106.13.138.162

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-13 07:50:30
attackspam	Jul 4 14:13:49 debian-2gb-nbg1-2 kernel: \[16123447.427878\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=106.13.138.162 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=10958 PROTO=TCP SPT=56704 DPT=14441 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-04 20:59:09
attackspambots	TCP (SYN) 106.13.138.162:59032 -> port 66, len 44	2020-06-02 04:48:48
attackspambots	SSH Brute Force	2020-04-29 13:00:17
attack	(sshd) Failed SSH login from 106.13.138.162 (CN/China/-): 5 in the last 3600 secs	2020-04-11 14:16:54
attackbots	SSH Brute-Force Attack	2020-04-09 16:57:58
attackbotsspam	Apr 8 14:49:41 ns392434 sshd[2006]: Invalid user vanessa from 106.13.138.162 port 45412 Apr 8 14:49:41 ns392434 sshd[2006]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 Apr 8 14:49:41 ns392434 sshd[2006]: Invalid user vanessa from 106.13.138.162 port 45412 Apr 8 14:49:43 ns392434 sshd[2006]: Failed password for invalid user vanessa from 106.13.138.162 port 45412 ssh2 Apr 8 14:54:22 ns392434 sshd[2152]: Invalid user sysadm from 106.13.138.162 port 34688 Apr 8 14:54:22 ns392434 sshd[2152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 Apr 8 14:54:22 ns392434 sshd[2152]: Invalid user sysadm from 106.13.138.162 port 34688 Apr 8 14:54:23 ns392434 sshd[2152]: Failed password for invalid user sysadm from 106.13.138.162 port 34688 ssh2 Apr 8 14:57:43 ns392434 sshd[2307]: Invalid user postgres from 106.13.138.162 port 42742	2020-04-08 22:40:29
attackbots	$f2bV_matches	2020-03-31 23:53:41
attack	Mar 29 17:46:50 gw1 sshd[13540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 Mar 29 17:46:52 gw1 sshd[13540]: Failed password for invalid user usi from 106.13.138.162 port 36754 ssh2 ...	2020-03-29 23:13:41
attackspambots	Mar 27 14:46:30 game-panel sshd[20652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 Mar 27 14:46:32 game-panel sshd[20652]: Failed password for invalid user lkq from 106.13.138.162 port 50932 ssh2 Mar 27 14:50:30 game-panel sshd[20787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162	2020-03-28 01:23:55
attackbots	Mar 21 05:39:47 XXX sshd[49497]: Invalid user server-pilotuser from 106.13.138.162 port 42980	2020-03-21 14:52:14
attack	Mar 8 05:55:47 prox sshd[16990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 Mar 8 05:55:48 prox sshd[16990]: Failed password for invalid user genedimen from 106.13.138.162 port 50324 ssh2	2020-03-08 15:44:29
attackspambots	suspicious action Tue, 03 Mar 2020 08:14:31 -0300	2020-03-03 20:25:54
attackspambots	2020-01-11T22:42:55.872942shield sshd\[14996\]: Invalid user serveur from 106.13.138.162 port 44362 2020-01-11T22:42:55.877121shield sshd\[14996\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 2020-01-11T22:42:57.623464shield sshd\[14996\]: Failed password for invalid user serveur from 106.13.138.162 port 44362 ssh2 2020-01-11T22:45:02.061914shield sshd\[15450\]: Invalid user 54321 from 106.13.138.162 port 35496 2020-01-11T22:45:02.065405shield sshd\[15450\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162	2020-01-12 07:13:25
attackbotsspam	Unauthorized connection attempt detected from IP address 106.13.138.162 to port 2220 [J]	2020-01-06 16:10:58
attackbots	Unauthorized connection attempt detected from IP address 106.13.138.162 to port 2220 [J]	2020-01-05 03:52:00
attack	Dec 27 16:25:01 markkoudstaal sshd[15911]: Failed password for root from 106.13.138.162 port 38870 ssh2 Dec 27 16:29:06 markkoudstaal sshd[16306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 Dec 27 16:29:08 markkoudstaal sshd[16306]: Failed password for invalid user applegate from 106.13.138.162 port 34348 ssh2	2019-12-27 23:44:16
