106.75.2.68 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	SSH BruteForce Attack	2020-09-14 02:39:58
attackspam	$f2bV_matches	2020-09-13 18:38:55

相同子网IP讨论:

IP	类型	评论内容	时间
106.75.29.209	spambotsattackproxy	106.75.29.209 powermailmarketingworld.info	2020-10-31 04:03:11
106.75.241.94	attackspambots	Oct 12 05:15:21 rudra sshd[980541]: Invalid user guest from 106.75.241.94 Oct 12 05:15:21 rudra sshd[980541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.241.94 Oct 12 05:15:23 rudra sshd[980541]: Failed password for invalid user guest from 106.75.241.94 port 38454 ssh2 Oct 12 05:15:24 rudra sshd[980541]: Received disconnect from 106.75.241.94: 11: Bye Bye [preauth] Oct 12 05:22:41 rudra sshd[981949]: Invalid user hf from 106.75.241.94 Oct 12 05:22:41 rudra sshd[981949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.241.94 Oct 12 05:22:43 rudra sshd[981949]: Failed password for invalid user hf from 106.75.241.94 port 57820 ssh2 Oct 12 05:22:43 rudra sshd[981949]: Received disconnect from 106.75.241.94: 11: Bye Bye [preauth] Oct 12 05:25:18 rudra sshd[982850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.241.94 user=r.r ........ -------------------------------	2020-10-14 08:35:57
106.75.25.148	attack	Lines containing failures of 106.75.25.148 Oct 12 03:38:02 siirappi sshd[17859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.25.148 user=r.r Oct 12 03:38:04 siirappi sshd[17859]: Failed password for r.r from 106.75.25.148 port 40948 ssh2 Oct 12 03:38:05 siirappi sshd[17859]: Received disconnect from 106.75.25.148 port 40948:11: Bye Bye [preauth] Oct 12 03:38:05 siirappi sshd[17859]: Disconnected from authenticating user r.r 106.75.25.148 port 40948 [preauth] Oct 12 04:34:17 siirappi sshd[18939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.25.148 user=r.r Oct 12 04:34:19 siirappi sshd[18939]: Failed password for r.r from 106.75.25.148 port 56746 ssh2 Oct 12 04:34:20 siirappi sshd[18939]: Received disconnect from 106.75.25.148 port 56746:11: Bye Bye [preauth] Oct 12 04:34:20 siirappi sshd[18939]: Disconnected from authenticating user r.r 106.75.25.148 port 56746 [preauth........ ------------------------------	2020-10-14 08:13:24
106.75.254.207	attack	Oct 13 21:35:38 onepixel sshd[2809638]: Invalid user carlos from 106.75.254.207 port 37912 Oct 13 21:35:40 onepixel sshd[2809638]: Failed password for invalid user carlos from 106.75.254.207 port 37912 ssh2 Oct 13 21:38:20 onepixel sshd[2810118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.254.207 user=root Oct 13 21:38:23 onepixel sshd[2810118]: Failed password for root from 106.75.254.207 port 51462 ssh2 Oct 13 21:40:51 onepixel sshd[2810829]: Invalid user regina from 106.75.254.207 port 36774	2020-10-14 07:21:17
106.75.246.176	attackbotsspam	Oct 14 00:45:51 mx sshd[1425171]: Invalid user villa from 106.75.246.176 port 35268 Oct 14 00:45:51 mx sshd[1425171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.246.176 Oct 14 00:45:51 mx sshd[1425171]: Invalid user villa from 106.75.246.176 port 35268 Oct 14 00:45:52 mx sshd[1425171]: Failed password for invalid user villa from 106.75.246.176 port 35268 ssh2 Oct 14 00:47:43 mx sshd[1425189]: Invalid user gelu from 106.75.246.176 port 36416 ...	2020-10-14 03:22:00
106.75.246.176	attackbots	Invalid user hq from 106.75.246.176 port 44754	2020-10-13 18:39:58
106.75.254.207	attackbots	Oct 13 08:00:00 hosting sshd[12331]: Invalid user home from 106.75.254.207 port 47012 ...	2020-10-13 13:41:44
106.75.254.207	attack	Oct 12 22:52:00 mavik sshd[12816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.254.207 Oct 12 22:52:03 mavik sshd[12816]: Failed password for invalid user james from 106.75.254.207 port 39442 ssh2 Oct 12 22:54:44 mavik sshd[13020]: Invalid user precia from 106.75.254.207 Oct 12 22:54:44 mavik sshd[13020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.254.207 Oct 12 22:54:46 mavik sshd[13020]: Failed password for invalid user precia from 106.75.254.207 port 52912 ssh2 ...	2020-10-13 06:25:52
106.75.254.207	attackbotsspam	Oct 11 04:22:58 ws24vmsma01 sshd[130475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.254.207 Oct 11 04:23:00 ws24vmsma01 sshd[130475]: Failed password for invalid user cvs1 from 106.75.254.207 port 34144 ssh2 ...	2020-10-11 15:34:25
106.75.254.207	attackbots	Oct 11 02:38:31 eventyay sshd[2542]: Failed password for root from 106.75.254.207 port 58830 ssh2 Oct 11 02:42:05 eventyay sshd[2702]: Failed password for root from 106.75.254.207 port 55540 ssh2 ...	2020-10-11 08:52:06
106.75.29.239	attackbots	Oct 9 14:58:09 ws26vmsma01 sshd[237593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.29.239 Oct 9 14:58:11 ws26vmsma01 sshd[237593]: Failed password for invalid user nagios from 106.75.29.239 port 48488 ssh2 ...	2020-10-10 02:55:51
106.75.240.86	attackspam	Oct 9 13:22:02 h1745522 sshd[11191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.240.86 user=root Oct 9 13:22:04 h1745522 sshd[11191]: Failed password for root from 106.75.240.86 port 42138 ssh2 Oct 9 13:23:40 h1745522 sshd[11501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.240.86 user=root Oct 9 13:23:42 h1745522 sshd[11501]: Failed password for root from 106.75.240.86 port 59456 ssh2 Oct 9 13:25:21 h1745522 sshd[11804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.240.86 user=root Oct 9 13:25:23 h1745522 sshd[11804]: Failed password for root from 106.75.240.86 port 48870 ssh2 Oct 9 13:27:01 h1745522 sshd[11922]: Invalid user web from 106.75.240.86 port 37624 Oct 9 13:27:01 h1745522 sshd[11922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.240.86 Oct 9 13:27:01 h1745522 ssh ...	2020-10-09 21:07:46
106.75.29.239	attackbots	fail2ban -- 106.75.29.239 ...	2020-10-09 18:42:18
106.75.240.86	attackbotsspam	SSH Bruteforce Attempt on Honeypot	2020-10-09 12:54:48
106.75.217.16	attack	Port probing on unauthorized port 4244	2020-10-08 02:08:13

