必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): Beijing Baidu Netcom Science and Technology Co., Ltd.

使用类型(Usage Type): Search Engine Spider

用户上报:
类型 评论内容 时间
attack
Nov  3 22:24:42 srv01 sshd[11132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27  user=root
Nov  3 22:24:44 srv01 sshd[11132]: Failed password for root from 106.13.68.27 port 43564 ssh2
Nov  3 22:29:00 srv01 sshd[11378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27  user=root
Nov  3 22:29:01 srv01 sshd[11378]: Failed password for root from 106.13.68.27 port 53916 ssh2
Nov  3 22:33:19 srv01 sshd[11843]: Invalid user site from 106.13.68.27
...
2019-11-04 06:04:09
attack
2019-10-31T04:28:34.618196abusebot-3.cloudsearch.cf sshd\[3428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27  user=root
2019-10-31 13:51:23
attack
Oct 29 15:20:24 lnxded63 sshd[8477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27
2019-10-30 03:31:21
attack
Invalid user 8 from 106.13.68.27 port 38332
2019-08-23 21:12:32
attack
2019-08-21T23:02:20.522613abusebot.cloudsearch.cf sshd\[4698\]: Invalid user fluffy from 106.13.68.27 port 48952
2019-08-22 07:31:48
attack
Aug 18 22:56:01 web1 sshd\[18532\]: Invalid user laurie from 106.13.68.27
Aug 18 22:56:01 web1 sshd\[18532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27
Aug 18 22:56:03 web1 sshd\[18532\]: Failed password for invalid user laurie from 106.13.68.27 port 36268 ssh2
Aug 18 22:58:33 web1 sshd\[18777\]: Invalid user admin from 106.13.68.27
Aug 18 22:58:33 web1 sshd\[18777\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27
2019-08-19 23:44:04
attack
Jul 26 23:13:23 OPSO sshd\[11601\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27  user=root
Jul 26 23:13:25 OPSO sshd\[11601\]: Failed password for root from 106.13.68.27 port 33912 ssh2
Jul 26 23:15:54 OPSO sshd\[12103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27  user=root
Jul 26 23:15:56 OPSO sshd\[12103\]: Failed password for root from 106.13.68.27 port 57244 ssh2
Jul 26 23:18:31 OPSO sshd\[12487\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27  user=root
2019-07-27 05:24:25
attackspambots
Jul  8 20:42:28 ns341937 sshd[22240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27
Jul  8 20:42:30 ns341937 sshd[22240]: Failed password for invalid user ftp2 from 106.13.68.27 port 48906 ssh2
Jul  8 20:49:07 ns341937 sshd[23279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27
...
2019-07-09 03:13:08
attack
Jul  7 19:47:34 plusreed sshd[19485]: Invalid user anything from 106.13.68.27
Jul  7 19:47:34 plusreed sshd[19485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27
Jul  7 19:47:34 plusreed sshd[19485]: Invalid user anything from 106.13.68.27
Jul  7 19:47:35 plusreed sshd[19485]: Failed password for invalid user anything from 106.13.68.27 port 38986 ssh2
