城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): Shanghai UCloud Information Technology Company Limited
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Data Center/Web Hosting/Transit
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attack | Unauthorized connection attempt detected from IP address 106.75.93.253 to port 2220 [J] |
2020-01-22 21:11:09 |
| attack | Jan 1 15:14:10 game-panel sshd[26873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.93.253 Jan 1 15:14:13 game-panel sshd[26873]: Failed password for invalid user jsandoval from 106.75.93.253 port 42684 ssh2 Jan 1 15:17:49 game-panel sshd[27012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.93.253 |
2020-01-02 02:10:12 |
| attackspam | Dec 20 12:58:09 home sshd[13851]: Invalid user labovites from 106.75.93.253 port 60996 Dec 20 12:58:09 home sshd[13851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.93.253 Dec 20 12:58:09 home sshd[13851]: Invalid user labovites from 106.75.93.253 port 60996 Dec 20 12:58:11 home sshd[13851]: Failed password for invalid user labovites from 106.75.93.253 port 60996 ssh2 Dec 20 13:15:12 home sshd[13931]: Invalid user mysql from 106.75.93.253 port 53456 Dec 20 13:15:12 home sshd[13931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.93.253 Dec 20 13:15:12 home sshd[13931]: Invalid user mysql from 106.75.93.253 port 53456 Dec 20 13:15:14 home sshd[13931]: Failed password for invalid user mysql from 106.75.93.253 port 53456 ssh2 Dec 20 13:20:46 home sshd[13978]: Invalid user server from 106.75.93.253 port 51978 Dec 20 13:20:46 home sshd[13978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh |
2019-12-21 05:28:40 |
| attackspam | Dec 8 17:22:54 mail sshd[14964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.93.253 Dec 8 17:22:56 mail sshd[14964]: Failed password for invalid user vps from 106.75.93.253 port 50906 ssh2 Dec 8 17:30:20 mail sshd[17009]: Failed password for root from 106.75.93.253 port 47072 ssh2 |
2019-12-10 08:56:11 |
| attackbotsspam | Dec 5 23:50:31 hcbbdb sshd\[30858\]: Invalid user luise from 106.75.93.253 Dec 5 23:50:31 hcbbdb sshd\[30858\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.93.253 Dec 5 23:50:33 hcbbdb sshd\[30858\]: Failed password for invalid user luise from 106.75.93.253 port 33558 ssh2 Dec 5 23:55:57 hcbbdb sshd\[31472\]: Invalid user ioana from 106.75.93.253 Dec 5 23:55:57 hcbbdb sshd\[31472\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.93.253 |
2019-12-06 08:15:15 |
| attackbots | Oct 28 23:00:22 hcbbdb sshd\[11910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.93.253 user=root Oct 28 23:00:25 hcbbdb sshd\[11910\]: Failed password for root from 106.75.93.253 port 38864 ssh2 Oct 28 23:04:57 hcbbdb sshd\[12368\]: Invalid user david from 106.75.93.253 Oct 28 23:04:57 hcbbdb sshd\[12368\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.93.253 Oct 28 23:04:58 hcbbdb sshd\[12368\]: Failed password for invalid user david from 106.75.93.253 port 49208 ssh2 |
2019-10-29 07:14:43 |
| attack | Unauthorized SSH login attempts |
2019-10-12 11:21:09 |
| attackspam | Oct 11 07:43:56 server sshd\[16151\]: Invalid user Bonjour@123 from 106.75.93.253 port 56904 Oct 11 07:43:56 server sshd\[16151\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.93.253 Oct 11 07:43:58 server sshd\[16151\]: Failed password for invalid user Bonjour@123 from 106.75.93.253 port 56904 ssh2 Oct 11 07:48:40 server sshd\[25113\]: Invalid user Summer@123 from 106.75.93.253 port 33404 Oct 11 07:48:40 server sshd\[25113\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.93.253 |
2019-10-11 14:34:42 |
| attackbots | Oct 6 17:35:07 web9 sshd\[2030\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.93.253 user=root Oct 6 17:35:09 web9 sshd\[2030\]: Failed password for root from 106.75.93.253 port 36944 ssh2 Oct 6 17:39:30 web9 sshd\[2660\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.93.253 user=root Oct 6 17:39:31 web9 sshd\[2660\]: Failed password for root from 106.75.93.253 port 40066 ssh2 Oct 6 17:43:43 web9 sshd\[3298\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.93.253 user=root |
2019-10-07 18:46:42 |
| attackbots | Oct 1 05:31:53 mail sshd[29974]: Invalid user marcelo from 106.75.93.253 Oct 1 05:31:53 mail sshd[29974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.93.253 Oct 1 05:31:53 mail sshd[29974]: Invalid user marcelo from 106.75.93.253 Oct 1 05:31:55 mail sshd[29974]: Failed password for invalid user marcelo from 106.75.93.253 port 39558 ssh2 Oct 1 05:55:38 mail sshd[1830]: Invalid user postgres from 106.75.93.253 ... |
2019-10-01 12:04:27 |
