106.118.200.5 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Hebei Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Jan 4 05:44:38 debian-2gb-nbg1-2 kernel: \[372403.598511\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=106.118.200.5 DST=195.201.40.59 LEN=60 TOS=0x00 PREC=0x00 TTL=50 ID=65292 DF PROTO=TCP SPT=28879 DPT=23 WINDOW=14520 RES=0x00 SYN URGP=0	2020-01-04 20:57:36

类型

评论内容

时间

attackspambots

Jan  4 05:44:38 debian-2gb-nbg1-2 kernel: \[372403.598511\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=106.118.200.5 DST=195.201.40.59 LEN=60 TOS=0x00 PREC=0x00 TTL=50 ID=65292 DF PROTO=TCP SPT=28879 DPT=23 WINDOW=14520 RES=0x00 SYN URGP=0

2020-01-04 20:57:36

相同子网IP讨论:

IP	类型	评论内容	时间
106.118.200.245	attackbotsspam	Unauthorized connection attempt detected from IP address 106.118.200.245 to port 23 [J]	2020-01-23 00:56:22
106.118.200.52	attack	Unauthorized connection attempt detected from IP address 106.118.200.52 to port 23 [J]	2020-01-20 08:11:33

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.118.200.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10239
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.118.200.5.			IN	A

;; AUTHORITY SECTION:
.			396	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010400 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 04 20:57:28 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 5.200.118.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 5.200.118.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
179.7.192.38	attackspam	Feb 3 16:51:53 grey postfix/smtpd\[32647\]: NOQUEUE: reject: RCPT from unknown\[179.7.192.38\]: 554 5.7.1 Service unavailable\; Client host \[179.7.192.38\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=179.7.192.38\; from=\ to=\ proto=ESMTP helo=\<\[179.7.192.38\]\> ...	2020-02-04 05:17:31
139.226.85.191	attack	Unauthorized connection attempt detected from IP address 139.226.85.191 to port 23 [J]	2020-02-04 05:01:04
123.57.10.7	attackspambots	Unauthorized connection attempt detected from IP address 123.57.10.7 to port 1433 [J]	2020-02-04 05:22:17
128.199.202.206	attackspam	Unauthorized connection attempt detected from IP address 128.199.202.206 to port 2220 [J]	2020-02-04 05:21:38
134.175.121.80	attackbotsspam	Unauthorized connection attempt detected from IP address 134.175.121.80 to port 2220 [J]	2020-02-04 05:01:26
187.36.16.224	attack	Unauthorized connection attempt detected from IP address 187.36.16.224 to port 1433 [J]	2020-02-04 05:14:09
194.8.159.176	attack	Unauthorized connection attempt detected from IP address 194.8.159.176 to port 8080 [J]	2020-02-04 04:52:14
67.205.153.16	attackspambots	Feb 3 22:14:10 dedicated sshd[2140]: Invalid user tom from 67.205.153.16 port 34060 Feb 3 22:14:10 dedicated sshd[2140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.153.16 Feb 3 22:14:10 dedicated sshd[2140]: Invalid user tom from 67.205.153.16 port 34060 Feb 3 22:14:12 dedicated sshd[2140]: Failed password for invalid user tom from 67.205.153.16 port 34060 ssh2 Feb 3 22:18:55 dedicated sshd[3130]: Invalid user developer from 67.205.153.16 port 58740	2020-02-04 05:29:45
103.209.176.170	attackbotsspam	Unauthorized connection attempt detected from IP address 103.209.176.170 to port 80 [J]	2020-02-04 05:27:00
190.252.228.155	attackbotsspam	Unauthorized connection attempt detected from IP address 190.252.228.155 to port 81 [J]	2020-02-04 04:53:32
103.255.74.231	attack	Unauthorized connection attempt detected from IP address 103.255.74.231 to port 23 [J]	2020-02-04 05:26:34
50.250.116.235	attack	Feb 3 20:23:27 MK-Soft-VM3 sshd[31159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.250.116.235 Feb 3 20:23:30 MK-Soft-VM3 sshd[31159]: Failed password for invalid user you from 50.250.116.235 port 40082 ssh2 ...	2020-02-04 05:07:16
23.31.126.140	attackspambots	Unauthorized connection attempt detected from IP address 23.31.126.140 to port 23 [J]	2020-02-04 05:10:49
106.12.52.98	attack	Unauthorized connection attempt detected from IP address 106.12.52.98 to port 2220 [J]	2020-02-04 05:25:41
3.87.225.158	attackspam	Unauthorized connection attempt detected from IP address 3.87.225.158 to port 22 [J]	2020-02-04 05:11:21

最近上报的IP列表

94.54.38.9	149.253.116.60	195.236.38.40	175.146.92.120
215.186.118.46	59.243.229.25	205.20.224.220	27.97.101.78
83.65.104.166	76.5.5.182	170.57.198.149	57.83.16.79
153.44.112.37	199.171.2.7	216.103.161.38	73.97.1.218
85.8.251.36	187.169.38.95	169.153.25.27	118.252.31.203