124.128.98.45 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Jinan Zhuqiang Net Bar

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt detected from IP address 124.128.98.45 to port 23	2020-05-31 20:31:26
attackbotsspam	Port Scan: TCP/23	2019-09-16 05:14:28

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.128.98.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31429
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.128.98.45.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091501 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Sep 16 05:14:23 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 45.98.128.124.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 45.98.128.124.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
121.16.62.57	attackspambots	Unauthorised access (Aug 27) SRC=121.16.62.57 LEN=40 TTL=49 ID=58229 TCP DPT=8080 WINDOW=46060 SYN Unauthorised access (Aug 26) SRC=121.16.62.57 LEN=40 TTL=49 ID=53707 TCP DPT=8080 WINDOW=15501 SYN Unauthorised access (Aug 26) SRC=121.16.62.57 LEN=40 TTL=49 ID=30699 TCP DPT=8080 WINDOW=62960 SYN	2019-08-27 08:04:42
185.88.196.30	attackbotsspam	Brute force attempt	2019-08-27 07:48:30
91.121.235.6	attackspam	2019-08-27 02:19:45 dovecot_login authenticator failed for ip6.ip-91-121-235.eu (ylmf-pc) [91.121.235.6]:60744: 535 Incorrect authentication data (set_id=denis) 2019-08-27 02:19:51 dovecot_login authenticator failed for ip6.ip-91-121-235.eu (ylmf-pc) [91.121.235.6]:55922: 535 Incorrect authentication data (set_id=denis) 2019-08-27 02:20:01 dovecot_login authenticator failed for ip6.ip-91-121-235.eu (ylmf-pc) [91.121.235.6]:54974: 535 Incorrect authentication data (set_id=denis) 2019-08-27 02:20:18 dovecot_login authenticator failed for ip6.ip-91-121-235.eu (ylmf-pc) [91.121.235.6]:51141: 535 Incorrect authentication data 2019-08-27 02:20:28 dovecot_login authenticator failed for ip6.ip-91-121-235.eu (ylmf-pc) [91.121.235.6]:58460: 535 Incorrect authentication data 2019-08-27 02:20:39 dovecot_login authenticator failed for ip6.ip-91-121-235.eu (ylmf-pc) [91.121.235.6]:56452: 535 Incorrect authentication data 2019-08-27 02:20:50 dovecot_login authenticator failed for ip6.i........ ------------------------------	2019-08-27 08:00:52
61.224.140.86	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-27 07:41:19
177.11.244.78	attackspam	2019-08-27 01:19:32 H=([177.11.244.78]) [177.11.244.78]:23044 I=[10.100.18.20]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=177.11.244.78) 2019-08-27 01:19:34 unexpected disconnection while reading SMTP command from ([177.11.244.78]) [177.11.244.78]:23044 I=[10.100.18.20]:25 (error: Connection reset by peer) 2019-08-27 01:24:10 H=([177.11.244.78]) [177.11.244.78]:24086 I=[10.100.18.20]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=177.11.244.78) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=177.11.244.78	2019-08-27 08:03:34
119.29.234.236	attackbotsspam	Aug 26 13:37:59 web9 sshd\[16155\]: Invalid user postgres from 119.29.234.236 Aug 26 13:37:59 web9 sshd\[16155\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.234.236 Aug 26 13:38:01 web9 sshd\[16155\]: Failed password for invalid user postgres from 119.29.234.236 port 37484 ssh2 Aug 26 13:42:53 web9 sshd\[17091\]: Invalid user jana from 119.29.234.236 Aug 26 13:42:53 web9 sshd\[17091\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.234.236	2019-08-27 07:58:48
41.182.109.214	attackbots	Automatic report - Port Scan Attack	2019-08-27 07:55:06
