222.94.140.124

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Jiangsu Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	The IP has triggered Cloudflare WAF. CF-Ray: 543117e33c67d33e \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/4.066686748 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 01:41:08

类型

评论内容

时间

attack

The IP has triggered Cloudflare WAF. CF-Ray: 543117e33c67d33e | WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: d.skk.moe | User-Agent: Mozilla/4.066686748 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1) | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-12 01:41:08

相同子网IP讨论:

IP	类型	评论内容	时间
222.94.140.70	attackbots	2020-03-06T00:01:27.625411shield sshd\[7095\]: Invalid user b2 from 222.94.140.70 port 28704 2020-03-06T00:01:27.629395shield sshd\[7095\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.94.140.70 2020-03-06T00:01:29.872294shield sshd\[7095\]: Failed password for invalid user b2 from 222.94.140.70 port 28704 ssh2 2020-03-06T00:04:51.987362shield sshd\[7905\]: Invalid user sunos from 222.94.140.70 port 42272 2020-03-06T00:04:51.992731shield sshd\[7905\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.94.140.70	2020-03-06 08:12:18
222.94.140.134	attack	Unauthorized connection attempt detected from IP address 222.94.140.134 to port 8899 [J]	2020-03-02 18:22:41
222.94.140.73	attack	Unauthorized connection attempt detected from IP address 222.94.140.73 to port 8123 [J]	2020-03-02 14:46:00
222.94.140.60	attack	Unauthorized connection attempt detected from IP address 222.94.140.60 to port 8118 [J]	2020-03-02 14:13:32
222.94.140.86	attack	Unauthorized connection attempt detected from IP address 222.94.140.86 to port 80 [J]	2020-01-19 15:51:00
222.94.140.169	attackbots	Unauthorized connection attempt detected from IP address 222.94.140.169 to port 8088 [J]	2020-01-19 14:25:51
222.94.140.162	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 54137f327bb6e7f5 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/4.054101423 Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:48:26

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.94.140.124
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20546
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;222.94.140.124.			IN	A

;; AUTHORITY SECTION:
.			326	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121101 1800 900 604800 86400

