必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
106.52.249.134 attack
2020-10-12T17:54:30+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)
2020-10-13 02:18:11
106.52.242.21 attack
Invalid user pcap from 106.52.242.21 port 53984
2020-10-12 21:40:00
106.52.249.134 attack
Connection to SSH Honeypot - Detected by HoneypotDB
2020-10-12 17:44:02
106.52.242.21 attackbots
Invalid user pcap from 106.52.242.21 port 53984
2020-10-12 13:11:10
106.52.249.134 attack
detected by Fail2Ban
2020-10-03 22:23:05
106.52.249.134 attackbots
(sshd) Failed SSH login from 106.52.249.134 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 30 13:40:58 server sshd[1408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.249.134  user=root
Sep 30 13:40:59 server sshd[1408]: Failed password for root from 106.52.249.134 port 38720 ssh2
Sep 30 13:46:00 server sshd[2118]: Invalid user user8 from 106.52.249.134
Sep 30 13:46:00 server sshd[2118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.249.134 
Sep 30 13:46:01 server sshd[2118]: Failed password for invalid user user8 from 106.52.249.134 port 51694 ssh2
2020-10-01 02:29:05
106.52.249.134 attackbotsspam
106.52.249.134 (CN/China/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 30 03:24:54 server5 sshd[28464]: Failed password for root from 84.255.249.179 port 51096 ssh2
Sep 30 03:27:43 server5 sshd[29747]: Failed password for root from 91.134.157.246 port 24415 ssh2
Sep 30 03:18:14 server5 sshd[25495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.129.197.98  user=root
Sep 30 03:18:16 server5 sshd[25495]: Failed password for root from 203.129.197.98 port 34274 ssh2
Sep 30 03:24:38 server5 sshd[28446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.249.134  user=root
Sep 30 03:24:40 server5 sshd[28446]: Failed password for root from 106.52.249.134 port 60688 ssh2

IP Addresses Blocked:

84.255.249.179 (SI/Slovenia/-)
91.134.157.246 (FR/France/-)
203.129.197.98 (IN/India/-)
2020-09-30 18:38:19
106.52.243.17 attack
Invalid user ts3 from 106.52.243.17 port 53734
2020-09-23 03:04:13
106.52.243.17 attack
Invalid user rundeck from 106.52.243.17 port 37928
2020-09-22 19:13:05
106.52.243.17 attackbotsspam
sshd: Failed password for .... from 106.52.243.17 port 50060 ssh2 (7 attempts)
2020-09-17 02:14:40
106.52.242.21 attack
2020-09-16T16:37:24+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)
2020-09-16 23:33:12
106.52.243.17 attack
sshd: Failed password for .... from 106.52.243.17 port 50060 ssh2 (7 attempts)
2020-09-16 18:31:51
106.52.242.21 attackspambots
SSH login attempts.
2020-09-16 15:50:20
106.52.242.21 attackspam
Sep 16 01:27:03 vps333114 sshd[12882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.242.21
Sep 16 01:27:05 vps333114 sshd[12882]: Failed password for invalid user ggggg from 106.52.242.21 port 53910 ssh2
...
2020-09-16 07:50:26
106.52.240.160 attackbots
Sep 14 08:33:38 george sshd[1770]: Failed password for root from 106.52.240.160 port 51550 ssh2
Sep 14 08:36:12 george sshd[1792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.240.160  user=root
Sep 14 08:36:15 george sshd[1792]: Failed password for root from 106.52.240.160 port 53244 ssh2
Sep 14 08:38:48 george sshd[1815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.240.160  user=root
Sep 14 08:38:50 george sshd[1815]: Failed password for root from 106.52.240.160 port 54942 ssh2
...
2020-09-14 20:53:47
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.52.24.43
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16970
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.52.24.43.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400

