52.229.169.70 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Microsoft Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	The IP has triggered Cloudflare WAF. CF-Ray: 541263a17a45dac8 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: HK \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1 \| CF_DC: TPE. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 07:21:19

类型

评论内容

时间

attack

The IP has triggered Cloudflare WAF. CF-Ray: 541263a17a45dac8 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: HK | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: api.skk.moe | User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1 | CF_DC: TPE. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 07:21:19

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.229.169.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20478
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.229.169.70.			IN	A

;; AUTHORITY SECTION:
.			510	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120701 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 07:21:14 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 70.169.229.52.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 70.169.229.52.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
52.203.153.231	attack	SSH 2020-09-20 04:32:08 52.203.153.231 139.99.53.101 > POST www.kampungnasi.com /wp-login.php HTTP/1.1 - - 2020-09-20 04:32:08 52.203.153.231 139.99.53.101 > GET www.kampungnasi.com /wp-login.php HTTP/1.1 - - 2020-09-20 04:32:09 52.203.153.231 139.99.53.101 > POST www.kampungnasi.com /wp-login.php HTTP/1.1 - -	2020-09-20 05:50:30
213.184.252.110	attackbots	port scan and connect, tcp 22 (ssh)	2020-09-20 05:45:53
27.73.198.209	attackspambots	Unauthorized connection attempt from IP address 27.73.198.209 on Port 445(SMB)	2020-09-20 06:01:24
183.230.248.227	attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-20 06:08:36
129.204.238.250	attackspam	Sep 19 23:38:00 abendstille sshd\[10204\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.238.250 user=root Sep 19 23:38:03 abendstille sshd\[10204\]: Failed password for root from 129.204.238.250 port 49588 ssh2 Sep 19 23:40:29 abendstille sshd\[13201\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.238.250 user=root Sep 19 23:40:32 abendstille sshd\[13201\]: Failed password for root from 129.204.238.250 port 47268 ssh2 Sep 19 23:42:57 abendstille sshd\[16252\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.238.250 user=root ...	2020-09-20 05:58:42
87.241.137.21	attack	Unauthorized connection attempt from IP address 87.241.137.21 on Port 445(SMB)	2020-09-20 05:57:24
120.53.12.94	attackbots	(sshd) Failed SSH login from 120.53.12.94 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 19 12:54:50 server sshd[29176]: Invalid user wp from 120.53.12.94 port 43648 Sep 19 12:54:53 server sshd[29176]: Failed password for invalid user wp from 120.53.12.94 port 43648 ssh2 Sep 19 12:59:06 server sshd[30250]: Invalid user test3 from 120.53.12.94 port 52594 Sep 19 12:59:08 server sshd[30250]: Failed password for invalid user test3 from 120.53.12.94 port 52594 ssh2 Sep 19 13:01:57 server sshd[31024]: Invalid user guest1 from 120.53.12.94 port 52430	2020-09-20 05:59:12
119.123.178.35	attackspambots	21 attempts against mh-ssh on wheat	2020-09-20 05:44:37
51.68.123.198	attackbotsspam	Sep 19 21:49:46 gitlab sshd[118249]: Failed password for root from 51.68.123.198 port 33496 ssh2 Sep 19 21:53:24 gitlab sshd[118554]: Invalid user admin from 51.68.123.198 port 43118 Sep 19 21:53:24 gitlab sshd[118554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.123.198 Sep 19 21:53:24 gitlab sshd[118554]: Invalid user admin from 51.68.123.198 port 43118 Sep 19 21:53:25 gitlab sshd[118554]: Failed password for invalid user admin from 51.68.123.198 port 43118 ssh2 ...	2020-09-20 06:04:39
114.7.164.250	attackspam	Sep 20 00:03:59 sso sshd[7170]: Failed password for root from 114.7.164.250 port 51628 ssh2 ...	2020-09-20 06:10:34
78.87.164.125	attackspam	Telnet Server BruteForce Attack	2020-09-20 05:43:24
185.170.114.25	attackbotsspam	2020-09-19T23:13:26.204270amanda2.illicoweb.com sshd\[34856\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=this-is-a-tor-node---10.artikel5ev.de user=root 2020-09-19T23:13:27.777314amanda2.illicoweb.com sshd\[34856\]: Failed password for root from 185.170.114.25 port 43127 ssh2 2020-09-19T23:13:30.278048amanda2.illicoweb.com sshd\[34856\]: Failed password for root from 185.170.114.25 port 43127 ssh2 2020-09-19T23:13:31.958121amanda2.illicoweb.com sshd\[34856\]: Failed password for root from 185.170.114.25 port 43127 ssh2 2020-09-19T23:13:33.932917amanda2.illicoweb.com sshd\[34856\]: Failed password for root from 185.170.114.25 port 43127 ssh2 ...	2020-09-20 06:01:02
134.122.79.190	attack	DATE:2020-09-19 19:02:13, IP:134.122.79.190, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-09-20 05:45:27
222.186.30.35	attackspam	Sep 19 23:55:08 abendstille sshd\[28317\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root Sep 19 23:55:10 abendstille sshd\[28317\]: Failed password for root from 222.186.30.35 port 18788 ssh2 Sep 19 23:58:28 abendstille sshd\[31712\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root Sep 19 23:58:30 abendstille sshd\[31712\]: Failed password for root from 222.186.30.35 port 54017 ssh2 Sep 19 23:58:33 abendstille sshd\[31712\]: Failed password for root from 222.186.30.35 port 54017 ssh2 ...	2020-09-20 06:01:54
208.185.224.2	attackspam	Unauthorized connection attempt from IP address 208.185.224.2 on Port 445(SMB)	2020-09-20 05:50:50

最近上报的IP列表

221.213.75.203	221.213.75.96	221.13.12.123	219.140.117.141
183.128.216.14	189.115.107.46	77.37.194.170	14.167.1.50
157.56.242.57	200.172.20.186	21.184.112.248	37.56.19.3
226.132.23.106	55.133.244.179	103.184.83.67	24.109.88.158
80.239.148.219	121.136.96.217	193.127.181.71	241.168.1.116