122.192.14.130

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Jiangsu Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	The IP has triggered Cloudflare WAF. CF-Ray: 5416ae0d5aeeed3b \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Linux; U; Android 8.1.0; zh-cn; ONEPLUS A6000 Build/OPM1.171019.011) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.0.0 Mobile Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:12:59

类型

评论内容

时间

attack

The IP has triggered Cloudflare WAF. CF-Ray: 5416ae0d5aeeed3b | WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: img.skk.moe | User-Agent: Mozilla/5.0 (Linux; U; Android 8.1.0; zh-cn; ONEPLUS A6000 Build/OPM1.171019.011) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.0.0 Mobile Safari/537.36 | CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 06:12:59

相同子网IP讨论:

IP	类型	评论内容	时间
122.192.149.180	attackbots	Aug 14 05:39:13 ip40 sshd[27434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.192.149.180 Aug 14 05:39:15 ip40 sshd[27434]: Failed password for invalid user admin from 122.192.149.180 port 48661 ssh2 ...	2020-08-14 14:50:32
122.192.142.56	attackbotsspam	Unauthorized connection attempt detected from IP address 122.192.142.56 to port 6656 [T]	2020-01-30 07:58:02
122.192.143.224	attack	Unauthorized connection attempt detected from IP address 122.192.143.224 to port 6656 [T]	2020-01-29 17:35:01
122.192.143.131	attackspam	Unauthorized connection attempt detected from IP address 122.192.143.131 to port 6656 [T]	2020-01-26 09:34:55

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.192.14.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29223
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.192.14.130.			IN	A

;; AUTHORITY SECTION:
.			321	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120701 1800 900 604800 86400

