125.41.189.61 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.41.189.61
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31574
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;125.41.189.61.			IN	A

;; AUTHORITY SECTION:
.			561	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 04:02:01 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

61.189.41.125.in-addr.arpa domain name pointer hn.kd.ny.adsl.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
61.189.41.125.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
49.204.83.2	attack	SSH Login Bruteforce	2020-01-13 06:38:40
94.130.54.163	attackspambots	Jan 12 15:37:48 vayu sshd[483508]: Did not receive identification string from 94.130.54.163 Jan 12 15:49:08 vayu sshd[487166]: reveeclipse mapping checking getaddrinfo for hosted-by.tqniahostname.com [94.130.54.163] failed - POSSIBLE BREAK-IN ATTEMPT! Jan 12 15:49:08 vayu sshd[487166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.130.54.163 user=bin Jan 12 15:49:09 vayu sshd[487166]: Failed password for bin from 94.130.54.163 port 37560 ssh2 Jan 12 15:49:10 vayu sshd[487166]: Received disconnect from 94.130.54.163: 11: Normal Shutdown, Thank you for playing [preauth] Jan 12 15:52:19 vayu sshd[488453]: reveeclipse mapping checking getaddrinfo for hosted-by.tqniahostname.com [94.130.54.163] failed - POSSIBLE BREAK-IN ATTEMPT! Jan 12 15:52:19 vayu sshd[488453]: Invalid user daemond from 94.130.54.163 Jan 12 15:52:19 vayu sshd[488453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.13........ -------------------------------	2020-01-13 06:19:14
89.248.168.226	attackspambots	Jan 12 23:02:46 debian-2gb-nbg1-2 kernel: \[1125871.252935\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=89.248.168.226 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=55368 PROTO=TCP SPT=58460 DPT=544 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-13 06:08:36
129.211.20.61	attackbots	Jan 12 06:37:45 neweola sshd[29272]: Invalid user admin from 129.211.20.61 port 49186 Jan 12 06:37:45 neweola sshd[29272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.20.61 Jan 12 06:37:47 neweola sshd[29272]: Failed password for invalid user admin from 129.211.20.61 port 49186 ssh2 Jan 12 06:37:49 neweola sshd[29272]: Received disconnect from 129.211.20.61 port 49186:11: Bye Bye [preauth] Jan 12 06:37:49 neweola sshd[29272]: Disconnected from invalid user admin 129.211.20.61 port 49186 [preauth] Jan 12 06:50:41 neweola sshd[30010]: Invalid user anna from 129.211.20.61 port 35368 Jan 12 06:50:41 neweola sshd[30010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.20.61 Jan 12 06:50:43 neweola sshd[30010]: Failed password for invalid user anna from 129.211.20.61 port 35368 ssh2 Jan 12 06:50:44 neweola sshd[30010]: Received disconnect from 129.211.20.61 port 35368:11: Bye........ -------------------------------	2020-01-13 06:25:40
122.228.19.80	attackspam	Unauthorized connection attempt detected from IP address 122.228.19.80 to port 9000 [J]	2020-01-13 06:37:46
92.118.38.40	attackspambots	Jan 12 17:11:11 web1 postfix/smtpd[31959]: warning: unknown[92.118.38.40]: SASL LOGIN authentication failed: authentication failure ...	2020-01-13 06:28:45
201.62.56.49	attackspambots	Automatic report - Banned IP Access	2020-01-13 06:04:29
137.226.113.10	attack	Jan 12 22:27:49 debian-2gb-nbg1-2 kernel: \[1123773.881691\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=137.226.113.10 DST=195.201.40.59 LEN=1258 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=UDP SPT=55536 DPT=443 LEN=1238	2020-01-13 06:30:30
61.81.101.108	attack	DATE:2020-01-12 22:27:49, IP:61.81.101.108, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-01-13 06:30:52
218.92.0.179	attackbots	Jan 12 23:11:28 ovpn sshd\[27941\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.179 user=root Jan 12 23:11:30 ovpn sshd\[27941\]: Failed password for root from 218.92.0.179 port 14147 ssh2 Jan 12 23:11:34 ovpn sshd\[27941\]: Failed password for root from 218.92.0.179 port 14147 ssh2 Jan 12 23:11:38 ovpn sshd\[27941\]: Failed password for root from 218.92.0.179 port 14147 ssh2 Jan 12 23:11:48 ovpn sshd\[28038\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.179 user=root	2020-01-13 06:29:09
54.39.145.59	attackbots	Jan 12 22:25:53 sso sshd[29661]: Failed password for root from 54.39.145.59 port 40450 ssh2 ...	2020-01-13 06:23:20
80.66.81.86	attack	Jan 12 23:11:01 relay postfix/smtpd\[24409\]: warning: unknown\[80.66.81.86\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 12 23:11:55 relay postfix/smtpd\[19120\]: warning: unknown\[80.66.81.86\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 12 23:12:15 relay postfix/smtpd\[24034\]: warning: unknown\[80.66.81.86\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 12 23:12:59 relay postfix/smtpd\[24409\]: warning: unknown\[80.66.81.86\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 12 23:13:20 relay postfix/smtpd\[20360\]: warning: unknown\[80.66.81.86\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-01-13 06:20:38
112.85.42.172	attack	2020-01-10 06:36:47 -> 2020-01-12 22:41:17 : 36 login attempts (112.85.42.172)	2020-01-13 06:05:34
128.108.33.252	attackbots	Jan 12 22:25:19 MK-Soft-VM7 sshd[15289]: Failed password for root from 128.108.33.252 port 43098 ssh2 ...	2020-01-13 06:12:01
129.226.57.194	attackspambots	Lines containing failures of 129.226.57.194 Jan 12 12:54:26 * sshd[38624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.57.194 user=r.r Jan 12 12:54:28 * sshd[38624]: Failed password for r.r from 129.226.57.194 port 42156 ssh2 Jan 12 12:54:29 * sshd[38624]: Received disconnect from 129.226.57.194 port 42156:11: Bye Bye [preauth] Jan 12 12:54:29 * sshd[38624]: Disconnected from authenticating user r.r 129.226.57.194 port 42156 [preauth] Jan 12 13:07:00 * sshd[39189]: Invalid user friedrich from 129.226.57.194 port 58446 Jan 12 13:07:00 * sshd[39189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.57.194 Jan 12 13:07:02 * sshd[39189]: Failed password for invalid user friedrich from 129.226.57.194 port 58446 ssh2 Jan 12 13:07:02 * sshd[39189]: Received disconnect from 129.226.57.194 port 58446:11: Bye Bye [preauth] Jan 12 13:07:02 *** sshd[39189]: Disconnecte........ ------------------------------	2020-01-13 06:27:01

最近上报的IP列表

125.41.189.109	125.41.189.223	125.41.190.13	125.41.188.61
125.41.189.197	125.41.190.210	125.41.190.27	125.41.190.50
125.41.191.101	125.41.191.83	125.41.191.23	118.136.79.194
125.41.204.141	125.41.191.241	125.41.2.118	125.41.2.120
125.41.204.19	125.41.205.139	125.41.206.153	125.41.206.184