106.13.13.188 - IPInfo

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	2020-08-08T15:25:05.922092morrigan.ad5gb.com sshd[430310]: Failed password for root from 106.13.13.188 port 51042 ssh2 2020-08-08T15:25:06.458095morrigan.ad5gb.com sshd[430310]: Disconnected from authenticating user root 106.13.13.188 port 51042 [preauth]	2020-08-09 07:35:49
attackbotsspam	Aug 4 13:24:58 ip40 sshd[2303]: Failed password for root from 106.13.13.188 port 40800 ssh2 ...	2020-08-04 23:18:13
attackbots	SSH Brute Force	2020-07-31 04:17:31
attackspambots	Invalid user rheannon from 106.13.13.188 port 52228	2020-07-11 19:02:07
attackbots	Unauthorized SSH login attempts	2020-07-08 01:19:24
attackbots	Invalid user pv from 106.13.13.188 port 50636	2020-04-26 06:26:15
attack	Port probing on unauthorized port 21225	2020-04-25 20:27:38
attackspam	Apr 18 13:56:17 OPSO sshd\[1640\]: Invalid user tk from 106.13.13.188 port 56116 Apr 18 13:56:17 OPSO sshd\[1640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188 Apr 18 13:56:19 OPSO sshd\[1640\]: Failed password for invalid user tk from 106.13.13.188 port 56116 ssh2 Apr 18 13:59:28 OPSO sshd\[1992\]: Invalid user vp from 106.13.13.188 port 38426 Apr 18 13:59:28 OPSO sshd\[1992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188	2020-04-19 01:08:43
attack	Invalid user www from 106.13.13.188 port 54612	2020-03-29 08:35:41
attackbotsspam	Invalid user uw from 106.13.13.188 port 59270	2020-03-25 18:22:11
attackbots	SSH invalid-user multiple login attempts	2020-03-10 18:33:07
attack	Feb 10 01:38:52 lnxded64 sshd[11418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188 Feb 10 01:38:54 lnxded64 sshd[11418]: Failed password for invalid user oeq from 106.13.13.188 port 59390 ssh2 Feb 10 01:48:20 lnxded64 sshd[13875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188	2020-02-10 09:29:20
attackspambots	Unauthorized connection attempt detected from IP address 106.13.13.188 to port 2220 [J]	2020-02-05 07:02:12
attack	Jan 23 03:28:34 prox sshd[18867]: Failed password for root from 106.13.13.188 port 57200 ssh2 Jan 23 03:45:42 prox sshd[30793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188	2020-01-23 11:58:55
attack	Nov 5 02:53:21 ny01 sshd[11916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188 Nov 5 02:53:24 ny01 sshd[11916]: Failed password for invalid user bushiren from 106.13.13.188 port 51596 ssh2 Nov 5 02:58:11 ny01 sshd[12949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188	2019-11-05 16:09:33
attack	web-1 [ssh] SSH Attack	2019-10-30 06:23:27
attackspam	Oct 26 06:55:56 server sshd\[32757\]: Invalid user odoo from 106.13.13.188 Oct 26 06:55:56 server sshd\[32757\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188 Oct 26 06:55:59 server sshd\[32757\]: Failed password for invalid user odoo from 106.13.13.188 port 44352 ssh2 Oct 26 06:59:03 server sshd\[703\]: Invalid user odoo from 106.13.13.188 Oct 26 06:59:03 server sshd\[703\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188 ...	2019-10-26 18:26:44
attack	Oct 20 17:18:37 xxxxxxx0 sshd[16758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188 user=r.r Oct 20 17:18:40 xxxxxxx0 sshd[16758]: Failed password for r.r from 106.13.13.188 port 53110 ssh2 Oct 20 17:31:55 xxxxxxx0 sshd[18407]: Invalid user ubnt from 106.13.13.188 port 35888 Oct 20 17:31:55 xxxxxxx0 sshd[18407]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188 Oct 20 17:31:57 xxxxxxx0 sshd[18407]: Failed password for invalid user ubnt from 106.13.13.188 port 35888 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.13.13.188	2019-10-21 03:05:28

