106.1.22.13 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, Province of China

运营商(isp): Kbro Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	" "	2019-11-03 16:37:48

相同子网IP讨论:

IP	类型	评论内容	时间
106.1.229.111	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 07-02-2020 04:55:09.	2020-02-07 18:01:51
106.1.228.32	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-09 12:52:17,649 INFO [amun_request_handler] PortScan Detected on Port: 445 (106.1.228.32)	2019-07-10 07:37:10

类型

评论内容

时间

106.1.229.111

attack

Attempt to attack host OS, exploiting network vulnerabilities, on 07-02-2020 04:55:09.

2020-02-07 18:01:51

106.1.228.32

attack

@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-09 12:52:17,649 INFO [amun_request_handler] PortScan Detected on Port: 445 (106.1.228.32)

2019-07-10 07:37:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.1.22.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53063
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.1.22.13.			IN	A

;; AUTHORITY SECTION:
.			545	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110300 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 03 16:37:46 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 13.22.1.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 13.22.1.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
141.98.81.38	attackspambots	08/10/2019-20:44:38.430536 141.98.81.38 Protocol: 6 ET COMPROMISED Known Compromised or Hostile Host Traffic group 5	2019-08-11 13:28:08
154.8.232.149	attackspam	2019-08-11T00:23:30.412571abusebot-7.cloudsearch.cf sshd\[21422\]: Invalid user cvsuser from 154.8.232.149 port 37242	2019-08-11 13:38:36
159.89.29.189	attackspambots	Aug 11 06:59:58 srv-4 sshd\[12329\]: Invalid user sshuser from 159.89.29.189 Aug 11 06:59:58 srv-4 sshd\[12329\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.29.189 Aug 11 07:00:00 srv-4 sshd\[12329\]: Failed password for invalid user sshuser from 159.89.29.189 port 45166 ssh2 ...	2019-08-11 13:04:17
41.236.175.64	attack	port scan and connect, tcp 23 (telnet)	2019-08-11 12:46:54
220.118.32.54	attack	Mar 7 19:34:29 motanud sshd\[29526\]: Invalid user xf from 220.118.32.54 port 57678 Mar 7 19:34:29 motanud sshd\[29526\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.118.32.54 Mar 7 19:34:31 motanud sshd\[29526\]: Failed password for invalid user xf from 220.118.32.54 port 57678 ssh2	2019-08-11 13:25:24
106.13.120.46	attack	Aug 11 02:24:49 [munged] sshd[24999]: Invalid user id from 106.13.120.46 port 36052 Aug 11 02:24:49 [munged] sshd[24999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.120.46	2019-08-11 12:54:57
14.146.92.254	attackbots	Aug 11 00:23:29 MainVPS sshd[19364]: Invalid user nexthink from 14.146.92.254 port 54294 Aug 11 00:23:34 MainVPS sshd[19364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.146.92.254 Aug 11 00:23:29 MainVPS sshd[19364]: Invalid user nexthink from 14.146.92.254 port 54294 Aug 11 00:23:36 MainVPS sshd[19364]: Failed password for invalid user nexthink from 14.146.92.254 port 54294 ssh2 Aug 11 00:23:53 MainVPS sshd[19395]: Invalid user plexuser from 14.146.92.254 port 54825 ...	2019-08-11 13:00:27
46.172.223.250	attackspambots	2019-08-10 17:22:15 H=(pool.sevtele.com) [46.172.223.250]:48136 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4, 127.0.0.11) (https://www.spamhaus.org/query/ip/46.172.223.250) 2019-08-10 17:22:15 H=(pool.sevtele.com) [46.172.223.250]:48136 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4, 127.0.0.11) (https://www.spamhaus.org/query/ip/46.172.223.250) 2019-08-10 17:22:16 H=(pool.sevtele.com) [46.172.223.250]:48136 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11, 127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/46.172.223.250) ...	2019-08-11 13:40:02
148.70.103.187	attackbotsspam	Automatic report	2019-08-11 13:08:25
107.170.48.143	attackspam	C2,WP GET /wp-login.php	2019-08-11 13:11:10
198.108.67.78	attackbots	Portscan or hack attempt detected by psad/fwsnort	2019-08-11 12:43:22
220.132.94.233	attack	Feb 24 07:28:46 motanud sshd\[30311\]: Invalid user centos from 220.132.94.233 port 48174 Feb 24 07:28:46 motanud sshd\[30311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.132.94.233 Feb 24 07:28:48 motanud sshd\[30311\]: Failed password for invalid user centos from 220.132.94.233 port 48174 ssh2	2019-08-11 13:14:12
210.182.83.172	attack	Automated report - ssh fail2ban: Aug 11 05:39:45 wrong password, user=test1, port=41992, ssh2 Aug 11 06:14:53 authentication failure Aug 11 06:14:55 wrong password, user=brian, port=44268, ssh2	2019-08-11 12:54:20
124.225.15.15	attack	Automatic report - Port Scan Attack	2019-08-11 12:40:57
220.128.133.15	attackbotsspam	Feb 27 09:30:33 motanud sshd\[1860\]: Invalid user jm from 220.128.133.15 port 57298 Feb 27 09:30:33 motanud sshd\[1860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.128.133.15 Feb 27 09:30:35 motanud sshd\[1860\]: Failed password for invalid user jm from 220.128.133.15 port 57298 ssh2	2019-08-11 13:19:49

最近上报的IP列表

172.172.18.197	159.203.26.191	89.208.222.250	185.194.140.31
190.109.169.41	104.198.131.248	61.6.21.148	111.230.196.53
180.111.133.154	122.114.206.25	237.159.102.250	60.191.200.254
171.235.119.0	36.73.109.46	150.56.29.201	171.247.190.28
124.107.103.160	92.253.12.46	157.190.12.202	173.179.110.116