154.125.196.141

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Senegal

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 154.125.196.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31442
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;154.125.196.141.		IN	A

;; AUTHORITY SECTION:
.			497	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012900 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 23:40:26 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 141.196.125.154.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 141.196.125.154.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
45.95.168.126	attack	Invalid user admin from 45.95.168.126 port 40736	2020-09-12 03:41:47
140.143.57.195	attack	Sep 11 20:54:03 sshgateway sshd\[10501\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.57.195 user=root Sep 11 20:54:05 sshgateway sshd\[10501\]: Failed password for root from 140.143.57.195 port 48694 ssh2 Sep 11 20:56:08 sshgateway sshd\[10759\]: Invalid user walt from 140.143.57.195 Sep 11 20:56:08 sshgateway sshd\[10759\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.57.195	2020-09-12 04:06:12
222.97.126.167	attackbots	Sep 11 04:05:53 root sshd[26653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.97.126.167 user=root Sep 11 04:05:55 root sshd[26653]: Failed password for root from 222.97.126.167 port 40151 ssh2 ...	2020-09-12 03:42:15
162.211.226.228	attackspambots	Sep 11 16:46:13 XXX sshd[25351]: Invalid user smbtesting from 162.211.226.228 port 54458	2020-09-12 03:49:51
27.5.47.214	attackspambots	Threat Management Alert 1: Attempted Administrator Privilege Gain. Signature ET EXPLOIT D-Link Devices Home Network Administration Protocol Command Execution. From: 27.5.47.214:35403, to: 192.168.4.99:80, protocol: TCP	2020-09-12 04:09:57
113.72.122.232	attack	[Fri Sep 11 23:59:39.517777 2020] [:error] [pid 11178:tid 139761675114240] [client 113.72.122.232:53700] [client 113.72.122.232] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/"] [unique_id "X1us@0ECWTRI1HmEdolN4wAAAI8"] ...	2020-09-12 04:08:24
94.102.56.238	attack	scans once in preceeding hours on the ports (in chronological order) 3389 resulting in total of 136 scans from 94.102.48.0/20 block.	2020-09-12 03:46:33
203.95.220.39	attack	1599843574 - 09/11/2020 18:59:34 Host: 203.95.220.39/203.95.220.39 Port: 445 TCP Blocked	2020-09-12 04:11:41
118.40.248.20	attackspambots	Sep 11 19:04:35 instance-2 sshd[19058]: Failed password for root from 118.40.248.20 port 57815 ssh2 Sep 11 19:06:40 instance-2 sshd[19094]: Failed password for root from 118.40.248.20 port 43883 ssh2	2020-09-12 03:58:09
186.234.80.146	attackbots	HTTP DDOS	2020-09-12 03:49:05
222.186.15.62	attack	Sep 11 19:53:56 scw-6657dc sshd[8676]: Failed password for root from 222.186.15.62 port 55720 ssh2 Sep 11 19:53:56 scw-6657dc sshd[8676]: Failed password for root from 222.186.15.62 port 55720 ssh2 Sep 11 19:53:58 scw-6657dc sshd[8676]: Failed password for root from 222.186.15.62 port 55720 ssh2 ...	2020-09-12 03:56:33
94.187.32.35	attackbots	Amazon.job's - Recruitment	2020-09-12 04:08:05
202.83.44.255	attackspam	Telnet Honeypot -> Telnet Bruteforce / Login	2020-09-12 04:10:28
103.76.252.6	attack	2020-09-11T17:16:52.892380abusebot-4.cloudsearch.cf sshd[30232]: Invalid user freyna from 103.76.252.6 port 63841 2020-09-11T17:16:52.899475abusebot-4.cloudsearch.cf sshd[30232]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.76.252.6 2020-09-11T17:16:52.892380abusebot-4.cloudsearch.cf sshd[30232]: Invalid user freyna from 103.76.252.6 port 63841 2020-09-11T17:16:55.161063abusebot-4.cloudsearch.cf sshd[30232]: Failed password for invalid user freyna from 103.76.252.6 port 63841 ssh2 2020-09-11T17:21:25.157283abusebot-4.cloudsearch.cf sshd[30287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.76.252.6 user=root 2020-09-11T17:21:27.900086abusebot-4.cloudsearch.cf sshd[30287]: Failed password for root from 103.76.252.6 port 32546 ssh2 2020-09-11T17:26:03.650863abusebot-4.cloudsearch.cf sshd[30351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.76.252.6 ...	2020-09-12 03:55:53
45.76.247.98	attackbotsspam	fail2ban - Attack against Apache (too many 404s)	2020-09-12 03:43:33

最近上报的IP列表

200.54.103.186	18.231.135.196	70.252.54.21	200.52.66.6
46.157.235.62	94.169.189.83	40.236.207.32	136.34.8.160
103.123.87.233	90.143.21.17	106.12.220.156	200.52.194.43
120.41.29.246	121.233.58.236	200.52.129.165	126.162.138.198
200.50.240.141	200.50.184.7	157.44.172.127	200.5.113.46