124.13.11.44 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Malaysia

运营商(isp): Telekom Malaysia Berhad

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Automatic report - Port Scan Attack	2019-08-06 15:20:59

相同子网IP讨论:

IP	类型	评论内容	时间
124.13.115.253	attack	Unauthorized connection attempt detected from IP address 124.13.115.253 to port 2220 [J]	2020-01-28 01:46:18
124.13.119.245	attackspam	Unauthorized connection attempt detected from IP address 124.13.119.245 to port 23 [J]	2020-01-12 04:37:31
124.13.116.90	attack	RDP Bruteforce	2019-07-09 11:24:47
124.13.116.90	attack	Many RDP login attempts detected by IDS script	2019-07-06 06:27:45

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.13.11.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45479
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.13.11.44.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080600 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 06 15:20:52 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 44.11.13.124.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 44.11.13.124.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
122.228.19.80	attackspam	27.11.2019 00:37:11 Connection to port 2455 blocked by firewall	2019-11-27 08:45:05
62.234.109.155	attackspambots	Nov 27 00:50:53 OPSO sshd\[12528\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.109.155 user=root Nov 27 00:50:56 OPSO sshd\[12528\]: Failed password for root from 62.234.109.155 port 46925 ssh2 Nov 27 00:58:05 OPSO sshd\[14004\]: Invalid user intihar from 62.234.109.155 port 36313 Nov 27 00:58:05 OPSO sshd\[14004\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.109.155 Nov 27 00:58:08 OPSO sshd\[14004\]: Failed password for invalid user intihar from 62.234.109.155 port 36313 ssh2	2019-11-27 08:14:00
79.166.167.152	attackspambots	Telnet Server BruteForce Attack	2019-11-27 08:28:54
68.183.230.201	attackbotsspam	abuseConfidenceScore blocked for 12h	2019-11-27 08:46:14
139.59.80.65	attackspambots	ssh failed login	2019-11-27 08:09:50
213.128.67.212	attackbots	Nov 26 14:04:21 auw2 sshd\[29189\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.128.67.212 user=root Nov 26 14:04:23 auw2 sshd\[29189\]: Failed password for root from 213.128.67.212 port 43408 ssh2 Nov 26 14:10:23 auw2 sshd\[29810\]: Invalid user ching from 213.128.67.212 Nov 26 14:10:23 auw2 sshd\[29810\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.128.67.212 Nov 26 14:10:25 auw2 sshd\[29810\]: Failed password for invalid user ching from 213.128.67.212 port 50512 ssh2	2019-11-27 08:13:33
129.28.31.102	attackspambots	Nov 27 05:19:42 vibhu-HP-Z238-Microtower-Workstation sshd\[28829\]: Invalid user vt from 129.28.31.102 Nov 27 05:19:42 vibhu-HP-Z238-Microtower-Workstation sshd\[28829\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.31.102 Nov 27 05:19:43 vibhu-HP-Z238-Microtower-Workstation sshd\[28829\]: Failed password for invalid user vt from 129.28.31.102 port 40528 ssh2 Nov 27 05:26:33 vibhu-HP-Z238-Microtower-Workstation sshd\[29118\]: Invalid user estill from 129.28.31.102 Nov 27 05:26:33 vibhu-HP-Z238-Microtower-Workstation sshd\[29118\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.31.102 ...	2019-11-27 08:49:43
192.34.61.49	attack	Nov 26 23:48:30 ns382633 sshd\[9638\]: Invalid user ts3ovh from 192.34.61.49 port 43653 Nov 26 23:48:30 ns382633 sshd\[9638\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.34.61.49 Nov 26 23:48:33 ns382633 sshd\[9638\]: Failed password for invalid user ts3ovh from 192.34.61.49 port 43653 ssh2 Nov 26 23:55:05 ns382633 sshd\[10973\]: Invalid user samdra from 192.34.61.49 port 34005 Nov 26 23:55:05 ns382633 sshd\[10973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.34.61.49	2019-11-27 08:42:26
59.173.19.66	attackbots	Nov 27 01:25:26 OPSO sshd\[20395\]: Invalid user anchor123 from 59.173.19.66 port 36472 Nov 27 01:25:26 OPSO sshd\[20395\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.173.19.66 Nov 27 01:25:27 OPSO sshd\[20395\]: Failed password for invalid user anchor123 from 59.173.19.66 port 36472 ssh2 Nov 27 01:28:51 OPSO sshd\[20994\]: Invalid user sakimoto from 59.173.19.66 port 43186 Nov 27 01:28:51 OPSO sshd\[20994\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.173.19.66	2019-11-27 08:38:52
218.92.0.145	attackspam	Nov 27 05:15:30 gw1 sshd[2922]: Failed password for root from 218.92.0.145 port 18239 ssh2 Nov 27 05:15:43 gw1 sshd[2922]: error: maximum authentication attempts exceeded for root from 218.92.0.145 port 18239 ssh2 [preauth] ...	2019-11-27 08:20:03
120.52.121.86	attackbotsspam	(sshd) Failed SSH login from 120.52.121.86 (-): 5 in the last 3600 secs	2019-11-27 08:34:35
213.14.161.71	attack	port scan and connect, tcp 23 (telnet)	2019-11-27 08:18:44
181.41.216.143	attackspambots	Nov 27 01:15:38 relay postfix/smtpd\[19565\]: NOQUEUE: reject: RCPT from unknown\[181.41.216.143\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[181.41.216.131\]\> Nov 27 01:15:38 relay postfix/smtpd\[19565\]: NOQUEUE: reject: RCPT from unknown\[181.41.216.143\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[181.41.216.131\]\> Nov 27 01:15:38 relay postfix/smtpd\[19565\]: NOQUEUE: reject: RCPT from unknown\[181.41.216.143\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[181.41.216.131\]\> Nov 27 01:15:38 relay postfix/smtpd\[19565\]: NOQUEUE: reject: RCPT from unknown\[181.41.216.143\]: 554 5.7.1 \: Relay access denied\; from=\ to=\	2019-11-27 08:33:03
200.8.106.3	attackspam	Port Scan 1433	2019-11-27 08:17:55
83.250.114.120	attack	Attempt To login To email server On IMAP service On 26-11-2019 22:55:21.	2019-11-27 08:31:35

最近上报的IP列表

54.36.249.18	27.184.87.237	192.3.183.130	200.195.28.21
218.52.113.46	49.79.45.116	182.74.17.80	139.59.119.99
81.213.146.191	54.36.150.99	14.162.102.202	171.234.155.213
129.41.249.252	149.159.112.119	193.56.28.27	169.50.124.158
14.169.146.195	164.160.93.3	60.223.234.47	202.110.78.222

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表