106.75.74.6 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Dec 6 15:51:33 lnxweb62 sshd[28610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.74.6	2019-12-06 22:54:08
attackbots	Dec 4 07:16:20 sachi sshd\[28798\]: Invalid user eleonore from 106.75.74.6 Dec 4 07:16:20 sachi sshd\[28798\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.74.6 Dec 4 07:16:23 sachi sshd\[28798\]: Failed password for invalid user eleonore from 106.75.74.6 port 46046 ssh2 Dec 4 07:22:14 sachi sshd\[29396\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.74.6 user=root Dec 4 07:22:17 sachi sshd\[29396\]: Failed password for root from 106.75.74.6 port 40128 ssh2	2019-12-05 01:31:29
attackspambots	Dec 3 23:23:30 itv-usvr-01 sshd[5861]: Invalid user k from 106.75.74.6 Dec 3 23:23:30 itv-usvr-01 sshd[5861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.74.6 Dec 3 23:23:30 itv-usvr-01 sshd[5861]: Invalid user k from 106.75.74.6 Dec 3 23:23:32 itv-usvr-01 sshd[5861]: Failed password for invalid user k from 106.75.74.6 port 32874 ssh2 Dec 3 23:30:43 itv-usvr-01 sshd[6109]: Invalid user info from 106.75.74.6	2019-12-04 04:35:00
attack	Dec 2 08:37:25 plusreed sshd[24975]: Invalid user lune from 106.75.74.6 ...	2019-12-02 21:48:03
attack	2019-11-26T14:37:09.561661hub.schaetter.us sshd\[26634\]: Invalid user philip from 106.75.74.6 port 58396 2019-11-26T14:37:09.580154hub.schaetter.us sshd\[26634\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.74.6 2019-11-26T14:37:11.521571hub.schaetter.us sshd\[26634\]: Failed password for invalid user philip from 106.75.74.6 port 58396 ssh2 2019-11-26T14:46:16.324209hub.schaetter.us sshd\[26709\]: Invalid user ranz from 106.75.74.6 port 35428 2019-11-26T14:46:16.331968hub.schaetter.us sshd\[26709\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.74.6 ...	2019-11-26 23:53:44
attackspam	Nov 25 10:18:16 legacy sshd[9946]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.74.6 Nov 25 10:18:18 legacy sshd[9946]: Failed password for invalid user info from 106.75.74.6 port 46516 ssh2 Nov 25 10:26:25 legacy sshd[10195]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.74.6 ...	2019-11-25 17:28:57
attackbots	2019-10-16T21:04:08.287028abusebot-5.cloudsearch.cf sshd\[27465\]: Invalid user test from 106.75.74.6 port 34228	2019-10-17 07:05:49
attackbots	2019-10-04T09:58:34.2199361495-001 sshd\[59529\]: Invalid user rt from 106.75.74.6 port 48528 2019-10-04T09:58:34.2230471495-001 sshd\[59529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.74.6 2019-10-04T09:58:35.9482011495-001 sshd\[59529\]: Failed password for invalid user rt from 106.75.74.6 port 48528 ssh2 2019-10-04T10:27:33.8053381495-001 sshd\[62035\]: Invalid user test from 106.75.74.6 port 51906 2019-10-04T10:27:33.8083521495-001 sshd\[62035\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.74.6 2019-10-04T10:27:35.9347301495-001 sshd\[62035\]: Failed password for invalid user test from 106.75.74.6 port 51906 ssh2 ...	2019-10-04 22:39:49
attack	Sep 28 23:32:39 ns37 sshd[20814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.74.6	2019-09-29 06:01:42
attack	$f2bV_matches	2019-09-14 21:05:06
attackspam	Aug 30 19:34:35 ArkNodeAT sshd\[18575\]: Invalid user maya from 106.75.74.6 Aug 30 19:34:35 ArkNodeAT sshd\[18575\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.74.6 Aug 30 19:34:37 ArkNodeAT sshd\[18575\]: Failed password for invalid user maya from 106.75.74.6 port 54298 ssh2	2019-08-31 04:19:23
attack	detected by Fail2Ban	2019-08-14 07:54:29

