106.11.158.48 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
106.11.158.90	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5413e8898fa576b6 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:43:40

类型

评论内容

时间

106.11.158.90

attackspam

The IP has triggered Cloudflare WAF. CF-Ray: 5413e8898fa576b6 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:43:40

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.11.158.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6638
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.11.158.48.			IN	A

;; AUTHORITY SECTION:
.			590	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022040301 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 04 14:22:41 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

48.158.11.106.in-addr.arpa domain name pointer shenmaspider-106-11-158-48.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
48.158.11.106.in-addr.arpa	name = shenmaspider-106-11-158-48.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
45.55.155.224	attackspambots	Jun 26 06:48:11 fhem-rasp sshd[32444]: Invalid user od from 45.55.155.224 port 36258 ...	2020-06-26 13:45:13
209.159.150.53	attackspambots	Jun 24 22:45:34 server sshd[2933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.159.150.53 user=r.r Jun 24 22:45:35 server sshd[2933]: Failed password for r.r from 209.159.150.53 port 39473 ssh2 Jun 24 22:45:35 server sshd[2933]: Received disconnect from 209.159.150.53: 11: Bye Bye [preauth] Jun 24 22:58:36 server sshd[3066]: Failed password for invalid user sab from 209.159.150.53 port 43579 ssh2 Jun 24 22:58:36 server sshd[3066]: Received disconnect from 209.159.150.53: 11: Bye Bye [preauth] Jun 24 23:07:37 server sshd[3166]: Failed password for invalid user zeyu from 209.159.150.53 port 46668 ssh2 Jun 24 23:07:37 server sshd[3166]: Received disconnect from 209.159.150.53: 11: Bye Bye [preauth] Jun 24 23:16:01 server sshd[3337]: Failed password for invalid user admin from 209.159.150.53 port 49756 ssh2 Jun 24 23:16:01 server sshd[3337]: Received disconnect from 209.159.150.53: 11: Bye Bye [preauth] Jun 24 23:24:13 server........ -------------------------------	2020-06-26 14:17:32
111.67.202.196	attack	Jun 26 05:44:22 ns382633 sshd\[17666\]: Invalid user css from 111.67.202.196 port 34212 Jun 26 05:44:22 ns382633 sshd\[17666\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.202.196 Jun 26 05:44:23 ns382633 sshd\[17666\]: Failed password for invalid user css from 111.67.202.196 port 34212 ssh2 Jun 26 05:54:44 ns382633 sshd\[19571\]: Invalid user aaliyah from 111.67.202.196 port 45250 Jun 26 05:54:44 ns382633 sshd\[19571\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.202.196	2020-06-26 14:26:38
123.206.104.162	attack	2020-06-26T06:49:22+0200 Failed SSH Authentication/Brute Force Attack. (Server 10)	2020-06-26 13:56:08
141.98.81.208	attackspam	$f2bV_matches	2020-06-26 13:51:59
182.61.164.198	attack	Jun 26 07:25:09 server sshd[20040]: Failed password for invalid user fabienne from 182.61.164.198 port 44650 ssh2 Jun 26 07:32:24 server sshd[27320]: Failed password for invalid user mic from 182.61.164.198 port 52161 ssh2 Jun 26 07:36:18 server sshd[31822]: Failed password for invalid user servidor1 from 182.61.164.198 port 41136 ssh2	2020-06-26 13:59:55
47.254.36.89	attackbots	Automatic report - Banned IP Access	2020-06-26 13:49:02
113.190.104.57	attackbotsspam	1593143703 - 06/26/2020 05:55:03 Host: 113.190.104.57/113.190.104.57 Port: 445 TCP Blocked	2020-06-26 14:05:23
34.217.28.117	attackbotsspam	Port Scan detected from 34.217.28.117 (US/United States/Oregon/Portland/ec2-34-217-28-117.us-west-2.compute.amazonaws.com). 4 hits in the last 85 seconds	2020-06-26 14:05:56
110.74.177.198	attackspam	Invalid user ts from 110.74.177.198 port 56497	2020-06-26 14:07:18
13.90.35.161	attackbotsspam	13.90.35.161 - - [26/Jun/2020:04:54:56 +0100] "POST //xmlrpc.php HTTP/1.1" 200 228 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 13.90.35.161 - - [26/Jun/2020:04:54:57 +0100] "POST //xmlrpc.php HTTP/1.1" 200 228 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 13.90.35.161 - - [26/Jun/2020:04:54:58 +0100] "POST //xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" ...	2020-06-26 14:11:59
188.254.0.197	attackspambots	Port scan denied	2020-06-26 14:14:03
45.55.231.94	attackbots	Jun 26 08:04:03 ns381471 sshd[8127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 Jun 26 08:04:05 ns381471 sshd[8127]: Failed password for invalid user rsq from 45.55.231.94 port 49916 ssh2	2020-06-26 14:22:51
141.98.81.207	attackspambots	2020-06-26T05:55:32.824822abusebot-8.cloudsearch.cf sshd[29018]: Invalid user admin from 141.98.81.207 port 8929 2020-06-26T05:55:32.831090abusebot-8.cloudsearch.cf sshd[29018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.207 2020-06-26T05:55:32.824822abusebot-8.cloudsearch.cf sshd[29018]: Invalid user admin from 141.98.81.207 port 8929 2020-06-26T05:55:34.743705abusebot-8.cloudsearch.cf sshd[29018]: Failed password for invalid user admin from 141.98.81.207 port 8929 ssh2 2020-06-26T05:55:57.021067abusebot-8.cloudsearch.cf sshd[29032]: Invalid user Admin from 141.98.81.207 port 29185 2020-06-26T05:55:57.026157abusebot-8.cloudsearch.cf sshd[29032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.207 2020-06-26T05:55:57.021067abusebot-8.cloudsearch.cf sshd[29032]: Invalid user Admin from 141.98.81.207 port 29185 2020-06-26T05:55:58.703217abusebot-8.cloudsearch.cf sshd[29032]: Failed pa ...	2020-06-26 13:57:33
212.70.149.2	attack	Jun 26 07:49:01 mail postfix/smtpd\[3469\]: warning: unknown\[212.70.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 26 07:49:40 mail postfix/smtpd\[3469\]: warning: unknown\[212.70.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 26 08:19:57 mail postfix/smtpd\[3469\]: warning: unknown\[212.70.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 26 08:20:20 mail postfix/smtpd\[4740\]: warning: unknown\[212.70.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-06-26 14:25:04

最近上报的IP列表

106.107.219.89	106.11.223.99	106.110.113.235	106.110.122.50
106.110.180.35	106.110.189.58	106.110.195.23	106.110.212.105
106.110.212.133	106.110.212.202	106.110.212.70	106.110.217.25
106.110.226.14	106.110.239.112	106.110.243.112	106.110.47.113
106.110.56.165	106.110.71.118	106.111.1.255	106.111.14.127