203.125.145.58

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): Singapore Telecommunications Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Feb 19 12:15:28 firewall sshd[24162]: Invalid user sundapeng from 203.125.145.58 Feb 19 12:15:31 firewall sshd[24162]: Failed password for invalid user sundapeng from 203.125.145.58 port 54074 ssh2 Feb 19 12:20:32 firewall sshd[24365]: Invalid user cpanelcabcache from 203.125.145.58 ...	2020-02-20 00:21:15
attackspam	$f2bV_matches	2020-02-11 01:45:14
attack	Invalid user chameli from 203.125.145.58 port 40230	2020-01-31 21:46:46
attack	Invalid user planet from 203.125.145.58 port 55780	2020-01-26 08:12:15
attackbots	Unauthorized connection attempt detected from IP address 203.125.145.58 to port 2220 [J]	2020-01-23 17:00:22
attackbots	Unauthorized connection attempt detected from IP address 203.125.145.58 to port 2220 [J]	2020-01-07 21:25:09
attack	Dec 22 00:58:59 icinga sshd[3651]: Failed password for root from 203.125.145.58 port 58558 ssh2 ...	2019-12-22 08:39:22
attackbotsspam	Dec 20 15:36:53 Ubuntu-1404-trusty-64-minimal sshd\[32537\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=root Dec 20 15:36:55 Ubuntu-1404-trusty-64-minimal sshd\[32537\]: Failed password for root from 203.125.145.58 port 56712 ssh2 Dec 20 15:45:21 Ubuntu-1404-trusty-64-minimal sshd\[4407\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=root Dec 20 15:45:23 Ubuntu-1404-trusty-64-minimal sshd\[4407\]: Failed password for root from 203.125.145.58 port 38340 ssh2 Dec 20 15:51:59 Ubuntu-1404-trusty-64-minimal sshd\[11291\]: Invalid user tysdahl from 203.125.145.58	2019-12-21 02:08:29
attackspambots	Dec 16 18:57:45 vps647732 sshd[27291]: Failed password for root from 203.125.145.58 port 34744 ssh2 ...	2019-12-17 02:13:34
attack	2019-11-20T08:31:06.915159abusebot-5.cloudsearch.cf sshd\[7074\]: Invalid user chanaye from 203.125.145.58 port 50642	2019-11-20 16:58:16
attackbots	Nov 15 15:29:51 ns382633 sshd\[29346\]: Invalid user pillegrault from 203.125.145.58 port 47964 Nov 15 15:29:51 ns382633 sshd\[29346\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 Nov 15 15:29:53 ns382633 sshd\[29346\]: Failed password for invalid user pillegrault from 203.125.145.58 port 47964 ssh2 Nov 15 15:35:35 ns382633 sshd\[30842\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=root Nov 15 15:35:37 ns382633 sshd\[30842\]: Failed password for root from 203.125.145.58 port 34350 ssh2	2019-11-16 06:13:57
attackspambots	Nov 12 16:14:00 srv01 sshd[28163]: Invalid user joscelin from 203.125.145.58 Nov 12 16:14:00 srv01 sshd[28163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 Nov 12 16:14:00 srv01 sshd[28163]: Invalid user joscelin from 203.125.145.58 Nov 12 16:14:02 srv01 sshd[28163]: Failed password for invalid user joscelin from 203.125.145.58 port 51162 ssh2 Nov 12 16:18:26 srv01 sshd[28369]: Invalid user ching from 203.125.145.58 ...	2019-11-13 00:11:03
attackspambots	Nov 11 09:27:47 hosting sshd[21486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=root Nov 11 09:27:49 hosting sshd[21486]: Failed password for root from 203.125.145.58 port 42530 ssh2 ...	2019-11-11 16:45:09
attack	Oct 26 16:47:48 game-panel sshd[10351]: Failed password for root from 203.125.145.58 port 60586 ssh2 Oct 26 16:53:06 game-panel sshd[10511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 Oct 26 16:53:08 game-panel sshd[10511]: Failed password for invalid user admin from 203.125.145.58 port 47412 ssh2	2019-10-27 01:02:51
attackspam	Invalid user gopi from 203.125.145.58 port 53230	2019-10-25 06:44:25
