106.75.148.228

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	2020-10-06T21:06:57.195815abusebot.cloudsearch.cf sshd[7796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.228 user=root 2020-10-06T21:06:58.689237abusebot.cloudsearch.cf sshd[7796]: Failed password for root from 106.75.148.228 port 47032 ssh2 2020-10-06T21:10:15.154534abusebot.cloudsearch.cf sshd[7859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.228 user=root 2020-10-06T21:10:16.828747abusebot.cloudsearch.cf sshd[7859]: Failed password for root from 106.75.148.228 port 48412 ssh2 2020-10-06T21:13:37.373932abusebot.cloudsearch.cf sshd[7919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.228 user=root 2020-10-06T21:13:39.113348abusebot.cloudsearch.cf sshd[7919]: Failed password for root from 106.75.148.228 port 49136 ssh2 2020-10-06T21:16:50.977540abusebot.cloudsearch.cf sshd[7975]: pam_unix(sshd:auth): authentication failu ...	2020-10-07 07:30:00
attack	2020-10-06T14:28:25.431967billing sshd[7382]: Failed password for root from 106.75.148.228 port 42422 ssh2 2020-10-06T14:30:43.695407billing sshd[12694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.228 user=root 2020-10-06T14:30:45.911894billing sshd[12694]: Failed password for root from 106.75.148.228 port 42822 ssh2 ...	2020-10-06 23:55:37
attackspam	2020-10-06T14:28:25.431967billing sshd[7382]: Failed password for root from 106.75.148.228 port 42422 ssh2 2020-10-06T14:30:43.695407billing sshd[12694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.228 user=root 2020-10-06T14:30:45.911894billing sshd[12694]: Failed password for root from 106.75.148.228 port 42822 ssh2 ...	2020-10-06 15:44:01
attack	$f2bV_matches	2020-08-31 03:41:08
attack	Total attacks: 2	2020-08-29 06:14:32
attackbotsspam	Aug 17 09:04:41 Ubuntu-1404-trusty-64-minimal sshd\[919\]: Invalid user gab from 106.75.148.228 Aug 17 09:04:41 Ubuntu-1404-trusty-64-minimal sshd\[919\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.228 Aug 17 09:04:42 Ubuntu-1404-trusty-64-minimal sshd\[919\]: Failed password for invalid user gab from 106.75.148.228 port 33652 ssh2 Aug 17 09:09:54 Ubuntu-1404-trusty-64-minimal sshd\[4354\]: Invalid user tp from 106.75.148.228 Aug 17 09:09:54 Ubuntu-1404-trusty-64-minimal sshd\[4354\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.228	2020-08-17 16:14:11
attackspam	Aug 7 11:53:49 ovpn sshd\[12888\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.228 user=root Aug 7 11:53:51 ovpn sshd\[12888\]: Failed password for root from 106.75.148.228 port 44632 ssh2 Aug 7 12:15:38 ovpn sshd\[20822\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.228 user=root Aug 7 12:15:40 ovpn sshd\[20822\]: Failed password for root from 106.75.148.228 port 34398 ssh2 Aug 7 12:20:39 ovpn sshd\[7829\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.228 user=root	2020-08-07 19:18:47

相同子网IP讨论:

