106.11.154.21 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
106.11.154.46	attack	The IP has triggered Cloudflare WAF. CF-Ray: 541183fbad48eb85 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:17:36
106.11.154.33	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 540fd4e34f64eab7 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:38:38
106.11.154.83	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 540feaa28b9beba1 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:20:22

类型

评论内容

时间

106.11.154.46

attack

The IP has triggered Cloudflare WAF. CF-Ray: 541183fbad48eb85 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:17:36

106.11.154.33

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 540fd4e34f64eab7 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 03:38:38

106.11.154.83

attackspam

The IP has triggered Cloudflare WAF. CF-Ray: 540feaa28b9beba1 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: theme-suka.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 03:20:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.11.154.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38443
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.11.154.21.			IN	A

;; AUTHORITY SECTION:
.			378	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030302 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 11:55:31 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

21.154.11.106.in-addr.arpa domain name pointer shenmaspider-106-11-154-21.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
21.154.11.106.in-addr.arpa	name = shenmaspider-106-11-154-21.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
176.31.226.188	attackbots	[2020-08-26 17:29:53] NOTICE[1185] chan_sip.c: Registration from '"55" ' failed for '176.31.226.188:6027' - Wrong password [2020-08-26 17:29:53] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-26T17:29:53.842-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="55",SessionID="0x7f10c451d0c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/176.31.226.188/6027",Challenge="4d30fa28",ReceivedChallenge="4d30fa28",ReceivedHash="c0a48fa782a259e78bc317c771f084d9" [2020-08-26 17:29:53] NOTICE[1185] chan_sip.c: Registration from '"55" ' failed for '176.31.226.188:6027' - Wrong password [2020-08-26 17:29:53] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-26T17:29:53.957-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="55",SessionID="0x7f10c46d4728",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/176.31.226. ...	2020-08-27 09:35:48
222.82.214.218	attack	2020-08-26T23:08:35+0200 Failed SSH Authentication/Brute Force Attack.(Server 2)	2020-08-27 10:02:01
182.122.160.228	attack	Port probing on unauthorized port 23	2020-08-27 09:32:20
85.243.15.17	attackspambots	85.243.15.17 - [27/Aug/2020:00:05:09 +0300] "POST /xmlrpc.php HTTP/1.1" 404 162 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" "-" 85.243.15.17 - [27/Aug/2020:00:08:45 +0300] "POST /xmlrpc.php HTTP/1.1" 404 162 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" "-" ...	2020-08-27 09:41:13
181.177.246.91	attackspambots	SSH Invalid Login	2020-08-27 09:40:15
14.63.220.150	attackspam	Aug 27 00:33:53 eventyay sshd[1445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.220.150 Aug 27 00:33:55 eventyay sshd[1445]: Failed password for invalid user yac from 14.63.220.150 port 45470 ssh2 Aug 27 00:37:04 eventyay sshd[1489]: Failed password for root from 14.63.220.150 port 37288 ssh2 ...	2020-08-27 09:48:13
190.113.157.155	attackspambots	Invalid user nicolas from 190.113.157.155 port 57430	2020-08-27 09:36:21
35.241.75.144	attackbotsspam	Aug 24 14:50:08 liveconfig01 sshd[24599]: Invalid user oracle from 35.241.75.144 Aug 24 14:50:08 liveconfig01 sshd[24599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.241.75.144 Aug 24 14:50:10 liveconfig01 sshd[24599]: Failed password for invalid user oracle from 35.241.75.144 port 44806 ssh2 Aug 24 14:50:10 liveconfig01 sshd[24599]: Received disconnect from 35.241.75.144 port 44806:11: Bye Bye [preauth] Aug 24 14:50:10 liveconfig01 sshd[24599]: Disconnected from 35.241.75.144 port 44806 [preauth] Aug 24 14:58:40 liveconfig01 sshd[25140]: Invalid user me from 35.241.75.144 Aug 24 14:58:40 liveconfig01 sshd[25140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.241.75.144 Aug 24 14:58:42 liveconfig01 sshd[25140]: Failed password for invalid user me from 35.241.75.144 port 60448 ssh2 Aug 24 14:58:42 liveconfig01 sshd[25140]: Received disconnect from 35.241.75.144 port 60448:11: Bye........ -------------------------------	2020-08-27 09:36:47
185.147.215.12	attackspambots	[2020-08-26 21:43:23] NOTICE[1185] chan_sip.c: Registration from '' failed for '185.147.215.12:64053' - Wrong password [2020-08-26 21:43:23] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-26T21:43:23.212-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="9736",SessionID="0x7f10c46d4728",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.12/64053",Challenge="649b63e5",ReceivedChallenge="649b63e5",ReceivedHash="7fb5204dbce018db91bae8ae596aba68" [2020-08-26 21:43:46] NOTICE[1185] chan_sip.c: Registration from '' failed for '185.147.215.12:60460' - Wrong password [2020-08-26 21:43:46] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-26T21:43:46.027-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="4105",SessionID="0x7f10c43e3a48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.21 ...	2020-08-27 09:55:15
119.123.131.95	attackspambots	20/8/26@16:47:08: FAIL: Alarm-Network address from=119.123.131.95 ...	2020-08-27 09:55:50
51.254.205.6	attackbotsspam	SSH Invalid Login	2020-08-27 09:54:50
178.93.28.212	attackspam	Brute Force	2020-08-27 10:01:20
114.43.190.27	attack	Port probing on unauthorized port 81	2020-08-27 09:53:43
200.73.240.238	attack	Aug 26 23:48:03 pve1 sshd[9956]: Failed password for root from 200.73.240.238 port 45458 ssh2 ...	2020-08-27 10:00:52
176.31.255.223	attackbotsspam	Invalid user phpmy from 176.31.255.223 port 49158	2020-08-27 09:39:43

最近上报的IP列表

106.107.176.77	106.11.154.57	106.11.155.13	106.11.154.86
106.10.33.31	106.11.152.45	106.11.155.135	112.81.48.157
106.11.155.15	106.11.155.92	106.11.156.157	106.11.155.99
106.11.157.19	106.11.157.58	106.11.158.59	106.11.159.71
106.11.158.91	106.11.157.85	106.11.156.25	106.11.223.89