106.74.128.134

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.74.128.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23497
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.74.128.134.			IN	A

;; AUTHORITY SECTION:
.			427	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022202 1800 900 604800 86400

;; Query time: 25 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 23 13:02:56 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

134.128.74.106.in-addr.arpa has no PTR record

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 134.128.74.106.in-addr.arpa.: No answer

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
45.148.121.137	attackspambots	TCP (SYN) 45.148.121.137:51480 -> port 443, len 40	2020-08-20 17:51:50
45.148.122.152	attackbots	srvr2: (mod_security) mod_security (id:920350) triggered by 45.148.122.152 (NL/-/-): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/20 11:13:40 [error] 638737#0: 617965 [client 45.148.122.152] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/index.php"] [unique_id "159791482020.375694"] [ref "o0,13v30,13"], client: 45.148.122.152, [redacted] request: "GET /index.php HTTP/1.1" [redacted]	2020-08-20 17:47:16
218.56.160.82	attack	Aug 20 09:13:52 vserver sshd\[31436\]: Failed password for root from 218.56.160.82 port 37292 ssh2Aug 20 09:15:31 vserver sshd\[31457\]: Invalid user admin from 218.56.160.82Aug 20 09:15:33 vserver sshd\[31457\]: Failed password for invalid user admin from 218.56.160.82 port 41940 ssh2Aug 20 09:17:07 vserver sshd\[31481\]: Invalid user ops from 218.56.160.82 ...	2020-08-20 17:50:16
106.12.33.174	attackspambots	Aug 20 07:41:09 home sshd[2038809]: Failed password for invalid user peter from 106.12.33.174 port 38262 ssh2 Aug 20 07:45:22 home sshd[2040170]: Invalid user ftpuser from 106.12.33.174 port 58466 Aug 20 07:45:22 home sshd[2040170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.33.174 Aug 20 07:45:22 home sshd[2040170]: Invalid user ftpuser from 106.12.33.174 port 58466 Aug 20 07:45:24 home sshd[2040170]: Failed password for invalid user ftpuser from 106.12.33.174 port 58466 ssh2 ...	2020-08-20 17:21:11
190.230.235.89	attackspam	(mod_security) mod_security (id:20000005) triggered by 190.230.235.89 (AR/Argentina/host89.190-230-235.telecom.net.ar): 5 in the last 300 secs	2020-08-20 17:31:01
185.50.25.34	attackbots	185.50.25.34 - - \[20/Aug/2020:06:57:02 +0200\] "POST /wp-login.php HTTP/1.0" 200 3149 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 185.50.25.34 - - \[20/Aug/2020:06:57:04 +0200\] "POST /wp-login.php HTTP/1.0" 200 3115 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 185.50.25.34 - - \[20/Aug/2020:06:57:06 +0200\] "POST /wp-login.php HTTP/1.0" 200 3111 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-08-20 17:24:10
195.144.205.25	attackbotsspam	SSH Brute Force	2020-08-20 17:25:56
111.230.233.91	attackspam	$f2bV_matches	2020-08-20 18:01:19
119.18.153.154	attackspambots	Dovecot Invalid User Login Attempt.	2020-08-20 17:40:10
54.38.65.55	attack	fail2ban detected brute force on sshd	2020-08-20 17:22:34
179.93.149.17	attackspam	k+ssh-bruteforce	2020-08-20 17:33:33
200.194.6.214	attackbots	Automatic report - Port Scan Attack	2020-08-20 17:21:54
222.186.175.215	attackbots	Aug 20 10:06:36 vps639187 sshd\[22127\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.215 user=root Aug 20 10:06:38 vps639187 sshd\[22127\]: Failed password for root from 222.186.175.215 port 50766 ssh2 Aug 20 10:06:46 vps639187 sshd\[22127\]: Failed password for root from 222.186.175.215 port 50766 ssh2 ...	2020-08-20 17:36:58
188.226.131.171	attack	Invalid user test from 188.226.131.171 port 36468	2020-08-20 17:56:29
167.71.196.176	attackbotsspam	Aug 20 08:16:01 plg sshd[11806]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.196.176 Aug 20 08:16:03 plg sshd[11806]: Failed password for invalid user jiangtao from 167.71.196.176 port 37436 ssh2 Aug 20 08:18:37 plg sshd[11837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.196.176 Aug 20 08:18:38 plg sshd[11837]: Failed password for invalid user name from 167.71.196.176 port 44840 ssh2 Aug 20 08:21:19 plg sshd[11868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.196.176 Aug 20 08:21:21 plg sshd[11868]: Failed password for invalid user jetty from 167.71.196.176 port 52248 ssh2 ...	2020-08-20 17:28:26

最近上报的IP列表

106.75.104.248	106.75.6.162	106.75.189.127	106.75.72.218
106.75.60.234	106.75.163.240	106.8.89.92	106.75.73.53
107.148.13.227	13.81.111.75	107.148.133.90	107.148.151.75
107.148.151.5	107.148.211.195	107.148.208.5	107.148.151.51
104.84.92.10	107.154.248.183	107.154.239.96	107.154.81.21