106.13.104.8 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	firewall-block, port(s): 24565/tcp	2020-10-06 02:37:22
attack	Found on CINS badguys / proto=6 . srcport=54148 . dstport=11451 . (3502)	2020-10-05 18:25:25
attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 93 - port: 5069 proto: tcp cat: Misc Attackbytes: 60	2020-08-27 02:04:47
attackspam	Jun 20 22:35:42 dignus sshd[31848]: Failed password for invalid user helong from 106.13.104.8 port 57672 ssh2 Jun 20 22:39:35 dignus sshd[32144]: Invalid user raimundo from 106.13.104.8 port 50040 Jun 20 22:39:35 dignus sshd[32144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.104.8 Jun 20 22:39:37 dignus sshd[32144]: Failed password for invalid user raimundo from 106.13.104.8 port 50040 ssh2 Jun 20 22:43:29 dignus sshd[32450]: Invalid user help from 106.13.104.8 port 42402 ...	2020-06-21 13:46:28
attackspam	May 13 12:13:04 itv-usvr-02 sshd[4982]: Invalid user readnews from 106.13.104.8 port 35802 May 13 12:13:04 itv-usvr-02 sshd[4982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.104.8 May 13 12:13:04 itv-usvr-02 sshd[4982]: Invalid user readnews from 106.13.104.8 port 35802 May 13 12:13:06 itv-usvr-02 sshd[4982]: Failed password for invalid user readnews from 106.13.104.8 port 35802 ssh2 May 13 12:15:23 itv-usvr-02 sshd[5060]: Invalid user debian from 106.13.104.8 port 60236	2020-05-13 14:53:24
attackbotsspam	Invalid user sebastian from 106.13.104.8 port 51016	2020-04-27 07:05:33
attackbots	Apr 20 16:01:37 server sshd[19518]: Failed password for root from 106.13.104.8 port 59874 ssh2 Apr 20 16:07:11 server sshd[23360]: Failed password for root from 106.13.104.8 port 33458 ssh2 Apr 20 16:12:34 server sshd[27270]: Failed password for invalid user admin from 106.13.104.8 port 59472 ssh2	2020-04-21 03:33:10

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.104.92	attackspam	Feb 27 05:49:11 server sshd[1957796]: Failed password for invalid user deploy from 106.13.104.92 port 39558 ssh2 Feb 27 05:53:57 server sshd[1958756]: Failed password for invalid user ashish from 106.13.104.92 port 36904 ssh2 Feb 27 05:58:40 server sshd[1959634]: Failed password for invalid user odoo from 106.13.104.92 port 34232 ssh2	2020-02-27 13:47:37
106.13.104.92	attackbotsspam	Feb 23 22:49:15 sshd[8426]: Failed password for invalid user debian-spamd from 106.13.104.92 port 54358 ssh2	2020-02-24 05:50:43
106.13.104.92	attackspambots	2020-01-17 05:24:19 server sshd[12758]: Failed password for invalid user jack from 106.13.104.92 port 47900 ssh2	2020-01-18 01:12:52
106.13.104.92	attackbotsspam	SSH/22 MH Probe, BF, Hack -	2020-01-16 04:52:24
106.13.104.92	attack	Jan 14 12:29:37 vzmaster sshd[27337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.104.92 user=r.r Jan 14 12:29:39 vzmaster sshd[27337]: Failed password for r.r from 106.13.104.92 port 43520 ssh2 Jan 14 12:46:09 vzmaster sshd[31085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.104.92 user=r.r Jan 14 12:46:11 vzmaster sshd[31085]: Failed password for r.r from 106.13.104.92 port 55852 ssh2 Jan 14 12:49:15 vzmaster sshd[4403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.104.92 user=r.r Jan 14 12:49:17 vzmaster sshd[4403]: Failed password for r.r from 106.13.104.92 port 51164 ssh2 Jan 14 12:53:04 vzmaster sshd[11160]: Invalid user ubuntu from 106.13.104.92 Jan 14 12:53:04 vzmaster sshd[11160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.104.92 Jan 14 12:53:06 vzmaster ss........ -------------------------------	2020-01-14 21:33:58
106.13.104.103	attackspambots	Nov 11 21:02:12 server sshd\[3170\]: Invalid user rolimnet from 106.13.104.103 Nov 11 21:02:12 server sshd\[3170\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.104.103 Nov 11 21:02:14 server sshd\[3170\]: Failed password for invalid user rolimnet from 106.13.104.103 port 17928 ssh2 Nov 12 09:25:19 server sshd\[8102\]: Invalid user rolimnet from 106.13.104.103 Nov 12 09:25:19 server sshd\[8102\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.104.103 ...	2019-11-12 19:18:11
106.13.104.94	attackbots	Sep 4 00:42:42 markkoudstaal sshd[18728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.104.94 Sep 4 00:42:44 markkoudstaal sshd[18728]: Failed password for invalid user vboxuser from 106.13.104.94 port 36128 ssh2 Sep 4 00:46:21 markkoudstaal sshd[19120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.104.94	2019-09-04 11:22:33
106.13.104.94	attackspam	Aug 28 20:14:34 [munged] sshd[17268]: Invalid user vishvjit from 106.13.104.94 port 38867 Aug 28 20:14:34 [munged] sshd[17268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.104.94	2019-08-29 07:19:33
106.13.104.94	attackspambots	Brute force attempt	2019-07-13 01:19:06
106.13.104.94	attackspambots	Jun 28 07:01:50 ns341937 sshd[14140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.104.94 Jun 28 07:01:52 ns341937 sshd[14140]: Failed password for invalid user css from 106.13.104.94 port 48983 ssh2 Jun 28 07:16:28 ns341937 sshd[16953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.104.94 ...	2019-06-28 14:47:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.104.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18517
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.104.8.			IN	A

