106.13.125.84 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Mar 25 10:29:09 server sshd\[8981\]: Invalid user yangjie from 106.13.125.84 Mar 25 10:29:09 server sshd\[8981\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 Mar 25 10:29:11 server sshd\[8981\]: Failed password for invalid user yangjie from 106.13.125.84 port 40336 ssh2 Mar 25 10:48:01 server sshd\[14266\]: Invalid user vg from 106.13.125.84 Mar 25 10:48:01 server sshd\[14266\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 ...	2020-03-25 15:56:05
attackspambots	$f2bV_matches	2020-03-19 07:30:22
attackspam	(sshd) Failed SSH login from 106.13.125.84 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 13 23:07:34 srv sshd[11082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 user=root Mar 13 23:07:37 srv sshd[11082]: Failed password for root from 106.13.125.84 port 56668 ssh2 Mar 13 23:12:09 srv sshd[11208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 user=root Mar 13 23:12:11 srv sshd[11208]: Failed password for root from 106.13.125.84 port 50064 ssh2 Mar 13 23:16:19 srv sshd[11262]: Invalid user account from 106.13.125.84 port 47842	2020-03-14 06:08:44
attackspambots	Mar 9 00:32:09 lukav-desktop sshd\[24421\]: Invalid user yang from 106.13.125.84 Mar 9 00:32:09 lukav-desktop sshd\[24421\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 Mar 9 00:32:11 lukav-desktop sshd\[24421\]: Failed password for invalid user yang from 106.13.125.84 port 40398 ssh2 Mar 9 00:34:19 lukav-desktop sshd\[24437\]: Invalid user ftpuser from 106.13.125.84 Mar 9 00:34:19 lukav-desktop sshd\[24437\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84	2020-03-09 07:18:24
attack	Mar 5 15:30:57 lukav-desktop sshd\[11350\]: Invalid user tss from 106.13.125.84 Mar 5 15:30:57 lukav-desktop sshd\[11350\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 Mar 5 15:30:59 lukav-desktop sshd\[11350\]: Failed password for invalid user tss from 106.13.125.84 port 55292 ssh2 Mar 5 15:34:50 lukav-desktop sshd\[11425\]: Invalid user deployer from 106.13.125.84 Mar 5 15:34:50 lukav-desktop sshd\[11425\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84	2020-03-05 23:15:05
attackbotsspam	Mar 2 22:50:10 Ubuntu-1404-trusty-64-minimal sshd\[29885\]: Invalid user market from 106.13.125.84 Mar 2 22:50:10 Ubuntu-1404-trusty-64-minimal sshd\[29885\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 Mar 2 22:50:12 Ubuntu-1404-trusty-64-minimal sshd\[29885\]: Failed password for invalid user market from 106.13.125.84 port 57362 ssh2 Mar 2 23:00:02 Ubuntu-1404-trusty-64-minimal sshd\[803\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 user=root Mar 2 23:00:04 Ubuntu-1404-trusty-64-minimal sshd\[803\]: Failed password for root from 106.13.125.84 port 49494 ssh2	2020-03-03 09:12:17
attack	Feb 18 06:39:35 plex sshd[29931]: Invalid user pokemon from 106.13.125.84 port 48462	2020-02-18 14:41:10
attackbotsspam	Unauthorized connection attempt detected from IP address 106.13.125.84 to port 2220 [J]	2020-01-31 05:35:52
attack	SSH login attempts brute force.	2020-01-12 04:27:34
attack	Dec 16 19:14:17 lnxweb62 sshd[3194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 Dec 16 19:14:17 lnxweb62 sshd[3194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84	2019-12-17 02:43:46
attack	Dec 16 10:59:24 ns381471 sshd[6974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 Dec 16 10:59:27 ns381471 sshd[6974]: Failed password for invalid user tsalikis from 106.13.125.84 port 35034 ssh2	2019-12-16 18:08:31
