52.229.169.70 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Microsoft Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	The IP has triggered Cloudflare WAF. CF-Ray: 541263a17a45dac8 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: HK \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1 \| CF_DC: TPE. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 07:21:19

类型

评论内容

时间

attack

The IP has triggered Cloudflare WAF. CF-Ray: 541263a17a45dac8 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: HK | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: api.skk.moe | User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1 | CF_DC: TPE. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 07:21:19

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.229.169.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20478
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.229.169.70.			IN	A

;; AUTHORITY SECTION:
.			510	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120701 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 07:21:14 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 70.169.229.52.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 70.169.229.52.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
168.138.221.133	attackspam	(sshd) Failed SSH login from 168.138.221.133 (JP/Japan/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 19 00:00:41 amsweb01 sshd[25367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.138.221.133 user=admin Aug 19 00:00:43 amsweb01 sshd[25367]: Failed password for admin from 168.138.221.133 port 33832 ssh2 Aug 19 00:04:43 amsweb01 sshd[25969]: Invalid user code from 168.138.221.133 port 42496 Aug 19 00:04:45 amsweb01 sshd[25969]: Failed password for invalid user code from 168.138.221.133 port 42496 ssh2 Aug 19 00:08:43 amsweb01 sshd[26595]: Invalid user sss from 168.138.221.133 port 51152	2020-08-19 07:33:16
159.89.194.103	attackspambots	Port Scan detected from 159.89.194.103 (SG/Singapore/-/Singapore (Pioneer)/-). 4 hits in the last 20 seconds	2020-08-19 07:28:16
134.209.148.107	attackspam	Aug 19 00:51:57 rotator sshd\[30371\]: Failed password for root from 134.209.148.107 port 48254 ssh2Aug 19 00:54:14 rotator sshd\[30389\]: Failed password for root from 134.209.148.107 port 55288 ssh2Aug 19 00:56:23 rotator sshd\[31160\]: Invalid user mee from 134.209.148.107Aug 19 00:56:25 rotator sshd\[31160\]: Failed password for invalid user mee from 134.209.148.107 port 34098 ssh2Aug 19 00:58:38 rotator sshd\[31169\]: Invalid user courses from 134.209.148.107Aug 19 00:58:40 rotator sshd\[31169\]: Failed password for invalid user courses from 134.209.148.107 port 41142 ssh2 ...	2020-08-19 07:35:56
79.137.116.233	attack	UDP 79.137.116.233:5790 -> port 5060, len 441	2020-08-19 07:41:57
164.132.56.243	attackbotsspam	Aug 18 23:45:28 vps639187 sshd\[21235\]: Invalid user postgres from 164.132.56.243 port 51524 Aug 18 23:45:28 vps639187 sshd\[21235\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.56.243 Aug 18 23:45:29 vps639187 sshd\[21235\]: Failed password for invalid user postgres from 164.132.56.243 port 51524 ssh2 ...	2020-08-19 07:50:49
134.175.130.52	attackspambots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-08-18T23:05:42Z and 2020-08-18T23:26:16Z	2020-08-19 07:56:31
222.186.175.23	attackbots	Too many connections or unauthorized access detected from Arctic banned ip	2020-08-19 07:55:19
187.162.26.202	attackspambots	Automatic report - Port Scan Attack	2020-08-19 07:52:44
82.212.129.252	attackbots	Aug 19 00:29:59 melroy-server sshd[3586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.212.129.252 Aug 19 00:30:01 melroy-server sshd[3586]: Failed password for invalid user tan from 82.212.129.252 port 47015 ssh2 ...	2020-08-19 07:40:14
194.180.224.103	attackbots	Aug 19 02:32:24 server2 sshd\[8545\]: User root from 194.180.224.103 not allowed because not listed in AllowUsers Aug 19 02:32:34 server2 sshd\[8548\]: User root from 194.180.224.103 not allowed because not listed in AllowUsers Aug 19 02:32:45 server2 sshd\[8550\]: User root from 194.180.224.103 not allowed because not listed in AllowUsers Aug 19 02:32:55 server2 sshd\[8556\]: User root from 194.180.224.103 not allowed because not listed in AllowUsers Aug 19 02:33:06 server2 sshd\[8589\]: User root from 194.180.224.103 not allowed because not listed in AllowUsers Aug 19 02:33:16 server2 sshd\[8593\]: User root from 194.180.224.103 not allowed because not listed in AllowUsers	2020-08-19 07:46:00
34.101.245.236	attackbotsspam	Invalid user cjd from 34.101.245.236 port 46780	2020-08-19 08:03:31
51.75.16.206	attackbots	51.75.16.206 - - [18/Aug/2020:22:44:44 +0200] "GET /wp-login.php HTTP/1.1" 200 9032 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.75.16.206 - - [18/Aug/2020:22:44:45 +0200] "POST /wp-login.php HTTP/1.1" 200 9283 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.75.16.206 - - [18/Aug/2020:22:44:46 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-19 07:50:29
106.13.98.132	attackspambots	Aug 18 23:20:22 ajax sshd[21142]: Failed password for root from 106.13.98.132 port 36648 ssh2 Aug 18 23:24:16 ajax sshd[22550]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.98.132	2020-08-19 08:00:23
221.165.252.143	attack	Aug 19 01:12:31 prox sshd[19374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.165.252.143 Aug 19 01:12:33 prox sshd[19374]: Failed password for invalid user leone from 221.165.252.143 port 49468 ssh2	2020-08-19 07:43:13
91.121.205.83	attackspambots	Aug 19 00:53:24 vmd26974 sshd[29810]: Failed password for root from 91.121.205.83 port 52388 ssh2 ...	2020-08-19 08:04:21

最近上报的IP列表

221.213.75.203	221.213.75.96	221.13.12.123	219.140.117.141
183.128.216.14	189.115.107.46	77.37.194.170	14.167.1.50
157.56.242.57	200.172.20.186	21.184.112.248	37.56.19.3
226.132.23.106	55.133.244.179	103.184.83.67	24.109.88.158
80.239.148.219	121.136.96.217	193.127.181.71	241.168.1.116