106.75.133.221

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Invalid user es from 106.75.133.221 port 49682	2020-04-22 02:36:36
attack	Invalid user es from 106.75.133.221 port 49682	2020-04-20 21:43:33

相同子网IP讨论:

IP	类型	评论内容	时间
106.75.133.250	attackspam	Invalid user zabbix from 106.75.133.250 port 58955	2020-08-30 16:23:38
106.75.133.250	attack	Aug 26 01:07:07 lukav-desktop sshd\[11434\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.133.250 user=root Aug 26 01:07:09 lukav-desktop sshd\[11434\]: Failed password for root from 106.75.133.250 port 56879 ssh2 Aug 26 01:11:19 lukav-desktop sshd\[20421\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.133.250 user=root Aug 26 01:11:21 lukav-desktop sshd\[20421\]: Failed password for root from 106.75.133.250 port 60418 ssh2 Aug 26 01:15:33 lukav-desktop sshd\[2980\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.133.250 user=root	2020-08-26 07:44:16
106.75.133.250	attack	Aug 17 21:03:09 pixelmemory sshd[2640411]: Invalid user sambauser from 106.75.133.250 port 47187 Aug 17 21:03:09 pixelmemory sshd[2640411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.133.250 Aug 17 21:03:09 pixelmemory sshd[2640411]: Invalid user sambauser from 106.75.133.250 port 47187 Aug 17 21:03:11 pixelmemory sshd[2640411]: Failed password for invalid user sambauser from 106.75.133.250 port 47187 ssh2 Aug 17 21:08:08 pixelmemory sshd[2641493]: Invalid user ping from 106.75.133.250 port 50787 ...	2020-08-18 12:25:07
106.75.133.250	attackspambots	Ssh brute force	2020-07-22 09:38:57
106.75.133.250	attackbots	Jul 7 21:39:56 rocket sshd[6721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.133.250 Jul 7 21:39:58 rocket sshd[6721]: Failed password for invalid user sato from 106.75.133.250 port 49570 ssh2 ...	2020-07-08 05:03:43
106.75.133.250	attackbotsspam	20 attempts against mh-ssh on cloud	2020-07-06 03:50:47
106.75.133.250	attackspambots	SSH Brute Force	2020-07-05 21:02:49
106.75.133.250	attack	Jun 29 08:03:17 vps639187 sshd\[6423\]: Invalid user etluser from 106.75.133.250 port 37475 Jun 29 08:03:17 vps639187 sshd\[6423\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.133.250 Jun 29 08:03:19 vps639187 sshd\[6423\]: Failed password for invalid user etluser from 106.75.133.250 port 37475 ssh2 ...	2020-06-29 14:13:22
106.75.133.250	attackbots	Jun 9 18:35:14 roki-contabo sshd\[14460\]: Invalid user gyy from 106.75.133.250 Jun 9 18:35:14 roki-contabo sshd\[14460\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.133.250 Jun 9 18:35:16 roki-contabo sshd\[14460\]: Failed password for invalid user gyy from 106.75.133.250 port 54457 ssh2 Jun 9 18:45:10 roki-contabo sshd\[14820\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.133.250 user=root Jun 9 18:45:12 roki-contabo sshd\[14820\]: Failed password for root from 106.75.133.250 port 42937 ssh2 ...	2020-06-10 01:35:19
106.75.133.250	attackbotsspam	$f2bV_matches	2020-05-31 13:24:04
106.75.133.250	attackspam	Invalid user cobo from 106.75.133.250 port 56937	2020-05-12 02:55:09

