106.75.64.239 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Nov 29 01:48:09 server sshd\[5164\]: Invalid user polycom from 106.75.64.239 port 55666 Nov 29 01:48:09 server sshd\[5164\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.239 Nov 29 01:48:12 server sshd\[5164\]: Failed password for invalid user polycom from 106.75.64.239 port 55666 ssh2 Nov 29 01:52:46 server sshd\[23014\]: User root from 106.75.64.239 not allowed because listed in DenyUsers Nov 29 01:52:46 server sshd\[23014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.239 user=root	2019-11-29 08:13:38
attack	2019-11-17T01:01:47.800458abusebot-5.cloudsearch.cf sshd\[1179\]: Invalid user swsgest from 106.75.64.239 port 38602	2019-11-17 09:23:03
attack	2019-10-24T20:17:24.657298abusebot-5.cloudsearch.cf sshd\[25445\]: Invalid user fuckyou from 106.75.64.239 port 57220	2019-10-25 04:40:25
attackbots	Triggered by Fail2Ban at Vostok web server	2019-09-13 06:39:57
attackbotsspam	Aug 8 23:24:44 mail sshd\[12353\]: Failed password for invalid user ubuntu from 106.75.64.239 port 56546 ssh2 Aug 8 23:41:58 mail sshd\[12620\]: Invalid user miura from 106.75.64.239 port 35362 ...	2019-08-09 09:37:53
attackspam	Jul 15 19:11:31 areeb-Workstation sshd\[14066\]: Invalid user anita from 106.75.64.239 Jul 15 19:11:31 areeb-Workstation sshd\[14066\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.239 Jul 15 19:11:33 areeb-Workstation sshd\[14066\]: Failed password for invalid user anita from 106.75.64.239 port 45410 ssh2 ...	2019-07-15 22:05:14

相同子网IP讨论:

