219.140.119.118

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
219.140.119.44	attackspambots	219.140.119.44 - - \[31/Jan/2020:10:43:47 +0200\] "GET http://www.rfa.org/english/ HTTP/1.1" 404 206 "-" "Mozilla/5.0 $Windows NT 10.0\; WOW64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/45.0.2454.101 Safari/537.36"	2020-01-31 22:39:59
219.140.119.231	attackbots	Unauthorized connection attempt detected from IP address 219.140.119.231 to port 8082 [J]	2020-01-29 07:49:39
219.140.119.139	attack	Unauthorized connection attempt detected from IP address 219.140.119.139 to port 80 [J]	2020-01-14 15:03:45
219.140.119.159	attackspambots	Unauthorized connection attempt detected from IP address 219.140.119.159 to port 2053	2019-12-31 06:17:35
219.140.119.132	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54315a9eca57e82d \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.096783921 Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 05:31:12
219.140.119.250	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 54160cf68976996b \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/4.047745454 Mozilla/4.0 (compatible; MSIE 5.00; Windows 98) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:06:05

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 219.140.119.118
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58964
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;219.140.119.118.		IN	A

;; AUTHORITY SECTION:
.			141	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 11:00:50 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

Host 118.119.140.219.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 118.119.140.219.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
210.217.124.203	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/210.217.124.203/ KR - 1H : (149) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : KR NAME ASN : ASN4766 IP : 210.217.124.203 CIDR : 210.217.0.0/17 PREFIX COUNT : 8136 UNIQUE IP COUNT : 44725248 ATTACKS DETECTED ASN4766 : 1H - 6 3H - 13 6H - 21 12H - 58 24H - 83 DateTime : 2019-11-07 05:56:38 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-07 13:26:01
138.0.22.243	attack	$f2bV_matches	2019-11-07 13:24:59
106.52.180.89	attackspambots	Nov 7 01:57:13 firewall sshd[23865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.180.89 Nov 7 01:57:13 firewall sshd[23865]: Invalid user IEUser from 106.52.180.89 Nov 7 01:57:15 firewall sshd[23865]: Failed password for invalid user IEUser from 106.52.180.89 port 49282 ssh2 ...	2019-11-07 13:09:04
106.12.34.160	attack	Nov 7 12:26:49 webhost01 sshd[481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.34.160 Nov 7 12:26:51 webhost01 sshd[481]: Failed password for invalid user wangqiuewq from 106.12.34.160 port 56074 ssh2 ...	2019-11-07 13:37:21
5.249.131.161	attack	Nov 6 18:52:54 auw2 sshd\[18083\]: Invalid user salomao123 from 5.249.131.161 Nov 6 18:52:54 auw2 sshd\[18083\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.249.131.161 Nov 6 18:52:56 auw2 sshd\[18083\]: Failed password for invalid user salomao123 from 5.249.131.161 port 25585 ssh2 Nov 6 18:56:47 auw2 sshd\[18430\]: Invalid user fimat from 5.249.131.161 Nov 6 18:56:47 auw2 sshd\[18430\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.249.131.161	2019-11-07 13:24:30
92.222.85.128	attackbots	[Thu Nov 07 11:57:10.173978 2019] [:error] [pid 20227:tid 140465017939712] [client 92.222.85.128:61000] [client 92.222.85.128] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XcOkJuC2kIxOuel-G3hxAwAAAEk"] ...	2019-11-07 13:13:45
163.172.61.214	attackspam	Nov 7 07:12:56 sauna sshd[37365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.61.214 Nov 7 07:12:58 sauna sshd[37365]: Failed password for invalid user xxx222 from 163.172.61.214 port 39208 ssh2 ...	2019-11-07 13:18:11
159.65.157.194	attackspambots	Nov 7 05:35:57 root sshd[8578]: Failed password for root from 159.65.157.194 port 33022 ssh2 Nov 7 05:53:55 root sshd[8844]: Failed password for root from 159.65.157.194 port 60732 ssh2 ...	2019-11-07 13:17:27
121.235.229.100	attack	Nov 6 23:57:09 esmtp postfix/smtpd[29266]: lost connection after AUTH from unknown[121.235.229.100] Nov 6 23:57:10 esmtp postfix/smtpd[29266]: lost connection after AUTH from unknown[121.235.229.100] Nov 6 23:57:12 esmtp postfix/smtpd[29266]: lost connection after AUTH from unknown[121.235.229.100] Nov 6 23:57:16 esmtp postfix/smtpd[29266]: lost connection after AUTH from unknown[121.235.229.100] Nov 6 23:57:18 esmtp postfix/smtpd[29234]: lost connection after AUTH from unknown[121.235.229.100] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=121.235.229.100	2019-11-07 13:07:47
125.22.98.171	attackbotsspam	IP blocked	2019-11-07 09:16:07
119.63.133.86	attack	Nov 7 05:50:46 MK-Soft-VM5 sshd[21394]: Failed password for root from 119.63.133.86 port 51859 ssh2 ...	2019-11-07 13:04:23
178.62.236.68	attackbots	Forged login request.	2019-11-07 13:23:18
176.84.194.169	attack	LGS,WP GET /wp-login.php	2019-11-07 13:15:56
159.65.69.32	attack	11/07/2019-05:56:22.199023 159.65.69.32 Protocol: 6 ET POLICY Cleartext WordPress Login	2019-11-07 13:35:32
5.189.151.188	attackspam	Masscan Port Scanning Tool PA	2019-11-07 13:32:27

最近上报的IP列表

219.140.118.169	219.140.119.92	219.142.99.28	219.140.119.220
219.142.246.122	219.143.174.119	219.143.174.138	219.140.119.114
219.143.174.148	219.140.119.196	219.143.174.164	219.143.174.175
219.143.174.237	219.143.174.171	219.143.174.27	219.143.174.151
219.143.174.56	219.143.174.245	219.148.109.192	219.143.174.234

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表