106.75.103.4 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized connection attempt detected from IP address 106.75.103.4 to port 8361	2020-07-07 03:38:18
attack	Wordpress malicious attack:[sshd]	2020-05-30 12:13:20
attackbotsspam	Invalid user deploy from 106.75.103.4 port 35486	2020-05-15 15:30:38
attackbots	May 13 18:00:50 ns392434 sshd[29621]: Invalid user prince from 106.75.103.4 port 60318 May 13 18:00:50 ns392434 sshd[29621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.103.4 May 13 18:00:50 ns392434 sshd[29621]: Invalid user prince from 106.75.103.4 port 60318 May 13 18:00:52 ns392434 sshd[29621]: Failed password for invalid user prince from 106.75.103.4 port 60318 ssh2 May 13 18:14:46 ns392434 sshd[29991]: Invalid user ubuntu from 106.75.103.4 port 50756 May 13 18:14:46 ns392434 sshd[29991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.103.4 May 13 18:14:46 ns392434 sshd[29991]: Invalid user ubuntu from 106.75.103.4 port 50756 May 13 18:14:48 ns392434 sshd[29991]: Failed password for invalid user ubuntu from 106.75.103.4 port 50756 ssh2 May 13 18:21:09 ns392434 sshd[30153]: Invalid user deploy from 106.75.103.4 port 54942	2020-05-14 02:17:06
attack	SSH Brute-Forcing (server2)	2020-04-21 23:49:16
attack	Apr 18 16:58:14: Invalid user user1 from 106.75.103.4 port 56676	2020-04-19 06:48:58
attackspambots	Apr 17 09:01:56 icinga sshd[53512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.103.4 Apr 17 09:01:59 icinga sshd[53512]: Failed password for invalid user wr from 106.75.103.4 port 40988 ssh2 Apr 17 09:23:19 icinga sshd[22273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.103.4 ...	2020-04-17 16:10:30
attack	SSH bruteforce	2020-04-14 07:46:18
attackspambots	k+ssh-bruteforce	2020-04-04 00:46:08
attack	(sshd) Failed SSH login from 106.75.103.4 (CN/China/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 27 13:45:33 andromeda sshd[3691]: Invalid user ohb from 106.75.103.4 port 52524 Mar 27 13:45:36 andromeda sshd[3691]: Failed password for invalid user ohb from 106.75.103.4 port 52524 ssh2 Mar 27 13:54:34 andromeda sshd[3940]: Invalid user qhn from 106.75.103.4 port 36496	2020-03-27 22:33:54
attack	$f2bV_matches	2020-03-23 16:51:54

相同子网IP讨论:

