106.13.135.44 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	SSH/22 MH Probe, BF, Hack -	2019-12-26 01:37:41
attackspambots	Dec 20 00:53:55 ns41 sshd[4082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.135.44	2019-12-20 08:16:55
attackspam	Dec 18 09:22:08 mail1 sshd\[23987\]: Invalid user tempora from 106.13.135.44 port 53502 Dec 18 09:22:08 mail1 sshd\[23987\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.135.44 Dec 18 09:22:10 mail1 sshd\[23987\]: Failed password for invalid user tempora from 106.13.135.44 port 53502 ssh2 Dec 18 09:32:43 mail1 sshd\[28758\]: Invalid user wv from 106.13.135.44 port 42140 Dec 18 09:32:43 mail1 sshd\[28758\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.135.44 ...	2019-12-18 21:48:29
attackbotsspam	Dec 17 00:47:51 srv206 sshd[15246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.135.44 user=root Dec 17 00:47:53 srv206 sshd[15246]: Failed password for root from 106.13.135.44 port 48830 ssh2 ...	2019-12-17 08:20:15

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.135.76	attackbots	2020-04-17 UTC: (16x) - css,docker,ds,ef,ey,git(2x),hd,m,rj,root(2x),test,test1,ubuntu,wf	2020-04-18 18:36:24
106.13.135.76	attackspambots	SSH login attempts.	2020-04-16 13:27:04
106.13.135.76	attackspam	Invalid user ubuntu from 106.13.135.76 port 54612	2020-04-12 04:08:45
106.13.135.107	attackbotsspam	Mar 30 19:38:04 lock-38 sshd[349647]: Invalid user rt from 106.13.135.107 port 47798 Mar 30 19:38:04 lock-38 sshd[349647]: Failed password for invalid user rt from 106.13.135.107 port 47798 ssh2 Mar 30 19:40:05 lock-38 sshd[349765]: Invalid user f from 106.13.135.107 port 39550 Mar 30 19:40:05 lock-38 sshd[349765]: Invalid user f from 106.13.135.107 port 39550 Mar 30 19:40:05 lock-38 sshd[349765]: Failed password for invalid user f from 106.13.135.107 port 39550 ssh2 ...	2020-03-31 01:55:09
106.13.135.107	attackbots	Mar 29 20:13:01 ns381471 sshd[17371]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.135.107 Mar 29 20:13:03 ns381471 sshd[17371]: Failed password for invalid user dto from 106.13.135.107 port 45796 ssh2	2020-03-30 02:18:01
106.13.135.107	attackbots	Mar 27 14:52:37 ks10 sshd[975472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.135.107 Mar 27 14:52:39 ks10 sshd[975472]: Failed password for invalid user rakesh from 106.13.135.107 port 33398 ssh2 ...	2020-03-28 01:27:24
106.13.135.107	attackspam	$f2bV_matches	2020-03-26 20:47:35
106.13.135.107	attack	$f2bV_matches	2020-03-24 14:18:39
106.13.135.107	attackbots	SASL PLAIN auth failed: ruser=...	2020-03-21 08:44:27
106.13.135.107	attack	Mar 12 14:23:26 lock-38 sshd[29427]: Invalid user linux from 106.13.135.107 port 54306 Mar 12 14:23:26 lock-38 sshd[29427]: Failed password for invalid user linux from 106.13.135.107 port 54306 ssh2 Mar 12 14:25:05 lock-38 sshd[29430]: Invalid user shuangbo from 106.13.135.107 port 45318 Mar 12 14:25:05 lock-38 sshd[29430]: Invalid user shuangbo from 106.13.135.107 port 45318 Mar 12 14:25:05 lock-38 sshd[29430]: Failed password for invalid user shuangbo from 106.13.135.107 port 45318 ssh2 ...	2020-03-12 21:32:02
106.13.135.107	attackbots	SSH auth scanning - multiple failed logins	2020-03-07 17:10:26
106.13.135.107	attack	Mar 4 00:31:28 lnxded64 sshd[9015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.135.107	2020-03-04 07:57:33
106.13.135.156	attack	W 5701,/var/log/auth.log,-,-	2020-02-27 20:28:48
106.13.135.98	attack	Feb 20 05:29:12 game-panel sshd[32203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.135.98 Feb 20 05:29:14 game-panel sshd[32203]: Failed password for invalid user john from 106.13.135.98 port 58260 ssh2 Feb 20 05:32:47 game-panel sshd[32302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.135.98	2020-02-20 13:47:57
106.13.135.156	attackbotsspam	Feb 11 21:05:18 sachi sshd\[3960\]: Invalid user karen1 from 106.13.135.156 Feb 11 21:05:18 sachi sshd\[3960\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.135.156 Feb 11 21:05:20 sachi sshd\[3960\]: Failed password for invalid user karen1 from 106.13.135.156 port 43334 ssh2 Feb 11 21:09:42 sachi sshd\[4538\]: Invalid user wpyan from 106.13.135.156 Feb 11 21:09:42 sachi sshd\[4538\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.135.156	2020-02-12 16:28:42

