47.104.192.106

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Aliyun Computing Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 47.104.192.106 to port 23 [J]	2020-01-30 16:16:02
attackbots	Unauthorized connection attempt detected from IP address 47.104.192.106 to port 23 [T]	2020-01-29 21:12:04
attackbotsspam	Unauthorized connection attempt detected from IP address 47.104.192.106 to port 23 [J]	2020-01-27 08:02:38
attackspam	Unauthorized connection attempt detected from IP address 47.104.192.106 to port 23 [J]	2020-01-21 03:34:03
attack	Unauthorized connection attempt detected from IP address 47.104.192.106 to port 23 [J]	2020-01-16 03:39:10
attackbotsspam	Unauthorized connection attempt detected from IP address 47.104.192.106 to port 23 [T]	2020-01-09 04:44:32
attack	Unauthorized connection attempt detected from IP address 47.104.192.106 to port 23 [J]	2020-01-07 04:14:46
attackbots	Unauthorized connection attempt detected from IP address 47.104.192.106 to port 23	2020-01-04 08:40:33
attackbots	Unauthorized connection attempt detected from IP address 47.104.192.106 to port 23	2020-01-02 22:07:26
attackspambots	Unauthorized connection attempt detected from IP address 47.104.192.106 to port 23	2020-01-01 22:14:24
attack	Unauthorized connection attempt detected from IP address 47.104.192.106 to port 23	2020-01-01 04:47:55
attackbots	Unauthorized connection attempt detected from IP address 47.104.192.106 to port 23	2019-12-31 07:46:56

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 47.104.192.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61791
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;47.104.192.106.			IN	A

;; AUTHORITY SECTION:
.			387	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019123001 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 31 07:46:53 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 106.192.104.47.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 106.192.104.47.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
159.65.229.200	attackspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root	2020-09-09 07:57:36
79.120.102.34	attack	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-09-09 07:53:27
138.68.44.55	attackbotsspam	Lines containing failures of 138.68.44.55 (max 1000) Sep 7 02:33:56 archiv sshd[5814]: Invalid user sogo from 138.68.44.55 port 60232 Sep 7 02:33:56 archiv sshd[5814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.44.55 Sep 7 02:33:58 archiv sshd[5814]: Failed password for invalid user sogo from 138.68.44.55 port 60232 ssh2 Sep 7 02:33:58 archiv sshd[5814]: Received disconnect from 138.68.44.55 port 60232:11: Bye Bye [preauth] Sep 7 02:33:58 archiv sshd[5814]: Disconnected from 138.68.44.55 port 60232 [preauth] Sep 7 02:39:20 archiv sshd[5842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.44.55 user=r.r Sep 7 02:39:21 archiv sshd[5842]: Failed password for r.r from 138.68.44.55 port 46094 ssh2 Sep 7 02:39:21 archiv sshd[5842]: Received disconnect from 138.68.44.55 port 46094:11: Bye Bye [preauth] Sep 7 02:39:21 archiv sshd[5842]: Disconnected from 138.68.44.55 por........ ------------------------------	2020-09-09 07:49:33
121.15.139.2	attack	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root	2020-09-09 07:40:48
36.134.4.246	attackspambots	Sep 8 23:17:54 ns382633 sshd\[30307\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.134.4.246 user=root Sep 8 23:17:56 ns382633 sshd\[30307\]: Failed password for root from 36.134.4.246 port 35604 ssh2 Sep 8 23:41:04 ns382633 sshd\[2081\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.134.4.246 user=root Sep 8 23:41:07 ns382633 sshd\[2081\]: Failed password for root from 36.134.4.246 port 44834 ssh2 Sep 8 23:53:00 ns382633 sshd\[3797\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.134.4.246 user=root	2020-09-09 07:50:19
128.199.247.130	attackbots	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root	2020-09-09 07:58:04
54.38.81.231	attackspambots	$f2bV_matches	2020-09-09 08:02:12
211.159.186.152	attackbots	Sep 8 18:53:36 h2829583 sshd[30825]: Failed password for root from 211.159.186.152 port 42016 ssh2	2020-09-09 07:35:31
117.239.209.24	attackspambots	SSH Invalid Login	2020-09-09 07:53:11
78.190.110.102	attackbotsspam	20/9/8@12:53:14: FAIL: Alarm-Network address from=78.190.110.102 ...	2020-09-09 08:01:09
128.199.227.155	attackbotsspam	2020-09-08T22:17:30.262058dmca.cloudsearch.cf sshd[24583]: Invalid user lars from 128.199.227.155 port 37276 2020-09-08T22:17:30.266929dmca.cloudsearch.cf sshd[24583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.227.155 2020-09-08T22:17:30.262058dmca.cloudsearch.cf sshd[24583]: Invalid user lars from 128.199.227.155 port 37276 2020-09-08T22:17:31.850726dmca.cloudsearch.cf sshd[24583]: Failed password for invalid user lars from 128.199.227.155 port 37276 ssh2 2020-09-08T22:22:13.062996dmca.cloudsearch.cf sshd[24672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.227.155 user=root 2020-09-08T22:22:14.832314dmca.cloudsearch.cf sshd[24672]: Failed password for root from 128.199.227.155 port 33934 ssh2 2020-09-08T22:26:37.076966dmca.cloudsearch.cf sshd[24721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.227.155 user=root 2020-09-08T22:26 ...	2020-09-09 08:05:10
47.56.235.171	attackspam	Brute Force	2020-09-09 07:46:13
172.96.214.107	attack	Sep 8 18:08:34 vps-51d81928 sshd[310909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.96.214.107 Sep 8 18:08:34 vps-51d81928 sshd[310909]: Invalid user quinn from 172.96.214.107 port 47208 Sep 8 18:08:36 vps-51d81928 sshd[310909]: Failed password for invalid user quinn from 172.96.214.107 port 47208 ssh2 Sep 8 18:09:52 vps-51d81928 sshd[310928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.96.214.107 user=root Sep 8 18:09:54 vps-51d81928 sshd[310928]: Failed password for root from 172.96.214.107 port 40048 ssh2 ...	2020-09-09 07:45:45
190.148.53.6	attack	1599584021 - 09/08/2020 18:53:41 Host: 190.148.53.6/190.148.53.6 Port: 445 TCP Blocked	2020-09-09 07:32:48
49.233.79.78	attackbots	Sep 8 20:48:44 *** sshd[26534]: Invalid user zhucm from 49.233.79.78	2020-09-09 07:39:23

最近上报的IP列表

180.137.9.252	171.36.134.182	171.36.130.39	145.255.3.17
134.175.102.60	124.235.138.3	124.193.191.52	166.249.30.65
124.156.192.62	95.204.39.129	51.21.58.241	124.88.113.238
140.103.14.184	68.193.210.147	124.88.113.116	76.20.185.57
124.88.113.5	122.214.93.46	222.34.180.137	241.134.107.125