222.124.114.20

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT Telkom Indonesia

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	1577082390 - 12/23/2019 07:26:30 Host: 222.124.114.20/222.124.114.20 Port: 445 TCP Blocked	2019-12-23 19:18:23

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.124.114.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4020
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;222.124.114.20.			IN	A

;; AUTHORITY SECTION:
.			395	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122300 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 23 19:18:20 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

20.114.124.222.in-addr.arpa domain name pointer 20.subnet222-124-114.speedy.telkom.net.id.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.114.124.222.in-addr.arpa	name = 20.subnet222-124-114.speedy.telkom.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
103.86.130.43	attack	Aug 19 14:52:28 OPSO sshd\[18822\]: Invalid user kll from 103.86.130.43 port 60006 Aug 19 14:52:28 OPSO sshd\[18822\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.86.130.43 Aug 19 14:52:30 OPSO sshd\[18822\]: Failed password for invalid user kll from 103.86.130.43 port 60006 ssh2 Aug 19 14:54:11 OPSO sshd\[19121\]: Invalid user raquel from 103.86.130.43 port 40644 Aug 19 14:54:11 OPSO sshd\[19121\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.86.130.43	2020-08-20 02:36:01
188.187.190.220	attackbotsspam	Aug 19 19:30:40 vpn01 sshd[564]: Failed password for root from 188.187.190.220 port 45200 ssh2 ...	2020-08-20 02:08:20
20.49.18.51	attack	failed attempts to access the resources: /.env	2020-08-20 02:07:59
113.161.245.34	attack	Port Scan detected! ...	2020-08-20 02:28:03
193.27.229.154	attackspambots	firewall-block, port(s): 10950/tcp, 44958/tcp	2020-08-20 02:16:27
113.124.93.105	attackbots	spam (f2b h2)	2020-08-20 02:24:05
61.6.230.163	attackbots	61.6.230.163 - [19/Aug/2020:15:26:21 +0300] "POST /xmlrpc.php HTTP/1.1" 404 17709 "-" "Mozilla/5.0 (X11; Linux i686; rv:2.0.1) Gecko/20100101 Firefox/4.0.1" "-" 61.6.230.163 - [19/Aug/2020:15:27:27 +0300] "POST /xmlrpc.php HTTP/1.1" 404 17709 "-" "Mozilla/5.0 (X11; Linux i686; rv:2.0.1) Gecko/20100101 Firefox/4.0.1" "-" ...	2020-08-20 02:30:44
49.51.160.139	attack	Aug 19 20:04:21 nextcloud sshd\[13546\]: Invalid user cnz from 49.51.160.139 Aug 19 20:04:21 nextcloud sshd\[13546\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.160.139 Aug 19 20:04:24 nextcloud sshd\[13546\]: Failed password for invalid user cnz from 49.51.160.139 port 46272 ssh2	2020-08-20 02:35:29
183.88.191.53	attackbots	183.88.191.53 - - [19/Aug/2020:14:27:26 +0200] "POST /xmlrpc.php HTTP/1.1" 200 255 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" 183.88.191.53 - - [19/Aug/2020:14:27:31 +0200] "POST /xmlrpc.php HTTP/1.1" 200 255 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" 183.88.191.53 - - [19/Aug/2020:14:27:35 +0200] "POST /xmlrpc.php HTTP/1.1" 200 255 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" 183.88.191.53 - - [19/Aug/2020:14:27:41 +0200] "POST /xmlrpc.php HTTP/1.1" 200 255 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" 183.88.191.53 - - [19/Aug/2020:14:27:47 +0200] "POST /xmlrpc.php HTTP/1.1" 200 255 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071 ...	2020-08-20 02:08:51
193.27.229.190	attackbotsspam	[MK-VM4] Blocked by UFW	2020-08-20 02:01:38
8.209.64.227	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-08-20 02:10:26
222.186.175.163	attack	(sshd) Failed SSH login from 222.186.175.163 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 19 20:40:11 amsweb01 sshd[27720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.163 user=root Aug 19 20:40:12 amsweb01 sshd[27722]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.163 user=root Aug 19 20:40:12 amsweb01 sshd[27720]: Failed password for root from 222.186.175.163 port 62662 ssh2 Aug 19 20:40:14 amsweb01 sshd[27722]: Failed password for root from 222.186.175.163 port 46418 ssh2 Aug 19 20:40:16 amsweb01 sshd[27720]: Failed password for root from 222.186.175.163 port 62662 ssh2	2020-08-20 02:46:50
113.161.144.254	attack	Aug 19 23:58:08 itv-usvr-01 sshd[6697]: Invalid user document from 113.161.144.254 Aug 19 23:58:08 itv-usvr-01 sshd[6697]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.161.144.254 Aug 19 23:58:08 itv-usvr-01 sshd[6697]: Invalid user document from 113.161.144.254 Aug 19 23:58:10 itv-usvr-01 sshd[6697]: Failed password for invalid user document from 113.161.144.254 port 47062 ssh2	2020-08-20 02:42:09
180.76.186.54	attackbots	Aug 19 18:03:31 vps-51d81928 sshd[741395]: Invalid user test123 from 180.76.186.54 port 48372 Aug 19 18:03:31 vps-51d81928 sshd[741395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.186.54 Aug 19 18:03:31 vps-51d81928 sshd[741395]: Invalid user test123 from 180.76.186.54 port 48372 Aug 19 18:03:33 vps-51d81928 sshd[741395]: Failed password for invalid user test123 from 180.76.186.54 port 48372 ssh2 Aug 19 18:07:36 vps-51d81928 sshd[741444]: Invalid user git from 180.76.186.54 port 49364 ...	2020-08-20 02:14:52
109.120.167.1	attackbots	109.120.167.1 - - [19/Aug/2020:13:27:38 +0100] "POST /wp-login.php HTTP/1.1" 200 1874 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 109.120.167.1 - - [19/Aug/2020:13:27:39 +0100] "POST /wp-login.php HTTP/1.1" 200 1877 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 109.120.167.1 - - [19/Aug/2020:13:27:40 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-20 02:21:40

最近上报的IP列表

156.216.4.51	165.223.101.206	19.250.193.173	41.35.245.125
67.29.144.246	56.141.49.185	41.34.55.61	217.249.130.106
156.213.229.209	82.200.30.162	156.198.89.55	45.162.62.94
156.199.51.115	61.161.191.58	116.103.232.158	77.45.157.140
156.207.201.0	197.40.99.245	156.195.75.198	197.40.134.36