106.75.45.180 - IPInfo

基本信息:

城市(city): unknown

省份(region): Shanghai

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): China Unicom Beijing Province Network

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jun 7 06:39:22 PorscheCustomer sshd[28561]: Failed password for root from 106.75.45.180 port 37985 ssh2 Jun 7 06:41:08 PorscheCustomer sshd[28631]: Failed password for root from 106.75.45.180 port 49576 ssh2 ...	2020-06-07 12:50:05
attackbots	May 11 05:41:25 ns392434 sshd[24695]: Invalid user cvs from 106.75.45.180 port 53948 May 11 05:41:25 ns392434 sshd[24695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.180 May 11 05:41:25 ns392434 sshd[24695]: Invalid user cvs from 106.75.45.180 port 53948 May 11 05:41:27 ns392434 sshd[24695]: Failed password for invalid user cvs from 106.75.45.180 port 53948 ssh2 May 11 05:46:42 ns392434 sshd[24793]: Invalid user postgres from 106.75.45.180 port 55774 May 11 05:46:42 ns392434 sshd[24793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.180 May 11 05:46:42 ns392434 sshd[24793]: Invalid user postgres from 106.75.45.180 port 55774 May 11 05:46:45 ns392434 sshd[24793]: Failed password for invalid user postgres from 106.75.45.180 port 55774 ssh2 May 11 05:51:34 ns392434 sshd[24952]: Invalid user goon from 106.75.45.180 port 55735	2020-05-11 16:33:49
attackspam	SSH Brute Force	2020-05-01 19:05:38
attackbots	Apr 17 11:31:30 ovpn sshd\[32264\]: Invalid user guoq from 106.75.45.180 Apr 17 11:31:30 ovpn sshd\[32264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.180 Apr 17 11:31:32 ovpn sshd\[32264\]: Failed password for invalid user guoq from 106.75.45.180 port 54635 ssh2 Apr 17 11:47:15 ovpn sshd\[3880\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.180 user=root Apr 17 11:47:17 ovpn sshd\[3880\]: Failed password for root from 106.75.45.180 port 55599 ssh2	2020-04-17 17:59:39
attackbots	Apr 11 05:35:46 mail sshd\[43501\]: Invalid user MGR from 106.75.45.180 Apr 11 05:35:46 mail sshd\[43501\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.180 ...	2020-04-11 18:51:22
attack	Apr 5 01:22:49 pve sshd[25953]: Failed password for root from 106.75.45.180 port 41231 ssh2 Apr 5 01:26:05 pve sshd[26509]: Failed password for root from 106.75.45.180 port 40231 ssh2	2020-04-05 09:07:28
attackbots	Invalid user xxo from 106.75.45.180 port 44995	2020-03-30 06:24:09
attack	Mar 29 01:41:23 firewall sshd[29545]: Invalid user tgg from 106.75.45.180 Mar 29 01:41:25 firewall sshd[29545]: Failed password for invalid user tgg from 106.75.45.180 port 56438 ssh2 Mar 29 01:46:12 firewall sshd[29718]: Invalid user rqn from 106.75.45.180 ...	2020-03-29 13:04:50
attackbotsspam	Mar 21 13:55:36 eventyay sshd[6952]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.180 Mar 21 13:55:39 eventyay sshd[6952]: Failed password for invalid user ubuntu from 106.75.45.180 port 38186 ssh2 Mar 21 13:59:54 eventyay sshd[7273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.180 ...	2020-03-21 21:13:12
attack	Sep 12 11:28:28 yabzik sshd[24702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.180 Sep 12 11:28:29 yabzik sshd[24702]: Failed password for invalid user minecraft123 from 106.75.45.180 port 38341 ssh2 Sep 12 11:34:22 yabzik sshd[26652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.180	2019-09-12 22:24:32
attack	Invalid user user from 106.75.45.180 port 54347	2019-09-11 11:10:45
attack	Sep 6 19:15:07 auw2 sshd\[19879\]: Invalid user vagrant from 106.75.45.180 Sep 6 19:15:07 auw2 sshd\[19879\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.180 Sep 6 19:15:09 auw2 sshd\[19879\]: Failed password for invalid user vagrant from 106.75.45.180 port 44184 ssh2 Sep 6 19:20:53 auw2 sshd\[20290\]: Invalid user testftp from 106.75.45.180 Sep 6 19:20:53 auw2 sshd\[20290\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.180	2019-09-07 13:27:31
attackbotsspam	Sep 6 16:38:06 ny01 sshd[3840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.180 Sep 6 16:38:08 ny01 sshd[3840]: Failed password for invalid user ts3 from 106.75.45.180 port 42345 ssh2 Sep 6 16:43:30 ny01 sshd[4828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.180	2019-09-07 05:04:05
attackbotsspam	Jul 15 03:15:31 aat-srv002 sshd[5175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.180 Jul 15 03:15:33 aat-srv002 sshd[5175]: Failed password for invalid user sw from 106.75.45.180 port 58129 ssh2 Jul 15 03:19:24 aat-srv002 sshd[5264]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.180 Jul 15 03:19:26 aat-srv002 sshd[5264]: Failed password for invalid user proftpd from 106.75.45.180 port 47111 ssh2 ...	2019-07-15 20:26:34
attack	Jun 25 08:58:55 ovpn sshd\[3650\]: Invalid user unreal from 106.75.45.180 Jun 25 08:58:55 ovpn sshd\[3650\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.180 Jun 25 08:58:57 ovpn sshd\[3650\]: Failed password for invalid user unreal from 106.75.45.180 port 42044 ssh2 Jun 25 09:05:12 ovpn sshd\[3752\]: Invalid user shang from 106.75.45.180 Jun 25 09:05:12 ovpn sshd\[3752\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.180	2019-06-25 15:39:32
attack	24.06.2019 19:24:29 SSH access blocked by firewall	2019-06-25 03:31:09
attackbots	Invalid user dayz from 106.75.45.180 port 35670	2019-06-24 13:44:05

