182.130.25.125

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 182.130.25.125
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64685
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;182.130.25.125.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022800 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 19:50:41 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 125.25.130.182.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 125.25.130.182.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
118.193.33.186	attack	(sshd) Failed SSH login from 118.193.33.186 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 23 12:59:39 server sshd[1058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.193.33.186 user=root Sep 23 12:59:41 server sshd[1058]: Failed password for root from 118.193.33.186 port 35662 ssh2 Sep 23 13:05:32 server sshd[1761]: Invalid user josh from 118.193.33.186 Sep 23 13:05:32 server sshd[1761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.193.33.186 Sep 23 13:05:34 server sshd[1761]: Failed password for invalid user josh from 118.193.33.186 port 59902 ssh2	2020-09-24 04:04:59
180.76.165.107	attack	180.76.165.107 (CN/China/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 23 13:04:48 server5 sshd[12765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.165.107 user=root Sep 23 13:04:50 server5 sshd[12765]: Failed password for root from 180.76.165.107 port 60396 ssh2 Sep 23 13:04:34 server5 sshd[12713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.141.157.220 user=root Sep 23 13:04:36 server5 sshd[12713]: Failed password for root from 213.141.157.220 port 55616 ssh2 Sep 23 13:05:56 server5 sshd[13227]: Failed password for root from 164.68.118.155 port 52548 ssh2 Sep 23 13:01:21 server5 sshd[11204]: Failed password for root from 58.185.183.60 port 36062 ssh2 IP Addresses Blocked:	2020-09-24 03:37:24
99.203.18.165	attack	Brute forcing email accounts	2020-09-24 04:01:31
80.82.70.25	attackspam	Sep 23 19:37:48 [host] kernel: [1214684.367493] [U Sep 23 19:37:48 [host] kernel: [1214684.667952] [U Sep 23 19:38:42 [host] kernel: [1214738.202557] [U Sep 23 19:42:33 [host] kernel: [1214969.289799] [U Sep 23 19:53:44 [host] kernel: [1215640.129736] [U Sep 23 20:03:58 [host] kernel: [1216254.321900] [U	2020-09-24 03:34:15
78.128.113.121	attackspambots	Sep 23 21:28:43 galaxy event: galaxy/lswi: smtp: email@wi.uni-potsdam.de [78.128.113.121] authentication failure using internet password Sep 23 21:28:44 galaxy event: galaxy/lswi: smtp: email [78.128.113.121] authentication failure using internet password Sep 23 21:31:47 galaxy event: galaxy/lswi: smtp: anne.baumgrass@wi.uni-potsdam.de [78.128.113.121] authentication failure using internet password Sep 23 21:31:48 galaxy event: galaxy/lswi: smtp: anne.baumgrass [78.128.113.121] authentication failure using internet password Sep 23 21:31:48 galaxy event: galaxy/lswi: smtp: service@erp-buch.de [78.128.113.121] authentication failure using internet password ...	2020-09-24 03:35:54
138.36.193.21	attackbotsspam	Sep 23 18:48:27 mail.srvfarm.net postfix/smtps/smtpd[196163]: warning: unknown[138.36.193.21]: SASL PLAIN authentication failed: Sep 23 18:48:28 mail.srvfarm.net postfix/smtps/smtpd[196163]: lost connection after AUTH from unknown[138.36.193.21] Sep 23 18:49:34 mail.srvfarm.net postfix/smtps/smtpd[191709]: warning: unknown[138.36.193.21]: SASL PLAIN authentication failed: Sep 23 18:49:34 mail.srvfarm.net postfix/smtps/smtpd[191709]: lost connection after AUTH from unknown[138.36.193.21] Sep 23 18:56:50 mail.srvfarm.net postfix/smtps/smtpd[197152]: warning: unknown[138.36.193.21]: SASL PLAIN authentication failed:	2020-09-24 04:08:31
102.133.165.93	attack	SSH brutforce	2020-09-24 03:42:39
164.68.118.155	attackbots	164.68.118.155 (DE/Germany/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 23 13:04:48 server5 sshd[12765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.165.107 user=root Sep 23 13:04:50 server5 sshd[12765]: Failed password for root from 180.76.165.107 port 60396 ssh2 Sep 23 13:04:34 server5 sshd[12713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.141.157.220 user=root Sep 23 13:04:36 server5 sshd[12713]: Failed password for root from 213.141.157.220 port 55616 ssh2 Sep 23 13:05:56 server5 sshd[13227]: Failed password for root from 164.68.118.155 port 52548 ssh2 Sep 23 13:01:21 server5 sshd[11204]: Failed password for root from 58.185.183.60 port 36062 ssh2 IP Addresses Blocked: 180.76.165.107 (CN/China/-) 213.141.157.220 (RU/Russia/-)	2020-09-24 03:34:43
