106.5.172.242 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
106.5.172.207	attack	Unauthorized connection attempt detected from IP address 106.5.172.207 to port 445 [T]	2020-01-28 09:16:34
106.5.172.77	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-25 17:41:35,575 INFO [shellcode_manager] (106.5.172.77) no match, writing hexdump (f108b8fa8b8908f5065d122544667a75 :2105884) - MS17010 (EternalBlue)	2019-08-26 15:47:50

类型

评论内容

时间

106.5.172.207

attack

Unauthorized connection attempt detected from IP address 106.5.172.207 to port 445 [T]

2020-01-28 09:16:34

106.5.172.77

attackbotsspam

@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-25 17:41:35,575 INFO [shellcode_manager] (106.5.172.77) no match, writing hexdump (f108b8fa8b8908f5065d122544667a75 :2105884) - MS17010 (EternalBlue)

2019-08-26 15:47:50

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.5.172.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8381
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.5.172.242.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400

;; Query time: 82 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 14:39:23 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 242.172.5.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 242.172.5.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
185.175.93.78	attack	firewall-block, port(s): 4500/tcp, 6089/tcp, 9595/tcp	2019-08-24 10:46:37
67.184.64.224	attackspambots	Aug 23 16:15:56 sachi sshd\[23699\]: Invalid user confluence from 67.184.64.224 Aug 23 16:15:56 sachi sshd\[23699\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-67-184-64-224.hsd1.il.comcast.net Aug 23 16:15:57 sachi sshd\[23699\]: Failed password for invalid user confluence from 67.184.64.224 port 50990 ssh2 Aug 23 16:19:59 sachi sshd\[24088\]: Invalid user User from 67.184.64.224 Aug 23 16:19:59 sachi sshd\[24088\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-67-184-64-224.hsd1.il.comcast.net	2019-08-24 10:23:47
150.109.106.224	attackbotsspam	Aug 24 03:08:17 mail sshd\[19260\]: Failed password for invalid user cycle from 150.109.106.224 port 53186 ssh2 Aug 24 03:26:42 mail sshd\[19602\]: Invalid user lee from 150.109.106.224 port 36978 ...	2019-08-24 10:30:51
218.92.0.143	attackspambots	$f2bV_matches	2019-08-24 10:19:40
71.6.158.166	attack	08/23/2019-21:16:14.146815 71.6.158.166 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 71	2019-08-24 10:44:34
132.232.104.35	attack	Aug 24 04:17:05 meumeu sshd[28661]: Failed password for invalid user ana from 132.232.104.35 port 34014 ssh2 Aug 24 04:21:42 meumeu sshd[29167]: Failed password for invalid user hibiz from 132.232.104.35 port 52684 ssh2 Aug 24 04:26:22 meumeu sshd[29805]: Failed password for invalid user mc from 132.232.104.35 port 42816 ssh2 ...	2019-08-24 10:42:59
187.217.199.20	attackspam	Aug 24 01:34:21 ip-172-31-1-72 sshd\[30884\]: Invalid user admin123 from 187.217.199.20 Aug 24 01:34:21 ip-172-31-1-72 sshd\[30884\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.217.199.20 Aug 24 01:34:23 ip-172-31-1-72 sshd\[30884\]: Failed password for invalid user admin123 from 187.217.199.20 port 41986 ssh2 Aug 24 01:39:02 ip-172-31-1-72 sshd\[30961\]: Invalid user python from 187.217.199.20 Aug 24 01:39:02 ip-172-31-1-72 sshd\[30961\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.217.199.20	2019-08-24 10:19:57
