106.75.64.239 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Nov 29 01:48:09 server sshd\[5164\]: Invalid user polycom from 106.75.64.239 port 55666 Nov 29 01:48:09 server sshd\[5164\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.239 Nov 29 01:48:12 server sshd\[5164\]: Failed password for invalid user polycom from 106.75.64.239 port 55666 ssh2 Nov 29 01:52:46 server sshd\[23014\]: User root from 106.75.64.239 not allowed because listed in DenyUsers Nov 29 01:52:46 server sshd\[23014\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.239 user=root	2019-11-29 08:13:38
attack	2019-11-17T01:01:47.800458abusebot-5.cloudsearch.cf sshd\[1179\]: Invalid user swsgest from 106.75.64.239 port 38602	2019-11-17 09:23:03
attack	2019-10-24T20:17:24.657298abusebot-5.cloudsearch.cf sshd\[25445\]: Invalid user fuckyou from 106.75.64.239 port 57220	2019-10-25 04:40:25
attackbots	Triggered by Fail2Ban at Vostok web server	2019-09-13 06:39:57
attackbotsspam	Aug 8 23:24:44 mail sshd\[12353\]: Failed password for invalid user ubuntu from 106.75.64.239 port 56546 ssh2 Aug 8 23:41:58 mail sshd\[12620\]: Invalid user miura from 106.75.64.239 port 35362 ...	2019-08-09 09:37:53
attackspam	Jul 15 19:11:31 areeb-Workstation sshd\[14066\]: Invalid user anita from 106.75.64.239 Jul 15 19:11:31 areeb-Workstation sshd\[14066\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.239 Jul 15 19:11:33 areeb-Workstation sshd\[14066\]: Failed password for invalid user anita from 106.75.64.239 port 45410 ssh2 ...	2019-07-15 22:05:14

相同子网IP讨论:

IP	类型	评论内容	时间
106.75.64.251	attackspam	2020-08-06T17:23:42.364876amanda2.illicoweb.com sshd\[43138\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 user=root 2020-08-06T17:23:45.063593amanda2.illicoweb.com sshd\[43138\]: Failed password for root from 106.75.64.251 port 42662 ssh2 2020-08-06T17:28:25.691722amanda2.illicoweb.com sshd\[44265\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 user=root 2020-08-06T17:28:27.908519amanda2.illicoweb.com sshd\[44265\]: Failed password for root from 106.75.64.251 port 51010 ssh2 2020-08-06T17:33:06.094333amanda2.illicoweb.com sshd\[45452\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 user=root ...	2020-08-07 05:54:18
106.75.64.59	attackbots	Automatic report - Banned IP Access	2020-07-17 20:29:17
106.75.64.251	attackspam	2020-07-11T19:58:27.021080ionos.janbro.de sshd[109700]: Invalid user ten from 106.75.64.251 port 57118 2020-07-11T19:58:29.290433ionos.janbro.de sshd[109700]: Failed password for invalid user ten from 106.75.64.251 port 57118 ssh2 2020-07-11T20:01:47.531087ionos.janbro.de sshd[109718]: Invalid user dping from 106.75.64.251 port 35566 2020-07-11T20:01:47.648202ionos.janbro.de sshd[109718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 2020-07-11T20:01:47.531087ionos.janbro.de sshd[109718]: Invalid user dping from 106.75.64.251 port 35566 2020-07-11T20:01:49.311654ionos.janbro.de sshd[109718]: Failed password for invalid user dping from 106.75.64.251 port 35566 ssh2 2020-07-11T20:04:59.762594ionos.janbro.de sshd[109739]: Invalid user dingwei from 106.75.64.251 port 42246 2020-07-11T20:05:00.035149ionos.janbro.de sshd[109739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 2020-0 ...	2020-07-12 07:19:36
