203.125.145.58

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): Singapore Telecommunications Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Feb 19 12:15:28 firewall sshd[24162]: Invalid user sundapeng from 203.125.145.58 Feb 19 12:15:31 firewall sshd[24162]: Failed password for invalid user sundapeng from 203.125.145.58 port 54074 ssh2 Feb 19 12:20:32 firewall sshd[24365]: Invalid user cpanelcabcache from 203.125.145.58 ...	2020-02-20 00:21:15
attackspam	$f2bV_matches	2020-02-11 01:45:14
attack	Invalid user chameli from 203.125.145.58 port 40230	2020-01-31 21:46:46
attack	Invalid user planet from 203.125.145.58 port 55780	2020-01-26 08:12:15
attackbots	Unauthorized connection attempt detected from IP address 203.125.145.58 to port 2220 [J]	2020-01-23 17:00:22
attackbots	Unauthorized connection attempt detected from IP address 203.125.145.58 to port 2220 [J]	2020-01-07 21:25:09
attack	Dec 22 00:58:59 icinga sshd[3651]: Failed password for root from 203.125.145.58 port 58558 ssh2 ...	2019-12-22 08:39:22
attackbotsspam	Dec 20 15:36:53 Ubuntu-1404-trusty-64-minimal sshd\[32537\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=root Dec 20 15:36:55 Ubuntu-1404-trusty-64-minimal sshd\[32537\]: Failed password for root from 203.125.145.58 port 56712 ssh2 Dec 20 15:45:21 Ubuntu-1404-trusty-64-minimal sshd\[4407\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=root Dec 20 15:45:23 Ubuntu-1404-trusty-64-minimal sshd\[4407\]: Failed password for root from 203.125.145.58 port 38340 ssh2 Dec 20 15:51:59 Ubuntu-1404-trusty-64-minimal sshd\[11291\]: Invalid user tysdahl from 203.125.145.58	2019-12-21 02:08:29
attackspambots	Dec 16 18:57:45 vps647732 sshd[27291]: Failed password for root from 203.125.145.58 port 34744 ssh2 ...	2019-12-17 02:13:34
attack	2019-11-20T08:31:06.915159abusebot-5.cloudsearch.cf sshd\[7074\]: Invalid user chanaye from 203.125.145.58 port 50642	2019-11-20 16:58:16
attackbots	Nov 15 15:29:51 ns382633 sshd\[29346\]: Invalid user pillegrault from 203.125.145.58 port 47964 Nov 15 15:29:51 ns382633 sshd\[29346\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 Nov 15 15:29:53 ns382633 sshd\[29346\]: Failed password for invalid user pillegrault from 203.125.145.58 port 47964 ssh2 Nov 15 15:35:35 ns382633 sshd\[30842\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=root Nov 15 15:35:37 ns382633 sshd\[30842\]: Failed password for root from 203.125.145.58 port 34350 ssh2	2019-11-16 06:13:57
attackspambots	Nov 12 16:14:00 srv01 sshd[28163]: Invalid user joscelin from 203.125.145.58 Nov 12 16:14:00 srv01 sshd[28163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 Nov 12 16:14:00 srv01 sshd[28163]: Invalid user joscelin from 203.125.145.58 Nov 12 16:14:02 srv01 sshd[28163]: Failed password for invalid user joscelin from 203.125.145.58 port 51162 ssh2 Nov 12 16:18:26 srv01 sshd[28369]: Invalid user ching from 203.125.145.58 ...	2019-11-13 00:11:03
attackspambots	Nov 11 09:27:47 hosting sshd[21486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=root Nov 11 09:27:49 hosting sshd[21486]: Failed password for root from 203.125.145.58 port 42530 ssh2 ...	2019-11-11 16:45:09
attack	Oct 26 16:47:48 game-panel sshd[10351]: Failed password for root from 203.125.145.58 port 60586 ssh2 Oct 26 16:53:06 game-panel sshd[10511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 Oct 26 16:53:08 game-panel sshd[10511]: Failed password for invalid user admin from 203.125.145.58 port 47412 ssh2	2019-10-27 01:02:51
attackspam	Invalid user gopi from 203.125.145.58 port 53230	2019-10-25 06:44:25