;; Query time: 147 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 12 01:41:05 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 124.140.94.222.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 124.140.94.222.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
111.231.237.245	attackbots	Sep 14 08:35:25 friendsofhawaii sshd\[6998\]: Invalid user admin from 111.231.237.245 Sep 14 08:35:25 friendsofhawaii sshd\[6998\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.237.245 Sep 14 08:35:26 friendsofhawaii sshd\[6998\]: Failed password for invalid user admin from 111.231.237.245 port 48630 ssh2 Sep 14 08:39:27 friendsofhawaii sshd\[7546\]: Invalid user alano from 111.231.237.245 Sep 14 08:39:27 friendsofhawaii sshd\[7546\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.237.245	2019-09-15 02:46:34
157.230.213.241	attackbots	Sep 14 20:52:22 meumeu sshd[12741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.213.241 Sep 14 20:52:25 meumeu sshd[12741]: Failed password for invalid user horizon from 157.230.213.241 port 35184 ssh2 Sep 14 20:56:34 meumeu sshd[13225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.213.241 ...	2019-09-15 03:07:08
43.242.215.70	attackspambots	Sep 14 08:56:28 lcprod sshd\[20771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.242.215.70 user=root Sep 14 08:56:30 lcprod sshd\[20771\]: Failed password for root from 43.242.215.70 port 7802 ssh2 Sep 14 09:01:09 lcprod sshd\[21180\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.242.215.70 user=root Sep 14 09:01:11 lcprod sshd\[21180\]: Failed password for root from 43.242.215.70 port 6464 ssh2 Sep 14 09:05:48 lcprod sshd\[21564\]: Invalid user radiusd from 43.242.215.70 Sep 14 09:05:48 lcprod sshd\[21564\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.242.215.70	2019-09-15 03:12:52
129.204.22.64	attack	Sep 14 20:13:37 mail sshd\[5805\]: Invalid user tastas from 129.204.22.64 port 39984 Sep 14 20:13:37 mail sshd\[5805\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.22.64 Sep 14 20:13:38 mail sshd\[5805\]: Failed password for invalid user tastas from 129.204.22.64 port 39984 ssh2 Sep 14 20:18:48 mail sshd\[6403\]: Invalid user angela from 129.204.22.64 port 55214 Sep 14 20:18:48 mail sshd\[6403\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.22.64	2019-09-15 02:35:40
94.23.70.116	attackspambots	Sep 14 18:37:02 microserver sshd[15327]: Invalid user test from 94.23.70.116 port 34891 Sep 14 18:37:02 microserver sshd[15327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.70.116 Sep 14 18:37:03 microserver sshd[15327]: Failed password for invalid user test from 94.23.70.116 port 34891 ssh2 Sep 14 18:44:59 microserver sshd[16247]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.70.116 user=sshd Sep 14 18:45:01 microserver sshd[16247]: Failed password for sshd from 94.23.70.116 port 58037 ssh2 Sep 14 18:59:52 microserver sshd[18376]: Invalid user gf from 94.23.70.116 port 46828 Sep 14 18:59:52 microserver sshd[18376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.70.116 Sep 14 18:59:55 microserver sshd[18376]: Failed password for invalid user gf from 94.23.70.116 port 46828 ssh2 Sep 14 19:06:45 microserver sshd[19639]: Invalid user admin from 94.23.70.116 port 40832	2019-09-15 02:52:32
193.32.160.136	attackbotsspam	2019-09-14 13:27:05 H=([193.32.160.145]) [193.32.160.136]:32048 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-09-14 13:27:05 H=([193.32.160.145]) [193.32.160.136]:32048 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-09-14 13:27:05 H=([193.32.160.145]) [193.32.160.136]:32048 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-09-14 13:27:05 H=([193.32.160.145]) [193.32.160.136]:32048 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found ...	2019-09-15 03:06:02
103.92.84.102	attack	Sep 14 08:19:41 hiderm sshd\[29238\]: Invalid user jdeleon from 103.92.84.102 Sep 14 08:19:41 hiderm sshd\[29238\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.92.84.102 Sep 14 08:19:44 hiderm sshd\[29238\]: Failed password for invalid user jdeleon from 103.92.84.102 port 51488 ssh2 Sep 14 08:23:41 hiderm sshd\[29535\]: Invalid user phyto2 from 103.92.84.102 Sep 14 08:23:41 hiderm sshd\[29535\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.92.84.102	2019-09-15 02:39:23
217.182.165.158	attackbotsspam	Sep 14 08:53:22 hanapaa sshd\[13983\]: Invalid user abc123!@\# from 217.182.165.158 Sep 14 08:53:22 hanapaa sshd\[13983\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3074474.ip-217-182-165.eu Sep 14 08:53:24 hanapaa sshd\[13983\]: Failed password for invalid user abc123!@\# from 217.182.165.158 port 34812 ssh2 Sep 14 08:57:46 hanapaa sshd\[14323\]: Invalid user p@55w0rd from 217.182.165.158 Sep 14 08:57:46 hanapaa sshd\[14323\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3074474.ip-217-182-165.eu	2019-09-15 03:04:31
117.199.140.37	attack	Automatic report - Port Scan Attack	2019-09-15 03:00:18
51.75.30.238	attackbotsspam	Sep 14 20:15:26 mail sshd\[6033\]: Invalid user pms from 51.75.30.238 port 46916 Sep 14 20:15:26 mail sshd\[6033\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.30.238 Sep 14 20:15:27 mail sshd\[6033\]: Failed password for invalid user pms from 51.75.30.238 port 46916 ssh2 Sep 14 20:19:00 mail sshd\[6441\]: Invalid user webuser from 51.75.30.238 port 60632 Sep 14 20:19:00 mail sshd\[6441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.30.238	2019-09-15 02:36:34
220.117.175.165	attackspambots	Sep 14 17:39:25 vtv3 sshd\[19565\]: Invalid user lucie from 220.117.175.165 port 40722 Sep 14 17:39:25 vtv3 sshd\[19565\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.117.175.165 Sep 14 17:39:27 vtv3 sshd\[19565\]: Failed password for invalid user lucie from 220.117.175.165 port 40722 ssh2 Sep 14 17:44:36 vtv3 sshd\[22090\]: Invalid user minecraft from 220.117.175.165 port 56556 Sep 14 17:44:36 vtv3 sshd\[22090\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.117.175.165 Sep 14 17:55:50 vtv3 sshd\[28217\]: Invalid user mysql from 220.117.175.165 port 60306 Sep 14 17:55:50 vtv3 sshd\[28217\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.117.175.165 Sep 14 17:55:52 vtv3 sshd\[28217\]: Failed password for invalid user mysql from 220.117.175.165 port 60306 ssh2 Sep 14 18:01:10 vtv3 sshd\[30939\]: Invalid user sylvia from 220.117.175.165 port 47990 Sep 14 18:01:10 vt	2019-09-15 02:57:42
200.107.154.47	attackbots	Sep 14 08:19:34 web1 sshd\[24970\]: Invalid user postgres from 200.107.154.47 Sep 14 08:19:34 web1 sshd\[24970\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.107.154.47 Sep 14 08:19:36 web1 sshd\[24970\]: Failed password for invalid user postgres from 200.107.154.47 port 24083 ssh2 Sep 14 08:23:48 web1 sshd\[25341\]: Invalid user cmbc from 200.107.154.47 Sep 14 08:23:48 web1 sshd\[25341\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.107.154.47	2019-09-15 02:33:18
222.186.30.152	attack	2019-09-14T18:43:47.673023abusebot-7.cloudsearch.cf sshd\[2366\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.152 user=root	2019-09-15 02:49:55
222.186.175.6	attackbots	SSH Brute Force, server-1 sshd[9907]: Failed password for root from 222.186.175.6 port 31467 ssh2	2019-09-15 02:44:11
118.89.26.224	attackbots	Sep 14 19:23:43 ms-srv sshd[27106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.26.224 Sep 14 19:23:45 ms-srv sshd[27106]: Failed password for invalid user test from 118.89.26.224 port 35032 ssh2	2019-09-15 02:36:15

最近上报的IP列表

171.34.178.84	124.235.138.242	124.235.138.78	123.191.146.66
123.138.77.53	123.112.23.241	122.96.73.46	121.57.229.127
121.57.226.23	121.57.226.2	121.57.225.9	22.176.249.78
119.118.27.192	119.118.19.125	119.39.46.200	116.252.0.170
116.252.0.140	70.53.155.54	116.249.23.220	116.53.230.109