106.75.64.251	attackspam	Jul 8 11:51:32 ny01 sshd[8776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 Jul 8 11:51:34 ny01 sshd[8776]: Failed password for invalid user zabbix from 106.75.64.251 port 51054 ssh2 Jul 8 11:55:29 ny01 sshd[9674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251	2020-07-09 02:48:24
106.75.64.251	attackspambots	Jun 30 00:47:10 NPSTNNYC01T sshd[3726]: Failed password for root from 106.75.64.251 port 48202 ssh2 Jun 30 00:51:58 NPSTNNYC01T sshd[4087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.251 Jun 30 00:52:00 NPSTNNYC01T sshd[4087]: Failed password for invalid user admin from 106.75.64.251 port 41944 ssh2 ...	2020-06-30 12:54:53
106.75.64.251	attackbots	(sshd) Failed SSH login from 106.75.64.251 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 23 15:01:24 s1 sshd[11227]: Invalid user aaron from 106.75.64.251 port 52816 Jun 23 15:01:26 s1 sshd[11227]: Failed password for invalid user aaron from 106.75.64.251 port 52816 ssh2 Jun 23 15:14:41 s1 sshd[12967]: Invalid user jesse from 106.75.64.251 port 33072 Jun 23 15:14:44 s1 sshd[12967]: Failed password for invalid user jesse from 106.75.64.251 port 33072 ssh2 Jun 23 15:19:56 s1 sshd[13490]: Invalid user r00t from 106.75.64.251 port 55146	2020-06-23 23:11:53
106.75.64.126	attackspam	2020-06-13T06:11:07.989578 sshd[18243]: Invalid user lx from 106.75.64.126 port 50866 2020-06-13T06:11:08.005333 sshd[18243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.64.126 2020-06-13T06:11:07.989578 sshd[18243]: Invalid user lx from 106.75.64.126 port 50866 2020-06-13T06:11:10.045454 sshd[18243]: Failed password for invalid user lx from 106.75.64.126 port 50866 ssh2 ...	2020-06-13 12:55:13
106.75.64.59	attackspambots	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 1863	2020-06-01 00:10:23
106.75.64.59	attackspam	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 2401 [T]	2020-04-15 03:25:26
106.75.64.59	attackbots	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 7779 [T]	2020-03-24 19:04:23
106.75.64.59	attack	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 8090 [J]	2020-03-03 01:48:39
106.75.64.59	attack	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 11 [T]	2020-01-29 17:44:27
106.75.64.59	attackspam	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 631 [J]	2020-01-21 01:53:52
106.75.64.59	attackspam	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 1521 [J]	2020-01-17 06:40:37
106.75.64.59	attack	Unauthorized connection attempt detected from IP address 106.75.64.59 to port 11211 [T]	2020-01-09 00:31:34

