106.44.99.8 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Hunan Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 106.44.99.8 to port 1433 [J]	2020-03-02 03:07:27

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.44.99.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43054
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.44.99.8.			IN	A

;; AUTHORITY SECTION:
.			323	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030101 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 02 03:07:24 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 8.99.44.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 8.99.44.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
190.211.141.217	attackbotsspam	Oct 11 00:04:13 kapalua sshd\[5816\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.211.141.217 user=root Oct 11 00:04:15 kapalua sshd\[5816\]: Failed password for root from 190.211.141.217 port 56594 ssh2 Oct 11 00:09:04 kapalua sshd\[6378\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.211.141.217 user=root Oct 11 00:09:06 kapalua sshd\[6378\]: Failed password for root from 190.211.141.217 port 3421 ssh2 Oct 11 00:13:54 kapalua sshd\[6797\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.211.141.217 user=root	2019-10-11 18:51:09
200.70.56.204	attackbots	Oct 11 12:22:42 MK-Soft-VM6 sshd[2557]: Failed password for root from 200.70.56.204 port 56798 ssh2 ...	2019-10-11 18:50:01
116.25.250.255	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/116.25.250.255/ CN - 1H : (518) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 116.25.250.255 CIDR : 116.24.0.0/14 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 WYKRYTE ATAKI Z ASN4134 : 1H - 14 3H - 45 6H - 72 12H - 116 24H - 231 DateTime : 2019-10-11 07:25:40 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-11 18:58:35
50.76.148.93	attack	port 23 attempt blocked	2019-10-11 19:04:06
37.59.51.51	attack	Oct 11 11:39:14 v22018076622670303 sshd\[10809\]: Invalid user anonymous from 37.59.51.51 port 47520 Oct 11 11:39:14 v22018076622670303 sshd\[10809\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.51.51 Oct 11 11:39:16 v22018076622670303 sshd\[10809\]: Failed password for invalid user anonymous from 37.59.51.51 port 47520 ssh2 ...	2019-10-11 19:05:51
51.83.104.120	attackbots	Oct 11 09:19:54 eventyay sshd[5337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.104.120 Oct 11 09:19:57 eventyay sshd[5337]: Failed password for invalid user Centrum_123 from 51.83.104.120 port 35400 ssh2 Oct 11 09:24:02 eventyay sshd[5405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.104.120 ...	2019-10-11 19:11:37
104.248.156.24	attack	pixelfritteuse.de 104.248.156.24 \[11/Oct/2019:05:48:11 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4301 "-" "Mozilla/5.0 $Windows\; U\; Windows NT 5.1\; en-US\; rv:1.9.0.1$ Gecko/2008070208 Firefox/3.0.1" pixelfritteuse.de 104.248.156.24 \[11/Oct/2019:05:48:14 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4301 "-" "Mozilla/5.0 $Windows\; U\; Windows NT 5.1\; en-US\; rv:1.9.0.1$ Gecko/2008070208 Firefox/3.0.1"	2019-10-11 18:39:42
106.13.67.22	attack	SSH Bruteforce attack	2019-10-11 18:40:55
193.31.24.113	attack	10/11/2019-12:26:24.088239 193.31.24.113 Protocol: 6 SURICATA TLS invalid record/traffic	2019-10-11 18:40:06
104.236.112.52	attack	Oct 11 01:31:12 xtremcommunity sshd\[398387\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.112.52 user=root Oct 11 01:31:14 xtremcommunity sshd\[398387\]: Failed password for root from 104.236.112.52 port 33486 ssh2 Oct 11 01:35:41 xtremcommunity sshd\[398474\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.112.52 user=root Oct 11 01:35:43 xtremcommunity sshd\[398474\]: Failed password for root from 104.236.112.52 port 53356 ssh2 Oct 11 01:40:18 xtremcommunity sshd\[398638\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.112.52 user=root ...	2019-10-11 18:28:59
35.0.127.52	attackspambots	$f2bV_matches	2019-10-11 19:07:42
132.232.224.167	attackspam	2019-10-11T09:50:22.516000abusebot-5.cloudsearch.cf sshd\[8955\]: Invalid user support from 132.232.224.167 port 50362	2019-10-11 18:43:47
92.255.193.156	attackspam	SPF Fail sender not permitted to send mail for @ertelecom.ru / Sent mail to target address hacked/leaked from abandonia in 2016	2019-10-11 19:00:34
36.66.120.9	attackspambots	fail2ban honeypot	2019-10-11 19:07:28
49.234.179.127	attackbotsspam	2019-10-11T07:37:42.360731tmaserv sshd\[13085\]: Invalid user test@12 from 49.234.179.127 port 37760 2019-10-11T07:37:42.365994tmaserv sshd\[13085\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.179.127 2019-10-11T07:37:44.432247tmaserv sshd\[13085\]: Failed password for invalid user test@12 from 49.234.179.127 port 37760 ssh2 2019-10-11T07:42:01.779864tmaserv sshd\[13289\]: Invalid user Montecarlo123 from 49.234.179.127 port 44868 2019-10-11T07:42:01.784875tmaserv sshd\[13289\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.179.127 2019-10-11T07:42:04.071980tmaserv sshd\[13289\]: Failed password for invalid user Montecarlo123 from 49.234.179.127 port 44868 ssh2 ...	2019-10-11 18:29:29

最近上报的IP列表

212.124.10.115	125.231.16.201	184.174.182.182	31.106.195.225
140.200.140.131	66.5.158.158	27.77.18.129	181.149.108.120
168.9.150.25	219.96.209.63	167.135.177.154	135.126.104.245
58.2.157.146	136.249.252.36	213.10.66.137	173.73.226.38
138.132.207.252	8.71.14.228	186.88.155.102	108.31.21.72