106.13.123.134

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Dec 26 08:51:04 localhost sshd\[5702\]: Invalid user sangeet from 106.13.123.134 port 43640 Dec 26 08:51:04 localhost sshd\[5702\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 Dec 26 08:51:05 localhost sshd\[5702\]: Failed password for invalid user sangeet from 106.13.123.134 port 43640 ssh2	2019-12-26 17:41:04
attackbots	Dec 23 15:48:29 microserver sshd[17757]: Invalid user huq from 106.13.123.134 port 53662 Dec 23 15:48:29 microserver sshd[17757]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 Dec 23 15:48:31 microserver sshd[17757]: Failed password for invalid user huq from 106.13.123.134 port 53662 ssh2 Dec 23 15:54:08 microserver sshd[18485]: Invalid user prueba from 106.13.123.134 port 46198 Dec 23 15:54:08 microserver sshd[18485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 Dec 23 16:05:22 microserver sshd[20352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 user=root Dec 23 16:05:24 microserver sshd[20352]: Failed password for root from 106.13.123.134 port 59486 ssh2 Dec 23 16:11:46 microserver sshd[21144]: Invalid user web from 106.13.123.134 port 52028 Dec 23 16:11:46 microserver sshd[21144]: pam_unix(sshd:auth): authentication failure; logname=	2019-12-24 02:08:09
attackspambots	Dec 15 10:26:09 DAAP sshd[12994]: Invalid user guest from 106.13.123.134 port 46308 Dec 15 10:26:09 DAAP sshd[12994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 Dec 15 10:26:09 DAAP sshd[12994]: Invalid user guest from 106.13.123.134 port 46308 Dec 15 10:26:10 DAAP sshd[12994]: Failed password for invalid user guest from 106.13.123.134 port 46308 ssh2 ...	2019-12-15 21:27:09
attack	Dec 9 00:51:43 pi sshd\[15811\]: Failed password for invalid user blocher from 106.13.123.134 port 34906 ssh2 Dec 9 00:58:24 pi sshd\[16333\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 user=root Dec 9 00:58:26 pi sshd\[16333\]: Failed password for root from 106.13.123.134 port 35714 ssh2 Dec 9 01:05:10 pi sshd\[16661\]: Invalid user crista from 106.13.123.134 port 36554 Dec 9 01:05:10 pi sshd\[16661\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 ...	2019-12-09 09:25:06
attackspam	SSH-BruteForce	2019-12-08 08:24:21
attack	2019-12-04T12:59:44.300258hub.schaetter.us sshd\[29034\]: Invalid user vcsa from 106.13.123.134 port 52114 2019-12-04T12:59:44.317975hub.schaetter.us sshd\[29034\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 2019-12-04T12:59:46.230697hub.schaetter.us sshd\[29034\]: Failed password for invalid user vcsa from 106.13.123.134 port 52114 ssh2 2019-12-04T13:07:37.551854hub.schaetter.us sshd\[29140\]: Invalid user eric from 106.13.123.134 port 51472 2019-12-04T13:07:37.570103hub.schaetter.us sshd\[29140\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 ...	2019-12-04 21:08:25
attackbots	Nov 14 10:51:41 vps647732 sshd[23029]: Failed password for root from 106.13.123.134 port 42396 ssh2 Nov 14 10:56:11 vps647732 sshd[23066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 ...	2019-11-14 20:02:18
attackbotsspam	Nov 1 13:38:31 vps01 sshd[2463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 Nov 1 13:38:32 vps01 sshd[2463]: Failed password for invalid user oniyacya from 106.13.123.134 port 41920 ssh2	2019-11-01 20:48:26
attack	Oct 31 08:03:33 mail sshd[14104]: Invalid user florin from 106.13.123.134 Oct 31 08:03:33 mail sshd[14104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 Oct 31 08:03:33 mail sshd[14104]: Invalid user florin from 106.13.123.134 Oct 31 08:03:35 mail sshd[14104]: Failed password for invalid user florin from 106.13.123.134 port 46438 ssh2 Oct 31 08:28:12 mail sshd[19686]: Invalid user winrar from 106.13.123.134 ...	2019-10-31 15:35:05
attack	Oct 28 15:47:56 www sshd\[111984\]: Invalid user coronado from 106.13.123.134 Oct 28 15:47:56 www sshd\[111984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 Oct 28 15:47:58 www sshd\[111984\]: Failed password for invalid user coronado from 106.13.123.134 port 32892 ssh2 ...	2019-10-28 21:52:42
attackspam	Oct 27 07:14:22 lvps87-230-18-107 sshd[28060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 user=r.r Oct 27 07:14:24 lvps87-230-18-107 sshd[28060]: Failed password for r.r from 106.13.123.134 port 33888 ssh2 Oct 27 07:14:24 lvps87-230-18-107 sshd[28060]: Received disconnect from 106.13.123.134: 11: Bye Bye [preauth] Oct 27 07:38:39 lvps87-230-18-107 sshd[28399]: Invalid user from 106.13.123.134 Oct 27 07:38:39 lvps87-230-18-107 sshd[28399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 Oct 27 07:38:41 lvps87-230-18-107 sshd[28399]: Failed password for invalid user from 106.13.123.134 port 41114 ssh2 Oct 27 07:38:42 lvps87-230-18-107 sshd[28399]: Received disconnect from 106.13.123.134: 11: Bye Bye [preauth] Oct 27 07:43:48 lvps87-230-18-107 sshd[28545]: Invalid user wvhlyf from 106.13.123.134 Oct 27 07:43:48 lvps87-230-18-107 sshd[28545]: pam_unix(sshd:........ -------------------------------	2019-10-27 20:52:40

