106.13.13.188 - IPInfo

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	2020-08-08T15:25:05.922092morrigan.ad5gb.com sshd[430310]: Failed password for root from 106.13.13.188 port 51042 ssh2 2020-08-08T15:25:06.458095morrigan.ad5gb.com sshd[430310]: Disconnected from authenticating user root 106.13.13.188 port 51042 [preauth]	2020-08-09 07:35:49
attackbotsspam	Aug 4 13:24:58 ip40 sshd[2303]: Failed password for root from 106.13.13.188 port 40800 ssh2 ...	2020-08-04 23:18:13
attackbots	SSH Brute Force	2020-07-31 04:17:31
attackspambots	Invalid user rheannon from 106.13.13.188 port 52228	2020-07-11 19:02:07
attackbots	Unauthorized SSH login attempts	2020-07-08 01:19:24
attackbots	Invalid user pv from 106.13.13.188 port 50636	2020-04-26 06:26:15
attack	Port probing on unauthorized port 21225	2020-04-25 20:27:38
attackspam	Apr 18 13:56:17 OPSO sshd\[1640\]: Invalid user tk from 106.13.13.188 port 56116 Apr 18 13:56:17 OPSO sshd\[1640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188 Apr 18 13:56:19 OPSO sshd\[1640\]: Failed password for invalid user tk from 106.13.13.188 port 56116 ssh2 Apr 18 13:59:28 OPSO sshd\[1992\]: Invalid user vp from 106.13.13.188 port 38426 Apr 18 13:59:28 OPSO sshd\[1992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188	2020-04-19 01:08:43
attack	Invalid user www from 106.13.13.188 port 54612	2020-03-29 08:35:41
attackbotsspam	Invalid user uw from 106.13.13.188 port 59270	2020-03-25 18:22:11
attackbots	SSH invalid-user multiple login attempts	2020-03-10 18:33:07
attack	Feb 10 01:38:52 lnxded64 sshd[11418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188 Feb 10 01:38:54 lnxded64 sshd[11418]: Failed password for invalid user oeq from 106.13.13.188 port 59390 ssh2 Feb 10 01:48:20 lnxded64 sshd[13875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188	2020-02-10 09:29:20
attackspambots	Unauthorized connection attempt detected from IP address 106.13.13.188 to port 2220 [J]	2020-02-05 07:02:12
attack	Jan 23 03:28:34 prox sshd[18867]: Failed password for root from 106.13.13.188 port 57200 ssh2 Jan 23 03:45:42 prox sshd[30793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188	2020-01-23 11:58:55
attack	Nov 5 02:53:21 ny01 sshd[11916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188 Nov 5 02:53:24 ny01 sshd[11916]: Failed password for invalid user bushiren from 106.13.13.188 port 51596 ssh2 Nov 5 02:58:11 ny01 sshd[12949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188	2019-11-05 16:09:33
attack	web-1 [ssh] SSH Attack	2019-10-30 06:23:27
attackspam	Oct 26 06:55:56 server sshd\[32757\]: Invalid user odoo from 106.13.13.188 Oct 26 06:55:56 server sshd\[32757\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188 Oct 26 06:55:59 server sshd\[32757\]: Failed password for invalid user odoo from 106.13.13.188 port 44352 ssh2 Oct 26 06:59:03 server sshd\[703\]: Invalid user odoo from 106.13.13.188 Oct 26 06:59:03 server sshd\[703\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188 ...	2019-10-26 18:26:44
attack	Oct 20 17:18:37 xxxxxxx0 sshd[16758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188 user=r.r Oct 20 17:18:40 xxxxxxx0 sshd[16758]: Failed password for r.r from 106.13.13.188 port 53110 ssh2 Oct 20 17:31:55 xxxxxxx0 sshd[18407]: Invalid user ubnt from 106.13.13.188 port 35888 Oct 20 17:31:55 xxxxxxx0 sshd[18407]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188 Oct 20 17:31:57 xxxxxxx0 sshd[18407]: Failed password for invalid user ubnt from 106.13.13.188 port 35888 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.13.13.188	2019-10-21 03:05:28

