106.75.2.81 - IPInfo

基本信息:

城市(city): unknown

省份(region): Shanghai

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): China Unicom Beijing Province Network

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorized connection attempt detected from IP address 106.75.2.81 to port 2082	2020-06-24 04:15:13
attack	Unauthorized connection attempt detected from IP address 106.75.2.81 to port 9981	2020-05-31 20:35:41
attackspam	Unauthorized connection attempt detected from IP address 106.75.2.81 to port 4369	2020-05-27 05:21:52
attackspam	Unauthorized connection attempt detected from IP address 106.75.2.81 to port 5801 [T]	2020-05-20 11:31:04
attackbots	Unauthorized connection attempt detected from IP address 106.75.2.81 to port 21 [T]	2020-05-04 17:16:21
attack	Unauthorized connection attempt detected from IP address 106.75.2.81 to port 8090 [T]	2020-04-15 02:11:11
attack	Unauthorized connection attempt detected from IP address 106.75.2.81 to port 9333 [T]	2020-03-25 00:02:41
attack	Unauthorized connection attempt detected from IP address 106.75.2.81 to port 4840 [J]	2020-01-29 18:48:42
attackbotsspam	Unauthorized connection attempt detected from IP address 106.75.2.81 to port 992 [T]	2020-01-27 03:48:33
attack	Unauthorized connection attempt detected from IP address 106.75.2.81 to port 104 [J]	2020-01-21 03:57:52
attack	Unauthorized connection attempt detected from IP address 106.75.2.81 to port 5555 [J]	2020-01-20 08:12:06
attackspam	Unauthorized connection attempt detected from IP address 106.75.2.81 to port 3000 [J]	2020-01-18 14:22:08
attackbots	Unauthorized connection attempt detected from IP address 106.75.2.81 to port 993 [T]	2020-01-17 09:03:08
attackspam	Unauthorized connection attempt detected from IP address 106.75.2.81 to port 5009 [J]	2020-01-07 04:37:20
attack	Unauthorized connection attempt detected from IP address 106.75.2.81 to port 8443	2020-01-02 21:22:46
attackspambots	Unauthorized connection attempt detected from IP address 106.75.2.81 to port 119	2020-01-01 03:21:59
attackbotsspam	Unauthorized connection attempt detected from IP address 106.75.2.81 to port 5432	2019-12-31 21:54:22
attackbotsspam	Unauthorized connection attempt detected from IP address 106.75.2.81 to port 8377	2019-12-31 03:12:16
attack	Automatic report - Banned IP Access	2019-11-26 08:55:15
attackbots	106.75.2.81 has been banned from MailServer for Abuse ...	2019-07-20 06:37:20
attackspambots	1561283460 - 06/23/2019 16:51:00 Host: 106.75.2.81/106.75.2.81 Port: 67 TCP Blocked ...	2019-06-24 00:49:54

相同子网IP讨论:

IP	类型	评论内容	时间
106.75.29.209	spambotsattackproxy	106.75.29.209 powermailmarketingworld.info	2020-10-31 04:03:11
106.75.241.94	attackspambots	Oct 12 05:15:21 rudra sshd[980541]: Invalid user guest from 106.75.241.94 Oct 12 05:15:21 rudra sshd[980541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.241.94 Oct 12 05:15:23 rudra sshd[980541]: Failed password for invalid user guest from 106.75.241.94 port 38454 ssh2 Oct 12 05:15:24 rudra sshd[980541]: Received disconnect from 106.75.241.94: 11: Bye Bye [preauth] Oct 12 05:22:41 rudra sshd[981949]: Invalid user hf from 106.75.241.94 Oct 12 05:22:41 rudra sshd[981949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.241.94 Oct 12 05:22:43 rudra sshd[981949]: Failed password for invalid user hf from 106.75.241.94 port 57820 ssh2 Oct 12 05:22:43 rudra sshd[981949]: Received disconnect from 106.75.241.94: 11: Bye Bye [preauth] Oct 12 05:25:18 rudra sshd[982850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.241.94 user=r.r ........ -------------------------------	2020-10-14 08:35:57
106.75.25.148	attack	Lines containing failures of 106.75.25.148 Oct 12 03:38:02 siirappi sshd[17859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.25.148 user=r.r Oct 12 03:38:04 siirappi sshd[17859]: Failed password for r.r from 106.75.25.148 port 40948 ssh2 Oct 12 03:38:05 siirappi sshd[17859]: Received disconnect from 106.75.25.148 port 40948:11: Bye Bye [preauth] Oct 12 03:38:05 siirappi sshd[17859]: Disconnected from authenticating user r.r 106.75.25.148 port 40948 [preauth] Oct 12 04:34:17 siirappi sshd[18939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.25.148 user=r.r Oct 12 04:34:19 siirappi sshd[18939]: Failed password for r.r from 106.75.25.148 port 56746 ssh2 Oct 12 04:34:20 siirappi sshd[18939]: Received disconnect from 106.75.25.148 port 56746:11: Bye Bye [preauth] Oct 12 04:34:20 siirappi sshd[18939]: Disconnected from authenticating user r.r 106.75.25.148 port 56746 [preauth........ ------------------------------	2020-10-14 08:13:24
106.75.254.207	attack	Oct 13 21:35:38 onepixel sshd[2809638]: Invalid user carlos from 106.75.254.207 port 37912 Oct 13 21:35:40 onepixel sshd[2809638]: Failed password for invalid user carlos from 106.75.254.207 port 37912 ssh2 Oct 13 21:38:20 onepixel sshd[2810118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.254.207 user=root Oct 13 21:38:23 onepixel sshd[2810118]: Failed password for root from 106.75.254.207 port 51462 ssh2 Oct 13 21:40:51 onepixel sshd[2810829]: Invalid user regina from 106.75.254.207 port 36774	2020-10-14 07:21:17
106.75.246.176	attackbotsspam	Oct 14 00:45:51 mx sshd[1425171]: Invalid user villa from 106.75.246.176 port 35268 Oct 14 00:45:51 mx sshd[1425171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.246.176 Oct 14 00:45:51 mx sshd[1425171]: Invalid user villa from 106.75.246.176 port 35268 Oct 14 00:45:52 mx sshd[1425171]: Failed password for invalid user villa from 106.75.246.176 port 35268 ssh2 Oct 14 00:47:43 mx sshd[1425189]: Invalid user gelu from 106.75.246.176 port 36416 ...	2020-10-14 03:22:00
106.75.246.176	attackbots	Invalid user hq from 106.75.246.176 port 44754	2020-10-13 18:39:58
106.75.254.207	attackbots	Oct 13 08:00:00 hosting sshd[12331]: Invalid user home from 106.75.254.207 port 47012 ...	2020-10-13 13:41:44
106.75.254.207	attack	Oct 12 22:52:00 mavik sshd[12816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.254.207 Oct 12 22:52:03 mavik sshd[12816]: Failed password for invalid user james from 106.75.254.207 port 39442 ssh2 Oct 12 22:54:44 mavik sshd[13020]: Invalid user precia from 106.75.254.207 Oct 12 22:54:44 mavik sshd[13020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.254.207 Oct 12 22:54:46 mavik sshd[13020]: Failed password for invalid user precia from 106.75.254.207 port 52912 ssh2 ...	2020-10-13 06:25:52
106.75.254.207	attackbotsspam	Oct 11 04:22:58 ws24vmsma01 sshd[130475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.254.207 Oct 11 04:23:00 ws24vmsma01 sshd[130475]: Failed password for invalid user cvs1 from 106.75.254.207 port 34144 ssh2 ...	2020-10-11 15:34:25
106.75.254.207	attackbots	Oct 11 02:38:31 eventyay sshd[2542]: Failed password for root from 106.75.254.207 port 58830 ssh2 Oct 11 02:42:05 eventyay sshd[2702]: Failed password for root from 106.75.254.207 port 55540 ssh2 ...	2020-10-11 08:52:06
106.75.29.239	attackbots	Oct 9 14:58:09 ws26vmsma01 sshd[237593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.29.239 Oct 9 14:58:11 ws26vmsma01 sshd[237593]: Failed password for invalid user nagios from 106.75.29.239 port 48488 ssh2 ...	2020-10-10 02:55:51
106.75.240.86	attackspam	Oct 9 13:22:02 h1745522 sshd[11191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.240.86 user=root Oct 9 13:22:04 h1745522 sshd[11191]: Failed password for root from 106.75.240.86 port 42138 ssh2 Oct 9 13:23:40 h1745522 sshd[11501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.240.86 user=root Oct 9 13:23:42 h1745522 sshd[11501]: Failed password for root from 106.75.240.86 port 59456 ssh2 Oct 9 13:25:21 h1745522 sshd[11804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.240.86 user=root Oct 9 13:25:23 h1745522 sshd[11804]: Failed password for root from 106.75.240.86 port 48870 ssh2 Oct 9 13:27:01 h1745522 sshd[11922]: Invalid user web from 106.75.240.86 port 37624 Oct 9 13:27:01 h1745522 sshd[11922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.240.86 Oct 9 13:27:01 h1745522 ssh ...	2020-10-09 21:07:46
106.75.29.239	attackbots	fail2ban -- 106.75.29.239 ...	2020-10-09 18:42:18
106.75.240.86	attackbotsspam	SSH Bruteforce Attempt on Honeypot	2020-10-09 12:54:48
106.75.217.16	attack	Port probing on unauthorized port 4244	2020-10-08 02:08:13