IP	类型	评论内容	时间
106.75.103.36	attackbotsspam	Invalid user ubuntu from 106.75.103.36 port 38618	2020-05-15 06:47:01
106.75.103.36	attackbots	May 11 05:50:48 srv-ubuntu-dev3 sshd[112590]: Invalid user demouser from 106.75.103.36 May 11 05:50:48 srv-ubuntu-dev3 sshd[112590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.103.36 May 11 05:50:48 srv-ubuntu-dev3 sshd[112590]: Invalid user demouser from 106.75.103.36 May 11 05:50:50 srv-ubuntu-dev3 sshd[112590]: Failed password for invalid user demouser from 106.75.103.36 port 41804 ssh2 May 11 05:55:28 srv-ubuntu-dev3 sshd[113344]: Invalid user cgh from 106.75.103.36 May 11 05:55:28 srv-ubuntu-dev3 sshd[113344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.103.36 May 11 05:55:28 srv-ubuntu-dev3 sshd[113344]: Invalid user cgh from 106.75.103.36 May 11 05:55:30 srv-ubuntu-dev3 sshd[113344]: Failed password for invalid user cgh from 106.75.103.36 port 36066 ssh2 ...	2020-05-11 13:05:32
106.75.103.36	attackbotsspam	May 6 04:18:56 XXX sshd[32992]: Invalid user test from 106.75.103.36 port 42250	2020-05-07 08:28:20
106.75.103.36	attackspambots	SSH brute force attempt	2020-04-29 16:21:54
106.75.103.36	attack	$f2bV_matches	2020-04-23 18:25:14
106.75.103.36	attackbots	Apr 16 18:03:22 prod4 sshd\[20501\]: Invalid user postgres from 106.75.103.36 Apr 16 18:03:24 prod4 sshd\[20501\]: Failed password for invalid user postgres from 106.75.103.36 port 48284 ssh2 Apr 16 18:10:17 prod4 sshd\[23479\]: Failed password for root from 106.75.103.36 port 52886 ssh2 ...	2020-04-17 00:53:54
106.75.103.36	attackbots	Apr 12 23:34:22 v22018086721571380 sshd[15486]: Failed password for invalid user ranger from 106.75.103.36 port 43580 ssh2	2020-04-13 06:01:34
106.75.103.36	attackspam	Mar 31 01:27:04 plex sshd[21003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.103.36 user=root Mar 31 01:27:06 plex sshd[21003]: Failed password for root from 106.75.103.36 port 42362 ssh2	2020-03-31 09:42:07
106.75.103.36	attack	Mar 26 18:17:37 firewall sshd[25069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.103.36 Mar 26 18:17:37 firewall sshd[25069]: Invalid user ewz from 106.75.103.36 Mar 26 18:17:40 firewall sshd[25069]: Failed password for invalid user ewz from 106.75.103.36 port 37480 ssh2 ...	2020-03-27 08:02:04
106.75.103.35	attackspam	Dec 20 19:18:48 pkdns2 sshd\[52742\]: Invalid user user001 from 106.75.103.35Dec 20 19:18:50 pkdns2 sshd\[52742\]: Failed password for invalid user user001 from 106.75.103.35 port 55024 ssh2Dec 20 19:22:52 pkdns2 sshd\[52983\]: Invalid user play from 106.75.103.35Dec 20 19:22:54 pkdns2 sshd\[52983\]: Failed password for invalid user play from 106.75.103.35 port 57994 ssh2Dec 20 19:26:43 pkdns2 sshd\[53218\]: Invalid user radiusd from 106.75.103.35Dec 20 19:26:45 pkdns2 sshd\[53218\]: Failed password for invalid user radiusd from 106.75.103.35 port 60950 ssh2 ...	2019-12-21 04:39:48
106.75.103.35	attack	Dec 6 10:13:37 localhost sshd\[12634\]: Invalid user zori from 106.75.103.35 port 35254 Dec 6 10:13:37 localhost sshd\[12634\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.103.35 Dec 6 10:13:39 localhost sshd\[12634\]: Failed password for invalid user zori from 106.75.103.35 port 35254 ssh2 Dec 6 10:21:09 localhost sshd\[12696\]: Invalid user ms from 106.75.103.35 port 38572	2019-12-20 04:17:15
106.75.103.35	attackspambots	2019-12-08T14:56:25.285593abusebot-5.cloudsearch.cf sshd\[21946\]: Invalid user hp from 106.75.103.35 port 40512	2019-12-08 23:06:57
106.75.103.35	attackbots	Nov 20 06:22:47 php1 sshd\[15821\]: Invalid user boon from 106.75.103.35 Nov 20 06:22:47 php1 sshd\[15821\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.103.35 Nov 20 06:22:49 php1 sshd\[15821\]: Failed password for invalid user boon from 106.75.103.35 port 38076 ssh2 Nov 20 06:27:10 php1 sshd\[16427\]: Invalid user bitrix from 106.75.103.35 Nov 20 06:27:10 php1 sshd\[16427\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.103.35	2019-11-21 03:45:04
106.75.103.35	attackbotsspam	2019-11-14T17:49:27.074795abusebot-5.cloudsearch.cf sshd\[6258\]: Invalid user sabnzbd from 106.75.103.35 port 47974	2019-11-15 05:26:10
106.75.103.35	attackbotsspam	2019-11-02T13:01:46.275730abusebot-5.cloudsearch.cf sshd\[24420\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.103.35 user=bin	2019-11-02 22:44:20

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.103.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9181
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.103.4.			IN	A

;; AUTHORITY SECTION:
.			417	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032300 1800 900 604800 86400