相同子网IP讨论:

IP	类型	评论内容	时间
106.75.45.177	attackbots	2020-03-19T16:15:36.643984shield sshd\[1665\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.177 user=root 2020-03-19T16:15:38.382874shield sshd\[1665\]: Failed password for root from 106.75.45.177 port 59671 ssh2 2020-03-19T16:20:05.102449shield sshd\[3252\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.177 user=root 2020-03-19T16:20:06.433082shield sshd\[3252\]: Failed password for root from 106.75.45.177 port 46240 ssh2 2020-03-19T16:24:15.041465shield sshd\[4666\]: Invalid user icinga from 106.75.45.177 port 32810	2020-03-20 03:31:18

类型

评论内容

时间

106.75.45.177

attackbots

2020-03-19T16:15:36.643984shield sshd\[1665\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.177  user=root
2020-03-19T16:15:38.382874shield sshd\[1665\]: Failed password for root from 106.75.45.177 port 59671 ssh2
2020-03-19T16:20:05.102449shield sshd\[3252\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.177  user=root
2020-03-19T16:20:06.433082shield sshd\[3252\]: Failed password for root from 106.75.45.177 port 46240 ssh2
2020-03-19T16:24:15.041465shield sshd\[4666\]: Invalid user icinga from 106.75.45.177 port 32810