相同子网IP讨论:

IP	类型	评论内容	时间
106.75.74.225	attackspam	[Tue Aug 11 13:25:59 2020] - DDoS Attack From IP: 106.75.74.225 Port: 58914	2020-08-11 22:50:18
106.75.74.225	attackbotsspam	TCP (SYN) 106.75.74.225:58914 -> port 110, len 44	2020-08-06 18:49:47
106.75.74.225	attackbots	[Mon May 25 11:57:24 2020] - DDoS Attack From IP: 106.75.74.225 Port: 58914	2020-07-09 03:29:26
106.75.74.225	attack	TCP (SYN) 106.75.74.225:58914 -> port 51106, len 44	2020-06-23 18:37:11
106.75.74.225	attack	Jun 6 12:19:43 debian kernel: [337744.241295] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=106.75.74.225 DST=89.252.131.35 LEN=44 TOS=0x00 PREC=0x00 TTL=237 ID=22123 PROTO=TCP SPT=58914 DPT=55553 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-06 19:11:06
106.75.74.225	attackspam	firewall-block, port(s): 5050/tcp	2020-05-05 12:01:54
106.75.74.225	attackspam	Honeypot attack, port: 5555, PTR: PTR record not found	2020-04-29 00:06:22
106.75.74.225	attackspam	3541/tcp 3460/tcp 3542/tcp... [2020-01-24/03-23]80pkt,15pt.(tcp)	2020-03-23 17:26:38
106.75.74.225	attackspambots	02/07/2020-23:58:41.647752 106.75.74.225 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-02-08 13:59:47
106.75.74.225	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-10 00:07:29
106.75.74.225	attackbotsspam	106.75.74.225 was recorded 5 times by 4 hosts attempting to connect to the following ports: 2087,2121,20000,20547. Incident counter (4h, 24h, all-time): 5, 10, 31	2019-11-10 21:48:21

