106.13.14.198 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Nov 25 07:30:11 django sshd[49156]: Invalid user backup from 106.13.14.198 Nov 25 07:30:11 django sshd[49156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 Nov 25 07:30:13 django sshd[49156]: Failed password for invalid user backup from 106.13.14.198 port 53170 ssh2 Nov 25 07:30:13 django sshd[49157]: Received disconnect from 106.13.14.198: 11: Bye Bye Nov 25 07:58:08 django sshd[50544]: Invalid user pease from 106.13.14.198 Nov 25 07:58:08 django sshd[50544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 Nov 25 07:58:10 django sshd[50544]: Failed password for invalid user pease from 106.13.14.198 port 45206 ssh2 Nov 25 07:58:10 django sshd[50545]: Received disconnect from 106.13.14.198: 11: Bye Bye Nov 25 08:05:42 django sshd[50867]: Invalid user phil from 106.13.14.198 Nov 25 08:05:42 django sshd[50867]: pam_unix(sshd:auth): authentication failure; lognam........ -------------------------------	2019-11-25 18:20:37
attackspambots	2019-11-24T15:40:56.307177shield sshd\[30160\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 user=root 2019-11-24T15:40:58.197578shield sshd\[30160\]: Failed password for root from 106.13.14.198 port 41418 ssh2 2019-11-24T15:50:05.416603shield sshd\[1158\]: Invalid user gq from 106.13.14.198 port 46674 2019-11-24T15:50:05.421077shield sshd\[1158\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 2019-11-24T15:50:07.679180shield sshd\[1158\]: Failed password for invalid user gq from 106.13.14.198 port 46674 ssh2	2019-11-24 23:51:07
attackspambots	Nov 23 07:25:48 legacy sshd[26983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 Nov 23 07:25:50 legacy sshd[26983]: Failed password for invalid user be from 106.13.14.198 port 44834 ssh2 Nov 23 07:30:33 legacy sshd[27080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 ...	2019-11-23 14:49:11
attackbots	Nov 23 06:27:50 legacy sshd[25340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 Nov 23 06:27:52 legacy sshd[25340]: Failed password for invalid user tripleX from 106.13.14.198 port 33514 ssh2 Nov 23 06:32:39 legacy sshd[25499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 ...	2019-11-23 13:47:24
attackspambots	Nov 12 14:26:52 webhost01 sshd[29347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 Nov 12 14:26:54 webhost01 sshd[29347]: Failed password for invalid user marketing123 from 106.13.14.198 port 33348 ssh2 ...	2019-11-12 19:45:49
attackspam	Nov 10 11:20:15 vps01 sshd[24122]: Failed password for root from 106.13.14.198 port 57284 ssh2	2019-11-10 18:41:11
attackspambots	Nov 10 00:28:02 vtv3 sshd\[26635\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 user=root Nov 10 00:28:04 vtv3 sshd\[26635\]: Failed password for root from 106.13.14.198 port 49654 ssh2 Nov 10 00:32:13 vtv3 sshd\[29218\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 user=root Nov 10 00:32:15 vtv3 sshd\[29218\]: Failed password for root from 106.13.14.198 port 58528 ssh2 Nov 10 00:36:29 vtv3 sshd\[32075\]: Invalid user aigneis from 106.13.14.198 port 39176 Nov 10 00:36:29 vtv3 sshd\[32075\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 Nov 10 00:49:03 vtv3 sshd\[7173\]: Invalid user sinusbot from 106.13.14.198 port 37568 Nov 10 00:49:03 vtv3 sshd\[7173\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 Nov 10 00:49:05 vtv3 sshd\[7173\]: Failed password for invalid user sinus	2019-11-10 07:38:28
attackbotsspam	Automatic report - Banned IP Access	2019-11-04 00:23:08

