106.11.155.72 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Zhejiang Taobao Network Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	The IP has triggered Cloudflare WAF. CF-Ray: 5415a3d57e8b76fe \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:07:32

类型

评论内容

时间

attack

The IP has triggered Cloudflare WAF. CF-Ray: 5415a3d57e8b76fe | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: theme-suka.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 06:07:32

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.11.155.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25656
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.11.155.72.			IN	A

;; AUTHORITY SECTION:
.			142	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120701 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 06:07:29 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

72.155.11.106.in-addr.arpa domain name pointer shenmaspider-106-11-155-72.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
72.155.11.106.in-addr.arpa	name = shenmaspider-106-11-155-72.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
89.189.176.17	attack	proto=tcp . spt=47842 . dpt=25 . (listed on Dark List de Sep 13) (950)	2019-09-14 09:58:07
193.150.109.152	attackbots	Automatic report - Banned IP Access	2019-09-14 09:18:46
128.199.133.114	attackbots	WordPress wp-login brute force :: 128.199.133.114 0.152 BYPASS [14/Sep/2019:07:15:49 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-09-14 09:59:34
212.156.86.226	attackspam	proto=tcp . spt=48695 . dpt=25 . (listed on Blocklist de Sep 13) (961)	2019-09-14 09:32:46
27.147.217.154	attackbotsspam	proto=tcp . spt=49244 . dpt=25 . (listed on Blocklist de Sep 13) (963)	2019-09-14 09:25:59
95.128.142.76	attackbotsspam	proto=tcp . spt=49538 . dpt=25 . (listed on Dark List de Sep 13) (966)	2019-09-14 09:19:59
182.72.139.6	attackspambots	Sep 13 21:25:14 xtremcommunity sshd\[55395\]: Invalid user user3 from 182.72.139.6 port 35788 Sep 13 21:25:14 xtremcommunity sshd\[55395\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.72.139.6 Sep 13 21:25:15 xtremcommunity sshd\[55395\]: Failed password for invalid user user3 from 182.72.139.6 port 35788 ssh2 Sep 13 21:30:04 xtremcommunity sshd\[55485\]: Invalid user trendimsa1.0 from 182.72.139.6 port 51660 Sep 13 21:30:04 xtremcommunity sshd\[55485\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.72.139.6 ...	2019-09-14 09:47:55
139.59.8.66	attackspam	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.8.66 Failed password for invalid user testing from 139.59.8.66 port 33620 ssh2 Invalid user webpass from 139.59.8.66 port 48774 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.8.66 Failed password for invalid user webpass from 139.59.8.66 port 48774 ssh2	2019-09-14 09:55:48
50.239.143.100	attackbotsspam	Sep 14 03:45:54 s64-1 sshd[31710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.239.143.100 Sep 14 03:45:56 s64-1 sshd[31710]: Failed password for invalid user debian from 50.239.143.100 port 42484 ssh2 Sep 14 03:50:16 s64-1 sshd[31846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.239.143.100 ...	2019-09-14 09:51:37
220.132.178.226	attack	Automatic report - Port Scan Attack	2019-09-14 09:42:56
157.230.153.203	attackspam	xmlrpc attack	2019-09-14 09:26:16
108.178.61.58	attack	scan r	2019-09-14 09:27:25
144.217.4.14	attackbotsspam	detected by Fail2Ban	2019-09-14 09:17:44
68.183.234.68	attack	Sep 14 03:28:07 rotator sshd\[4354\]: Invalid user demouser from 68.183.234.68Sep 14 03:28:09 rotator sshd\[4354\]: Failed password for invalid user demouser from 68.183.234.68 port 40308 ssh2Sep 14 03:32:16 rotator sshd\[5186\]: Invalid user dennis from 68.183.234.68Sep 14 03:32:18 rotator sshd\[5186\]: Failed password for invalid user dennis from 68.183.234.68 port 35224 ssh2Sep 14 03:36:20 rotator sshd\[5952\]: Invalid user mysql from 68.183.234.68Sep 14 03:36:23 rotator sshd\[5952\]: Failed password for invalid user mysql from 68.183.234.68 port 58582 ssh2 ...	2019-09-14 10:01:55
95.105.89.151	attackspam	proto=tcp . spt=36882 . dpt=25 . (listed on Blocklist de Sep 13) (960)	2019-09-14 09:34:48

最近上报的IP列表

116.54.98.234	116.52.207.236	115.192.210.246	113.58.242.129
112.193.168.191	111.58.175.37	60.188.90.119	58.248.201.131
2400:dd0d:2000:0:7966:fdff:74a1:4ba3	223.166.74.225	235.5.212.197	9.87.235.35
217.175.70.221	222.82.52.97	222.82.51.232	56.111.150.231
152.96.163.54	221.13.12.165	221.13.12.76	221.0.21.52