IP	类型	评论内容	时间
106.75.148.111	attack	Oct 6 22:46:18 vps639187 sshd\[27516\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.111 user=root Oct 6 22:46:20 vps639187 sshd\[27516\]: Failed password for root from 106.75.148.111 port 51346 ssh2 Oct 6 22:49:35 vps639187 sshd\[27640\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.111 user=root ...	2020-10-07 05:02:55
106.75.148.111	attackbotsspam	2020-10-06T14:48:19.774509afi-git.jinr.ru sshd[28461]: Failed password for root from 106.75.148.111 port 39786 ssh2 2020-10-06T14:50:31.423493afi-git.jinr.ru sshd[29149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mailgoesbulkio.live user=root 2020-10-06T14:50:33.934326afi-git.jinr.ru sshd[29149]: Failed password for root from 106.75.148.111 port 39096 ssh2 2020-10-06T14:52:50.194257afi-git.jinr.ru sshd[30337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mailgoesbulkio.live user=root 2020-10-06T14:52:52.787230afi-git.jinr.ru sshd[30337]: Failed password for root from 106.75.148.111 port 38402 ssh2 ...	2020-10-06 21:10:07
106.75.148.111	attackbots	Oct 6 01:20:43 buvik sshd[20982]: Failed password for root from 106.75.148.111 port 44904 ssh2 Oct 6 01:23:00 buvik sshd[21298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.111 user=root Oct 6 01:23:02 buvik sshd[21298]: Failed password for root from 106.75.148.111 port 52878 ssh2 ...	2020-10-06 12:51:11
106.75.148.111	attackbots	Oct 5 05:09:07 onepixel sshd[684707]: Failed password for root from 106.75.148.111 port 47396 ssh2 Oct 5 05:11:02 onepixel sshd[685165]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.111 user=root Oct 5 05:11:04 onepixel sshd[685165]: Failed password for root from 106.75.148.111 port 43614 ssh2 Oct 5 05:13:03 onepixel sshd[685487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.111 user=root Oct 5 05:13:05 onepixel sshd[685487]: Failed password for root from 106.75.148.111 port 39826 ssh2	2020-10-06 04:27:48
106.75.148.111	attackspambots	Oct 5 05:09:07 onepixel sshd[684707]: Failed password for root from 106.75.148.111 port 47396 ssh2 Oct 5 05:11:02 onepixel sshd[685165]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.111 user=root Oct 5 05:11:04 onepixel sshd[685165]: Failed password for root from 106.75.148.111 port 43614 ssh2 Oct 5 05:13:03 onepixel sshd[685487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.111 user=root Oct 5 05:13:05 onepixel sshd[685487]: Failed password for root from 106.75.148.111 port 39826 ssh2	2020-10-05 20:29:16
106.75.148.111	attackspam	Oct 5 04:12:10 onepixel sshd[675223]: Failed password for root from 106.75.148.111 port 47958 ssh2 Oct 5 04:13:56 onepixel sshd[675494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.111 user=root Oct 5 04:13:58 onepixel sshd[675494]: Failed password for root from 106.75.148.111 port 44180 ssh2 Oct 5 04:15:47 onepixel sshd[675764]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.111 user=root Oct 5 04:15:50 onepixel sshd[675764]: Failed password for root from 106.75.148.111 port 40394 ssh2	2020-10-05 12:19:34
106.75.148.111	attack	Sep 28 19:17:57 plex-server sshd[4005472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.111 Sep 28 19:17:57 plex-server sshd[4005472]: Invalid user sam from 106.75.148.111 port 53502 Sep 28 19:17:59 plex-server sshd[4005472]: Failed password for invalid user sam from 106.75.148.111 port 53502 ssh2 Sep 28 19:18:26 plex-server sshd[4005677]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.111 user=root Sep 28 19:18:28 plex-server sshd[4005677]: Failed password for root from 106.75.148.111 port 58926 ssh2 ...	2020-09-29 04:59:50