;; AUTHORITY SECTION:
.			556	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042001 1800 900 604800 86400

;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 21 03:33:07 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 8.104.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 8.104.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
120.132.12.162	attackspam	May 16 14:30:19 ArkNodeAT sshd\[3163\]: Invalid user test from 120.132.12.162 May 16 14:30:19 ArkNodeAT sshd\[3163\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.12.162 May 16 14:30:20 ArkNodeAT sshd\[3163\]: Failed password for invalid user test from 120.132.12.162 port 57280 ssh2	2020-05-17 01:53:49
49.88.112.55	attack	May 16 19:53:50 server sshd[43870]: Failed none for root from 49.88.112.55 port 61695 ssh2 May 16 19:53:53 server sshd[43870]: Failed password for root from 49.88.112.55 port 61695 ssh2 May 16 19:53:56 server sshd[43870]: Failed password for root from 49.88.112.55 port 61695 ssh2	2020-05-17 02:09:21
106.13.81.181	attackbots	May 16 17:13:20 ns382633 sshd\[21163\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.181 user=root May 16 17:13:23 ns382633 sshd\[21163\]: Failed password for root from 106.13.81.181 port 47350 ssh2 May 16 17:22:04 ns382633 sshd\[22797\]: Invalid user csgo from 106.13.81.181 port 42044 May 16 17:22:04 ns382633 sshd\[22797\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.181 May 16 17:22:06 ns382633 sshd\[22797\]: Failed password for invalid user csgo from 106.13.81.181 port 42044 ssh2	2020-05-17 02:16:55
177.54.144.150	attack	RDP brute forcing (r)	2020-05-17 02:13:57
128.234.171.47	attack	Email rejected due to spam filtering	2020-05-17 01:47:59
103.121.153.44	attackbotsspam	Automatic report - Brute Force attack using this IP address	2020-05-17 01:54:42
205.206.160.158	attack	firewall-block, port(s): 22/tcp	2020-05-17 02:20:45
45.142.195.15	attackspambots	May 16 19:50:01 srv01 postfix/smtpd\[4230\]: warning: unknown\[45.142.195.15\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 16 19:50:12 srv01 postfix/smtpd\[4230\]: warning: unknown\[45.142.195.15\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 16 19:50:15 srv01 postfix/smtpd\[3945\]: warning: unknown\[45.142.195.15\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 16 19:50:15 srv01 postfix/smtpd\[1683\]: warning: unknown\[45.142.195.15\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 16 19:50:53 srv01 postfix/smtpd\[8415\]: warning: unknown\[45.142.195.15\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-17 02:01:07
222.186.175.215	attack	May 16 17:45:04 combo sshd[12078]: Failed password for root from 222.186.175.215 port 10278 ssh2 May 16 17:45:07 combo sshd[12078]: Failed password for root from 222.186.175.215 port 10278 ssh2 May 16 17:45:11 combo sshd[12078]: Failed password for root from 222.186.175.215 port 10278 ssh2 ...	2020-05-17 01:52:39
187.85.132.118	attackbots	May 16 14:58:31 firewall sshd[2907]: Invalid user bambo from 187.85.132.118 May 16 14:58:33 firewall sshd[2907]: Failed password for invalid user bambo from 187.85.132.118 port 43460 ssh2 May 16 15:05:00 firewall sshd[3053]: Invalid user baptista from 187.85.132.118 ...	2020-05-17 02:10:08
222.32.91.68	attackbots	Invalid user webserver from 222.32.91.68 port 17520	2020-05-17 02:12:21
78.190.205.191	attackspam	Email rejected due to spam filtering	2020-05-17 02:14:24
188.112.10.120	attackbots	May 16 19:15:50 * sshd[10842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.112.10.120 May 16 19:15:52 * sshd[10842]: Failed password for invalid user test from 188.112.10.120 port 49852 ssh2	2020-05-17 02:03:19
61.154.174.54	attackspambots	$f2bV_matches	2020-05-17 02:21:56
222.186.173.154	attackbotsspam	SSH Brute-Force attacks	2020-05-17 01:38:42

最近上报的IP列表

103.97.3.112	103.45.179.28	210.56.69.117	96.231.107.91
87.228.206.227	84.58.203.118	67.23.31.238	61.2.216.249
191.253.55.85	60.164.251.217	54.118.20.247	152.42.98.209
238.254.112.250	73.156.97.11	28.42.216.248	51.5.245.225
50.234.173.102	45.248.71.20	41.222.232.146	37.142.3.77