106.75.55.46 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2020-09-22T05:03:16.895884morrigan.ad5gb.com sshd[2150621]: Invalid user it from 106.75.55.46 port 53610	2020-09-22 20:48:18
attack	Sep 22 11:37:32 web1 sshd[20106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46 user=root Sep 22 11:37:34 web1 sshd[20106]: Failed password for root from 106.75.55.46 port 38798 ssh2 Sep 22 11:57:20 web1 sshd[26757]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46 user=root Sep 22 11:57:22 web1 sshd[26757]: Failed password for root from 106.75.55.46 port 33120 ssh2 Sep 22 12:05:47 web1 sshd[29972]: Invalid user eduardo from 106.75.55.46 port 41600 Sep 22 12:05:47 web1 sshd[29972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46 Sep 22 12:05:47 web1 sshd[29972]: Invalid user eduardo from 106.75.55.46 port 41600 Sep 22 12:05:50 web1 sshd[29972]: Failed password for invalid user eduardo from 106.75.55.46 port 41600 ssh2 Sep 22 12:14:25 web1 sshd[382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh rus ...	2020-09-22 12:47:04
attackspam	Automatic report - Banned IP Access	2020-09-22 04:56:30
attack	Aug 24 01:27:59 sxvn sshd[12409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46	2020-08-24 09:04:36
attackbotsspam	$f2bV_matches	2020-08-21 22:21:28
attackbots	SSH Brute-Forcing (server1)	2020-07-31 02:23:57
attack	Jul 30 13:00:39 santamaria sshd\[25409\]: Invalid user slider from 106.75.55.46 Jul 30 13:00:39 santamaria sshd\[25409\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46 Jul 30 13:00:42 santamaria sshd\[25409\]: Failed password for invalid user slider from 106.75.55.46 port 38864 ssh2 ...	2020-07-30 20:03:22
attackspambots	Jul 25 21:28:38 server sshd[21042]: Failed password for invalid user admin from 106.75.55.46 port 50798 ssh2 Jul 25 21:31:36 server sshd[22099]: Failed password for invalid user apc from 106.75.55.46 port 37380 ssh2 Jul 25 21:34:37 server sshd[23293]: Failed password for invalid user yxy from 106.75.55.46 port 52192 ssh2	2020-07-26 04:10:06
attack	Jul 17 14:05:52 abendstille sshd\[3847\]: Invalid user sapdb from 106.75.55.46 Jul 17 14:05:52 abendstille sshd\[3847\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46 Jul 17 14:05:54 abendstille sshd\[3847\]: Failed password for invalid user sapdb from 106.75.55.46 port 45698 ssh2 Jul 17 14:11:05 abendstille sshd\[9030\]: Invalid user xp from 106.75.55.46 Jul 17 14:11:05 abendstille sshd\[9030\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46 ...	2020-07-18 01:04:33
attack	Jul 16 05:55:39 lnxweb61 sshd[27479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46	2020-07-16 12:19:35
attackspambots	Jul 10 08:27:24 lukav-desktop sshd\[6354\]: Invalid user linuxmint from 106.75.55.46 Jul 10 08:27:24 lukav-desktop sshd\[6354\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46 Jul 10 08:27:26 lukav-desktop sshd\[6354\]: Failed password for invalid user linuxmint from 106.75.55.46 port 41898 ssh2 Jul 10 08:29:22 lukav-desktop sshd\[6400\]: Invalid user yongmi from 106.75.55.46 Jul 10 08:29:22 lukav-desktop sshd\[6400\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46	2020-07-10 14:00:18
attackbotsspam	Cluster member 67.227.229.95 (US/United States/saathoff.geek) said, DENY 106.75.55.46, Reason:[(sshd) Failed SSH login from 106.75.55.46 (CN/China/-): 1 in the last 3600 secs]; Ports: *; Direction: inout; Trigger: LF_CLUSTER	2020-07-06 01:51:37
attackbots	Jun 30 15:35:27 pkdns2 sshd\[9451\]: Invalid user mmk from 106.75.55.46Jun 30 15:35:30 pkdns2 sshd\[9451\]: Failed password for invalid user mmk from 106.75.55.46 port 50952 ssh2Jun 30 15:37:24 pkdns2 sshd\[9531\]: Invalid user bmo from 106.75.55.46Jun 30 15:37:26 pkdns2 sshd\[9531\]: Failed password for invalid user bmo from 106.75.55.46 port 49100 ssh2Jun 30 15:39:25 pkdns2 sshd\[9610\]: Failed password for root from 106.75.55.46 port 47252 ssh2Jun 30 15:41:28 pkdns2 sshd\[9721\]: Invalid user hec from 106.75.55.46 ...	2020-07-01 02:30:24
