124.5.55.245 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea (Republic of)

运营商(isp): DLIVE

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Automatic report - Port Scan Attack	2020-08-23 20:13:41
attackbotsspam	Automatic report - Port Scan Attack	2020-08-13 05:07:23

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.5.55.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37980
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.5.55.245.			IN	A

;; AUTHORITY SECTION:
.			530	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081203 1800 900 604800 86400

;; Query time: 182 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Aug 13 05:07:20 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 245.55.5.124.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 245.55.5.124.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
195.54.161.41	attack	scans 18 times in preceeding hours on the ports (in chronological order) 6601 6602 6607 6623 6610 6602 6629 6600 6605 6626 6615 6628 6606 6618 6608 6625 6617 6624	2020-05-25 21:37:11
168.197.227.234	attackbotsspam	(sshd) Failed SSH login from 168.197.227.234 (BR/Brazil/227-197-168-234.andradas-net.com.br): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 25 13:31:33 amsweb01 sshd[15820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.197.227.234 user=root May 25 13:31:36 amsweb01 sshd[15820]: Failed password for root from 168.197.227.234 port 49590 ssh2 May 25 13:59:21 amsweb01 sshd[20606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.197.227.234 user=root May 25 13:59:23 amsweb01 sshd[20606]: Failed password for root from 168.197.227.234 port 59276 ssh2 May 25 14:03:23 amsweb01 sshd[21041]: Invalid user yuanwd from 168.197.227.234 port 60902	2020-05-25 21:08:16
113.172.189.9	attack	May 25 14:28:23 master sshd[4414]: Failed password for invalid user admin from 113.172.189.9 port 34223 ssh2	2020-05-25 21:08:37
154.68.199.18	attackbots	Icarus honeypot on github	2020-05-25 21:26:43
181.168.58.85	attackbots	May 25 15:12:57 abendstille sshd\[12448\]: Invalid user pi from 181.168.58.85 May 25 15:12:57 abendstille sshd\[12448\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.168.58.85 May 25 15:12:58 abendstille sshd\[12450\]: Invalid user pi from 181.168.58.85 May 25 15:12:58 abendstille sshd\[12450\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.168.58.85 May 25 15:12:59 abendstille sshd\[12448\]: Failed password for invalid user pi from 181.168.58.85 port 41500 ssh2 ...	2020-05-25 21:48:02
165.90.205.197	attackbots	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-05-25 21:19:18
190.161.150.22	attackspambots	Port Scan detected! ...	2020-05-25 21:39:15
186.226.169.240	attack	May 25 13:15:20 master sshd[4284]: Failed password for invalid user admin from 186.226.169.240 port 57853 ssh2	2020-05-25 21:40:24
170.246.98.62	attackbots	Website hacking attempt: Improper php file access [php file]	2020-05-25 21:48:29
117.87.85.41	attackspam	Netgear DGN Device Remote Command Execution Vulnerability, PTR: PTR record not found	2020-05-25 21:48:53
45.254.33.124	attackspambots	2020-05-25 06:54:04.705198-0500 localhost smtpd[45400]: NOQUEUE: reject: RCPT from unknown[45.254.33.124]: 450 4.7.25 Client host rejected: cannot find your hostname, [45.254.33.124]; from= to= proto=ESMTP helo=<00fd7d95.beucre.xyz>	2020-05-25 21:34:58
155.94.201.99	attack	'Fail2Ban'	2020-05-25 21:31:11
51.89.165.2	attackbots	Drupal Core Remote Code Execution Vulnerability, PTR: 2.ip-51-89-165.eu.	2020-05-25 21:45:13
180.127.125.9	attackspam	GPON Home Routers Remote Code Execution Vulnerability CVE 2018-10562, PTR: PTR record not found	2020-05-25 21:37:46
222.247.4.128	attackspambots	GPON Home Routers Remote Code Execution Vulnerability CVE 2018-10562, PTR: PTR record not found	2020-05-25 21:46:43

最近上报的IP列表

94.102.51.202	51.77.64.86	223.199.21.43	222.252.16.141
177.25.84.91	46.20.66.9	50.21.197.232	197.60.160.207
53.89.220.101	233.144.177.28	86.111.137.55	35.25.22.209
78.29.47.189	41.38.190.22	92.238.162.25	190.15.198.192
124.234.200.49	47.92.200.30	18.225.33.217	111.12.249.115