185.104.120.20

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United Kingdom

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 185.104.120.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40346
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;185.104.120.20.			IN	A

;; AUTHORITY SECTION:
.			524	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 20:30:52 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

b';; connection timed out; no servers could be reached
'

NSLOOKUP信息:

server can't find 185.104.120.20.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
203.202.243.198	attackbotsspam	proto=tcp . spt=36859 . dpt=25 . Listed on MailSpike (spam wave plus L3-L5) also unsubscore and rbldns-ru (529)	2020-02-29 05:08:25
196.188.40.34	attackspambots	1582896322 - 02/28/2020 14:25:22 Host: 196.188.40.34/196.188.40.34 Port: 445 TCP Blocked	2020-02-29 05:01:52
178.137.88.65	attack	"GET /?author=2 HTTP/1.1" 404 "POST /xmlrpc.php HTTP/1.1" 403	2020-02-29 04:48:33
124.172.248.38	attack	suspicious action Fri, 28 Feb 2020 10:25:52 -0300	2020-02-29 04:44:06
120.92.93.12	attackspam	Feb 28 21:34:33 pornomens sshd\[18089\]: Invalid user pdf from 120.92.93.12 port 22406 Feb 28 21:34:33 pornomens sshd\[18089\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.93.12 Feb 28 21:34:35 pornomens sshd\[18089\]: Failed password for invalid user pdf from 120.92.93.12 port 22406 ssh2 ...	2020-02-29 05:05:25
45.120.69.82	attackbotsspam	Feb 28 21:41:11 vps647732 sshd[1573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.82 Feb 28 21:41:13 vps647732 sshd[1573]: Failed password for invalid user uftp from 45.120.69.82 port 37418 ssh2 ...	2020-02-29 04:58:44
201.171.228.175	attackspambots	DATE:2020-02-28 14:25:00, IP:201.171.228.175, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2020-02-29 05:20:20
203.57.46.54	attackbots	Feb 28 21:40:02 vps647732 sshd[1536]: Failed password for root from 203.57.46.54 port 53948 ssh2 ...	2020-02-29 04:49:14
194.135.14.154	attackbotsspam	Feb 28 14:25:33 h2177944 kernel: \[6094070.687762\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=194.135.14.154 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x20 TTL=116 ID=2665 DF PROTO=TCP SPT=56860 DPT=4899 WINDOW=8192 RES=0x00 SYN URGP=0 Feb 28 14:25:33 h2177944 kernel: \[6094070.687777\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=194.135.14.154 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x20 TTL=116 ID=2665 DF PROTO=TCP SPT=56860 DPT=4899 WINDOW=8192 RES=0x00 SYN URGP=0 Feb 28 14:25:36 h2177944 kernel: \[6094073.690236\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=194.135.14.154 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x20 TTL=116 ID=7286 DF PROTO=TCP SPT=56860 DPT=4899 WINDOW=8192 RES=0x00 SYN URGP=0 Feb 28 14:25:36 h2177944 kernel: \[6094073.690250\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=194.135.14.154 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x20 TTL=116 ID=7286 DF PROTO=TCP SPT=56860 DPT=4899 WINDOW=8192 RES=0x00 SYN URGP=0 Feb 28 14:25:42 h2177944 kernel: \[6094079.689977\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=194.135.14.154 DST	2020-02-29 04:50:12
106.12.77.212	attackspam	SSH Brute Force	2020-02-29 05:10:37
122.51.82.22	attack	Lines containing failures of 122.51.82.22 Feb 27 18:25:51 icinga sshd[3428]: Invalid user des from 122.51.82.22 port 33964 Feb 27 18:25:51 icinga sshd[3428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.82.22 Feb 27 18:25:52 icinga sshd[3428]: Failed password for invalid user des from 122.51.82.22 port 33964 ssh2 Feb 27 18:25:52 icinga sshd[3428]: Received disconnect from 122.51.82.22 port 33964:11: Bye Bye [preauth] Feb 27 18:25:52 icinga sshd[3428]: Disconnected from invalid user des 122.51.82.22 port 33964 [preauth] Feb 27 18:32:29 icinga sshd[5123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.82.22 user=www-data Feb 27 18:32:31 icinga sshd[5123]: Failed password for www-data from 122.51.82.22 port 42470 ssh2 Feb 27 18:32:31 icinga sshd[5123]: Received disconnect from 122.51.82.22 port 42470:11: Bye Bye [preauth] Feb 27 18:32:31 icinga sshd[5123]: Disconnected from au........ ------------------------------	2020-02-29 05:10:10
94.158.36.183	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 56bb648babe700b0 \| WAF_Rule_ID: a75424b44a1e4f27881d03344a122815 \| WAF_Kind: firewall \| CF_Action: drop \| Country: UA \| CF_IPClass: unknown \| Protocol: HTTP/1.1 \| Method: GET \| Host: skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.87 Safari/537.36 \| CF_DC: DME. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2020-02-29 05:07:33
187.189.241.135	attackspambots	Feb 28 04:41:24 main sshd[19970]: Failed password for invalid user gpadmin from 187.189.241.135 port 24673 ssh2	2020-02-29 05:06:14
43.228.222.2	attackspambots	TCP src-port=49022 dst-port=25 Listed on dnsbl-sorbs abuseat-org barracuda (Project Honey Pot rated Suspicious) (534)	2020-02-29 05:12:03
160.238.163.29	attackbots	Sending SPAM email	2020-02-29 05:11:00

最近上报的IP列表

200.25.225.70	78.38.48.236	103.210.85.152	183.134.16.18
39.130.53.117	167.172.73.12	122.141.156.166	77.234.254.211
197.210.44.249	143.90.14.4	197.55.91.194	107.46.12.255
119.189.133.154	114.79.191.136	14.162.123.69	46.28.163.220
187.50.109.90	202.154.185.193	45.156.29.126	218.0.216.140