attackspam	Dec 21 11:42:46 sd-53420 sshd\[23605\]: User root from 106.13.138.162 not allowed because none of user's groups are listed in AllowGroups Dec 21 11:42:46 sd-53420 sshd\[23605\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 user=root Dec 21 11:42:47 sd-53420 sshd\[23605\]: Failed password for invalid user root from 106.13.138.162 port 32910 ssh2 Dec 21 11:50:19 sd-53420 sshd\[26280\]: Invalid user subedah from 106.13.138.162 Dec 21 11:50:19 sd-53420 sshd\[26280\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 ...	2019-12-21 19:04:35
attackspambots	Dec 15 20:15:33 vibhu-HP-Z238-Microtower-Workstation sshd\[26097\]: Invalid user bot from 106.13.138.162 Dec 15 20:15:33 vibhu-HP-Z238-Microtower-Workstation sshd\[26097\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 Dec 15 20:15:34 vibhu-HP-Z238-Microtower-Workstation sshd\[26097\]: Failed password for invalid user bot from 106.13.138.162 port 42074 ssh2 Dec 15 20:24:24 vibhu-HP-Z238-Microtower-Workstation sshd\[26489\]: Invalid user MGR from 106.13.138.162 Dec 15 20:24:24 vibhu-HP-Z238-Microtower-Workstation sshd\[26489\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 ...	2019-12-15 23:06:11
attack	Dec 2 12:31:57 server sshd\[10269\]: Invalid user rpc from 106.13.138.162 Dec 2 12:31:57 server sshd\[10269\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 Dec 2 12:31:59 server sshd\[10269\]: Failed password for invalid user rpc from 106.13.138.162 port 37486 ssh2 Dec 2 12:40:37 server sshd\[13671\]: Invalid user gober from 106.13.138.162 Dec 2 12:40:37 server sshd\[13671\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 ...	2019-12-02 18:03:36
attack	Nov 24 07:21:34 root sshd[19309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 Nov 24 07:21:37 root sshd[19309]: Failed password for invalid user ola from 106.13.138.162 port 37366 ssh2 Nov 24 07:30:00 root sshd[19415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 ...	2019-11-24 14:42:19
attack	Nov 22 08:10:58 vps691689 sshd[12858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 Nov 22 08:11:00 vps691689 sshd[12858]: Failed password for invalid user treisman from 106.13.138.162 port 43758 ssh2 ...	2019-11-22 20:53:05
attackspambots	Oct 14 15:01:26 sauna sshd[187978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 Oct 14 15:01:28 sauna sshd[187978]: Failed password for invalid user Voiture_123 from 106.13.138.162 port 55096 ssh2 ...	2019-10-15 02:26:24
attackbots	Invalid user smboracle from 106.13.138.162 port 41122	2019-10-05 17:59:53
attack	Sep 29 13:43:35 plusreed sshd[32626]: Invalid user vppass from 106.13.138.162 ...	2019-09-30 01:57:02
attack	Sep 24 16:12:16 dedicated sshd[31145]: Invalid user manager from 106.13.138.162 port 33150	2019-09-25 02:05:27
attackspam	SSH Brute Force, server-1 sshd[6646]: Failed password for invalid user frappe from 106.13.138.162 port 33338 ssh2	2019-09-06 14:36:52
attack	Aug 31 17:49:26 eddieflores sshd\[25227\]: Invalid user octav from 106.13.138.162 Aug 31 17:49:26 eddieflores sshd\[25227\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 Aug 31 17:49:28 eddieflores sshd\[25227\]: Failed password for invalid user octav from 106.13.138.162 port 46660 ssh2 Aug 31 17:54:36 eddieflores sshd\[25705\]: Invalid user devhdfc from 106.13.138.162 Aug 31 17:54:36 eddieflores sshd\[25705\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162	2019-09-01 12:11:08
attackbotsspam	ssh failed login	2019-08-24 07:57:49
attack	Aug 8 06:49:11 mail sshd\[30809\]: Failed password for root from 106.13.138.162 port 40096 ssh2 Aug 8 07:07:02 mail sshd\[31033\]: Invalid user vhost from 106.13.138.162 port 33776 ...	2019-08-08 14:12:45

