106.107.133.161

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, Province of China

运营商(isp): New Century Infocomm Tech. Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Dec 8 11:44:13 mercury kernel: [UFW ALLOW] IN=eth0 OUT= MAC=f2:3c:91:bc:4d:f8:84:78:ac:0d:8f:41:08:00 SRC=106.107.133.161 DST=109.74.200.221 LEN=32 TOS=0x00 PREC=0x00 TTL=43 ID=0 DF PROTO=UDP SPT=123 DPT=123 LEN=12 ...	2020-03-03 23:53:06

类型

评论内容

时间

attack

Dec  8 11:44:13 mercury kernel: [UFW ALLOW] IN=eth0 OUT= MAC=f2:3c:91:bc:4d:f8:84:78:ac:0d:8f:41:08:00 SRC=106.107.133.161 DST=109.74.200.221 LEN=32 TOS=0x00 PREC=0x00 TTL=43 ID=0 DF PROTO=UDP SPT=123 DPT=123 LEN=12 
...

2020-03-03 23:53:06

相同子网IP讨论:

IP	类型	评论内容	时间
106.107.133.23	attack	Dec 11 16:52:05 mercury kernel: [UFW ALLOW] IN=eth0 OUT= MAC=f2:3c:91:bc:4d:f8:84:78:ac:0d:8f:41:08:00 SRC=106.107.133.23 DST=109.74.200.221 LEN=32 TOS=0x00 PREC=0x00 TTL=43 ID=0 DF PROTO=UDP SPT=123 DPT=123 LEN=12 ...	2020-03-03 23:39:08

类型

评论内容

时间

106.107.133.23

attack

Dec 11 16:52:05 mercury kernel: [UFW ALLOW] IN=eth0 OUT= MAC=f2:3c:91:bc:4d:f8:84:78:ac:0d:8f:41:08:00 SRC=106.107.133.23 DST=109.74.200.221 LEN=32 TOS=0x00 PREC=0x00 TTL=43 ID=0 DF PROTO=UDP SPT=123 DPT=123 LEN=12 
...

2020-03-03 23:39:08

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.107.133.161
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27401
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.107.133.161.		IN	A

;; AUTHORITY SECTION:
.			494	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030202 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 03 23:53:00 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

