106.55.145.125

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Aug 30 03:00:20 web1 sshd\[23673\]: Invalid user cassandra from 106.55.145.125 Aug 30 03:00:20 web1 sshd\[23673\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.145.125 Aug 30 03:00:22 web1 sshd\[23673\]: Failed password for invalid user cassandra from 106.55.145.125 port 57812 ssh2 Aug 30 03:04:29 web1 sshd\[24047\]: Invalid user app from 106.55.145.125 Aug 30 03:04:29 web1 sshd\[24047\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.145.125	2020-08-30 23:33:23

类型

评论内容

时间

attackbotsspam

Aug 30 03:00:20 web1 sshd\[23673\]: Invalid user cassandra from 106.55.145.125
Aug 30 03:00:20 web1 sshd\[23673\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.145.125
Aug 30 03:00:22 web1 sshd\[23673\]: Failed password for invalid user cassandra from 106.55.145.125 port 57812 ssh2
Aug 30 03:04:29 web1 sshd\[24047\]: Invalid user app from 106.55.145.125
Aug 30 03:04:29 web1 sshd\[24047\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.145.125

2020-08-30 23:33:23

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.55.145.125
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4608
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.55.145.125.			IN	A

;; AUTHORITY SECTION:
.			557	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020083000 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Aug 30 23:33:11 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 125.145.55.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 125.145.55.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
46.38.145.249	attack	2020-07-04 00:11:32 auth_plain authenticator failed for (User) [46.38.145.249]: 535 Incorrect authentication data (set_id=webaccess@csmailer.org) 2020-07-04 00:12:15 auth_plain authenticator failed for (User) [46.38.145.249]: 535 Incorrect authentication data (set_id=westus2@csmailer.org) 2020-07-04 00:13:00 auth_plain authenticator failed for (User) [46.38.145.249]: 535 Incorrect authentication data (set_id=culture@csmailer.org) 2020-07-04 00:13:45 auth_plain authenticator failed for (User) [46.38.145.249]: 535 Incorrect authentication data (set_id=dsi@csmailer.org) 2020-07-04 00:14:28 auth_plain authenticator failed for (User) [46.38.145.249]: 535 Incorrect authentication data (set_id=emprego@csmailer.org) ...	2020-07-04 08:18:15
223.247.223.39	attackspambots	Jul 4 01:30:42 PorscheCustomer sshd[11512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.223.39 Jul 4 01:30:44 PorscheCustomer sshd[11512]: Failed password for invalid user xiongjiayu from 223.247.223.39 port 50962 ssh2 Jul 4 01:35:09 PorscheCustomer sshd[11650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.223.39 ...	2020-07-04 07:59:55
222.186.42.137	attack	Jul 4 01:45:35 plex sshd[23680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.137 user=root Jul 4 01:45:36 plex sshd[23680]: Failed password for root from 222.186.42.137 port 14064 ssh2	2020-07-04 07:48:22
138.68.24.88	attackspambots	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-07-04 08:13:36
124.248.225.246	attackbotsspam	124.248.225.246 - - [04/Jul/2020:01:17:44 +0200] "POST /wp-login.php HTTP/1.1" 200 3434 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 124.248.225.246 - - [04/Jul/2020:01:17:47 +0200] "POST /wp-login.php HTTP/1.1" 200 3412 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-04 07:53:25
46.38.145.250	attack	2020-07-03 23:50:33 auth_plain authenticator failed for (User) [46.38.145.250]: 535 Incorrect authentication data (set_id=yuri@mail.csmailer.org) 2020-07-03 23:51:13 auth_plain authenticator failed for (User) [46.38.145.250]: 535 Incorrect authentication data (set_id=happy@mail.csmailer.org) 2020-07-03 23:51:56 auth_plain authenticator failed for (User) [46.38.145.250]: 535 Incorrect authentication data (set_id=portafolio@mail.csmailer.org) 2020-07-03 23:52:45 auth_plain authenticator failed for (User) [46.38.145.250]: 535 Incorrect authentication data (set_id=indicadores@mail.csmailer.org) 2020-07-03 23:53:30 auth_plain authenticator failed for (User) [46.38.145.250]: 535 Incorrect authentication data (set_id=search1@mail.csmailer.org) ...	2020-07-04 07:57:19
116.98.171.215	attackspambots	2020-07-03T23:49:13.965922abusebot-3.cloudsearch.cf sshd[19195]: Invalid user mobile from 116.98.171.215 port 8240 2020-07-03T23:50:03.815065abusebot-3.cloudsearch.cf sshd[19243]: Invalid user user1 from 116.98.171.215 port 55686 2020-07-03T23:50:29.024097abusebot-3.cloudsearch.cf sshd[19248]: Invalid user admin from 116.98.171.215 port 59128 2020-07-03T23:50:31.900045abusebot-3.cloudsearch.cf sshd[19239]: Invalid user contec from 116.98.171.215 port 36058 ...	2020-07-04 07:54:22
134.175.19.71	attackbotsspam	Jul 4 01:13:25 sip sshd[830529]: Invalid user admin123 from 134.175.19.71 port 33906 Jul 4 01:13:26 sip sshd[830529]: Failed password for invalid user admin123 from 134.175.19.71 port 33906 ssh2 Jul 4 01:17:36 sip sshd[830540]: Invalid user anchal from 134.175.19.71 port 49444 ...	2020-07-04 08:02:20
14.183.225.224	attackbots	Honeypot attack, port: 81, PTR: static.vnpt.vn.	2020-07-04 07:52:48
122.51.230.155	attackbots	Jul 4 02:05:02 abendstille sshd\[25517\]: Invalid user vbox from 122.51.230.155 Jul 4 02:05:02 abendstille sshd\[25517\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.230.155 Jul 4 02:05:04 abendstille sshd\[25517\]: Failed password for invalid user vbox from 122.51.230.155 port 46658 ssh2 Jul 4 02:06:33 abendstille sshd\[27113\]: Invalid user svn from 122.51.230.155 Jul 4 02:06:33 abendstille sshd\[27113\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.230.155 ...	2020-07-04 08:17:32
78.175.67.56	attackbots	Telnet Honeypot -> Telnet Bruteforce / Login	2020-07-04 07:49:18
100.16.215.164	attackbots	Honeypot attack, port: 81, PTR: pool-100-16-215-164.bltmmd.fios.verizon.net.	2020-07-04 08:01:29
46.172.216.240	attack	Jul 4 01:17:19 [host] kernel: [10446133.947300] [ Jul 4 01:17:22 [host] kernel: [10446137.000720] [ Jul 4 01:17:23 [host] kernel: [10446137.770780] [ Jul 4 01:17:26 [host] kernel: [10446140.750222] [ Jul 4 01:17:27 [host] kernel: [10446141.651648] [ Jul 4 01:17:33 [host] kernel: [10446147.672826] [	2020-07-04 08:08:52
103.242.186.93	attack	Jul 4 01:17:47 mailserver sshd\[17419\]: Invalid user ftpuser from 103.242.186.93 ...	2020-07-04 07:50:49
60.167.177.139	attackbotsspam	(sshd) Failed SSH login from 60.167.177.139 (CN/China/-): 5 in the last 3600 secs	2020-07-04 08:12:23

最近上报的IP列表

192.90.120.247	89.194.49.60	7.194.144.77	232.221.143.73
27.106.1.241	251.249.22.242	113.207.147.15	191.187.240.75
255.68.68.16	191.20.161.195	64.93.158.254	111.88.231.159
36.69.8.2	113.184.70.74	78.189.110.225	46.35.180.7
193.112.111.207	35.240.85.177	190.209.43.70	43.226.148.1