106.52.133.45 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Jul 8 04:40:58 l03 sshd[26236]: Invalid user ROOT from 106.52.133.45 port 35390 ...	2020-07-08 18:39:13

相同子网IP讨论:

IP	类型	评论内容	时间
106.52.133.87	attackbotsspam	Aug 28 14:09:27 vps639187 sshd\[5938\]: Invalid user guest2 from 106.52.133.87 port 53096 Aug 28 14:09:27 vps639187 sshd\[5938\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.133.87 Aug 28 14:09:29 vps639187 sshd\[5938\]: Failed password for invalid user guest2 from 106.52.133.87 port 53096 ssh2 ...	2020-08-28 20:44:56
106.52.133.87	attackspambots	SSH Invalid Login	2020-08-20 05:52:44
106.52.133.87	attackspam	Aug 18 21:33:16 web9 sshd\[7492\]: Invalid user rss from 106.52.133.87 Aug 18 21:33:16 web9 sshd\[7492\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.133.87 Aug 18 21:33:19 web9 sshd\[7492\]: Failed password for invalid user rss from 106.52.133.87 port 35772 ssh2 Aug 18 21:36:25 web9 sshd\[7937\]: Invalid user mts from 106.52.133.87 Aug 18 21:36:25 web9 sshd\[7937\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.133.87	2020-08-19 16:09:29
106.52.133.87	attackbots	Aug 12 17:49:16 buvik sshd[30206]: Failed password for root from 106.52.133.87 port 43088 ssh2 Aug 12 17:55:07 buvik sshd[31209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.133.87 user=root Aug 12 17:55:09 buvik sshd[31209]: Failed password for root from 106.52.133.87 port 44288 ssh2 ...	2020-08-13 01:06:07
106.52.133.87	attack	Aug 8 14:46:02 PorscheCustomer sshd[27553]: Failed password for root from 106.52.133.87 port 40942 ssh2 Aug 8 14:49:57 PorscheCustomer sshd[27677]: Failed password for root from 106.52.133.87 port 54504 ssh2 ...	2020-08-08 23:41:32
106.52.133.87	attackspam	2020-08-05 07:19:44.575438-0500 localhost sshd[75210]: Failed password for root from 106.52.133.87 port 56288 ssh2	2020-08-05 20:58:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.52.133.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21806
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.52.133.45.			IN	A

