106.13.130.146

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Nov 3 10:57:41 DAAP sshd[24130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.146 user=root Nov 3 10:57:43 DAAP sshd[24130]: Failed password for root from 106.13.130.146 port 48136 ssh2 Nov 3 11:02:42 DAAP sshd[24193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.146 user=root Nov 3 11:02:44 DAAP sshd[24193]: Failed password for root from 106.13.130.146 port 56838 ssh2 Nov 3 11:07:33 DAAP sshd[24206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.146 user=root Nov 3 11:07:36 DAAP sshd[24206]: Failed password for root from 106.13.130.146 port 37274 ssh2 ...	2019-11-03 18:51:59
attackspambots	Nov 2 04:40:48 mail sshd[24852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.146 user=root Nov 2 04:40:49 mail sshd[24852]: Failed password for root from 106.13.130.146 port 53332 ssh2 Nov 2 04:48:12 mail sshd[3797]: Invalid user 2897 from 106.13.130.146 Nov 2 04:48:12 mail sshd[3797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.146 Nov 2 04:48:12 mail sshd[3797]: Invalid user 2897 from 106.13.130.146 Nov 2 04:48:15 mail sshd[3797]: Failed password for invalid user 2897 from 106.13.130.146 port 44726 ssh2 ...	2019-11-02 16:30:37
attack	2019-11-01T13:00:16.650543abusebot-2.cloudsearch.cf sshd\[8729\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.146 user=root	2019-11-01 21:30:44
attackbotsspam	2019-10-30T16:31:37.891235abusebot-3.cloudsearch.cf sshd\[1153\]: Invalid user test from 106.13.130.146 port 46474	2019-10-31 00:46:14

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.130.166	attack	Automatic report - Banned IP Access	2020-10-04 08:51:20
106.13.130.166	attackspambots	Automatic report - Banned IP Access	2020-10-04 01:24:56
106.13.130.208	attackspam	May 14 12:23:16 vlre-nyc-1 sshd\[12889\]: Invalid user deploy from 106.13.130.208 May 14 12:23:16 vlre-nyc-1 sshd\[12889\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.208 May 14 12:23:18 vlre-nyc-1 sshd\[12889\]: Failed password for invalid user deploy from 106.13.130.208 port 53648 ssh2 May 14 12:26:54 vlre-nyc-1 sshd\[13014\]: Invalid user test3 from 106.13.130.208 May 14 12:26:54 vlre-nyc-1 sshd\[13014\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.208 ...	2020-05-14 22:35:19
106.13.130.208	attackspambots	2020-05-11T10:00:40.124954randservbullet-proofcloud-66.localdomain sshd[28565]: Invalid user yh from 106.13.130.208 port 56350 2020-05-11T10:00:40.130484randservbullet-proofcloud-66.localdomain sshd[28565]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.208 2020-05-11T10:00:40.124954randservbullet-proofcloud-66.localdomain sshd[28565]: Invalid user yh from 106.13.130.208 port 56350 2020-05-11T10:00:42.297407randservbullet-proofcloud-66.localdomain sshd[28565]: Failed password for invalid user yh from 106.13.130.208 port 56350 ssh2 ...	2020-05-11 18:21:20
106.13.130.66	attackspambots	Apr 3 21:04:33 php1 sshd\[4529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66 user=root Apr 3 21:04:35 php1 sshd\[4529\]: Failed password for root from 106.13.130.66 port 40622 ssh2 Apr 3 21:09:37 php1 sshd\[5101\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66 user=root Apr 3 21:09:39 php1 sshd\[5101\]: Failed password for root from 106.13.130.66 port 37576 ssh2 Apr 3 21:14:25 php1 sshd\[5483\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66 user=root	2020-04-04 17:57:00
106.13.130.66	attack	Invalid user ws from 106.13.130.66 port 48216	2020-04-03 23:21:50
106.13.130.208	attack	SSH login attempts.	2020-03-30 13:58:54
106.13.130.208	attackbotsspam	Mar 27 06:49:06 mockhub sshd[22872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.208 Mar 27 06:49:08 mockhub sshd[22872]: Failed password for invalid user jkl from 106.13.130.208 port 33824 ssh2 ...	2020-03-28 01:29:28
106.13.130.66	attackbots	Mar 26 12:12:34 legacy sshd[6736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66 Mar 26 12:12:37 legacy sshd[6736]: Failed password for invalid user jboss from 106.13.130.66 port 46144 ssh2 Mar 26 12:14:08 legacy sshd[6755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66 ...	2020-03-26 20:18:09
106.13.130.66	attackbots	SSH Authentication Attempts Exceeded	2020-03-24 16:21:44
106.13.130.208	attackbotsspam	Mar 24 01:03:22 silence02 sshd[16057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.208 Mar 24 01:03:24 silence02 sshd[16057]: Failed password for invalid user cassy from 106.13.130.208 port 46516 ssh2 Mar 24 01:06:43 silence02 sshd[16198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.208	2020-03-24 10:07:25
106.13.130.80	attack	Invalid user ark from 106.13.130.80 port 47172	2020-03-20 18:18:53
106.13.130.66	attackbotsspam	Mar 3 07:10:46 lnxded63 sshd[3915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66	2020-03-03 15:22:12
106.13.130.66	attackbots	$f2bV_matches	2020-02-13 16:04:35
106.13.130.66	attackspam	Unauthorized connection attempt detected from IP address 106.13.130.66 to port 2220 [J]	2020-01-29 15:28:15

