106.12.75.148 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Port 1433 Scan	2019-06-25 18:26:20
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-06-23 23:07:46

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.75.43	attack	Aug 4 06:56:40 Tower sshd[41632]: refused connect from 163.172.133.23 (163.172.133.23) Aug 5 03:57:31 Tower sshd[41632]: Connection from 106.12.75.43 port 41724 on 192.168.10.220 port 22 rdomain "" Aug 5 03:57:33 Tower sshd[41632]: Failed password for root from 106.12.75.43 port 41724 ssh2 Aug 5 03:57:34 Tower sshd[41632]: Received disconnect from 106.12.75.43 port 41724:11: Bye Bye [preauth] Aug 5 03:57:34 Tower sshd[41632]: Disconnected from authenticating user root 106.12.75.43 port 41724 [preauth]	2020-08-05 17:02:49
106.12.75.43	attack	Jul 25 18:48:57 vps647732 sshd[8716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.75.43 Jul 25 18:48:59 vps647732 sshd[8716]: Failed password for invalid user sven from 106.12.75.43 port 58096 ssh2 ...	2020-07-26 02:10:43
106.12.75.43	attackbotsspam	Jul 19 02:55:28 firewall sshd[9042]: Invalid user kkm from 106.12.75.43 Jul 19 02:55:30 firewall sshd[9042]: Failed password for invalid user kkm from 106.12.75.43 port 46802 ssh2 Jul 19 02:58:41 firewall sshd[9099]: Invalid user minecraft from 106.12.75.43 ...	2020-07-19 15:33:47
106.12.75.43	attackbots	Jul 11 09:40:34 l03 sshd[32731]: Invalid user vilette from 106.12.75.43 port 51810 ...	2020-07-11 19:25:28
106.12.75.43	attackspambots	Invalid user alan from 106.12.75.43 port 52794	2020-06-20 12:48:06
106.12.75.60	attackspambots	$f2bV_matches	2020-05-16 05:29:21
106.12.75.60	attackbots	May 11 23:37:32 vpn01 sshd[15728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.75.60 May 11 23:37:35 vpn01 sshd[15728]: Failed password for invalid user test from 106.12.75.60 port 58938 ssh2 ...	2020-05-12 05:53:12
106.12.75.60	attackspam	ssh brute force	2020-05-07 14:58:10
106.12.75.175	attack	(sshd) Failed SSH login from 106.12.75.175 (CN/China/-): 5 in the last 3600 secs	2020-04-18 19:31:28
106.12.75.175	attackspam	Apr 11 07:39:04 eventyay sshd[2155]: Failed password for root from 106.12.75.175 port 41600 ssh2 Apr 11 07:42:26 eventyay sshd[2268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.75.175 Apr 11 07:42:28 eventyay sshd[2268]: Failed password for invalid user glassfish from 106.12.75.175 port 52978 ssh2 ...	2020-04-11 13:44:20
106.12.75.175	attackbots	Apr 10 20:01:13 h1745522 sshd[9889]: Invalid user talhilya from 106.12.75.175 port 48988 Apr 10 20:01:13 h1745522 sshd[9889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.75.175 Apr 10 20:01:13 h1745522 sshd[9889]: Invalid user talhilya from 106.12.75.175 port 48988 Apr 10 20:01:14 h1745522 sshd[9889]: Failed password for invalid user talhilya from 106.12.75.175 port 48988 ssh2 Apr 10 20:05:30 h1745522 sshd[9980]: Invalid user jenkins from 106.12.75.175 port 45950 Apr 10 20:05:30 h1745522 sshd[9980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.75.175 Apr 10 20:05:30 h1745522 sshd[9980]: Invalid user jenkins from 106.12.75.175 port 45950 Apr 10 20:05:33 h1745522 sshd[9980]: Failed password for invalid user jenkins from 106.12.75.175 port 45950 ssh2 Apr 10 20:09:21 h1745522 sshd[10154]: Invalid user mysftp from 106.12.75.175 port 42940 ...	2020-04-11 02:15:28
106.12.75.175	attack	Apr 8 09:57:01 [HOSTNAME] sshd[25985]: Invalid user nithya from 106.12.75.175 port 56360 Apr 8 09:57:01 [HOSTNAME] sshd[25985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.75.175 Apr 8 09:57:03 [HOSTNAME] sshd[25985]: Failed password for invalid user nithya from 106.12.75.175 port 56360 ssh2 ...	2020-04-08 18:22:41
106.12.75.175	attackspambots	Invalid user eden from 106.12.75.175 port 54528	2020-04-05 15:06:45
106.12.75.175	attackbots	Apr 3 18:56:23 vlre-nyc-1 sshd\[20381\]: Invalid user lijinming from 106.12.75.175 Apr 3 18:56:23 vlre-nyc-1 sshd\[20381\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.75.175 Apr 3 18:56:25 vlre-nyc-1 sshd\[20381\]: Failed password for invalid user lijinming from 106.12.75.175 port 38690 ssh2 Apr 3 19:00:43 vlre-nyc-1 sshd\[20465\]: Invalid user ubuntu from 106.12.75.175 Apr 3 19:00:43 vlre-nyc-1 sshd\[20465\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.75.175 ...	2020-04-04 03:58:13
106.12.75.175	attackbots	$f2bV_matches	2020-04-03 04:20:01

