117.54.5.20 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.54.5.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27197
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.54.5.20.			IN	A

;; AUTHORITY SECTION:
.			544	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022202 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 23 13:14:57 CST 2022
;; MSG SIZE  rcvd: 104

HOST信息:

20.5.54.117.in-addr.arpa domain name pointer ezweb02.oncloud.co.id.
20.5.54.117.in-addr.arpa domain name pointer ezw02-outboundmail.oncloud.co.id.
20.5.54.117.in-addr.arpa domain name pointer ns2.ezweb.oncloud.co.id.
20.5.54.117.in-addr.arpa domain name pointer ns1.hosting.indo.net.id.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.5.54.117.in-addr.arpa	name = ezweb02.oncloud.co.id.
20.5.54.117.in-addr.arpa	name = ezw02-outboundmail.oncloud.co.id.
20.5.54.117.in-addr.arpa	name = ns2.ezweb.oncloud.co.id.
20.5.54.117.in-addr.arpa	name = ns1.hosting.indo.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
92.222.15.70	attackbotsspam	Jul 18 04:02:14 [host] sshd[27199]: Invalid user mmm from 92.222.15.70 Jul 18 04:02:14 [host] sshd[27199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.15.70 Jul 18 04:02:16 [host] sshd[27199]: Failed password for invalid user mmm from 92.222.15.70 port 43954 ssh2	2019-07-18 10:21:05
220.92.16.70	attack	2019-07-18T01:27:22.538117abusebot-2.cloudsearch.cf sshd\[6153\]: Invalid user web3 from 220.92.16.70 port 46028 2019-07-18T01:27:22.542965abusebot-2.cloudsearch.cf sshd\[6153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.92.16.70	2019-07-18 10:44:11
86.241.181.41	attackbotsspam	port scan and connect, tcp 23 (telnet)	2019-07-18 10:21:20
118.24.128.70	attack	Jul 17 14:40:31 toyboy sshd[22237]: Invalid user ubuntu from 118.24.128.70 Jul 17 14:40:31 toyboy sshd[22237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.128.70 Jul 17 14:40:33 toyboy sshd[22237]: Failed password for invalid user ubuntu from 118.24.128.70 port 37954 ssh2 Jul 17 14:40:33 toyboy sshd[22237]: Received disconnect from 118.24.128.70: 11: Bye Bye [preauth] Jul 17 14:46:32 toyboy sshd[22531]: Invalid user foto from 118.24.128.70 Jul 17 14:46:32 toyboy sshd[22531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.128.70 Jul 17 14:46:34 toyboy sshd[22531]: Failed password for invalid user foto from 118.24.128.70 port 35012 ssh2 Jul 17 14:46:34 toyboy sshd[22531]: Received disconnect from 118.24.128.70: 11: Bye Bye [preauth] Jul 17 14:50:18 toyboy sshd[22678]: Invalid user sap from 118.24.128.70 Jul 17 14:50:18 toyboy sshd[22678]: pam_unix(sshd:auth): authentication ........ -------------------------------	2019-07-18 10:46:12
200.87.95.100	attackspambots	Jul 16 06:39:04 hurricane sshd[22434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.87.95.100 user=r.r Jul 16 06:39:05 hurricane sshd[22434]: Failed password for r.r from 200.87.95.100 port 61697 ssh2 Jul 16 06:39:05 hurricane sshd[22434]: Received disconnect from 200.87.95.100 port 61697:11: Bye Bye [preauth] Jul 16 06:39:05 hurricane sshd[22434]: Disconnected from 200.87.95.100 port 61697 [preauth] Jul 16 08:51:34 hurricane sshd[23167]: Invalid user school from 200.87.95.100 port 30100 Jul 16 08:51:34 hurricane sshd[23167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.87.95.100 Jul 16 08:51:35 hurricane sshd[23167]: Failed password for invalid user school from 200.87.95.100 port 30100 ssh2 Jul 16 08:51:35 hurricane sshd[23167]: Received disconnect from 200.87.95.100 port 30100:11: Bye Bye [preauth] Jul 16 08:51:35 hurricane sshd[23167]: Disconnected from 200.87.95.100 port 3........ -------------------------------	2019-07-18 10:40:05
182.23.42.196	attackspam	Jul 18 04:12:27 s64-1 sshd[27919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.23.42.196 Jul 18 04:12:29 s64-1 sshd[27919]: Failed password for invalid user alexk from 182.23.42.196 port 60354 ssh2 Jul 18 04:17:55 s64-1 sshd[27962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.23.42.196 ...	2019-07-18 10:20:04
