.100 port 45672 ssh2 ...	2019-12-06 00:37:46
41.32.63.138	attackbots	ssh failed login	2019-12-06 00:24:49
35.187.234.161	attack	Dec 5 11:08:04 TORMINT sshd\[16344\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.187.234.161 user=root Dec 5 11:08:06 TORMINT sshd\[16344\]: Failed password for root from 35.187.234.161 port 59342 ssh2 Dec 5 11:14:39 TORMINT sshd\[16829\]: Invalid user begay from 35.187.234.161 Dec 5 11:14:39 TORMINT sshd\[16829\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.187.234.161 ...	2019-12-06 00:54:06
116.31.105.198	attackspambots	Dec 5 16:46:49 MK-Soft-Root1 sshd[4212]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.31.105.198 Dec 5 16:46:52 MK-Soft-Root1 sshd[4212]: Failed password for invalid user domo from 116.31.105.198 port 43752 ssh2 ...	2019-12-06 00:44:08
106.13.15.122	attackbots	Dec 5 17:30:30 meumeu sshd[10355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.15.122 Dec 5 17:30:32 meumeu sshd[10355]: Failed password for invalid user waski123 from 106.13.15.122 port 49098 ssh2 Dec 5 17:38:30 meumeu sshd[11557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.15.122 ...	2019-12-06 01:04:05
161.0.28.76	attackbotsspam	Automatic report - Banned IP Access	2019-12-06 00:58:35
201.113.26.144	attackbotsspam	Unauthorised access (Dec 5) SRC=201.113.26.144 LEN=52 TTL=116 ID=26457 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-06 00:19:23
106.54.97.214	attack	Dec 5 11:26:34 linuxvps sshd\[30194\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.97.214 user=root Dec 5 11:26:36 linuxvps sshd\[30194\]: Failed password for root from 106.54.97.214 port 33292 ssh2 Dec 5 11:33:51 linuxvps sshd\[34219\]: Invalid user mounier from 106.54.97.214 Dec 5 11:33:51 linuxvps sshd\[34219\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.97.214 Dec 5 11:33:52 linuxvps sshd\[34219\]: Failed password for invalid user mounier from 106.54.97.214 port 36450 ssh2	2019-12-06 00:43:05
114.237.109.67	attackspambots	Dec 5 16:03:09 grey postfix/smtpd\[31243\]: NOQUEUE: reject: RCPT from unknown\[114.237.109.67\]: 554 5.7.1 Service unavailable\; Client host \[114.237.109.67\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[114.237.109.67\]\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-06 00:22:23
222.186.175.147	attack	Dec 5 17:30:19 root sshd[7102]: Failed password for root from 222.186.175.147 port 64722 ssh2 Dec 5 17:30:23 root sshd[7102]: Failed password for root from 222.186.175.147 port 64722 ssh2 Dec 5 17:30:27 root sshd[7102]: Failed password for root from 222.186.175.147 port 64722 ssh2 Dec 5 17:30:31 root sshd[7102]: Failed password for root from 222.186.175.147 port 64722 ssh2 ...	2019-12-06 00:36:01
218.92.0.178	attackbotsspam	Dec 5 17:16:34 sd-53420 sshd\[15287\]: User root from 218.92.0.178 not allowed because none of user's groups are listed in AllowGroups Dec 5 17:16:34 sd-53420 sshd\[15287\]: Failed none for invalid user root from 218.92.0.178 port 39820 ssh2 Dec 5 17:16:34 sd-53420 sshd\[15287\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.178 user=root Dec 5 17:16:36 sd-53420 sshd\[15287\]: Failed password for invalid user root from 218.92.0.178 port 39820 ssh2 Dec 5 17:16:40 sd-53420 sshd\[15287\]: Failed password for invalid user root from 218.92.0.178 port 39820 ssh2 ...	2019-12-06 00:18:35
143.208.181.32	attackspam	Dec 5 08:56:16 dallas01 sshd[28300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.208.181.32 Dec 5 08:56:19 dallas01 sshd[28300]: Failed password for invalid user hansoo from 143.208.181.32 port 53164 ssh2 Dec 5 09:02:52 dallas01 sshd[30361]: Failed password for root from 143.208.181.32 port 34760 ssh2	2019-12-06 00:36:26
104.155.200.198	attackspam	Dec 5 17:15:46 SilenceServices sshd[27761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.155.200.198 Dec 5 17:15:48 SilenceServices sshd[27761]: Failed password for invalid user myrnes from 104.155.200.198 port 54672 ssh2 Dec 5 17:22:46 SilenceServices sshd[29700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.155.200.198	2019-12-06 00:34:16
51.254.210.53	attackspambots	Dec 5 16:51:21 vmanager6029 sshd\[23007\]: Invalid user user from 51.254.210.53 port 41134 Dec 5 16:51:21 vmanager6029 sshd\[23007\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.210.53 Dec 5 16:51:23 vmanager6029 sshd\[23007\]: Failed password for invalid user user from 51.254.210.53 port 41134 ssh2	2019-12-06 00:35:41

最近上报的IP列表

180.249.41.108	52.0.143.176	114.48.111.242	46.24.251.34
159.197.230.48	110.139.253.201	187.140.177.222	198.173.178.30
113.200.121.186	2.178.98.166	83.118.194.4	222.212.126.238
211.180.246.111	111.125.241.20	74.91.117.3	115.79.81.242
113.176.84.227	72.138.45.190	49.235.170.200	42.118.57.202