81.70.11.106 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Oct 9 00:44:25 buvik sshd[27190]: Invalid user ingrid from 81.70.11.106 Oct 9 00:44:25 buvik sshd[27190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.11.106 Oct 9 00:44:27 buvik sshd[27190]: Failed password for invalid user ingrid from 81.70.11.106 port 46970 ssh2 ...	2020-10-09 07:01:49
attackspambots	Oct 8 03:13:19 propaganda sshd[71165]: Connection from 81.70.11.106 port 58066 on 10.0.0.161 port 22 rdomain "" Oct 8 03:13:20 propaganda sshd[71165]: Connection closed by 81.70.11.106 port 58066 [preauth]	2020-10-08 23:27:35
attackspambots	Failed password for invalid user root from 81.70.11.106 port 51510 ssh2	2020-10-08 15:23:23
attackbots	SSH Brute Force	2020-10-07 06:12:18
attackbotsspam	Oct 6 10:44:20 xeon sshd[8779]: Failed password for root from 81.70.11.106 port 45052 ssh2	2020-10-06 22:27:00
attack	Oct 6 00:35:19 host2 sshd[1409489]: Failed password for root from 81.70.11.106 port 35534 ssh2 Oct 6 00:41:13 host2 sshd[1410218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.11.106 user=root Oct 6 00:41:16 host2 sshd[1410218]: Failed password for root from 81.70.11.106 port 41838 ssh2 Oct 6 00:41:13 host2 sshd[1410218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.11.106 user=root Oct 6 00:41:16 host2 sshd[1410218]: Failed password for root from 81.70.11.106 port 41838 ssh2 ...	2020-10-06 14:11:29
attackbots	Aug 29 08:50:14 Tower sshd[16767]: Connection from 81.70.11.106 port 57962 on 192.168.10.220 port 22 rdomain "" Aug 29 08:50:18 Tower sshd[16767]: Invalid user redmine from 81.70.11.106 port 57962 Aug 29 08:50:18 Tower sshd[16767]: error: Could not get shadow information for NOUSER Aug 29 08:50:18 Tower sshd[16767]: Failed password for invalid user redmine from 81.70.11.106 port 57962 ssh2 Aug 29 08:50:18 Tower sshd[16767]: Received disconnect from 81.70.11.106 port 57962:11: Bye Bye [preauth] Aug 29 08:50:18 Tower sshd[16767]: Disconnected from invalid user redmine 81.70.11.106 port 57962 [preauth]	2020-08-30 04:02:46
attackbots	Aug 22 17:27:05 vps647732 sshd[14400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.11.106 Aug 22 17:27:07 vps647732 sshd[14400]: Failed password for invalid user fwa from 81.70.11.106 port 40176 ssh2 ...	2020-08-23 00:42:47
attackbotsspam	Aug 16 23:19:47 buvik sshd[28829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.11.106 Aug 16 23:19:49 buvik sshd[28829]: Failed password for invalid user sg from 81.70.11.106 port 42134 ssh2 Aug 16 23:21:12 buvik sshd[29072]: Invalid user bma from 81.70.11.106 ...	2020-08-17 05:32:43

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.70.11.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36897
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;81.70.11.106.			IN	A

;; AUTHORITY SECTION:
.			303	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081601 1800 900 604800 86400