attackbotsspam	2019-10-21T13:34:15.794263shield sshd\[26366\]: Invalid user mz from 203.125.145.58 port 49574 2019-10-21T13:34:15.803204shield sshd\[26366\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 2019-10-21T13:34:18.226499shield sshd\[26366\]: Failed password for invalid user mz from 203.125.145.58 port 49574 ssh2 2019-10-21T13:38:38.968550shield sshd\[27036\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=root 2019-10-21T13:38:40.829839shield sshd\[27036\]: Failed password for root from 203.125.145.58 port 58096 ssh2	2019-10-21 21:52:13
attackspam	2019-10-20T13:51:29.884587shield sshd\[20284\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=root 2019-10-20T13:51:32.042359shield sshd\[20284\]: Failed password for root from 203.125.145.58 port 52986 ssh2 2019-10-20T13:55:52.379974shield sshd\[21217\]: Invalid user steam from 203.125.145.58 port 35232 2019-10-20T13:55:52.384126shield sshd\[21217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 2019-10-20T13:55:54.647190shield sshd\[21217\]: Failed password for invalid user steam from 203.125.145.58 port 35232 ssh2	2019-10-20 22:11:14
attackspam	SSH Bruteforce attack	2019-10-20 15:45:30
attack	Oct 18 14:37:14 ns381471 sshd[14003]: Failed password for root from 203.125.145.58 port 42354 ssh2 Oct 18 14:41:51 ns381471 sshd[14386]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 Oct 18 14:41:53 ns381471 sshd[14386]: Failed password for invalid user admin from 203.125.145.58 port 52758 ssh2	2019-10-18 20:43:09
attackbots	Oct 17 10:26:28 wbs sshd\[28859\]: Invalid user rajkot from 203.125.145.58 Oct 17 10:26:28 wbs sshd\[28859\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 Oct 17 10:26:30 wbs sshd\[28859\]: Failed password for invalid user rajkot from 203.125.145.58 port 57644 ssh2 Oct 17 10:30:47 wbs sshd\[29231\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=root Oct 17 10:30:49 wbs sshd\[29231\]: Failed password for root from 203.125.145.58 port 39878 ssh2	2019-10-18 04:38:50
attackbotsspam	Oct 13 16:05:36 markkoudstaal sshd[7884]: Failed password for root from 203.125.145.58 port 33942 ssh2 Oct 13 16:10:43 markkoudstaal sshd[8424]: Failed password for root from 203.125.145.58 port 45672 ssh2	2019-10-13 22:29:28
attackbotsspam	Oct 5 06:31:27 xb3 sshd[20926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:31:29 xb3 sshd[20926]: Failed password for r.r from 203.125.145.58 port 45898 ssh2 Oct 5 06:31:29 xb3 sshd[20926]: Received disconnect from 203.125.145.58: 11: Bye Bye [preauth] Oct 5 06:36:06 xb3 sshd[21157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:36:08 xb3 sshd[21157]: Failed password for r.r from 203.125.145.58 port 58332 ssh2 Oct 5 06:36:08 xb3 sshd[21157]: Received disconnect from 203.125.145.58: 11: Bye Bye [preauth] Oct 5 06:40:48 xb3 sshd[21413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:40:50 xb3 sshd[21413]: Failed password for r.r from 203.125.145.58 port 42540 ssh2 Oct 5 06:40:50 xb3 sshd[21413]: Received disconnect from 203.125.145.58: 1........ -------------------------------	2019-10-12 15:52:13
attack	Oct 10 18:13:18 nextcloud sshd\[5712\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=root Oct 10 18:13:19 nextcloud sshd\[5712\]: Failed password for root from 203.125.145.58 port 45994 ssh2 Oct 10 18:17:52 nextcloud sshd\[13603\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=root ...	2019-10-11 00:46:08
attackspambots	Oct 5 06:31:27 xb3 sshd[20926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:31:29 xb3 sshd[20926]: Failed password for r.r from 203.125.145.58 port 45898 ssh2 Oct 5 06:31:29 xb3 sshd[20926]: Received disconnect from 203.125.145.58: 11: Bye Bye [preauth] Oct 5 06:36:06 xb3 sshd[21157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:36:08 xb3 sshd[21157]: Failed password for r.r from 203.125.145.58 port 58332 ssh2 Oct 5 06:36:08 xb3 sshd[21157]: Received disconnect from 203.125.145.58: 11: Bye Bye [preauth] Oct 5 06:40:48 xb3 sshd[21413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:40:50 xb3 sshd[21413]: Failed password for r.r from 203.125.145.58 port 42540 ssh2 Oct 5 06:40:50 xb3 sshd[21413]: Received disconnect from 203.125.145.58: 1........ -------------------------------	2019-10-09 12:48:08