Jul  7 19:50:17 plusreed sshd[20712]: Invalid user kay from 106.13.68.27
...
2019-07-08 10:00:20
相同子网IP讨论:
IP 类型 评论内容 时间
106.13.68.190 attack
2020-10-05 12:31:14 server sshd[82072]: Failed password for invalid user root from 106.13.68.190 port 44152 ssh2
2020-10-06 08:20:41
106.13.68.190 attackspambots
Oct  5 15:02:32 OPSO sshd\[6404\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.190  user=root
Oct  5 15:02:35 OPSO sshd\[6404\]: Failed password for root from 106.13.68.190 port 58054 ssh2
Oct  5 15:06:48 OPSO sshd\[7208\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.190  user=root
Oct  5 15:06:50 OPSO sshd\[7208\]: Failed password for root from 106.13.68.190 port 47736 ssh2
Oct  5 15:11:07 OPSO sshd\[7913\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.190  user=root
2020-10-06 00:47:30
106.13.68.190 attackspam
SSH login attempts.
2020-10-05 16:46:38
106.13.68.145 attackbots
Jul 19 21:42:27 ms-srv sshd[20684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.145
Jul 19 21:42:30 ms-srv sshd[20684]: Failed password for invalid user master from 106.13.68.145 port 41324 ssh2
2020-09-02 22:26:20
106.13.68.145 attackspambots
Port scan denied
2020-09-02 14:15:15
106.13.68.145 attackspambots
prod8
...
2020-09-02 07:15:43
106.13.68.190 attackbots
Invalid user chen from 106.13.68.190 port 38372
2020-08-21 17:10:28
106.13.68.145 attackbots
Bruteforce detected by fail2ban
2020-08-13 12:05:34
106.13.68.190 attackbots
Aug  8 19:35:16 gw1 sshd[31615]: Failed password for root from 106.13.68.190 port 46660 ssh2
...
2020-08-09 01:20:01
106.13.68.145 attackspam
SSH Brute-Force attacks
2020-08-08 06:33:30
106.13.68.145 attackspam
Aug  6 07:21:39 lnxmail61 sshd[28289]: Failed password for root from 106.13.68.145 port 46234 ssh2
Aug  6 07:21:39 lnxmail61 sshd[28289]: Failed password for root from 106.13.68.145 port 46234 ssh2
2020-08-06 13:43:52
106.13.68.190 attackspambots
Failed password for root from 106.13.68.190 port 46818 ssh2
2020-08-03 18:57:27
106.13.68.145 attackbots
Brute force attempt
2020-07-30 07:36:31
106.13.68.145 attackspambots
Jul 29 20:44:26 buvik sshd[16556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.145
Jul 29 20:44:28 buvik sshd[16556]: Failed password for invalid user jingyu from 106.13.68.145 port 59814 ssh2
Jul 29 20:48:59 buvik sshd[17200]: Invalid user kzhang from 106.13.68.145
...
2020-07-30 02:50:24
106.13.68.190 attackbots
Invalid user azure from 106.13.68.190 port 51244
2020-07-19 03:34:23
WHOIS信息:
b
DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.68.27
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30059
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.68.27.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat May 04 22:45:37 +08 2019
;; MSG SIZE  rcvd: 116