attackbotsspam	Jun 23 08:05:03 lanister sshd[21205]: Failed password for invalid user web from 106.75.55.46 port 34134 ssh2 Jun 23 08:05:02 lanister sshd[21205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46 Jun 23 08:05:02 lanister sshd[21205]: Invalid user web from 106.75.55.46 Jun 23 08:05:03 lanister sshd[21205]: Failed password for invalid user web from 106.75.55.46 port 34134 ssh2	2020-06-24 02:08:16
attackspambots	5x Failed Password	2020-06-08 05:33:18

相同子网IP讨论:

IP	类型	评论内容	时间
106.75.55.123	attackspam	Jul 23 08:04:17 hidden sshd[64875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.123 Jul 23 08:04:20 hidden sshd[64875]: Failed password for invalid user norm from 106.75.55.123 port 45310 ssh2 Jul 23 08:09:21 hidden sshd[593]: Invalid user nadia from 106.75.55.123 port 57512	2020-07-23 14:34:24
106.75.55.123	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-18T19:43:47Z and 2020-07-18T19:52:14Z	2020-07-19 04:01:55
106.75.55.123	attackbots	Jun 18 07:33:26 OPSO sshd\[2489\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.123 user=root Jun 18 07:33:28 OPSO sshd\[2489\]: Failed password for root from 106.75.55.123 port 37484 ssh2 Jun 18 07:37:03 OPSO sshd\[3281\]: Invalid user ryan from 106.75.55.123 port 60520 Jun 18 07:37:03 OPSO sshd\[3281\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.123 Jun 18 07:37:05 OPSO sshd\[3281\]: Failed password for invalid user ryan from 106.75.55.123 port 60520 ssh2	2020-06-18 18:36:00
106.75.55.123	attack	2020-06-14T20:40:56.877022+02:00 sshd[6234]: Failed password for invalid user solr from 106.75.55.123 port 59970 ssh2	2020-06-15 04:28:11
106.75.55.123	attackspam	Jun 7 20:02:26 mail sshd[2086]: Failed password for root from 106.75.55.123 port 45154 ssh2 Jun 7 20:12:12 mail sshd[3298]: Failed password for root from 106.75.55.123 port 39978 ssh2 Jun 7 20:14:02 mail sshd[3508]: Failed password for root from 106.75.55.123 port 37600 ssh2 ...	2020-06-08 02:25:39
106.75.55.123	attack	May 13 06:12:10 eventyay sshd[28971]: Failed password for root from 106.75.55.123 port 49578 ssh2 May 13 06:15:01 eventyay sshd[29040]: Failed password for root from 106.75.55.123 port 58574 ssh2 ...	2020-05-13 12:56:36
106.75.55.123	attackspambots	$f2bV_matches	2020-05-09 00:15:02
106.75.55.123	attack	Apr 18 15:20:27 DAAP sshd[32049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.123 user=root Apr 18 15:20:29 DAAP sshd[32049]: Failed password for root from 106.75.55.123 port 35504 ssh2 Apr 18 15:26:07 DAAP sshd[32152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.123 user=root Apr 18 15:26:09 DAAP sshd[32152]: Failed password for root from 106.75.55.123 port 55346 ssh2 Apr 18 15:29:37 DAAP sshd[32239]: Invalid user huawei from 106.75.55.123 port 36638 ...	2020-04-19 03:42:59
106.75.55.190	attackbots	TCP src-port=46868 dst-port=25 Listed on barracuda zen-spamhaus spam-sorbs (126)	2020-04-10 20:54:20
106.75.55.123	attackspam	Apr 2 07:51:26 [host] sshd[4768]: pam_unix(sshd:a Apr 2 07:51:27 [host] sshd[4768]: Failed password Apr 2 07:53:26 [host] sshd[4786]: Invalid user bi	2020-04-02 17:02:43
106.75.55.123	attack	5x Failed Password	2020-04-02 05:33:27
106.75.55.123	attackbots	Invalid user year from 106.75.55.123 port 57242	2020-03-25 08:11:21
106.75.55.123	attackbots	Mar 8 14:15:10 areeb-Workstation sshd[11935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.123 Mar 8 14:15:12 areeb-Workstation sshd[11935]: Failed password for invalid user sphinx from 106.75.55.123 port 45558 ssh2 ...	2020-03-08 17:03:50