| attack | Sep 29 13:09:56 sshgateway sshd\[29945\]: Invalid user acira from 106.75.93.253 Sep 29 13:09:56 sshgateway sshd\[29945\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.93.253 Sep 29 13:09:59 sshgateway sshd\[29945\]: Failed password for invalid user acira from 106.75.93.253 port 40832 ssh2 |
2019-09-30 00:04:42 |
| attackbotsspam | Sep 5 05:29:18 herz-der-gamer sshd[13277]: Invalid user fctrserver from 106.75.93.253 port 45524 ... |
2019-09-05 14:18:35 |
| attack | Aug 12 16:05:38 vps647732 sshd[27165]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.93.253 Aug 12 16:05:40 vps647732 sshd[27165]: Failed password for invalid user adm from 106.75.93.253 port 45032 ssh2 ... |
2019-08-13 01:49:34 |
| attackspam | Aug 12 13:02:30 vps647732 sshd[23115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.93.253 Aug 12 13:02:32 vps647732 sshd[23115]: Failed password for invalid user chuck from 106.75.93.253 port 36776 ssh2 ... |
2019-08-12 19:05:42 |
| attackbotsspam | 2019-08-01T15:46:05.052932abusebot-6.cloudsearch.cf sshd\[22417\]: Invalid user support from 106.75.93.253 port 42290 |
2019-08-02 07:25:41 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.93.253
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52652
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.93.253. IN A
;; AUTHORITY SECTION:
. 2754 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019080101 1800 900 604800 86400
;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 02 07:25:36 CST 2019
;; MSG SIZE rcvd: 117
Host 253.93.75.106.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 67.207.67.2
Address: 67.207.67.2#53
** server can't find 253.93.75.106.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 156.238.176.92 | attackspam | 8461/tcp 5941/tcp 28777/tcp... [2020-06-22/24]8pkt,3pt.(tcp) |
2020-06-25 06:06:47 |
| 118.40.248.20 | attackspam | Jun 25 00:07:55 ns381471 sshd[29943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.40.248.20 Jun 25 00:07:57 ns381471 sshd[29943]: Failed password for invalid user tibco from 118.40.248.20 port 34616 ssh2 |
2020-06-25 06:13:04 |
| 150.109.170.240 | attack | 5007/tcp 8649/tcp 8058/tcp... [2020-05-16/06-24]9pkt,9pt.(tcp) |
2020-06-25 06:04:53 |
| 81.68.91.73 | attack | Jun 24 21:37:54 jumpserver sshd[205059]: Invalid user vr from 81.68.91.73 port 54662 Jun 24 21:37:56 jumpserver sshd[205059]: Failed password for invalid user vr from 81.68.91.73 port 54662 ssh2 Jun 24 21:41:40 jumpserver sshd[205126]: Invalid user apagar from 81.68.91.73 port 54808 ... |
2020-06-25 05:52:25 |
| 45.5.117.114 | attack | 8443/tcp 8081/tcp 8080/tcp... [2020-04-25/06-24]8pkt,5pt.(tcp) |
2020-06-25 06:01:37 |
| 192.3.177.213 | attack | 861. On Jun 24 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 192.3.177.213. |
2020-06-25 06:04:22 |
| 61.177.172.41 | attackbotsspam | 2020-06-25T01:07:58.215346afi-git.jinr.ru sshd[13198]: Failed password for root from 61.177.172.41 port 25107 ssh2 2020-06-25T01:08:01.965414afi-git.jinr.ru sshd[13198]: Failed password for root from 61.177.172.41 port 25107 ssh2 2020-06-25T01:08:04.597073afi-git.jinr.ru sshd[13198]: Failed password for root from 61.177.172.41 port 25107 ssh2 2020-06-25T01:08:04.597250afi-git.jinr.ru sshd[13198]: error: maximum authentication attempts exceeded for root from 61.177.172.41 port 25107 ssh2 [preauth] 2020-06-25T01:08:04.597267afi-git.jinr.ru sshd[13198]: Disconnecting: Too many authentication failures [preauth] ... |
2020-06-25 06:19:13 |
| 143.137.220.98 | attackspam | 26470/tcp 6166/tcp... [2020-06-22/23]4pkt,2pt.(tcp) |
2020-06-25 06:15:08 |
| 114.47.96.154 | attackbotsspam | 2323/tcp 2323/tcp [2020-06-22/24]2pkt |
2020-06-25 06:07:56 |
| 114.34.94.6 | attackspam | 81/tcp 88/tcp [2020-06-15/24]2pkt |
2020-06-25 05:45:13 |
| 104.155.213.9 | attackbots | $f2bV_matches |
2020-06-25 06:13:24 |
| 60.216.86.242 | attackspambots | 9022/tcp 6002/tcp 13022/tcp... [2020-04-28/06-24]4pkt,4pt.(tcp) |
2020-06-25 05:58:37 |
| 81.68.90.230 | attackbots | Jun 24 23:20:28 electroncash sshd[4087]: Failed password for invalid user jj from 81.68.90.230 port 53590 ssh2 Jun 24 23:25:27 electroncash sshd[5413]: Invalid user raph from 81.68.90.230 port 52172 Jun 24 23:25:27 electroncash sshd[5413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.90.230 Jun 24 23:25:27 electroncash sshd[5413]: Invalid user raph from 81.68.90.230 port 52172 Jun 24 23:25:29 electroncash sshd[5413]: Failed password for invalid user raph from 81.68.90.230 port 52172 ssh2 ... |
2020-06-25 05:47:24 |
| 103.76.205.219 | attack | port scan and connect, tcp 23 (telnet) |
2020-06-25 05:55:07 |
| 39.101.207.41 | attackspam | 12407/tcp 3786/tcp 13411/tcp... [2020-05-18/06-24]6pkt,6pt.(tcp) |
2020-06-25 05:41:23 |