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.130.146
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51114
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.130.146.			IN	A

;; AUTHORITY SECTION:
.			341	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019103000 1800 900 604800 86400

;; Query time: 92 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 31 00:46:04 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 146.130.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 146.130.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
195.3.146.88	attack	9986/tcp 9995/tcp 9992/tcp... [2019-06-11/08-11]1840pkt,319pt.(tcp)	2019-08-13 03:16:36
107.170.203.160	attackspam	109/tcp 47883/tcp 57059/tcp... [2019-06-14/08-11]71pkt,62pt.(tcp),2pt.(udp)	2019-08-13 03:14:51
88.214.26.171	attack	Aug 12 21:40:00 srv-4 sshd\[26708\]: Invalid user admin from 88.214.26.171 Aug 12 21:40:00 srv-4 sshd\[26708\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.214.26.171 Aug 12 21:40:01 srv-4 sshd\[26709\]: Invalid user admin from 88.214.26.171 Aug 12 21:40:01 srv-4 sshd\[26709\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.214.26.171 ...	2019-08-13 03:22:53
103.61.198.122	attackbots	Brute force attempt	2019-08-13 03:50:03
159.65.7.56	attackspam	2019-08-12T18:07:46.640421abusebot-3.cloudsearch.cf sshd\[30536\]: Invalid user postgres from 159.65.7.56 port 54250	2019-08-13 03:08:04
74.82.47.31	attackbots	Unauthorised access (Aug 12) SRC=74.82.47.31 LEN=40 TTL=243 ID=54321 TCP DPT=3389 WINDOW=65535 SYN	2019-08-13 03:32:55
37.59.49.177	attackbotsspam	Aug 12 21:21:10 root sshd[24137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.49.177 Aug 12 21:21:12 root sshd[24137]: Failed password for invalid user geraldo from 37.59.49.177 port 54922 ssh2 Aug 12 21:24:52 root sshd[24146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.49.177 ...	2019-08-13 03:40:38
203.99.62.158	attackspambots	Aug 12 14:17:02 xtremcommunity sshd\[17909\]: Invalid user ibmuser from 203.99.62.158 port 14097 Aug 12 14:17:02 xtremcommunity sshd\[17909\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.99.62.158 Aug 12 14:17:04 xtremcommunity sshd\[17909\]: Failed password for invalid user ibmuser from 203.99.62.158 port 14097 ssh2 Aug 12 14:22:14 xtremcommunity sshd\[18034\]: Invalid user theresa from 203.99.62.158 port 38411 Aug 12 14:22:14 xtremcommunity sshd\[18034\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.99.62.158 ...	2019-08-13 03:24:28
41.190.130.170	attackbotsspam	Aug 12 13:58:34 mailserver sshd[31156]: Invalid user admin from 41.190.130.170 Aug 12 13:58:34 mailserver sshd[31156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.190.130.170 Aug 12 13:58:36 mailserver sshd[31156]: Failed password for invalid user admin from 41.190.130.170 port 34170 ssh2 Aug 12 13:58:40 mailserver sshd[31156]: Failed password for invalid user admin from 41.190.130.170 port 34170 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=41.190.130.170	2019-08-13 03:11:12
198.108.67.35	attack	08/12/2019-09:54:06.700491 198.108.67.35 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-08-13 03:36:09
175.198.81.71	attackbotsspam	Aug 12 20:02:09 xeon sshd[51887]: Failed password for invalid user n from 175.198.81.71 port 45956 ssh2	2019-08-13 03:31:56
76.68.130.107	attack	Port Scan detected from 76.68.130.107 (CA/Canada/toroon4318w-lp130-01-76-68-130-107.dsl.bell.ca). 4 hits in the last 15 seconds	2019-08-13 03:38:32
112.85.42.72	attackbotsspam	Aug 12 14:53:03 ny01 sshd[28501]: Failed password for root from 112.85.42.72 port 47398 ssh2 Aug 12 14:54:58 ny01 sshd[28652]: Failed password for root from 112.85.42.72 port 59984 ssh2	2019-08-13 03:22:08
178.62.108.111	attack	Aug 12 15:22:20 plusreed sshd[29184]: Invalid user nice from 178.62.108.111 Aug 12 15:22:20 plusreed sshd[29184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.108.111 Aug 12 15:22:20 plusreed sshd[29184]: Invalid user nice from 178.62.108.111 Aug 12 15:22:22 plusreed sshd[29184]: Failed password for invalid user nice from 178.62.108.111 port 49794 ssh2 ...	2019-08-13 03:35:39
200.165.49.202	attack	Aug 12 19:56:36 MK-Soft-Root2 sshd\[2896\]: Invalid user ftpuser from 200.165.49.202 port 56989 Aug 12 19:56:36 MK-Soft-Root2 sshd\[2896\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.165.49.202 Aug 12 19:56:38 MK-Soft-Root2 sshd\[2896\]: Failed password for invalid user ftpuser from 200.165.49.202 port 56989 ssh2 ...	2019-08-13 03:17:11

最近上报的IP列表

176.94.104.160	232.16.191.68	190.131.85.153	20.46.199.31
59.94.169.38	243.250.178.197	89.219.234.86	3.55.167.231
129.50.195.228	201.131.82.139	159.252.191.108	222.189.10.54
0.111.208.19	1.144.231.79	13.209.19.23	228.15.25.13
11.63.101.211	184.15.250.92	176.221.38.40	217.104.235.218