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.138.236	attackspambots	2020-05-27T22:38:46.616820lavrinenko.info sshd[7894]: Failed password for invalid user pgsql from 106.13.138.236 port 47760 ssh2 2020-05-27T22:40:54.937872lavrinenko.info sshd[7942]: Invalid user open from 106.13.138.236 port 51342 2020-05-27T22:40:54.944658lavrinenko.info sshd[7942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.236 2020-05-27T22:40:54.937872lavrinenko.info sshd[7942]: Invalid user open from 106.13.138.236 port 51342 2020-05-27T22:40:56.908189lavrinenko.info sshd[7942]: Failed password for invalid user open from 106.13.138.236 port 51342 ssh2 ...	2020-05-28 04:23:48
106.13.138.236	attackbotsspam	May 24 14:06:38 h1745522 sshd[20114]: Invalid user gb from 106.13.138.236 port 59368 May 24 14:06:38 h1745522 sshd[20114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.236 May 24 14:06:38 h1745522 sshd[20114]: Invalid user gb from 106.13.138.236 port 59368 May 24 14:06:40 h1745522 sshd[20114]: Failed password for invalid user gb from 106.13.138.236 port 59368 ssh2 May 24 14:08:57 h1745522 sshd[20157]: Invalid user liuqiuhua from 106.13.138.236 port 34714 May 24 14:08:57 h1745522 sshd[20157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.236 May 24 14:08:57 h1745522 sshd[20157]: Invalid user liuqiuhua from 106.13.138.236 port 34714 May 24 14:08:59 h1745522 sshd[20157]: Failed password for invalid user liuqiuhua from 106.13.138.236 port 34714 ssh2 May 24 14:11:27 h1745522 sshd[20413]: Invalid user wws from 106.13.138.236 port 38290 ...	2020-05-25 00:17:22
106.13.138.236	attackspam	Invalid user bwh from 106.13.138.236 port 60724	2020-05-22 16:59:05
106.13.138.236	attackspam	SSH Invalid Login	2020-05-21 05:48:21
106.13.138.236	attack	Apr 28 09:52:30 s158375 sshd[14880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.236	2020-04-29 02:02:07
106.13.138.236	attack	2020-04-25T06:00:27.742439vps751288.ovh.net sshd\[18497\]: Invalid user tanis from 106.13.138.236 port 47462 2020-04-25T06:00:27.752913vps751288.ovh.net sshd\[18497\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.236 2020-04-25T06:00:29.720683vps751288.ovh.net sshd\[18497\]: Failed password for invalid user tanis from 106.13.138.236 port 47462 ssh2 2020-04-25T06:06:13.801704vps751288.ovh.net sshd\[18565\]: Invalid user mario from 106.13.138.236 port 33972 2020-04-25T06:06:13.807174vps751288.ovh.net sshd\[18565\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.236	2020-04-25 12:32:09
106.13.138.236	attack	no	2020-04-18 17:25:00
106.13.138.3	attack	Apr 8 16:41:02 host01 sshd[22477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.3 Apr 8 16:41:04 host01 sshd[22477]: Failed password for invalid user sam from 106.13.138.3 port 53468 ssh2 Apr 8 16:47:04 host01 sshd[23525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.3 ...	2020-04-09 00:31:26
106.13.138.236	attackspam	$f2bV_matches	2020-04-05 14:17:08
106.13.138.3	attackbotsspam	Invalid user mxh from 106.13.138.3 port 58630	2020-04-03 15:24:42
106.13.138.236	attack	DATE:2020-04-03 02:01:50, IP:106.13.138.236, PORT:ssh SSH brute force auth (docker-dc)	2020-04-03 08:32:13
106.13.138.236	attackspambots	<6 unauthorized SSH connections	2020-04-01 17:05:12
106.13.138.3	attackspam	Mar 30 18:42:40 plex sshd[12354]: Failed password for invalid user ys from 106.13.138.3 port 35284 ssh2 Mar 30 18:46:35 plex sshd[12447]: Invalid user ys from 106.13.138.3 port 53722 Mar 30 18:46:35 plex sshd[12447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.3 Mar 30 18:46:35 plex sshd[12447]: Invalid user ys from 106.13.138.3 port 53722 Mar 30 18:46:37 plex sshd[12447]: Failed password for invalid user ys from 106.13.138.3 port 53722 ssh2	2020-03-31 00:48:33