2020-03-20 03:31:18

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.45.180
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50151
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.45.180.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040903 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed Apr 10 08:01:19 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 180.45.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 180.45.75.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
5.135.185.27	attackbotsspam	Jun 9 02:00:15 hosting sshd[10364]: Invalid user baidu from 5.135.185.27 port 54036 ...	2020-06-09 08:22:10
206.189.128.215	attackspam	Jun 9 05:51:01 [host] sshd[5894]: pam_unix(sshd:a Jun 9 05:51:03 [host] sshd[5894]: Failed password Jun 9 05:57:44 [host] sshd[6273]: pam_unix(sshd:a	2020-06-09 12:11:12
46.38.145.247	attack	2020-06-09T06:08:42.102550www postfix/smtpd[11265]: warning: unknown[46.38.145.247]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-06-09T06:11:19.404548www postfix/smtpd[11265]: warning: unknown[46.38.145.247]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-06-09T06:13:48.182974www postfix/smtpd[11310]: warning: unknown[46.38.145.247]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-09 12:16:13
106.124.141.108	attack	Jun 8 22:27:31 rush sshd[16665]: Failed password for root from 106.124.141.108 port 51723 ssh2 Jun 8 22:31:18 rush sshd[16792]: Failed password for root from 106.124.141.108 port 50429 ssh2 ...	2020-06-09 08:18:37
180.166.141.58	attackbotsspam	Jun 9 05:57:45 debian-2gb-nbg1-2 kernel: \[13933802.411943\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=180.166.141.58 DST=195.201.40.59 LEN=40 TOS=0x08 PREC=0x00 TTL=237 ID=22805 PROTO=TCP SPT=50029 DPT=4824 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-09 12:08:57
49.88.112.76	attack	Jun 8 20:28:54 firewall sshd[24231]: Failed password for root from 49.88.112.76 port 33557 ssh2 Jun 8 20:28:57 firewall sshd[24231]: Failed password for root from 49.88.112.76 port 33557 ssh2 Jun 8 20:28:59 firewall sshd[24231]: Failed password for root from 49.88.112.76 port 33557 ssh2 ...	2020-06-09 08:20:22
61.51.95.234	attackspambots	2020-06-08T19:58:42.422665devel sshd[23086]: Failed password for invalid user rx from 61.51.95.234 port 43784 ssh2 2020-06-08T20:15:38.804172devel sshd[24640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.51.95.234 user=root 2020-06-08T20:15:40.651118devel sshd[24640]: Failed password for root from 61.51.95.234 port 36181 ssh2	2020-06-09 08:24:37
106.12.102.210	attackbots	Jun 9 06:56:30 pkdns2 sshd\[56540\]: Invalid user nr from 106.12.102.210Jun 9 06:56:32 pkdns2 sshd\[56540\]: Failed password for invalid user nr from 106.12.102.210 port 57556 ssh2Jun 9 06:58:55 pkdns2 sshd\[56624\]: Invalid user totallogin from 106.12.102.210Jun 9 06:58:58 pkdns2 sshd\[56624\]: Failed password for invalid user totallogin from 106.12.102.210 port 58782 ssh2Jun 9 07:01:09 pkdns2 sshd\[56765\]: Failed password for root from 106.12.102.210 port 59996 ssh2Jun 9 07:03:13 pkdns2 sshd\[56833\]: Invalid user sounosuke from 106.12.102.210 ...	2020-06-09 12:18:37
92.222.90.130	attackbots	Jun 9 05:03:38 gestao sshd[15769]: Failed password for root from 92.222.90.130 port 47786 ssh2 Jun 9 05:05:38 gestao sshd[15876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.90.130 Jun 9 05:05:40 gestao sshd[15876]: Failed password for invalid user auto from 92.222.90.130 port 53546 ssh2 ...	2020-06-09 12:06:39
185.130.184.202	attackbots	Comment spam	2020-06-09 08:20:44
157.245.64.140	attack	Jun 9 05:45:26 roki-contabo sshd\[21609\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.64.140 user=root Jun 9 05:45:28 roki-contabo sshd\[21609\]: Failed password for root from 157.245.64.140 port 48222 ssh2 Jun 9 05:54:21 roki-contabo sshd\[21713\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.64.140 user=root Jun 9 05:54:22 roki-contabo sshd\[21713\]: Failed password for root from 157.245.64.140 port 34022 ssh2 Jun 9 05:57:30 roki-contabo sshd\[21733\]: Invalid user test123 from 157.245.64.140 Jun 9 05:57:30 roki-contabo sshd\[21733\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.64.140 ...	2020-06-09 12:26:48
103.52.52.22	attackbots	Jun 9 05:02:51 gestao sshd[15741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.52.22 Jun 9 05:02:53 gestao sshd[15741]: Failed password for invalid user ubnt from 103.52.52.22 port 50237 ssh2 Jun 9 05:05:45 gestao sshd[15888]: Failed password for root from 103.52.52.22 port 43613 ssh2 ...	2020-06-09 12:31:25
186.101.32.102	attack	Jun 9 08:57:52 gw1 sshd[5802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.101.32.102 Jun 9 08:57:54 gw1 sshd[5802]: Failed password for invalid user miner from 186.101.32.102 port 53942 ssh2 ...	2020-06-09 12:04:43
72.66.64.33	attackbotsspam	Automatic report - Port Scan	2020-06-09 12:13:55
222.186.175.151	attack	2020-06-09T05:57:44.104497vps751288.ovh.net sshd\[9842\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.151 user=root 2020-06-09T05:57:46.378863vps751288.ovh.net sshd\[9842\]: Failed password for root from 222.186.175.151 port 25662 ssh2 2020-06-09T05:57:49.636516vps751288.ovh.net sshd\[9842\]: Failed password for root from 222.186.175.151 port 25662 ssh2 2020-06-09T05:57:53.641740vps751288.ovh.net sshd\[9842\]: Failed password for root from 222.186.175.151 port 25662 ssh2 2020-06-09T05:57:58.281919vps751288.ovh.net sshd\[9842\]: Failed password for root from 222.186.175.151 port 25662 ssh2	2020-06-09 12:02:28

最近上报的IP列表

60.12.249.230	18.219.54.109	179.96.62.29	190.56.4.44
182.18.162.136	45.67.15.154	58.242.83.28	39.104.67.3
165.227.212.86	148.70.10.178	180.246.62.191	190.2.149.27
61.220.128.67	104.199.214.147	201.250.164.223	122.21.142.247
51.15.106.195	183.87.134.100	58.221.55.148	37.195.105.57