112.195.53.106

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.195.53.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26100
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.195.53.106.			IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030102 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 02 09:26:15 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 106.53.195.112.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 106.53.195.112.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
118.24.14.172	attackbots	Feb 12 19:12:07 plusreed sshd[26199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.14.172 user=root Feb 12 19:12:08 plusreed sshd[26199]: Failed password for root from 118.24.14.172 port 8735 ssh2 ...	2020-02-13 08:37:16
185.175.93.19	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-13 08:41:02
2001:8a0:ffc1:4f00:7422:190e:a22c:5d98	attackspambots	[WedFeb1223:18:01.5223562020][:error][pid13807:tid46915244865280][client2001:8a0:ffc1:4f00:7422:190e:a22c:5d98:48503][client2001:8a0:ffc1:4f00:7422:190e:a22c:5d98]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\\\\\\\\.php"atARGS:img.[file"/etc/apache2/conf.d/modsec_rules/99_asl_jitp.conf"][line"782"][id"337479"][rev"2"][msg"Atomicorp.comWAFRules-VirtualJustInTimePatch:WordpressRevslidernon-imagefiledownloadAttack"][severity"CRITICAL"][hostname"overcom.ch"][uri"/wp-admin/admin-ajax.php"][unique_id"XkR5mdk7W6aLPqZR4nan2gAAARY"][WedFeb1223:18:01.6933302020][:error][pid17925:tid46915131033344][client2001:8a0:ffc1:4f00:7422:190e:a22c:5d98:48506][client2001:8a0:ffc1:4f00:7422:190e:a22c:5d98]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\\\\\\\\.php"atARGS:img.[file"/etc/apache2/conf.d/modsec_rules/99_asl_jitp.conf"][line"782"][id"337479"][rev"2"][msg"Atomicorp.comWAFRules-VirtualJustInTimePatch:WordpressRevslidernon-imagefiledownloadAttack"][severity"CRITIC	2020-02-13 08:27:21
120.28.109.188	attack	Feb 12 22:11:46 web8 sshd\[25457\]: Invalid user Lino from 120.28.109.188 Feb 12 22:11:46 web8 sshd\[25457\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.28.109.188 Feb 12 22:11:48 web8 sshd\[25457\]: Failed password for invalid user Lino from 120.28.109.188 port 55210 ssh2 Feb 12 22:17:23 web8 sshd\[28201\]: Invalid user fax from 120.28.109.188 Feb 12 22:17:23 web8 sshd\[28201\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.28.109.188	2020-02-13 08:51:50
104.248.116.140	attackspambots	Invalid user qgm from 104.248.116.140 port 59036	2020-02-13 09:00:08
49.235.241.84	attackspam	Feb 12 21:19:10 vps46666688 sshd[12001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.241.84 Feb 12 21:19:13 vps46666688 sshd[12001]: Failed password for invalid user 123456 from 49.235.241.84 port 38986 ssh2 ...	2020-02-13 08:52:27
185.143.223.173	attackspambots	Feb 13 00:34:24 grey postfix/smtpd\[18548\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.173\]: 554 5.7.1 Service unavailable\; Client host \[185.143.223.173\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[185.143.223.173\]\; from=\ to=\ proto=ESMTP helo=\<\[185.143.223.97\]\>Feb 13 00:34:24 grey postfix/smtpd\[18548\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.173\]: 554 5.7.1 Service unavailable\; Client host \[185.143.223.173\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[185.143.223.173\]\; from=\ to=\ proto=ESMTP helo=\<\[185.143.223.97\]\>Feb 13 00:34:24 grey postfix/smtpd\[18548\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.173\]: 554 5.7.1 Service unavailable\; Client host \[185.143.223.173\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[185.143.223.173\]\; from=\	2020-02-13 08:26:51
94.177.250.221	attack	Feb 12 14:30:19 sachi sshd\[5202\]: Invalid user passwd from 94.177.250.221 Feb 12 14:30:19 sachi sshd\[5202\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.250.221 Feb 12 14:30:21 sachi sshd\[5202\]: Failed password for invalid user passwd from 94.177.250.221 port 59320 ssh2 Feb 12 14:32:19 sachi sshd\[5402\]: Invalid user top10 from 94.177.250.221 Feb 12 14:32:19 sachi sshd\[5402\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.250.221	2020-02-13 08:47:02
81.201.60.150	attack	Invalid user adl from 81.201.60.150 port 50250	2020-02-13 08:31:49
106.1.111.56	attack	Telnet/23 MH Probe, BF, Hack -	2020-02-13 08:23:23
178.128.56.89	attack	Feb 13 00:36:02 legacy sshd[4262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.56.89 Feb 13 00:36:04 legacy sshd[4262]: Failed password for invalid user lukasapp from 178.128.56.89 port 37838 ssh2 Feb 13 00:39:34 legacy sshd[4498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.56.89 ...	2020-02-13 08:55:41
76.164.234.122	attackbots	Feb 13 01:35:46 debian-2gb-nbg1-2 kernel: \[3813375.201163\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=76.164.234.122 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=1173 PROTO=TCP SPT=43337 DPT=2100 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-13 08:53:09
148.66.133.91	attackbotsspam	Feb 13 01:30:40 vmd26974 sshd[15615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.133.91 Feb 13 01:30:43 vmd26974 sshd[15615]: Failed password for invalid user scpuser from 148.66.133.91 port 49920 ssh2 ...	2020-02-13 08:38:53
45.148.10.99	attackspambots	Feb 12 05:45:29 UTC__SANYALnet-Labs__cac13 sshd[29491]: Connection from 45.148.10.99 port 41920 on 45.62.248.66 port 22 Feb 12 05:45:29 UTC__SANYALnet-Labs__cac13 sshd[29491]: Did not receive identification string from 45.148.10.99 Feb 12 05:45:53 UTC__SANYALnet-Labs__cac13 sshd[29492]: Connection from 45.148.10.99 port 48236 on 45.62.248.66 port 22 Feb 12 05:45:53 UTC__SANYALnet-Labs__cac13 sshd[29492]: User r.r from 45.148.10.99 not allowed because not listed in AllowUsers Feb 12 05:45:53 UTC__SANYALnet-Labs__cac13 sshd[29492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.99 user=r.r Feb 12 05:45:56 UTC__SANYALnet-Labs__cac13 sshd[29492]: Failed password for invalid user r.r from 45.148.10.99 port 48236 ssh2 Feb 12 05:45:56 UTC__SANYALnet-Labs__cac13 sshd[29492]: Received disconnect from 45.148.10.99: 11: Normal Shutdown, Thank you for playing [preauth] Feb 12 05:46:14 UTC__SANYALnet-Labs__cac13 sshd[29520]: Connec........ -------------------------------	2020-02-13 08:28:19
217.99.229.83	attack	Automatic report - Port Scan Attack	2020-02-13 08:54:28

最近上报的IP列表

112.195.52.243	112.195.61.249	112.195.65.113	112.195.65.19
112.195.69.230	112.195.69.31	112.195.69.68	112.195.70.189
112.195.74.254	112.195.76.86	112.195.80.118	112.195.81.112
112.195.81.119	112.195.81.13	112.195.81.137	112.195.81.161
112.195.81.17	112.195.81.212	112.195.81.224	112.195.81.243