106.75.55.46 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2020-09-22T05:03:16.895884morrigan.ad5gb.com sshd[2150621]: Invalid user it from 106.75.55.46 port 53610	2020-09-22 20:48:18
attack	Sep 22 11:37:32 web1 sshd[20106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46 user=root Sep 22 11:37:34 web1 sshd[20106]: Failed password for root from 106.75.55.46 port 38798 ssh2 Sep 22 11:57:20 web1 sshd[26757]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46 user=root Sep 22 11:57:22 web1 sshd[26757]: Failed password for root from 106.75.55.46 port 33120 ssh2 Sep 22 12:05:47 web1 sshd[29972]: Invalid user eduardo from 106.75.55.46 port 41600 Sep 22 12:05:47 web1 sshd[29972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46 Sep 22 12:05:47 web1 sshd[29972]: Invalid user eduardo from 106.75.55.46 port 41600 Sep 22 12:05:50 web1 sshd[29972]: Failed password for invalid user eduardo from 106.75.55.46 port 41600 ssh2 Sep 22 12:14:25 web1 sshd[382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh rus ...	2020-09-22 12:47:04
attackspam	Automatic report - Banned IP Access	2020-09-22 04:56:30
attack	Aug 24 01:27:59 sxvn sshd[12409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46	2020-08-24 09:04:36
attackbotsspam	$f2bV_matches	2020-08-21 22:21:28
attackbots	SSH Brute-Forcing (server1)	2020-07-31 02:23:57
attack	Jul 30 13:00:39 santamaria sshd\[25409\]: Invalid user slider from 106.75.55.46 Jul 30 13:00:39 santamaria sshd\[25409\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46 Jul 30 13:00:42 santamaria sshd\[25409\]: Failed password for invalid user slider from 106.75.55.46 port 38864 ssh2 ...	2020-07-30 20:03:22
attackspambots	Jul 25 21:28:38 server sshd[21042]: Failed password for invalid user admin from 106.75.55.46 port 50798 ssh2 Jul 25 21:31:36 server sshd[22099]: Failed password for invalid user apc from 106.75.55.46 port 37380 ssh2 Jul 25 21:34:37 server sshd[23293]: Failed password for invalid user yxy from 106.75.55.46 port 52192 ssh2	2020-07-26 04:10:06
attack	Jul 17 14:05:52 abendstille sshd\[3847\]: Invalid user sapdb from 106.75.55.46 Jul 17 14:05:52 abendstille sshd\[3847\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46 Jul 17 14:05:54 abendstille sshd\[3847\]: Failed password for invalid user sapdb from 106.75.55.46 port 45698 ssh2 Jul 17 14:11:05 abendstille sshd\[9030\]: Invalid user xp from 106.75.55.46 Jul 17 14:11:05 abendstille sshd\[9030\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46 ...	2020-07-18 01:04:33
attack	Jul 16 05:55:39 lnxweb61 sshd[27479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46	2020-07-16 12:19:35
attackspambots	Jul 10 08:27:24 lukav-desktop sshd\[6354\]: Invalid user linuxmint from 106.75.55.46 Jul 10 08:27:24 lukav-desktop sshd\[6354\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46 Jul 10 08:27:26 lukav-desktop sshd\[6354\]: Failed password for invalid user linuxmint from 106.75.55.46 port 41898 ssh2 Jul 10 08:29:22 lukav-desktop sshd\[6400\]: Invalid user yongmi from 106.75.55.46 Jul 10 08:29:22 lukav-desktop sshd\[6400\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46	2020-07-10 14:00:18
attackbotsspam	Cluster member 67.227.229.95 (US/United States/saathoff.geek) said, DENY 106.75.55.46, Reason:[(sshd) Failed SSH login from 106.75.55.46 (CN/China/-): 1 in the last 3600 secs]; Ports: *; Direction: inout; Trigger: LF_CLUSTER	2020-07-06 01:51:37
attackbots	Jun 30 15:35:27 pkdns2 sshd\[9451\]: Invalid user mmk from 106.75.55.46Jun 30 15:35:30 pkdns2 sshd\[9451\]: Failed password for invalid user mmk from 106.75.55.46 port 50952 ssh2Jun 30 15:37:24 pkdns2 sshd\[9531\]: Invalid user bmo from 106.75.55.46Jun 30 15:37:26 pkdns2 sshd\[9531\]: Failed password for invalid user bmo from 106.75.55.46 port 49100 ssh2Jun 30 15:39:25 pkdns2 sshd\[9610\]: Failed password for root from 106.75.55.46 port 47252 ssh2Jun 30 15:41:28 pkdns2 sshd\[9721\]: Invalid user hec from 106.75.55.46 ...	2020-07-01 02:30:24
attackbotsspam	Jun 23 08:05:03 lanister sshd[21205]: Failed password for invalid user web from 106.75.55.46 port 34134 ssh2 Jun 23 08:05:02 lanister sshd[21205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.46 Jun 23 08:05:02 lanister sshd[21205]: Invalid user web from 106.75.55.46 Jun 23 08:05:03 lanister sshd[21205]: Failed password for invalid user web from 106.75.55.46 port 34134 ssh2	2020-06-24 02:08:16
attackspambots	5x Failed Password	2020-06-08 05:33:18

