106.13.123.134

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Dec 26 08:51:04 localhost sshd\[5702\]: Invalid user sangeet from 106.13.123.134 port 43640 Dec 26 08:51:04 localhost sshd\[5702\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 Dec 26 08:51:05 localhost sshd\[5702\]: Failed password for invalid user sangeet from 106.13.123.134 port 43640 ssh2	2019-12-26 17:41:04
attackbots	Dec 23 15:48:29 microserver sshd[17757]: Invalid user huq from 106.13.123.134 port 53662 Dec 23 15:48:29 microserver sshd[17757]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 Dec 23 15:48:31 microserver sshd[17757]: Failed password for invalid user huq from 106.13.123.134 port 53662 ssh2 Dec 23 15:54:08 microserver sshd[18485]: Invalid user prueba from 106.13.123.134 port 46198 Dec 23 15:54:08 microserver sshd[18485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 Dec 23 16:05:22 microserver sshd[20352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 user=root Dec 23 16:05:24 microserver sshd[20352]: Failed password for root from 106.13.123.134 port 59486 ssh2 Dec 23 16:11:46 microserver sshd[21144]: Invalid user web from 106.13.123.134 port 52028 Dec 23 16:11:46 microserver sshd[21144]: pam_unix(sshd:auth): authentication failure; logname=	2019-12-24 02:08:09
attackspambots	Dec 15 10:26:09 DAAP sshd[12994]: Invalid user guest from 106.13.123.134 port 46308 Dec 15 10:26:09 DAAP sshd[12994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 Dec 15 10:26:09 DAAP sshd[12994]: Invalid user guest from 106.13.123.134 port 46308 Dec 15 10:26:10 DAAP sshd[12994]: Failed password for invalid user guest from 106.13.123.134 port 46308 ssh2 ...	2019-12-15 21:27:09
attack	Dec 9 00:51:43 pi sshd\[15811\]: Failed password for invalid user blocher from 106.13.123.134 port 34906 ssh2 Dec 9 00:58:24 pi sshd\[16333\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 user=root Dec 9 00:58:26 pi sshd\[16333\]: Failed password for root from 106.13.123.134 port 35714 ssh2 Dec 9 01:05:10 pi sshd\[16661\]: Invalid user crista from 106.13.123.134 port 36554 Dec 9 01:05:10 pi sshd\[16661\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 ...	2019-12-09 09:25:06
attackspam	SSH-BruteForce	2019-12-08 08:24:21
attack	2019-12-04T12:59:44.300258hub.schaetter.us sshd\[29034\]: Invalid user vcsa from 106.13.123.134 port 52114 2019-12-04T12:59:44.317975hub.schaetter.us sshd\[29034\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 2019-12-04T12:59:46.230697hub.schaetter.us sshd\[29034\]: Failed password for invalid user vcsa from 106.13.123.134 port 52114 ssh2 2019-12-04T13:07:37.551854hub.schaetter.us sshd\[29140\]: Invalid user eric from 106.13.123.134 port 51472 2019-12-04T13:07:37.570103hub.schaetter.us sshd\[29140\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 ...	2019-12-04 21:08:25
attackbots	Nov 14 10:51:41 vps647732 sshd[23029]: Failed password for root from 106.13.123.134 port 42396 ssh2 Nov 14 10:56:11 vps647732 sshd[23066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 ...	2019-11-14 20:02:18
attackbotsspam	Nov 1 13:38:31 vps01 sshd[2463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 Nov 1 13:38:32 vps01 sshd[2463]: Failed password for invalid user oniyacya from 106.13.123.134 port 41920 ssh2	2019-11-01 20:48:26
