106.11.152.54 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
106.11.152.38	attackbotsspam	Automated report (2020-07-23T11:59:07+08:00). Misbehaving bot detected at this address.	2020-07-23 12:31:59
106.11.152.105	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 54106dd64d2dd33e \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 07:19:27

类型

评论内容

时间

106.11.152.38

attackbotsspam

Automated report (2020-07-23T11:59:07+08:00). Misbehaving bot detected at this address.

2020-07-23 12:31:59

106.11.152.105

attackspam

The IP has triggered Cloudflare WAF. CF-Ray: 54106dd64d2dd33e | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 07:19:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.11.152.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29472
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.11.152.54.			IN	A

;; AUTHORITY SECTION:
.			480	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022063001 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jul 01 14:53:41 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

54.152.11.106.in-addr.arpa domain name pointer shenmaspider-106-11-152-54.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
54.152.11.106.in-addr.arpa	name = shenmaspider-106-11-152-54.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
220.248.12.118	attackspam	(sshd) Failed SSH login from 220.248.12.118 (-): 5 in the last 3600 secs	2020-04-24 05:46:51
124.251.110.147	attackbotsspam	SSH Invalid Login	2020-04-24 05:46:06
121.32.95.81	attack	7Blacklist	2020-04-24 05:25:44
175.24.132.222	attackbots	Automatic report BANNED IP	2020-04-24 05:36:27
52.190.8.12	attackspam	RDP Bruteforce	2020-04-24 05:34:27
52.161.18.162	attack	RDP Bruteforce	2020-04-24 05:52:33
118.25.36.79	attackspambots	SSH Invalid Login	2020-04-24 05:53:51
129.211.99.254	attackbots	SSH Brute-Force Attack	2020-04-24 05:59:57
192.241.128.214	attackbotsspam	Apr 23 22:04:46 haigwepa sshd[28776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.128.214 Apr 23 22:04:48 haigwepa sshd[28776]: Failed password for invalid user admin from 192.241.128.214 port 34610 ssh2 ...	2020-04-24 05:39:06
52.143.191.126	attackspam	[ 📨 ] From root@sempreonline84.francecentral.cloudapp.azure.com Thu Apr 23 13:40:47 2020 Received: from [52.143.191.126] (port=52930 helo=sempreonline84.francecentral.cloudapp.azure.com)	2020-04-24 05:53:02
40.115.113.251	attackspam	Repeated RDP login failures. Last user: admin	2020-04-24 05:59:42
128.199.218.137	attack	Apr 23 20:38:26 localhost sshd[119334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.218.137 user=root Apr 23 20:38:28 localhost sshd[119334]: Failed password for root from 128.199.218.137 port 47998 ssh2 Apr 23 20:41:56 localhost sshd[119748]: Invalid user postgres from 128.199.218.137 port 41638 Apr 23 20:41:56 localhost sshd[119748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.218.137 Apr 23 20:41:56 localhost sshd[119748]: Invalid user postgres from 128.199.218.137 port 41638 Apr 23 20:41:58 localhost sshd[119748]: Failed password for invalid user postgres from 128.199.218.137 port 41638 ssh2 ...	2020-04-24 05:36:45
185.164.138.21	attackspam	Invalid user postgres from 185.164.138.21 port 49018	2020-04-24 05:38:16
183.134.88.76	attackspam	(pop3d) Failed POP3 login from 183.134.88.76 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Apr 23 21:18:08 ir1 dovecot[264309]: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=183.134.88.76, lip=5.63.12.44, session=	2020-04-24 05:49:10
211.234.119.189	attackbotsspam	no	2020-04-24 05:32:39

最近上报的IP列表

180.76.155.241	137.226.67.124	178.128.160.202	94.102.53.143
150.218.86.18	89.248.165.255	80.82.79.57	94.102.54.46
80.82.79.45	193.233.230.204	45.164.20.130	187.110.225.100
80.82.64.192	201.186.182.207	45.159.23.217	94.231.216.249
45.67.213.185	65.78.85.119	189.136.138.254	180.76.196.74