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.123.29	attackbots	20 attempts against mh-ssh on cloud	2020-09-19 20:50:10
106.13.123.29	attackspam	2020-09-18T19:26:49.793700abusebot.cloudsearch.cf sshd[9165]: Invalid user testor from 106.13.123.29 port 36914 2020-09-18T19:26:49.801581abusebot.cloudsearch.cf sshd[9165]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.29 2020-09-18T19:26:49.793700abusebot.cloudsearch.cf sshd[9165]: Invalid user testor from 106.13.123.29 port 36914 2020-09-18T19:26:51.962768abusebot.cloudsearch.cf sshd[9165]: Failed password for invalid user testor from 106.13.123.29 port 36914 ssh2 2020-09-18T19:31:31.070572abusebot.cloudsearch.cf sshd[9257]: Invalid user nagios from 106.13.123.29 port 42180 2020-09-18T19:31:31.075830abusebot.cloudsearch.cf sshd[9257]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.29 2020-09-18T19:31:31.070572abusebot.cloudsearch.cf sshd[9257]: Invalid user nagios from 106.13.123.29 port 42180 2020-09-18T19:31:33.282481abusebot.cloudsearch.cf sshd[9257]: Failed password for inval ...	2020-09-19 04:23:47
106.13.123.73	attackspam	Sep 5 15:17:40 vps647732 sshd[978]: Failed password for root from 106.13.123.73 port 48846 ssh2 ...	2020-09-05 21:49:52
106.13.123.73	attackbots	Sep 5 02:01:22 vps46666688 sshd[20289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.73 Sep 5 02:01:24 vps46666688 sshd[20289]: Failed password for invalid user zihang from 106.13.123.73 port 40396 ssh2 ...	2020-09-05 13:26:50
106.13.123.73	attack	SSH Invalid Login	2020-09-05 06:12:38
106.13.123.29	attack	SSH auth scanning - multiple failed logins	2020-08-29 05:46:40
106.13.123.29	attack	Aug 14 20:51:24 pixelmemory sshd[1543103]: Failed password for root from 106.13.123.29 port 36652 ssh2 Aug 14 20:52:34 pixelmemory sshd[1545591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.29 user=root Aug 14 20:52:37 pixelmemory sshd[1545591]: Failed password for root from 106.13.123.29 port 50332 ssh2 Aug 14 20:53:47 pixelmemory sshd[1547207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.29 user=root Aug 14 20:53:50 pixelmemory sshd[1547207]: Failed password for root from 106.13.123.29 port 35792 ssh2 ...	2020-08-15 15:41:19
106.13.123.29	attackspambots	Aug 13 01:06:01 cosmoit sshd[32324]: Failed password for root from 106.13.123.29 port 50090 ssh2	2020-08-13 07:25:17
106.13.123.29	attackbotsspam	leo_www	2020-08-12 03:29:09
106.13.123.29	attackspambots	2020-08-02T05:57:22.017626amanda2.illicoweb.com sshd\[5697\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.29 user=root 2020-08-02T05:57:24.222169amanda2.illicoweb.com sshd\[5697\]: Failed password for root from 106.13.123.29 port 44684 ssh2 2020-08-02T06:03:46.918614amanda2.illicoweb.com sshd\[5887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.29 user=root 2020-08-02T06:03:48.841955amanda2.illicoweb.com sshd\[5887\]: Failed password for root from 106.13.123.29 port 41292 ssh2 2020-08-02T06:06:58.596555amanda2.illicoweb.com sshd\[6308\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.29 user=root ...	2020-08-02 14:14:30
106.13.123.73	attackspam	SSH brute-force attempt	2020-07-31 01:52:59
106.13.123.29	attackbotsspam	Jul 26 11:01:24 Invalid user alex from 106.13.123.29 port 46988	2020-07-30 01:31:14
106.13.123.148	attackbots	Jul 28 14:01:14 host proftpd[19509]: 0.0.0.0 (106.13.123.148[106.13.123.148]) - USER anonymous: no such user found from 106.13.123.148 [106.13.123.148] to 163.172.107.87:21 ...	2020-07-29 04:17:03
106.13.123.29	attackbots	2020-07-28T04:38:22.867383shield sshd\[26969\]: Invalid user wangnanhui from 106.13.123.29 port 41916 2020-07-28T04:38:22.876515shield sshd\[26969\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.29 2020-07-28T04:38:24.389865shield sshd\[26969\]: Failed password for invalid user wangnanhui from 106.13.123.29 port 41916 ssh2 2020-07-28T04:41:47.987442shield sshd\[27906\]: Invalid user oradev from 106.13.123.29 port 56964 2020-07-28T04:41:47.995775shield sshd\[27906\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.29	2020-07-28 14:36:55
106.13.123.29	attackbotsspam	(sshd) Failed SSH login from 106.13.123.29 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 27 08:30:27 grace sshd[6555]: Invalid user csgoserver from 106.13.123.29 port 52470 Jul 27 08:30:29 grace sshd[6555]: Failed password for invalid user csgoserver from 106.13.123.29 port 52470 ssh2 Jul 27 08:35:08 grace sshd[7216]: Invalid user florian from 106.13.123.29 port 38486 Jul 27 08:35:11 grace sshd[7216]: Failed password for invalid user florian from 106.13.123.29 port 38486 ssh2 Jul 27 08:37:11 grace sshd[7545]: Invalid user hm from 106.13.123.29 port 60112	2020-07-27 17:53:57

