106.75.152.143

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	2020-04-18T05:03:47.386451abusebot-4.cloudsearch.cf sshd[17199]: Invalid user ubuntu from 106.75.152.143 port 52084 2020-04-18T05:03:47.391916abusebot-4.cloudsearch.cf sshd[17199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.152.143 2020-04-18T05:03:47.386451abusebot-4.cloudsearch.cf sshd[17199]: Invalid user ubuntu from 106.75.152.143 port 52084 2020-04-18T05:03:49.528552abusebot-4.cloudsearch.cf sshd[17199]: Failed password for invalid user ubuntu from 106.75.152.143 port 52084 ssh2 2020-04-18T05:09:18.397971abusebot-4.cloudsearch.cf sshd[17612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.152.143 user=root 2020-04-18T05:09:20.640153abusebot-4.cloudsearch.cf sshd[17612]: Failed password for root from 106.75.152.143 port 40772 ssh2 2020-04-18T05:11:45.094126abusebot-4.cloudsearch.cf sshd[17777]: Invalid user bp from 106.75.152.143 port 35922 ...	2020-04-18 14:51:56

类型

评论内容

时间

attackspam

2020-04-18T05:03:47.386451abusebot-4.cloudsearch.cf sshd[17199]: Invalid user ubuntu from 106.75.152.143 port 52084
2020-04-18T05:03:47.391916abusebot-4.cloudsearch.cf sshd[17199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.152.143
2020-04-18T05:03:47.386451abusebot-4.cloudsearch.cf sshd[17199]: Invalid user ubuntu from 106.75.152.143 port 52084
2020-04-18T05:03:49.528552abusebot-4.cloudsearch.cf sshd[17199]: Failed password for invalid user ubuntu from 106.75.152.143 port 52084 ssh2
2020-04-18T05:09:18.397971abusebot-4.cloudsearch.cf sshd[17612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.152.143  user=root
2020-04-18T05:09:20.640153abusebot-4.cloudsearch.cf sshd[17612]: Failed password for root from 106.75.152.143 port 40772 ssh2
2020-04-18T05:11:45.094126abusebot-4.cloudsearch.cf sshd[17777]: Invalid user bp from 106.75.152.143 port 35922
...

2020-04-18 14:51:56

相同子网IP讨论:

IP	类型	评论内容	时间
106.75.152.83	attack	Invalid user webmaster from 106.75.152.83 port 35532	2020-10-04 08:15:56
106.75.152.83	attack	Invalid user webmaster from 106.75.152.83 port 35532	2020-10-04 00:41:50
106.75.152.83	attackbotsspam	Failed password for invalid user xrdp from 106.75.152.83 port 38116 ssh2	2020-10-03 16:31:04
106.75.152.124	attackbots	Found on CINS badguys / proto=17 . srcport=58914 . dstport=5001 . (3520)	2020-09-27 02:36:09
106.75.152.124	attackbotsspam	firewall-block, port(s): 992/tcp	2020-09-01 14:06:24
106.75.152.83	attackbots	Aug 17 06:25:39 rush sshd[3879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.152.83 Aug 17 06:25:42 rush sshd[3879]: Failed password for invalid user postgres from 106.75.152.83 port 39610 ssh2 Aug 17 06:29:43 rush sshd[4058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.152.83 ...	2020-08-17 19:02:58
106.75.152.83	attackspam	Aug 3 22:34:49 buvik sshd[31687]: Failed password for root from 106.75.152.83 port 46996 ssh2 Aug 3 22:37:59 buvik sshd[32163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.152.83 user=root Aug 3 22:38:01 buvik sshd[32163]: Failed password for root from 106.75.152.83 port 42304 ssh2 ...	2020-08-04 04:45:20
106.75.152.83	attackspambots	Jul 30 11:33:08 Host-KEWR-E sshd[22790]: Connection closed by 106.75.152.83 port 58128 [preauth] ...	2020-07-31 02:55:28
106.75.152.124	attackspambots	Port scan: Attack repeated for 24 hours	2020-07-20 21:21:12
106.75.152.124	attackbotsspam	[Thu Jun 11 09:49:53 2020] - DDoS Attack From IP: 106.75.152.124 Port: 58914	2020-07-16 21:39:48
106.75.152.124	attack	[Wed Jun 24 10:54:10 2020] - DDoS Attack From IP: 106.75.152.124 Port: 58914	2020-07-13 03:45:16
106.75.152.124	attack	[Thu Jun 11 09:49:58 2020] - DDoS Attack From IP: 106.75.152.124 Port: 58914	2020-07-08 23:31:30
106.75.152.124	attack	[Wed Jul 01 13:14:50 2020] - DDoS Attack From IP: 106.75.152.124 Port: 58914	2020-07-06 04:41:12
106.75.152.124	attackspam	firewall-block, port(s): 1248/tcp	2020-05-26 14:56:43
106.75.152.95	attackbotsspam	Observed on multiple hosts.	2020-05-05 11:44:03

