98.120.254.49 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 98.120.254.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58229
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;98.120.254.49.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020500 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 17:01:16 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

49.254.120.98.in-addr.arpa domain name pointer syn-098-120-254-049.inf.spectrum.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
49.254.120.98.in-addr.arpa	name = syn-098-120-254-049.inf.spectrum.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.186.30.167	attack	May 25 21:03:51 debian sshd[21960]: Unable to negotiate with 222.186.30.167 port 29876: no matching key exchange method found. Their offer: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] May 25 22:01:47 debian sshd[24705]: Unable to negotiate with 222.186.30.167 port 52819: no matching key exchange method found. Their offer: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] ...	2020-05-26 10:04:20
183.82.149.121	attackspam	May 25 20:54:20 NPSTNNYC01T sshd[1909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.149.121 May 25 20:54:22 NPSTNNYC01T sshd[1909]: Failed password for invalid user operator from 183.82.149.121 port 50948 ssh2 May 25 21:00:44 NPSTNNYC01T sshd[2704]: Failed password for root from 183.82.149.121 port 36122 ssh2 ...	2020-05-26 10:33:16
45.142.195.7	attack	May 26 04:29:10 relay postfix/smtpd\[21598\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 26 04:29:45 relay postfix/smtpd\[8395\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 26 04:30:04 relay postfix/smtpd\[21598\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 26 04:30:37 relay postfix/smtpd\[24920\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 26 04:30:54 relay postfix/smtpd\[2890\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-26 10:34:58
134.122.72.221	attackbots	(sshd) Failed SSH login from 134.122.72.221 (DE/Germany/eusmtp-lb1.pepipost.com-1583933136060-s-2vcpu-4gb-fra1-01): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 26 03:50:30 amsweb01 sshd[15169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.72.221 user=root May 26 03:50:32 amsweb01 sshd[15169]: Failed password for root from 134.122.72.221 port 47588 ssh2 May 26 03:58:35 amsweb01 sshd[15894]: Invalid user bregenz from 134.122.72.221 port 48350 May 26 03:58:37 amsweb01 sshd[15894]: Failed password for invalid user bregenz from 134.122.72.221 port 48350 ssh2 May 26 04:01:30 amsweb01 sshd[16260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.72.221 user=root	2020-05-26 10:31:01
14.116.187.31	attackspam	May 26 04:51:22 gw1 sshd[19049]: Failed password for root from 14.116.187.31 port 54964 ssh2 ...	2020-05-26 10:02:09
8.12.17.210	attack	May 26 01:35:08 vmd48417 sshd[29290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=8.12.17.210	2020-05-26 10:36:45
77.42.88.12	attackspambots	port scan and connect, tcp 23 (telnet)	2020-05-26 10:06:35
123.20.250.5	attackbots	2020-05-2601:26:051jdMTs-0008W7-Am\<=info@whatsup2013.chH=\(localhost\)[123.20.250.5]:60384P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2185id=DBDE683B30E4CB88545118A06498980A@whatsup2013.chT="Idecidedtotakethe1ststepwithinourconversation"forecristian495@gmail.com2020-05-2601:25:321jdMTL-0008UJ-EQ\<=info@whatsup2013.chH=\(localhost\)[197.50.31.63]:35835P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2138id=1D18AEFDF6220D4E9297DE66A29BF5EA@whatsup2013.chT="Iwouldwishtolocateamanforaseriousrelationship"forcasumrch@gmail.com2020-05-2601:25:161jdMT5-0008TL-FA\<=info@whatsup2013.chH=\(localhost\)[218.84.125.8]:46497P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2211id=B9BC0A595286A9EA36337AC2064CE53E@whatsup2013.chT="Idecidedtotakethe1ststepwithinourconversation"forkatoaarmol@gmail.com2020-05-2601:25:491jdMTc-0008VB-0e\<=info@whatsup2013.chH=\(localhost\)[123.20.117.240]:40874P	2020-05-26 10:01:07