161.133.107.106.in-addr.arpa domain name pointer 106.107.133.161.adsl.dynamic.seed.net.tw.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
161.133.107.106.in-addr.arpa	name = 106.107.133.161.adsl.dynamic.seed.net.tw.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
115.231.0.56	attackbotsspam	Oct 12 00:40:59 jumpserver sshd[74869]: Invalid user tai from 115.231.0.56 port 39672 Oct 12 00:41:00 jumpserver sshd[74869]: Failed password for invalid user tai from 115.231.0.56 port 39672 ssh2 Oct 12 00:42:56 jumpserver sshd[74889]: Invalid user allan from 115.231.0.56 port 63199 ...	2020-10-12 13:04:55
222.186.42.57	attack	Unauthorized connection attempt detected from IP address 222.186.42.57 to port 22 [T]	2020-10-12 12:31:27
27.153.254.70	attackspam	3x Failed Password	2020-10-12 12:44:44
218.92.0.248	attackbots	Oct 12 05:52:55 mavik sshd[19883]: Failed password for root from 218.92.0.248 port 57701 ssh2 Oct 12 05:52:58 mavik sshd[19883]: Failed password for root from 218.92.0.248 port 57701 ssh2 Oct 12 05:53:02 mavik sshd[19883]: Failed password for root from 218.92.0.248 port 57701 ssh2 Oct 12 05:53:05 mavik sshd[19883]: Failed password for root from 218.92.0.248 port 57701 ssh2 Oct 12 05:53:09 mavik sshd[19883]: Failed password for root from 218.92.0.248 port 57701 ssh2 ...	2020-10-12 12:58:18
45.142.120.32	attack	(smtpauth) Failed SMTP AUTH login from 45.142.120.32 (RU/Russia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2020-10-12 00:22:58 dovecot_login authenticator failed for (localhost) [45.142.120.32]:31028: 535 Incorrect authentication data (set_id=cardtype@xeoserver.com) 2020-10-12 00:23:05 dovecot_login authenticator failed for (localhost) [45.142.120.32]:8820: 535 Incorrect authentication data (set_id=athena@xeoserver.com) 2020-10-12 00:23:05 dovecot_login authenticator failed for (localhost) [45.142.120.32]:10946: 535 Incorrect authentication data (set_id=vince@xeoserver.com) 2020-10-12 00:23:05 dovecot_login authenticator failed for (localhost) [45.142.120.32]:53238: 535 Incorrect authentication data (set_id=columns@xeoserver.com) 2020-10-12 00:23:16 dovecot_login authenticator failed for (localhost) [45.142.120.32]:51138: 535 Incorrect authentication data (set_id=from@xeoserver.com)	2020-10-12 12:28:06
128.199.129.68	attackbots	Oct 12 06:19:09 * sshd[5584]: Failed password for root from 128.199.129.68 port 46240 ssh2	2020-10-12 12:24:59
174.139.21.11	attackspam	UDP 174.139.21.11:60034 -> port 123, len 220	2020-10-12 12:23:58
49.233.150.38	attack	Oct 12 09:01:56 gw1 sshd[1691]: Failed password for root from 49.233.150.38 port 58464 ssh2 ...	2020-10-12 12:25:29
148.70.149.39	attack	Oct 12 04:47:44 *** sshd[4974]: User root from 148.70.149.39 not allowed because not listed in AllowUsers	2020-10-12 12:53:33
200.150.77.93	attackspambots	(sshd) Failed SSH login from 200.150.77.93 (BR/Brazil/93.77.150.200.static.copel.net): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 16:45:48 optimus sshd[6249]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.150.77.93 user=root Oct 11 16:45:50 optimus sshd[6249]: Failed password for root from 200.150.77.93 port 55695 ssh2 Oct 11 16:49:48 optimus sshd[7880]: Invalid user lukas from 200.150.77.93 Oct 11 16:49:48 optimus sshd[7880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.150.77.93 Oct 11 16:49:50 optimus sshd[7880]: Failed password for invalid user lukas from 200.150.77.93 port 57470 ssh2	2020-10-12 12:23:40
122.139.214.22	attackspambots	81/tcp [2020-10-11]1pkt	2020-10-12 12:36:35
61.148.56.158	attackspam	Oct 12 04:51:37 server sshd[16877]: Failed password for root from 61.148.56.158 port 4329 ssh2 Oct 12 04:55:25 server sshd[18885]: Failed password for invalid user jimmy from 61.148.56.158 port 4330 ssh2 Oct 12 04:59:16 server sshd[20927]: Failed password for invalid user valerie from 61.148.56.158 port 4331 ssh2	2020-10-12 12:39:24
172.217.10.142	attackspambots	TERRORIST SPAM MAIL FROM YAHOO.COM AND OATH.COM WITH AN ORIGINATING EMAIL ON GMAIL.COM AND GOOGLE.COM OF drabidibelloPhdd@gmail.com AND A REPLY TO EMAIL ON GMAIL.COM AND GOOGLE.COM OF drabidibello@gmail.com	2020-10-12 13:01:43
83.48.89.147	attackbots	$f2bV_matches	2020-10-12 12:32:12
123.130.39.167	attackbots	1023/tcp [2020-10-11]1pkt	2020-10-12 12:36:08

最近上报的IP列表

106.107.132.19	180.93.72.247	123.148.243.234	103.250.166.16
167.172.121.251	123.148.241.159	107.191.55.41	60.178.75.20
177.46.141.143	106.107.131.18	103.221.74.58	192.241.216.57
107.170.254.146	138.68.61.182	129.226.179.66	37.214.24.106
11.226.157.201	123.225.151.109	89.127.109.130	229.59.104.190