101.80.147.106

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Shanghai Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized connection attempt from IP address 101.80.147.106 on Port 445(SMB)	2020-04-02 23:53:02

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 101.80.147.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15424
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;101.80.147.106.			IN	A

;; AUTHORITY SECTION:
.			558	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040200 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 02 23:52:56 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 106.147.80.101.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 106.147.80.101.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
200.89.154.99	attack	2020-07-27T18:33:25.279670abusebot-8.cloudsearch.cf sshd[11920]: Invalid user jinhuiming from 200.89.154.99 port 47532 2020-07-27T18:33:25.286355abusebot-8.cloudsearch.cf sshd[11920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=99-154-89-200.fibertel.com.ar 2020-07-27T18:33:25.279670abusebot-8.cloudsearch.cf sshd[11920]: Invalid user jinhuiming from 200.89.154.99 port 47532 2020-07-27T18:33:27.189628abusebot-8.cloudsearch.cf sshd[11920]: Failed password for invalid user jinhuiming from 200.89.154.99 port 47532 ssh2 2020-07-27T18:41:55.384698abusebot-8.cloudsearch.cf sshd[12126]: Invalid user tusuocheng from 200.89.154.99 port 45210 2020-07-27T18:41:55.402674abusebot-8.cloudsearch.cf sshd[12126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=99-154-89-200.fibertel.com.ar 2020-07-27T18:41:55.384698abusebot-8.cloudsearch.cf sshd[12126]: Invalid user tusuocheng from 200.89.154.99 port 45210 2020-07-27T18: ...	2020-07-28 03:05:47
152.67.47.139	attack	Jul 27 16:20:58 marvibiene sshd[30204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.67.47.139 Jul 27 16:21:00 marvibiene sshd[30204]: Failed password for invalid user xdzhang from 152.67.47.139 port 54830 ssh2	2020-07-28 02:49:37
49.233.32.245	attackspam	2020-07-27T21:39:44.980370afi-git.jinr.ru sshd[4297]: Invalid user wzc from 49.233.32.245 port 40100 2020-07-27T21:39:44.983544afi-git.jinr.ru sshd[4297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.32.245 2020-07-27T21:39:44.980370afi-git.jinr.ru sshd[4297]: Invalid user wzc from 49.233.32.245 port 40100 2020-07-27T21:39:47.581082afi-git.jinr.ru sshd[4297]: Failed password for invalid user wzc from 49.233.32.245 port 40100 ssh2 2020-07-27T21:44:11.122826afi-git.jinr.ru sshd[5489]: Invalid user jiashuo from 49.233.32.245 port 60252 ...	2020-07-28 03:04:48
91.121.45.5	attackspambots	Jul 27 17:07:48 vlre-nyc-1 sshd\[737\]: Invalid user huanghuanzhi from 91.121.45.5 Jul 27 17:07:48 vlre-nyc-1 sshd\[737\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.45.5 Jul 27 17:07:50 vlre-nyc-1 sshd\[737\]: Failed password for invalid user huanghuanzhi from 91.121.45.5 port 48092 ssh2 Jul 27 17:16:42 vlre-nyc-1 sshd\[1022\]: Invalid user wlk-lab from 91.121.45.5 Jul 27 17:16:42 vlre-nyc-1 sshd\[1022\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.45.5 ...	2020-07-28 02:54:13
5.166.230.246	attack	Jul 27 11:39:26 XXX sshd[9958]: reveeclipse mapping checking getaddrinfo for 5x166x230x246.dynamic.chel.ertelecom.ru [5.166.230.246] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 27 11:39:26 XXX sshd[9958]: Invalid user admin from 5.166.230.246 Jul 27 11:39:26 XXX sshd[9958]: Received disconnect from 5.166.230.246: 11: Bye Bye [preauth] Jul 27 11:39:27 XXX sshd[9960]: reveeclipse mapping checking getaddrinfo for 5x166x230x246.dynamic.chel.ertelecom.ru [5.166.230.246] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 27 11:39:27 XXX sshd[9960]: User r.r from 5.166.230.246 not allowed because none of user's groups are listed in AllowGroups Jul 27 11:39:27 XXX sshd[9960]: Received disconnect from 5.166.230.246: 11: Bye Bye [preauth] Jul 27 11:39:28 XXX sshd[9962]: reveeclipse mapping checking getaddrinfo for 5x166x230x246.dynamic.chel.ertelecom.ru [5.166.230.246] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 27 11:39:28 XXX sshd[9962]: Invalid user admin from 5.166.230.246 Jul 27 11:39:28 XXX s........ -------------------------------	2020-07-28 02:54:38
117.50.106.150	attack	Invalid user si from 117.50.106.150 port 54856	2020-07-28 03:06:37
182.247.193.215	attackbots	Unauthorised access (Jul 27) SRC=182.247.193.215 LEN=40 TTL=49 ID=5058 TCP DPT=8080 WINDOW=30206 SYN Unauthorised access (Jul 27) SRC=182.247.193.215 LEN=40 TTL=49 ID=40932 TCP DPT=8080 WINDOW=25551 SYN	2020-07-28 02:48:58
119.96.230.241	attack	Fail2Ban Ban Triggered	2020-07-28 02:44:33
45.141.84.94	attackbots	Jul 27 20:18:49 debian-2gb-nbg1-2 kernel: \[18132434.066191\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.141.84.94 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=35593 PROTO=TCP SPT=58652 DPT=5736 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-28 02:50:40
217.112.142.89	attack	Jul 27 13:48:18 tux postfix/smtpd[19777]: connect from encourage.yarkaci.com[217.112.142.89] Jul x@x Jul 27 13:48:18 tux postfix/smtpd[19777]: disconnect from encourage.yarkaci.com[217.112.142.89] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=217.112.142.89	2020-07-28 02:41:59
103.136.40.88	attackbotsspam	Invalid user wangqi from 103.136.40.88 port 55388	2020-07-28 02:28:04
54.196.250.245	attackbotsspam	54.196.250.245 - - [27/Jul/2020:14:52:26 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 54.196.250.245 - - [27/Jul/2020:14:52:26 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 54.196.250.245 - - [27/Jul/2020:14:52:26 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 54.196.250.245 - - [27/Jul/2020:14:52:26 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 54.196.250.245 - - [27/Jul/2020:14:52:26 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 54.196.250.245 - - [27/Jul/2020:14:52:26 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 54.196.250.245 - - [27/Jul/2020:14:52:26 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 54.196.250.245 - - [27/Jul/2020:14:52:26 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 54.196.250.245 - - [27/J ...	2020-07-28 02:56:22
181.211.255.146	attack	Registration form abuse	2020-07-28 02:42:19
91.121.103.77	attackbotsspam	Attempted Brute Force (cpaneld)	2020-07-28 02:30:15
180.242.115.169	attackspam	20/7/27@07:49:22: FAIL: Alarm-Network address from=180.242.115.169 20/7/27@07:49:22: FAIL: Alarm-Network address from=180.242.115.169 ...	2020-07-28 02:42:33

最近上报的IP列表

110.197.242.142	125.180.159.7	44.3.32.197	69.194.34.89
210.22.9.10	140.193.91.127	204.109.26.92	209.184.135.58
198.126.18.98	108.87.218.138	51.213.48.95	67.24.109.80
13.228.25.64	84.137.107.243	92.145.16.231	13.17.88.35
39.130.158.1	190.202.198.25	212.211.9.201	93.44.224.87