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.2.81
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47046
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.2.81.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062300 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jun 24 00:49:43 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 81.2.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 81.2.75.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
45.88.12.165	attack	Aug 25 20:16:42 cho sshd[1613276]: Failed password for root from 45.88.12.165 port 42591 ssh2 Aug 25 20:18:51 cho sshd[1613512]: Invalid user david from 45.88.12.165 port 59199 Aug 25 20:18:51 cho sshd[1613512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.88.12.165 Aug 25 20:18:51 cho sshd[1613512]: Invalid user david from 45.88.12.165 port 59199 Aug 25 20:18:53 cho sshd[1613512]: Failed password for invalid user david from 45.88.12.165 port 59199 ssh2 ...	2020-08-26 04:02:22
47.74.245.246	attack	Invalid user sjx from 47.74.245.246 port 57202	2020-08-26 04:01:19
122.237.246.196	attackspam	Aug 25 19:59:45 vlre-nyc-1 sshd\[22245\]: Invalid user ftp from 122.237.246.196 Aug 25 19:59:45 vlre-nyc-1 sshd\[22245\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.237.246.196 Aug 25 19:59:48 vlre-nyc-1 sshd\[22245\]: Failed password for invalid user ftp from 122.237.246.196 port 42850 ssh2 Aug 25 20:01:54 vlre-nyc-1 sshd\[22296\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.237.246.196 user=root Aug 25 20:01:56 vlre-nyc-1 sshd\[22296\]: Failed password for root from 122.237.246.196 port 57564 ssh2 ...	2020-08-26 04:33:27
81.12.155.98	attackbotsspam	Unauthorized connection attempt from IP address 81.12.155.98 on Port 445(SMB)	2020-08-26 04:21:13
182.150.57.34	attackspambots	Time: Tue Aug 25 20:04:24 2020 +0000 IP: 182.150.57.34 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Aug 25 19:55:14 ca-1-ams1 sshd[43354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.150.57.34 user=root Aug 25 19:55:16 ca-1-ams1 sshd[43354]: Failed password for root from 182.150.57.34 port 64547 ssh2 Aug 25 20:00:22 ca-1-ams1 sshd[43580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.150.57.34 user=zabbix Aug 25 20:00:24 ca-1-ams1 sshd[43580]: Failed password for zabbix from 182.150.57.34 port 19334 ssh2 Aug 25 20:04:23 ca-1-ams1 sshd[43863]: Invalid user vps from 182.150.57.34 port 29516	2020-08-26 04:08:38
212.70.149.4	attackbots	Spamming machine	2020-08-26 04:32:35
172.241.192.88	attackbotsspam	Registration form abuse	2020-08-26 04:11:37
68.183.82.97	attackspambots	Aug 25 20:00:30 ajax sshd[12665]: Failed password for root from 68.183.82.97 port 58230 ssh2 Aug 25 20:04:46 ajax sshd[14159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.82.97	2020-08-26 03:57:31
91.122.226.114	attack	Unauthorized connection attempt from IP address 91.122.226.114 on Port 445(SMB)	2020-08-26 04:07:28
106.51.44.6	attack	Aug 25 20:13:05 instance-2 sshd[21775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.44.6 Aug 25 20:13:06 instance-2 sshd[21775]: Failed password for invalid user user from 106.51.44.6 port 34403 ssh2 Aug 25 20:18:42 instance-2 sshd[21977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.44.6	2020-08-26 04:30:11
92.154.24.131	attackspambots	Aug 25 21:01:41 vps639187 sshd\[6797\]: Invalid user dl from 92.154.24.131 port 49875 Aug 25 21:01:41 vps639187 sshd\[6797\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.154.24.131 Aug 25 21:01:43 vps639187 sshd\[6797\]: Failed password for invalid user dl from 92.154.24.131 port 49875 ssh2 ...	2020-08-26 03:55:23
49.233.207.248	attackspam	Aug 26 06:06:11 localhost sshd[2271106]: Invalid user ftpuser from 49.233.207.248 port 45112 ...	2020-08-26 04:34:12
185.213.155.169	attackspam	[SID1] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.	2020-08-26 04:23:57
111.231.202.118	attack	Aug 25 21:54:48 vmd36147 sshd[2736]: Failed password for root from 111.231.202.118 port 43810 ssh2 Aug 25 22:02:14 vmd36147 sshd[19004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.202.118 ...	2020-08-26 04:09:14
218.92.0.185	attackbots	Fail2Ban Ban Triggered (2)	2020-08-26 04:08:01

最近上报的IP列表

52.239.82.62	89.205.130.101	116.132.4.180	60.32.164.244
1.161.121.195	189.53.32.132	49.198.64.16	215.125.92.34
140.158.102.168	134.39.31.221	157.230.33.26	108.222.4.176
227.226.8.68	113.200.222.42	168.40.235.54	223.252.204.67
230.186.233.27	136.150.237.136	14.224.136.127	215.92.83.130