219.140.116.97

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Network in Wuhan City Hubei Province

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 54124d47bdbce7bd \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/4.038533357 Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1) QQBrowser/6.0 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 00:52:14

类型

评论内容

时间

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 54124d47bdbce7bd | WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: api.skk.moe | User-Agent: Mozilla/4.038533357 Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1) QQBrowser/6.0 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 00:52:14

相同子网IP讨论:

IP	类型	评论内容	时间
219.140.116.221	attack	Unauthorized connection attempt detected from IP address 219.140.116.221 to port 8123 [T]	2020-01-29 08:06:30
219.140.116.234	attackspam	Unauthorized connection attempt detected from IP address 219.140.116.234 to port 8090	2020-01-01 21:16:03
219.140.116.205	attackbotsspam	Unauthorized connection attempt detected from IP address 219.140.116.205 to port 8081	2019-12-31 06:18:06
219.140.116.108	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5413990029bed386 \| WAF_Rule_ID: 1112825 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Mobile Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 07:03:48
219.140.116.137	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5410f178dd34e4c8 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.084743666 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:36:46

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 219.140.116.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25744
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;219.140.116.97.			IN	A

;; AUTHORITY SECTION:
.			243	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120700 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 00:52:07 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 97.116.140.219.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 97.116.140.219.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
178.137.87.154	attackspambots	Automatic report - Web App Attack	2019-07-11 12:11:39
200.89.175.103	attackspam	Jul 11 06:03:27 mail sshd[17385]: Invalid user fp from 200.89.175.103 ...	2019-07-11 12:14:26
80.82.77.33	attackbotsspam	11.07.2019 04:32:53 Connection to port 8099 blocked by firewall	2019-07-11 12:35:58
37.120.135.221	attack	\[2019-07-11 00:24:52\] NOTICE\[13443\] chan_sip.c: Registration from '\' failed for '37.120.135.221:1208' - Wrong password \[2019-07-11 00:24:52\] SECURITY\[13451\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-11T00:24:52.041-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="4417",SessionID="0x7f02f8f2dd48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.120.135.221/49517",Challenge="69949a61",ReceivedChallenge="69949a61",ReceivedHash="ff1fca88e3a83a62266667496be68f72" \[2019-07-11 00:25:54\] NOTICE\[13443\] chan_sip.c: Registration from '\' failed for '37.120.135.221:1344' - Wrong password \[2019-07-11 00:25:54\] SECURITY\[13451\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-11T00:25:54.833-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="7706",SessionID="0x7f02f94cdc98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.1	2019-07-11 12:42:16
77.34.128.130	attack	'IP reached maximum auth failures for a one day block'	2019-07-11 12:56:11
121.123.236.94	attackbots	Jul 11 11:00:25 itv-usvr-01 sshd[12782]: Invalid user support from 121.123.236.94 Jul 11 11:00:52 itv-usvr-01 sshd[12782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.123.236.94 Jul 11 11:00:25 itv-usvr-01 sshd[12782]: Invalid user support from 121.123.236.94 Jul 11 11:00:54 itv-usvr-01 sshd[12782]: Failed password for invalid user support from 121.123.236.94 port 56270 ssh2 Jul 11 11:01:17 itv-usvr-01 sshd[12860]: Invalid user cisco from 121.123.236.94	2019-07-11 12:55:34
134.209.157.162	attackbots	$f2bV_matches	2019-07-11 12:12:14
139.255.38.133	attackbotsspam	Unauthorized connection attempt from IP address 139.255.38.133 on Port 445(SMB)	2019-07-11 12:53:42
104.206.119.154	attackbots	1,09-03/03 concatform PostRequest-Spammer scoring: stockholm	2019-07-11 12:12:44
112.85.42.175	attackbotsspam	Jul 11 04:01:55 ip-172-31-1-72 sshd\[10702\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.175 user=root Jul 11 04:01:57 ip-172-31-1-72 sshd\[10702\]: Failed password for root from 112.85.42.175 port 2593 ssh2 Jul 11 04:02:16 ip-172-31-1-72 sshd\[10704\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.175 user=root Jul 11 04:02:19 ip-172-31-1-72 sshd\[10704\]: Failed password for root from 112.85.42.175 port 22915 ssh2 Jul 11 04:02:38 ip-172-31-1-72 sshd\[10706\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.175 user=root	2019-07-11 12:16:59
197.46.43.147	attack	Jul 11 07:02:22 srv-4 sshd\[24399\]: Invalid user admin from 197.46.43.147 Jul 11 07:02:22 srv-4 sshd\[24399\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.46.43.147 Jul 11 07:02:24 srv-4 sshd\[24399\]: Failed password for invalid user admin from 197.46.43.147 port 37129 ssh2 ...	2019-07-11 12:14:59
84.1.150.12	attackbotsspam	Jul 11 06:02:57 * sshd[11912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.1.150.12 Jul 11 06:02:59 * sshd[11912]: Failed password for invalid user user from 84.1.150.12 port 59722 ssh2	2019-07-11 12:22:09
23.129.64.188	attackspambots	2019-07-11T06:02:33.244723scmdmz1 sshd\[18571\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.188 user=admin 2019-07-11T06:02:35.317081scmdmz1 sshd\[18571\]: Failed password for admin from 23.129.64.188 port 46372 ssh2 2019-07-11T06:02:41.471546scmdmz1 sshd\[18573\]: Invalid user admin1 from 23.129.64.188 port 57933 ...	2019-07-11 12:42:44
59.55.224.108	attack	Unauthorized connection attempt from IP address 59.55.224.108 on Port 445(SMB)	2019-07-11 12:54:00
51.79.129.235	attackspambots	Jul 11 05:02:44 localhost sshd\[1064\]: Invalid user zj from 51.79.129.235 port 37250 Jul 11 05:02:44 localhost sshd\[1064\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.129.235 ...	2019-07-11 12:39:43

最近上报的IP列表

171.12.10.179	171.12.10.54	150.255.9.52	150.66.9.53
124.235.138.240	124.225.43.89	123.191.148.193	110.16.150.172
123.191.136.148	123.160.233.134	123.160.175.23	123.144.29.230
123.123.151.2	121.57.228.118	121.57.225.49	120.237.156.120
116.252.0.189	116.252.0.124	113.128.104.155	113.77.243.153