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.64.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14836
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.64.239.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061002 1800 900 604800 86400

;; Query time: 259 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jun 11 12:02:32 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 239.64.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 239.64.75.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
104.223.92.237	attack	spam in wordpress comments: Not a standard way to make money online from $5355 per week: https://q2-get-2000usd-per-week-162.blogspot.se?j=51 o0rockxcandy0o@yhaoo.com	2019-12-09 04:59:07
185.176.27.118	attack	12/08/2019-15:49:09.218442 185.176.27.118 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-12-09 04:53:14
106.13.97.37	attack	2019-12-08T14:57:38.580576ns547587 sshd\[2348\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.97.37 user=root 2019-12-08T14:57:40.908609ns547587 sshd\[2348\]: Failed password for root from 106.13.97.37 port 51508 ssh2 2019-12-08T15:05:03.388220ns547587 sshd\[16106\]: Invalid user frog from 106.13.97.37 port 53960 2019-12-08T15:05:03.390290ns547587 sshd\[16106\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.97.37 ...	2019-12-09 04:52:09
210.158.48.28	attackspambots	Dec 8 19:58:34 MK-Soft-Root2 sshd[26132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.158.48.28 Dec 8 19:58:36 MK-Soft-Root2 sshd[26132]: Failed password for invalid user test from 210.158.48.28 port 56819 ssh2 ...	2019-12-09 05:16:40
68.183.48.172	attackspambots	Dec 8 10:46:37 web1 sshd\[17192\]: Invalid user humenuk from 68.183.48.172 Dec 8 10:46:37 web1 sshd\[17192\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.48.172 Dec 8 10:46:40 web1 sshd\[17192\]: Failed password for invalid user humenuk from 68.183.48.172 port 44614 ssh2 Dec 8 10:53:06 web1 sshd\[17988\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.48.172 user=root Dec 8 10:53:08 web1 sshd\[17988\]: Failed password for root from 68.183.48.172 port 49017 ssh2	2019-12-09 04:56:58
200.89.178.194	attack	Dec 8 16:09:36 firewall sshd[23012]: Failed password for root from 200.89.178.194 port 46440 ssh2 Dec 8 16:10:10 firewall sshd[23014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.89.178.194 user=root Dec 8 16:10:12 firewall sshd[23014]: Failed password for root from 200.89.178.194 port 41752 ssh2 ...	2019-12-09 05:01:35
82.64.129.178	attack	2019-12-08T21:28:21.136990struts4.enskede.local sshd\[30988\]: Invalid user travin from 82.64.129.178 port 39970 2019-12-08T21:28:21.145414struts4.enskede.local sshd\[30988\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82-64-129-178.subs.proxad.net 2019-12-08T21:28:24.159982struts4.enskede.local sshd\[30988\]: Failed password for invalid user travin from 82.64.129.178 port 39970 ssh2 2019-12-08T21:34:05.117616struts4.enskede.local sshd\[31011\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82-64-129-178.subs.proxad.net user=root 2019-12-08T21:34:08.469498struts4.enskede.local sshd\[31011\]: Failed password for root from 82.64.129.178 port 49634 ssh2 ...	2019-12-09 04:46:21
112.197.0.125	attackbotsspam	Dec 8 19:05:06 sd-53420 sshd\[19601\]: Invalid user hung from 112.197.0.125 Dec 8 19:05:06 sd-53420 sshd\[19601\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.197.0.125 Dec 8 19:05:08 sd-53420 sshd\[19601\]: Failed password for invalid user hung from 112.197.0.125 port 10620 ssh2 Dec 8 19:11:37 sd-53420 sshd\[20785\]: Invalid user gibian from 112.197.0.125 Dec 8 19:11:37 sd-53420 sshd\[20785\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.197.0.125 ...	2019-12-09 05:10:20
106.12.114.26	attackspam	Brute-force attempt banned	2019-12-09 05:28:34
222.188.109.227	attackspambots	Dec 8 15:09:15 * sshd[32094]: Failed password for invalid user bascheri from 222.188.109.227 port 40088 ssh2 Dec 8 15:22:34 * sshd[32380]: Failed password for invalid user lisa from 222.188.109.227 port 60960 ssh2 Dec 8 15:30:07 * sshd[32532]: Failed password for invalid user shalanda from 222.188.109.227 port 59978 ssh2 Dec 8 15:44:24 * sshd[476]: Failed password for invalid user glueck from 222.188.109.227 port 58008 ssh2 Dec 8 15:57:20 * sshd[730]: Failed password for invalid user activemq from 222.188.109.227 port 56038 ssh2 Dec 8 16:04:20 * sshd[920]: Failed password for invalid user sarkaria from 222.188.109.227 port 55054 ssh2 Dec 8 16:11:12 * sshd[1104]: Failed password for invalid user user from 222.188.109.227 port 54066 ssh2 Dec 8 16:25:13 * sshd[1425]: Failed password for invalid user squid from 222.188.109.227 port 52104 ssh2 Dec 8 16:38:47 * sshd[1648]: Failed password for invalid user ssh from 222.188.109.227 port 50134 ssh2 Dec 8 16:45:56 * sshd[1928]: Failed pass	2019-12-09 05:01:20
59.51.93.141	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-09 04:54:30
188.131.236.24	attackspambots	Fail2Ban - SSH Bruteforce Attempt	2019-12-09 05:14:27
134.209.237.55	attackspambots	Dec 8 20:15:57 IngegnereFirenze sshd[28748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.237.55 user=root Dec 8 20:15:57 IngegnereFirenze sshd[28748]: User root from 134.209.237.55 not allowed because not listed in AllowUsers Dec 8 20:15:59 IngegnereFirenze sshd[28748]: Failed password for invalid user root from 134.209.237.55 port 42598 ssh2 ...	2019-12-09 04:49:18
180.243.93.243	attackbots	Fail2Ban Ban Triggered	2019-12-09 05:11:28
116.111.99.76	attackbotsspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-09 04:50:50

最近上报的IP列表

81.0.189.174	108.191.10.196	203.146.6.233	190.121.142.2
122.176.167.156	42.236.10.125	247.61.189.121	185.175.33.146
58.64.150.180	99.84.112.139	189.39.116.21	218.232.83.113
111.125.212.234	43.214.209.248	202.134.133.124	179.96.184.70
90.171.120.68	5.152.159.31	2.92.62.216	114.179.253.139