attackbots	Dec 15 19:03:43 Ubuntu-1404-trusty-64-minimal sshd\[21016\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 user=root Dec 15 19:03:45 Ubuntu-1404-trusty-64-minimal sshd\[21016\]: Failed password for root from 106.13.125.84 port 35410 ssh2 Dec 15 19:19:14 Ubuntu-1404-trusty-64-minimal sshd\[28212\]: Invalid user demo from 106.13.125.84 Dec 15 19:19:14 Ubuntu-1404-trusty-64-minimal sshd\[28212\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 Dec 15 19:19:17 Ubuntu-1404-trusty-64-minimal sshd\[28212\]: Failed password for invalid user demo from 106.13.125.84 port 34728 ssh2	2019-12-16 03:48:29
attackbots	Dec 9 20:25:24 sachi sshd\[15531\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 user=root Dec 9 20:25:26 sachi sshd\[15531\]: Failed password for root from 106.13.125.84 port 37652 ssh2 Dec 9 20:31:07 sachi sshd\[16075\]: Invalid user ccccccc from 106.13.125.84 Dec 9 20:31:07 sachi sshd\[16075\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 Dec 9 20:31:09 sachi sshd\[16075\]: Failed password for invalid user ccccccc from 106.13.125.84 port 59104 ssh2	2019-12-10 15:02:56
attack	2019-12-09T17:16:15.198289abusebot-3.cloudsearch.cf sshd\[30926\]: Invalid user drago from 106.13.125.84 port 41446	2019-12-10 06:17:55
attack	2019-12-07T23:53:45.842223abusebot-6.cloudsearch.cf sshd\[19691\]: Invalid user guest from 106.13.125.84 port 56744	2019-12-08 08:17:26
attackspam	Dec 4 11:05:27 OPSO sshd\[4098\]: Invalid user asterisk from 106.13.125.84 port 45428 Dec 4 11:05:27 OPSO sshd\[4098\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 Dec 4 11:05:29 OPSO sshd\[4098\]: Failed password for invalid user asterisk from 106.13.125.84 port 45428 ssh2 Dec 4 11:12:45 OPSO sshd\[5742\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 user=root Dec 4 11:12:47 OPSO sshd\[5742\]: Failed password for root from 106.13.125.84 port 46182 ssh2	2019-12-04 18:20:23
attack	Dec 1 13:13:28 server sshd\[14897\]: Invalid user guest from 106.13.125.84 Dec 1 13:13:28 server sshd\[14897\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 Dec 1 13:13:29 server sshd\[14897\]: Failed password for invalid user guest from 106.13.125.84 port 39998 ssh2 Dec 1 13:33:54 server sshd\[19746\]: Invalid user test from 106.13.125.84 Dec 1 13:33:54 server sshd\[19746\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 ...	2019-12-01 22:24:00
attackspambots	Nov 12 07:24:59 meumeu sshd[23199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 Nov 12 07:25:01 meumeu sshd[23199]: Failed password for invalid user mcdonalds from 106.13.125.84 port 54320 ssh2 Nov 12 07:31:09 meumeu sshd[23905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 ...	2019-11-12 15:35:07
attackbotsspam	2019-11-10 16:57:56,559 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 106.13.125.84 2019-11-10 17:31:18,105 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 106.13.125.84 2019-11-10 18:02:46,214 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 106.13.125.84 2019-11-10 18:33:13,678 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 106.13.125.84 2019-11-10 19:05:40,595 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 106.13.125.84 ...	2019-11-11 05:32:29
attackbotsspam	Invalid user oc from 106.13.125.84 port 51654	2019-10-20 01:39:59
attackspam	$f2bV_matches	2019-10-18 07:26:27
attack	Oct 6 08:29:47 SilenceServices sshd[30651]: Failed password for root from 106.13.125.84 port 47244 ssh2 Oct 6 08:34:26 SilenceServices sshd[31863]: Failed password for root from 106.13.125.84 port 52426 ssh2	2019-10-06 15:06:06
attackbots	Oct 5 00:45:54 v22019058497090703 sshd[13906]: Failed password for root from 106.13.125.84 port 43094 ssh2 Oct 5 00:49:34 v22019058497090703 sshd[14149]: Failed password for root from 106.13.125.84 port 48774 ssh2 ...	2019-10-05 07:18:35