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.75.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41534
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.75.148.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062300 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jun 23 23:07:28 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 148.75.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 148.75.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
51.91.157.114	attackbotsspam	Mar 29 23:20:56 h2646465 sshd[16085]: Invalid user bmu from 51.91.157.114 Mar 29 23:20:56 h2646465 sshd[16085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.157.114 Mar 29 23:20:56 h2646465 sshd[16085]: Invalid user bmu from 51.91.157.114 Mar 29 23:20:58 h2646465 sshd[16085]: Failed password for invalid user bmu from 51.91.157.114 port 40966 ssh2 Mar 29 23:32:28 h2646465 sshd[18302]: Invalid user git from 51.91.157.114 Mar 29 23:32:28 h2646465 sshd[18302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.157.114 Mar 29 23:32:28 h2646465 sshd[18302]: Invalid user git from 51.91.157.114 Mar 29 23:32:30 h2646465 sshd[18302]: Failed password for invalid user git from 51.91.157.114 port 39584 ssh2 Mar 29 23:37:01 h2646465 sshd[19193]: Invalid user fez from 51.91.157.114 ...	2020-03-30 06:49:07
110.35.173.103	attackspam	Mar 29 19:32:57 firewall sshd[28514]: Invalid user xnr from 110.35.173.103 Mar 29 19:32:59 firewall sshd[28514]: Failed password for invalid user xnr from 110.35.173.103 port 51866 ssh2 Mar 29 19:36:46 firewall sshd[28728]: Invalid user edy from 110.35.173.103 ...	2020-03-30 06:46:26
91.103.27.235	attackbots	Mar 30 00:36:42 jane sshd[8367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.103.27.235 Mar 30 00:36:43 jane sshd[8367]: Failed password for invalid user kichida from 91.103.27.235 port 55326 ssh2 ...	2020-03-30 06:40:05
93.29.187.145	attackbots	Mar 30 00:36:01 eventyay sshd[29808]: Failed password for mail from 93.29.187.145 port 33334 ssh2 Mar 30 00:39:37 eventyay sshd[29923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.29.187.145 Mar 30 00:39:39 eventyay sshd[29923]: Failed password for invalid user pietre from 93.29.187.145 port 53256 ssh2 ...	2020-03-30 07:00:48
145.239.198.218	attackbots	Invalid user chendaocheng from 145.239.198.218 port 36276	2020-03-30 06:44:50
14.146.95.177	attackbotsspam	trying to access non-authorized port	2020-03-30 07:09:08
218.146.168.239	attackbotsspam	Mar 30 00:57:38 odroid64 sshd\[31278\]: Invalid user applmgr from 218.146.168.239 Mar 30 00:57:38 odroid64 sshd\[31278\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.146.168.239 ...	2020-03-30 07:15:25
148.227.224.50	attack	SSH/22 MH Probe, BF, Hack -	2020-03-30 07:05:21
49.233.90.108	attack	Mar 29 21:52:24 game-panel sshd[30453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.90.108 Mar 29 21:52:26 game-panel sshd[30453]: Failed password for invalid user ru from 49.233.90.108 port 56158 ssh2 Mar 29 21:56:16 game-panel sshd[30633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.90.108	2020-03-30 07:03:59
51.36.249.89	attack	Brute force attack against VPN service	2020-03-30 07:11:36
89.248.172.16	attackbots	Automatic report - Banned IP Access	2020-03-30 07:12:22
84.38.184.53	attackspam	03/29/2020-17:32:30.082392 84.38.184.53 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-03-30 07:03:21
211.252.87.90	attack	2020-03-29T21:24:43.862324abusebot-2.cloudsearch.cf sshd[30138]: Invalid user www from 211.252.87.90 port 28596 2020-03-29T21:24:43.868205abusebot-2.cloudsearch.cf sshd[30138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.252.87.90 2020-03-29T21:24:43.862324abusebot-2.cloudsearch.cf sshd[30138]: Invalid user www from 211.252.87.90 port 28596 2020-03-29T21:24:46.269710abusebot-2.cloudsearch.cf sshd[30138]: Failed password for invalid user www from 211.252.87.90 port 28596 ssh2 2020-03-29T21:32:44.832039abusebot-2.cloudsearch.cf sshd[30636]: Invalid user admin from 211.252.87.90 port 28621 2020-03-29T21:32:44.840513abusebot-2.cloudsearch.cf sshd[30636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.252.87.90 2020-03-29T21:32:44.832039abusebot-2.cloudsearch.cf sshd[30636]: Invalid user admin from 211.252.87.90 port 28621 2020-03-29T21:32:46.941015abusebot-2.cloudsearch.cf sshd[30636]: Failed passw ...	2020-03-30 06:46:47
99.99.139.67	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/99.99.139.67/ US - 1H : (61) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN7018 IP : 99.99.139.67 CIDR : 99.96.0.0/13 PREFIX COUNT : 9621 UNIQUE IP COUNT : 81496832 ATTACKS DETECTED ASN7018 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 4 DateTime : 2020-03-29 23:32:51 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2020-03-30 06:42:51
118.25.49.119	attackspam	$f2bV_matches	2020-03-30 07:06:07

最近上报的IP列表

165.0.167.194	195.54.26.70	149.70.120.155	104.196.44.114
223.76.102.208	184.253.159.81	115.154.94.157	175.183.87.97
95.59.55.212	234.36.194.144	144.67.47.231	174.138.58.136
252.64.54.201	179.85.48.166	24.99.220.179	184.126.219.95
69.156.134.171	58.81.123.25	172.87.146.107	23.94.16.121