222.231.33.233	attackspam	Jul 18 09:02:20 webhost01 sshd[10588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.231.33.233 Jul 18 09:02:22 webhost01 sshd[10588]: Failed password for invalid user noc from 222.231.33.233 port 54980 ssh2 ...	2019-07-18 10:34:18
103.57.210.12	attackspambots	Jul 18 04:27:46 vmd17057 sshd\[12116\]: Invalid user bind from 103.57.210.12 port 41964 Jul 18 04:27:46 vmd17057 sshd\[12116\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.57.210.12 Jul 18 04:27:48 vmd17057 sshd\[12116\]: Failed password for invalid user bind from 103.57.210.12 port 41964 ssh2 ...	2019-07-18 10:36:32
104.236.58.55	attackspambots	Jul 18 03:55:09 localhost sshd\[24642\]: Invalid user andreia from 104.236.58.55 Jul 18 03:55:09 localhost sshd\[24642\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.58.55 Jul 18 03:55:12 localhost sshd\[24642\]: Failed password for invalid user andreia from 104.236.58.55 port 34416 ssh2 Jul 18 04:02:22 localhost sshd\[24872\]: Invalid user teamspeak from 104.236.58.55 Jul 18 04:02:22 localhost sshd\[24872\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.58.55 ...	2019-07-18 10:19:00
117.232.72.154	attackspam	/var/log/messages:Jul 16 10:32:27 sanyalnet-cloud-vps audispd: node=sanyalnet-cloud-vps.freeddns.org type=CRYPTO_SESSION msg=audhostname(1563273147.982:32827): pid=13231 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-server cipher=aes256-ctr ksize=256 mac=hmac-sha1 pfs=ecdh-sha2-nistp256 spid=13232 suid=74 rport=1397 laddr=104.167.106.93 lport=23 exe="/usr/sbin/sshd" hostname=? addr=117.232.72.154 terminal=? res=success' /var/log/messages:Jul 16 10:32:27 sanyalnet-cloud-vps audispd: node=sanyalnet-cloud-vps.freeddns.org type=CRYPTO_SESSION msg=audhostname(1563273147.986:32828): pid=13231 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-client cipher=aes256-ctr ksize=256 mac=hmac-sha1 pfs=ecdh-sha2-nistp256 spid=13232 suid=74 rport=1397 laddr=104.167.106.93 lport=23 exe="/usr/sbin/sshd" hostname=? addr=117.232.72.154 terminal=? res=success' /var/log/messages:Jul 16 10:32:29 sanyalnet-cloud-vps fail2ban.filter[5325]: INFO [sshd] Found........ -------------------------------	2019-07-18 10:38:33
69.135.100.82	attackspam	Jul 17 22:36:40 TORMINT sshd\[13890\]: Invalid user valerie from 69.135.100.82 Jul 17 22:36:40 TORMINT sshd\[13890\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.135.100.82 Jul 17 22:36:41 TORMINT sshd\[13890\]: Failed password for invalid user valerie from 69.135.100.82 port 48162 ssh2 ...	2019-07-18 10:45:41
202.39.254.165	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-17 02:53:16,916 INFO [shellcode_manager] (202.39.254.165) no match, writing hexdump (7f8945887e8db2cba4b4ab6376479e05 :2206159) - MS17010 (EternalBlue)	2019-07-18 10:18:29
195.206.105.217	attackbotsspam	Jul 18 03:27:23 giegler sshd[6956]: Failed password for root from 195.206.105.217 port 37276 ssh2 Jul 18 03:27:26 giegler sshd[6956]: Failed password for root from 195.206.105.217 port 37276 ssh2 Jul 18 03:27:29 giegler sshd[6956]: Failed password for root from 195.206.105.217 port 37276 ssh2 Jul 18 03:27:32 giegler sshd[6956]: Failed password for root from 195.206.105.217 port 37276 ssh2 Jul 18 03:27:35 giegler sshd[6956]: Failed password for root from 195.206.105.217 port 37276 ssh2	2019-07-18 10:56:21
130.61.119.68	attackbotsspam	2019-07-18T01:28:18.174703abusebot-6.cloudsearch.cf sshd\[8770\]: Invalid user a from 130.61.119.68 port 33298	2019-07-18 10:33:57
60.165.46.139	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-17 02:53:03,712 INFO [shellcode_manager] (60.165.46.139) no match, writing hexdump (160c219f19e047097ef3693910c6463b :1897828) - MS17010 (EternalBlue)	2019-07-18 10:54:16

最近上报的IP列表

117.6.169.201	117.6.209.217	117.57.84.233	117.57.58.186
117.60.131.249	117.60.155.114	117.61.10.159	117.60.194.159
117.61.18.66	117.61.0.244	74.228.83.171	129.69.102.70
85.140.224.127	118.212.233.14	118.212.58.197	118.23.75.63
118.212.48.80	118.212.58.156	118.194.255.139	118.212.51.215