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.2.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21273
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.2.68.			IN	A

;; AUTHORITY SECTION:
.			347	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091300 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 13 18:38:50 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 68.2.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 68.2.75.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
79.2.22.244	attackbots	4x Failed Password	2019-11-06 05:42:31
129.213.96.241	attackbotsspam	2019-11-05T21:38:59.334167shield sshd\[4508\]: Invalid user rf from 129.213.96.241 port 58555 2019-11-05T21:38:59.338578shield sshd\[4508\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.96.241 2019-11-05T21:39:01.383550shield sshd\[4508\]: Failed password for invalid user rf from 129.213.96.241 port 58555 ssh2 2019-11-05T21:42:29.569308shield sshd\[5157\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.96.241 user=root 2019-11-05T21:42:32.108520shield sshd\[5157\]: Failed password for root from 129.213.96.241 port 22044 ssh2	2019-11-06 05:45:37
200.228.86.78	attackspambots	Autoban 200.228.86.78 AUTH/CONNECT	2019-11-06 05:56:33
103.73.226.34	attackspambots	Unauthorized connection attempt from IP address 103.73.226.34 on Port 445(SMB)	2019-11-06 05:36:58
208.113.210.246	attackspam	Automatic report - XMLRPC Attack	2019-11-06 05:47:58
170.247.112.226	attackspambots	postfix (unknown user, SPF fail or relay access denied)	2019-11-06 05:32:00
138.68.242.220	attackspam	Nov 5 06:20:03 eddieflores sshd\[13413\]: Invalid user elliott from 138.68.242.220 Nov 5 06:20:03 eddieflores sshd\[13413\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.242.220 Nov 5 06:20:05 eddieflores sshd\[13413\]: Failed password for invalid user elliott from 138.68.242.220 port 48074 ssh2 Nov 5 06:24:17 eddieflores sshd\[13777\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.242.220 user=root Nov 5 06:24:19 eddieflores sshd\[13777\]: Failed password for root from 138.68.242.220 port 57766 ssh2	2019-11-06 05:45:24
45.80.65.76	attackspam	Nov 5 22:26:13 vps647732 sshd[25335]: Failed password for root from 45.80.65.76 port 59352 ssh2 ...	2019-11-06 05:35:21
179.162.128.161	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/179.162.128.161/ BR - 1H : (327) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN18881 IP : 179.162.128.161 CIDR : 179.162.128.0/19 PREFIX COUNT : 938 UNIQUE IP COUNT : 4233472 ATTACKS DETECTED ASN18881 : 1H - 4 3H - 8 6H - 19 12H - 31 24H - 55 DateTime : 2019-11-05 15:31:17 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-06 05:33:33
125.161.137.41	attack	Unauthorized connection attempt from IP address 125.161.137.41 on Port 445(SMB)	2019-11-06 06:00:37
194.187.251.52	attack	Path Traversal Attacks! bad bot.	2019-11-06 05:31:30
201.249.182.150	attackbots	Unauthorized connection attempt from IP address 201.249.182.150 on Port 445(SMB)	2019-11-06 05:26:47
81.26.130.133	attackbotsspam	Automatic report - Banned IP Access	2019-11-06 05:34:34
86.133.194.43	attackspam	Nov 5 09:16:01 roki sshd[22788]: Invalid user nscd from 86.133.194.43 Nov 5 09:16:01 roki sshd[22788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.133.194.43 Nov 5 09:16:04 roki sshd[22788]: Failed password for invalid user nscd from 86.133.194.43 port 33502 ssh2 Nov 5 15:30:43 roki sshd[15700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.133.194.43 user=root Nov 5 15:30:45 roki sshd[15700]: Failed password for root from 86.133.194.43 port 34826 ssh2 ...	2019-11-06 05:59:41
106.12.202.181	attack	F2B jail: sshd. Time: 2019-11-05 22:40:51, Reported by: VKReport	2019-11-06 05:43:29

最近上报的IP列表

107.175.151.94	94.208.138.113	185.193.90.98	151.80.77.132
126.207.9.167	117.69.159.249	176.115.125.234	115.99.212.233
147.36.107.34	20.36.194.79	74.120.14.22	27.79.159.141
27.6.184.227	185.245.41.4	89.183.69.234	49.147.192.215
185.237.204.99	174.217.22.36	66.23.227.218	185.87.108.147