47.244.114.1 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Alibaba.com LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 540fbcf80d96d942 \| WAF_Rule_ID: a75424b44a1e4f27881d03344a122815 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: ip.skk.moe \| User-Agent: MobileSafari/604.1 CFNetwork/1120 Darwin/19.0.0 \| CF_DC: HKG. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:40:52

类型

评论内容

时间

attackspambots

The IP has triggered Cloudflare WAF. CF-Ray: 540fbcf80d96d942 | WAF_Rule_ID: a75424b44a1e4f27881d03344a122815 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: ip.skk.moe | User-Agent: MobileSafari/604.1 CFNetwork/1120 Darwin/19.0.0 | CF_DC: HKG. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 03:40:52

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 47.244.114.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46850
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;47.244.114.1.			IN	A

;; AUTHORITY SECTION:
.			547	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120700 1800 900 604800 86400

;; Query time: 49 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 03:40:49 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 1.114.244.47.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 1.114.244.47.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
120.203.160.18	attackspam	Aug 8 22:33:46 rocket sshd[14106]: Failed password for root from 120.203.160.18 port 17795 ssh2 Aug 8 22:38:31 rocket sshd[14873]: Failed password for root from 120.203.160.18 port 47844 ssh2 ...	2020-08-09 08:15:35
52.130.85.229	attack	Aug 9 00:15:55 vps639187 sshd\[15950\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.130.85.229 user=root Aug 9 00:15:57 vps639187 sshd\[15950\]: Failed password for root from 52.130.85.229 port 53828 ssh2 Aug 9 00:20:51 vps639187 sshd\[16040\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.130.85.229 user=root ...	2020-08-09 08:20:00
5.196.67.41	attackspam	Ssh brute force	2020-08-09 08:07:39
182.61.185.92	attackbots	Aug 8 23:50:58 django-0 sshd[11494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.185.92 user=root Aug 8 23:51:00 django-0 sshd[11494]: Failed password for root from 182.61.185.92 port 53562 ssh2 ...	2020-08-09 08:19:44
217.182.70.150	attack	Automatic report - Banned IP Access	2020-08-09 07:52:59
104.223.197.3	attack	Aug 9 01:38:42 Ubuntu-1404-trusty-64-minimal sshd\[7312\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.223.197.3 user=root Aug 9 01:38:44 Ubuntu-1404-trusty-64-minimal sshd\[7312\]: Failed password for root from 104.223.197.3 port 48632 ssh2 Aug 9 02:00:19 Ubuntu-1404-trusty-64-minimal sshd\[18878\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.223.197.3 user=root Aug 9 02:00:21 Ubuntu-1404-trusty-64-minimal sshd\[18878\]: Failed password for root from 104.223.197.3 port 43054 ssh2 Aug 9 02:04:07 Ubuntu-1404-trusty-64-minimal sshd\[21658\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.223.197.3 user=root	2020-08-09 08:07:19
119.18.0.218	attack	119.18.0.218 - - [09/Aug/2020:00:51:04 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 119.18.0.218 - - [09/Aug/2020:00:51:06 +0100] "POST /wp-login.php HTTP/1.1" 403 6364 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 119.18.0.218 - - [09/Aug/2020:00:52:14 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ...	2020-08-09 08:00:30
58.87.120.53	attackspam	Aug 8 22:09:49 rush sshd[3325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.120.53 Aug 8 22:09:51 rush sshd[3325]: Failed password for invalid user P@5sw0rd from 58.87.120.53 port 45620 ssh2 Aug 8 22:12:21 rush sshd[3419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.120.53 ...	2020-08-09 08:05:41
165.227.46.89	attackspam	Aug 8 17:18:44 vps46666688 sshd[4552]: Failed password for root from 165.227.46.89 port 46802 ssh2 ...	2020-08-09 08:26:59
106.13.3.238	attackbotsspam	SSH auth scanning - multiple failed logins	2020-08-09 08:10:01
117.247.86.117	attackspam	Brute-force attempt banned	2020-08-09 07:50:48
66.45.251.154	attackbotsspam	TCP (SYN) 66.45.251.154:47030 -> port 22, len 44	2020-08-09 08:02:08
106.246.92.234	attackspambots	(sshd) Failed SSH login from 106.246.92.234 (KR/South Korea/-): 5 in the last 3600 secs	2020-08-09 07:57:52
123.21.201.6	attackspam	Automatic report - Port Scan Attack	2020-08-09 08:05:19
51.158.70.82	attackbotsspam	Aug 8 23:29:32 sip sshd[1239993]: Failed password for root from 51.158.70.82 port 60848 ssh2 Aug 8 23:33:20 sip sshd[1240018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.70.82 user=root Aug 8 23:33:22 sip sshd[1240018]: Failed password for root from 51.158.70.82 port 44054 ssh2 ...	2020-08-09 08:01:16

最近上报的IP列表

216.119.77.150	156.176.54.68	3.40.154.50	221.232.23.11
221.13.12.102	2.203.249.60	220.200.159.189	69.59.79.20
41.122.187.75	220.200.159.174	36.70.164.132	220.184.96.131
56.1.21.70	126.96.220.150	220.181.108.123	164.0.10.208
116.85.78.152	183.184.25.207	79.198.143.109	3.65.18.74