106.75.2.68 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	SSH BruteForce Attack	2020-09-14 02:39:58
attackspam	$f2bV_matches	2020-09-13 18:38:55

相同子网IP讨论:

IP	类型	评论内容	时间
106.75.29.209	spambotsattackproxy	106.75.29.209 powermailmarketingworld.info	2020-10-31 04:03:11
106.75.241.94	attackspambots	Oct 12 05:15:21 rudra sshd[980541]: Invalid user guest from 106.75.241.94 Oct 12 05:15:21 rudra sshd[980541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.241.94 Oct 12 05:15:23 rudra sshd[980541]: Failed password for invalid user guest from 106.75.241.94 port 38454 ssh2 Oct 12 05:15:24 rudra sshd[980541]: Received disconnect from 106.75.241.94: 11: Bye Bye [preauth] Oct 12 05:22:41 rudra sshd[981949]: Invalid user hf from 106.75.241.94 Oct 12 05:22:41 rudra sshd[981949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.241.94 Oct 12 05:22:43 rudra sshd[981949]: Failed password for invalid user hf from 106.75.241.94 port 57820 ssh2 Oct 12 05:22:43 rudra sshd[981949]: Received disconnect from 106.75.241.94: 11: Bye Bye [preauth] Oct 12 05:25:18 rudra sshd[982850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.241.94 user=r.r ........ -------------------------------	2020-10-14 08:35:57
106.75.25.148	attack	Lines containing failures of 106.75.25.148 Oct 12 03:38:02 siirappi sshd[17859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.25.148 user=r.r Oct 12 03:38:04 siirappi sshd[17859]: Failed password for r.r from 106.75.25.148 port 40948 ssh2 Oct 12 03:38:05 siirappi sshd[17859]: Received disconnect from 106.75.25.148 port 40948:11: Bye Bye [preauth] Oct 12 03:38:05 siirappi sshd[17859]: Disconnected from authenticating user r.r 106.75.25.148 port 40948 [preauth] Oct 12 04:34:17 siirappi sshd[18939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.25.148 user=r.r Oct 12 04:34:19 siirappi sshd[18939]: Failed password for r.r from 106.75.25.148 port 56746 ssh2 Oct 12 04:34:20 siirappi sshd[18939]: Received disconnect from 106.75.25.148 port 56746:11: Bye Bye [preauth] Oct 12 04:34:20 siirappi sshd[18939]: Disconnected from authenticating user r.r 106.75.25.148 port 56746 [preauth........ ------------------------------	2020-10-14 08:13:24
106.75.254.207	attack	Oct 13 21:35:38 onepixel sshd[2809638]: Invalid user carlos from 106.75.254.207 port 37912 Oct 13 21:35:40 onepixel sshd[2809638]: Failed password for invalid user carlos from 106.75.254.207 port 37912 ssh2 Oct 13 21:38:20 onepixel sshd[2810118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.254.207 user=root Oct 13 21:38:23 onepixel sshd[2810118]: Failed password for root from 106.75.254.207 port 51462 ssh2 Oct 13 21:40:51 onepixel sshd[2810829]: Invalid user regina from 106.75.254.207 port 36774	2020-10-14 07:21:17
