City: Shanghai
Region: Shanghai
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '124.220.0.0 - 124.223.255.255'
% Abuse contact for '124.220.0.0 - 124.223.255.255' is 'tencent_noc@tencent.com'
inetnum: 124.220.0.0 - 124.223.255.255
netname: TencentCloud
descr: Tencent cloud computing (Beijing) Co., Ltd.
descr: Floor 6, Yinke Building, 38 Haidian St, Haidian District Beijing
country: CN
admin-c: JT1125-AP
tech-c: JX1747-AP
abuse-c: AC1601-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-irt: IRT-TENCENTCLOUD-CN
last-modified: 2023-11-28T00:57:04Z
source: APNIC
irt: IRT-TencentCloud-CN
address: 9F, FIYTA Building, Gaoxinnanyi Road, Southern
address: District of Hi-tech Park, Shenzhen
e-mail: tencent_noc@tencent.com
abuse-mailbox: tencent_noc@tencent.com
admin-c: JT1125-AP
tech-c: JX1747-AP
auth: # Filtered
remarks: tencent_noc@tencent.com was validated on 2025-03-07
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-03-07T07:43:08Z
source: APNIC
role: ABUSE CNNICCN
country: ZZ
address: Beijing, China
phone: +000000000
e-mail: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
nic-hdl: AC1601-AP
remarks: Generated from irt object IRT-CNNIC-CN
remarks: ipas@cnnic.cn is invalid
abuse-mailbox: ipas@cnnic.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-09-19T17:20:32Z
source: APNIC
person: James Tian
address: 9F, FIYTA Building, Gaoxinnanyi Road,Southern
address: District of Hi-tech Park, Shenzhen
country: CN
phone: +86-755-86013388-84952
e-mail: johnsonqu@tencent.com
nic-hdl: JT1125-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2024-03-19T08:21:31Z
source: APNIC
person: Jimmy Xiao
address: 9F, FIYTA Building, Gaoxinnanyi Road,Southern
address: District of Hi-tech Park, Shenzhen
country: CN
phone: +86-755-86013388-80224
e-mail: klayliang@tencent.com
nic-hdl: JX1747-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2021-09-17T00:38:09Z
source: APNIC
% Information related to '124.220.0.0/14AS45090'
route: 124.220.0.0/14
origin: AS45090
descr: China Internet Network Information Center
Floor1, Building No.1 C/-Chinese Academy of Sciences
4, South 4th Street
Haidian District,
mnt-by: MAINT-CNNIC-AP
last-modified: 2021-10-11T01:50:32Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.222.142.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17652
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;124.222.142.44. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025092200 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Sep 22 20:33:35 CST 2025
;; MSG SIZE rcvd: 107Host 44.142.222.124.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 44.142.222.124.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 139.59.75.241 | attack | Automated report - ssh fail2ban: Aug 27 09:13:04 authentication failure Aug 27 09:13:06 wrong password, user=uuhost, port=38752, ssh2 Aug 27 09:17:53 authentication failure |
2019-08-27 16:11:45 |
| 200.160.106.241 | attackspambots | Aug 26 21:49:49 kapalua sshd\[14596\]: Invalid user benutzer from 200.160.106.241 Aug 26 21:49:49 kapalua sshd\[14596\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.160.106.241 Aug 26 21:49:52 kapalua sshd\[14596\]: Failed password for invalid user benutzer from 200.160.106.241 port 44595 ssh2 Aug 26 21:55:21 kapalua sshd\[15212\]: Invalid user test from 200.160.106.241 Aug 26 21:55:21 kapalua sshd\[15212\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.160.106.241 |
2019-08-27 16:10:00 |
| 103.249.239.221 | attackspam | SSH Brute-Force reported by Fail2Ban |
2019-08-27 16:08:31 |