attackbotsspam	Oct 5 06:31:27 xb3 sshd[20926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:31:29 xb3 sshd[20926]: Failed password for r.r from 203.125.145.58 port 45898 ssh2 Oct 5 06:31:29 xb3 sshd[20926]: Received disconnect from 203.125.145.58: 11: Bye Bye [preauth] Oct 5 06:36:06 xb3 sshd[21157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:36:08 xb3 sshd[21157]: Failed password for r.r from 203.125.145.58 port 58332 ssh2 Oct 5 06:36:08 xb3 sshd[21157]: Received disconnect from 203.125.145.58: 11: Bye Bye [preauth] Oct 5 06:40:48 xb3 sshd[21413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:40:50 xb3 sshd[21413]: Failed password for r.r from 203.125.145.58 port 42540 ssh2 Oct 5 06:40:50 xb3 sshd[21413]: Received disconnect from 203.125.145.58: 1........ -------------------------------	2019-10-08 05:10:30
attack	Oct 6 09:48:47 wbs sshd\[1004\]: Invalid user Jelszo_111 from 203.125.145.58 Oct 6 09:48:47 wbs sshd\[1004\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 Oct 6 09:48:49 wbs sshd\[1004\]: Failed password for invalid user Jelszo_111 from 203.125.145.58 port 50076 ssh2 Oct 6 09:53:55 wbs sshd\[1517\]: Invalid user Auftrag2017 from 203.125.145.58 Oct 6 09:53:55 wbs sshd\[1517\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58	2019-10-07 04:02:07

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 203.125.145.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58402
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;203.125.145.58.			IN	A

;; AUTHORITY SECTION:
.			204	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100601 1800 900 604800 86400

;; Query time: 358 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 07 04:01:57 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 58.145.125.203.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 58.145.125.203.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
37.99.129.66	attack	Unauthorized connection attempt from IP address 37.99.129.66 on Port 445(SMB)	2019-06-23 15:06:47
37.230.163.20	attack	Jun 19 16:13:54 mxgate1 postfix/postscreen[8463]: CONNECT from [37.230.163.20]:40472 to [176.31.12.44]:25 Jun 19 16:13:54 mxgate1 postfix/dnsblog[8465]: addr 37.230.163.20 listed by domain cbl.abuseat.org as 127.0.0.2 Jun 19 16:13:54 mxgate1 postfix/dnsblog[8469]: addr 37.230.163.20 listed by domain zen.spamhaus.org as 127.0.0.4 Jun 19 16:13:54 mxgate1 postfix/dnsblog[8469]: addr 37.230.163.20 listed by domain zen.spamhaus.org as 127.0.0.3 Jun 19 16:13:54 mxgate1 postfix/dnsblog[8464]: addr 37.230.163.20 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jun 19 16:13:54 mxgate1 postfix/dnsblog[8468]: addr 37.230.163.20 listed by domain bl.spamcop.net as 127.0.0.2 Jun 19 16:13:54 mxgate1 postfix/postscreen[8463]: PREGREET 22 after 0.2 from [37.230.163.20]:40472: EHLO 1122gilford.com Jun 19 16:13:54 mxgate1 postfix/postscreen[8463]: DNSBL rank 5 for [37.230.163.20]:40472 Jun x@x Jun 19 16:13:55 mxgate1 postfix/postscreen[8463]: HANGUP after 0.56 from [37.230.163.20]:40472........ -------------------------------	2019-06-23 15:05:22
82.245.177.183	attackspam	Jun 23 02:06:34 mail sshd\[7829\]: Invalid user pi from 82.245.177.183 port 59422 Jun 23 02:06:34 mail sshd\[7831\]: Invalid user pi from 82.245.177.183 port 59432 Jun 23 02:06:34 mail sshd\[7829\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.245.177.183 Jun 23 02:06:34 mail sshd\[7831\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.245.177.183 Jun 23 02:06:36 mail sshd\[7829\]: Failed password for invalid user pi from 82.245.177.183 port 59422 ssh2	2019-06-23 14:47:35