;; Query time: 100 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 23 16:51:49 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 4.103.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 4.103.75.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
141.62.172.2	attackbots	Dec 5 13:03:42 web1 sshd\[20038\]: Invalid user testor from 141.62.172.2 Dec 5 13:03:42 web1 sshd\[20038\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.62.172.2 Dec 5 13:03:44 web1 sshd\[20038\]: Failed password for invalid user testor from 141.62.172.2 port 43735 ssh2 Dec 5 13:09:23 web1 sshd\[20691\]: Invalid user myhill from 141.62.172.2 Dec 5 13:09:23 web1 sshd\[20691\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.62.172.2	2019-12-06 07:34:40
123.136.161.146	attackbots	Triggered by Fail2Ban at Ares web server	2019-12-06 07:24:27
124.239.196.154	attackbotsspam	$f2bV_matches	2019-12-06 07:00:03
151.80.37.18	attackbots	Dec 5 23:55:35 meumeu sshd[9426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.37.18 Dec 5 23:55:36 meumeu sshd[9426]: Failed password for invalid user kaimana from 151.80.37.18 port 40274 ssh2 Dec 6 00:02:20 meumeu sshd[11242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.37.18 ...	2019-12-06 07:32:21
129.28.88.12	attackspambots	Dec 5 22:48:52 zeus sshd[23629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.88.12 Dec 5 22:48:54 zeus sshd[23629]: Failed password for invalid user bitton from 129.28.88.12 port 53146 ssh2 Dec 5 22:55:27 zeus sshd[23787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.88.12 Dec 5 22:55:29 zeus sshd[23787]: Failed password for invalid user arnt from 129.28.88.12 port 56023 ssh2	2019-12-06 07:03:52
51.68.124.181	attack	Dec 5 18:02:05 linuxvps sshd\[54275\]: Invalid user abeler from 51.68.124.181 Dec 5 18:02:05 linuxvps sshd\[54275\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.124.181 Dec 5 18:02:07 linuxvps sshd\[54275\]: Failed password for invalid user abeler from 51.68.124.181 port 52348 ssh2 Dec 5 18:07:27 linuxvps sshd\[57326\]: Invalid user teamspeak3 from 51.68.124.181 Dec 5 18:07:27 linuxvps sshd\[57326\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.124.181	2019-12-06 07:22:21
218.92.0.154	attack	$f2bV_matches	2019-12-06 07:19:23
51.254.129.128	attackspambots	Dec 5 10:45:08 server sshd\[6393\]: Failed password for invalid user trotta from 51.254.129.128 port 43701 ssh2 Dec 6 00:25:48 server sshd\[5720\]: Invalid user waldenmaier from 51.254.129.128 Dec 6 00:25:48 server sshd\[5720\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.ip-51-254-129.eu Dec 6 00:25:50 server sshd\[5720\]: Failed password for invalid user waldenmaier from 51.254.129.128 port 41295 ssh2 Dec 6 00:33:56 server sshd\[7691\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.ip-51-254-129.eu user=ftp ...	2019-12-06 06:57:32
92.118.37.55	attackbotsspam	12/05/2019-18:31:46.067181 92.118.37.55 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-06 07:33:31
59.49.99.124	attackbots	Dec 5 13:03:28 kapalua sshd\[28275\]: Invalid user guest from 59.49.99.124 Dec 5 13:03:28 kapalua sshd\[28275\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.49.99.124 Dec 5 13:03:31 kapalua sshd\[28275\]: Failed password for invalid user guest from 59.49.99.124 port 63977 ssh2 Dec 5 13:08:55 kapalua sshd\[28861\]: Invalid user portal from 59.49.99.124 Dec 5 13:08:55 kapalua sshd\[28861\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.49.99.124	2019-12-06 07:16:15
27.69.242.187	attackspambots	2019-12-05T22:56:07.408113shield sshd\[5378\]: Invalid user ubnt from 27.69.242.187 port 43470 2019-12-05T22:56:07.718207shield sshd\[5378\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.69.242.187 2019-12-05T22:56:09.896624shield sshd\[5378\]: Failed password for invalid user ubnt from 27.69.242.187 port 43470 ssh2 2019-12-05T22:56:10.281815shield sshd\[5388\]: Invalid user admin from 27.69.242.187 port 44540 2019-12-05T22:56:10.517117shield sshd\[5388\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.69.242.187	2019-12-06 07:20:43
139.59.3.151	attackspam	Dec 5 12:09:15 eddieflores sshd\[10294\]: Invalid user gasperino from 139.59.3.151 Dec 5 12:09:15 eddieflores sshd\[10294\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.3.151 Dec 5 12:09:17 eddieflores sshd\[10294\]: Failed password for invalid user gasperino from 139.59.3.151 port 34334 ssh2 Dec 5 12:15:35 eddieflores sshd\[10799\]: Invalid user kortz from 139.59.3.151 Dec 5 12:15:35 eddieflores sshd\[10799\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.3.151	2019-12-06 06:59:44
218.92.0.180	attack	Dec 6 00:21:48 v22018086721571380 sshd[31614]: error: maximum authentication attempts exceeded for root from 218.92.0.180 port 45861 ssh2 [preauth]	2019-12-06 07:26:53
217.69.143.217	attackspambots	Calling not existent HTTP content (400 or 404).	2019-12-06 07:21:14
223.220.159.78	attackspambots	Dec 5 22:48:18 venus sshd\[27566\]: Invalid user guest from 223.220.159.78 port 56943 Dec 5 22:48:18 venus sshd\[27566\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.220.159.78 Dec 5 22:48:20 venus sshd\[27566\]: Failed password for invalid user guest from 223.220.159.78 port 56943 ssh2 ...	2019-12-06 07:00:19

最近上报的IP列表

102.51.252.247	194.61.79.148	9.183.62.8	29.170.113.157
87.166.145.221	179.253.148.243	103.206.113.100	147.123.79.110
45.84.196.224	25.159.62.160	67.170.8.163	204.223.17.97
64.151.64.196	104.144.83.45	19.170.105.157	163.78.238.123
174.235.143.7	178.81.82.93	103.41.208.201	197.188.86.219