124.90.52.86 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Zhejiang Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541380e48a61ed3b \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.064213590 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:54:23

类型

评论内容

时间

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 541380e48a61ed3b | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.064213590 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 | CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 01:54:23

相同子网IP讨论:

IP	类型	评论内容	时间
124.90.52.214	attackspambots	Web Server Scan. RayID: 58f1c6a568b293c4, UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36, Country: CN	2020-05-21 03:59:29
124.90.52.158	attackbots	Fail2Ban Ban Triggered	2020-04-16 14:48:59
124.90.52.243	attackspam	Unauthorized connection attempt detected from IP address 124.90.52.243 to port 8081 [J]	2020-01-26 05:00:54
124.90.52.189	attack	Unauthorized connection attempt detected from IP address 124.90.52.189 to port 82 [T]	2020-01-10 08:46:03
124.90.52.114	attackspambots	Unauthorized connection attempt detected from IP address 124.90.52.114 to port 3128	2019-12-31 07:33:14
124.90.52.137	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 5414e5dd78c695f3 \| WAF_Rule_ID: 1112824 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:31:03
124.90.52.118	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5416098bfab493ac \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.082584686 Mozilla/5.0 (iPhone; CPU iPhone OS 11_4_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:09:19

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.90.52.86
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27784
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.90.52.86.			IN	A

;; AUTHORITY SECTION:
.			451	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120700 1800 900 604800 86400

