120.48.9.128 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.48.9.128
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4850
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;120.48.9.128.			IN	A

;; AUTHORITY SECTION:
.			435	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021802 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 12:34:02 CST 2022
;; MSG SIZE  rcvd: 105

Host info

b'Host 128.9.48.120.in-addr.arpa not found: 2(SERVFAIL)
'

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 128.9.48.120.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
61.177.172.177	attack	Oct 5 20:36:09 vpn01 sshd[7771]: Failed password for root from 61.177.172.177 port 1031 ssh2 Oct 5 20:36:18 vpn01 sshd[7771]: Failed password for root from 61.177.172.177 port 1031 ssh2 ...	2020-10-06 02:42:49
180.76.156.178	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-10-05T17:32:39Z and 2020-10-05T17:39:21Z	2020-10-06 02:54:29
14.29.190.237	attackbotsspam	14.29.190.237 (CN/China/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 5 08:19:15 server2 sshd[17148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.195.191 user=root Oct 5 08:17:31 server2 sshd[15734]: Failed password for root from 223.4.71.151 port 58692 ssh2 Oct 5 08:17:41 server2 sshd[15902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.0.127 user=root Oct 5 08:17:44 server2 sshd[15902]: Failed password for root from 140.143.0.127 port 55256 ssh2 Oct 5 08:19:17 server2 sshd[17148]: Failed password for root from 129.28.195.191 port 46704 ssh2 Oct 5 08:19:21 server2 sshd[17175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.190.237 user=root IP Addresses Blocked: 129.28.195.191 (CN/China/-) 223.4.71.151 (CN/China/-) 140.143.0.127 (CN/China/-)	2020-10-06 02:45:38
122.166.216.212	attackbots	2020-10-05T16:03:06.242110abusebot-7.cloudsearch.cf sshd[12398]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.166.216.212 user=root 2020-10-05T16:03:08.054504abusebot-7.cloudsearch.cf sshd[12398]: Failed password for root from 122.166.216.212 port 41550 ssh2 2020-10-05T16:06:11.713452abusebot-7.cloudsearch.cf sshd[12493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.166.216.212 user=root 2020-10-05T16:06:13.922475abusebot-7.cloudsearch.cf sshd[12493]: Failed password for root from 122.166.216.212 port 49946 ssh2 2020-10-05T16:09:19.619150abusebot-7.cloudsearch.cf sshd[12541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.166.216.212 user=root 2020-10-05T16:09:22.304650abusebot-7.cloudsearch.cf sshd[12541]: Failed password for root from 122.166.216.212 port 58368 ssh2 2020-10-05T16:12:26.216332abusebot-7.cloudsearch.cf sshd[12674]: pam_unix(sshd: ...	2020-10-06 02:33:35
106.12.202.119	attackspambots	IP blocked	2020-10-06 02:30:01
51.75.202.218	attackspambots	Oct 5 14:43:40 firewall sshd[15206]: Failed password for root from 51.75.202.218 port 45126 ssh2 Oct 5 14:47:10 firewall sshd[15299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.202.218 user=root Oct 5 14:47:11 firewall sshd[15299]: Failed password for root from 51.75.202.218 port 50086 ssh2 ...	2020-10-06 02:56:01
186.94.121.105	attack	20/10/4@16:34:42: FAIL: Alarm-Network address from=186.94.121.105 ...	2020-10-06 02:54:14
212.47.241.15	attackspambots	Oct 5 18:30:59 vlre-nyc-1 sshd\[10297\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.47.241.15 user=root Oct 5 18:31:01 vlre-nyc-1 sshd\[10297\]: Failed password for root from 212.47.241.15 port 54704 ssh2 Oct 5 18:34:32 vlre-nyc-1 sshd\[10391\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.47.241.15 user=root Oct 5 18:34:34 vlre-nyc-1 sshd\[10391\]: Failed password for root from 212.47.241.15 port 33656 ssh2 Oct 5 18:38:02 vlre-nyc-1 sshd\[10486\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.47.241.15 user=root ...	2020-10-06 02:59:05
180.250.248.169	attack	Oct 5 02:03:49 ourumov-web sshd\[29276\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.250.248.169 user=root Oct 5 02:03:51 ourumov-web sshd\[29276\]: Failed password for root from 180.250.248.169 port 60486 ssh2 Oct 5 02:11:30 ourumov-web sshd\[29807\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.250.248.169 user=root ...	2020-10-06 02:26:22
141.98.10.210	attackspam	TCP (SYN) 141.98.10.210:40945 -> port 22, len 60	2020-10-06 02:46:26
60.166.117.48	attack	Oct 5 11:18:04 ms-srv sshd[23342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.166.117.48 user=root Oct 5 11:18:06 ms-srv sshd[23342]: Failed password for invalid user root from 60.166.117.48 port 60330 ssh2	2020-10-06 02:47:36
85.60.133.249	attack	Listed on zen-spamhaus also barracudaCentral and abuseat.org / proto=6 . srcport=58674 . dstport=445 SMB . (3499)	2020-10-06 02:47:08
112.47.57.81	attackspambots	(smtpauth) Failed SMTP AUTH login from 112.47.57.81 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2020-10-05 13:08:11 dovecot_login authenticator failed for (rushfordlakerecreationdistrict.com) [112.47.57.81]:50804: 535 Incorrect authentication data (set_id=nologin) 2020-10-05 13:08:39 dovecot_login authenticator failed for (rushfordlakerecreationdistrict.com) [112.47.57.81]:55286: 535 Incorrect authentication data (set_id=mailer@rushfordlakerecreationdistrict.com) 2020-10-05 13:09:06 dovecot_login authenticator failed for (rushfordlakerecreationdistrict.com) [112.47.57.81]:60068: 535 Incorrect authentication data (set_id=mailer) 2020-10-05 13:54:15 dovecot_login authenticator failed for (rosaritodevelopers.com) [112.47.57.81]:39610: 535 Incorrect authentication data (set_id=nologin) 2020-10-05 13:54:43 dovecot_login authenticator failed for (rosaritodevelopers.com) [112.47.57.81]:45754: 535 Incorrect authentication data (set_id=mailer@rosaritodevelopers.com)	2020-10-06 02:53:07
141.98.10.214	attack	$f2bV_matches	2020-10-06 02:29:36
84.204.168.242	attack	Oct 4 21:22:39 ip-172-31-61-156 sshd[5858]: Failed password for root from 84.204.168.242 port 60834 ssh2 Oct 4 21:22:38 ip-172-31-61-156 sshd[5858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.204.168.242 user=root Oct 4 21:22:39 ip-172-31-61-156 sshd[5858]: Failed password for root from 84.204.168.242 port 60834 ssh2 Oct 4 21:29:47 ip-172-31-61-156 sshd[6462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.204.168.242 user=root Oct 4 21:29:48 ip-172-31-61-156 sshd[6462]: Failed password for root from 84.204.168.242 port 35916 ssh2 ...	2020-10-06 03:00:56

Recently Reported IPs

120.195.158.53	121.127.241.177	121.174.97.91	121.4.198.75
250.97.121.139	121.53.105.193	122.169.114.102	122.181.44.179
122.6.63.36	123.21.46.83	123.255.202.43	124.121.164.47
251.185.20.210	124.126.76.144	124.215.210.14	124.222.36.28
124.5.186.243	125.123.20.167	125.162.98.64	125.212.254.37