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.133.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6515
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.133.221.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041702 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 20 21:43:26 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 221.133.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 221.133.75.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
49.7.14.184	attack	Jun 12 14:06:21 mail sshd[30234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.7.14.184 user=root Jun 12 14:06:23 mail sshd[30234]: Failed password for root from 49.7.14.184 port 35858 ssh2 ...	2020-06-12 23:05:43
46.38.145.249	attackbotsspam	Jun 12 16:34:42 v22019058497090703 postfix/smtpd[19933]: warning: unknown[46.38.145.249]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 12 16:36:19 v22019058497090703 postfix/smtpd[23766]: warning: unknown[46.38.145.249]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 12 16:37:48 v22019058497090703 postfix/smtpd[23766]: warning: unknown[46.38.145.249]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-12 22:39:45
110.45.147.77	attackspam	Jun 12 13:06:29 ajax sshd[16066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.45.147.77 Jun 12 13:06:31 ajax sshd[16066]: Failed password for invalid user W@chtw00rd123! from 110.45.147.77 port 34990 ssh2	2020-06-12 22:56:57
45.227.254.18	attackspam	Here more information about 45.227.254.18 info: [Panama] 51852 Private Layer INC rDNS: hostby.xwinnet.biz Connected: 12 servere(s) Reason: ssh Portscan/portflood Ports: 20,22,23,81,110,135,143,993 Services: imaps,ftp-data,pop3,telnet,loc-srv,hosts2-ns,ssh,imap servere: Europe/Moscow (UTC+3) Found at blocklist: zen.spamhaus.org, spfbl.net, abuseIPDB.com myIP:89.179.244.250 [2020-06-10 02:23:10] (tcp) myIP:993 <- 45.227.254.18:48363 [2020-06-10 04:05:15] (tcp) myIP:20 <- 45.227.254.18:48363 [2020-06-10 10:56:14] (tcp) myIP:110 <- 45.227.254.18:52766 [2020-06-10 15:39:39] (tcp) myIP:993 <- 45.227.254.18:52766 [2020-06-10 15:49:31] (tcp) myIP:20 <- 45.227.254.18:52766 [2020-06-10 16:13:00] (tcp) myIP:23 <- 45.227.254.18:52766 [2020-06-10 17:48:21] (tcp) myIP:135 <- 45.227.254.18:52766 [2020-06-10 20:02:25] (tcp) myIP:81 <- 45.227.254.18:52766 [2020-06-10 20:08:07] (tcp) myIP:22 <- 45.227.254.18:52766 [2020-06-10 21:26:56] (tcp) myIP:22 <- 45.227.254.18:52766 [2........ ---------------------------------	2020-06-12 22:26:45
178.128.144.14	attackspam	Jun 12 21:14:45 webhost01 sshd[11663]: Failed password for root from 178.128.144.14 port 35616 ssh2 ...	2020-06-12 22:32:00
200.108.143.6	attackspam	$f2bV_matches	2020-06-12 22:55:04
106.13.173.73	attack	Jun 12 10:31:26 ny01 sshd[12022]: Failed password for root from 106.13.173.73 port 47984 ssh2 Jun 12 10:32:34 ny01 sshd[12173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.173.73 Jun 12 10:32:36 ny01 sshd[12173]: Failed password for invalid user marte from 106.13.173.73 port 59654 ssh2	2020-06-12 22:41:48
125.124.58.206	attackspam	Jun 12 14:01:02 vps sshd[23019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.58.206 Jun 12 14:01:05 vps sshd[23019]: Failed password for invalid user siska from 125.124.58.206 port 37917 ssh2 Jun 12 14:06:46 vps sshd[23500]: Failed password for root from 125.124.58.206 port 33487 ssh2 ...	2020-06-12 22:39:15
113.141.166.40	attackbots	"fail2ban match"	2020-06-12 23:00:54
222.186.15.158	attack	Jun 12 16:25:51 minden010 sshd[12862]: Failed password for root from 222.186.15.158 port 10699 ssh2 Jun 12 16:25:54 minden010 sshd[12862]: Failed password for root from 222.186.15.158 port 10699 ssh2 Jun 12 16:25:57 minden010 sshd[12862]: Failed password for root from 222.186.15.158 port 10699 ssh2 ...	2020-06-12 22:26:23
51.222.16.194	attackbotsspam	Jun 12 14:06:35 santamaria sshd\[23865\]: Invalid user riakcs from 51.222.16.194 Jun 12 14:06:35 santamaria sshd\[23865\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.222.16.194 Jun 12 14:06:37 santamaria sshd\[23865\]: Failed password for invalid user riakcs from 51.222.16.194 port 38950 ssh2 ...	2020-06-12 22:50:33
159.65.158.30	attackbots	Jun 12 15:37:20 PorscheCustomer sshd[17904]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.158.30 Jun 12 15:37:22 PorscheCustomer sshd[17904]: Failed password for invalid user sunny123 from 159.65.158.30 port 43900 ssh2 Jun 12 15:38:19 PorscheCustomer sshd[17921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.158.30 ...	2020-06-12 22:27:28
14.172.161.165	attackbotsspam	Port probing on unauthorized port 445	2020-06-12 22:51:11
220.129.225.69	attackspam	1591963606 - 06/12/2020 14:06:46 Host: 220.129.225.69/220.129.225.69 Port: 445 TCP Blocked	2020-06-12 22:42:51
106.13.25.198	attack	Jun 12 08:07:01 Tower sshd[15951]: Connection from 106.13.25.198 port 32860 on 192.168.10.220 port 22 rdomain "" Jun 12 08:07:04 Tower sshd[15951]: Invalid user wangzl from 106.13.25.198 port 32860 Jun 12 08:07:04 Tower sshd[15951]: error: Could not get shadow information for NOUSER Jun 12 08:07:04 Tower sshd[15951]: Failed password for invalid user wangzl from 106.13.25.198 port 32860 ssh2 Jun 12 08:07:04 Tower sshd[15951]: Received disconnect from 106.13.25.198 port 32860:11: Bye Bye [preauth] Jun 12 08:07:04 Tower sshd[15951]: Disconnected from invalid user wangzl 106.13.25.198 port 32860 [preauth]	2020-06-12 22:25:20

最近上报的IP列表

61.69.65.4	240.61.240.80	198.202.53.94	129.46.216.53
15.22.173.104	1.48.125.198	175.226.177.216	253.60.241.56
82.189.223.116	82.148.18.176	62.72.236.2	61.19.23.170
51.89.164.153	49.235.172.132	41.233.223.121	35.234.62.37
14.187.127.172	3.215.180.19	223.240.80.31	220.156.170.176