106.13.101.21 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	'IP reached maximum auth failures for a one day block'	2019-12-13 13:00:05

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.101.232	attackbots	Invalid user stats from 106.13.101.232 port 59078	2020-10-01 07:38:38
106.13.101.232	attackbotsspam	Invalid user stats from 106.13.101.232 port 49424	2020-10-01 00:07:26
106.13.101.232	attackspambots	Sep 30 09:41:16 lnxweb62 sshd[24629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.101.232	2020-09-30 16:30:01
106.13.101.75	attack	Invalid user tdr from 106.13.101.75 port 54956	2020-07-19 01:40:05
106.13.101.75	attackspambots	ssh brute force	2020-06-11 14:49:32
106.13.101.175	attack	Jun 4 16:48:35 xeon sshd[53122]: Failed password for root from 106.13.101.175 port 43814 ssh2	2020-06-05 03:53:24
106.13.101.75	attackspam	Jun 4 09:08:55 vps687878 sshd\[25371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.101.75 user=root Jun 4 09:08:57 vps687878 sshd\[25371\]: Failed password for root from 106.13.101.75 port 45164 ssh2 Jun 4 09:10:45 vps687878 sshd\[25783\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.101.75 user=root Jun 4 09:10:46 vps687878 sshd\[25783\]: Failed password for root from 106.13.101.75 port 39588 ssh2 Jun 4 09:12:33 vps687878 sshd\[25918\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.101.75 user=root ...	2020-06-04 19:55:10
106.13.101.175	attackspambots	Jun 3 16:15:49 propaganda sshd[72850]: Connection from 106.13.101.175 port 37046 on 10.0.0.160 port 22 rdomain "" Jun 3 16:15:50 propaganda sshd[72850]: Connection closed by 106.13.101.175 port 37046 [preauth]	2020-06-04 07:28:34
106.13.101.75	attack	bruteforce detected	2020-06-03 22:51:39
106.13.101.175	attack	Jun 2 22:26:49 piServer sshd[16889]: Failed password for root from 106.13.101.175 port 42728 ssh2 Jun 2 22:30:29 piServer sshd[17285]: Failed password for root from 106.13.101.175 port 36200 ssh2 ...	2020-06-03 04:50:46
106.13.101.175	attackspambots	May 30 07:51:00 minden010 sshd[9572]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.101.175 May 30 07:51:01 minden010 sshd[9572]: Failed password for invalid user test from 106.13.101.175 port 38530 ssh2 May 30 07:54:25 minden010 sshd[11192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.101.175 ...	2020-05-30 18:17:30
106.13.101.220	attack	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-05-22 18:49:29
106.13.101.175	attack	May 7 16:11:40 ncomp sshd[4007]: Invalid user allen from 106.13.101.175 May 7 16:11:40 ncomp sshd[4007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.101.175 May 7 16:11:40 ncomp sshd[4007]: Invalid user allen from 106.13.101.175 May 7 16:11:42 ncomp sshd[4007]: Failed password for invalid user allen from 106.13.101.175 port 57936 ssh2	2020-05-07 22:37:40
106.13.101.129	attackbots	SSH Brute Force	2020-04-29 13:01:13
106.13.101.220	attackspam	Apr 20 20:16:21 cloud sshd[6253]: Failed password for root from 106.13.101.220 port 46880 ssh2 Apr 20 20:32:51 cloud sshd[6651]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.101.220	2020-04-21 03:33:40

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.101.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47122
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.101.21.			IN	A