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.135.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54373
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.135.44.			IN	A

;; AUTHORITY SECTION:
.			201	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121100 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 11 23:57:35 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 44.135.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 44.135.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
212.64.57.24	attack	Sep 23 07:11:45 ny01 sshd[15952]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.57.24 Sep 23 07:11:46 ny01 sshd[15952]: Failed password for invalid user nareng from 212.64.57.24 port 49775 ssh2 Sep 23 07:17:00 ny01 sshd[17120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.57.24	2019-09-23 19:56:19
51.75.32.141	attackspam	Sep 23 11:47:56 SilenceServices sshd[11539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.32.141 Sep 23 11:47:59 SilenceServices sshd[11539]: Failed password for invalid user vtiger from 51.75.32.141 port 35830 ssh2 Sep 23 11:51:58 SilenceServices sshd[12699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.32.141	2019-09-23 19:54:45
167.71.6.221	attackspambots	Sep 23 07:06:02 www2 sshd\[49588\]: Invalid user bluecore from 167.71.6.221Sep 23 07:06:04 www2 sshd\[49588\]: Failed password for invalid user bluecore from 167.71.6.221 port 41360 ssh2Sep 23 07:09:33 www2 sshd\[49779\]: Invalid user baldwin from 167.71.6.221 ...	2019-09-23 19:57:54
173.255.205.62	attack	scan z	2019-09-23 20:01:59
13.76.212.16	attackspam	ssh failed login	2019-09-23 19:32:07
79.137.86.43	attackspambots	Sep 23 01:05:55 web9 sshd\[8585\]: Invalid user yz from 79.137.86.43 Sep 23 01:05:55 web9 sshd\[8585\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.86.43 Sep 23 01:05:57 web9 sshd\[8585\]: Failed password for invalid user yz from 79.137.86.43 port 36580 ssh2 Sep 23 01:09:53 web9 sshd\[9313\]: Invalid user imail from 79.137.86.43 Sep 23 01:09:53 web9 sshd\[9313\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.86.43	2019-09-23 19:29:53
129.211.24.187	attackbotsspam	Sep 23 06:59:20 site3 sshd\[244945\]: Invalid user owen from 129.211.24.187 Sep 23 06:59:20 site3 sshd\[244945\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.24.187 Sep 23 06:59:22 site3 sshd\[244945\]: Failed password for invalid user owen from 129.211.24.187 port 47006 ssh2 Sep 23 07:04:45 site3 sshd\[245098\]: Invalid user coenraadt from 129.211.24.187 Sep 23 07:04:45 site3 sshd\[245098\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.24.187 ...	2019-09-23 20:03:12
191.232.191.238	attack	Sep 23 02:05:12 TORMINT sshd\[10804\]: Invalid user tee from 191.232.191.238 Sep 23 02:05:12 TORMINT sshd\[10804\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.232.191.238 Sep 23 02:05:15 TORMINT sshd\[10804\]: Failed password for invalid user tee from 191.232.191.238 port 44416 ssh2 ...	2019-09-23 20:06:36
111.26.161.8	attackspambots	Sep 22 23:18:19 ws19vmsma01 sshd[185111]: Failed password for root from 111.26.161.8 port 58584 ssh2 ...	2019-09-23 19:52:05