54.38.185.87	attack	Jun 23 04:45:12 bouncer sshd\[2490\]: Invalid user ts3 from 54.38.185.87 port 45220 Jun 23 04:45:12 bouncer sshd\[2490\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.185.87 Jun 23 04:45:14 bouncer sshd\[2490\]: Failed password for invalid user ts3 from 54.38.185.87 port 45220 ssh2 ...	2019-06-23 14:17:16
222.186.129.44	attack	ports scanning	2019-06-23 14:39:38
119.2.67.59	attackspam	41525/udp [2019-06-22]1pkt	2019-06-23 15:00:18
2a01:488:66:1000:53a9:21cc:0:1	attackspam	[munged]::443 2a01:488:66:1000:53a9:21cc:0:1 - - [23/Jun/2019:06:15:10 +0200] "POST /[munged]: HTTP/1.1" 200 6722 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2a01:488:66:1000:53a9:21cc:0:1 - - [23/Jun/2019:06:15:11 +0200] "POST /[munged]: HTTP/1.1" 200 6710 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-06-23 14:09:33
106.13.43.242	attackspambots	Jun 22 20:10:47 debian sshd\[23730\]: Invalid user iftfw from 106.13.43.242 port 39072 Jun 22 20:10:47 debian sshd\[23730\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.43.242 Jun 22 20:10:48 debian sshd\[23730\]: Failed password for invalid user iftfw from 106.13.43.242 port 39072 ssh2 ...	2019-06-23 14:56:48
62.254.112.121	attackspam	Jun 23 02:11:51 localhost sshd\[2430\]: Invalid user admin from 62.254.112.121 port 6225 Jun 23 02:11:51 localhost sshd\[2430\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.254.112.121 Jun 23 02:11:53 localhost sshd\[2430\]: Failed password for invalid user admin from 62.254.112.121 port 6225 ssh2	2019-06-23 14:13:01
157.7.130.79	attack	fail2ban honeypot	2019-06-23 15:01:14
140.143.203.168	attackspambots	Jun 23 02:56:50 core01 sshd\[29134\]: Invalid user ftptest from 140.143.203.168 port 37576 Jun 23 02:56:50 core01 sshd\[29134\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.203.168 ...	2019-06-23 14:18:46
162.243.20.243	attackspam	Jun 23 02:17:15 unicornsoft sshd\[15361\]: Invalid user cirros from 162.243.20.243 Jun 23 02:17:15 unicornsoft sshd\[15361\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.20.243 Jun 23 02:17:17 unicornsoft sshd\[15361\]: Failed password for invalid user cirros from 162.243.20.243 port 56416 ssh2	2019-06-23 14:40:31
31.3.152.128	attackbotsspam	\[2019-06-23 08:20:11\] NOTICE\[9010\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '\' failed for '31.3.152.128:1010' $callid: 1684936645-1762993814-1646604005$ - Failed to authenticate \[2019-06-23 08:20:11\] SECURITY\[3671\] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2019-06-23T08:20:11.886+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="\",SessionID="1684936645-1762993814-1646604005",LocalAddress="IPV4/UDP/188.40.118.248/5060",RemoteAddress="IPV4/UDP/31.3.152.128/1010",Challenge="1561270811/dcacfc207407bde0df2a445e2fc71b24",Response="55137db6a5d96bde4059df6f270612d7",ExpectedResponse="" \[2019-06-23 08:20:11\] NOTICE\[6698\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '\' failed for '31.3.152.128:1010' $callid: 1684936645-1762993814-1646604005$ - Failed to authenticate \[2019-06-23 08:20:11\] SECURITY\[3671\] res_security_log.c: SecurityEvent="ChallengeResponseFail	2019-06-23 14:48:05
218.17.158.45	attackspam	139/tcp [2019-06-22]1pkt	2019-06-23 14:42:17
115.51.211.210	attackbots	TCP port 23 (Telnet) attempt blocked by firewall. [2019-06-23 02:09:47]	2019-06-23 15:01:55

最近上报的IP列表

35.27.27.74	73.169.175.172	230.5.139.183	46.228.0.59
156.250.177.247	65.162.96.51	93.220.179.7	51.201.31.121
13.219.77.141	0.213.250.47	24.131.156.16	124.228.100.176
97.230.3.235	124.157.81.242	101.19.46.98	116.65.142.146
49.234.180.8	141.126.90.226	83.93.92.85	35.233.140.213