106.75.142.8 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Brute conection	2024-03-20 21:23:14

相同子网IP讨论:

IP	类型	评论内容	时间
106.75.142.149	attack	Aug 17 08:23:43 mail sshd\[2200\]: Failed password for invalid user pad from 106.75.142.149 port 43168 ssh2 Aug 17 08:43:57 mail sshd\[2739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.142.149 user=root ...	2019-08-17 15:47:33

类型

评论内容

时间

106.75.142.149

attack

Aug 17 08:23:43 mail sshd\[2200\]: Failed password for invalid user pad from 106.75.142.149 port 43168 ssh2
Aug 17 08:43:57 mail sshd\[2739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.142.149  user=root
...

2019-08-17 15:47:33

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.142.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46073
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.75.142.8.			IN	A

;; AUTHORITY SECTION:
.			188	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024032000 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 20 21:23:11 CST 2024
;; MSG SIZE  rcvd: 105

HOST信息:

8.142.75.106.in-addr.arpa domain name pointer jepdmmb.cn.
8.142.75.106.in-addr.arpa domain name pointer jwjmjni.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
8.142.75.106.in-addr.arpa	name = jepdmmb.cn.
8.142.75.106.in-addr.arpa	name = jwjmjni.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
51.68.70.175	attack	Dec 1 22:15:07 odroid64 sshd\[20481\]: Invalid user laur from 51.68.70.175 Dec 1 22:15:07 odroid64 sshd\[20481\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.70.175 ...	2019-12-10 02:12:46
123.31.47.20	attackbotsspam	Dec 9 17:26:26 legacy sshd[18583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.47.20 Dec 9 17:26:28 legacy sshd[18583]: Failed password for invalid user geik from 123.31.47.20 port 44044 ssh2 Dec 9 17:34:18 legacy sshd[18894]: Failed password for news from 123.31.47.20 port 48532 ssh2 ...	2019-12-10 01:52:54
106.12.56.218	attackbotsspam	Dec 9 17:30:46 host sshd[30531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.56.218 user=root Dec 9 17:30:48 host sshd[30531]: Failed password for root from 106.12.56.218 port 40998 ssh2 ...	2019-12-10 02:07:25
68.183.234.160	attackspambots	Probing for PHPUnit installations.	2019-12-10 02:11:32
76.72.169.18	attack	--- report --- Dec 9 14:16:23 sshd: Connection from 76.72.169.18 port 47005 Dec 9 14:16:23 sshd: Received disconnect from 76.72.169.18: 11: Bye Bye [preauth]	2019-12-10 02:05:33
218.92.0.157	attackbotsspam	Too many connections or unauthorized access detected from Arctic banned ip	2019-12-10 02:23:58
190.79.215.238	attackbotsspam	Dec 9 16:39:25 localhost sshd\[16463\]: Invalid user mark from 190.79.215.238 Dec 9 16:39:25 localhost sshd\[16463\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.79.215.238 Dec 9 16:39:27 localhost sshd\[16463\]: Failed password for invalid user mark from 190.79.215.238 port 34702 ssh2 Dec 9 16:40:06 localhost sshd\[16574\]: Invalid user eric from 190.79.215.238 Dec 9 16:40:06 localhost sshd\[16574\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.79.215.238 ...	2019-12-10 02:10:59
93.118.114.247	attackspam	Automatic report - Port Scan Attack	2019-12-10 02:04:14
36.73.34.57	attack	port scan and connect, tcp 8080 (http-proxy)	2019-12-10 02:14:45
94.181.94.12	attackbots	Dec 9 17:06:56 icinga sshd[11599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.181.94.12 Dec 9 17:06:58 icinga sshd[11599]: Failed password for invalid user agnes from 94.181.94.12 port 36776 ssh2 ...	2019-12-10 02:26:06
134.73.55.66	attack	Dec 9 17:08:28 grey postfix/smtpd\[18517\]: NOQUEUE: reject: RCPT from unknown\[134.73.55.66\]: 554 5.7.1 Service unavailable\; Client host \[134.73.55.66\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?134.73.55.66\; from=\<2800-1134-56717-873-principal=learning-steps.com@mail.sworight.info\> to=\ proto=ESMTP helo=\ ...	2019-12-10 02:02:15
54.38.183.181	attackbots	2019-12-09T18:10:15.684108abusebot-3.cloudsearch.cf sshd\[32177\]: Invalid user cartmell from 54.38.183.181 port 58294	2019-12-10 02:19:13
118.70.72.103	attackbots	2019-12-09T18:04:10.887052abusebot.cloudsearch.cf sshd\[18377\]: Invalid user sriniuas from 118.70.72.103 port 51502	2019-12-10 02:11:52
71.189.47.10	attackspam	Dec 9 06:31:28 auw2 sshd\[7105\]: Invalid user root12345 from 71.189.47.10 Dec 9 06:31:28 auw2 sshd\[7105\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.189.47.10 Dec 9 06:31:30 auw2 sshd\[7105\]: Failed password for invalid user root12345 from 71.189.47.10 port 34198 ssh2 Dec 9 06:38:02 auw2 sshd\[7709\]: Invalid user mendias from 71.189.47.10 Dec 9 06:38:02 auw2 sshd\[7709\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.189.47.10	2019-12-10 02:22:19
178.242.57.237	attack	Automatic report - Port Scan Attack	2019-12-10 02:30:40

最近上报的IP列表

152.32.156.117	195.98.68.119	175.12.155.58	161.97.85.94
153.98.208.102	193.126.118.11	45.76.166.254	106.34.128.161
161.132.172.33	162.254.1.31	36.56.82.167	198.54.113.173
12.219.131.58	45.9.249.85	96.44.191.153	192.252.212.9
198.44.128.140	182.59.50.54	236.198.239.31	159.89.131.39