106.75.55.123	attack	Feb 11 17:24:42 Ubuntu-1404-trusty-64-minimal sshd\[17552\]: Invalid user skb from 106.75.55.123 Feb 11 17:24:42 Ubuntu-1404-trusty-64-minimal sshd\[17552\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.123 Feb 11 17:24:44 Ubuntu-1404-trusty-64-minimal sshd\[17552\]: Failed password for invalid user skb from 106.75.55.123 port 40562 ssh2 Feb 11 17:36:14 Ubuntu-1404-trusty-64-minimal sshd\[27450\]: Invalid user lac from 106.75.55.123 Feb 11 17:36:14 Ubuntu-1404-trusty-64-minimal sshd\[27450\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.123	2020-02-12 02:15:35
106.75.55.123	attackspam	Unauthorized connection attempt detected from IP address 106.75.55.123 to port 2220 [J]	2020-01-29 23:09:28

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.55.46
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6337
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.55.46.			IN	A

;; AUTHORITY SECTION:
.			435	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060701 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 08 05:33:14 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 46.55.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 46.55.75.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
149.202.206.206	attack	Sep 29 03:03:41 gw1 sshd[16905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.206.206 Sep 29 03:03:43 gw1 sshd[16905]: Failed password for invalid user admin from 149.202.206.206 port 47664 ssh2 ...	2019-09-29 06:06:36
106.75.74.6	attack	Sep 28 23:32:39 ns37 sshd[20814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.74.6	2019-09-29 06:01:42
104.214.224.93	attack	$f2bV_matches	2019-09-29 06:06:55
94.191.108.37	attackbots	Sep 28 11:54:28 web1 sshd\[23669\]: Invalid user lynette from 94.191.108.37 Sep 28 11:54:28 web1 sshd\[23669\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.108.37 Sep 28 11:54:29 web1 sshd\[23669\]: Failed password for invalid user lynette from 94.191.108.37 port 34994 ssh2 Sep 28 11:57:11 web1 sshd\[23909\]: Invalid user girl from 94.191.108.37 Sep 28 11:57:11 web1 sshd\[23909\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.108.37	2019-09-29 05:57:16
115.238.236.74	attackbotsspam	Sep 28 11:41:26 hpm sshd\[26059\]: Invalid user london from 115.238.236.74 Sep 28 11:41:26 hpm sshd\[26059\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.238.236.74 Sep 28 11:41:29 hpm sshd\[26059\]: Failed password for invalid user london from 115.238.236.74 port 24291 ssh2 Sep 28 11:45:38 hpm sshd\[26439\]: Invalid user eternum from 115.238.236.74 Sep 28 11:45:38 hpm sshd\[26439\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.238.236.74	2019-09-29 05:58:51
222.186.15.204	attackspam	Sep 28 23:48:48 dcd-gentoo sshd[32027]: User root from 222.186.15.204 not allowed because none of user's groups are listed in AllowGroups Sep 28 23:48:51 dcd-gentoo sshd[32027]: error: PAM: Authentication failure for illegal user root from 222.186.15.204 Sep 28 23:48:48 dcd-gentoo sshd[32027]: User root from 222.186.15.204 not allowed because none of user's groups are listed in AllowGroups Sep 28 23:48:51 dcd-gentoo sshd[32027]: error: PAM: Authentication failure for illegal user root from 222.186.15.204 Sep 28 23:48:48 dcd-gentoo sshd[32027]: User root from 222.186.15.204 not allowed because none of user's groups are listed in AllowGroups Sep 28 23:48:51 dcd-gentoo sshd[32027]: error: PAM: Authentication failure for illegal user root from 222.186.15.204 Sep 28 23:48:51 dcd-gentoo sshd[32027]: Failed keyboard-interactive/pam for invalid user root from 222.186.15.204 port 43871 ssh2 ...	2019-09-29 05:51:12