52.229.20.252	attackbots	Sep 23 21:01:47 raspberrypi sshd[1560]: Failed password for root from 52.229.20.252 port 16615 ssh2 ...	2020-09-24 03:36:48
118.89.91.134	attackspambots	Tried sshing with brute force.	2020-09-24 03:38:23
142.115.19.34	attack	Sep 23 18:10:26 zimbra sshd[13843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.115.19.34 user=r.r Sep 23 18:10:28 zimbra sshd[13843]: Failed password for r.r from 142.115.19.34 port 39494 ssh2 Sep 23 18:10:28 zimbra sshd[13843]: Received disconnect from 142.115.19.34 port 39494:11: Bye Bye [preauth] Sep 23 18:10:28 zimbra sshd[13843]: Disconnected from 142.115.19.34 port 39494 [preauth] Sep 23 18:22:27 zimbra sshd[23306]: Invalid user jy from 142.115.19.34 Sep 23 18:22:27 zimbra sshd[23306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.115.19.34 Sep 23 18:22:28 zimbra sshd[23306]: Failed password for invalid user jy from 142.115.19.34 port 46698 ssh2 Sep 23 18:22:29 zimbra sshd[23306]: Received disconnect from 142.115.19.34 port 46698:11: Bye Bye [preauth] Sep 23 18:22:29 zimbra sshd[23306]: Disconnected from 142.115.19.34 port 46698 [preauth] Sep 23 18:26:00 zimbra sshd[257........ -------------------------------	2020-09-24 04:06:23
91.137.251.41	attackbotsspam	Sep 23 18:50:39 mail.srvfarm.net postfix/smtpd[194163]: warning: unknown[91.137.251.41]: SASL PLAIN authentication failed: Sep 23 18:50:39 mail.srvfarm.net postfix/smtpd[194163]: lost connection after AUTH from unknown[91.137.251.41] Sep 23 18:54:35 mail.srvfarm.net postfix/smtpd[198463]: warning: unknown[91.137.251.41]: SASL PLAIN authentication failed: Sep 23 18:54:35 mail.srvfarm.net postfix/smtpd[198463]: lost connection after AUTH from unknown[91.137.251.41] Sep 23 18:56:59 mail.srvfarm.net postfix/smtpd[194154]: warning: unknown[91.137.251.41]: SASL PLAIN authentication failed:	2020-09-24 04:09:56
104.236.244.98	attackspambots	Sep 23 23:43:52 mx sshd[912634]: Failed password for root from 104.236.244.98 port 51498 ssh2 Sep 23 23:47:04 mx sshd[912646]: Invalid user test from 104.236.244.98 port 54278 Sep 23 23:47:04 mx sshd[912646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.244.98 Sep 23 23:47:04 mx sshd[912646]: Invalid user test from 104.236.244.98 port 54278 Sep 23 23:47:06 mx sshd[912646]: Failed password for invalid user test from 104.236.244.98 port 54278 ssh2 ...	2020-09-24 03:46:06
45.142.120.147	attackbots	Sep 23 21:57:51 websrv1.derweidener.de postfix/smtpd[405590]: warning: unknown[45.142.120.147]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 23 21:57:57 websrv1.derweidener.de postfix/smtpd[405593]: warning: unknown[45.142.120.147]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 23 21:58:01 websrv1.derweidener.de postfix/smtpd[405595]: warning: unknown[45.142.120.147]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 23 21:58:07 websrv1.derweidener.de postfix/smtpd[405590]: warning: unknown[45.142.120.147]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 23 21:58:10 websrv1.derweidener.de postfix/smtpd[405596]: warning: unknown[45.142.120.147]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-09-24 04:10:50
190.218.159.84	attackspam	Sep 21 21:09:18 roki-contabo sshd\[23994\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.218.159.84 user=root Sep 21 21:09:20 roki-contabo sshd\[23994\]: Failed password for root from 190.218.159.84 port 48566 ssh2 Sep 22 00:08:30 roki-contabo sshd\[25887\]: Invalid user pi from 190.218.159.84 Sep 22 00:08:30 roki-contabo sshd\[25887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.218.159.84 Sep 22 00:08:32 roki-contabo sshd\[25887\]: Failed password for invalid user pi from 190.218.159.84 port 57914 ssh2 ...	2020-09-24 03:51:55

最近上报的IP列表

140.191.138.158	235.12.31.208	75.209.196.93	185.50.226.218
192.129.254.234	108.162.247.155	49.202.44.222	53.6.96.232
245.147.214.75	80.97.180.171	255.28.164.8	142.15.159.87
70.184.153.220	28.195.200.159	187.149.120.252	96.5.38.200
101.64.10.134	168.109.95.19	203.217.11.248	8.97.91.121