218.92.0.156	attack	Sep 23 09:26:44 dcd-gentoo sshd[2582]: User root from 218.92.0.156 not allowed because none of user's groups are listed in AllowGroups Sep 23 09:26:47 dcd-gentoo sshd[2582]: error: PAM: Authentication failure for illegal user root from 218.92.0.156 Sep 23 09:26:44 dcd-gentoo sshd[2582]: User root from 218.92.0.156 not allowed because none of user's groups are listed in AllowGroups Sep 23 09:26:47 dcd-gentoo sshd[2582]: error: PAM: Authentication failure for illegal user root from 218.92.0.156 Sep 23 09:26:44 dcd-gentoo sshd[2582]: User root from 218.92.0.156 not allowed because none of user's groups are listed in AllowGroups Sep 23 09:26:47 dcd-gentoo sshd[2582]: error: PAM: Authentication failure for illegal user root from 218.92.0.156 Sep 23 09:26:47 dcd-gentoo sshd[2582]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.156 port 45148 ssh2 ...	2019-09-23 19:53:33
118.140.251.106	attackbots	Sep 23 04:42:35 Tower sshd[34320]: Connection from 118.140.251.106 port 39024 on 192.168.10.220 port 22 Sep 23 04:42:37 Tower sshd[34320]: Invalid user ys from 118.140.251.106 port 39024 Sep 23 04:42:37 Tower sshd[34320]: error: Could not get shadow information for NOUSER Sep 23 04:42:37 Tower sshd[34320]: Failed password for invalid user ys from 118.140.251.106 port 39024 ssh2 Sep 23 04:42:37 Tower sshd[34320]: Received disconnect from 118.140.251.106 port 39024:11: Bye Bye [preauth] Sep 23 04:42:37 Tower sshd[34320]: Disconnected from invalid user ys 118.140.251.106 port 39024 [preauth]	2019-09-23 20:07:42
37.187.4.149	attack	Sep 22 20:58:15 friendsofhawaii sshd\[2104\]: Invalid user heng from 37.187.4.149 Sep 22 20:58:15 friendsofhawaii sshd\[2104\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3027327.ip-37-187-4.eu Sep 22 20:58:17 friendsofhawaii sshd\[2104\]: Failed password for invalid user heng from 37.187.4.149 port 37848 ssh2 Sep 22 21:02:44 friendsofhawaii sshd\[2452\]: Invalid user presta from 37.187.4.149 Sep 22 21:02:44 friendsofhawaii sshd\[2452\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3027327.ip-37-187-4.eu	2019-09-23 19:46:29
110.185.106.47	attack	Fail2Ban - SSH Bruteforce Attempt	2019-09-23 19:58:12
46.105.129.129	attackspam	Sep 23 06:00:27 ip-172-31-62-245 sshd\[20859\]: Invalid user vitalina from 46.105.129.129\ Sep 23 06:00:29 ip-172-31-62-245 sshd\[20859\]: Failed password for invalid user vitalina from 46.105.129.129 port 38879 ssh2\ Sep 23 06:04:19 ip-172-31-62-245 sshd\[20898\]: Invalid user ts3bot from 46.105.129.129\ Sep 23 06:04:21 ip-172-31-62-245 sshd\[20898\]: Failed password for invalid user ts3bot from 46.105.129.129 port 59174 ssh2\ Sep 23 06:08:08 ip-172-31-62-245 sshd\[20923\]: Invalid user Linux from 46.105.129.129\	2019-09-23 19:46:54
181.52.236.67	attackspam	Sep 23 13:49:21 dev0-dcfr-rnet sshd[23254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.52.236.67 Sep 23 13:49:24 dev0-dcfr-rnet sshd[23254]: Failed password for invalid user xiuno from 181.52.236.67 port 50702 ssh2 Sep 23 13:54:25 dev0-dcfr-rnet sshd[23279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.52.236.67	2019-09-23 19:54:57

最近上报的IP列表

66.21.184.8	99.89.120.223	44.78.110.107	238.4.119.35
51.5.213.117	189.141.181.156	164.63.175.187	111.206.222.168
163.130.105.95	209.88.244.114	120.38.169.59	81.101.53.151
63.66.104.207	128.244.226.219	203.206.128.137	41.242.139.11
2002:44b7:6cc1::44b7:6cc1	2.56.8.194	222.94.163.108	168.56.218.239