相同子网IP讨论:

IP	类型	评论内容	时间
106.75.55.123	attackspam	Jul 23 08:04:17 hidden sshd[64875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.123 Jul 23 08:04:20 hidden sshd[64875]: Failed password for invalid user norm from 106.75.55.123 port 45310 ssh2 Jul 23 08:09:21 hidden sshd[593]: Invalid user nadia from 106.75.55.123 port 57512	2020-07-23 14:34:24
106.75.55.123	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-18T19:43:47Z and 2020-07-18T19:52:14Z	2020-07-19 04:01:55
106.75.55.123	attackbots	Jun 18 07:33:26 OPSO sshd\[2489\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.123 user=root Jun 18 07:33:28 OPSO sshd\[2489\]: Failed password for root from 106.75.55.123 port 37484 ssh2 Jun 18 07:37:03 OPSO sshd\[3281\]: Invalid user ryan from 106.75.55.123 port 60520 Jun 18 07:37:03 OPSO sshd\[3281\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.123 Jun 18 07:37:05 OPSO sshd\[3281\]: Failed password for invalid user ryan from 106.75.55.123 port 60520 ssh2	2020-06-18 18:36:00
106.75.55.123	attack	2020-06-14T20:40:56.877022+02:00 sshd[6234]: Failed password for invalid user solr from 106.75.55.123 port 59970 ssh2	2020-06-15 04:28:11
106.75.55.123	attackspam	Jun 7 20:02:26 mail sshd[2086]: Failed password for root from 106.75.55.123 port 45154 ssh2 Jun 7 20:12:12 mail sshd[3298]: Failed password for root from 106.75.55.123 port 39978 ssh2 Jun 7 20:14:02 mail sshd[3508]: Failed password for root from 106.75.55.123 port 37600 ssh2 ...	2020-06-08 02:25:39
106.75.55.123	attack	May 13 06:12:10 eventyay sshd[28971]: Failed password for root from 106.75.55.123 port 49578 ssh2 May 13 06:15:01 eventyay sshd[29040]: Failed password for root from 106.75.55.123 port 58574 ssh2 ...	2020-05-13 12:56:36
106.75.55.123	attackspambots	$f2bV_matches	2020-05-09 00:15:02
106.75.55.123	attack	Apr 18 15:20:27 DAAP sshd[32049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.123 user=root Apr 18 15:20:29 DAAP sshd[32049]: Failed password for root from 106.75.55.123 port 35504 ssh2 Apr 18 15:26:07 DAAP sshd[32152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.123 user=root Apr 18 15:26:09 DAAP sshd[32152]: Failed password for root from 106.75.55.123 port 55346 ssh2 Apr 18 15:29:37 DAAP sshd[32239]: Invalid user huawei from 106.75.55.123 port 36638 ...	2020-04-19 03:42:59
106.75.55.190	attackbots	TCP src-port=46868 dst-port=25 Listed on barracuda zen-spamhaus spam-sorbs (126)	2020-04-10 20:54:20
106.75.55.123	attackspam	Apr 2 07:51:26 [host] sshd[4768]: pam_unix(sshd:a Apr 2 07:51:27 [host] sshd[4768]: Failed password Apr 2 07:53:26 [host] sshd[4786]: Invalid user bi	2020-04-02 17:02:43
106.75.55.123	attack	5x Failed Password	2020-04-02 05:33:27
106.75.55.123	attackbots	Invalid user year from 106.75.55.123 port 57242	2020-03-25 08:11:21
106.75.55.123	attackbots	Mar 8 14:15:10 areeb-Workstation sshd[11935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.123 Mar 8 14:15:12 areeb-Workstation sshd[11935]: Failed password for invalid user sphinx from 106.75.55.123 port 45558 ssh2 ...	2020-03-08 17:03:50
106.75.55.123	attack	Feb 11 17:24:42 Ubuntu-1404-trusty-64-minimal sshd\[17552\]: Invalid user skb from 106.75.55.123 Feb 11 17:24:42 Ubuntu-1404-trusty-64-minimal sshd\[17552\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.123 Feb 11 17:24:44 Ubuntu-1404-trusty-64-minimal sshd\[17552\]: Failed password for invalid user skb from 106.75.55.123 port 40562 ssh2 Feb 11 17:36:14 Ubuntu-1404-trusty-64-minimal sshd\[27450\]: Invalid user lac from 106.75.55.123 Feb 11 17:36:14 Ubuntu-1404-trusty-64-minimal sshd\[27450\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.123	2020-02-12 02:15:35
106.75.55.123	attackspam	Unauthorized connection attempt detected from IP address 106.75.55.123 to port 2220 [J]	2020-01-29 23:09:28