attackbotsspam	2019-10-21T13:34:15.794263shield sshd\[26366\]: Invalid user mz from 203.125.145.58 port 49574 2019-10-21T13:34:15.803204shield sshd\[26366\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 2019-10-21T13:34:18.226499shield sshd\[26366\]: Failed password for invalid user mz from 203.125.145.58 port 49574 ssh2 2019-10-21T13:38:38.968550shield sshd\[27036\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=root 2019-10-21T13:38:40.829839shield sshd\[27036\]: Failed password for root from 203.125.145.58 port 58096 ssh2	2019-10-21 21:52:13
attackspam	2019-10-20T13:51:29.884587shield sshd\[20284\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=root 2019-10-20T13:51:32.042359shield sshd\[20284\]: Failed password for root from 203.125.145.58 port 52986 ssh2 2019-10-20T13:55:52.379974shield sshd\[21217\]: Invalid user steam from 203.125.145.58 port 35232 2019-10-20T13:55:52.384126shield sshd\[21217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 2019-10-20T13:55:54.647190shield sshd\[21217\]: Failed password for invalid user steam from 203.125.145.58 port 35232 ssh2	2019-10-20 22:11:14
attackspam	SSH Bruteforce attack	2019-10-20 15:45:30
attack	Oct 18 14:37:14 ns381471 sshd[14003]: Failed password for root from 203.125.145.58 port 42354 ssh2 Oct 18 14:41:51 ns381471 sshd[14386]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 Oct 18 14:41:53 ns381471 sshd[14386]: Failed password for invalid user admin from 203.125.145.58 port 52758 ssh2	2019-10-18 20:43:09
attackbots	Oct 17 10:26:28 wbs sshd\[28859\]: Invalid user rajkot from 203.125.145.58 Oct 17 10:26:28 wbs sshd\[28859\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 Oct 17 10:26:30 wbs sshd\[28859\]: Failed password for invalid user rajkot from 203.125.145.58 port 57644 ssh2 Oct 17 10:30:47 wbs sshd\[29231\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=root Oct 17 10:30:49 wbs sshd\[29231\]: Failed password for root from 203.125.145.58 port 39878 ssh2	2019-10-18 04:38:50
attackbotsspam	Oct 13 16:05:36 markkoudstaal sshd[7884]: Failed password for root from 203.125.145.58 port 33942 ssh2 Oct 13 16:10:43 markkoudstaal sshd[8424]: Failed password for root from 203.125.145.58 port 45672 ssh2	2019-10-13 22:29:28
attackbotsspam	Oct 5 06:31:27 xb3 sshd[20926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:31:29 xb3 sshd[20926]: Failed password for r.r from 203.125.145.58 port 45898 ssh2 Oct 5 06:31:29 xb3 sshd[20926]: Received disconnect from 203.125.145.58: 11: Bye Bye [preauth] Oct 5 06:36:06 xb3 sshd[21157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:36:08 xb3 sshd[21157]: Failed password for r.r from 203.125.145.58 port 58332 ssh2 Oct 5 06:36:08 xb3 sshd[21157]: Received disconnect from 203.125.145.58: 11: Bye Bye [preauth] Oct 5 06:40:48 xb3 sshd[21413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:40:50 xb3 sshd[21413]: Failed password for r.r from 203.125.145.58 port 42540 ssh2 Oct 5 06:40:50 xb3 sshd[21413]: Received disconnect from 203.125.145.58: 1........ -------------------------------	2019-10-12 15:52:13
attack	Oct 10 18:13:18 nextcloud sshd\[5712\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=root Oct 10 18:13:19 nextcloud sshd\[5712\]: Failed password for root from 203.125.145.58 port 45994 ssh2 Oct 10 18:17:52 nextcloud sshd\[13603\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=root ...	2019-10-11 00:46:08