attack	2019-10-03T10:20:03.506268lon01.zurich-datacenter.net sshd\[32097\]: Invalid user ssh from 106.13.125.84 port 49312 2019-10-03T10:20:03.513625lon01.zurich-datacenter.net sshd\[32097\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 2019-10-03T10:20:06.009682lon01.zurich-datacenter.net sshd\[32097\]: Failed password for invalid user ssh from 106.13.125.84 port 49312 ssh2 2019-10-03T10:24:55.586938lon01.zurich-datacenter.net sshd\[32192\]: Invalid user ubnt from 106.13.125.84 port 58242 2019-10-03T10:24:55.593429lon01.zurich-datacenter.net sshd\[32192\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 ...	2019-10-03 16:57:11
attack	2019-09-06T00:55:23.998138abusebot-3.cloudsearch.cf sshd\[22863\]: Invalid user admin from 106.13.125.84 port 51478	2019-09-06 09:11:06
attackspam	Aug 22 22:23:50 vps691689 sshd[32669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 Aug 22 22:23:52 vps691689 sshd[32669]: Failed password for invalid user test_user from 106.13.125.84 port 44060 ssh2 ...	2019-08-23 10:13:50
attackspam	Aug 14 00:43:09 areeb-Workstation sshd\[31925\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 user=root Aug 14 00:43:11 areeb-Workstation sshd\[31925\]: Failed password for root from 106.13.125.84 port 57544 ssh2 Aug 14 00:45:58 areeb-Workstation sshd\[32421\]: Invalid user raife from 106.13.125.84 Aug 14 00:45:58 areeb-Workstation sshd\[32421\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 ...	2019-08-14 03:37:27
attackbots	Aug 11 16:59:25 plusreed sshd[19558]: Invalid user 1234 from 106.13.125.84 ...	2019-08-12 05:09:16
attack	Aug 4 05:18:57 localhost sshd\[1574\]: Invalid user simran from 106.13.125.84 port 39716 Aug 4 05:18:57 localhost sshd\[1574\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 ...	2019-08-04 16:40:23
attackbots	Invalid user 1233 from 106.13.125.84 port 50842	2019-07-28 03:23:56

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.125.248	attack	(sshd) Failed SSH login from 106.13.125.248 (CN/China/-): 5 in the last 3600 secs	2020-09-25 10:21:01
106.13.125.159	attackbotsspam	Aug 28 07:50:53 ajax sshd[7922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.159 Aug 28 07:50:55 ajax sshd[7922]: Failed password for invalid user localhost from 106.13.125.159 port 55500 ssh2	2020-08-28 17:19:46
106.13.125.159	attackbotsspam	Automatic report - Banned IP Access	2020-08-27 23:26:13
106.13.125.159	attack	Aug 23 15:23:17 nextcloud sshd\[19344\]: Invalid user lh from 106.13.125.159 Aug 23 15:23:17 nextcloud sshd\[19344\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.159 Aug 23 15:23:19 nextcloud sshd\[19344\]: Failed password for invalid user lh from 106.13.125.159 port 50620 ssh2	2020-08-24 02:43:33
106.13.125.159	attackspam	Aug 14 19:43:12 xeon sshd[52456]: Failed password for root from 106.13.125.159 port 52310 ssh2	2020-08-15 02:50:00
106.13.125.159	attack	Jun 9 18:38:27 web9 sshd\[2344\]: Invalid user idempiere from 106.13.125.159 Jun 9 18:38:27 web9 sshd\[2344\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.159 Jun 9 18:38:29 web9 sshd\[2344\]: Failed password for invalid user idempiere from 106.13.125.159 port 52276 ssh2 Jun 9 18:41:39 web9 sshd\[2762\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.159 user=root Jun 9 18:41:42 web9 sshd\[2762\]: Failed password for root from 106.13.125.159 port 41158 ssh2	2020-06-10 12:44:58
106.13.125.159	attack	Apr 27 17:13:37 ns3164893 sshd[12153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.159 Apr 27 17:13:39 ns3164893 sshd[12153]: Failed password for invalid user ls from 106.13.125.159 port 60408 ssh2 ...	2020-04-28 04:07:44
106.13.125.159	attack	Apr 8 07:23:19 OPSO sshd\[13431\]: Invalid user ubuntu from 106.13.125.159 port 53504 Apr 8 07:23:19 OPSO sshd\[13431\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.159 Apr 8 07:23:21 OPSO sshd\[13431\]: Failed password for invalid user ubuntu from 106.13.125.159 port 53504 ssh2 Apr 8 07:28:16 OPSO sshd\[14845\]: Invalid user fiscal from 106.13.125.159 port 46406 Apr 8 07:28:16 OPSO sshd\[14845\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.159	2020-04-08 18:17:29