106.75.246.176	attackbotsspam	Oct 14 00:45:51 mx sshd[1425171]: Invalid user villa from 106.75.246.176 port 35268 Oct 14 00:45:51 mx sshd[1425171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.246.176 Oct 14 00:45:51 mx sshd[1425171]: Invalid user villa from 106.75.246.176 port 35268 Oct 14 00:45:52 mx sshd[1425171]: Failed password for invalid user villa from 106.75.246.176 port 35268 ssh2 Oct 14 00:47:43 mx sshd[1425189]: Invalid user gelu from 106.75.246.176 port 36416 ...	2020-10-14 03:22:00
106.75.246.176	attackbots	Invalid user hq from 106.75.246.176 port 44754	2020-10-13 18:39:58
106.75.254.207	attackbots	Oct 13 08:00:00 hosting sshd[12331]: Invalid user home from 106.75.254.207 port 47012 ...	2020-10-13 13:41:44
106.75.254.207	attack	Oct 12 22:52:00 mavik sshd[12816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.254.207 Oct 12 22:52:03 mavik sshd[12816]: Failed password for invalid user james from 106.75.254.207 port 39442 ssh2 Oct 12 22:54:44 mavik sshd[13020]: Invalid user precia from 106.75.254.207 Oct 12 22:54:44 mavik sshd[13020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.254.207 Oct 12 22:54:46 mavik sshd[13020]: Failed password for invalid user precia from 106.75.254.207 port 52912 ssh2 ...	2020-10-13 06:25:52
106.75.254.207	attackbotsspam	Oct 11 04:22:58 ws24vmsma01 sshd[130475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.254.207 Oct 11 04:23:00 ws24vmsma01 sshd[130475]: Failed password for invalid user cvs1 from 106.75.254.207 port 34144 ssh2 ...	2020-10-11 15:34:25
106.75.254.207	attackbots	Oct 11 02:38:31 eventyay sshd[2542]: Failed password for root from 106.75.254.207 port 58830 ssh2 Oct 11 02:42:05 eventyay sshd[2702]: Failed password for root from 106.75.254.207 port 55540 ssh2 ...	2020-10-11 08:52:06
106.75.29.239	attackbots	Oct 9 14:58:09 ws26vmsma01 sshd[237593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.29.239 Oct 9 14:58:11 ws26vmsma01 sshd[237593]: Failed password for invalid user nagios from 106.75.29.239 port 48488 ssh2 ...	2020-10-10 02:55:51
106.75.240.86	attackspam	Oct 9 13:22:02 h1745522 sshd[11191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.240.86 user=root Oct 9 13:22:04 h1745522 sshd[11191]: Failed password for root from 106.75.240.86 port 42138 ssh2 Oct 9 13:23:40 h1745522 sshd[11501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.240.86 user=root Oct 9 13:23:42 h1745522 sshd[11501]: Failed password for root from 106.75.240.86 port 59456 ssh2 Oct 9 13:25:21 h1745522 sshd[11804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.240.86 user=root Oct 9 13:25:23 h1745522 sshd[11804]: Failed password for root from 106.75.240.86 port 48870 ssh2 Oct 9 13:27:01 h1745522 sshd[11922]: Invalid user web from 106.75.240.86 port 37624 Oct 9 13:27:01 h1745522 sshd[11922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.240.86 Oct 9 13:27:01 h1745522 ssh ...	2020-10-09 21:07:46
106.75.29.239	attackbots	fail2ban -- 106.75.29.239 ...	2020-10-09 18:42:18
106.75.240.86	attackbotsspam	SSH Bruteforce Attempt on Honeypot	2020-10-09 12:54:48
106.75.217.16	attack	Port probing on unauthorized port 4244	2020-10-08 02:08:13