222.186.180.41	attack	Sep 28 18:08:15 ny01 sshd[31518]: Failed password for root from 222.186.180.41 port 19566 ssh2 Sep 28 18:08:15 ny01 sshd[31520]: Failed password for root from 222.186.180.41 port 4516 ssh2 Sep 28 18:08:20 ny01 sshd[31518]: Failed password for root from 222.186.180.41 port 19566 ssh2 Sep 28 18:08:20 ny01 sshd[31520]: Failed password for root from 222.186.180.41 port 4516 ssh2	2019-09-29 06:15:42
158.69.250.183	attack	Sep 28 23:57:20 vps01 sshd[9254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.250.183 Sep 28 23:57:22 vps01 sshd[9254]: Failed password for invalid user minecraft from 158.69.250.183 port 60538 ssh2	2019-09-29 06:14:24
223.111.184.10	attackspam	Sep 28 11:50:21 sachi sshd\[18233\]: Invalid user changeme from 223.111.184.10 Sep 28 11:50:21 sachi sshd\[18233\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.111.184.10 Sep 28 11:50:23 sachi sshd\[18233\]: Failed password for invalid user changeme from 223.111.184.10 port 35528 ssh2 Sep 28 11:53:22 sachi sshd\[18518\]: Invalid user uClinux from 223.111.184.10 Sep 28 11:53:22 sachi sshd\[18518\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.111.184.10	2019-09-29 06:21:22
91.121.87.174	attackspam	Sep 28 23:17:07 MainVPS sshd[9834]: Invalid user bot from 91.121.87.174 port 42946 Sep 28 23:17:07 MainVPS sshd[9834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.87.174 Sep 28 23:17:07 MainVPS sshd[9834]: Invalid user bot from 91.121.87.174 port 42946 Sep 28 23:17:09 MainVPS sshd[9834]: Failed password for invalid user bot from 91.121.87.174 port 42946 ssh2 Sep 28 23:20:25 MainVPS sshd[10070]: Invalid user kv from 91.121.87.174 port 54508 ...	2019-09-29 05:58:28
23.129.64.209	attack	Sep 28 22:51:44 rotator sshd\[21753\]: Invalid user aaron from 23.129.64.209Sep 28 22:51:46 rotator sshd\[21753\]: Failed password for invalid user aaron from 23.129.64.209 port 47914 ssh2Sep 28 22:51:49 rotator sshd\[21753\]: Failed password for invalid user aaron from 23.129.64.209 port 47914 ssh2Sep 28 22:51:53 rotator sshd\[21753\]: Failed password for invalid user aaron from 23.129.64.209 port 47914 ssh2Sep 28 22:52:01 rotator sshd\[21763\]: Invalid user abass from 23.129.64.209Sep 28 22:52:03 rotator sshd\[21763\]: Failed password for invalid user abass from 23.129.64.209 port 62712 ssh2 ...	2019-09-29 06:20:55
112.85.42.72	attack	Sep 28 17:54:51 xentho sshd[8144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.72 user=root Sep 28 17:54:53 xentho sshd[8144]: Failed password for root from 112.85.42.72 port 36520 ssh2 Sep 28 17:54:55 xentho sshd[8144]: Failed password for root from 112.85.42.72 port 36520 ssh2 Sep 28 17:54:51 xentho sshd[8144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.72 user=root Sep 28 17:54:53 xentho sshd[8144]: Failed password for root from 112.85.42.72 port 36520 ssh2 Sep 28 17:54:55 xentho sshd[8144]: Failed password for root from 112.85.42.72 port 36520 ssh2 Sep 28 17:54:51 xentho sshd[8144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.72 user=root Sep 28 17:54:53 xentho sshd[8144]: Failed password for root from 112.85.42.72 port 36520 ssh2 Sep 28 17:54:55 xentho sshd[8144]: Failed password for root from 112.85.42.72 port 36520 ...	2019-09-29 05:59:41
93.115.52.40	attackbotsspam	Chat Spam	2019-09-29 06:22:56
165.227.223.104	attackbotsspam	xmlrpc attack	2019-09-29 06:00:08
187.189.225.85	attack	Chat Spam	2019-09-29 05:55:09

最近上报的IP列表

81.95.108.170	178.238.8.106	42.200.252.62	125.85.204.76
37.158.63.10	150.136.160.141	218.143.170.133	21.201.118.137
104.150.146.252	137.112.178.59	155.54.122.100	177.12.50.1
72.102.13.161	235.98.20.119	10.19.143.6	97.179.199.66
14.138.165.231	46.52.222.232	163.243.236.138	102.134.211.11