106.13.128.64 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Apr 6 05:45:43 prox sshd[16608]: Failed password for root from 106.13.128.64 port 45722 ssh2	2020-04-06 14:10:00
attack	5x Failed Password	2020-04-04 04:55:38
attackbots	Mar 22 00:37:08 DAAP sshd[30217]: Invalid user sunqiu from 106.13.128.64 port 37014 Mar 22 00:37:08 DAAP sshd[30217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.64 Mar 22 00:37:08 DAAP sshd[30217]: Invalid user sunqiu from 106.13.128.64 port 37014 Mar 22 00:37:09 DAAP sshd[30217]: Failed password for invalid user sunqiu from 106.13.128.64 port 37014 ssh2 Mar 22 00:40:52 DAAP sshd[30358]: Invalid user ts3user from 106.13.128.64 port 56836 ...	2020-03-22 09:07:01
attack	Mar 12 09:05:12 hosting sshd[8140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.64 user=root Mar 12 09:05:14 hosting sshd[8140]: Failed password for root from 106.13.128.64 port 53614 ssh2 ...	2020-03-12 14:36:58
attackbots	Feb 18 03:04:20 firewall sshd[8711]: Invalid user alex from 106.13.128.64 Feb 18 03:04:23 firewall sshd[8711]: Failed password for invalid user alex from 106.13.128.64 port 50622 ssh2 Feb 18 03:08:32 firewall sshd[8895]: Invalid user jboss from 106.13.128.64 ...	2020-02-18 14:13:14
attackspam	Unauthorized connection attempt detected from IP address 106.13.128.64 to port 2220 [J]	2020-01-06 15:17:39
attackspam	Unauthorized connection attempt detected from IP address 106.13.128.64 to port 2220 [J]	2020-01-06 07:15:29
attackbotsspam	Jan 2 07:27:31 mail sshd\[20806\]: Invalid user hung from 106.13.128.64 Jan 2 07:27:31 mail sshd\[20806\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.64 Jan 2 07:27:32 mail sshd\[20806\]: Failed password for invalid user hung from 106.13.128.64 port 33712 ssh2 ...	2020-01-02 17:11:55
attackspambots	Dec 28 07:29:01 ArkNodeAT sshd\[25481\]: Invalid user technicom from 106.13.128.64 Dec 28 07:29:01 ArkNodeAT sshd\[25481\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.64 Dec 28 07:29:03 ArkNodeAT sshd\[25481\]: Failed password for invalid user technicom from 106.13.128.64 port 38824 ssh2	2019-12-28 15:35:31
attackbots	Dec 23 15:48:35 localhost sshd\[72994\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.64 user=root Dec 23 15:48:37 localhost sshd\[72994\]: Failed password for root from 106.13.128.64 port 47794 ssh2 Dec 23 15:56:37 localhost sshd\[73187\]: Invalid user osamura from 106.13.128.64 port 44040 Dec 23 15:56:37 localhost sshd\[73187\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.64 Dec 23 15:56:39 localhost sshd\[73187\]: Failed password for invalid user osamura from 106.13.128.64 port 44040 ssh2 ...	2019-12-24 01:42:53
attackspambots	Dec 6 03:30:12 heissa sshd\[12521\]: Invalid user blaze from 106.13.128.64 port 54584 Dec 6 03:30:12 heissa sshd\[12521\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.64 Dec 6 03:30:13 heissa sshd\[12521\]: Failed password for invalid user blaze from 106.13.128.64 port 54584 ssh2 Dec 6 03:36:51 heissa sshd\[13578\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.64 user=mail Dec 6 03:36:53 heissa sshd\[13578\]: Failed password for mail from 106.13.128.64 port 57972 ssh2	2019-12-11 22:28:39
attackspam	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.64 user=root Failed password for root from 106.13.128.64 port 34830 ssh2 Invalid user reidy from 106.13.128.64 port 37258 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.64 Failed password for invalid user reidy from 106.13.128.64 port 37258 ssh2	2019-12-09 20:12:41
