106.13.68.27 - IPInfo

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): Beijing Baidu Netcom Science and Technology Co., Ltd.

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Nov 3 22:24:42 srv01 sshd[11132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 user=root Nov 3 22:24:44 srv01 sshd[11132]: Failed password for root from 106.13.68.27 port 43564 ssh2 Nov 3 22:29:00 srv01 sshd[11378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 user=root Nov 3 22:29:01 srv01 sshd[11378]: Failed password for root from 106.13.68.27 port 53916 ssh2 Nov 3 22:33:19 srv01 sshd[11843]: Invalid user site from 106.13.68.27 ...	2019-11-04 06:04:09
attack	2019-10-31T04:28:34.618196abusebot-3.cloudsearch.cf sshd\[3428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 user=root	2019-10-31 13:51:23
attack	Oct 29 15:20:24 lnxded63 sshd[8477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27	2019-10-30 03:31:21
attack	Invalid user 8 from 106.13.68.27 port 38332	2019-08-23 21:12:32
attack	2019-08-21T23:02:20.522613abusebot.cloudsearch.cf sshd\[4698\]: Invalid user fluffy from 106.13.68.27 port 48952	2019-08-22 07:31:48
attack	Aug 18 22:56:01 web1 sshd\[18532\]: Invalid user laurie from 106.13.68.27 Aug 18 22:56:01 web1 sshd\[18532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 Aug 18 22:56:03 web1 sshd\[18532\]: Failed password for invalid user laurie from 106.13.68.27 port 36268 ssh2 Aug 18 22:58:33 web1 sshd\[18777\]: Invalid user admin from 106.13.68.27 Aug 18 22:58:33 web1 sshd\[18777\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27	2019-08-19 23:44:04
attack	Jul 26 23:13:23 OPSO sshd\[11601\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 user=root Jul 26 23:13:25 OPSO sshd\[11601\]: Failed password for root from 106.13.68.27 port 33912 ssh2 Jul 26 23:15:54 OPSO sshd\[12103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 user=root Jul 26 23:15:56 OPSO sshd\[12103\]: Failed password for root from 106.13.68.27 port 57244 ssh2 Jul 26 23:18:31 OPSO sshd\[12487\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 user=root	2019-07-27 05:24:25
attackspambots	Jul 8 20:42:28 ns341937 sshd[22240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 Jul 8 20:42:30 ns341937 sshd[22240]: Failed password for invalid user ftp2 from 106.13.68.27 port 48906 ssh2 Jul 8 20:49:07 ns341937 sshd[23279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 ...	2019-07-09 03:13:08
attack	Jul 7 19:47:34 plusreed sshd[19485]: Invalid user anything from 106.13.68.27 Jul 7 19:47:34 plusreed sshd[19485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 Jul 7 19:47:34 plusreed sshd[19485]: Invalid user anything from 106.13.68.27 Jul 7 19:47:35 plusreed sshd[19485]: Failed password for invalid user anything from 106.13.68.27 port 38986 ssh2 Jul 7 19:50:17 plusreed sshd[20712]: Invalid user kay from 106.13.68.27 ...	2019-07-08 10:00:20