106.13.138.3	attack	Mar 28 23:02:52 eventyay sshd[22002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.3 Mar 28 23:02:54 eventyay sshd[22002]: Failed password for invalid user wqd from 106.13.138.3 port 41602 ssh2 Mar 28 23:06:18 eventyay sshd[22143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.3 ...	2020-03-29 06:22:56
106.13.138.3	attack	DATE:2020-03-04 01:36:03, IP:106.13.138.3, PORT:ssh SSH brute force auth (docker-dc)	2020-03-04 09:40:32

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.138.162
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2605
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.138.162.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072500 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 25 18:27:24 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 162.138.13.106.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 162.138.13.106.in-addr.arpa: SERVFAIL

IP	类型	评论内容	时间
206.189.136.160	attackspam	Jul 12 05:11:00 icinga sshd[25874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.136.160 Jul 12 05:11:03 icinga sshd[25874]: Failed password for invalid user earl from 206.189.136.160 port 54618 ssh2 ...	2019-07-12 12:21:03
142.93.59.240	attackspambots	Invalid user cyrus from 142.93.59.240 port 41788	2019-07-12 12:22:39
200.118.57.2	attack	Jul 12 06:09:31 tux-35-217 sshd\[31320\]: Invalid user soporte from 200.118.57.2 port 57502 Jul 12 06:09:31 tux-35-217 sshd\[31320\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.118.57.2 Jul 12 06:09:34 tux-35-217 sshd\[31320\]: Failed password for invalid user soporte from 200.118.57.2 port 57502 ssh2 Jul 12 06:17:19 tux-35-217 sshd\[31412\]: Invalid user lab from 200.118.57.2 port 58125 Jul 12 06:17:19 tux-35-217 sshd\[31412\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.118.57.2 ...	2019-07-12 12:21:36
74.208.27.191	attackbots	Jul 12 06:04:22 srv-4 sshd\[32570\]: Invalid user openhabian from 74.208.27.191 Jul 12 06:04:22 srv-4 sshd\[32570\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.208.27.191 Jul 12 06:04:24 srv-4 sshd\[32570\]: Failed password for invalid user openhabian from 74.208.27.191 port 42144 ssh2 ...	2019-07-12 12:17:58
189.189.42.100	attack	Honeypot attack, port: 23, PTR: dsl-189-189-42-100-dyn.prod-infinitum.com.mx.	2019-07-12 11:37:32
36.89.209.22	attackspam	Jul 12 05:23:29 mail sshd\[20270\]: Invalid user karleigh from 36.89.209.22 Jul 12 05:23:29 mail sshd\[20270\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.209.22 Jul 12 05:23:31 mail sshd\[20270\]: Failed password for invalid user karleigh from 36.89.209.22 port 56554 ssh2 ...	2019-07-12 11:50:14
159.65.81.187	attackbots	Jul 12 05:49:04 dev sshd\[27160\]: Invalid user okilab from 159.65.81.187 port 42416 Jul 12 05:49:04 dev sshd\[27160\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.81.187 ...	2019-07-12 11:56:33
188.166.72.240	attackspambots	IP attempted unauthorised action	2019-07-12 11:53:12
67.207.86.74	attackspambots	TCP port 23 (Telnet) attempt blocked by firewall. [2019-07-12 02:00:18]	2019-07-12 12:18:17
114.69.244.66	attackspam	Spamassassin_114.69.244.66	2019-07-12 11:33:20
83.194.15.206	attack	Invalid user admin from 83.194.15.206 port 46654	2019-07-12 11:47:12
141.98.81.81	attackbots	2019-07-11 UTC: 1x - admin	2019-07-12 11:58:31
14.187.38.183	attackbotsspam	Invalid user admin from 14.187.38.183 port 50571	2019-07-12 11:50:52
77.45.85.89	attackspambots	SMTP-sasl brute force ...	2019-07-12 12:34:09
52.229.21.220	attack	2019-07-12T02:21:05.905498abusebot-4.cloudsearch.cf sshd\[30789\]: Invalid user rose from 52.229.21.220 port 36320	2019-07-12 11:48:58

最近上报的IP列表

88.23.100.148	36.110.118.72	46.176.33.69	125.41.5.137
114.164.221.46	122.152.250.168	62.61.165.177	111.251.28.55
36.66.114.127	191.19.77.71	111.35.168.248	62.20.131.170
202.191.67.3	201.25.218.93	128.131.113.100	176.31.115.195
113.120.185.96	93.241.44.170	239.74.118.81	112.163.173.160