attackspam	2019-12-06T22:34:56.028366 sshd[30501]: Invalid user debian from 106.13.128.64 port 47196 2019-12-06T22:34:56.042558 sshd[30501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.64 2019-12-06T22:34:56.028366 sshd[30501]: Invalid user debian from 106.13.128.64 port 47196 2019-12-06T22:34:57.398406 sshd[30501]: Failed password for invalid user debian from 106.13.128.64 port 47196 ssh2 2019-12-06T22:40:29.686731 sshd[30601]: Invalid user fadeh from 106.13.128.64 port 50562 ...	2019-12-07 05:50:13

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.128.71	attack	" "	2020-09-02 04:59:04
106.13.128.71	attackspambots	Aug 8 12:03:25 localhost sshd\[5940\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.71 user=root Aug 8 12:03:27 localhost sshd\[5940\]: Failed password for root from 106.13.128.71 port 59472 ssh2 Aug 8 12:14:34 localhost sshd\[6085\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.71 user=root ...	2020-08-08 23:46:26
106.13.128.71	attackspam	Aug 3 12:36:38 plex-server sshd[1200929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.71 Aug 3 12:36:38 plex-server sshd[1200929]: Invalid user @ from 106.13.128.71 port 54346 Aug 3 12:36:41 plex-server sshd[1200929]: Failed password for invalid user @ from 106.13.128.71 port 54346 ssh2 Aug 3 12:39:38 plex-server sshd[1202881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.71 user=root Aug 3 12:39:39 plex-server sshd[1202881]: Failed password for root from 106.13.128.71 port 47514 ssh2 ...	2020-08-04 01:39:14
106.13.128.71	attackspambots	Jul 29 14:35:15 abendstille sshd\[14194\]: Invalid user user05 from 106.13.128.71 Jul 29 14:35:15 abendstille sshd\[14194\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.71 Jul 29 14:35:17 abendstille sshd\[14194\]: Failed password for invalid user user05 from 106.13.128.71 port 51012 ssh2 Jul 29 14:37:29 abendstille sshd\[16321\]: Invalid user xyp from 106.13.128.71 Jul 29 14:37:29 abendstille sshd\[16321\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.71 ...	2020-07-29 23:03:13
106.13.128.71	attackspam	SSH brute force attempt	2020-07-18 07:13:18
106.13.128.71	attackspambots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-27 23:20:34
106.13.128.71	attackbots	Jun 23 04:58:29 onepixel sshd[1167696]: Failed password for invalid user tester from 106.13.128.71 port 51586 ssh2 Jun 23 05:02:43 onepixel sshd[1169686]: Invalid user cameras from 106.13.128.71 port 55330 Jun 23 05:02:43 onepixel sshd[1169686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.71 Jun 23 05:02:43 onepixel sshd[1169686]: Invalid user cameras from 106.13.128.71 port 55330 Jun 23 05:02:46 onepixel sshd[1169686]: Failed password for invalid user cameras from 106.13.128.71 port 55330 ssh2	2020-06-23 13:19:05
106.13.128.71	attack	Failed password for invalid user jody from 106.13.128.71 port 34346 ssh2	2020-06-13 03:54:51
106.13.128.71	attackspambots	Jun 6 00:11:25 vps sshd[76285]: Failed password for invalid user super@visor123\r from 106.13.128.71 port 59716 ssh2 Jun 6 00:14:31 vps sshd[88415]: Invalid user Gg123456\r from 106.13.128.71 port 36066 Jun 6 00:14:31 vps sshd[88415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.71 Jun 6 00:14:33 vps sshd[88415]: Failed password for invalid user Gg123456\r from 106.13.128.71 port 36066 ssh2 Jun 6 00:17:39 vps sshd[104170]: Invalid user china\r from 106.13.128.71 port 40610 ...	2020-06-06 06:20:56