attackspambots	Oct 5 06:31:27 xb3 sshd[20926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:31:29 xb3 sshd[20926]: Failed password for r.r from 203.125.145.58 port 45898 ssh2 Oct 5 06:31:29 xb3 sshd[20926]: Received disconnect from 203.125.145.58: 11: Bye Bye [preauth] Oct 5 06:36:06 xb3 sshd[21157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:36:08 xb3 sshd[21157]: Failed password for r.r from 203.125.145.58 port 58332 ssh2 Oct 5 06:36:08 xb3 sshd[21157]: Received disconnect from 203.125.145.58: 11: Bye Bye [preauth] Oct 5 06:40:48 xb3 sshd[21413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:40:50 xb3 sshd[21413]: Failed password for r.r from 203.125.145.58 port 42540 ssh2 Oct 5 06:40:50 xb3 sshd[21413]: Received disconnect from 203.125.145.58: 1........ -------------------------------	2019-10-09 12:48:08
attackbotsspam	Oct 5 06:31:27 xb3 sshd[20926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:31:29 xb3 sshd[20926]: Failed password for r.r from 203.125.145.58 port 45898 ssh2 Oct 5 06:31:29 xb3 sshd[20926]: Received disconnect from 203.125.145.58: 11: Bye Bye [preauth] Oct 5 06:36:06 xb3 sshd[21157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:36:08 xb3 sshd[21157]: Failed password for r.r from 203.125.145.58 port 58332 ssh2 Oct 5 06:36:08 xb3 sshd[21157]: Received disconnect from 203.125.145.58: 11: Bye Bye [preauth] Oct 5 06:40:48 xb3 sshd[21413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:40:50 xb3 sshd[21413]: Failed password for r.r from 203.125.145.58 port 42540 ssh2 Oct 5 06:40:50 xb3 sshd[21413]: Received disconnect from 203.125.145.58: 1........ -------------------------------	2019-10-08 05:10:30
attack	Oct 6 09:48:47 wbs sshd\[1004\]: Invalid user Jelszo_111 from 203.125.145.58 Oct 6 09:48:47 wbs sshd\[1004\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 Oct 6 09:48:49 wbs sshd\[1004\]: Failed password for invalid user Jelszo_111 from 203.125.145.58 port 50076 ssh2 Oct 6 09:53:55 wbs sshd\[1517\]: Invalid user Auftrag2017 from 203.125.145.58 Oct 6 09:53:55 wbs sshd\[1517\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58	2019-10-07 04:02:07

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 203.125.145.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58402
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;203.125.145.58.			IN	A

;; AUTHORITY SECTION:
.			204	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100601 1800 900 604800 86400

;; Query time: 358 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 07 04:01:57 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 58.145.125.203.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 58.145.125.203.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
37.187.197.113	attackspambots	CMS (WordPress or Joomla) login attempt.	2020-06-30 13:46:59
95.27.203.123	attackspambots	1593489300 - 06/30/2020 05:55:00 Host: 95.27.203.123/95.27.203.123 Port: 445 TCP Blocked	2020-06-30 13:56:18
118.69.173.199	attackspam	C1,WP GET /suche/wp-login.php	2020-06-30 13:32:24
94.237.53.210	attack	Invalid user oracle from 94.237.53.210 port 55472 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94-237-53-210.uk-lon1.upcloud.host Invalid user oracle from 94.237.53.210 port 55472 Failed password for invalid user oracle from 94.237.53.210 port 55472 ssh2 Invalid user mos from 94.237.53.210 port 54852	2020-06-30 13:59:04
123.207.97.250	attackbotsspam	Jun 30 07:51:49 ArkNodeAT sshd\[30910\]: Invalid user developer from 123.207.97.250 Jun 30 07:51:49 ArkNodeAT sshd\[30910\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.97.250 Jun 30 07:51:51 ArkNodeAT sshd\[30910\]: Failed password for invalid user developer from 123.207.97.250 port 59496 ssh2	2020-06-30 13:53:57