attack	Oct 31 08:03:33 mail sshd[14104]: Invalid user florin from 106.13.123.134 Oct 31 08:03:33 mail sshd[14104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 Oct 31 08:03:33 mail sshd[14104]: Invalid user florin from 106.13.123.134 Oct 31 08:03:35 mail sshd[14104]: Failed password for invalid user florin from 106.13.123.134 port 46438 ssh2 Oct 31 08:28:12 mail sshd[19686]: Invalid user winrar from 106.13.123.134 ...	2019-10-31 15:35:05
attack	Oct 28 15:47:56 www sshd\[111984\]: Invalid user coronado from 106.13.123.134 Oct 28 15:47:56 www sshd\[111984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 Oct 28 15:47:58 www sshd\[111984\]: Failed password for invalid user coronado from 106.13.123.134 port 32892 ssh2 ...	2019-10-28 21:52:42
attackspam	Oct 27 07:14:22 lvps87-230-18-107 sshd[28060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 user=r.r Oct 27 07:14:24 lvps87-230-18-107 sshd[28060]: Failed password for r.r from 106.13.123.134 port 33888 ssh2 Oct 27 07:14:24 lvps87-230-18-107 sshd[28060]: Received disconnect from 106.13.123.134: 11: Bye Bye [preauth] Oct 27 07:38:39 lvps87-230-18-107 sshd[28399]: Invalid user from 106.13.123.134 Oct 27 07:38:39 lvps87-230-18-107 sshd[28399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.134 Oct 27 07:38:41 lvps87-230-18-107 sshd[28399]: Failed password for invalid user from 106.13.123.134 port 41114 ssh2 Oct 27 07:38:42 lvps87-230-18-107 sshd[28399]: Received disconnect from 106.13.123.134: 11: Bye Bye [preauth] Oct 27 07:43:48 lvps87-230-18-107 sshd[28545]: Invalid user wvhlyf from 106.13.123.134 Oct 27 07:43:48 lvps87-230-18-107 sshd[28545]: pam_unix(sshd:........ -------------------------------	2019-10-27 20:52:40

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.123.29	attackbots	20 attempts against mh-ssh on cloud	2020-09-19 20:50:10
106.13.123.29	attackspam	2020-09-18T19:26:49.793700abusebot.cloudsearch.cf sshd[9165]: Invalid user testor from 106.13.123.29 port 36914 2020-09-18T19:26:49.801581abusebot.cloudsearch.cf sshd[9165]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.29 2020-09-18T19:26:49.793700abusebot.cloudsearch.cf sshd[9165]: Invalid user testor from 106.13.123.29 port 36914 2020-09-18T19:26:51.962768abusebot.cloudsearch.cf sshd[9165]: Failed password for invalid user testor from 106.13.123.29 port 36914 ssh2 2020-09-18T19:31:31.070572abusebot.cloudsearch.cf sshd[9257]: Invalid user nagios from 106.13.123.29 port 42180 2020-09-18T19:31:31.075830abusebot.cloudsearch.cf sshd[9257]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.29 2020-09-18T19:31:31.070572abusebot.cloudsearch.cf sshd[9257]: Invalid user nagios from 106.13.123.29 port 42180 2020-09-18T19:31:33.282481abusebot.cloudsearch.cf sshd[9257]: Failed password for inval ...	2020-09-19 04:23:47
106.13.123.73	attackspam	Sep 5 15:17:40 vps647732 sshd[978]: Failed password for root from 106.13.123.73 port 48846 ssh2 ...	2020-09-05 21:49:52
106.13.123.73	attackbots	Sep 5 02:01:22 vps46666688 sshd[20289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.73 Sep 5 02:01:24 vps46666688 sshd[20289]: Failed password for invalid user zihang from 106.13.123.73 port 40396 ssh2 ...	2020-09-05 13:26:50
106.13.123.73	attack	SSH Invalid Login	2020-09-05 06:12:38
106.13.123.29	attack	SSH auth scanning - multiple failed logins	2020-08-29 05:46:40