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.144.207	attack	Oct 11 17:56:59 firewall sshd[26023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207 user=root Oct 11 17:57:01 firewall sshd[26023]: Failed password for root from 106.13.144.207 port 43918 ssh2 Oct 11 17:59:14 firewall sshd[26065]: Invalid user deployer from 106.13.144.207 ...	2020-10-12 05:58:47
106.13.144.207	attack	"fail2ban match"	2020-10-11 22:06:34
106.13.144.207	attackbotsspam	"fail2ban match"	2020-10-11 14:04:12
106.13.144.207	attackbots	detected by Fail2Ban	2020-10-11 07:26:02
106.13.147.89	attackspambots	sshd: Failed password for .... from 106.13.147.89 port 33094 ssh2	2020-10-08 00:24:45
106.13.147.89	attackspambots	ssh brute force	2020-10-07 16:32:24
106.13.141.110	attackspam	2 SSH login attempts.	2020-10-07 04:24:41
106.13.141.110	attack	Brute%20Force%20SSH	2020-10-06 20:28:50
106.13.141.110	attackspambots	Oct 6 04:21:19 ns382633 sshd\[2901\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.141.110 user=root Oct 6 04:21:21 ns382633 sshd\[2901\]: Failed password for root from 106.13.141.110 port 54932 ssh2 Oct 6 04:30:01 ns382633 sshd\[3929\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.141.110 user=root Oct 6 04:30:03 ns382633 sshd\[3929\]: Failed password for root from 106.13.141.110 port 57220 ssh2 Oct 6 04:34:07 ns382633 sshd\[4448\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.141.110 user=root	2020-10-06 12:08:48
106.13.142.93	attack	Oct 4 02:51:03 server sshd[11146]: Failed password for root from 106.13.142.93 port 32940 ssh2 Oct 4 02:53:52 server sshd[12520]: Failed password for root from 106.13.142.93 port 46996 ssh2 Oct 4 02:56:41 server sshd[14046]: Failed password for invalid user test from 106.13.142.93 port 32842 ssh2	2020-10-04 09:04:37
106.13.142.93	attack	3x Failed Password	2020-10-04 01:40:47
106.13.142.93	attack	Oct 2 23:03:18 OPSO sshd\[13574\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.142.93 user=root Oct 2 23:03:20 OPSO sshd\[13574\]: Failed password for root from 106.13.142.93 port 35102 ssh2 Oct 2 23:07:12 OPSO sshd\[14255\]: Invalid user oliver from 106.13.142.93 port 36792 Oct 2 23:07:12 OPSO sshd\[14255\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.142.93 Oct 2 23:07:14 OPSO sshd\[14255\]: Failed password for invalid user oliver from 106.13.142.93 port 36792 ssh2	2020-10-03 17:26:26
106.13.146.233	attack	SSH Invalid Login	2020-09-30 09:27:30
106.13.146.233	attackspam	frenzy	2020-09-29 18:20:53
106.13.147.89	attackspam	Sep 14 11:44:01 dev0-dcde-rnet sshd[11712]: Failed password for root from 106.13.147.89 port 34164 ssh2 Sep 14 11:44:29 dev0-dcde-rnet sshd[11718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.147.89 Sep 14 11:44:31 dev0-dcde-rnet sshd[11718]: Failed password for invalid user aclocal from 106.13.147.89 port 36372 ssh2	2020-09-14 19:21:34

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.14.198
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57290
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.14.198.			IN	A

