125.31.26.139 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Macau

运营商(isp): CTM

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorized connection attempt detected from IP address 125.31.26.139 to port 80 [J]	2020-03-03 02:47:35

相同子网IP讨论:

IP	类型	评论内容	时间
125.31.26.49	attack	The IP has triggered Cloudflare WAF. CF-Ray: 541566c52a97b01a \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: MO \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/27.0.1453.94 Safari/537.36 \| CF_DC: MFM. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:12:22

类型

评论内容

时间

125.31.26.49

attack

The IP has triggered Cloudflare WAF. CF-Ray: 541566c52a97b01a | WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 | WAF_Kind: firewall | CF_Action: drop | Country: MO | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: d.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/27.0.1453.94 Safari/537.36 | CF_DC: MFM. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 03:12:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.31.26.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42556
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.31.26.139.			IN	A

;; AUTHORITY SECTION:
.			380	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020600 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 06 17:06:41 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

139.26.31.125.in-addr.arpa domain name pointer n12531z26l139.static.ctmip.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.26.31.125.in-addr.arpa	name = n12531z26l139.static.ctmip.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
51.83.70.93	attackspambots	Jun 26 22:57:37 ip-172-31-61-156 sshd[17748]: Invalid user xing from 51.83.70.93 Jun 26 22:57:38 ip-172-31-61-156 sshd[17748]: Failed password for invalid user xing from 51.83.70.93 port 52810 ssh2 Jun 26 23:01:41 ip-172-31-61-156 sshd[18003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.70.93 user=ubuntu Jun 26 23:01:43 ip-172-31-61-156 sshd[18003]: Failed password for ubuntu from 51.83.70.93 port 53138 ssh2 Jun 26 23:05:15 ip-172-31-61-156 sshd[18190]: Invalid user dreambox from 51.83.70.93 ...	2020-06-27 07:25:26
94.232.63.134	attackbots	20 attempts against mh-ssh on river	2020-06-27 07:23:48
152.136.189.81	attackbots	Failed password for invalid user dpa from 152.136.189.81 port 37186 ssh2	2020-06-27 07:34:02
106.225.130.128	attackbotsspam	SSH Invalid Login	2020-06-27 07:26:13
197.51.239.102	attack	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-06-27 07:14:44
138.68.21.125	attack	Jun 26 15:43:24 propaganda sshd[36610]: Connection from 138.68.21.125 port 45026 on 10.0.0.160 port 22 rdomain "" Jun 26 15:43:24 propaganda sshd[36610]: Connection closed by 138.68.21.125 port 45026 [preauth]	2020-06-27 07:08:06
106.52.106.61	attackbots	Invalid user deploy from 106.52.106.61 port 53818	2020-06-27 07:21:16
165.227.182.136	attackbotsspam	SSH Invalid Login	2020-06-27 07:07:18
62.98.160.9	attackbotsspam	Automatic report - XMLRPC Attack	2020-06-27 07:25:01
104.211.5.175	attack	87. On Jun 26 2020 experienced a Brute Force SSH login attempt -> 3 unique times by 104.211.5.175.	2020-06-27 07:37:00
13.76.154.111	attackspambots	2020-06-26T23:13:53.019309ns386461 sshd\[17597\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.76.154.111 user=root 2020-06-26T23:13:54.674157ns386461 sshd\[17597\]: Failed password for root from 13.76.154.111 port 18113 ssh2 2020-06-26T23:20:52.711554ns386461 sshd\[24555\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.76.154.111 user=root 2020-06-26T23:20:54.221040ns386461 sshd\[24555\]: Failed password for root from 13.76.154.111 port 46976 ssh2 2020-06-27T00:37:57.732311ns386461 sshd\[30431\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.76.154.111 user=root ...	2020-06-27 07:34:31
83.110.212.85	attackspambots	Jun 26 22:19:12 ajax sshd[32550]: Failed password for root from 83.110.212.85 port 40336 ssh2	2020-06-27 07:14:13
139.162.120.98	attack	TCP (SYN) 139.162.120.98:47473 -> port 22, len 44	2020-06-27 07:06:20
200.41.86.59	attackspam	Jun 26 22:58:26 124388 sshd[1858]: Invalid user sk from 200.41.86.59 port 40800 Jun 26 22:58:26 124388 sshd[1858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.41.86.59 Jun 26 22:58:26 124388 sshd[1858]: Invalid user sk from 200.41.86.59 port 40800 Jun 26 22:58:28 124388 sshd[1858]: Failed password for invalid user sk from 200.41.86.59 port 40800 ssh2 Jun 26 23:01:44 124388 sshd[2022]: Invalid user user from 200.41.86.59 port 38938	2020-06-27 07:37:28
46.38.145.5	attackspambots	2020-06-26T17:16:56.206553linuxbox-skyline auth[251802]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=navigator rhost=46.38.145.5 ...	2020-06-27 07:31:42

最近上报的IP列表

223.16.235.57	119.193.219.2	118.71.82.2	118.69.182.3
118.48.211.1	109.213.11.153	118.25.55.1	37.210.219.163
76.115.182.123	253.215.200.229	91.239.165.158	207.20.65.81
118.25.11.2	80.6.135.125	200.104.134.119	46.163.11.210
106.248.228.114	172.157.235.183	208.5.91.83	96.36.239.223