106.13.125.241	attackbotsspam	$f2bV_matches	2020-04-04 00:46:24
106.13.125.159	attackbotsspam	Invalid user sanjay from 106.13.125.159 port 54336	2020-03-21 16:47:27
106.13.125.241	attackbotsspam	$f2bV_matches	2020-03-21 13:47:03
106.13.125.241	attackspambots	Invalid user halt from 106.13.125.241 port 50382	2020-03-14 09:45:10
106.13.125.159	attackbots	Too many connections or unauthorized access detected from Arctic banned ip	2020-03-12 14:10:38
106.13.125.241	attackspambots	$f2bV_matches	2020-03-04 04:53:20
106.13.125.159	attackbots	Feb 25 08:01:07 vps46666688 sshd[31931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.159 Feb 25 08:01:09 vps46666688 sshd[31931]: Failed password for invalid user ts2 from 106.13.125.159 port 47100 ssh2 ...	2020-02-25 19:18:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.125.84
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20468
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.125.84.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072600 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 26 19:35:19 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 84.125.13.106.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 84.125.13.106.in-addr.arpa: SERVFAIL

IP	类型	评论内容	时间
129.28.68.103	attackbots	Automatic report - XMLRPC Attack	2019-11-19 00:38:53
51.68.70.6	attackbotsspam	web Attack on Website	2019-11-19 00:26:16
84.79.68.2	attackbotsspam	web Attack on Website	2019-11-19 00:35:44
191.243.143.170	attackbotsspam	Automatic report - Banned IP Access	2019-11-19 00:34:04
102.164.222.6	attackspam	web Attack on Website	2019-11-19 01:06:11
81.16.251.1	attack	web Attack on Website	2019-11-19 00:39:29
85.101.1.116	attackspam	Automatic report - Port Scan Attack	2019-11-19 00:46:14
35.186.145.141	attackspam	Nov 18 18:26:39 sauna sshd[76526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.186.145.141 Nov 18 18:26:40 sauna sshd[76526]: Failed password for invalid user guest1 from 35.186.145.141 port 48572 ssh2 ...	2019-11-19 00:29:17
179.145.44.1	attackbots	web Attack on Website	2019-11-19 01:02:25
1.245.61.144	attackspambots	Nov 18 18:15:16 server sshd\[12847\]: Invalid user tollevik from 1.245.61.144 Nov 18 18:15:16 server sshd\[12847\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.245.61.144 Nov 18 18:15:18 server sshd\[12847\]: Failed password for invalid user tollevik from 1.245.61.144 port 31095 ssh2 Nov 18 18:16:18 server sshd\[13031\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.245.61.144 user=dovecot Nov 18 18:16:20 server sshd\[13031\]: Failed password for dovecot from 1.245.61.144 port 47893 ssh2 ...	2019-11-19 00:19:53
173.212.204.1	attack	web Attack on Website	2019-11-19 01:00:11
168.197.152.5	attack	web Attack on Website	2019-11-19 00:50:16
143.255.242.1	attackbotsspam	web Attack on Website	2019-11-19 01:00:41
50.207.163.1	attack	web Attack on Website	2019-11-19 01:05:25
64.43.37.92	attackbotsspam	Nov 18 17:39:16 legacy sshd[17975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.43.37.92 Nov 18 17:39:18 legacy sshd[17975]: Failed password for invalid user beetle from 64.43.37.92 port 50010 ssh2 Nov 18 17:43:26 legacy sshd[18093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.43.37.92 ...	2019-11-19 00:44:10

最近上报的IP列表

7.213.141.15	143.208.138.156	238.220.42.133	129.163.217.83
110.115.114.172	36.200.193.5	117.11.82.68	217.15.118.38
171.229.240.60	125.26.97.249	112.250.185.99	77.42.124.15
17.241.250.186	220.173.32.93	125.160.113.27	36.238.42.160
190.62.47.183	185.223.31.72	178.62.78.95	117.211.160.74