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.130.166	attack	Automatic report - Banned IP Access	2020-10-04 08:51:20
106.13.130.166	attackspambots	Automatic report - Banned IP Access	2020-10-04 01:24:56
106.13.136.8	attackbots	Fail2Ban Ban Triggered	2020-09-23 23:28:10
106.13.136.8	attackbots	Sep 23 01:27:43 ip-172-31-42-142 sshd\[24601\]: Invalid user gy from 106.13.136.8\ Sep 23 01:27:45 ip-172-31-42-142 sshd\[24601\]: Failed password for invalid user gy from 106.13.136.8 port 35400 ssh2\ Sep 23 01:33:18 ip-172-31-42-142 sshd\[24630\]: Invalid user smart from 106.13.136.8\ Sep 23 01:33:20 ip-172-31-42-142 sshd\[24630\]: Failed password for invalid user smart from 106.13.136.8 port 59216 ssh2\ Sep 23 01:34:47 ip-172-31-42-142 sshd\[24634\]: Invalid user eva from 106.13.136.8\	2020-09-23 15:41:03
106.13.136.8	attackbotsspam	SSH Brute-Force Attack	2020-09-23 07:35:11
106.13.133.190	attack	(sshd) Failed SSH login from 106.13.133.190 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 21 16:29:29 server2 sshd[12768]: Invalid user test from 106.13.133.190 port 39790 Sep 21 16:29:31 server2 sshd[12768]: Failed password for invalid user test from 106.13.133.190 port 39790 ssh2 Sep 21 16:36:09 server2 sshd[14307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.133.190 user=root Sep 21 16:36:10 server2 sshd[14307]: Failed password for root from 106.13.133.190 port 51834 ssh2 Sep 21 16:45:58 server2 sshd[15653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.133.190 user=nagios	2020-09-22 02:10:43
106.13.133.190	attack	Sep 21 16:21:31 localhost sshd[3145715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.133.190 user=root Sep 21 16:21:33 localhost sshd[3145715]: Failed password for root from 106.13.133.190 port 59962 ssh2 ...	2020-09-21 17:55:06
106.13.139.79	attackbotsspam	Port Scan ...	2020-09-12 22:37:44
106.13.139.79	attackbotsspam	Port Scan ...	2020-09-12 14:41:45
106.13.139.79	attackbots	" "	2020-09-12 06:29:51
106.13.134.142	attackspam	(sshd) Failed SSH login from 106.13.134.142 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 8 10:48:46 optimus sshd[26065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.142 user=root Sep 8 10:48:48 optimus sshd[26065]: Failed password for root from 106.13.134.142 port 58966 ssh2 Sep 8 10:54:08 optimus sshd[28026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.142 user=root Sep 8 10:54:10 optimus sshd[28026]: Failed password for root from 106.13.134.142 port 57340 ssh2 Sep 8 10:59:37 optimus sshd[29889]: Did not receive identification string from 106.13.134.142	2020-09-09 00:13:09
106.13.134.142	attackspam	firewall-block, port(s): 7374/tcp	2020-09-08 15:44:46
106.13.134.142	attackspambots	k+ssh-bruteforce	2020-09-08 08:18:33
106.13.134.142	attackbotsspam	firewall-block, port(s): 29420/tcp	2020-09-03 03:43:07
106.13.134.142	attack	Invalid user zt from 106.13.134.142 port 38514	2020-09-02 19:21:55

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.13.188
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3925
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.13.188.			IN	A

