113.128.104.161

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Shandong Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541028315c8feafc \| WAF_Rule_ID: 1025440 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (iPad; CPU OS 9_1 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13B143 Safari/601.1 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 00:09:03

类型

评论内容

时间

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 541028315c8feafc | WAF_Rule_ID: 1025440 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: img.skk.moe | User-Agent: Mozilla/5.0 (iPad; CPU OS 9_1 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13B143 Safari/601.1 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 00:09:03

相同子网IP讨论:

IP	类型	评论内容	时间
113.128.104.51	attack	Unauthorized connection attempt detected from IP address 113.128.104.51 to port 8118	2020-06-22 06:15:00
113.128.104.216	attackspam	Unauthorized connection attempt detected from IP address 113.128.104.216 to port 123	2020-06-13 07:52:15
113.128.104.123	attack	Fail2Ban Ban Triggered	2020-04-24 13:01:10
113.128.104.207	attack	113.128.104.207 - - \[27/Feb/2020:16:27:04 +0200\] "CONNECT www.ipip.net:443 HTTP/1.1" 403 202 "-" "PycURL/7.43.0 libcurl/7.47.0 GnuTLS/3.4.10 zlib/1.2.8 libidn/1.32 librtmp/2.3"	2020-02-27 23:33:39
113.128.104.219	attack	Fail2Ban Ban Triggered	2020-02-22 04:16:32
113.128.104.46	attack	Unauthorized connection attempt detected from IP address 113.128.104.46 to port 80	2020-02-16 02:11:34
113.128.104.238	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 563f3129cef198e7 \| WAF_Rule_ID: a75424b44a1e4f27881d03344a122815 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.062334851 Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2020-02-13 01:46:19
113.128.104.89	attack	Unauthorized connection attempt detected from IP address 113.128.104.89 to port 9999 [T]	2020-01-29 10:05:35
113.128.104.234	attackspam	Unauthorized connection attempt detected from IP address 113.128.104.234 to port 8123 [J]	2020-01-29 08:18:18
113.128.104.131	attackspambots	Unauthorized connection attempt detected from IP address 113.128.104.131 to port 1080 [J]	2020-01-29 02:17:51
113.128.104.158	attackspambots	Unauthorized connection attempt detected from IP address 113.128.104.158 to port 6666 [T]	2020-01-27 16:06:48
113.128.104.22	attackspambots	Unauthorized connection attempt detected from IP address 113.128.104.22 to port 8081 [J]	2020-01-27 00:48:55
113.128.104.228	attackspam	Unauthorized connection attempt detected from IP address 113.128.104.228 to port 8888 [J]	2020-01-22 08:57:44
113.128.104.3	attackbots	Unauthorized connection attempt detected from IP address 113.128.104.3 to port 999 [T]	2020-01-20 18:23:28
113.128.104.121	attackspambots	Unauthorized connection attempt detected from IP address 113.128.104.121 to port 9000 [T]	2020-01-19 16:33:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.128.104.161
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15193
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.128.104.161.		IN	A

;; AUTHORITY SECTION:
.			339	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120700 1800 900 604800 86400