;; Query time: 77 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Aug 17 05:32:40 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 106.11.70.81.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 106.11.70.81.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
112.175.238.149	attackspam	Invalid user lightdm from 112.175.238.149 port 43604	2019-07-07 15:57:28
112.225.80.236	attackspambots	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-07 15:26:14
147.47.44.214	attack	Jul 6 17:36:44 shared06 sshd[8922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.47.44.214 user=list Jul 6 17:36:46 shared06 sshd[8922]: Failed password for list from 147.47.44.214 port 39541 ssh2 Jul 6 17:36:46 shared06 sshd[8922]: Received disconnect from 147.47.44.214 port 39541:11: Bye Bye [preauth] Jul 6 17:36:46 shared06 sshd[8922]: Disconnected from 147.47.44.214 port 39541 [preauth] Jul 6 17:40:14 shared06 sshd[10549]: Invalid user qody from 147.47.44.214 Jul 6 17:40:14 shared06 sshd[10549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.47.44.214 Jul 6 17:40:16 shared06 sshd[10549]: Failed password for invalid user qody from 147.47.44.214 port 56311 ssh2 Jul 6 17:40:17 shared06 sshd[10549]: Received disconnect from 147.47.44.214 port 56311:11: Bye Bye [preauth] Jul 6 17:40:17 shared06 sshd[10549]: Disconnected from 147.47.44.214 port 56311 [preauth] Jul 6 17:4........ -------------------------------	2019-07-07 15:57:06
158.69.113.180	attack	Jul 7 09:11:14 dev0-dcde-rnet sshd[7654]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.113.180 Jul 7 09:11:15 dev0-dcde-rnet sshd[7654]: Failed password for invalid user gitlab from 158.69.113.180 port 56660 ssh2 Jul 7 09:14:46 dev0-dcde-rnet sshd[7658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.113.180	2019-07-07 15:31:50
80.23.50.94	attack	Jul 7 06:54:43 ArkNodeAT sshd\[31669\]: Invalid user ftpuser from 80.23.50.94 Jul 7 06:54:43 ArkNodeAT sshd\[31669\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.23.50.94 Jul 7 06:54:45 ArkNodeAT sshd\[31669\]: Failed password for invalid user ftpuser from 80.23.50.94 port 37609 ssh2	2019-07-07 15:38:29
140.143.239.156	attackspambots	Jul 7 08:43:01 icinga sshd[13427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.239.156 Jul 7 08:43:03 icinga sshd[13427]: Failed password for invalid user test1 from 140.143.239.156 port 50820 ssh2 ...	2019-07-07 15:39:24
148.66.142.135	attackspambots	Jul 7 07:20:39 vpn01 sshd\[31439\]: Invalid user bhaskar from 148.66.142.135 Jul 7 07:20:39 vpn01 sshd\[31439\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.142.135 Jul 7 07:20:40 vpn01 sshd\[31439\]: Failed password for invalid user bhaskar from 148.66.142.135 port 52510 ssh2	2019-07-07 15:28:17
41.180.68.214	attack	SSH Bruteforce	2019-07-07 15:13:04
193.36.239.132	attack	(From eric@talkwithcustomer.com) Hello zchiro.com, People ask, “why does TalkWithCustomer work so well?” It’s simple. TalkWithCustomer enables you to connect with a prospective customer at EXACTLY the Perfect Time. - NOT one week, two weeks, three weeks after they’ve checked out your website zchiro.com. - NOT with a form letter style email that looks like it was written by a bot. - NOT with a robocall that could come at any time out of the blue. TalkWithCustomer connects you to that person within seconds of THEM asking to hear from YOU. They kick off the conversation. They take that first step. They ask to hear from you regarding what you have to offer and how it can make their life better. And it happens almost immediately. In real time. While they’re still looking over your website zchiro.com, trying to make up their mind whether you are right for them. When you connect with them at that very moment it’s the ultimate in Perfect Timing – as one famous marketer put it, “you’re	2019-07-07 15:59:28
191.53.58.78	attackspam	Jul 6 23:49:34 web1 postfix/smtpd[31851]: warning: unknown[191.53.58.78]: SASL PLAIN authentication failed: authentication failure ...	2019-07-07 15:56:31
154.117.159.102	attackspam	firewall-block, port(s): 80/tcp	2019-07-07 15:37:21
180.245.22.28	attackspambots	Jul 4 18:55:34 xb0 sshd[17042]: Failed password for invalid user dorin from 180.245.22.28 port 57641 ssh2 Jul 4 18:55:35 xb0 sshd[17042]: Received disconnect from 180.245.22.28: 11: Bye Bye [preauth] Jul 4 19:02:42 xb0 sshd[23825]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.245.22.28 user=r.r Jul 4 19:02:44 xb0 sshd[23825]: Failed password for r.r from 180.245.22.28 port 55262 ssh2 Jul 4 19:02:44 xb0 sshd[23825]: Received disconnect from 180.245.22.28: 11: Bye Bye [preauth] Jul 4 19:06:24 xb0 sshd[21338]: Failed password for invalid user server from 180.245.22.28 port 38208 ssh2 Jul 4 19:06:24 xb0 sshd[21338]: Received disconnect from 180.245.22.28: 11: Bye Bye [preauth] Jul 4 19:09:46 xb0 sshd[27778]: Failed password for invalid user p2p from 180.245.22.28 port 49385 ssh2 Jul 4 19:09:46 xb0 sshd[27778]: Received disconnect from 180.245.22.28: 11: Bye Bye [preauth] Jul 4 19:13:07 xb0 sshd[24588]: Failed passwor........ -------------------------------	2019-07-07 15:26:36
118.99.99.23	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-07 00:10:01,606 INFO [shellcode_manager] (118.99.99.23) no match, writing hexdump (e15ba999f3d1ca066f938b9d5e28bbd3 :2254784) - MS17010 (EternalBlue)	2019-07-07 15:34:09
119.200.186.168	attackspambots	Jul 7 07:16:56 ArkNodeAT sshd\[6833\]: Invalid user kosherdk from 119.200.186.168 Jul 7 07:16:56 ArkNodeAT sshd\[6833\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.200.186.168 Jul 7 07:16:58 ArkNodeAT sshd\[6833\]: Failed password for invalid user kosherdk from 119.200.186.168 port 54866 ssh2	2019-07-07 15:35:23
178.216.164.200	attackspam	[portscan] Port scan	2019-07-07 15:45:12

最近上报的IP列表

179.109.58.29	141.74.212.62	55.3.148.33	27.77.52.93
62.4.225.31	236.17.64.98	88.103.12.45	27.152.220.114
177.219.221.218	245.230.248.172	1.62.25.218	27.115.182.14
204.164.0.43	48.170.243.202	230.195.34.72	207.214.76.208
105.219.140.176	114.231.8.32	186.179.100.111	112.184.182.58