219.140.116.108

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Network in Wuhan City Hubei Province

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5413990029bed386 \| WAF_Rule_ID: 1112825 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Mobile Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 07:03:48

类型

评论内容

时间

attackspam

The IP has triggered Cloudflare WAF. CF-Ray: 5413990029bed386 | WAF_Rule_ID: 1112825 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: img.skk.moe | User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Mobile Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 07:03:48

相同子网IP讨论:

IP	类型	评论内容	时间
219.140.116.221	attack	Unauthorized connection attempt detected from IP address 219.140.116.221 to port 8123 [T]	2020-01-29 08:06:30
219.140.116.234	attackspam	Unauthorized connection attempt detected from IP address 219.140.116.234 to port 8090	2020-01-01 21:16:03
219.140.116.205	attackbotsspam	Unauthorized connection attempt detected from IP address 219.140.116.205 to port 8081	2019-12-31 06:18:06
219.140.116.137	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5410f178dd34e4c8 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.084743666 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:36:46
219.140.116.97	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 54124d47bdbce7bd \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/4.038533357 Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1) QQBrowser/6.0 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 00:52:14

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 219.140.116.108
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49361
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;219.140.116.108.		IN	A

;; AUTHORITY SECTION:
.			409	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120701 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 07:03:45 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 108.116.140.219.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 108.116.140.219.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
51.91.8.222	attackspambots	2019-12-12T13:23:37.393030scmdmz1 sshd\[32254\]: Invalid user bin. from 51.91.8.222 port 59502 2019-12-12T13:23:37.396017scmdmz1 sshd\[32254\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.ip-51-91-8.eu 2019-12-12T13:23:39.273733scmdmz1 sshd\[32254\]: Failed password for invalid user bin. from 51.91.8.222 port 59502 ssh2 ...	2019-12-12 20:33:16
118.89.50.19	attackbotsspam	Dec 12 10:39:18 vpn01 sshd[20628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.50.19 Dec 12 10:39:21 vpn01 sshd[20628]: Failed password for invalid user guest from 118.89.50.19 port 38874 ssh2 ...	2019-12-12 20:04:59
222.184.233.222	attackspambots	Automatic report: SSH brute force attempt	2019-12-12 20:24:24
104.248.149.130	attackbotsspam	SSH Brute Force	2019-12-12 20:39:03
80.251.178.98	attackspambots	Dec 12 04:20:38 home sshd[719]: Invalid user iocha from 80.251.178.98 port 34638 Dec 12 04:20:38 home sshd[719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.251.178.98 Dec 12 04:20:38 home sshd[719]: Invalid user iocha from 80.251.178.98 port 34638 Dec 12 04:20:40 home sshd[719]: Failed password for invalid user iocha from 80.251.178.98 port 34638 ssh2 Dec 12 04:29:37 home sshd[777]: Invalid user timpert from 80.251.178.98 port 55612 Dec 12 04:29:37 home sshd[777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.251.178.98 Dec 12 04:29:37 home sshd[777]: Invalid user timpert from 80.251.178.98 port 55612 Dec 12 04:29:39 home sshd[777]: Failed password for invalid user timpert from 80.251.178.98 port 55612 ssh2 Dec 12 04:34:46 home sshd[850]: Invalid user test from 80.251.178.98 port 51538 Dec 12 04:34:46 home sshd[850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.251.178.98	2019-12-12 20:34:49
14.102.127.162	attack	Unauthorized connection attempt from IP address 14.102.127.162 on Port 445(SMB)	2019-12-12 20:09:52
159.203.201.186	attack	Port Scan detected from 159.203.201.186 (US/United States/zg-0911a-221.stretchoid.com). 4 hits in the last 270 seconds	2019-12-12 20:18:54
160.178.194.249	attackbots	Automatic report - Port Scan Attack	2019-12-12 20:46:35
180.243.14.85	attackspam	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2019-12-12 20:09:17
198.108.67.77	attackspam	Portscan or hack attempt detected by psad/fwsnort	2019-12-12 20:37:10
223.225.25.55	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2019-12-12 20:42:06
195.154.38.177	attackspam	SSH Brute-Forcing (ownc)	2019-12-12 20:23:52
208.97.139.113	attackbotsspam	[Aegis] @ 2019-12-12 10:27:14 0000 -> Common web attack.	2019-12-12 20:41:04
114.224.159.46	attack	2019-12-12 00:24:41 H=(ylmf-pc) [114.224.159.46]:51630 I=[192.147.25.65]:25 rejected EHLO or HELO ylmf-pc: CHECK_HELO: ylmf-pc 2019-12-12 00:24:42 H=(ylmf-pc) [114.224.159.46]:49984 I=[192.147.25.65]:25 rejected EHLO or HELO ylmf-pc: CHECK_HELO: ylmf-pc 2019-12-12 00:24:43 H=(ylmf-pc) [114.224.159.46]:58455 I=[192.147.25.65]:25 rejected EHLO or HELO ylmf-pc: CHECK_HELO: ylmf-pc ...	2019-12-12 20:35:38
112.134.105.87	attackbotsspam	PHI,WP GET /wp-login.php	2019-12-12 20:20:03

最近上报的IP列表

113.58.241.113	112.66.110.154	111.224.248.132	111.224.234.243
111.224.234.146	111.206.198.216	110.177.87.99	110.177.80.44
110.177.73.131	110.80.154.198	110.80.153.119	110.80.153.41
106.45.0.254	106.45.0.36	106.11.153.82	106.11.152.105
103.79.77.113	59.173.152.246	58.212.14.119	52.229.169.70