| 180.235.234.129 | attackspambots | WordPress wp-login brute force :: 180.235.234.129 0.136 BYPASS [27/Aug/2019:09:32:41 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2019-08-27 16:04:34 |
| 185.129.62.62 | attack | SSH Bruteforce attack |
2019-08-27 16:21:38 |
| 217.170.197.89 | attackspam | Aug 27 03:38:35 plusreed sshd[18640]: Invalid user user from 217.170.197.89 Aug 27 03:38:35 plusreed sshd[18640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.170.197.89 Aug 27 03:38:35 plusreed sshd[18640]: Invalid user user from 217.170.197.89 Aug 27 03:38:37 plusreed sshd[18640]: Failed password for invalid user user from 217.170.197.89 port 54699 ssh2 ... |
2019-08-27 16:00:40 |
| 122.112.133.51 | attack | Aug 27 06:46:33 hcbbdb sshd\[14576\]: Invalid user demo from 122.112.133.51 Aug 27 06:46:33 hcbbdb sshd\[14576\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.112.133.51 Aug 27 06:46:35 hcbbdb sshd\[14576\]: Failed password for invalid user demo from 122.112.133.51 port 25339 ssh2 Aug 27 06:52:46 hcbbdb sshd\[15258\]: Invalid user test from 122.112.133.51 Aug 27 06:52:46 hcbbdb sshd\[15258\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.112.133.51 |
2019-08-27 15:52:09 |
| 201.151.139.242 | attackbots | Unauthorized connection attempt from IP address 201.151.139.242 on Port 445(SMB) |
2019-08-27 16:18:02 |
| 194.8.144.47 | attack | Unauthorized connection attempt from IP address 194.8.144.47 on Port 445(SMB) |
2019-08-27 16:16:05 |
| 36.89.119.92 | attackbotsspam | Aug 27 08:12:26 MK-Soft-VM6 sshd\[29644\]: Invalid user airquality from 36.89.119.92 port 35352 Aug 27 08:12:26 MK-Soft-VM6 sshd\[29644\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.119.92 Aug 27 08:12:28 MK-Soft-VM6 sshd\[29644\]: Failed password for invalid user airquality from 36.89.119.92 port 35352 ssh2 ... |
2019-08-27 16:23:05 |
| 31.7.62.103 | attackspambots | (Aug 27) LEN=40 TTL=51 ID=42148 TCP DPT=8080 WINDOW=8801 SYN (Aug 27) LEN=40 TTL=51 ID=29067 TCP DPT=8080 WINDOW=57521 SYN (Aug 27) LEN=40 TTL=51 ID=5230 TCP DPT=8080 WINDOW=53134 SYN (Aug 27) LEN=40 TTL=51 ID=29202 TCP DPT=8080 WINDOW=49088 SYN (Aug 27) LEN=40 TTL=51 ID=57930 TCP DPT=8080 WINDOW=57521 SYN (Aug 26) LEN=40 TTL=51 ID=11133 TCP DPT=8080 WINDOW=1601 SYN (Aug 26) LEN=40 TTL=51 ID=22112 TCP DPT=8080 WINDOW=23833 SYN (Aug 26) LEN=40 TTL=51 ID=16469 TCP DPT=8080 WINDOW=50585 SYN (Aug 26) LEN=40 TTL=51 ID=60815 TCP DPT=8080 WINDOW=57521 SYN (Aug 26) LEN=40 TTL=51 ID=3791 TCP DPT=8080 WINDOW=64161 SYN (Aug 26) LEN=40 TTL=51 ID=65497 TCP DPT=8080 WINDOW=1601 SYN (Aug 26) LEN=40 TTL=51 ID=18505 TCP DPT=8080 WINDOW=8801 SYN (Aug 26) LEN=40 TTL=51 ID=42321 TCP DPT=8080 WINDOW=41465 SYN |
2019-08-27 15:43:11 |
| 51.77.231.213 | attack | Invalid user marcio from 51.77.231.213 port 35522 |
2019-08-27 15:57:58 |
| 41.239.243.171 | attack | Unauthorized connection attempt from IP address 41.239.243.171 on Port 445(SMB) |
2019-08-27 15:50:40 |
| 81.130.149.101 | attackspam | Aug 27 04:07:17 TORMINT sshd\[19242\]: Invalid user admwizzbe from 81.130.149.101 Aug 27 04:07:17 TORMINT sshd\[19242\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.130.149.101 Aug 27 04:07:19 TORMINT sshd\[19242\]: Failed password for invalid user admwizzbe from 81.130.149.101 port 53321 ssh2 ... |
2019-08-27 16:24:10 |
| 217.160.15.228 | attack | Aug 27 07:19:49 webhost01 sshd[24283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.160.15.228 Aug 27 07:19:50 webhost01 sshd[24283]: Failed password for invalid user mashby from 217.160.15.228 port 33202 ssh2 ... |
2019-08-27 15:54:20 |