106.13.128.71	attack	May 31 05:59:15 sip sshd[474613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.71 May 31 05:59:15 sip sshd[474613]: Invalid user weihu from 106.13.128.71 port 33612 May 31 05:59:17 sip sshd[474613]: Failed password for invalid user weihu from 106.13.128.71 port 33612 ssh2 ...	2020-05-31 12:02:52
106.13.128.71	attackbots	May 9 04:52:28 home sshd[31310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.71 May 9 04:52:30 home sshd[31310]: Failed password for invalid user tig from 106.13.128.71 port 53342 ssh2 May 9 04:54:27 home sshd[31582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.71 ...	2020-05-09 18:19:12
106.13.128.71	attack	May 8 18:02:24 PorscheCustomer sshd[28971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.71 May 8 18:02:26 PorscheCustomer sshd[28971]: Failed password for invalid user abc1234@ from 106.13.128.71 port 56638 ssh2 May 8 18:07:48 PorscheCustomer sshd[29123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.71 ...	2020-05-09 00:20:16
106.13.128.234	attack	2020-04-04T00:45:20.378674vps773228.ovh.net sshd[2519]: Failed password for root from 106.13.128.234 port 44830 ssh2 2020-04-04T00:48:42.765360vps773228.ovh.net sshd[3759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.234 user=root 2020-04-04T00:48:44.341142vps773228.ovh.net sshd[3759]: Failed password for root from 106.13.128.234 port 36626 ssh2 2020-04-04T00:52:05.013752vps773228.ovh.net sshd[5008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.234 user=root 2020-04-04T00:52:07.457885vps773228.ovh.net sshd[5008]: Failed password for root from 106.13.128.234 port 56656 ssh2 ...	2020-04-04 07:47:09
106.13.128.234	attackspam	Invalid user tsa from 106.13.128.234 port 45582	2020-03-30 15:55:43
106.13.128.234	attack	Mar 25 01:06:09 pornomens sshd\[28874\]: Invalid user brette from 106.13.128.234 port 39924 Mar 25 01:06:09 pornomens sshd\[28874\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.234 Mar 25 01:06:11 pornomens sshd\[28874\]: Failed password for invalid user brette from 106.13.128.234 port 39924 ssh2 ...	2020-03-25 08:06:38

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.128.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22318
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.128.64.			IN	A

;; AUTHORITY SECTION:
.			310	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019113001 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 01 01:56:40 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 64.128.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 64.128.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
49.88.112.55	attack	Jun 1 05:25:47 combo sshd[3743]: Failed password for root from 49.88.112.55 port 38850 ssh2 Jun 1 05:25:52 combo sshd[3743]: Failed password for root from 49.88.112.55 port 38850 ssh2 Jun 1 05:25:55 combo sshd[3743]: Failed password for root from 49.88.112.55 port 38850 ssh2 ...	2020-06-01 12:27:59
209.216.90.210	attackbots	Port Scan detected from 209.216.90.210 (US/United States/Florida/Tampa/209-216-90-210.static.tampabayfiber.com). 4 hits in the last 100 seconds	2020-06-01 12:16:33
113.94.63.182	attackbots	(ftpd) Failed FTP login from 113.94.63.182 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jun 1 08:24:43 ir1 pure-ftpd: (?@113.94.63.182) [WARNING] Authentication failed for user [anonymous]	2020-06-01 12:27:10