IP	类型	评论内容	时间
106.75.64.251	attackspam	2020-08-06T17:23:42.364876amanda2.illicoweb.com sshd\[43138\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 user=root 2020-08-06T17:23:45.063593amanda2.illicoweb.com sshd\[43138\]: Failed password for root from 106.75.64.251 port 42662 ssh2 2020-08-06T17:28:25.691722amanda2.illicoweb.com sshd\[44265\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 user=root 2020-08-06T17:28:27.908519amanda2.illicoweb.com sshd\[44265\]: Failed password for root from 106.75.64.251 port 51010 ssh2 2020-08-06T17:33:06.094333amanda2.illicoweb.com sshd\[45452\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 user=root ...	2020-08-07 05:54:18
106.75.64.59	attackbots	Automatic report - Banned IP Access	2020-07-17 20:29:17
106.75.64.251	attackspam	2020-07-11T19:58:27.021080ionos.janbro.de sshd[109700]: Invalid user ten from 106.75.64.251 port 57118 2020-07-11T19:58:29.290433ionos.janbro.de sshd[109700]: Failed password for invalid user ten from 106.75.64.251 port 57118 ssh2 2020-07-11T20:01:47.531087ionos.janbro.de sshd[109718]: Invalid user dping from 106.75.64.251 port 35566 2020-07-11T20:01:47.648202ionos.janbro.de sshd[109718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 2020-07-11T20:01:47.531087ionos.janbro.de sshd[109718]: Invalid user dping from 106.75.64.251 port 35566 2020-07-11T20:01:49.311654ionos.janbro.de sshd[109718]: Failed password for invalid user dping from 106.75.64.251 port 35566 ssh2 2020-07-11T20:04:59.762594ionos.janbro.de sshd[109739]: Invalid user dingwei from 106.75.64.251 port 42246 2020-07-11T20:05:00.035149ionos.janbro.de sshd[109739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 2020-0 ...	2020-07-12 07:19:36
106.75.64.251	attackspam	Jul 8 11:51:32 ny01 sshd[8776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 Jul 8 11:51:34 ny01 sshd[8776]: Failed password for invalid user zabbix from 106.75.64.251 port 51054 ssh2 Jul 8 11:55:29 ny01 sshd[9674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251	2020-07-09 02:48:24
106.75.64.251	attackspambots	Jun 30 00:47:10 NPSTNNYC01T sshd[3726]: Failed password for root from 106.75.64.251 port 48202 ssh2 Jun 30 00:51:58 NPSTNNYC01T sshd[4087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 Jun 30 00:52:00 NPSTNNYC01T sshd[4087]: Failed password for invalid user admin from 106.75.64.251 port 41944 ssh2 ...	2020-06-30 12:54:53
106.75.64.251	attackbots	(sshd) Failed SSH login from 106.75.64.251 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 23 15:01:24 s1 sshd[11227]: Invalid user aaron from 106.75.64.251 port 52816 Jun 23 15:01:26 s1 sshd[11227]: Failed password for invalid user aaron from 106.75.64.251 port 52816 ssh2 Jun 23 15:14:41 s1 sshd[12967]: Invalid user jesse from 106.75.64.251 port 33072 Jun 23 15:14:44 s1 sshd[12967]: Failed password for invalid user jesse from 106.75.64.251 port 33072 ssh2 Jun 23 15:19:56 s1 sshd[13490]: Invalid user r00t from 106.75.64.251 port 55146	2020-06-23 23:11:53
106.75.64.126	attackspam	2020-06-13T06:11:07.989578 sshd[18243]: Invalid user lx from 106.75.64.126 port 50866 2020-06-13T06:11:08.005333 sshd[18243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.126 2020-06-13T06:11:07.989578 sshd[18243]: Invalid user lx from 106.75.64.126 port 50866 2020-06-13T06:11:10.045454 sshd[18243]: Failed password for invalid user lx from 106.75.64.126 port 50866 ssh2 ...	2020-06-13 12:55:13
106.75.64.59	attackspambots	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 1863	2020-06-01 00:10:23
106.75.64.59	attackspam	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 2401 [T]	2020-04-15 03:25:26
106.75.64.59	attackbots	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 7779 [T]	2020-03-24 19:04:23
106.75.64.59	attack	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 8090 [J]	2020-03-03 01:48:39
106.75.64.59	attack	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 11 [T]	2020-01-29 17:44:27
106.75.64.59	attackspam	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 631 [J]	2020-01-21 01:53:52
106.75.64.59	attackspam	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 1521 [J]	2020-01-17 06:40:37
106.75.64.59	attack	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 11211 [T]	2020-01-09 00:31:34

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.64.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14836
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.64.239.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061002 1800 900 604800 86400

