106.75.64.239 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Nov 29 01:48:09 server sshd\[5164\]: Invalid user polycom from 106.75.64.239 port 55666 Nov 29 01:48:09 server sshd\[5164\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.239 Nov 29 01:48:12 server sshd\[5164\]: Failed password for invalid user polycom from 106.75.64.239 port 55666 ssh2 Nov 29 01:52:46 server sshd\[23014\]: User root from 106.75.64.239 not allowed because listed in DenyUsers Nov 29 01:52:46 server sshd\[23014\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.239 user=root	2019-11-29 08:13:38
attack	2019-11-17T01:01:47.800458abusebot-5.cloudsearch.cf sshd\[1179\]: Invalid user swsgest from 106.75.64.239 port 38602	2019-11-17 09:23:03
attack	2019-10-24T20:17:24.657298abusebot-5.cloudsearch.cf sshd\[25445\]: Invalid user fuckyou from 106.75.64.239 port 57220	2019-10-25 04:40:25
attackbots	Triggered by Fail2Ban at Vostok web server	2019-09-13 06:39:57
attackbotsspam	Aug 8 23:24:44 mail sshd\[12353\]: Failed password for invalid user ubuntu from 106.75.64.239 port 56546 ssh2 Aug 8 23:41:58 mail sshd\[12620\]: Invalid user miura from 106.75.64.239 port 35362 ...	2019-08-09 09:37:53
attackspam	Jul 15 19:11:31 areeb-Workstation sshd\[14066\]: Invalid user anita from 106.75.64.239 Jul 15 19:11:31 areeb-Workstation sshd\[14066\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.239 Jul 15 19:11:33 areeb-Workstation sshd\[14066\]: Failed password for invalid user anita from 106.75.64.239 port 45410 ssh2 ...	2019-07-15 22:05:14

相同子网IP讨论:

IP	类型	评论内容	时间
106.75.64.251	attackspam	2020-08-06T17:23:42.364876amanda2.illicoweb.com sshd\[43138\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 user=root 2020-08-06T17:23:45.063593amanda2.illicoweb.com sshd\[43138\]: Failed password for root from 106.75.64.251 port 42662 ssh2 2020-08-06T17:28:25.691722amanda2.illicoweb.com sshd\[44265\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 user=root 2020-08-06T17:28:27.908519amanda2.illicoweb.com sshd\[44265\]: Failed password for root from 106.75.64.251 port 51010 ssh2 2020-08-06T17:33:06.094333amanda2.illicoweb.com sshd\[45452\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 user=root ...	2020-08-07 05:54:18
106.75.64.59	attackbots	Automatic report - Banned IP Access	2020-07-17 20:29:17
106.75.64.251	attackspam	2020-07-11T19:58:27.021080ionos.janbro.de sshd[109700]: Invalid user ten from 106.75.64.251 port 57118 2020-07-11T19:58:29.290433ionos.janbro.de sshd[109700]: Failed password for invalid user ten from 106.75.64.251 port 57118 ssh2 2020-07-11T20:01:47.531087ionos.janbro.de sshd[109718]: Invalid user dping from 106.75.64.251 port 35566 2020-07-11T20:01:47.648202ionos.janbro.de sshd[109718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 2020-07-11T20:01:47.531087ionos.janbro.de sshd[109718]: Invalid user dping from 106.75.64.251 port 35566 2020-07-11T20:01:49.311654ionos.janbro.de sshd[109718]: Failed password for invalid user dping from 106.75.64.251 port 35566 ssh2 2020-07-11T20:04:59.762594ionos.janbro.de sshd[109739]: Invalid user dingwei from 106.75.64.251 port 42246 2020-07-11T20:05:00.035149ionos.janbro.de sshd[109739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 2020-0 ...	2020-07-12 07:19:36
106.75.64.251	attackspam	Jul 8 11:51:32 ny01 sshd[8776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 Jul 8 11:51:34 ny01 sshd[8776]: Failed password for invalid user zabbix from 106.75.64.251 port 51054 ssh2 Jul 8 11:55:29 ny01 sshd[9674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251	2020-07-09 02:48:24
106.75.64.251	attackspambots	Jun 30 00:47:10 NPSTNNYC01T sshd[3726]: Failed password for root from 106.75.64.251 port 48202 ssh2 Jun 30 00:51:58 NPSTNNYC01T sshd[4087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 Jun 30 00:52:00 NPSTNNYC01T sshd[4087]: Failed password for invalid user admin from 106.75.64.251 port 41944 ssh2 ...	2020-06-30 12:54:53
106.75.64.251	attackbots	(sshd) Failed SSH login from 106.75.64.251 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 23 15:01:24 s1 sshd[11227]: Invalid user aaron from 106.75.64.251 port 52816 Jun 23 15:01:26 s1 sshd[11227]: Failed password for invalid user aaron from 106.75.64.251 port 52816 ssh2 Jun 23 15:14:41 s1 sshd[12967]: Invalid user jesse from 106.75.64.251 port 33072 Jun 23 15:14:44 s1 sshd[12967]: Failed password for invalid user jesse from 106.75.64.251 port 33072 ssh2 Jun 23 15:19:56 s1 sshd[13490]: Invalid user r00t from 106.75.64.251 port 55146	2020-06-23 23:11:53
106.75.64.126	attackspam	2020-06-13T06:11:07.989578 sshd[18243]: Invalid user lx from 106.75.64.126 port 50866 2020-06-13T06:11:08.005333 sshd[18243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.126 2020-06-13T06:11:07.989578 sshd[18243]: Invalid user lx from 106.75.64.126 port 50866 2020-06-13T06:11:10.045454 sshd[18243]: Failed password for invalid user lx from 106.75.64.126 port 50866 ssh2 ...	2020-06-13 12:55:13
106.75.64.59	attackspambots	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 1863	2020-06-01 00:10:23
106.75.64.59	attackspam	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 2401 [T]	2020-04-15 03:25:26
106.75.64.59	attackbots	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 7779 [T]	2020-03-24 19:04:23
106.75.64.59	attack	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 8090 [J]	2020-03-03 01:48:39
106.75.64.59	attack	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 11 [T]	2020-01-29 17:44:27
106.75.64.59	attackspam	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 631 [J]	2020-01-21 01:53:52
106.75.64.59	attackspam	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 1521 [J]	2020-01-17 06:40:37
106.75.64.59	attack	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 11211 [T]	2020-01-09 00:31:34