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.123.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46815
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.123.134.			IN	A

;; AUTHORITY SECTION:
.			368	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102700 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 27 20:52:36 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 134.123.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 134.123.13.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
89.9.92.243	attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 81 - port: 708 proto: TCP cat: Misc Attack	2020-04-24 17:04:16
61.7.235.211	attack	Apr 24 10:34:16 nextcloud sshd\[19361\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.7.235.211 user=root Apr 24 10:34:18 nextcloud sshd\[19361\]: Failed password for root from 61.7.235.211 port 55230 ssh2 Apr 24 10:41:11 nextcloud sshd\[29069\]: Invalid user rc from 61.7.235.211	2020-04-24 17:12:34
24.20.244.45	attackspambots	Apr 23 20:07:35 wbs sshd\[3169\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-24-20-244-45.hsd1.or.comcast.net user=root Apr 23 20:07:36 wbs sshd\[3169\]: Failed password for root from 24.20.244.45 port 57926 ssh2 Apr 23 20:09:37 wbs sshd\[3324\]: Invalid user bot from 24.20.244.45 Apr 23 20:09:37 wbs sshd\[3324\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-24-20-244-45.hsd1.or.comcast.net Apr 23 20:09:39 wbs sshd\[3324\]: Failed password for invalid user bot from 24.20.244.45 port 34406 ssh2	2020-04-24 16:49:39
77.29.123.193	attackbotsspam	Automatic report - Port Scan Attack	2020-04-24 16:49:08
37.187.74.109	attackbotsspam	wp attack	2020-04-24 17:24:49
144.217.218.166	attackbots	[ 📨 ] From return-aluguel=marcoslimaimoveis.com.br@manutencaotec.we.bs Fri Apr 24 00:50:32 2020 Received: from man2785-mx-4.manutencaotec.we.bs ([144.217.218.166]:37540)	2020-04-24 17:07:19
221.225.117.154	attackbots	Apr 24 04:44:46 ws26vmsma01 sshd[76955]: Failed password for root from 221.225.117.154 port 38248 ssh2 Apr 24 05:03:16 ws26vmsma01 sshd[238137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.225.117.154 ...	2020-04-24 16:57:21
118.99.104.137	attack	IP blocked	2020-04-24 16:46:47
118.24.6.69	attackspam	Invalid user qw from 118.24.6.69 port 41720	2020-04-24 16:59:57
164.132.145.70	attack	04/24/2020-03:53:48.771059 164.132.145.70 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-04-24 17:17:45
211.35.76.241	attack	Invalid user bj from 211.35.76.241 port 52042	2020-04-24 17:02:08
213.150.206.88	attack	Apr 24 05:50:53 sxvn sshd[421974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.150.206.88	2020-04-24 16:58:47
171.231.244.86	normal	Attempt to hack my yahoo email Account on 4/24/20	2020-04-24 17:00:46
114.86.186.119	attackbots	Apr 24 09:13:44 roki-contabo sshd\[30756\]: Invalid user fs from 114.86.186.119 Apr 24 09:13:44 roki-contabo sshd\[30756\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.86.186.119 Apr 24 09:13:46 roki-contabo sshd\[30756\]: Failed password for invalid user fs from 114.86.186.119 port 57650 ssh2 Apr 24 09:31:22 roki-contabo sshd\[31133\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.86.186.119 user=root Apr 24 09:31:23 roki-contabo sshd\[31133\]: Failed password for root from 114.86.186.119 port 50986 ssh2 ...	2020-04-24 16:48:18
139.155.71.154	attack	Apr 24 09:16:15 odroid64 sshd\[21720\]: Invalid user ubuntu from 139.155.71.154 Apr 24 09:16:15 odroid64 sshd\[21720\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.71.154 ...	2020-04-24 16:55:06

最近上报的IP列表

132.232.7.197	158.69.160.65	94.158.213.231	12.228.207.72
117.1.203.48	10.240.182.118	46.165.11.5	111.248.84.19
197.245.75.117	106.13.183.19	61.182.230.41	170.199.145.130
246.255.68.37	221.127.54.239	190.136.101.138	145.239.83.88
41.37.131.242	106.104.234.14	179.83.177.46	85.105.201.59