45.71.195.151	attackspam	proto=tcp . spt=36585 . dpt=25 . (listed on Blocklist de Aug 23) (169)	2019-08-24 10:25:54
218.1.18.78	attack	Aug 24 04:08:15 legacy sshd[17991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.1.18.78 Aug 24 04:08:17 legacy sshd[17991]: Failed password for invalid user taemspeak4 from 218.1.18.78 port 46147 ssh2 Aug 24 04:11:53 legacy sshd[18059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.1.18.78 ...	2019-08-24 10:39:29
222.186.52.89	attack	Fail2Ban Ban Triggered	2019-08-24 10:53:44
188.166.7.134	attackbots	Aug 23 16:15:47 lcdev sshd\[7452\]: Invalid user v from 188.166.7.134 Aug 23 16:15:47 lcdev sshd\[7452\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.7.134 Aug 23 16:15:49 lcdev sshd\[7452\]: Failed password for invalid user v from 188.166.7.134 port 58350 ssh2 Aug 23 16:19:48 lcdev sshd\[7807\]: Invalid user laureen from 188.166.7.134 Aug 23 16:19:48 lcdev sshd\[7807\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.7.134	2019-08-24 10:21:04
54.222.206.75	attackbotsspam	Aug 24 05:08:45 server sshd\[7360\]: Invalid user gb from 54.222.206.75 port 51620 Aug 24 05:08:45 server sshd\[7360\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.222.206.75 Aug 24 05:08:46 server sshd\[7360\]: Failed password for invalid user gb from 54.222.206.75 port 51620 ssh2 Aug 24 05:11:19 server sshd\[25020\]: Invalid user admin from 54.222.206.75 port 47812 Aug 24 05:11:19 server sshd\[25020\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.222.206.75	2019-08-24 10:24:16
193.112.143.141	attack	2019-08-23T23:09:02.675268mizuno.rwx.ovh sshd[12470]: Connection from 193.112.143.141 port 51790 on 78.46.61.178 port 22 2019-08-23T23:09:05.915910mizuno.rwx.ovh sshd[12470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.143.141 user=root 2019-08-23T23:09:07.834542mizuno.rwx.ovh sshd[12470]: Failed password for root from 193.112.143.141 port 51790 ssh2 2019-08-23T23:26:47.313061mizuno.rwx.ovh sshd[14775]: Connection from 193.112.143.141 port 58394 on 78.46.61.178 port 22 2019-08-23T23:26:49.187136mizuno.rwx.ovh sshd[14775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.143.141 user=root 2019-08-23T23:26:50.844129mizuno.rwx.ovh sshd[14775]: Failed password for root from 193.112.143.141 port 58394 ssh2 ...	2019-08-24 10:45:08
178.128.156.144	attackbotsspam	Aug 24 02:00:43 ip-172-31-5-169 sshd\[30589\]: Invalid user library from 178.128.156.144 Aug 24 02:05:35 ip-172-31-5-169 sshd\[30643\]: Invalid user angelo from 178.128.156.144 Aug 24 02:11:15 ip-172-31-5-169 sshd\[30772\]: Invalid user ftpuser from 178.128.156.144 ...	2019-08-24 10:21:26
49.232.4.151	attackbots	Aug 23 22:27:39 xtremcommunity sshd\[17619\]: Invalid user john from 49.232.4.151 port 43514 Aug 23 22:27:39 xtremcommunity sshd\[17619\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.4.151 Aug 23 22:27:41 xtremcommunity sshd\[17619\]: Failed password for invalid user john from 49.232.4.151 port 43514 ssh2 Aug 23 22:30:09 xtremcommunity sshd\[17733\]: Invalid user lenox from 49.232.4.151 port 35434 Aug 23 22:30:09 xtremcommunity sshd\[17733\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.4.151 ...	2019-08-24 10:56:09

最近上报的IP列表

106.5.143.6	106.5.143.236	106.40.240.75	106.5.172.7
106.5.173.127	106.5.143.215	106.5.174.137	106.5.143.198
106.5.174.47	106.5.202.101	106.5.202.102	106.5.165.225
106.40.240.76	106.5.202.114	106.5.202.116	106.40.240.78
106.40.240.8	106.40.240.81	106.40.240.82	106.40.240.85