HOST信息:
Host 27.68.13.106.in-addr.arpa not found: 2(SERVFAIL)
NSLOOKUP信息:
;; Got SERVFAIL reply from 67.207.67.3, trying next server
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 27.68.13.106.in-addr.arpa: SERVFAIL

相关IP信息:
最新评论:
IP 类型 评论内容 时间
36.156.24.43 attackspam
Sep  4 06:01:38 fr01 sshd[6622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.156.24.43  user=root
Sep  4 06:01:41 fr01 sshd[6622]: Failed password for root from 36.156.24.43 port 53466 ssh2
...
2019-09-04 12:03:44
203.110.179.26 attackspambots
Sep  3 17:27:39 hiderm sshd\[27200\]: Invalid user zimbra from 203.110.179.26
Sep  3 17:27:39 hiderm sshd\[27200\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.110.179.26
Sep  3 17:27:41 hiderm sshd\[27200\]: Failed password for invalid user zimbra from 203.110.179.26 port 59889 ssh2
Sep  3 17:29:48 hiderm sshd\[27386\]: Invalid user invite from 203.110.179.26
Sep  3 17:29:48 hiderm sshd\[27386\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.110.179.26
2019-09-04 11:43:17
176.175.110.238 attackspam
Sep  3 17:56:16 web1 sshd\[10490\]: Invalid user toor from 176.175.110.238
Sep  3 17:56:16 web1 sshd\[10490\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.175.110.238
Sep  3 17:56:18 web1 sshd\[10490\]: Failed password for invalid user toor from 176.175.110.238 port 44622 ssh2
Sep  3 18:01:38 web1 sshd\[11024\]: Invalid user paulj from 176.175.110.238
Sep  3 18:01:38 web1 sshd\[11024\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.175.110.238
2019-09-04 12:12:54
181.198.35.108 attackbots
Sep  4 05:55:17 eventyay sshd[19522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.198.35.108
Sep  4 05:55:19 eventyay sshd[19522]: Failed password for invalid user wesley from 181.198.35.108 port 51086 ssh2
Sep  4 06:00:36 eventyay sshd[19638]: Failed password for root from 181.198.35.108 port 40084 ssh2
...
2019-09-04 12:09:41
151.80.162.216 attackspambots
Sep  4 03:29:40  postfix/smtpd: warning: unknown[151.80.162.216]: SASL LOGIN authentication failed
2019-09-04 11:46:01
117.73.2.103 attackspambots
Sep  4 05:00:57 mail sshd\[437\]: Failed password for invalid user juan from 117.73.2.103 port 39552 ssh2
Sep  4 05:16:34 mail sshd\[710\]: Invalid user as from 117.73.2.103 port 60936
...
2019-09-04 12:18:39
158.69.223.91 attackspam
$f2bV_matches
2019-09-04 11:44:48
101.254.185.118 attack
2019-09-04T03:29:31.087687abusebot.cloudsearch.cf sshd\[18994\]: Invalid user noc from 101.254.185.118 port 45012
2019-09-04T03:29:31.091587abusebot.cloudsearch.cf sshd\[18994\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.254.185.118
2019-09-04 12:00:03
78.188.214.48 attack
" "
2019-09-04 12:10:23
190.210.7.1 attackbotsspam
Sep  4 05:38:35 vps647732 sshd[7350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.210.7.1
Sep  4 05:38:37 vps647732 sshd[7350]: Failed password for invalid user hhhhh from 190.210.7.1 port 55254 ssh2
...
2019-09-04 11:53:42
158.69.193.32 attackspambots
2019-09-04T03:29:28.987999abusebot-4.cloudsearch.cf sshd\[11850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=32.ip-158-69-193.net  user=root
2019-09-04 11:58:10
222.186.15.101 attackbotsspam
Sep  4 06:56:27 site3 sshd\[72954\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.101  user=root
Sep  4 06:56:29 site3 sshd\[72954\]: Failed password for root from 222.186.15.101 port 57564 ssh2
Sep  4 06:56:35 site3 sshd\[72956\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.101  user=root
Sep  4 06:56:37 site3 sshd\[72956\]: Failed password for root from 222.186.15.101 port 43022 ssh2
Sep  4 06:56:44 site3 sshd\[72966\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.101  user=root
...
2019-09-04 12:01:23
189.109.247.149 attackbotsspam
$f2bV_matches_ltvn
2019-09-04 12:08:26
2.111.91.225 attack
Sep  4 06:01:23 meumeu sshd[491]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.111.91.225 
Sep  4 06:01:25 meumeu sshd[491]: Failed password for invalid user kms from 2.111.91.225 port 47735 ssh2
Sep  4 06:06:03 meumeu sshd[1037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.111.91.225 
...
2019-09-04 12:22:33
185.176.27.114 attackspambots
09/03/2019-23:35:20.160280 185.176.27.114 Protocol: 6 ET DROP Dshield Block Listed Source group 1
2019-09-04 12:16:31

最近上报的IP列表

225.67.72.117 181.37.72.55 185.98.166.16 41.33.102.122
189.20.217.32 57.26.121.136 134.249.183.151 83.220.63.179
38.169.69.234 2001:df6:b800:1130:a163:44:152:127f 81.37.192.43 105.106.43.11
148.70.65.88 147.36.3.243 204.48.23.112 5.83.160.2
129.193.218.121 186.31.25.4 190.15.112.163 221.223.30.79