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.130.166	attack	Automatic report - Banned IP Access	2020-10-04 08:51:20
106.13.130.166	attackspambots	Automatic report - Banned IP Access	2020-10-04 01:24:56
106.13.136.8	attackbots	Fail2Ban Ban Triggered	2020-09-23 23:28:10
106.13.136.8	attackbots	Sep 23 01:27:43 ip-172-31-42-142 sshd\[24601\]: Invalid user gy from 106.13.136.8\ Sep 23 01:27:45 ip-172-31-42-142 sshd\[24601\]: Failed password for invalid user gy from 106.13.136.8 port 35400 ssh2\ Sep 23 01:33:18 ip-172-31-42-142 sshd\[24630\]: Invalid user smart from 106.13.136.8\ Sep 23 01:33:20 ip-172-31-42-142 sshd\[24630\]: Failed password for invalid user smart from 106.13.136.8 port 59216 ssh2\ Sep 23 01:34:47 ip-172-31-42-142 sshd\[24634\]: Invalid user eva from 106.13.136.8\	2020-09-23 15:41:03
106.13.136.8	attackbotsspam	SSH Brute-Force Attack	2020-09-23 07:35:11
106.13.133.190	attack	(sshd) Failed SSH login from 106.13.133.190 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 21 16:29:29 server2 sshd[12768]: Invalid user test from 106.13.133.190 port 39790 Sep 21 16:29:31 server2 sshd[12768]: Failed password for invalid user test from 106.13.133.190 port 39790 ssh2 Sep 21 16:36:09 server2 sshd[14307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.133.190 user=root Sep 21 16:36:10 server2 sshd[14307]: Failed password for root from 106.13.133.190 port 51834 ssh2 Sep 21 16:45:58 server2 sshd[15653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.133.190 user=nagios	2020-09-22 02:10:43
106.13.133.190	attack	Sep 21 16:21:31 localhost sshd[3145715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.133.190 user=root Sep 21 16:21:33 localhost sshd[3145715]: Failed password for root from 106.13.133.190 port 59962 ssh2 ...	2020-09-21 17:55:06
106.13.139.79	attackbotsspam	Port Scan ...	2020-09-12 22:37:44
106.13.139.79	attackbotsspam	Port Scan ...	2020-09-12 14:41:45
106.13.139.79	attackbots	" "	2020-09-12 06:29:51
106.13.134.142	attackspam	(sshd) Failed SSH login from 106.13.134.142 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 8 10:48:46 optimus sshd[26065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.142 user=root Sep 8 10:48:48 optimus sshd[26065]: Failed password for root from 106.13.134.142 port 58966 ssh2 Sep 8 10:54:08 optimus sshd[28026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.142 user=root Sep 8 10:54:10 optimus sshd[28026]: Failed password for root from 106.13.134.142 port 57340 ssh2 Sep 8 10:59:37 optimus sshd[29889]: Did not receive identification string from 106.13.134.142	2020-09-09 00:13:09
106.13.134.142	attackspam	firewall-block, port(s): 7374/tcp	2020-09-08 15:44:46
106.13.134.142	attackspambots	k+ssh-bruteforce	2020-09-08 08:18:33
106.13.134.142	attackbotsspam	firewall-block, port(s): 29420/tcp	2020-09-03 03:43:07
106.13.134.142	attack	Invalid user zt from 106.13.134.142 port 38514	2020-09-02 19:21:55

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.13.188
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3925
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.13.188.			IN	A

;; AUTHORITY SECTION:
.			514	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102001 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 21 03:05:25 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 188.13.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 188.13.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
191.252.204.193	attackspambots	(sshd) Failed SSH login from 191.252.204.193 (vps16154.publiccloud.com.br): 5 in the last 3600 secs	2019-11-12 22:24:45
123.31.31.68	attackspam	Nov 12 08:50:02 meumeu sshd[3291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.31.68 Nov 12 08:50:04 meumeu sshd[3291]: Failed password for invalid user 33333333 from 123.31.31.68 port 46288 ssh2 Nov 12 08:54:04 meumeu sshd[3820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.31.68 ...	2019-11-12 22:39:50
200.194.4.162	attackspambots	Automatic report - Port Scan Attack	2019-11-12 22:46:39
106.13.82.49	attack	Invalid user koster from 106.13.82.49 port 40636 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.49 Failed password for invalid user koster from 106.13.82.49 port 40636 ssh2 Invalid user test from 106.13.82.49 port 47342 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.49	2019-11-12 22:52:58
5.58.49.28	attackspambots	postfix (unknown user, SPF fail or relay access denied)	2019-11-12 22:34:54
49.88.112.77	attack	2019-11-12T14:42:35.052098abusebot-3.cloudsearch.cf sshd\[29059\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.77 user=root	2019-11-12 22:43:29
78.110.158.221	attack	Unauthorised access (Nov 12) SRC=78.110.158.221 LEN=52 TTL=119 ID=32655 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-12 22:50:12
89.248.168.112	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 86 - port: 5555 proto: TCP cat: Misc Attack	2019-11-12 23:06:51
159.203.201.43	attack	Automatic report - Banned IP Access	2019-11-12 22:43:50
213.174.147.83	attack	Automatic report - Banned IP Access	2019-11-12 22:28:52
149.202.52.221	attackspam	SSH invalid-user multiple login try	2019-11-12 22:55:02
69.85.70.37	attack	Nov 12 04:37:32 wbs sshd\[12713\]: Invalid user host from 69.85.70.37 Nov 12 04:37:32 wbs sshd\[12713\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.37 Nov 12 04:37:34 wbs sshd\[12713\]: Failed password for invalid user host from 69.85.70.37 port 44924 ssh2 Nov 12 04:41:56 wbs sshd\[13214\]: Invalid user donn from 69.85.70.37 Nov 12 04:41:56 wbs sshd\[13214\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.37	2019-11-12 22:47:42
129.28.78.8	attackspambots	Nov 12 09:30:05 venus sshd\[12785\]: Invalid user 123456 from 129.28.78.8 port 50170 Nov 12 09:30:05 venus sshd\[12785\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.78.8 Nov 12 09:30:07 venus sshd\[12785\]: Failed password for invalid user 123456 from 129.28.78.8 port 50170 ssh2 ...	2019-11-12 22:41:33
178.62.38.237	attackspambots	helo=	2019-11-12 22:52:46
185.234.216.23	attackspambots	RDP Brute-Force (Grieskirchen RZ1)	2019-11-12 22:52:03

最近上报的IP列表

88.104.2.29	69.225.18.149	73.137.217.154	47.30.181.249
222.112.95.76	106.87.3.186	173.191.100.194	122.242.231.139
47.27.169.34	105.172.221.232	206.65.64.122	80.181.105.115
186.232.93.72	190.105.188.249	189.135.66.220	74.40.11.129
179.215.58.102	45.122.40.120	32.101.65.18	185.219.132.98