106.45.0.168 - IPInfo

基本信息:

城市(city): Yinchuan

省份(region): Ningxia Hui Autonomous Region

国家(country): China

运营商(isp): ChinaNet Ningxia Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt detected from IP address 106.45.0.168 to port 8899 [J]	2020-03-02 17:15:57
attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5437bc59ed89eb89 \| WAF_Rule_ID: 1112825 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Mobile Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 04:54:26

类型

评论内容

时间

attackbots

Unauthorized connection attempt detected from IP address 106.45.0.168 to port 8899 [J]

2020-03-02 17:15:57

attackspam

The IP has triggered Cloudflare WAF. CF-Ray: 5437bc59ed89eb89 | WAF_Rule_ID: 1112825 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: img.skk.moe | User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Mobile Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-12 04:54:26

相同子网IP讨论:

IP	类型	评论内容	时间
106.45.0.198	attack	Detected by ModSecurity. Host header is an IP address, Request URI: /	2020-08-07 18:17:55
106.45.0.182	attackspam	Unauthorized connection attempt detected from IP address 106.45.0.182 to port 443	2020-07-25 20:37:03
106.45.0.43	attackspam	Unauthorized connection attempt detected from IP address 106.45.0.43 to port 8081 [J]	2020-03-02 20:37:01
106.45.0.111	attackbotsspam	Unauthorized connection attempt detected from IP address 106.45.0.111 to port 22 [J]	2020-03-02 15:06:55
106.45.0.255	attack	Unauthorized connection attempt detected from IP address 106.45.0.255 to port 22 [J]	2020-03-02 15:06:35
106.45.0.52	attack	Unauthorized connection attempt detected from IP address 106.45.0.52 to port 443 [J]	2020-02-05 09:42:09
106.45.0.64	attackbots	Unauthorized connection attempt detected from IP address 106.45.0.64 to port 8089 [T]	2020-01-29 17:45:51
106.45.0.208	attack	Unauthorized connection attempt detected from IP address 106.45.0.208 to port 8081 [T]	2020-01-29 17:45:22
106.45.0.171	attack	Unauthorized connection attempt detected from IP address 106.45.0.171 to port 8888 [J]	2020-01-29 10:31:04
106.45.0.45	attackspam	Unauthorized connection attempt detected from IP address 106.45.0.45 to port 8000 [J]	2020-01-27 17:38:30
106.45.0.112	attackspam	Unauthorized connection attempt detected from IP address 106.45.0.112 to port 8000 [J]	2020-01-27 14:48:50
106.45.0.56	attackspam	Unauthorized connection attempt detected from IP address 106.45.0.56 to port 8081 [J]	2020-01-27 00:51:09
106.45.0.77	attackbots	Unauthorized connection attempt detected from IP address 106.45.0.77 to port 8081 [J]	2020-01-27 00:19:12
106.45.0.97	attackbots	Unauthorized connection attempt detected from IP address 106.45.0.97 to port 80 [J]	2020-01-20 20:37:58
106.45.0.202	attack	Unauthorized connection attempt detected from IP address 106.45.0.202 to port 80 [J]	2020-01-19 14:48:25

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.45.0.168
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35751
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.45.0.168.			IN	A

;; AUTHORITY SECTION:
.			516	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121101 1800 900 604800 86400

;; Query time: 139 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 12 04:54:21 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 168.0.45.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 168.0.45.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
140.207.150.154	attack	SSH auth scanning - multiple failed logins	2020-03-14 03:17:47
106.124.143.24	attackspambots	sshd jail - ssh hack attempt	2020-03-14 03:04:37
140.143.236.197	attackspam	Jan 6 19:26:50 pi sshd[19090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.236.197 Jan 6 19:26:52 pi sshd[19090]: Failed password for invalid user test0 from 140.143.236.197 port 35702 ssh2	2020-03-14 03:36:14
34.97.236.242	attackspam	Mar 13 14:35:26 sshgateway sshd\[13885\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=242.236.97.34.bc.googleusercontent.com user=root Mar 13 14:35:28 sshgateway sshd\[13885\]: Failed password for root from 34.97.236.242 port 53494 ssh2 Mar 13 14:44:24 sshgateway sshd\[13917\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=242.236.97.34.bc.googleusercontent.com user=root	2020-03-14 03:28:19
164.177.36.97	attackbots	Unauthorized connection attempt from IP address 164.177.36.97 on Port 445(SMB)	2020-03-14 03:15:35
114.115.213.166	attackspambots	HTTP/80/443/8080 Probe, BF, WP, Hack -	2020-03-14 03:31:24
106.54.114.143	attackbots	5x Failed Password	2020-03-14 03:13:44
191.6.35.40	attackspam	Unauthorized connection attempt from IP address 191.6.35.40 on Port 445(SMB)	2020-03-14 03:00:20
182.75.216.190	attackspambots	Mar 13 19:02:46 ns382633 sshd\[17485\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.75.216.190 user=root Mar 13 19:02:48 ns382633 sshd\[17485\]: Failed password for root from 182.75.216.190 port 62271 ssh2 Mar 13 19:10:23 ns382633 sshd\[19170\]: Invalid user robot from 182.75.216.190 port 45043 Mar 13 19:10:23 ns382633 sshd\[19170\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.75.216.190 Mar 13 19:10:25 ns382633 sshd\[19170\]: Failed password for invalid user robot from 182.75.216.190 port 45043 ssh2	2020-03-14 03:00:46
94.175.110.63	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/94.175.110.63/ GB - 1H : (28) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : GB NAME ASN : ASN5089 IP : 94.175.110.63 CIDR : 94.175.0.0/16 PREFIX COUNT : 259 UNIQUE IP COUNT : 9431296 ATTACKS DETECTED ASN5089 : 1H - 2 3H - 2 6H - 2 12H - 2 24H - 2 DateTime : 2020-03-13 13:45:11 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2020-03-14 03:05:52
141.98.80.173	attack	Jan 29 01:07:23 pi sshd[31893]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.80.173 Jan 29 01:07:26 pi sshd[31893]: Failed password for invalid user admin from 141.98.80.173 port 44053 ssh2	2020-03-14 03:10:21
211.219.114.39	attackbotsspam	Mar 13 20:08:45 prox sshd[13430]: Failed password for root from 211.219.114.39 port 44040 ssh2 Mar 13 20:16:39 prox sshd[20463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.219.114.39	2020-03-14 03:29:31
118.98.221.6	attackbotsspam	Unauthorized connection attempt from IP address 118.98.221.6 on Port 445(SMB)	2020-03-14 02:59:25
63.241.180.196	attack	Honeypot attack, port: 445, PTR: 7785-3550-1.phx1.attens.net.	2020-03-14 03:24:28
60.251.137.215	attack	firewall-block, port(s): 1433/tcp	2020-03-14 03:33:48

最近上报的IP列表

187.46.23.105	66.249.82.91	216.5.50.38	23.249.130.31
240.133.66.216	60.13.6.41	182.112.109.16	171.219.182.156
225.5.79.216	78.223.230.209	58.212.14.168	54.238.78.161
58.212.14.102	33.38.159.211	49.7.20.161	34.188.74.55
170.82.136.63	75.114.78.138	139.173.156.199	28.110.48.100