114.106.173.99

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Anhui Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	failed_logins	2020-04-26 13:19:51

相同子网IP讨论:

IP	类型	评论内容	时间
114.106.173.46	attackspambots	Unauthorized connection attempt detected from IP address 114.106.173.46 to port 6656 [T]	2020-01-30 14:47:04
114.106.173.11	attackbotsspam	Unauthorized connection attempt detected from IP address 114.106.173.11 to port 6656 [T]	2020-01-27 07:28:31
114.106.173.134	attack	Unauthorized connection attempt detected from IP address 114.106.173.134 to port 6656 [T]	2020-01-26 08:21:08

类型

评论内容

时间

114.106.173.46

attackspambots

Unauthorized connection attempt detected from IP address 114.106.173.46 to port 6656 [T]

2020-01-30 14:47:04

114.106.173.11

attackbotsspam

Unauthorized connection attempt detected from IP address 114.106.173.11 to port 6656 [T]

2020-01-27 07:28:31

114.106.173.134

attack

Unauthorized connection attempt detected from IP address 114.106.173.134 to port 6656 [T]

2020-01-26 08:21:08

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.106.173.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49573
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.106.173.99.			IN	A

;; AUTHORITY SECTION:
.			411	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042502 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 26 13:19:45 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 99.173.106.114.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 99.173.106.114.in-addr.arpa.: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
152.32.191.35	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-08-05 20:20:57
201.92.235.79	attackspambots	TCP (SYN) 201.92.235.79:33460 -> port 22, len 44	2020-08-05 20:18:29
190.153.27.98	attackspam	Aug 5 13:56:56 OPSO sshd\[517\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.153.27.98 user=root Aug 5 13:56:57 OPSO sshd\[517\]: Failed password for root from 190.153.27.98 port 48104 ssh2 Aug 5 14:01:13 OPSO sshd\[1412\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.153.27.98 user=root Aug 5 14:01:15 OPSO sshd\[1412\]: Failed password for root from 190.153.27.98 port 55690 ssh2 Aug 5 14:05:35 OPSO sshd\[2015\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.153.27.98 user=root	2020-08-05 20:10:23
45.145.67.196	attack	[H1.VM10] Blocked by UFW	2020-08-05 20:21:57
46.180.174.134	attack	Fail2Ban	2020-08-05 20:00:16
163.172.121.98	attackbotsspam	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-05 20:14:40
122.176.55.10	attackspam	Aug 5 05:33:45 havingfunrightnow sshd[28894]: Failed password for root from 122.176.55.10 port 52541 ssh2 Aug 5 05:40:54 havingfunrightnow sshd[29122]: Failed password for root from 122.176.55.10 port 20432 ssh2 ...	2020-08-05 20:05:33
51.79.161.170	attackspam	2020-08-05T08:18:36.520834xentho-1 sshd[1748867]: Invalid user !qaz3wsx from 51.79.161.170 port 60456 2020-08-05T08:18:38.688318xentho-1 sshd[1748867]: Failed password for invalid user !qaz3wsx from 51.79.161.170 port 60456 ssh2 2020-08-05T08:19:28.228311xentho-1 sshd[1748882]: Invalid user linux2019 from 51.79.161.170 port 44092 2020-08-05T08:19:28.236802xentho-1 sshd[1748882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.161.170 2020-08-05T08:19:28.228311xentho-1 sshd[1748882]: Invalid user linux2019 from 51.79.161.170 port 44092 2020-08-05T08:19:30.533224xentho-1 sshd[1748882]: Failed password for invalid user linux2019 from 51.79.161.170 port 44092 ssh2 2020-08-05T08:20:22.278856xentho-1 sshd[1748903]: Invalid user qwerty12345^&* from 51.79.161.170 port 55962 2020-08-05T08:20:22.285887xentho-1 sshd[1748903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.161.170 2020-08-05T08:20:22.27885 ...	2020-08-05 20:31:04
185.186.240.2	attackspambots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-05T11:35:59Z and 2020-08-05T11:44:47Z	2020-08-05 19:53:39
186.58.6.48	attackspambots	Unauthorised access (Aug 5) SRC=186.58.6.48 LEN=52 TOS=0x10 PREC=0x40 TTL=112 ID=28674 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-05 19:50:42
64.225.119.100	attack	Aug 5 14:12:21 inter-technics sshd[8895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.119.100 user=root Aug 5 14:12:23 inter-technics sshd[8895]: Failed password for root from 64.225.119.100 port 59416 ssh2 Aug 5 14:16:20 inter-technics sshd[9082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.119.100 user=root Aug 5 14:16:23 inter-technics sshd[9082]: Failed password for root from 64.225.119.100 port 42862 ssh2 Aug 5 14:20:21 inter-technics sshd[9296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.119.100 user=root Aug 5 14:20:23 inter-technics sshd[9296]: Failed password for root from 64.225.119.100 port 54544 ssh2 ...	2020-08-05 20:35:03
103.44.27.91	attack	(sshd) Failed SSH login from 103.44.27.91 (ID/Indonesia/mail.beadgrup.com): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD	2020-08-05 20:16:10
115.221.240.51	attack	(smtpauth) Failed SMTP AUTH login from 115.221.240.51 (CN/China/-): 5 in the last 3600 secs	2020-08-05 20:11:33
5.3.6.82	attack	Aug 5 06:39:41 sip sshd[27439]: Failed password for root from 5.3.6.82 port 57898 ssh2 Aug 5 06:55:30 sip sshd[31576]: Failed password for root from 5.3.6.82 port 33824 ssh2	2020-08-05 19:51:19
23.94.182.210	attackspam	port scan and connect, tcp 1433 (ms-sql-s)	2020-08-05 19:50:55

最近上报的IP列表

200.66.82.250	172.94.13.144	54.210.219.164	202.90.199.116
128.199.140.175	172.105.48.61	115.238.36.218	95.163.198.202
112.84.84.181	123.16.32.122	45.138.132.29	154.92.195.221
209.224.203.93	209.97.134.58	222.117.248.194	67.242.215.37
66.169.154.189	229.78.199.18	49.247.135.122	49.233.185.63