106.11.152.54 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
106.11.152.38	attackbotsspam	Automated report (2020-07-23T11:59:07+08:00). Misbehaving bot detected at this address.	2020-07-23 12:31:59
106.11.152.105	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 54106dd64d2dd33e \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 07:19:27

类型

评论内容

时间

106.11.152.38

attackbotsspam

Automated report (2020-07-23T11:59:07+08:00). Misbehaving bot detected at this address.

2020-07-23 12:31:59

106.11.152.105

attackspam

The IP has triggered Cloudflare WAF. CF-Ray: 54106dd64d2dd33e | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 07:19:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.11.152.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29472
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.11.152.54.			IN	A

;; AUTHORITY SECTION:
.			480	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022063001 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jul 01 14:53:41 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

54.152.11.106.in-addr.arpa domain name pointer shenmaspider-106-11-152-54.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
54.152.11.106.in-addr.arpa	name = shenmaspider-106-11-152-54.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
148.70.136.94	attackspambots	SSH Brute-Force reported by Fail2Ban	2019-11-04 01:03:56
117.132.194.203	attack	Automatic report - Port Scan Attack	2019-11-04 01:02:21
222.186.52.86	attackbotsspam	this ip trying to attack one of our firewalls	2019-11-04 01:20:58
50.62.177.189	attack	Automatic report - XMLRPC Attack	2019-11-04 01:06:42
202.107.238.94	attack	2019-11-03T15:40:06.216917hub.schaetter.us sshd\[1715\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.107.238.94 user=root 2019-11-03T15:40:08.722283hub.schaetter.us sshd\[1715\]: Failed password for root from 202.107.238.94 port 52866 ssh2 2019-11-03T15:45:24.167247hub.schaetter.us sshd\[1782\]: Invalid user nas from 202.107.238.94 port 42088 2019-11-03T15:45:24.178024hub.schaetter.us sshd\[1782\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.107.238.94 2019-11-03T15:45:26.342565hub.schaetter.us sshd\[1782\]: Failed password for invalid user nas from 202.107.238.94 port 42088 ssh2 ...	2019-11-04 00:58:05
185.101.231.42	attackspam	no	2019-11-04 00:55:09
222.186.175.217	attackbotsspam	DATE:2019-11-03 17:36:53, IP:222.186.175.217, PORT:ssh SSH brute force auth on honeypot server (honey-neo-dc-bis)	2019-11-04 00:51:12
87.197.126.24	attackspambots	$f2bV_matches	2019-11-04 00:48:42
222.186.180.17	attackbots	Nov 3 16:50:54 ip-172-31-1-72 sshd\[32114\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root Nov 3 16:50:56 ip-172-31-1-72 sshd\[32114\]: Failed password for root from 222.186.180.17 port 40494 ssh2 Nov 3 16:51:22 ip-172-31-1-72 sshd\[32116\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root Nov 3 16:51:24 ip-172-31-1-72 sshd\[32116\]: Failed password for root from 222.186.180.17 port 64710 ssh2 Nov 3 16:51:53 ip-172-31-1-72 sshd\[32124\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root	2019-11-04 00:58:24
185.209.0.89	attack	11/03/2019-17:50:31.821569 185.209.0.89 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-04 00:52:16
71.193.198.31	attackbots	SSH Bruteforce attempt	2019-11-04 01:18:51
108.75.217.101	attackbotsspam	Nov 3 06:27:03 web1 sshd\[22728\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.75.217.101 user=root Nov 3 06:27:05 web1 sshd\[22728\]: Failed password for root from 108.75.217.101 port 56676 ssh2 Nov 3 06:36:38 web1 sshd\[23577\]: Invalid user \? from 108.75.217.101 Nov 3 06:36:38 web1 sshd\[23577\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.75.217.101 Nov 3 06:36:40 web1 sshd\[23577\]: Failed password for invalid user \? from 108.75.217.101 port 52672 ssh2	2019-11-04 00:41:04
178.62.54.233	attackspam	Nov 3 16:35:31 SilenceServices sshd[2673]: Failed password for root from 178.62.54.233 port 57162 ssh2 Nov 3 16:39:39 SilenceServices sshd[7322]: Failed password for root from 178.62.54.233 port 48214 ssh2	2019-11-04 00:39:35
182.61.166.25	attackbotsspam	Nov 2 08:17:31 xb0 sshd[4614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.166.25 user=r.r Nov 2 08:17:33 xb0 sshd[4614]: Failed password for r.r from 182.61.166.25 port 55312 ssh2 Nov 2 08:17:33 xb0 sshd[4614]: Received disconnect from 182.61.166.25: 11: Bye Bye [preauth] Nov 2 08:36:46 xb0 sshd[6435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.166.25 user=r.r Nov 2 08:36:48 xb0 sshd[6435]: Failed password for r.r from 182.61.166.25 port 45672 ssh2 Nov 2 08:36:48 xb0 sshd[6435]: Received disconnect from 182.61.166.25: 11: Bye Bye [preauth] Nov 2 08:40:50 xb0 sshd[4123]: Failed password for invalid user system from 182.61.166.25 port 56340 ssh2 Nov 2 08:40:50 xb0 sshd[4123]: Received disconnect from 182.61.166.25: 11: Bye Bye [preauth] Nov 2 08:44:53 xb0 sshd[14721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182......... -------------------------------	2019-11-04 00:48:14
82.117.190.170	attackbotsspam	Nov 3 11:46:30 TORMINT sshd\[5834\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.117.190.170 user=root Nov 3 11:46:32 TORMINT sshd\[5834\]: Failed password for root from 82.117.190.170 port 42833 ssh2 Nov 3 11:50:34 TORMINT sshd\[6110\]: Invalid user ts3bot1 from 82.117.190.170 Nov 3 11:50:34 TORMINT sshd\[6110\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.117.190.170 ...	2019-11-04 01:20:38

最近上报的IP列表

180.76.155.241	137.226.67.124	178.128.160.202	94.102.53.143
150.218.86.18	89.248.165.255	80.82.79.57	94.102.54.46
80.82.79.45	193.233.230.204	45.164.20.130	187.110.225.100
80.82.64.192	201.186.182.207	45.159.23.217	94.231.216.249
45.67.213.185	65.78.85.119	189.136.138.254	180.76.196.74