113.200.42.125

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.200.42.125
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24741
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;113.200.42.125.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 05:57:00 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 125.42.200.113.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 125.42.200.113.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
2400:6180:0:d1::807:b001	attackspam	[munged]::443 2400:6180:0:d1::807:b001 - - [12/Oct/2019:16:13:25 +0200] "POST /[munged]: HTTP/1.1" 200 6982 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2400:6180:0:d1::807:b001 - - [12/Oct/2019:16:13:41 +0200] "POST /[munged]: HTTP/1.1" 200 6848 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2400:6180:0:d1::807:b001 - - [12/Oct/2019:16:13:41 +0200] "POST /[munged]: HTTP/1.1" 200 6848 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2400:6180:0:d1::807:b001 - - [12/Oct/2019:16:13:49 +0200] "POST /[munged]: HTTP/1.1" 200 6847 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2400:6180:0:d1::807:b001 - - [12/Oct/2019:16:13:49 +0200] "POST /[munged]: HTTP/1.1" 200 6847 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2400:6180:0:d1::807:b001 - - [12/Oct/2019:16:13:52 +020	2019-10-13 01:24:15
51.140.202.20	attackspambots	Brute forcing RDP port 3389	2019-10-13 01:02:28
168.91.44.69	attackbots	Joomla User : try to access forms...	2019-10-13 00:45:17
1.186.151.94	attackspambots	2019-10-12T17:09:28.849013abusebot-3.cloudsearch.cf sshd\[7741\]: Invalid user wangchen from 1.186.151.94 port 57524	2019-10-13 01:09:41
45.6.72.17	attack	Oct 12 14:29:27 vtv3 sshd\[3308\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.6.72.17 user=root Oct 12 14:29:29 vtv3 sshd\[3308\]: Failed password for root from 45.6.72.17 port 35236 ssh2 Oct 12 14:34:03 vtv3 sshd\[5891\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.6.72.17 user=root Oct 12 14:34:05 vtv3 sshd\[5891\]: Failed password for root from 45.6.72.17 port 47378 ssh2 Oct 12 14:38:40 vtv3 sshd\[8282\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.6.72.17 user=root Oct 12 14:52:44 vtv3 sshd\[15102\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.6.72.17 user=root Oct 12 14:52:46 vtv3 sshd\[15102\]: Failed password for root from 45.6.72.17 port 39462 ssh2 Oct 12 14:57:30 vtv3 sshd\[17458\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.6.72.17 user=root Oct 1	2019-10-13 01:13:48
51.75.64.96	attackbots	SSH Bruteforce	2019-10-13 00:51:57
123.126.113.104	attackspambots	Looking for resource vulnerabilities	2019-10-13 01:27:55
41.225.63.42	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/41.225.63.42/ TN - 1H : (6) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TN NAME ASN : ASN37671 IP : 41.225.63.42 CIDR : 41.225.0.0/16 PREFIX COUNT : 36 UNIQUE IP COUNT : 202240 WYKRYTE ATAKI Z ASN37671 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-12 16:13:44 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-13 01:28:53
51.15.82.187	attack	Invalid user ubnt from 51.15.82.187 port 47606	2019-10-13 00:41:22
222.186.180.223	attack	Oct 12 19:13:13 SilenceServices sshd[28960]: Failed password for root from 222.186.180.223 port 28184 ssh2 Oct 12 19:13:17 SilenceServices sshd[28960]: Failed password for root from 222.186.180.223 port 28184 ssh2 Oct 12 19:13:22 SilenceServices sshd[28960]: Failed password for root from 222.186.180.223 port 28184 ssh2 Oct 12 19:13:30 SilenceServices sshd[28960]: error: maximum authentication attempts exceeded for root from 222.186.180.223 port 28184 ssh2 [preauth]	2019-10-13 01:14:15
188.50.89.15	attack	DATE:2019-10-12 16:14:46, IP:188.50.89.15, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2019-10-13 00:47:31
62.4.54.158	attack	proto=tcp . spt=45421 . dpt=25 . (Listed on truncate-gbudb also unsubscore and rbldns-ru) (888)	2019-10-13 00:53:29
159.65.146.249	attackspambots	Oct 6 19:32:02 lvps87-230-18-107 sshd[6370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.146.249 user=r.r Oct 6 19:32:04 lvps87-230-18-107 sshd[6370]: Failed password for r.r from 159.65.146.249 port 49740 ssh2 Oct 6 19:32:04 lvps87-230-18-107 sshd[6370]: Received disconnect from 159.65.146.249: 11: Bye Bye [preauth] Oct 6 19:46:32 lvps87-230-18-107 sshd[6597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.146.249 user=r.r Oct 6 19:46:33 lvps87-230-18-107 sshd[6597]: Failed password for r.r from 159.65.146.249 port 59400 ssh2 Oct 6 19:46:33 lvps87-230-18-107 sshd[6597]: Received disconnect from 159.65.146.249: 11: Bye Bye [preauth] Oct 6 19:50:46 lvps87-230-18-107 sshd[6650]: pam_unix(sshd:auth): authentication failure; lognam .... truncated .... Oct 6 19:32:02 lvps87-230-18-107 sshd[6370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty........ -------------------------------	2019-10-13 01:02:41
139.59.92.117	attackbots	Oct 12 18:45:55 ns381471 sshd[31359]: Failed password for root from 139.59.92.117 port 41442 ssh2 Oct 12 18:50:38 ns381471 sshd[31520]: Failed password for root from 139.59.92.117 port 52330 ssh2	2019-10-13 00:59:46
130.61.88.249	attackbots	Oct 12 06:40:55 hpm sshd\[17944\]: Invalid user Citibank-123 from 130.61.88.249 Oct 12 06:40:55 hpm sshd\[17944\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.88.249 Oct 12 06:40:56 hpm sshd\[17944\]: Failed password for invalid user Citibank-123 from 130.61.88.249 port 27631 ssh2 Oct 12 06:46:35 hpm sshd\[18374\]: Invalid user DE\#SW@AQ! from 130.61.88.249 Oct 12 06:46:35 hpm sshd\[18374\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.88.249	2019-10-13 00:54:32

最近上报的IP列表

113.200.240.254	113.200.243.122	113.200.71.109	113.200.67.196
113.200.80.239	113.200.91.106	187.120.181.170	113.200.91.197
113.204.195.150	113.206.12.207	113.204.68.2	113.206.128.166
113.206.130.50	113.206.129.12	241.136.246.16	113.203.205.37
113.206.133.32	113.206.131.247	113.206.134.223	113.206.131.216