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.152.143
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26196
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.152.143.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041800 1800 900 604800 86400

;; Query time: 91 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 18 14:51:52 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 143.152.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 143.152.75.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
143.0.52.117	attackspambots	'Fail2Ban'	2019-08-06 21:32:53
113.116.50.126	attackspam	Aug 6 16:05:21 www4 sshd\[35639\]: Invalid user mailman from 113.116.50.126 Aug 6 16:05:21 www4 sshd\[35639\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.116.50.126 Aug 6 16:05:23 www4 sshd\[35639\]: Failed password for invalid user mailman from 113.116.50.126 port 49722 ssh2 ...	2019-08-06 21:21:27
123.159.176.88	attackbotsspam	Automatic report - Port Scan Attack	2019-08-06 21:46:41
186.232.64.11	attack	Port Scan: TCP/445	2019-08-06 21:24:18
186.215.100.50	attack	proto=tcp . spt=33116 . dpt=25 . (listed on Github Combined on 4 lists ) (677)	2019-08-06 21:58:01
187.85.210.50	attackspam	Aug 6 07:22:42 web1 postfix/smtpd[20157]: warning: unknown[187.85.210.50]: SASL PLAIN authentication failed: authentication failure ...	2019-08-06 21:21:58
188.131.134.157	attackbotsspam	Aug 6 15:20:31 pornomens sshd\[28269\]: Invalid user colin from 188.131.134.157 port 54450 Aug 6 15:20:31 pornomens sshd\[28269\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.134.157 Aug 6 15:20:34 pornomens sshd\[28269\]: Failed password for invalid user colin from 188.131.134.157 port 54450 ssh2 ...	2019-08-06 21:34:30
46.101.242.117	attackspambots	Failed password for invalid user git from 46.101.242.117 port 55048 ssh2 Invalid user mki from 46.101.242.117 port 47926 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.242.117 Failed password for invalid user mki from 46.101.242.117 port 47926 ssh2 Invalid user hatton from 46.101.242.117 port 40538 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.242.117	2019-08-06 21:24:50
37.187.181.182	attackspam	2019-08-06T13:30:42.271696abusebot-5.cloudsearch.cf sshd\[4211\]: Invalid user vboxuser from 37.187.181.182 port 37894	2019-08-06 21:47:40
213.186.34.124	attackbots	2019-08-06T13:22:21.2191731240 sshd\[32342\]: Invalid user tsmuse from 213.186.34.124 port 40360 2019-08-06T13:22:21.2245401240 sshd\[32342\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.186.34.124 2019-08-06T13:22:22.8379341240 sshd\[32342\]: Failed password for invalid user tsmuse from 213.186.34.124 port 40360 ssh2 ...	2019-08-06 21:35:42
117.2.133.106	attackbotsspam	proto=tcp . spt=36229 . dpt=25 . (listed on Blocklist de Aug 05) (681)	2019-08-06 21:47:18
118.24.9.152	attackspam	Automatic report - Banned IP Access	2019-08-06 21:27:32
142.93.240.79	attack	Jan 15 22:28:06 motanud sshd\[2765\]: Invalid user webusr from 142.93.240.79 port 39972 Jan 15 22:28:06 motanud sshd\[2765\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.240.79 Jan 15 22:28:08 motanud sshd\[2765\]: Failed password for invalid user webusr from 142.93.240.79 port 39972 ssh2	2019-08-06 22:17:15
51.255.192.217	attackbots	Aug 6 14:17:13 localhost sshd\[21981\]: Invalid user minecraft from 51.255.192.217 port 57434 Aug 6 14:17:13 localhost sshd\[21981\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.192.217 ...	2019-08-06 21:28:20
68.183.187.234	attackbots	Aug 6 16:08:04 server sshd\[14026\]: Invalid user bianca from 68.183.187.234 port 46750 Aug 6 16:08:04 server sshd\[14026\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.187.234 Aug 6 16:08:06 server sshd\[14026\]: Failed password for invalid user bianca from 68.183.187.234 port 46750 ssh2 Aug 6 16:13:17 server sshd\[22577\]: Invalid user g from 68.183.187.234 port 42892 Aug 6 16:13:17 server sshd\[22577\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.187.234	2019-08-06 21:26:06

最近上报的IP列表

49.233.193.237	114.231.41.90	27.1.253.142	251.108.193.127
194.28.61.132	185.36.72.157	6.233.82.182	60.59.48.10
242.17.126.43	45.87.151.197	203.238.189.44	163.109.117.102
209.93.255.165	210.179.36.189	183.131.84.141	240.90.106.226
49.233.141.58	82.19.173.98	210.61.153.24	182.50.132.103