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.55.46
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6337
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.55.46.			IN	A

;; AUTHORITY SECTION:
.			435	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060701 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 08 05:33:14 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 46.55.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 46.55.75.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
120.70.100.13	attackspambots	SSH Invalid Login	2020-07-29 06:59:38
45.160.181.31	attackbots	Unauthorized connection attempt from IP address 45.160.181.31 on Port 445(SMB)	2020-07-29 07:32:54
176.31.162.82	attackspambots	Jul 29 00:23:53 rancher-0 sshd[632187]: Invalid user office from 176.31.162.82 port 58862 ...	2020-07-29 07:15:42
119.45.50.126	attackspam	Jul 29 01:22:44 h2779839 sshd[9012]: Invalid user tiantian from 119.45.50.126 port 60376 Jul 29 01:22:44 h2779839 sshd[9012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.50.126 Jul 29 01:22:44 h2779839 sshd[9012]: Invalid user tiantian from 119.45.50.126 port 60376 Jul 29 01:22:47 h2779839 sshd[9012]: Failed password for invalid user tiantian from 119.45.50.126 port 60376 ssh2 Jul 29 01:27:04 h2779839 sshd[9097]: Invalid user yamaguchi from 119.45.50.126 port 37918 Jul 29 01:27:04 h2779839 sshd[9097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.50.126 Jul 29 01:27:04 h2779839 sshd[9097]: Invalid user yamaguchi from 119.45.50.126 port 37918 Jul 29 01:27:06 h2779839 sshd[9097]: Failed password for invalid user yamaguchi from 119.45.50.126 port 37918 ssh2 Jul 29 01:31:24 h2779839 sshd[9186]: Invalid user whl from 119.45.50.126 port 43688 ...	2020-07-29 07:33:38
4.7.94.244	attackspam	SSH invalid-user multiple login attempts	2020-07-29 07:24:56
209.85.218.68	attackbots	Subject: Dear Friend. Contact this email: moo.m58@yahoo.com,	2020-07-29 07:18:56
188.165.236.122	attackbotsspam	$f2bV_matches	2020-07-29 07:25:44
81.211.242.163	attackbotsspam	Unauthorized connection attempt from IP address 81.211.242.163 on Port 445(SMB)	2020-07-29 07:30:45
190.121.136.3	attackbots	Invalid user server from 190.121.136.3 port 45114	2020-07-29 07:08:52
85.95.150.143	attack	Multiple SSH authentication failures from 85.95.150.143	2020-07-29 07:29:40
51.79.68.147	attack	SSH Invalid Login	2020-07-29 07:27:11
193.112.5.66	attackspam	Invalid user esteban from 193.112.5.66 port 58629	2020-07-29 06:59:08
36.71.158.224	attack	Automatic report - Port Scan Attack	2020-07-29 07:34:30
122.227.159.84	attackbotsspam	Jul 29 00:18:40 jane sshd[30097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.227.159.84 Jul 29 00:18:42 jane sshd[30097]: Failed password for invalid user helong from 122.227.159.84 port 39435 ssh2 ...	2020-07-29 07:10:12
152.250.250.194	attackspambots	Automatic report - Banned IP Access	2020-07-29 07:33:08

最近上报的IP列表

81.95.108.170	178.238.8.106	42.200.252.62	125.85.204.76
37.158.63.10	150.136.160.141	218.143.170.133	21.201.118.137
104.150.146.252	137.112.178.59	155.54.122.100	177.12.50.1
72.102.13.161	235.98.20.119	10.19.143.6	97.179.199.66
14.138.165.231	46.52.222.232	163.243.236.138	102.134.211.11