;; Query time: 816 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 00:09:00 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 161.104.128.113.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 161.104.128.113.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
167.114.210.86	attackspam	2019-08-20T07:24:12.314692abusebot-4.cloudsearch.cf sshd\[20915\]: Invalid user server from 167.114.210.86 port 49574	2019-08-20 21:30:10
51.75.25.164	attack	Aug 14 23:25:40 [snip] sshd[732]: Invalid user gituser from 51.75.25.164 port 45804 Aug 14 23:25:40 [snip] sshd[732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.25.164 Aug 14 23:25:42 [snip] sshd[732]: Failed password for invalid user gituser from 51.75.25.164 port 45804 ssh2[...]	2019-08-20 21:36:26
200.199.6.204	attackspam	Aug 20 02:12:29 plusreed sshd[5702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.199.6.204 user=root Aug 20 02:12:31 plusreed sshd[5702]: Failed password for root from 200.199.6.204 port 41968 ssh2 ...	2019-08-20 22:22:49
185.131.63.86	attack	Aug 20 07:03:46 tux-35-217 sshd\[8079\]: Invalid user Levi from 185.131.63.86 port 40522 Aug 20 07:03:46 tux-35-217 sshd\[8079\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.131.63.86 Aug 20 07:03:48 tux-35-217 sshd\[8079\]: Failed password for invalid user Levi from 185.131.63.86 port 40522 ssh2 Aug 20 07:08:00 tux-35-217 sshd\[8091\]: Invalid user jb from 185.131.63.86 port 58004 Aug 20 07:08:00 tux-35-217 sshd\[8091\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.131.63.86 ...	2019-08-20 21:55:01
125.231.163.149	attackspam	Unauthorized connection attempt from IP address 125.231.163.149 on Port 445(SMB)	2019-08-20 22:04:18
183.82.122.47	attack	Unauthorized connection attempt from IP address 183.82.122.47 on Port 445(SMB)	2019-08-20 22:07:47
203.110.95.89	attackspam	Unauthorized connection attempt from IP address 203.110.95.89 on Port 445(SMB)	2019-08-20 22:16:32
106.13.88.44	attackspambots	Apr 26 22:41:25 mail sshd\[9511\]: Invalid user radius from 106.13.88.44 Apr 26 22:41:25 mail sshd\[9511\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.88.44 Apr 26 22:41:26 mail sshd\[9511\]: Failed password for invalid user radius from 106.13.88.44 port 52052 ssh2 Apr 26 22:43:48 mail sshd\[9548\]: Invalid user ny from 106.13.88.44 Apr 26 22:43:48 mail sshd\[9548\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.88.44 Apr 26 22:43:50 mail sshd\[9548\]: Failed password for invalid user ny from 106.13.88.44 port 43282 ssh2 Apr 26 22:46:16 mail sshd\[9561\]: Invalid user jo from 106.13.88.44 Apr 26 22:46:16 mail sshd\[9561\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.88.44 Apr 26 22:46:18 mail sshd\[9561\]: Failed password for invalid user jo from 106.13.88.44 port 34514 ssh2 Apr 26 22:48:49 mail sshd\[9580\]: Invalid user xbmc from 106.13.88.44	2019-08-20 21:31:23
171.121.134.128	attackspam	Telnet/23 MH Probe, BF, Hack -	2019-08-20 21:58:25
51.15.87.199	attackspam	Invalid user press from 51.15.87.199 port 42568	2019-08-20 22:25:58
172.121.148.250	attack	Unauthorized connection attempt from IP address 172.121.148.250 on Port 445(SMB)	2019-08-20 22:19:13
167.99.66.166	attackspam	Aug 20 10:43:00 Ubuntu-1404-trusty-64-minimal sshd\[10932\]: Invalid user cacti from 167.99.66.166 Aug 20 10:43:00 Ubuntu-1404-trusty-64-minimal sshd\[10932\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.66.166 Aug 20 10:43:02 Ubuntu-1404-trusty-64-minimal sshd\[10932\]: Failed password for invalid user cacti from 167.99.66.166 port 53050 ssh2 Aug 20 16:25:37 Ubuntu-1404-trusty-64-minimal sshd\[9427\]: Invalid user zabbix from 167.99.66.166 Aug 20 16:25:37 Ubuntu-1404-trusty-64-minimal sshd\[9427\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.66.166	2019-08-20 22:28:41
210.219.151.170	attack	Lines containing failures of 210.219.151.170 Aug 20 06:06:03 srv02 sshd[29887]: Invalid user bone from 210.219.151.170 port 59642 Aug 20 06:06:03 srv02 sshd[29887]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.219.151.170 Aug 20 06:06:05 srv02 sshd[29887]: Failed password for invalid user bone from 210.219.151.170 port 59642 ssh2 Aug 20 06:06:05 srv02 sshd[29887]: Received disconnect from 210.219.151.170 port 59642:11: Bye Bye [preauth] Aug 20 06:06:05 srv02 sshd[29887]: Disconnected from invalid user bone 210.219.151.170 port 59642 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=210.219.151.170	2019-08-20 22:30:47
54.36.214.76	attackbots	Relay access denied	2019-08-20 21:23:13
122.54.129.109	attack	Chat Spam	2019-08-20 21:35:33

最近上报的IP列表

183.184.31.54	180.95.231.29	124.235.138.252	123.160.172.212
118.81.6.250	117.136.68.141	113.206.133.80	113.128.105.230
112.230.43.123	106.122.169.156	49.113.65.216	49.7.20.173
49.7.6.161	2001:b400:e288:46a6:b9e6:8f6c:f1cb:157b	1.202.113.58	1.202.113.19
223.104.210.118	222.82.53.81	220.181.124.157	218.253.236.18