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.2.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21273
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.2.68.			IN	A

;; AUTHORITY SECTION:
.			347	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091300 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 13 18:38:50 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 68.2.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 68.2.75.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
51.254.32.133	attackbotsspam	Apr 21 11:47:12 mail sshd\[25258\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.32.133 user=root ...	2020-04-22 01:38:19
106.12.55.39	attackspam	Apr 21 21:55:23 itv-usvr-01 sshd[32122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.55.39 user=root Apr 21 21:55:26 itv-usvr-01 sshd[32122]: Failed password for root from 106.12.55.39 port 59354 ssh2 Apr 21 21:59:06 itv-usvr-01 sshd[32248]: Invalid user ob from 106.12.55.39 Apr 21 21:59:06 itv-usvr-01 sshd[32248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.55.39 Apr 21 21:59:06 itv-usvr-01 sshd[32248]: Invalid user ob from 106.12.55.39 Apr 21 21:59:09 itv-usvr-01 sshd[32248]: Failed password for invalid user ob from 106.12.55.39 port 36376 ssh2	2020-04-22 01:23:10
103.3.226.230	attackspambots	Apr 21 10:57:39 ws12vmsma01 sshd[15467]: Failed password for invalid user oracle from 103.3.226.230 port 36122 ssh2 Apr 21 11:03:16 ws12vmsma01 sshd[16215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.3.226.230 user=root Apr 21 11:03:18 ws12vmsma01 sshd[16215]: Failed password for root from 103.3.226.230 port 48674 ssh2 ...	2020-04-22 01:28:12
106.13.35.176	attack	Port probing on unauthorized port 1239	2020-04-22 01:20:47
217.182.68.93	attack	Apr 21 19:37:59 srv01 sshd[13008]: Invalid user qk from 217.182.68.93 port 36988 Apr 21 19:37:59 srv01 sshd[13008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.68.93 Apr 21 19:37:59 srv01 sshd[13008]: Invalid user qk from 217.182.68.93 port 36988 Apr 21 19:38:02 srv01 sshd[13008]: Failed password for invalid user qk from 217.182.68.93 port 36988 ssh2 Apr 21 19:42:17 srv01 sshd[13644]: Invalid user zc from 217.182.68.93 port 50920 ...	2020-04-22 01:56:29
106.12.82.80	attackspambots	Apr 21 18:50:25 ns382633 sshd\[25143\]: Invalid user sftpuser from 106.12.82.80 port 50722 Apr 21 18:50:25 ns382633 sshd\[25143\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.82.80 Apr 21 18:50:27 ns382633 sshd\[25143\]: Failed password for invalid user sftpuser from 106.12.82.80 port 50722 ssh2 Apr 21 18:59:50 ns382633 sshd\[26676\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.82.80 user=root Apr 21 18:59:52 ns382633 sshd\[26676\]: Failed password for root from 106.12.82.80 port 49492 ssh2	2020-04-22 01:22:15
219.250.188.142	attackspam	21 attempts against mh-ssh on echoip	2020-04-22 01:55:09
212.64.71.132	attack	Invalid user admin from 212.64.71.132 port 47920	2020-04-22 01:58:32
101.89.192.64	attackspambots	2020-04-21T14:36:29.419551abusebot-2.cloudsearch.cf sshd[4485]: Invalid user admin from 101.89.192.64 port 57392 2020-04-21T14:36:29.425178abusebot-2.cloudsearch.cf sshd[4485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.89.192.64 2020-04-21T14:36:29.419551abusebot-2.cloudsearch.cf sshd[4485]: Invalid user admin from 101.89.192.64 port 57392 2020-04-21T14:36:31.174948abusebot-2.cloudsearch.cf sshd[4485]: Failed password for invalid user admin from 101.89.192.64 port 57392 ssh2 2020-04-21T14:40:00.160024abusebot-2.cloudsearch.cf sshd[4765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.89.192.64 user=root 2020-04-21T14:40:02.542261abusebot-2.cloudsearch.cf sshd[4765]: Failed password for root from 101.89.192.64 port 43290 ssh2 2020-04-21T14:44:01.612560abusebot-2.cloudsearch.cf sshd[5035]: Invalid user ftpuser from 101.89.192.64 port 57424 ...	2020-04-22 01:28:53
88.218.17.217	attackspam	Invalid user nl from 88.218.17.217 port 48540	2020-04-22 01:31:26
106.12.33.78	attackspambots	Apr 21 18:20:09 mail sshd[24114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.33.78 user=root Apr 21 18:20:11 mail sshd[24114]: Failed password for root from 106.12.33.78 port 60336 ssh2 ...	2020-04-22 01:23:37
14.231.176.93	attack	Invalid user admin from 14.231.176.93 port 42255	2020-04-22 01:49:54
104.236.22.133	attack	Port Scan detected from 104.236.22.133 (US/United States/New Jersey/Clifton/-). 4 hits in the last 185 seconds	2020-04-22 01:25:21
103.21.143.161	attackbots	ssh intrusion attempt	2020-04-22 01:27:48
80.211.244.158	attackspam	srv04 Mass scanning activity detected Target: 22527 ..	2020-04-22 01:32:21

最近上报的IP列表

107.175.151.94	94.208.138.113	185.193.90.98	151.80.77.132
126.207.9.167	117.69.159.249	176.115.125.234	115.99.212.233
147.36.107.34	20.36.194.79	74.120.14.22	27.79.159.141
27.6.184.227	185.245.41.4	89.183.69.234	49.147.192.215
185.237.204.99	174.217.22.36	66.23.227.218	185.87.108.147