;; AUTHORITY SECTION:
.			585	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110300 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 04 00:23:04 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 198.14.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 198.14.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
194.61.24.46	attack	21 attempts against mh-misbehave-ban on oak.magehost.pro	2019-09-09 05:29:17
213.32.105.167	attackbotsspam	Sep 8 11:03:52 lcprod sshd\[16757\]: Invalid user oracle from 213.32.105.167 Sep 8 11:03:52 lcprod sshd\[16757\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.105.167 Sep 8 11:03:54 lcprod sshd\[16757\]: Failed password for invalid user oracle from 213.32.105.167 port 59400 ssh2 Sep 8 11:08:59 lcprod sshd\[17319\]: Invalid user temp from 213.32.105.167 Sep 8 11:08:59 lcprod sshd\[17319\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.105.167	2019-09-09 05:11:20
222.73.36.73	attackbots	Sep 8 23:34:56 MK-Soft-Root1 sshd\[16652\]: Invalid user ftpuser from 222.73.36.73 port 40314 Sep 8 23:34:56 MK-Soft-Root1 sshd\[16652\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.73.36.73 Sep 8 23:34:58 MK-Soft-Root1 sshd\[16652\]: Failed password for invalid user ftpuser from 222.73.36.73 port 40314 ssh2 ...	2019-09-09 05:43:17
181.23.178.203	attackbotsspam	Honeypot attack, port: 23, PTR: 181-23-178-203.speedy.com.ar.	2019-09-09 05:23:38
94.191.59.106	attackbotsspam	Sep 8 21:27:59 localhost sshd\[95807\]: Invalid user admin321 from 94.191.59.106 port 32828 Sep 8 21:27:59 localhost sshd\[95807\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.59.106 Sep 8 21:28:01 localhost sshd\[95807\]: Failed password for invalid user admin321 from 94.191.59.106 port 32828 ssh2 Sep 8 21:30:48 localhost sshd\[95889\]: Invalid user 12345 from 94.191.59.106 port 57872 Sep 8 21:30:48 localhost sshd\[95889\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.59.106 ...	2019-09-09 05:46:37
218.92.0.167	attack	Triggered by Fail2Ban at Ares web server	2019-09-09 05:40:39
95.243.136.198	attack	Sep 8 22:42:44 minden010 sshd[21413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.243.136.198 Sep 8 22:42:47 minden010 sshd[21413]: Failed password for invalid user bot from 95.243.136.198 port 55021 ssh2 Sep 8 22:48:44 minden010 sshd[23366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.243.136.198 ...	2019-09-09 05:15:06
112.85.42.179	attack	Sep 8 23:26:41 root sshd[29853]: Failed password for root from 112.85.42.179 port 50924 ssh2 Sep 8 23:26:44 root sshd[29853]: Failed password for root from 112.85.42.179 port 50924 ssh2 Sep 8 23:26:47 root sshd[29853]: Failed password for root from 112.85.42.179 port 50924 ssh2 Sep 8 23:26:51 root sshd[29853]: Failed password for root from 112.85.42.179 port 50924 ssh2 ...	2019-09-09 05:38:54
116.122.36.95	attackspam	Unauthorized connection attempt from IP address 116.122.36.95 on Port 445(SMB)	2019-09-09 05:20:16
197.162.69.126	attackbotsspam	Unauthorized connection attempt from IP address 197.162.69.126 on Port 445(SMB)	2019-09-09 05:45:47
185.216.140.252	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-09-09 05:26:11
211.201.156.105	attackbots	Honeypot attack, port: 5555, PTR: PTR record not found	2019-09-09 05:25:54
144.217.248.6	attackbotsspam	SMB Server BruteForce Attack	2019-09-09 05:16:30
103.207.2.204	attackbotsspam	Sep 8 23:14:39 dedicated sshd[16238]: Invalid user minecraft from 103.207.2.204 port 56428	2019-09-09 05:33:38
70.132.61.87	attack	Automatic report generated by Wazuh	2019-09-09 05:09:09

最近上报的IP列表

207.196.178.91	180.241.247.21	71.52.236.39	34.12.101.74
122.50.129.90	131.74.17.210	173.211.210.241	2.26.132.114
155.69.183.4	32.24.243.239	181.47.85.25	50.154.50.112
8.182.200.223	167.14.99.89	51.62.58.201	48.108.159.72
32.20.12.233	192.112.59.216	88.159.172.184	191.116.5.192