;; AUTHORITY SECTION:
.			589	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070800 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 08 18:39:08 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 45.133.52.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 45.133.52.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
80.250.184.138	attackspambots	2020-04-01T22:20:54.456700abusebot-7.cloudsearch.cf sshd[23838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.250.184.138 user=root 2020-04-01T22:20:55.948214abusebot-7.cloudsearch.cf sshd[23838]: Failed password for root from 80.250.184.138 port 40536 ssh2 2020-04-01T22:25:41.483138abusebot-7.cloudsearch.cf sshd[24160]: Invalid user sn from 80.250.184.138 port 48762 2020-04-01T22:25:41.488308abusebot-7.cloudsearch.cf sshd[24160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.250.184.138 2020-04-01T22:25:41.483138abusebot-7.cloudsearch.cf sshd[24160]: Invalid user sn from 80.250.184.138 port 48762 2020-04-01T22:25:43.381176abusebot-7.cloudsearch.cf sshd[24160]: Failed password for invalid user sn from 80.250.184.138 port 48762 ssh2 2020-04-01T22:30:10.977305abusebot-7.cloudsearch.cf sshd[24539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.250.184.13 ...	2020-04-02 09:07:21
14.29.215.205	attackspam	(sshd) Failed SSH login from 14.29.215.205 (CN/China/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 2 01:20:35 ubnt-55d23 sshd[25278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.215.205 user=root Apr 2 01:20:37 ubnt-55d23 sshd[25278]: Failed password for root from 14.29.215.205 port 56803 ssh2	2020-04-02 09:15:28
187.163.154.129	attackbots	Automatic report - Port Scan Attack	2020-04-02 09:05:26
77.93.216.91	attackspam	Apr 2 08:10:54 webhost01 sshd[5999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.93.216.91 Apr 2 08:10:56 webhost01 sshd[5999]: Failed password for invalid user git from 77.93.216.91 port 55116 ssh2 ...	2020-04-02 09:18:07
103.141.46.154	attack	(sshd) Failed SSH login from 103.141.46.154 (ID/Indonesia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 2 00:05:15 srv sshd[6695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.141.46.154 user=root Apr 2 00:05:16 srv sshd[6695]: Failed password for root from 103.141.46.154 port 46728 ssh2 Apr 2 00:08:29 srv sshd[6779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.141.46.154 user=root Apr 2 00:08:30 srv sshd[6779]: Failed password for root from 103.141.46.154 port 45992 ssh2 Apr 2 00:11:34 srv sshd[6926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.141.46.154 user=root	2020-04-02 08:42:32
45.155.126.18	attack	Email rejected due to spam filtering	2020-04-02 09:13:05
58.152.43.8	attackspam	SSH Invalid Login	2020-04-02 08:36:43
49.72.212.22	attackbots	Apr 2 00:45:27 silence02 sshd[13795]: Failed password for root from 49.72.212.22 port 40010 ssh2 Apr 2 00:49:18 silence02 sshd[14106]: Failed password for root from 49.72.212.22 port 39390 ssh2	2020-04-02 08:40:55
90.84.41.240	attackbots	Invalid user wusiqi from 90.84.41.240 port 46438	2020-04-02 08:59:23
106.75.15.142	attackbots	(sshd) Failed SSH login from 106.75.15.142 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 1 22:39:25 amsweb01 sshd[24508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.15.142 user=root Apr 1 22:39:27 amsweb01 sshd[24508]: Failed password for root from 106.75.15.142 port 53234 ssh2 Apr 1 23:07:49 amsweb01 sshd[28007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.15.142 user=root Apr 1 23:07:51 amsweb01 sshd[28007]: Failed password for root from 106.75.15.142 port 39384 ssh2 Apr 1 23:11:24 amsweb01 sshd[28401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.15.142 user=root	2020-04-02 08:52:07
185.156.73.38	attack	04/01/2020-20:51:44.707141 185.156.73.38 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-04-02 09:11:05
119.29.10.25	attack	Brute-force attempt banned	2020-04-02 08:32:43
203.56.4.104	attackspambots	Apr 2 02:38:08 legacy sshd[13046]: Failed password for root from 203.56.4.104 port 33100 ssh2 Apr 2 02:41:02 legacy sshd[13159]: Failed password for root from 203.56.4.104 port 52860 ssh2 Apr 2 02:44:02 legacy sshd[13242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.56.4.104 ...	2020-04-02 08:51:19
84.39.183.160	attackbotsspam	Automatic report - Port Scan Attack	2020-04-02 08:40:32
200.89.178.12	attackbotsspam	Apr 1 17:05:40 xxxxxxx8434580 sshd[16072]: Failed password for r.r from 200.89.178.12 port 33904 ssh2 Apr 1 17:05:40 xxxxxxx8434580 sshd[16072]: Received disconnect from 200.89.178.12: 11: Bye Bye [preauth] Apr 1 17:14:42 xxxxxxx8434580 sshd[16280]: Failed password for r.r from 200.89.178.12 port 35882 ssh2 Apr 1 17:14:43 xxxxxxx8434580 sshd[16280]: Received disconnect from 200.89.178.12: 11: Bye Bye [preauth] Apr 1 17:19:53 xxxxxxx8434580 sshd[16399]: Failed password for r.r from 200.89.178.12 port 50064 ssh2 Apr 1 17:19:53 xxxxxxx8434580 sshd[16399]: Received disconnect from 200.89.178.12: 11: Bye Bye [preauth] Apr 1 17:25:00 xxxxxxx8434580 sshd[16489]: Failed password for r.r from 200.89.178.12 port 36010 ssh2 Apr 1 17:25:01 xxxxxxx8434580 sshd[16489]: Received disconnect from 200.89.178.12: 11: Bye Bye [preauth] Apr 1 17:30:10 xxxxxxx8434580 sshd[16559]: Invalid user zhaolu from 200.89.178.12 Apr 1 17:30:12 xxxxxxx8434580 sshd[16559]: Failed password for i........ -------------------------------	2020-04-02 09:01:29

最近上报的IP列表

128.1.135.158	174.75.64.229	192.35.168.227	178.106.228.198
200.91.47.243	58.47.58.19	203.93.191.184	161.190.169.210
34.166.197.86	125.10.42.238	180.7.122.40	51.115.199.96
251.125.38.185	122.168.247.233	193.183.87.28	113.102.145.197
230.253.212.17	114.235.139.110	142.143.222.109	219.78.47.87