106.13.123.29	attack	Aug 14 20:51:24 pixelmemory sshd[1543103]: Failed password for root from 106.13.123.29 port 36652 ssh2 Aug 14 20:52:34 pixelmemory sshd[1545591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.29 user=root Aug 14 20:52:37 pixelmemory sshd[1545591]: Failed password for root from 106.13.123.29 port 50332 ssh2 Aug 14 20:53:47 pixelmemory sshd[1547207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.29 user=root Aug 14 20:53:50 pixelmemory sshd[1547207]: Failed password for root from 106.13.123.29 port 35792 ssh2 ...	2020-08-15 15:41:19
106.13.123.29	attackspambots	Aug 13 01:06:01 cosmoit sshd[32324]: Failed password for root from 106.13.123.29 port 50090 ssh2	2020-08-13 07:25:17
106.13.123.29	attackbotsspam	leo_www	2020-08-12 03:29:09
106.13.123.29	attackspambots	2020-08-02T05:57:22.017626amanda2.illicoweb.com sshd\[5697\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.29 user=root 2020-08-02T05:57:24.222169amanda2.illicoweb.com sshd\[5697\]: Failed password for root from 106.13.123.29 port 44684 ssh2 2020-08-02T06:03:46.918614amanda2.illicoweb.com sshd\[5887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.29 user=root 2020-08-02T06:03:48.841955amanda2.illicoweb.com sshd\[5887\]: Failed password for root from 106.13.123.29 port 41292 ssh2 2020-08-02T06:06:58.596555amanda2.illicoweb.com sshd\[6308\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.29 user=root ...	2020-08-02 14:14:30
106.13.123.73	attackspam	SSH brute-force attempt	2020-07-31 01:52:59
106.13.123.29	attackbotsspam	Jul 26 11:01:24 Invalid user alex from 106.13.123.29 port 46988	2020-07-30 01:31:14
106.13.123.148	attackbots	Jul 28 14:01:14 host proftpd[19509]: 0.0.0.0 (106.13.123.148[106.13.123.148]) - USER anonymous: no such user found from 106.13.123.148 [106.13.123.148] to 163.172.107.87:21 ...	2020-07-29 04:17:03
106.13.123.29	attackbots	2020-07-28T04:38:22.867383shield sshd\[26969\]: Invalid user wangnanhui from 106.13.123.29 port 41916 2020-07-28T04:38:22.876515shield sshd\[26969\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.29 2020-07-28T04:38:24.389865shield sshd\[26969\]: Failed password for invalid user wangnanhui from 106.13.123.29 port 41916 ssh2 2020-07-28T04:41:47.987442shield sshd\[27906\]: Invalid user oradev from 106.13.123.29 port 56964 2020-07-28T04:41:47.995775shield sshd\[27906\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.29	2020-07-28 14:36:55
106.13.123.29	attackbotsspam	(sshd) Failed SSH login from 106.13.123.29 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 27 08:30:27 grace sshd[6555]: Invalid user csgoserver from 106.13.123.29 port 52470 Jul 27 08:30:29 grace sshd[6555]: Failed password for invalid user csgoserver from 106.13.123.29 port 52470 ssh2 Jul 27 08:35:08 grace sshd[7216]: Invalid user florian from 106.13.123.29 port 38486 Jul 27 08:35:11 grace sshd[7216]: Failed password for invalid user florian from 106.13.123.29 port 38486 ssh2 Jul 27 08:37:11 grace sshd[7545]: Invalid user hm from 106.13.123.29 port 60112	2020-07-27 17:53:57

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.123.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46815
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.123.134.			IN	A

;; AUTHORITY SECTION:
.			368	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102700 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 27 20:52:36 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 134.123.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 134.123.13.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
187.190.157.55	attackspambots	445/tcp [2019-11-13]1pkt	2019-11-14 08:42:30
