124.131.145.118

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.131.145.118
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32653
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;124.131.145.118.		IN	A

;; AUTHORITY SECTION:
.			346	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022001 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 06:15:12 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 118.145.131.124.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 118.145.131.124.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
20.187.47.39	attackbots	TCP (SYN) 20.187.47.39:51293 -> port 22, len 44	2020-08-12 06:48:52
103.89.90.69	attackbotsspam	Aug 11 23:20:20 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=103.89.90.69 DST=79.143.186.54 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=35629 PROTO=TCP SPT=46025 DPT=2003 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 11 23:33:12 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=103.89.90.69 DST=79.143.186.54 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=53129 PROTO=TCP SPT=46025 DPT=1960 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 11 23:51:43 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=103.89.90.69 DST=79.143.186.54 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=52457 PROTO=TCP SPT=46025 DPT=1987 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-12 06:48:27
2.58.228.107	attackbots	3306/tcp 1433/tcp... [2020-08-02/11]28pkt,2pt.(tcp)	2020-08-12 07:19:05
178.176.104.98	attack	22/tcp 22/tcp 22/tcp [2020-07-02/08-11]3pkt	2020-08-12 07:23:29
146.185.181.64	attackspam	$f2bV_matches	2020-08-12 06:49:44
139.59.2.181	attackbotsspam	Trolling for resource vulnerabilities	2020-08-12 07:19:38
141.98.10.195	attack	2020-08-11T17:44:13.801769dreamphreak.com sshd[48473]: Invalid user 1234 from 141.98.10.195 port 37404 2020-08-11T17:44:15.763969dreamphreak.com sshd[48473]: Failed password for invalid user 1234 from 141.98.10.195 port 37404 ssh2 ...	2020-08-12 06:52:08
222.186.173.183	attackspambots	Aug 11 19:00:56 ny01 sshd[20097]: Failed password for root from 222.186.173.183 port 28846 ssh2 Aug 11 19:01:05 ny01 sshd[20097]: Failed password for root from 222.186.173.183 port 28846 ssh2 Aug 11 19:01:08 ny01 sshd[20097]: Failed password for root from 222.186.173.183 port 28846 ssh2 Aug 11 19:01:08 ny01 sshd[20097]: error: maximum authentication attempts exceeded for root from 222.186.173.183 port 28846 ssh2 [preauth]	2020-08-12 07:02:18
122.51.69.116	attackspam	2020-08-11T01:49:56.870423perso.[domain] sshd[739174]: Failed password for root from 122.51.69.116 port 33274 ssh2 2020-08-11T01:53:43.114107perso.[domain] sshd[739216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.69.116 user=root 2020-08-11T01:53:45.325507perso.[domain] sshd[739216]: Failed password for root from 122.51.69.116 port 34802 ssh2 ...	2020-08-12 06:54:41
219.118.146.175	attack	Port Scan ...	2020-08-12 07:00:51
104.248.130.10	attackspambots	SSH Brute-Forcing (server1)	2020-08-12 07:18:16
121.226.107.240	attackspambots	srvr1: (mod_security) mod_security (id:920350) triggered by 121.226.107.240 (CN/-/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/11 20:35:17 [error] 563155#0: 276277 [client 121.226.107.240] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/phpmyadmin/"] [unique_id "159717811763.880807"] [ref "o0,13v155,13"], client: 121.226.107.240, [redacted] request: "GET /phpmyadmin/ HTTP/1.1" [redacted]	2020-08-12 06:48:15
136.49.109.217	attackspam	Aug 11 17:35:50 host sshd\[13036\]: Invalid user vpsco1212 from 136.49.109.217 Aug 11 17:35:50 host sshd\[13036\]: Failed password for invalid user vpsco1212 from 136.49.109.217 port 49702 ssh2 Aug 11 17:39:22 host sshd\[13216\]: Invalid user 2WSXZAQ1 from 136.49.109.217 Aug 11 17:39:22 host sshd\[13216\]: Failed password for invalid user 2WSXZAQ1 from 136.49.109.217 port 60008 ssh2 ...	2020-08-12 06:53:06
121.48.164.31	attackbotsspam	Aug 11 23:55:16 web sshd[153741]: Failed password for root from 121.48.164.31 port 60966 ssh2 Aug 11 23:59:52 web sshd[153771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.48.164.31 user=root Aug 11 23:59:54 web sshd[153771]: Failed password for root from 121.48.164.31 port 34822 ssh2 ...	2020-08-12 06:55:12
91.240.118.113	attack	3394/tcp 3399/tcp 3395/tcp... [2020-06-17/08-11]327pkt,14pt.(tcp)	2020-08-12 07:00:28

Recently Reported IPs

124.131.110.7	124.131.16.112	124.131.40.20	124.131.7.228
124.13.71.143	124.131.131.216	124.131.89.61	124.133.220.96
124.132.81.53	124.133.222.71	124.133.64.248	124.135.132.111
124.135.174.175	124.133.222.177	124.133.220.189	124.133.223.234
124.133.222.152	124.133.222.57	124.135.187.220	124.135.78.68