;; AUTHORITY SECTION:
.			514	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102001 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 21 03:05:25 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 188.13.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 188.13.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
88.214.26.8	attack	Jan 14 23:55:49 zx01vmsma01 sshd[168228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.214.26.8 Jan 14 23:55:51 zx01vmsma01 sshd[168228]: Failed password for invalid user admin from 88.214.26.8 port 56694 ssh2 ...	2020-01-15 08:58:02
118.98.121.195	attack	2020-01-14 22:11:16,503 fail2ban.actions [2870]: NOTICE [sshd] Ban 118.98.121.195 2020-01-14 22:45:00,326 fail2ban.actions [2870]: NOTICE [sshd] Ban 118.98.121.195 2020-01-14 23:18:14,470 fail2ban.actions [2870]: NOTICE [sshd] Ban 118.98.121.195 2020-01-14 23:52:39,619 fail2ban.actions [2870]: NOTICE [sshd] Ban 118.98.121.195 2020-01-15 00:27:13,406 fail2ban.actions [2870]: NOTICE [sshd] Ban 118.98.121.195 ...	2020-01-15 08:58:22
200.119.236.200	attack	SSH-bruteforce attempts	2020-01-15 08:54:06
86.111.95.131	attackspambots	2020-01-14 22:12:16,954 fail2ban.actions: WARNING [ssh] Ban 86.111.95.131	2020-01-15 08:58:46
191.6.135.86	attackbots	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-01-15 08:46:26
218.92.0.178	attackspam	Jan 14 14:45:53 hanapaa sshd\[20914\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.178 user=root Jan 14 14:45:55 hanapaa sshd\[20914\]: Failed password for root from 218.92.0.178 port 10459 ssh2 Jan 14 14:46:11 hanapaa sshd\[20956\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.178 user=root Jan 14 14:46:14 hanapaa sshd\[20956\]: Failed password for root from 218.92.0.178 port 43146 ssh2 Jan 14 14:46:31 hanapaa sshd\[20965\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.178 user=root	2020-01-15 08:48:47
112.85.42.178	attackbotsspam	Jan 14 15:06:37 web9 sshd\[9725\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root Jan 14 15:06:39 web9 sshd\[9725\]: Failed password for root from 112.85.42.178 port 13894 ssh2 Jan 14 15:06:55 web9 sshd\[9772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root Jan 14 15:06:57 web9 sshd\[9772\]: Failed password for root from 112.85.42.178 port 47075 ssh2 Jan 14 15:07:00 web9 sshd\[9772\]: Failed password for root from 112.85.42.178 port 47075 ssh2	2020-01-15 09:16:59
75.80.193.222	attackbots	Unauthorized connection attempt detected from IP address 75.80.193.222 to port 2220 [J]	2020-01-15 08:41:20
36.37.251.129	attackbotsspam	Automatic report - Port Scan Attack	2020-01-15 09:10:40
107.6.169.250	attackspambots	Unauthorized connection attempt detected from IP address 107.6.169.250 to port 993 [J]	2020-01-15 08:38:44
177.190.116.17	attackbots	Automatic report - Port Scan Attack	2020-01-15 09:12:26
45.136.109.87	attackspam	01/14/2020-19:32:48.118020 45.136.109.87 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-01-15 08:50:39
46.17.44.207	attack	Jan 14 18:12:42 ws19vmsma01 sshd[113759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.17.44.207 Jan 14 18:12:44 ws19vmsma01 sshd[113759]: Failed password for invalid user mm from 46.17.44.207 port 43299 ssh2 ...	2020-01-15 08:41:41
27.72.61.48	attackspambots	proto=tcp . spt=56336 . dpt=25 . Found on Dark List de (611)	2020-01-15 09:04:31
112.196.72.188	attackspambots	Unauthorized connection attempt detected from IP address 112.196.72.188 to port 2220 [J]	2020-01-15 08:54:54

最近上报的IP列表

88.104.2.29	69.225.18.149	73.137.217.154	47.30.181.249
222.112.95.76	106.87.3.186	173.191.100.194	122.242.231.139
47.27.169.34	105.172.221.232	206.65.64.122	80.181.105.115
186.232.93.72	190.105.188.249	189.135.66.220	74.40.11.129
179.215.58.102	45.122.40.120	32.101.65.18	185.219.132.98