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.74.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21261
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.74.6.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081301 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Aug 14 07:54:24 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 6.74.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 6.74.75.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
160.179.190.164	attack	TCP Port: 25 invalid blocked dnsbl-sorbs also abuseat-org and barracuda (534)	2020-01-27 02:56:15
223.240.214.192	attack	Unauthorized connection attempt detected from IP address 223.240.214.192 to port 6656 [T]	2020-01-27 03:12:40
5.101.201.166	attack	Jan 26 19:53:05 meumeu sshd[12035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.101.201.166 Jan 26 19:53:06 meumeu sshd[12035]: Failed password for invalid user tlc from 5.101.201.166 port 33484 ssh2 Jan 26 19:56:10 meumeu sshd[13154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.101.201.166 ...	2020-01-27 02:57:23
91.57.30.60	attack	Lines containing failures of 91.57.30.60 Jan 26 01:10:10 zabbix sshd[102204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.57.30.60 user=r.r Jan 26 01:10:12 zabbix sshd[102204]: Failed password for r.r from 91.57.30.60 port 58464 ssh2 Jan 26 01:10:12 zabbix sshd[102204]: Received disconnect from 91.57.30.60 port 58464:11: Bye Bye [preauth] Jan 26 01:10:12 zabbix sshd[102204]: Disconnected from authenticating user r.r 91.57.30.60 port 58464 [preauth] Jan 26 01:20:14 zabbix sshd[103309]: Invalid user userftp from 91.57.30.60 port 36996 Jan 26 01:20:14 zabbix sshd[103309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.57.30.60 Jan 26 01:20:16 zabbix sshd[103309]: Failed password for invalid user userftp from 91.57.30.60 port 36996 ssh2 Jan 26 01:20:16 zabbix sshd[103309]: Received disconnect from 91.57.30.60 port 36996:11: Bye Bye [preauth] Jan 26 01:20:16 zabbix sshd[103309]: Discon........ ------------------------------	2020-01-27 03:11:40
185.53.88.25	attackbotsspam	185.53.88.25 was recorded 9 times by 7 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 9, 17, 52	2020-01-27 02:33:42
112.85.42.178	attackspambots	2020-01-26T19:04:52.155055abusebot-6.cloudsearch.cf sshd[27010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root 2020-01-26T19:04:54.060637abusebot-6.cloudsearch.cf sshd[27010]: Failed password for root from 112.85.42.178 port 37348 ssh2 2020-01-26T19:04:57.595509abusebot-6.cloudsearch.cf sshd[27010]: Failed password for root from 112.85.42.178 port 37348 ssh2 2020-01-26T19:04:52.155055abusebot-6.cloudsearch.cf sshd[27010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root 2020-01-26T19:04:54.060637abusebot-6.cloudsearch.cf sshd[27010]: Failed password for root from 112.85.42.178 port 37348 ssh2 2020-01-26T19:04:57.595509abusebot-6.cloudsearch.cf sshd[27010]: Failed password for root from 112.85.42.178 port 37348 ssh2 2020-01-26T19:04:52.155055abusebot-6.cloudsearch.cf sshd[27010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruse ...	2020-01-27 03:10:52
222.186.30.12	attack	Unauthorized connection attempt detected from IP address 222.186.30.12 to port 22 [T]	2020-01-27 03:13:07
128.199.199.217	attack	Jan 26 19:45:51 localhost sshd\[7365\]: Invalid user ubuntu from 128.199.199.217 port 48044 Jan 26 19:45:51 localhost sshd\[7365\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.199.217 Jan 26 19:45:53 localhost sshd\[7365\]: Failed password for invalid user ubuntu from 128.199.199.217 port 48044 ssh2	2020-01-27 02:51:32
220.164.154.247	attackspambots	Unauthorized connection attempt detected from IP address 220.164.154.247 to port 6656 [T]	2020-01-27 03:13:37
91.208.184.150	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-27 03:09:19
52.71.95.144	attackbotsspam	"GET / HTTP/1.1" 301 178 "-" "Cloud mapping experiment. Contact research@pdrlabs.net"	2020-01-27 02:53:16
117.50.101.117	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-27 02:41:40
81.213.214.225	attackbots	Jan 26 19:24:31 vpn01 sshd[13107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.213.214.225 Jan 26 19:24:33 vpn01 sshd[13107]: Failed password for invalid user postgres from 81.213.214.225 port 59069 ssh2 ...	2020-01-27 03:02:55
81.4.104.125	attackspambots	Jan 26 18:25:04 sshgateway sshd\[3097\]: Invalid user renato from 81.4.104.125 Jan 26 18:25:04 sshgateway sshd\[3097\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.4.104.125 Jan 26 18:25:07 sshgateway sshd\[3097\]: Failed password for invalid user renato from 81.4.104.125 port 42518 ssh2	2020-01-27 02:43:11
181.123.177.150	attackspambots	Jan 26 08:52:30 eddieflores sshd\[28597\]: Invalid user git from 181.123.177.150 Jan 26 08:52:30 eddieflores sshd\[28597\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.123.177.150 Jan 26 08:52:32 eddieflores sshd\[28597\]: Failed password for invalid user git from 181.123.177.150 port 58446 ssh2 Jan 26 08:56:29 eddieflores sshd\[29052\]: Invalid user teamspeak from 181.123.177.150 Jan 26 08:56:29 eddieflores sshd\[29052\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.123.177.150	2020-01-27 02:59:46

最近上报的IP列表

68.183.227.74	202.254.244.219	210.6.111.246	53.30.30.123
189.120.101.237	24.244.89.83	138.219.108.17	106.111.118.157
117.95.189.40	41.40.94.250	186.64.120.195	82.213.250.117
185.238.48.193	185.92.73.232	219.232.47.114	123.206.87.154
89.64.37.126	66.240.158.118	168.62.176.25	92.32.68.230