必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attackbots
2020-09-09T20:49:51.172186yoshi.linuxbox.ninja sshd[3979841]: Failed password for invalid user nx from 106.52.55.146 port 50294 ssh2
2020-09-09T20:53:49.241455yoshi.linuxbox.ninja sshd[3982213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.55.146  user=root
2020-09-09T20:53:50.833003yoshi.linuxbox.ninja sshd[3982213]: Failed password for root from 106.52.55.146 port 36090 ssh2
...
2020-09-11 02:40:12
attackspam
2020-09-09T20:49:51.172186yoshi.linuxbox.ninja sshd[3979841]: Failed password for invalid user nx from 106.52.55.146 port 50294 ssh2
2020-09-09T20:53:49.241455yoshi.linuxbox.ninja sshd[3982213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.55.146  user=root
2020-09-09T20:53:50.833003yoshi.linuxbox.ninja sshd[3982213]: Failed password for root from 106.52.55.146 port 36090 ssh2
...
2020-09-10 18:03:19
attack
2020-09-09T21:32:54.023604correo.[domain] sshd[16555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.55.146 2020-09-09T21:32:54.017260correo.[domain] sshd[16555]: Invalid user minecraft from 106.52.55.146 port 41826 2020-09-09T21:32:56.355690correo.[domain] sshd[16555]: Failed password for invalid user minecraft from 106.52.55.146 port 41826 ssh2 ...
2020-09-10 08:36:26
attackspam
Aug 26 21:53:18 ip-172-31-16-56 sshd\[11576\]: Invalid user steam from 106.52.55.146\
Aug 26 21:53:20 ip-172-31-16-56 sshd\[11576\]: Failed password for invalid user steam from 106.52.55.146 port 55748 ssh2\
Aug 26 21:57:14 ip-172-31-16-56 sshd\[11603\]: Failed password for root from 106.52.55.146 port 43738 ssh2\
Aug 26 22:01:08 ip-172-31-16-56 sshd\[11630\]: Invalid user anna from 106.52.55.146\
Aug 26 22:01:10 ip-172-31-16-56 sshd\[11630\]: Failed password for invalid user anna from 106.52.55.146 port 59958 ssh2\
2020-08-27 08:33:00
attackbotsspam
Brute-force attempt banned
2020-08-22 22:52:17
attackbots
2020-08-19T14:59:07.898497linuxbox-skyline sshd[1004]: Invalid user gaston from 106.52.55.146 port 38126
...
2020-08-20 05:42:11
attackbots
Bruteforce detected by fail2ban
2020-08-10 17:36:11
attackbots
Jul 18 21:51:11 haigwepa sshd[29012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.55.146 
Jul 18 21:51:13 haigwepa sshd[29012]: Failed password for invalid user spb from 106.52.55.146 port 47566 ssh2
...
2020-07-19 04:56:21
attack
Brute force SMTP login attempted.
...
2020-07-06 13:01:19
attackspam
"fail2ban match"
2020-06-11 15:25:54
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.52.55.146
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5576
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.52.55.146.			IN	A

;; AUTHORITY SECTION:
.			546	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061100 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 11 15:25:50 CST 2020
;; MSG SIZE  rcvd: 117
HOST信息:
Host 146.55.52.106.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 146.55.52.106.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
45.142.120.38 attackbotsspam
Oct  7 10:27:45 srv01 postfix/smtpd\[30847\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Oct  7 10:27:52 srv01 postfix/smtpd\[30797\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Oct  7 10:27:54 srv01 postfix/smtpd\[30890\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Oct  7 10:27:57 srv01 postfix/smtpd\[30847\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Oct  7 10:28:02 srv01 postfix/smtpd\[30858\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
...
2020-10-07 16:38:27
82.199.47.2 attackbots
Lines containing failures of 82.199.47.2
Oct  6 22:23:16 shared06 sshd[674]: Invalid user admin from 82.199.47.2 port 54788
Oct  6 22:23:17 shared06 sshd[674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.199.47.2
Oct  6 22:23:19 shared06 sshd[674]: Failed password for invalid user admin from 82.199.47.2 port 54788 ssh2
Oct  6 22:23:19 shared06 sshd[674]: Connection closed by invalid user admin 82.199.47.2 port 54788 [preauth]
Oct  6 22:23:20 shared06 sshd[676]: Invalid user admin from 82.199.47.2 port 54790
Oct  6 22:23:20 shared06 sshd[676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.199.47.2
Oct  6 22:23:22 shared06 sshd[676]: Failed password for invalid user admin from 82.199.47.2 port 54790 ssh2
Oct  6 22:23:22 shared06 sshd[676]: Connection closed by invalid user admin 82.199.47.2 port 54790 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=82.199.47.2
2020-10-07 16:05:36
139.186.67.94 attackbots
Oct  6 22:41:14 ns3164893 sshd[31962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.94  user=root
Oct  6 22:41:17 ns3164893 sshd[31962]: Failed password for root from 139.186.67.94 port 34528 ssh2
...
2020-10-07 16:20:45
111.229.76.117 attackbots
111.229.76.117 (CN/China/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct  7 09:47:38 server sshd[4373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.76.117  user=root
Oct  7 09:47:41 server sshd[4373]: Failed password for root from 111.229.76.117 port 45858 ssh2
Oct  7 09:46:13 server sshd[4085]: Failed password for root from 79.137.24.13 port 42924 ssh2
Oct  7 09:50:24 server sshd[4747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.165.232  user=root
Oct  7 09:48:47 server sshd[4528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.104.160  user=root
Oct  7 09:48:49 server sshd[4528]: Failed password for root from 118.24.104.160 port 50226 ssh2