106.75.148.111	attackspambots	106.75.148.111 (CN/China/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 28 08:19:59 server5 sshd[13837]: Failed password for root from 179.243.62.83 port 28333 ssh2 Sep 28 08:17:29 server5 sshd[12669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.158.36 user=root Sep 28 08:17:31 server5 sshd[12669]: Failed password for root from 180.76.158.36 port 58450 ssh2 Sep 28 08:18:18 server5 sshd[13062]: Failed password for root from 62.171.148.132 port 54724 ssh2 Sep 28 08:14:43 server5 sshd[11724]: Failed password for root from 62.171.148.132 port 44784 ssh2 Sep 28 08:15:55 server5 sshd[12179]: Failed password for root from 106.75.148.111 port 47610 ssh2 IP Addresses Blocked: 179.243.62.83 (BR/Brazil/-) 180.76.158.36 (CN/China/-) 62.171.148.132 (DE/Germany/-)	2020-09-28 21:18:56
106.75.148.111	attackspambots	Invalid user test7 from 106.75.148.111 port 53956	2020-09-28 13:24:26
106.75.148.151	attackbots	Invalid user od from 106.75.148.151 port 36758	2020-04-21 00:29:34
106.75.148.95	attackbots	Dec 14 10:18:43 vtv3 sshd[28701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.95 Dec 14 10:18:45 vtv3 sshd[28701]: Failed password for invalid user scolieri from 106.75.148.95 port 36036 ssh2 Dec 14 10:23:26 vtv3 sshd[31008]: Failed password for root from 106.75.148.95 port 46502 ssh2 Dec 16 16:02:12 vtv3 sshd[3459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.95 Dec 16 16:02:15 vtv3 sshd[3459]: Failed password for invalid user turbo from 106.75.148.95 port 42576 ssh2 Dec 16 16:11:28 vtv3 sshd[7766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.95 Dec 16 16:25:50 vtv3 sshd[14920]: Failed password for sync from 106.75.148.95 port 59250 ssh2 Dec 16 16:30:38 vtv3 sshd[17173]: Failed password for root from 106.75.148.95 port 44202 ssh2 Dec 16 16:50:15 vtv3 sshd[26480]: Failed password for root from 106.75.148.95 port 40480 ssh2 Dec 16 16:55:16 vtv3	2019-12-17 02:14:55
106.75.148.95	attackspam	Dec 14 09:22:44 ns41 sshd[23118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.95 Dec 14 09:22:46 ns41 sshd[23118]: Failed password for invalid user flucher from 106.75.148.95 port 43934 ssh2 Dec 14 09:27:45 ns41 sshd[23323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.95	2019-12-14 17:03:44
106.75.148.95	attack	Dec 10 21:05:11 server sshd\[6265\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.95 user=root Dec 10 21:05:13 server sshd\[6265\]: Failed password for root from 106.75.148.95 port 43358 ssh2 Dec 10 21:13:53 server sshd\[8201\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.95 user=root Dec 10 21:13:55 server sshd\[8201\]: Failed password for root from 106.75.148.95 port 59174 ssh2 Dec 10 21:21:16 server sshd\[10294\]: Invalid user ftptest from 106.75.148.95 Dec 10 21:21:16 server sshd\[10294\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.95 ...	2019-12-11 02:42:24
106.75.148.95	attackbotsspam	2019-12-10T17:01:03.707911abusebot-5.cloudsearch.cf sshd\[28870\]: Invalid user test from 106.75.148.95 port 45582	2019-12-11 01:07:24
106.75.148.114	attackbots	Dec 8 23:39:15 gw1 sshd[17470]: Failed password for backup from 106.75.148.114 port 36272 ssh2 ...	2019-12-09 03:00:51