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.64.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14836
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.64.239.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061002 1800 900 604800 86400

;; Query time: 259 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jun 11 12:02:32 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 239.64.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 239.64.75.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
210.22.94.42	attackbots	Aug 6 01:17:44 minden010 sshd[12456]: Failed password for root from 210.22.94.42 port 44934 ssh2 Aug 6 01:21:46 minden010 sshd[13818]: Failed password for root from 210.22.94.42 port 50195 ssh2 ...	2020-08-06 07:29:10
183.104.50.83	attack	Attempted to establish connection to non opened port 9530	2020-08-06 07:56:46
207.46.13.135	attackspambots	Automatic report - Banned IP Access	2020-08-06 07:32:22
171.247.195.87	attackspambots	20/8/5@16:37:33: FAIL: Alarm-Network address from=171.247.195.87 ...	2020-08-06 07:48:41
166.175.60.190	attackspam	Brute forcing email accounts	2020-08-06 07:53:56
212.95.137.164	attackspam	Aug 5 22:28:37 vserver sshd\[16123\]: Invalid user !@\#$!@\#$ from 212.95.137.164Aug 5 22:28:39 vserver sshd\[16123\]: Failed password for invalid user !@\#$!@\#$ from 212.95.137.164 port 53460 ssh2Aug 5 22:37:59 vserver sshd\[16219\]: Invalid user paSsWoRD from 212.95.137.164Aug 5 22:38:00 vserver sshd\[16219\]: Failed password for invalid user paSsWoRD from 212.95.137.164 port 36002 ssh2 ...	2020-08-06 07:33:41
91.121.211.34	attackbotsspam	$f2bV_matches	2020-08-06 07:35:27
1.255.153.167	attackbotsspam	$f2bV_matches	2020-08-06 07:30:58
106.12.88.246	attack	Aug 5 23:31:31 scw-6657dc sshd[29683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.88.246 user=root Aug 5 23:31:31 scw-6657dc sshd[29683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.88.246 user=root Aug 5 23:31:33 scw-6657dc sshd[29683]: Failed password for root from 106.12.88.246 port 49680 ssh2 ...	2020-08-06 08:08:46
106.55.13.61	attackspam	Aug 6 01:12:45 ovpn sshd\[513\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.13.61 user=root Aug 6 01:12:47 ovpn sshd\[513\]: Failed password for root from 106.55.13.61 port 33298 ssh2 Aug 6 01:18:56 ovpn sshd\[2033\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.13.61 user=root Aug 6 01:18:58 ovpn sshd\[2033\]: Failed password for root from 106.55.13.61 port 40112 ssh2 Aug 6 01:24:57 ovpn sshd\[3505\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.13.61 user=root	2020-08-06 08:01:59
182.71.221.78	attackbots	Aug 6 00:36:51 buvik sshd[11289]: Failed password for root from 182.71.221.78 port 40878 ssh2 Aug 6 00:41:05 buvik sshd[11953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.71.221.78 user=root Aug 6 00:41:06 buvik sshd[11953]: Failed password for root from 182.71.221.78 port 48136 ssh2 ...	2020-08-06 08:06:25
112.206.1.204	attack	Try admin account	2020-08-06 08:07:12
212.64.95.187	attackbotsspam	Aug 5 20:33:16 onepixel sshd[2168279]: Failed password for root from 212.64.95.187 port 54176 ssh2 Aug 5 20:35:22 onepixel sshd[2169474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.95.187 user=root Aug 5 20:35:24 onepixel sshd[2169474]: Failed password for root from 212.64.95.187 port 57802 ssh2 Aug 5 20:37:32 onepixel sshd[2170710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.95.187 user=root Aug 5 20:37:35 onepixel sshd[2170710]: Failed password for root from 212.64.95.187 port 33196 ssh2	2020-08-06 07:47:38
162.213.38.67	attack	(pop3d) Failed POP3 login from 162.213.38.67 (US/United States/host-67-38.213.162.cloudsigma.net): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Aug 6 01:07:25 ir1 dovecot[3110802]: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=162.213.38.67, lip=5.63.12.44, session=	2020-08-06 07:53:10
194.26.29.96	attack	Attempted to establish connection to non opened port 8517	2020-08-06 07:58:39

最近上报的IP列表

81.0.189.174	108.191.10.196	203.146.6.233	190.121.142.2
122.176.167.156	42.236.10.125	247.61.189.121	185.175.33.146
58.64.150.180	99.84.112.139	189.39.116.21	218.232.83.113
111.125.212.234	43.214.209.248	202.134.133.124	179.96.184.70
90.171.120.68	5.152.159.31	2.92.62.216	114.179.253.139