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.68.190	attack	2020-10-05 12:31:14 server sshd[82072]: Failed password for invalid user root from 106.13.68.190 port 44152 ssh2	2020-10-06 08:20:41
106.13.68.190	attackspambots	Oct 5 15:02:32 OPSO sshd\[6404\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.190 user=root Oct 5 15:02:35 OPSO sshd\[6404\]: Failed password for root from 106.13.68.190 port 58054 ssh2 Oct 5 15:06:48 OPSO sshd\[7208\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.190 user=root Oct 5 15:06:50 OPSO sshd\[7208\]: Failed password for root from 106.13.68.190 port 47736 ssh2 Oct 5 15:11:07 OPSO sshd\[7913\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.190 user=root	2020-10-06 00:47:30
106.13.68.190	attackspam	SSH login attempts.	2020-10-05 16:46:38
106.13.68.145	attackbots	Jul 19 21:42:27 ms-srv sshd[20684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.145 Jul 19 21:42:30 ms-srv sshd[20684]: Failed password for invalid user master from 106.13.68.145 port 41324 ssh2	2020-09-02 22:26:20
106.13.68.145	attackspambots	Port scan denied	2020-09-02 14:15:15
106.13.68.145	attackspambots	prod8 ...	2020-09-02 07:15:43
106.13.68.190	attackbots	Invalid user chen from 106.13.68.190 port 38372	2020-08-21 17:10:28
106.13.68.145	attackbots	Bruteforce detected by fail2ban	2020-08-13 12:05:34
106.13.68.190	attackbots	Aug 8 19:35:16 gw1 sshd[31615]: Failed password for root from 106.13.68.190 port 46660 ssh2 ...	2020-08-09 01:20:01
106.13.68.145	attackspam	SSH Brute-Force attacks	2020-08-08 06:33:30
106.13.68.145	attackspam	Aug 6 07:21:39 lnxmail61 sshd[28289]: Failed password for root from 106.13.68.145 port 46234 ssh2 Aug 6 07:21:39 lnxmail61 sshd[28289]: Failed password for root from 106.13.68.145 port 46234 ssh2	2020-08-06 13:43:52
106.13.68.190	attackspambots	Failed password for root from 106.13.68.190 port 46818 ssh2	2020-08-03 18:57:27
106.13.68.145	attackbots	Brute force attempt	2020-07-30 07:36:31
106.13.68.145	attackspambots	Jul 29 20:44:26 buvik sshd[16556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.145 Jul 29 20:44:28 buvik sshd[16556]: Failed password for invalid user jingyu from 106.13.68.145 port 59814 ssh2 Jul 29 20:48:59 buvik sshd[17200]: Invalid user kzhang from 106.13.68.145 ...	2020-07-30 02:50:24
106.13.68.190	attackbots	Invalid user azure from 106.13.68.190 port 51244	2020-07-19 03:34:23