;; Query time: 125 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 14:40:32 CST 2022
;; MSG SIZE  rcvd: 105
HOST信息:
Host 43.24.52.106.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 43.24.52.106.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
178.210.130.139 attackbots
Sep  5 08:59:58 pkdns2 sshd\[33186\]: Invalid user vagrant from 178.210.130.139Sep  5 09:00:00 pkdns2 sshd\[33186\]: Failed password for invalid user vagrant from 178.210.130.139 port 60452 ssh2Sep  5 09:04:08 pkdns2 sshd\[33378\]: Invalid user testftp from 178.210.130.139Sep  5 09:04:10 pkdns2 sshd\[33378\]: Failed password for invalid user testftp from 178.210.130.139 port 48094 ssh2Sep  5 09:08:22 pkdns2 sshd\[33562\]: Invalid user postgres from 178.210.130.139Sep  5 09:08:25 pkdns2 sshd\[33562\]: Failed password for invalid user postgres from 178.210.130.139 port 35730 ssh2
...
2019-09-05 14:41:50
187.138.154.20 attackbotsspam
Caught in portsentry honeypot
2019-09-05 14:37:06
24.89.226.62 attackspam
Honeypot attack, port: 5555, PTR: 24-89-226-62.eastlink.ca.
2019-09-05 14:13:51
119.29.242.48 attackspam
Sep  5 01:03:23 aat-srv002 sshd[2399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.242.48
Sep  5 01:03:24 aat-srv002 sshd[2399]: Failed password for invalid user webadmin from 119.29.242.48 port 56248 ssh2
Sep  5 01:08:53 aat-srv002 sshd[2524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.242.48
Sep  5 01:08:55 aat-srv002 sshd[2524]: Failed password for invalid user postgres from 119.29.242.48 port 43524 ssh2
...
2019-09-05 14:21:13
182.120.46.236 attack
Honeypot attack, port: 23, PTR: hn.kd.ny.adsl.
2019-09-05 14:41:30
114.255.135.126 attack
Sep  5 03:24:05 server sshd\[19939\]: Invalid user gituser from 114.255.135.126 port 65028
Sep  5 03:24:05 server sshd\[19939\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.255.135.126
Sep  5 03:24:07 server sshd\[19939\]: Failed password for invalid user gituser from 114.255.135.126 port 65028 ssh2
Sep  5 03:28:39 server sshd\[13183\]: Invalid user senga from 114.255.135.126 port 50989
Sep  5 03:28:39 server sshd\[13183\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.255.135.126
2019-09-05 14:01:06
81.183.253.86 attackbots
Sep  5 00:50:59 vps691689 sshd[12532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.183.253.86
Sep  5 00:51:02 vps691689 sshd[12532]: Failed password for invalid user 123456 from 81.183.253.86 port 7669 ssh2
Sep  5 00:56:47 vps691689 sshd[12604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.183.253.86
...
2019-09-05 13:51:02
64.79.101.52 attackbots
Sep  5 05:12:46 localhost sshd\[45498\]: Invalid user ftpuser from 64.79.101.52 port 17628
Sep  5 05:12:46 localhost sshd\[45498\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.79.101.52
Sep  5 05:12:48 localhost sshd\[45498\]: Failed password for invalid user ftpuser from 64.79.101.52 port 17628 ssh2
Sep  5 05:17:12 localhost sshd\[45625\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.79.101.52  user=root
Sep  5 05:17:14 localhost sshd\[45625\]: Failed password for root from 64.79.101.52 port 50503 ssh2
...
2019-09-05 14:37:46
159.65.129.64 attack
2019-09-05T12:11:41.870607enmeeting.mahidol.ac.th sshd\[14546\]: Invalid user admin2 from 159.65.129.64 port 49480
2019-09-05T12:11:41.886241enmeeting.mahidol.ac.th sshd\[14546\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.129.64
2019-09-05T12:11:43.792086enmeeting.mahidol.ac.th sshd\[14546\]: Failed password for invalid user admin2 from 159.65.129.64 port 49480 ssh2
...
2019-09-05 14:08:22
106.52.185.236 attackbotsspam
Sep  5 00:14:37 xxxxxxx0 sshd[12073]: Invalid user sinusbot from 106.52.185.236 port 45396
Sep  5 00:14:37 xxxxxxx0 sshd[12073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.185.236
Sep  5 00:14:39 xxxxxxx0 sshd[12073]: Failed password for invalid user sinusbot from 106.52.185.236 port 45396 ssh2
Sep  5 00:28:46 xxxxxxx0 sshd[17345]: Invalid user test from 106.52.185.236 port 40322
Sep  5 00:28:46 xxxxxxx0 sshd[17345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.185.236

........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=106.52.185.236
2019-09-05 13:56:55
5.9.83.204 attackbots
Sep  5 07:56:01 OPSO sshd\[13329\]: Invalid user whmcs from 5.9.83.204 port 42262
Sep  5 07:56:01 OPSO sshd\[13329\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.9.83.204
Sep  5 07:56:03 OPSO sshd\[13329\]: Failed password for invalid user whmcs from 5.9.83.204 port 42262 ssh2
Sep  5 08:00:08 OPSO sshd\[14021\]: Invalid user qwer1234 from 5.9.83.204 port 58780
Sep  5 08:00:08 OPSO sshd\[14021\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.9.83.204
2019-09-05 14:15:32
106.12.11.166 attackspam
Sep  5 07:30:54 vps01 sshd[15698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.11.166
Sep  5 07:30:57 vps01 sshd[15698]: Failed password for invalid user server1 from 106.12.11.166 port 36228 ssh2
2019-09-05 13:56:05
31.215.192.137 attackspambots
Unauthorised access (Sep  5) SRC=31.215.192.137 LEN=44 TTL=52 ID=41310 TCP DPT=23 WINDOW=34606 SYN
2019-09-05 14:10:47
122.165.178.154 attackspam
SSH Brute Force, server-1 sshd[14049]: Failed password for invalid user kafka from 122.165.178.154 port 52874 ssh2
2019-09-05 14:33:43
178.62.47.177 attack
Sep  5 05:55:54 itv-usvr-01 sshd[27656]: Invalid user ark from 178.62.47.177
Sep  5 05:55:54 itv-usvr-01 sshd[27656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.47.177
Sep  5 05:55:54 itv-usvr-01 sshd[27656]: Invalid user ark from 178.62.47.177
Sep  5 05:55:56 itv-usvr-01 sshd[27656]: Failed password for invalid user ark from 178.62.47.177 port 37432 ssh2
2019-09-05 14:30:24

最近上报的IP列表

106.52.242.109 106.52.245.34 106.52.240.176 106.52.246.104
106.52.246.41 106.52.247.243 106.52.243.39 106.52.247.47
106.40.241.12 106.52.247.68 106.52.25.139 106.52.249.244
106.52.251.213 106.52.245.244 106.52.252.192 106.52.253.217
106.52.252.41 106.52.255.222 106.52.254.25 106.40.241.120