222.186.173.142	attack	May 25 22:00:56 NPSTNNYC01T sshd[7877]: Failed password for root from 222.186.173.142 port 56992 ssh2 May 25 22:01:04 NPSTNNYC01T sshd[7877]: Failed password for root from 222.186.173.142 port 56992 ssh2 May 25 22:01:07 NPSTNNYC01T sshd[7877]: Failed password for root from 222.186.173.142 port 56992 ssh2 May 25 22:01:07 NPSTNNYC01T sshd[7877]: error: maximum authentication attempts exceeded for root from 222.186.173.142 port 56992 ssh2 [preauth] ...	2020-05-26 10:12:45
197.50.31.63	attack	2020-05-2601:26:051jdMTs-0008W7-Am\<=info@whatsup2013.chH=\(localhost\)[123.20.250.5]:60384P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2185id=DBDE683B30E4CB88545118A06498980A@whatsup2013.chT="Idecidedtotakethe1ststepwithinourconversation"forecristian495@gmail.com2020-05-2601:25:321jdMTL-0008UJ-EQ\<=info@whatsup2013.chH=\(localhost\)[197.50.31.63]:35835P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2138id=1D18AEFDF6220D4E9297DE66A29BF5EA@whatsup2013.chT="Iwouldwishtolocateamanforaseriousrelationship"forcasumrch@gmail.com2020-05-2601:25:161jdMT5-0008TL-FA\<=info@whatsup2013.chH=\(localhost\)[218.84.125.8]:46497P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2211id=B9BC0A595286A9EA36337AC2064CE53E@whatsup2013.chT="Idecidedtotakethe1ststepwithinourconversation"forkatoaarmol@gmail.com2020-05-2601:25:491jdMTc-0008VB-0e\<=info@whatsup2013.chH=\(localhost\)[123.20.117.240]:40874P	2020-05-26 10:00:13
190.205.34.229	attackspam	serveres are UTC -0400 Lines containing failures of 190.205.34.229 May 25 09:57:22 tux2 sshd[24310]: Invalid user katharina from 190.205.34.229 port 38760 May 25 09:57:22 tux2 sshd[24310]: Failed password for invalid user katharina from 190.205.34.229 port 38760 ssh2 May 25 09:57:22 tux2 sshd[24310]: Received disconnect from 190.205.34.229 port 38760:11: Bye Bye [preauth] May 25 09:57:22 tux2 sshd[24310]: Disconnected from invalid user katharina 190.205.34.229 port 38760 [preauth] May 25 10:04:53 tux2 sshd[24796]: Failed password for r.r from 190.205.34.229 port 58234 ssh2 May 25 10:04:53 tux2 sshd[24796]: Received disconnect from 190.205.34.229 port 58234:11: Bye Bye [preauth] May 25 10:04:53 tux2 sshd[24796]: Disconnected from authenticating user r.r 190.205.34.229 port 58234 [preauth] May 25 10:08:57 tux2 sshd[25048]: Failed password for r.r from 190.205.34.229 port 59081 ssh2 May 25 10:08:57 tux2 sshd[25048]: Received disconnect from 190.205.34.229 port 59081:11: Bye........ ------------------------------	2020-05-26 10:14:05
106.54.185.253	attackbotsspam	Port scan detected on ports: 1433[TCP], 1433[TCP], 1433[TCP]	2020-05-26 10:21:14
192.241.211.215	attack	May 26 03:12:18 home sshd[32734]: Failed password for root from 192.241.211.215 port 59238 ssh2 May 26 03:19:15 home sshd[865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.211.215 May 26 03:19:17 home sshd[865]: Failed password for invalid user rex from 192.241.211.215 port 33033 ssh2 ...	2020-05-26 10:10:20
123.127.198.100	attackbotsspam	May 26 02:23:33 inter-technics sshd[9330]: Invalid user keith from 123.127.198.100 port 41057 May 26 02:23:33 inter-technics sshd[9330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.127.198.100 May 26 02:23:33 inter-technics sshd[9330]: Invalid user keith from 123.127.198.100 port 41057 May 26 02:23:36 inter-technics sshd[9330]: Failed password for invalid user keith from 123.127.198.100 port 41057 ssh2 May 26 02:27:39 inter-technics sshd[9533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.127.198.100 user=root May 26 02:27:41 inter-technics sshd[9533]: Failed password for root from 123.127.198.100 port 22211 ssh2 ...	2020-05-26 10:23:47
52.35.230.233	attackspam	Bad bot/spoofed identity	2020-05-26 10:36:05

最近上报的IP列表

104.126.27.195	247.156.242.103	216.87.94.26	25.230.220.0
19.96.208.82	120.211.182.88	125.60.252.148	98.51.59.222
182.114.10.194	133.175.205.6	209.122.77.74	69.225.16.9
171.141.148.200	179.69.159.163	38.170.27.39	125.28.208.47
230.127.72.3	80.108.255.63	182.151.30.198	189.45.189.115