;; Query time: 259 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jun 11 12:02:32 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 239.64.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 239.64.75.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.169.192	attackbots	Mar 4 18:42:51 NPSTNNYC01T sshd[32725]: Failed password for root from 222.186.169.192 port 48286 ssh2 Mar 4 18:42:54 NPSTNNYC01T sshd[32725]: Failed password for root from 222.186.169.192 port 48286 ssh2 Mar 4 18:42:57 NPSTNNYC01T sshd[32725]: Failed password for root from 222.186.169.192 port 48286 ssh2 Mar 4 18:43:00 NPSTNNYC01T sshd[32725]: Failed password for root from 222.186.169.192 port 48286 ssh2 ...	2020-03-05 07:45:18
222.186.173.238	attackspambots	Mar 5 00:45:47 dedicated sshd[17773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.238 user=root Mar 5 00:45:48 dedicated sshd[17773]: Failed password for root from 222.186.173.238 port 34810 ssh2	2020-03-05 07:52:36
49.233.136.245	attackspam	2020-03-04T23:57:37.386130vps773228.ovh.net sshd[2523]: Invalid user dcc from 49.233.136.245 port 58056 2020-03-04T23:57:37.393037vps773228.ovh.net sshd[2523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.136.245 2020-03-04T23:57:37.386130vps773228.ovh.net sshd[2523]: Invalid user dcc from 49.233.136.245 port 58056 2020-03-04T23:57:39.627166vps773228.ovh.net sshd[2523]: Failed password for invalid user dcc from 49.233.136.245 port 58056 ssh2 2020-03-05T00:08:56.575505vps773228.ovh.net sshd[2681]: Invalid user miaohaoran from 49.233.136.245 port 41268 2020-03-05T00:08:56.592819vps773228.ovh.net sshd[2681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.136.245 2020-03-05T00:08:56.575505vps773228.ovh.net sshd[2681]: Invalid user miaohaoran from 49.233.136.245 port 41268 2020-03-05T00:08:58.375414vps773228.ovh.net sshd[2681]: Failed password for invalid user miaohaoran from 49.233.136.245 por ...	2020-03-05 08:00:57
192.241.219.53	attack	firewall-block, port(s): 26/tcp	2020-03-05 07:45:44
122.138.66.209	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-05 07:38:43
124.82.222.209	attackspam	Mar 5 04:41:15 areeb-Workstation sshd[23866]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.82.222.209 Mar 5 04:41:16 areeb-Workstation sshd[23866]: Failed password for invalid user kuangtu from 124.82.222.209 port 43643 ssh2 ...	2020-03-05 07:58:36
218.64.57.12	attackbots	CMS (WordPress or Joomla) login attempt.	2020-03-05 07:47:40
83.97.20.33	attackspambots	Fail2Ban Ban Triggered	2020-03-05 07:37:42
118.144.11.128	attackspambots	[ssh] SSH attack	2020-03-05 07:59:05
14.161.224.12	attack	Email rejected due to spam filtering	2020-03-05 07:38:11
207.154.206.212	attackspam	2020-03-04T23:40:57.928040shield sshd\[21263\]: Invalid user lishuoguo from 207.154.206.212 port 58944 2020-03-04T23:40:57.934533shield sshd\[21263\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.206.212 2020-03-04T23:41:00.103155shield sshd\[21263\]: Failed password for invalid user lishuoguo from 207.154.206.212 port 58944 ssh2 2020-03-04T23:47:53.790841shield sshd\[22532\]: Invalid user appuser from 207.154.206.212 port 36606 2020-03-04T23:47:53.796787shield sshd\[22532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.206.212	2020-03-05 08:01:14
125.165.155.245	attackspambots	1583358721 - 03/04/2020 22:52:01 Host: 125.165.155.245/125.165.155.245 Port: 445 TCP Blocked	2020-03-05 07:45:59
200.123.6.202	attackspambots	1583358717 - 03/04/2020 22:51:57 Host: 200.123.6.202/200.123.6.202 Port: 445 TCP Blocked	2020-03-05 07:50:37
14.226.235.220	attack	Brute force attempt	2020-03-05 07:58:10
123.20.174.149	attackbotsspam	2020-03-0422:51:571j9bvo-0000mg-R0\<=verena@rs-solution.chH=\(localhost\)[113.172.238.193]:57036P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2264id=E1E452010ADEF0439F9AD36B9FF7D545@rs-solution.chT="Onlyrequireabitofyourinterest"forrickrocbeats@yahoo.come.pkowska@gmail.com2020-03-0422:51:301j9bvN-0000iq-MD\<=verena@rs-solution.chH=\(localhost\)[113.172.170.138]:38657P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2275id=D4D167343FEBC576AAAFE65EAAC65D39@rs-solution.chT="Onlychosentogetacquaintedwithyou"forfrenchywoo@gmail.comrodri12@hotmail.com2020-03-0422:51:431j9bva-0000lW-Fk\<=verena@rs-solution.chH=\(localhost\)[123.20.174.149]:53721P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2233id=B3B60053588CA211CDC88139CD9C5D2F@rs-solution.chT="Wanttogetacquaintedwithyou"forwilliamdemby93@gmail.combcuts2019@gmail.com2020-03-0422:52:161j9bw8-0000oQ-Lt\<=verena@rs-solution.chH	2020-03-05 07:31:10

最近上报的IP列表

81.0.189.174	108.191.10.196	203.146.6.233	190.121.142.2
122.176.167.156	42.236.10.125	247.61.189.121	185.175.33.146
58.64.150.180	99.84.112.139	189.39.116.21	218.232.83.113
111.125.212.234	43.214.209.248	202.134.133.124	179.96.184.70
90.171.120.68	5.152.159.31	2.92.62.216	114.179.253.139