178.128.56.89	attack	Jun 1 05:52:42 vps647732 sshd[8729]: Failed password for root from 178.128.56.89 port 38980 ssh2 ...	2020-06-01 12:02:05
218.92.0.172	attack	Scanned 57 times in the last 24 hours on port 22	2020-06-01 08:17:25
50.109.65.150	attack	Brute forcing RDP port 3389	2020-06-01 12:21:35
178.33.12.237	attack	(sshd) Failed SSH login from 178.33.12.237 (ES/Spain/-): 5 in the last 3600 secs	2020-06-01 12:17:14
37.49.226.181	attack	Jun 1 05:54:43 server sshd[26253]: Failed password for root from 37.49.226.181 port 46334 ssh2 Jun 1 05:55:02 server sshd[26569]: Failed password for root from 37.49.226.181 port 50340 ssh2 Jun 1 05:55:21 server sshd[26879]: Failed password for root from 37.49.226.181 port 54558 ssh2	2020-06-01 12:01:30
149.202.70.189	attackspam	149.202.70.189 - - [01/Jun/2020:05:55:16 +0200] "GET /wp-login.php HTTP/1.1" 200 6364 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 149.202.70.189 - - [01/Jun/2020:05:55:16 +0200] "POST /wp-login.php HTTP/1.1" 200 6615 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 149.202.70.189 - - [01/Jun/2020:05:55:17 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-01 12:05:12
121.141.75.184	attackbotsspam	$f2bV_matches	2020-06-01 12:18:33
122.163.126.206	attack	Jun 1 01:56:47 vps647732 sshd[23178]: Failed password for root from 122.163.126.206 port 44566 ssh2 ...	2020-06-01 08:18:52
106.12.91.209	attackspambots	Jun 1 00:29:12 ajax sshd[31044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.91.209 Jun 1 00:29:14 ajax sshd[31044]: Failed password for invalid user 3H8IDC!!#g\r from 106.12.91.209 port 37312 ssh2	2020-06-01 08:19:07
222.186.30.218	attackbotsspam	Jun 1 02:22:35 home sshd[3407]: Failed password for root from 222.186.30.218 port 48791 ssh2 Jun 1 02:22:38 home sshd[3407]: Failed password for root from 222.186.30.218 port 48791 ssh2 Jun 1 02:22:40 home sshd[3407]: Failed password for root from 222.186.30.218 port 48791 ssh2 ...	2020-06-01 08:25:47
45.179.200.86	attackspambots	2020-06-0105:54:481jfbXC-0004q5-3G\<=info@whatsup2013.chH=$localhost$[14.169.136.204]:39373P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3042id=ad3215464d66b3bf98dd6b38cc0b818dbe5341be@whatsup2013.chT="torodriguezaj0104"forrodriguezaj0104@gmail.comtesfay_0805@hotmail.comdnnscsh@gmail.com2020-06-0105:55:101jfbXZ-0004rt-UD\<=info@whatsup2013.chH=$localhost$[77.211.26.76]:55480P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2227id=0401B7E4EF3B14578B8EC77FBB11C481@whatsup2013.chT="I'mcurrentlypreparedtogetalong-lastingconnection"forwoodyconcrete69@yahoo.com2020-06-0105:55:031jfbXR-0004rx-MH\<=info@whatsup2013.chH=$localhost$[14.162.120.110]:18231P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2993id=8446d70a012aff0c2fd127747fab923e1df7684de1@whatsup2013.chT="toszempruch1"forszempruch1@frontier.comcarlarogers1966@gmail.comkalqlt700@gmail.com2020-06-0105:54:301jfbWw-0004pc-	2020-06-01 12:09:07
106.13.45.212	attack	Jun 1 05:50:32 vps647732 sshd[8632]: Failed password for root from 106.13.45.212 port 58614 ssh2 ...	2020-06-01 12:12:53

最近上报的IP列表

82.145.171.183	71.3.124.42	37.212.229.45	41.232.79.90
186.227.138.53	183.80.142.244	177.86.145.140	207.180.210.45
2001:8d8:100f:f000::286	177.44.71.247	172.105.17.188	200.57.195.19
122.236.103.192	178.79.7.4	126.160.57.68	45.228.253.210
157.245.182.105	141.237.30.183	60.26.201.78	125.231.219.212