106.39.87.236	attackspam	Aug 26 08:21:27 toyboy sshd[10909]: Invalid user regina from 106.39.87.236 Aug 26 08:21:27 toyboy sshd[10909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.39.87.236 Aug 26 08:21:29 toyboy sshd[10909]: Failed password for invalid user regina from 106.39.87.236 port 40609 ssh2 Aug 26 08:21:29 toyboy sshd[10909]: Received disconnect from 106.39.87.236: 11: Bye Bye [preauth] Aug 26 08:36:08 toyboy sshd[12690]: Invalid user chang from 106.39.87.236 Aug 26 08:36:08 toyboy sshd[12690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.39.87.236 Aug 26 08:36:11 toyboy sshd[12690]: Failed password for invalid user chang from 106.39.87.236 port 55204 ssh2 Aug 26 08:36:11 toyboy sshd[12690]: Received disconnect from 106.39.87.236: 11: Bye Bye [preauth] Aug 26 08:39:23 toyboy sshd[13120]: Invalid user server from 106.39.87.236 Aug 26 08:39:23 toyboy sshd[13120]: pam_unix(sshd:auth): authentica........ -------------------------------	2019-08-27 07:39:59
151.32.85.21	attack	2019-08-26 23:53:25 H=(ppp-21-85.32-151.wind.hostname) [151.32.85.21]:41567 I=[10.100.18.22]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=151.32.85.21) 2019-08-26 23:53:26 unexpected disconnection while reading SMTP command from (ppp-21-85.32-151.wind.hostname) [151.32.85.21]:41567 I=[10.100.18.22]:25 (error: Connection reset by peer) 2019-08-27 01:24:11 H=(ppp-21-85.32-151.wind.hostname) [151.32.85.21]:18661 I=[10.100.18.22]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=151.32.85.21) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=151.32.85.21	2019-08-27 08:05:11
129.144.156.96	attack	Aug 26 17:28:34 dev0-dcfr-rnet sshd[30439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.156.96 Aug 26 17:28:37 dev0-dcfr-rnet sshd[30439]: Failed password for invalid user okilab from 129.144.156.96 port 59315 ssh2 Aug 26 17:33:03 dev0-dcfr-rnet sshd[30485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.156.96	2019-08-27 07:38:39
118.25.124.210	attack	Aug 26 13:12:46 web9 sshd\[10836\]: Invalid user hadoop from 118.25.124.210 Aug 26 13:12:46 web9 sshd\[10836\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.124.210 Aug 26 13:12:48 web9 sshd\[10836\]: Failed password for invalid user hadoop from 118.25.124.210 port 51180 ssh2 Aug 26 13:17:14 web9 sshd\[11631\]: Invalid user fg from 118.25.124.210 Aug 26 13:17:14 web9 sshd\[11631\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.124.210	2019-08-27 07:22:29
62.102.148.68	attack	Aug 27 01:36:45 mail sshd[21285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.102.148.68 user=sshd Aug 27 01:36:47 mail sshd[21285]: Failed password for sshd from 62.102.148.68 port 60082 ssh2 ...	2019-08-27 07:43:27
125.88.186.65	attackbots	Aug 26 22:46:53 ip-172-31-62-245 sshd\[31702\]: Invalid user amit from 125.88.186.65\ Aug 26 22:46:55 ip-172-31-62-245 sshd\[31702\]: Failed password for invalid user amit from 125.88.186.65 port 56278 ssh2\ Aug 26 22:51:41 ip-172-31-62-245 sshd\[31713\]: Invalid user rtkid from 125.88.186.65\ Aug 26 22:51:42 ip-172-31-62-245 sshd\[31713\]: Failed password for invalid user rtkid from 125.88.186.65 port 43788 ssh2\ Aug 26 22:56:24 ip-172-31-62-245 sshd\[31726\]: Invalid user admin from 125.88.186.65\	2019-08-27 07:35:11
192.99.247.162	attack	Aug 26 13:39:01 sachi sshd\[31690\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.ip-192-99-247.net user=root Aug 26 13:39:03 sachi sshd\[31690\]: Failed password for root from 192.99.247.162 port 35844 ssh2 Aug 26 13:42:58 sachi sshd\[32183\]: Invalid user ceph from 192.99.247.162 Aug 26 13:42:58 sachi sshd\[32183\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.ip-192-99-247.net Aug 26 13:43:00 sachi sshd\[32183\]: Failed password for invalid user ceph from 192.99.247.162 port 53058 ssh2	2019-08-27 07:52:57
213.32.69.98	attackspambots	Aug 26 23:43:04 MK-Soft-VM4 sshd\[16046\]: Invalid user manager from 213.32.69.98 port 59962 Aug 26 23:43:04 MK-Soft-VM4 sshd\[16046\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.69.98 Aug 26 23:43:06 MK-Soft-VM4 sshd\[16046\]: Failed password for invalid user manager from 213.32.69.98 port 59962 ssh2 ...	2019-08-27 07:50:45

最近上报的IP列表

223.122.117.106	91.113.201.90	88.200.215.125	70.63.20.58
68.14.209.234	66.193.200.142	64.202.186.241	61.230.49.124
61.161.239.220	51.15.13.167	49.69.204.33	45.165.4.90
45.66.9.201	45.63.95.182	40.117.89.230	38.140.20.26
37.6.121.231	152.9.83.131	121.192.64.242	2400:6180:0:d0::15:e001