City: Beijing
Region: Beijing
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: China Networks Inter-Exchange
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 106.120.14.97 | attackbots | FTP |
2019-12-23 03:50:44 |
| 106.120.14.169 | attack | The IP has triggered Cloudflare WAF. CF-Ray: 543032a06879ebd1 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: api.skk.moe | User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_2) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.4 Safari/605.1.15 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB). |
2019-12-12 06:30:09 |
| 106.120.14.176 | attackspambots | Automatic report - FTP Brute Force |
2019-10-22 03:18:23 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.120.14.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55353
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.120.14.29. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019050700 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue May 07 21:59:18 +08 2019
;; MSG SIZE rcvd: 117
29.14.120.106.in-addr.arpa domain name pointer 29.14.120.106.static.bjtelecom.net.
Server: 67.207.67.3
Address: 67.207.67.3#53
Non-authoritative answer:
29.14.120.106.in-addr.arpa name = 29.14.120.106.static.bjtelecom.net.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 194.36.179.32 | attackspambots | 8080/tcp [2020-03-16]1pkt |
2020-03-17 06:14:59 |
| 61.83.180.133 | attackbotsspam | 23/tcp [2020-03-16]1pkt |
2020-03-17 06:26:07 |
| 112.116.155.205 | attackbots | Invalid user 22 from 112.116.155.205 port 40065 |
2020-03-17 06:14:13 |
| 218.75.210.46 | attack | Mar 16 22:19:22 silence02 sshd[5561]: Failed password for root from 218.75.210.46 port 37974 ssh2 Mar 16 22:22:44 silence02 sshd[5686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.75.210.46 Mar 16 22:22:46 silence02 sshd[5686]: Failed password for invalid user wordpress from 218.75.210.46 port 35278 ssh2 |
2020-03-17 06:20:57 |
| 142.93.73.89 | attackspam | WordPress login Brute force / Web App Attack on client site. |
2020-03-17 06:35:59 |
| 220.126.246.37 | attackbots | 1433/tcp 1433/tcp 1433/tcp... [2020-03-16]6pkt,1pt.(tcp) |
2020-03-17 06:17:02 |
| 35.234.42.49 | attackbotsspam | SSH brute force |
2020-03-17 06:30:34 |
| 142.93.216.193 | attack | SSH bruteforce (Triggered fail2ban) |
2020-03-17 06:42:03 |
| 78.186.7.203 | attack | Unauthorized connection attempt detected from IP address 78.186.7.203 to port 23 |
2020-03-17 06:11:52 |
| 107.173.129.18 | attack | 5060/udp [2020-03-16]1pkt |
2020-03-17 06:18:58 |
| 31.50.138.217 | attack | 2323/tcp [2020-03-16]1pkt |
2020-03-17 06:19:42 |
| 14.164.237.234 | attackbots | 8080/tcp [2020-03-16]1pkt |
2020-03-17 06:10:38 |
| 45.84.187.24 | attack | 20/3/16@10:36:26: FAIL: Alarm-Telnet address from=45.84.187.24 ... |
2020-03-17 06:09:22 |
| 37.49.231.166 | attackbotsspam | [MK-VM4] Blocked by UFW |
2020-03-17 06:38:20 |
| 134.175.191.248 | attackspam | Mar 16 21:16:38 debian-2gb-nbg1-2 kernel: \[6648917.555086\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=134.175.191.248 DST=195.201.40.59 LEN=60 TOS=0x00 PREC=0x00 TTL=46 ID=20983 DF PROTO=TCP SPT=49628 DPT=14389 WINDOW=29200 RES=0x00 SYN URGP=0 |
2020-03-17 06:15:40 |