;; Query time: 122 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 01:54:19 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 86.52.90.124.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 86.52.90.124.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
70.37.56.225	attack	Invalid user patria from 70.37.56.225 port 36658	2020-06-27 20:09:32
14.18.61.73	attackspam	Jun 27 14:06:52 ns382633 sshd\[9149\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.18.61.73 user=root Jun 27 14:06:54 ns382633 sshd\[9149\]: Failed password for root from 14.18.61.73 port 39762 ssh2 Jun 27 14:20:17 ns382633 sshd\[11690\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.18.61.73 user=root Jun 27 14:20:18 ns382633 sshd\[11690\]: Failed password for root from 14.18.61.73 port 38726 ssh2 Jun 27 14:22:23 ns382633 sshd\[11903\]: Invalid user infoweb from 14.18.61.73 port 52259 Jun 27 14:22:23 ns382633 sshd\[11903\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.18.61.73	2020-06-27 20:33:56
174.219.145.252	attackspambots	Brute forcing email accounts	2020-06-27 20:45:35
120.70.102.239	attack	Jun 27 08:02:29 piServer sshd[16741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.70.102.239 Jun 27 08:02:31 piServer sshd[16741]: Failed password for invalid user tomy from 120.70.102.239 port 46358 ssh2 Jun 27 08:05:59 piServer sshd[17046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.70.102.239 ...	2020-06-27 20:15:23
164.163.99.10	attackspambots	Invalid user anita from 164.163.99.10 port 38088	2020-06-27 20:21:18
201.218.123.207	attack	Jun 27 03:47:26 hermescis postfix/smtpd[3529]: NOQUEUE: reject: RCPT from unknown[201.218.123.207]: 550 5.1.1 : Recipient address rejected:* from= to= proto=ESMTP helo=<[201.218.123.207]>	2020-06-27 20:11:59
49.114.143.90	attack	Invalid user mgu from 49.114.143.90 port 49372	2020-06-27 20:14:28
185.143.72.16	attackspam	Jun 27 14:09:02 srv01 postfix/smtpd\[5743\]: warning: unknown\[185.143.72.16\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 27 14:09:28 srv01 postfix/smtpd\[5743\]: warning: unknown\[185.143.72.16\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 27 14:09:41 srv01 postfix/smtpd\[14425\]: warning: unknown\[185.143.72.16\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 27 14:09:41 srv01 postfix/smtpd\[5743\]: warning: unknown\[185.143.72.16\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 27 14:10:27 srv01 postfix/smtpd\[5743\]: warning: unknown\[185.143.72.16\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-27 20:11:14
46.35.19.18	attackbots	2020-06-27T14:01:59.637813galaxy.wi.uni-potsdam.de sshd[26489]: Invalid user sadmin from 46.35.19.18 port 33398 2020-06-27T14:01:59.642854galaxy.wi.uni-potsdam.de sshd[26489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.35.19.18 2020-06-27T14:01:59.637813galaxy.wi.uni-potsdam.de sshd[26489]: Invalid user sadmin from 46.35.19.18 port 33398 2020-06-27T14:02:01.868552galaxy.wi.uni-potsdam.de sshd[26489]: Failed password for invalid user sadmin from 46.35.19.18 port 33398 ssh2 2020-06-27T14:04:22.070548galaxy.wi.uni-potsdam.de sshd[26813]: Invalid user vpn from 46.35.19.18 port 48413 2020-06-27T14:04:22.075854galaxy.wi.uni-potsdam.de sshd[26813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.35.19.18 2020-06-27T14:04:22.070548galaxy.wi.uni-potsdam.de sshd[26813]: Invalid user vpn from 46.35.19.18 port 48413 2020-06-27T14:04:24.266319galaxy.wi.uni-potsdam.de sshd[26813]: Failed password for invalid u ...	2020-06-27 20:08:32
218.92.0.221	attack	2020-06-27T12:46:43.284581shield sshd\[17580\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.221 user=root 2020-06-27T12:46:45.313860shield sshd\[17580\]: Failed password for root from 218.92.0.221 port 52416 ssh2 2020-06-27T12:46:47.212887shield sshd\[17580\]: Failed password for root from 218.92.0.221 port 52416 ssh2 2020-06-27T12:46:49.378724shield sshd\[17580\]: Failed password for root from 218.92.0.221 port 52416 ssh2 2020-06-27T12:46:52.705514shield sshd\[17656\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.221 user=root	2020-06-27 20:47:51
45.132.184.203	attack	Detected by ModSecurity. Request URI: /wp-json/wp/v2/users	2020-06-27 20:46:07
60.167.178.132	attackbots	Jun 27 14:30:50 ArkNodeAT sshd\[19047\]: Invalid user tunel from 60.167.178.132 Jun 27 14:30:50 ArkNodeAT sshd\[19047\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.167.178.132 Jun 27 14:30:52 ArkNodeAT sshd\[19047\]: Failed password for invalid user tunel from 60.167.178.132 port 42354 ssh2	2020-06-27 20:48:04
218.92.0.248	attackbotsspam	Jun 27 14:35:44 server sshd[38479]: Failed none for root from 218.92.0.248 port 58879 ssh2 Jun 27 14:35:48 server sshd[38479]: Failed password for root from 218.92.0.248 port 58879 ssh2 Jun 27 14:35:53 server sshd[38479]: Failed password for root from 218.92.0.248 port 58879 ssh2	2020-06-27 20:37:25
111.229.139.95	attackspambots	k+ssh-bruteforce	2020-06-27 20:36:38
103.199.98.220	attackbots	2020-06-27T14:12:51.397510ns386461 sshd\[28818\]: Invalid user liao from 103.199.98.220 port 59464 2020-06-27T14:12:51.401107ns386461 sshd\[28818\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.199.98.220 2020-06-27T14:12:53.134340ns386461 sshd\[28818\]: Failed password for invalid user liao from 103.199.98.220 port 59464 ssh2 2020-06-27T14:22:32.496007ns386461 sshd\[5065\]: Invalid user admin from 103.199.98.220 port 44714 2020-06-27T14:22:32.500444ns386461 sshd\[5065\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.199.98.220 ...	2020-06-27 20:24:46

最近上报的IP列表

121.57.224.199	175.231.179.48	120.92.72.144	119.181.106.8
117.14.113.153	116.252.0.74	115.198.203.89	142.79.202.236
115.54.174.179	89.12.121.178	166.12.226.89	45.90.172.25
112.193.171.154	61.164.107.206	112.80.139.252	111.206.222.177
111.202.101.179	60.168.36.118	167.172.125.96	110.177.80.225