20.44.216.74	attackspam	2020-06-30T05:07:30.581228shield sshd\[32568\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.44.216.74 user=root 2020-06-30T05:07:33.039101shield sshd\[32568\]: Failed password for root from 20.44.216.74 port 57552 ssh2 2020-06-30T05:11:04.256828shield sshd\[1320\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.44.216.74 user=root 2020-06-30T05:11:06.092452shield sshd\[1320\]: Failed password for root from 20.44.216.74 port 34292 ssh2 2020-06-30T05:14:41.728989shield sshd\[2713\]: Invalid user db2fenc1 from 20.44.216.74 port 39362	2020-06-30 13:27:58
92.43.170.131	attackspam	[Tue Jun 30 10:54:45.746079 2020] [:error] [pid 3299:tid 139691177268992] [client 92.43.170.131:57592] [client 92.43.170.131] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "Xvq3hZyhCVLOeMdk4nA9CAAAAcQ"] ...	2020-06-30 14:11:29
201.49.127.212	attackbots	$f2bV_matches	2020-06-30 13:25:12
217.23.5.166	attack	Brute forcing email accounts	2020-06-30 14:06:39
159.89.99.68	attackbots	CMS (WordPress or Joomla) login attempt.	2020-06-30 13:46:00
185.22.142.197	attack	Jun 30 07:13:52 relay dovecot: imap-login: Disconnected: Inactivity $auth failed, 1 attempts in 180 secs$: user=\, method=PLAIN, rip=185.22.142.197, lip=176.9.177.164, session=\ Jun 30 07:13:54 relay dovecot: imap-login: Disconnected: Inactivity $auth failed, 1 attempts in 180 secs$: user=\, method=PLAIN, rip=185.22.142.197, lip=176.9.177.164, session=\ Jun 30 07:14:16 relay dovecot: imap-login: Disconnected: Inactivity $auth failed, 1 attempts in 180 secs$: user=\, method=PLAIN, rip=185.22.142.197, lip=176.9.177.164, session=\ Jun 30 07:19:28 relay dovecot: imap-login: Disconnected: Inactivity $auth failed, 1 attempts in 180 secs$: user=\, method=PLAIN, rip=185.22.142.197, lip=176.9.177.164, session=\ Jun 30 07:19:30 relay dovecot: imap-login: Disconnected: Inactivity \(auth failed, 1 attempts in 180 ...	2020-06-30 13:26:47
46.38.148.22	attackspambots	2020-06-30 05:26:00 auth_plain authenticator failed for (User) [46.38.148.22]: 535 Incorrect authentication data (set_id=FGA@csmailer.org) 2020-06-30 05:26:39 auth_plain authenticator failed for (User) [46.38.148.22]: 535 Incorrect authentication data (set_id=File@csmailer.org) 2020-06-30 05:27:16 auth_plain authenticator failed for (User) [46.38.148.22]: 535 Incorrect authentication data (set_id=Expo@csmailer.org) 2020-06-30 05:27:57 auth_plain authenticator failed for (User) [46.38.148.22]: 535 Incorrect authentication data (set_id=EuroCAUCElogo@csmailer.org) 2020-06-30 05:28:35 auth_plain authenticator failed for (User) [46.38.148.22]: 535 Incorrect authentication data (set_id=geisha@csmailer.org) ...	2020-06-30 13:32:47
14.13.240.97	attackspam	Automatic report - Port Scan Attack	2020-06-30 13:53:34
92.43.170.11	attack	[Tue Jun 30 10:54:47.002031 2020] [:error] [pid 3647:tid 139691177268992] [client 92.43.170.11:58982] [client 92.43.170.11] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/favicon.ico"] [unique_id "Xvq3hp5-VmYWBSWxGQF6ZwAAAfE"], referer: http://103.27.207.197/ ...	2020-06-30 14:09:25
106.127.185.224	attackspam	Unauthorized connection attempt detected from IP address 106.127.185.224 to port 23	2020-06-30 13:30:23

最近上报的IP列表

35.27.27.74	73.169.175.172	230.5.139.183	46.228.0.59
156.250.177.247	65.162.96.51	93.220.179.7	51.201.31.121
13.219.77.141	0.213.250.47	24.131.156.16	124.228.100.176
97.230.3.235	124.157.81.242	101.19.46.98	116.65.142.146
49.234.180.8	141.126.90.226	83.93.92.85	35.233.140.213