124.90.52.86 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Zhejiang Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541380e48a61ed3b \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.064213590 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:54:23

类型

评论内容

时间

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 541380e48a61ed3b | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.064213590 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 | CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 01:54:23

相同子网IP讨论:

IP	类型	评论内容	时间
124.90.52.214	attackspambots	Web Server Scan. RayID: 58f1c6a568b293c4, UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36, Country: CN	2020-05-21 03:59:29
124.90.52.158	attackbots	Fail2Ban Ban Triggered	2020-04-16 14:48:59
124.90.52.243	attackspam	Unauthorized connection attempt detected from IP address 124.90.52.243 to port 8081 [J]	2020-01-26 05:00:54
124.90.52.189	attack	Unauthorized connection attempt detected from IP address 124.90.52.189 to port 82 [T]	2020-01-10 08:46:03
124.90.52.114	attackspambots	Unauthorized connection attempt detected from IP address 124.90.52.114 to port 3128	2019-12-31 07:33:14
124.90.52.137	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 5414e5dd78c695f3 \| WAF_Rule_ID: 1112824 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:31:03
124.90.52.118	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5416098bfab493ac \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.082584686 Mozilla/5.0 (iPhone; CPU iPhone OS 11_4_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:09:19

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.90.52.86
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27784
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.90.52.86.			IN	A

;; AUTHORITY SECTION:
.			451	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120700 1800 900 604800 86400

;; Query time: 122 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 01:54:19 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 86.52.90.124.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 86.52.90.124.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
14.177.137.190	attackbots	Jan 25 13:01:35 archlinux postfix/smtpd[20051]: warning: unknown[14.177.137.190]: SASL PLAIN authentication failed: Jan 25 13:01:35 archlinux postfix/smtpd[20051]: disconnect from unknown[14.177.137.190] ehlo=1 auth=0/1 quit=1 commands=2/3	2020-01-25 23:46:40
77.42.82.184	attackspambots	Automatic report - Port Scan Attack	2020-01-26 00:04:34
51.75.17.6	attackspam	Jan 25 15:53:27 hcbbdb sshd\[25166\]: Invalid user db from 51.75.17.6 Jan 25 15:53:27 hcbbdb sshd\[25166\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=6.ip-51-75-17.eu Jan 25 15:53:29 hcbbdb sshd\[25166\]: Failed password for invalid user db from 51.75.17.6 port 54006 ssh2 Jan 25 15:56:25 hcbbdb sshd\[25564\]: Invalid user sophie from 51.75.17.6 Jan 25 15:56:25 hcbbdb sshd\[25564\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=6.ip-51-75-17.eu	2020-01-26 00:01:06
177.69.104.168	attack	Jan 25 16:17:12 MainVPS sshd[17821]: Invalid user sarah from 177.69.104.168 port 49377 Jan 25 16:17:12 MainVPS sshd[17821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.69.104.168 Jan 25 16:17:12 MainVPS sshd[17821]: Invalid user sarah from 177.69.104.168 port 49377 Jan 25 16:17:15 MainVPS sshd[17821]: Failed password for invalid user sarah from 177.69.104.168 port 49377 ssh2 Jan 25 16:21:02 MainVPS sshd[24794]: Invalid user git from 177.69.104.168 port 20065 ...	2020-01-25 23:35:25
202.88.174.4	attackspam	Honeypot attack, port: 445, PTR: bhima.hathway.com.	2020-01-26 00:11:45
183.82.10.139	attack	Honeypot attack, port: 445, PTR: broadband.actcorp.in.	2020-01-25 23:47:06
193.112.246.211	attackbots	port scan and connect, tcp 80 (http)	2020-01-25 23:58:58
106.12.13.247	attackbotsspam	Jan 25 14:35:21 vps691689 sshd[32278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.247 Jan 25 14:35:23 vps691689 sshd[32278]: Failed password for invalid user xue from 106.12.13.247 port 32904 ssh2 ...	2020-01-26 00:09:47
43.240.117.208	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-25 23:49:03
138.186.63.73	attackbotsspam	Jan 25 15:39:35 hcbbdb sshd\[23462\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.otrimport.com.py user=root Jan 25 15:39:37 hcbbdb sshd\[23462\]: Failed password for root from 138.186.63.73 port 58210 ssh2 Jan 25 15:43:58 hcbbdb sshd\[24045\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.otrimport.com.py user=root Jan 25 15:44:00 hcbbdb sshd\[24045\]: Failed password for root from 138.186.63.73 port 52180 ssh2 Jan 25 15:48:20 hcbbdb sshd\[24554\]: Invalid user oracle from 138.186.63.73 Jan 25 15:48:20 hcbbdb sshd\[24554\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.otrimport.com.py	2020-01-25 23:52:47
180.183.65.157	attackbotsspam	Honeypot attack, port: 445, PTR: mx-ll-180.183.65-157.dynamic.3bb.co.th.	2020-01-25 23:55:30
187.72.90.169	attack	DATE:2020-01-25 16:23:55, IP:187.72.90.169, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2020-01-25 23:44:44
121.172.66.77	attackbotsspam	Honeypot attack, port: 81, PTR: PTR record not found	2020-01-25 23:57:02
222.186.175.182	attack	Jan 25 10:21:41 plusreed sshd[28507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root Jan 25 10:21:43 plusreed sshd[28507]: Failed password for root from 222.186.175.182 port 45924 ssh2 ...	2020-01-25 23:23:17
92.118.161.21	attackspam	Unauthorized connection attempt detected from IP address 92.118.161.21 to port 22 [J]	2020-01-25 23:26:24

最近上报的IP列表

121.57.224.199	175.231.179.48	120.92.72.144	119.181.106.8
117.14.113.153	116.252.0.74	115.198.203.89	142.79.202.236
115.54.174.179	89.12.121.178	166.12.226.89	45.90.172.25
112.193.171.154	61.164.107.206	112.80.139.252	111.206.222.177
111.202.101.179	60.168.36.118	167.172.125.96	110.177.80.225