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.148.228
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64646
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.148.228.			IN	A

;; AUTHORITY SECTION:
.			234	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080200 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Aug 02 14:53:48 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 228.148.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 228.148.75.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
111.229.196.130	attackspambots	$f2bV_matches	2020-06-24 17:28:53
52.26.64.212	attack	Jun 24 11:18:56 odroid64 sshd\[15956\]: Invalid user edt from 52.26.64.212 Jun 24 11:18:56 odroid64 sshd\[15956\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.26.64.212 ...	2020-06-24 17:29:41
35.185.51.208	attack	35.185.51.208 - - [24/Jun/2020:07:38:32 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.185.51.208 - - [24/Jun/2020:07:38:40 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-06-24 17:40:26
35.171.244.209	attack	Jun 24 07:11:17 gestao sshd[30829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.171.244.209 Jun 24 07:11:19 gestao sshd[30829]: Failed password for invalid user wendi from 35.171.244.209 port 52428 ssh2 Jun 24 07:15:09 gestao sshd[30915]: Failed password for root from 35.171.244.209 port 54274 ssh2 ...	2020-06-24 17:31:14
173.232.33.113	spam	Aggressive email spammer on subnet 173.232.33.*	2020-06-24 17:39:49
189.202.204.230	attack	Jun 24 11:03:10 pkdns2 sshd\[44869\]: Invalid user og from 189.202.204.230Jun 24 11:03:12 pkdns2 sshd\[44869\]: Failed password for invalid user og from 189.202.204.230 port 38663 ssh2Jun 24 11:06:52 pkdns2 sshd\[45051\]: Invalid user gzg from 189.202.204.230Jun 24 11:06:54 pkdns2 sshd\[45051\]: Failed password for invalid user gzg from 189.202.204.230 port 37782 ssh2Jun 24 11:10:33 pkdns2 sshd\[45260\]: Invalid user glftpd from 189.202.204.230Jun 24 11:10:35 pkdns2 sshd\[45260\]: Failed password for invalid user glftpd from 189.202.204.230 port 36901 ssh2 ...	2020-06-24 17:28:35
101.96.113.50	attackbots	Jun 23 19:34:10 tdfoods sshd\[9266\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.96.113.50 user=root Jun 23 19:34:12 tdfoods sshd\[9266\]: Failed password for root from 101.96.113.50 port 39904 ssh2 Jun 23 19:36:38 tdfoods sshd\[9475\]: Invalid user spark from 101.96.113.50 Jun 23 19:36:38 tdfoods sshd\[9475\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.96.113.50 Jun 23 19:36:40 tdfoods sshd\[9475\]: Failed password for invalid user spark from 101.96.113.50 port 46328 ssh2	2020-06-24 17:18:32
41.186.0.232	attackbots	Attempts against non-existent wp-login	2020-06-24 17:53:53
134.175.99.237	attackspam	Invalid user celia from 134.175.99.237 port 33014	2020-06-24 17:36:52
46.38.148.14	attackbots	Jun 24 10:27:41 blackbee postfix/smtpd\[17230\]: warning: unknown\[46.38.148.14\]: SASL LOGIN authentication failed: authentication failure Jun 24 10:28:02 blackbee postfix/smtpd\[17230\]: warning: unknown\[46.38.148.14\]: SASL LOGIN authentication failed: authentication failure Jun 24 10:28:24 blackbee postfix/smtpd\[17230\]: warning: unknown\[46.38.148.14\]: SASL LOGIN authentication failed: authentication failure Jun 24 10:28:46 blackbee postfix/smtpd\[17253\]: warning: unknown\[46.38.148.14\]: SASL LOGIN authentication failed: authentication failure Jun 24 10:29:08 blackbee postfix/smtpd\[17230\]: warning: unknown\[46.38.148.14\]: SASL LOGIN authentication failed: authentication failure ...	2020-06-24 17:29:57
50.62.208.199	attackbotsspam	Automatic report - XMLRPC Attack	2020-06-24 17:44:26
196.52.43.51	attackbotsspam	8444/tcp 37777/tcp 4443/tcp... [2020-04-23/06-23]78pkt,56pt.(tcp),4pt.(udp)	2020-06-24 17:47:40
209.17.114.78	attackbotsspam	Automatic report - XMLRPC Attack	2020-06-24 17:47:52
173.232.33.157	spam	Aggressive email spammer on subnet 173.232.33.*	2020-06-24 17:39:23
222.186.31.83	attack	Jun 24 11:41:24 piServer sshd[29176]: Failed password for root from 222.186.31.83 port 53994 ssh2 Jun 24 11:41:27 piServer sshd[29176]: Failed password for root from 222.186.31.83 port 53994 ssh2 Jun 24 11:41:32 piServer sshd[29176]: Failed password for root from 222.186.31.83 port 53994 ssh2 ...	2020-06-24 17:47:09

最近上报的IP列表

117.121.206.6	185.250.180.149	169.37.56.41	103.25.20.53
231.64.218.92	85.1.33.15	115.90.114.81	113.17.49.220
242.232.140.189	220.135.68.135	188.44.118.209	208.149.142.29
221.210.54.122	103.54.206.81	17.112.227.82	132.130.171.255
81.248.49.33	12.85.3.192	161.35.170.105	89.139.206.72