118.172.227.37	attack	Automatic report - Port Scan	2019-11-14 08:15:07
139.211.195.136	attackspam	8080/tcp [2019-11-13]1pkt	2019-11-14 08:19:53
209.17.96.186	attackbotsspam	209.17.96.186 was recorded 5 times by 4 hosts attempting to connect to the following ports: 6001,401,8082,5905. Incident counter (4h, 24h, all-time): 5, 30, 327	2019-11-14 08:35:43
118.125.220.118	attackbots	9000/tcp [2019-11-13]1pkt	2019-11-14 08:38:07
156.212.221.255	attack	5555/tcp [2019-11-13]1pkt	2019-11-14 08:38:58
36.89.247.26	attackbots	Nov 13 14:16:18 wbs sshd\[29156\]: Invalid user sjefen from 36.89.247.26 Nov 13 14:16:18 wbs sshd\[29156\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.247.26 Nov 13 14:16:20 wbs sshd\[29156\]: Failed password for invalid user sjefen from 36.89.247.26 port 41837 ssh2 Nov 13 14:21:47 wbs sshd\[29618\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.247.26 user=root Nov 13 14:21:49 wbs sshd\[29618\]: Failed password for root from 36.89.247.26 port 60302 ssh2	2019-11-14 08:33:49
159.192.96.253	attackspam	Nov 13 23:53:10 meumeu sshd[32270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.96.253 Nov 13 23:53:11 meumeu sshd[32270]: Failed password for invalid user talmy from 159.192.96.253 port 56560 ssh2 Nov 13 23:57:35 meumeu sshd[357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.96.253 ...	2019-11-14 08:27:13
61.133.232.252	attackbots	Nov 13 23:35:24 ns382633 sshd\[6810\]: Invalid user admin from 61.133.232.252 port 57694 Nov 13 23:35:24 ns382633 sshd\[6810\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.133.232.252 Nov 13 23:35:26 ns382633 sshd\[6810\]: Failed password for invalid user admin from 61.133.232.252 port 57694 ssh2 Nov 13 23:57:09 ns382633 sshd\[10615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.133.232.252 user=root Nov 13 23:57:11 ns382633 sshd\[10615\]: Failed password for root from 61.133.232.252 port 43820 ssh2	2019-11-14 08:42:46
14.237.10.148	attack	26/tcp [2019-11-13]1pkt	2019-11-14 08:10:31
200.39.241.7	attackspam	19/11/13@17:57:08: FAIL: IoT-Telnet address from=200.39.241.7 ...	2019-11-14 08:47:42
121.184.64.15	attack	SSH Brute Force, server-1 sshd[4817]: Failed password for invalid user changeme from 121.184.64.15 port 8533 ssh2	2019-11-14 08:40:46
185.176.27.46	attack	185.176.27.46 was recorded 18 times by 10 hosts attempting to connect to the following ports: 25777,25666,25678. Incident counter (4h, 24h, all-time): 18, 83, 715	2019-11-14 08:24:02
104.236.226.93	attackspambots	Nov 14 01:24:24 vps01 sshd[29929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.226.93 Nov 14 01:24:27 vps01 sshd[29929]: Failed password for invalid user admin from 104.236.226.93 port 38112 ssh2	2019-11-14 08:24:35
46.38.144.17	attack	2019-11-14T01:17:58.012218mail01 postfix/smtpd[23266]: warning: unknown[46.38.144.17]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-14T01:18:00.013100mail01 postfix/smtpd[21885]: warning: unknown[46.38.144.17]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-14T01:18:09.152201mail01 postfix/smtpd[27372]: warning: unknown[46.38.144.17]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-14 08:33:30

最近上报的IP列表

132.232.7.197	158.69.160.65	94.158.213.231	12.228.207.72
117.1.203.48	10.240.182.118	46.165.11.5	111.248.84.19
197.245.75.117	106.13.183.19	61.182.230.41	170.199.145.130
246.255.68.37	221.127.54.239	190.136.101.138	145.239.83.88
41.37.131.242	106.104.234.14	179.83.177.46	85.105.201.59