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.68.27
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30059
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.68.27.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat May 04 22:45:37 +08 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 27.68.13.106.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.3, trying next server
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 27.68.13.106.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
104.248.142.47	attack	SS5,WP GET /wp-login.php	2020-02-07 00:43:41
122.224.55.101	attack	Feb 6 17:01:32 silence02 sshd[1425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.224.55.101 Feb 6 17:01:33 silence02 sshd[1425]: Failed password for invalid user aep from 122.224.55.101 port 44302 ssh2 Feb 6 17:05:06 silence02 sshd[1717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.224.55.101	2020-02-07 00:13:29
178.210.39.78	attackbots	Feb 6 16:31:54 silence02 sshd[31373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.210.39.78 Feb 6 16:31:56 silence02 sshd[31373]: Failed password for invalid user ayq from 178.210.39.78 port 60370 ssh2 Feb 6 16:35:05 silence02 sshd[31670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.210.39.78	2020-02-07 00:37:27
68.183.184.35	attackbotsspam	Invalid user plm from 68.183.184.35 port 40102 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.184.35 Failed password for invalid user plm from 68.183.184.35 port 40102 ssh2 Invalid user oau from 68.183.184.35 port 38960 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.184.35	2020-02-07 00:16:22
51.89.99.60	attackspambots	Port 22 (SSH) access denied	2020-02-07 00:20:35
194.61.26.34	attackbotsspam	Feb 6 10:31:51 host sshd\[2700\]: Invalid user admin from 194.61.26.34Feb 6 10:41:21 host sshd\[7990\]: Invalid user admin from 194.61.26.34Feb 6 10:50:15 host sshd\[13158\]: Invalid user admin from 194.61.26.34 ...	2020-02-07 00:46:21
125.91.116.181	attack	Feb 6 17:18:35 silence02 sshd[2800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.91.116.181 Feb 6 17:18:37 silence02 sshd[2800]: Failed password for invalid user ufs from 125.91.116.181 port 48764 ssh2 Feb 6 17:22:58 silence02 sshd[3140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.91.116.181	2020-02-07 00:39:17
180.126.168.128	attackspambots	Feb 6 13:42:54 system,error,critical: login failure for user root from 180.126.168.128 via telnet Feb 6 13:43:04 system,error,critical: login failure for user admin from 180.126.168.128 via telnet Feb 6 13:43:08 system,error,critical: login failure for user admin from 180.126.168.128 via telnet Feb 6 13:43:22 system,error,critical: login failure for user guest from 180.126.168.128 via telnet Feb 6 13:43:29 system,error,critical: login failure for user telecomadmin from 180.126.168.128 via telnet Feb 6 13:43:35 system,error,critical: login failure for user default from 180.126.168.128 via telnet Feb 6 13:43:48 system,error,critical: login failure for user default from 180.126.168.128 via telnet Feb 6 13:43:57 system,error,critical: login failure for user default from 180.126.168.128 via telnet Feb 6 13:44:01 system,error,critical: login failure for user default from 180.126.168.128 via telnet Feb 6 13:44:32 system,error,critical: login failure for user default from 180.126.168.128 via telnet	2020-02-07 00:23:02
106.54.81.174	attack	Feb 6 14:54:47 powerpi2 sshd[16063]: Invalid user kab from 106.54.81.174 port 58906 Feb 6 14:54:49 powerpi2 sshd[16063]: Failed password for invalid user kab from 106.54.81.174 port 58906 ssh2 Feb 6 14:59:28 powerpi2 sshd[16492]: Invalid user oqt from 106.54.81.174 port 57410 ...	2020-02-07 00:28:58
45.56.78.64	attackspam	Unauthorized connection attempt detected from IP address 45.56.78.64 to port 443	2020-02-07 00:28:18
222.186.30.218	attack	Feb 6 17:14:01 vps647732 sshd[23548]: Failed password for root from 222.186.30.218 port 26748 ssh2 Feb 6 17:14:03 vps647732 sshd[23548]: Failed password for root from 222.186.30.218 port 26748 ssh2 ...	2020-02-07 00:18:27
84.215.23.72	attackbots	Feb 6 15:31:50 silence02 sshd[26430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.215.23.72 Feb 6 15:31:52 silence02 sshd[26430]: Failed password for invalid user pta from 84.215.23.72 port 37084 ssh2 Feb 6 15:35:12 silence02 sshd[26701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.215.23.72	2020-02-07 00:44:07
209.105.243.145	attackspambots	Feb 6 16:45:38 pornomens sshd\[17120\]: Invalid user tvf from 209.105.243.145 port 40926 Feb 6 16:45:38 pornomens sshd\[17120\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.105.243.145 Feb 6 16:45:40 pornomens sshd\[17120\]: Failed password for invalid user tvf from 209.105.243.145 port 40926 ssh2 ...	2020-02-07 00:48:57
93.152.159.11	attackbots	SSH Bruteforce attack	2020-02-07 00:26:22
51.77.41.246	attackspambots	Feb 6 16:58:59 hosting180 sshd[18469]: Invalid user aja from 51.77.41.246 port 54686 ...	2020-02-07 00:36:01

最近上报的IP列表

225.67.72.117	181.37.72.55	185.98.166.16	41.33.102.122
189.20.217.32	57.26.121.136	134.249.183.151	83.220.63.179
38.169.69.234	2001:df6:b800:1130:a163:44:152:127f	81.37.192.43	105.106.43.11
148.70.65.88	147.36.3.243	204.48.23.112	5.83.160.2
129.193.218.121	186.31.25.4	190.15.112.163	221.223.30.79