IP Addresses Blocked:
2020-10-07 16:19:13
159.69.241.38 attackbotsspam
failed root login
2020-10-07 16:14:50
51.105.5.16 attackspambots
Oct  6 19:45:38 web9 sshd\[1745\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.105.5.16  user=root
Oct  6 19:45:40 web9 sshd\[1745\]: Failed password for root from 51.105.5.16 port 54258 ssh2
Oct  6 19:49:18 web9 sshd\[2355\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.105.5.16  user=root
Oct  6 19:49:19 web9 sshd\[2355\]: Failed password for root from 51.105.5.16 port 59202 ssh2
Oct  6 19:52:53 web9 sshd\[2939\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.105.5.16  user=root
2020-10-07 16:04:22
85.159.214.160 attackbotsspam
Brute forcing email accounts
2020-10-07 16:27:23
222.221.248.242 attack
$f2bV_matches
2020-10-07 16:32:56
190.144.182.86 attackspambots
DATE:2020-10-07 06:47:57, IP:190.144.182.86, PORT:ssh SSH brute force auth (docker-dc)
2020-10-07 16:39:18
61.133.232.253 attackspambots
SSH login attempts.
2020-10-07 16:12:19
103.69.216.33 attackspambots
Telnet/23 MH Probe, Scan, BF, Hack -
2020-10-07 16:19:35
147.135.112.79 attackspam
Oct  7 04:45:14 host1 sshd[1397639]: Failed password for root from 147.135.112.79 port 42808 ssh2
Oct  7 04:48:52 host1 sshd[1397930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.112.79  user=root
Oct  7 04:48:54 host1 sshd[1397930]: Failed password for root from 147.135.112.79 port 42527 ssh2
Oct  7 04:48:52 host1 sshd[1397930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.112.79  user=root
Oct  7 04:48:54 host1 sshd[1397930]: Failed password for root from 147.135.112.79 port 42527 ssh2
...
2020-10-07 16:25:17
78.141.35.10 attack
Oct 7 05:00:18 *hidden* sshd[39587]: Invalid user pi from 78.141.35.10 port 50894 Oct 7 05:00:18 *hidden* sshd[39585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.141.35.10 Oct 7 05:00:20 *hidden* sshd[39585]: Failed password for invalid user pi from 78.141.35.10 port 50886 ssh2
2020-10-07 16:38:04
103.208.137.52 attack
Oct  7 09:39:10 DAAP sshd[20792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.208.137.52  user=root
Oct  7 09:39:12 DAAP sshd[20792]: Failed password for root from 103.208.137.52 port 37324 ssh2
Oct  7 09:41:30 DAAP sshd[20835]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.208.137.52  user=root
Oct  7 09:41:32 DAAP sshd[20835]: Failed password for root from 103.208.137.52 port 40180 ssh2
Oct  7 09:43:52 DAAP sshd[20889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.208.137.52  user=root
Oct  7 09:43:54 DAAP sshd[20889]: Failed password for root from 103.208.137.52 port 43036 ssh2
...
2020-10-07 15:57:56
175.6.108.125 attackbotsspam
Oct  6 18:04:19 ny01 sshd[25176]: Failed password for root from 175.6.108.125 port 52728 ssh2
Oct  6 18:08:24 ny01 sshd[25690]: Failed password for root from 175.6.108.125 port 56914 ssh2
2020-10-07 16:31:52

最近上报的IP列表

82.78.180.247 106.75.218.71 93.170.216.5 223.207.85.148
43.250.105.187 14.167.202.119 5.179.88.222 181.170.193.181
51.254.197.148 83.92.48.254 103.19.58.23 51.91.165.3
66.249.73.166 185.234.219.133 120.53.9.99 177.220.176.223
78.111.166.3 184.168.152.107 157.230.8.174 162.248.52.99