;; AUTHORITY SECTION:
.			271	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121202 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 13 12:56:33 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 21.101.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 21.101.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
92.222.94.46	attack	B: Abusive ssh attack	2020-04-08 00:13:04
164.132.44.218	attack	2020-04-07T15:00:05.715804abusebot-3.cloudsearch.cf sshd[13835]: Invalid user vps from 164.132.44.218 port 53328 2020-04-07T15:00:05.721707abusebot-3.cloudsearch.cf sshd[13835]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.ip-164-132-44.eu 2020-04-07T15:00:05.715804abusebot-3.cloudsearch.cf sshd[13835]: Invalid user vps from 164.132.44.218 port 53328 2020-04-07T15:00:07.853674abusebot-3.cloudsearch.cf sshd[13835]: Failed password for invalid user vps from 164.132.44.218 port 53328 ssh2 2020-04-07T15:04:15.236905abusebot-3.cloudsearch.cf sshd[14052]: Invalid user deploy from 164.132.44.218 port 58173 2020-04-07T15:04:15.249262abusebot-3.cloudsearch.cf sshd[14052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.ip-164-132-44.eu 2020-04-07T15:04:15.236905abusebot-3.cloudsearch.cf sshd[14052]: Invalid user deploy from 164.132.44.218 port 58173 2020-04-07T15:04:17.372554abusebot-3.cloudsearch.cf sshd ...	2020-04-07 23:57:41
222.186.15.115	attackbotsspam	Unauthorized connection attempt detected from IP address 222.186.15.115 to port 22	2020-04-07 23:59:47
157.245.82.57	attack	C1,DEF GET /wp-login.php	2020-04-07 23:41:11
69.119.114.36	attackbotsspam	Apr 7 16:23:22 OPSO sshd\[25100\]: Invalid user ubuntu from 69.119.114.36 port 44508 Apr 7 16:23:22 OPSO sshd\[25100\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.119.114.36 Apr 7 16:23:24 OPSO sshd\[25100\]: Failed password for invalid user ubuntu from 69.119.114.36 port 44508 ssh2 Apr 7 16:29:58 OPSO sshd\[26106\]: Invalid user solaris from 69.119.114.36 port 50442 Apr 7 16:29:58 OPSO sshd\[26106\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.119.114.36	2020-04-07 23:53:04
118.89.153.96	attackspambots	Apr 7 19:43:54 itv-usvr-02 sshd[30197]: Invalid user xguest from 118.89.153.96 port 42292 Apr 7 19:43:54 itv-usvr-02 sshd[30197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.153.96 Apr 7 19:43:54 itv-usvr-02 sshd[30197]: Invalid user xguest from 118.89.153.96 port 42292 Apr 7 19:43:55 itv-usvr-02 sshd[30197]: Failed password for invalid user xguest from 118.89.153.96 port 42292 ssh2 Apr 7 19:49:19 itv-usvr-02 sshd[30399]: Invalid user data from 118.89.153.96 port 39054	2020-04-08 00:07:22
222.186.175.163	attackbots	Apr 7 18:27:52 ift sshd\[28894\]: Failed password for root from 222.186.175.163 port 29702 ssh2Apr 7 18:27:55 ift sshd\[28894\]: Failed password for root from 222.186.175.163 port 29702 ssh2Apr 7 18:27:59 ift sshd\[28894\]: Failed password for root from 222.186.175.163 port 29702 ssh2Apr 7 18:28:12 ift sshd\[28922\]: Failed password for root from 222.186.175.163 port 36354 ssh2Apr 7 18:28:15 ift sshd\[28922\]: Failed password for root from 222.186.175.163 port 36354 ssh2 ...	2020-04-07 23:29:15
163.172.230.4	attackspam	[2020-04-07 11:32:04] NOTICE[12114][C-00002857] chan_sip.c: Call from '' (163.172.230.4:63920) to extension '85011972592277524' rejected because extension not found in context 'public'. [2020-04-07 11:32:04] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-07T11:32:04.395-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="85011972592277524",SessionID="0x7f020c04b958",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.230.4/63920",ACLName="no_extension_match" [2020-04-07 11:36:56] NOTICE[12114][C-0000285d] chan_sip.c: Call from '' (163.172.230.4:54722) to extension '74011972592277524' rejected because extension not found in context 'public'. [2020-04-07 11:36:56] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-07T11:36:56.864-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="74011972592277524",SessionID="0x7f020c088288",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddres ...	2020-04-07 23:43:44
92.118.38.82	attackspambots	Apr 7 17:12:16 srv01 postfix/smtpd\[30849\]: warning: unknown\[92.118.38.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 7 17:12:18 srv01 postfix/smtpd\[24415\]: warning: unknown\[92.118.38.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 7 17:12:36 srv01 postfix/smtpd\[24415\]: warning: unknown\[92.118.38.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 7 17:12:46 srv01 postfix/smtpd\[5876\]: warning: unknown\[92.118.38.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 7 17:12:54 srv01 postfix/smtpd\[30849\]: warning: unknown\[92.118.38.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-04-07 23:20:02
222.186.52.139	attackbotsspam	Unauthorized connection attempt detected from IP address 222.186.52.139 to port 22	2020-04-08 00:11:51
209.222.101.29	attackspam	SIPVicious Scanner Detection	2020-04-08 00:09:47
89.82.248.54	attackspam	$f2bV_matches	2020-04-07 23:42:09
91.236.160.132	attackspambots	Apr 7 17:10:32 host sshd[46851]: Invalid user user from 91.236.160.132 port 34730 ...	2020-04-07 23:20:45
1.170.131.220	attackbots	Honeypot attack, port: 445, PTR: 1-170-131-220.dynamic-ip.hinet.net.	2020-04-08 00:14:12
180.76.148.87	attackspambots	SSH Bruteforce attack	2020-04-08 00:01:30

最近上报的IP列表

169.125.234.19	23.72.90.41	200.243.147.190	82.6.170.82
49.233.195.12	23.92.28.53	189.209.251.237	140.143.207.57
162.17.81.209	187.178.175.52	104.248.34.192	101.255.97.140
173.144.185.19	185.189.183.36	187.167.71.4	122.241.85.227
37.193.21.40	14.163.170.191	187.167.71.11	141.226.14.125