;; Query time: 121 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 06:12:54 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 130.14.192.122.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 130.14.192.122.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
99.191.118.206	attack	Unauthorized connection attempt detected from IP address 99.191.118.206 to port 22	2020-03-31 18:15:31
18.203.136.33	attackspambots	port	2020-03-31 17:37:45
1.234.23.23	attackbotsspam	Mar 31 16:58:19 webhost01 sshd[31589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.234.23.23 Mar 31 16:58:21 webhost01 sshd[31589]: Failed password for invalid user idc123123412345 from 1.234.23.23 port 49040 ssh2 ...	2020-03-31 17:58:51
137.220.175.34	attack	(sshd) Failed SSH login from 137.220.175.34 (JP/Japan/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 31 06:53:19 amsweb01 sshd[10387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.220.175.34 user=root Mar 31 06:53:21 amsweb01 sshd[10387]: Failed password for root from 137.220.175.34 port 42110 ssh2 Mar 31 07:05:08 amsweb01 sshd[11706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.220.175.34 user=root Mar 31 07:05:10 amsweb01 sshd[11706]: Failed password for root from 137.220.175.34 port 56112 ssh2 Mar 31 07:12:58 amsweb01 sshd[12691]: Invalid user zz from 137.220.175.34 port 33902	2020-03-31 17:57:09
186.85.159.135	attackspambots	Mar 31 11:03:25 sso sshd[9874]: Failed password for root from 186.85.159.135 port 8129 ssh2 ...	2020-03-31 17:41:04
94.191.25.32	attack	03/31/2020-03:58:09.911748 94.191.25.32 Protocol: 6 ET SCAN Potential SSH Scan	2020-03-31 17:44:37
1.2.204.140	attackbots	Icarus honeypot on github	2020-03-31 18:14:08
128.199.150.11	attackspambots	SSH brute-force attempt	2020-03-31 18:22:01
186.185.190.24	attackspambots	IP address logged by my Netflix account after the individual hacked into and locked me out of my account. Individual also changed my account settings to the most expensive plan, which allows multiple people (profiles) to watch, and several profiles were added. The name on my account was changed to "Juan". I contacted Netflix to have my account restored, so I was able to see the various IP addresses used. I will report all of them as well.	2020-03-31 18:21:06
190.143.213.187	attackspambots	Mar 31 10:27:42 server sshd[15723]: Failed password for invalid user ts3 from 190.143.213.187 port 50602 ssh2 Mar 31 10:42:41 server sshd[19763]: Failed password for invalid user ts3 from 190.143.213.187 port 43971 ssh2 Mar 31 11:05:54 server sshd[1791]: Failed password for invalid user ts3 from 190.143.213.187 port 37423 ssh2	2020-03-31 17:56:29
125.124.193.237	attack	Mar 31 11:39:47 lukav-desktop sshd\[21128\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.193.237 user=root Mar 31 11:39:49 lukav-desktop sshd\[21128\]: Failed password for root from 125.124.193.237 port 45368 ssh2 Mar 31 11:44:06 lukav-desktop sshd\[21228\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.193.237 user=root Mar 31 11:44:08 lukav-desktop sshd\[21228\]: Failed password for root from 125.124.193.237 port 35240 ssh2 Mar 31 11:48:31 lukav-desktop sshd\[21297\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.193.237 user=root	2020-03-31 18:07:28
24.185.47.170	attackspam	2020-03-31T09:15:47.386239centos sshd[3771]: Invalid user tianxin from 24.185.47.170 port 45890 2020-03-31T09:15:49.933989centos sshd[3771]: Failed password for invalid user tianxin from 24.185.47.170 port 45890 ssh2 2020-03-31T09:19:11.395569centos sshd[4018]: Invalid user test from 24.185.47.170 port 50488 ...	2020-03-31 17:49:04
185.22.142.132	attackspam	Mar 31 11:29:00 relay dovecot: imap-login: Disconnected: Inactivity \(auth failed, 1 attempts in 180 secs\): user=\, method=PLAIN, rip=185.22.142.132, lip=176.9.177.164, session=\<7gLrJyOiiuS5Fo6E\> Mar 31 11:29:02 relay dovecot: imap-login: Disconnected: Inactivity \(auth failed, 1 attempts in 180 secs\): user=\, method=PLAIN, rip=185.22.142.132, lip=176.9.177.164, session=\ Mar 31 11:29:25 relay dovecot: imap-login: Disconnected: Inactivity \(auth failed, 1 attempts in 180 secs\): user=\, method=PLAIN, rip=185.22.142.132, lip=176.9.177.164, session=\<5d5dKSOiHIO5Fo6E\> Mar 31 11:34:35 relay dovecot: imap-login: Disconnected: Inactivity \(auth failed, 1 attempts in 180 secs\): user=\, method=PLAIN, rip=185.22.142.132, lip=176.9.177.164, session=\ Mar 31 11:34:37 relay dovecot: imap-login: Disconnected: Inactivity \(auth failed, 1 attempts in 180 ...	2020-03-31 17:36:16
73.15.91.251	attack	Mar 31 05:14:30 ny01 sshd[16410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.15.91.251 Mar 31 05:14:32 ny01 sshd[16410]: Failed password for invalid user Afra@net from 73.15.91.251 port 39046 ssh2 Mar 31 05:19:17 ny01 sshd[16929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.15.91.251	2020-03-31 17:36:49
2601:589:4480:a5a0:1d50:ef6d:fec8:50ef	attackspambots	IP address logged by my Netflix account after the individual hacked into and locked me out of my account. Individual also changed my account settings to the most expensive plan, which allows multiple people (profiles) to watch, and several profiles were added. The name on my account was changed to "Juan". I contacted Netflix to have my account restored, so I was able to see the various IP addresses used. I will report all of them as well.	2020-03-31 17:58:27

最近上报的IP列表

222.82.51.232	56.111.150.231	152.96.163.54	221.13.12.165
221.13.12.76	221.0.21.52	218.62.245.43	205.210.164.245
115.241.202.154	117.82.213.30	203.186.25.39	183.211.73.133
183.157.86.78	182.138.162.253	175.42.1.201	171.12.10.95
150.255.2.207	69.44.9.4	124.235.138.172	123.191.157.96