106.13.140.237

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Nov 28 19:04:33 sd-53420 sshd\[20995\]: Invalid user nastari from 106.13.140.237 Nov 28 19:04:33 sd-53420 sshd\[20995\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.237 Nov 28 19:04:35 sd-53420 sshd\[20995\]: Failed password for invalid user nastari from 106.13.140.237 port 34918 ssh2 Nov 28 19:10:50 sd-53420 sshd\[22370\]: Invalid user home from 106.13.140.237 Nov 28 19:10:50 sd-53420 sshd\[22370\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.237 ...	2019-11-29 04:40:05

类型

评论内容

时间

attackbotsspam

Nov 28 19:04:33 sd-53420 sshd\[20995\]: Invalid user nastari from 106.13.140.237
Nov 28 19:04:33 sd-53420 sshd\[20995\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.237
Nov 28 19:04:35 sd-53420 sshd\[20995\]: Failed password for invalid user nastari from 106.13.140.237 port 34918 ssh2
Nov 28 19:10:50 sd-53420 sshd\[22370\]: Invalid user home from 106.13.140.237
Nov 28 19:10:50 sd-53420 sshd\[22370\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.237
...

2019-11-29 04:40:05

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.140.33	attackspam	Aug 26 11:16:22 abendstille sshd\[8819\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.33 user=root Aug 26 11:16:25 abendstille sshd\[8819\]: Failed password for root from 106.13.140.33 port 33908 ssh2 Aug 26 11:19:57 abendstille sshd\[12929\]: Invalid user trs from 106.13.140.33 Aug 26 11:19:57 abendstille sshd\[12929\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.33 Aug 26 11:19:58 abendstille sshd\[12929\]: Failed password for invalid user trs from 106.13.140.33 port 46722 ssh2 ...	2020-08-26 17:24:41
106.13.140.138	attack	Aug 13 13:20:31 gospond sshd[28698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.138 Aug 13 13:20:31 gospond sshd[28698]: Invalid user guest111 from 106.13.140.138 port 35214 Aug 13 13:20:33 gospond sshd[28698]: Failed password for invalid user guest111 from 106.13.140.138 port 35214 ssh2 ...	2020-08-13 20:49:54
106.13.140.33	attackspam	Aug 12 14:38:42 vmd36147 sshd[24804]: Failed password for root from 106.13.140.33 port 39560 ssh2 Aug 12 14:43:37 vmd36147 sshd[3305]: Failed password for root from 106.13.140.33 port 33568 ssh2 ...	2020-08-12 21:14:52
106.13.140.33	attackbotsspam	Aug 10 13:29:02 game-panel sshd[20582]: Failed password for root from 106.13.140.33 port 43066 ssh2 Aug 10 13:32:41 game-panel sshd[20718]: Failed password for root from 106.13.140.33 port 49052 ssh2	2020-08-10 23:06:53
106.13.140.200	attack	firewall-block, port(s): 1425/tcp	2020-07-31 04:06:32
106.13.140.33	attack	Jul 23 20:01:48 web1 sshd\[2060\]: Invalid user test from 106.13.140.33 Jul 23 20:01:48 web1 sshd\[2060\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.33 Jul 23 20:01:50 web1 sshd\[2060\]: Failed password for invalid user test from 106.13.140.33 port 38844 ssh2 Jul 23 20:05:57 web1 sshd\[2430\]: Invalid user ts3server from 106.13.140.33 Jul 23 20:05:57 web1 sshd\[2430\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.33	2020-07-24 16:23:54
106.13.140.33	attack	$f2bV_matches	2020-07-15 09:08:43
106.13.140.33	attack	Jul 12 00:11:14 server1 sshd\[7062\]: Invalid user policy from 106.13.140.33 Jul 12 00:11:14 server1 sshd\[7062\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.33 Jul 12 00:11:16 server1 sshd\[7062\]: Failed password for invalid user policy from 106.13.140.33 port 45038 ssh2 Jul 12 00:14:32 server1 sshd\[8009\]: Invalid user dan from 106.13.140.33 Jul 12 00:14:32 server1 sshd\[8009\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.33 ...	2020-07-12 14:25:38
106.13.140.200	attackspam	Unauthorized connection attempt detected from IP address 106.13.140.200 to port 3996	2020-07-09 05:01:15
106.13.140.200	attackbots	Jul 8 00:27:22 onepixel sshd[97234]: Invalid user mike from 106.13.140.200 port 49924 Jul 8 00:27:22 onepixel sshd[97234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.200 Jul 8 00:27:22 onepixel sshd[97234]: Invalid user mike from 106.13.140.200 port 49924 Jul 8 00:27:24 onepixel sshd[97234]: Failed password for invalid user mike from 106.13.140.200 port 49924 ssh2 Jul 8 00:33:13 onepixel sshd[100018]: Invalid user lcd from 106.13.140.200 port 56016	2020-07-08 11:28:50
106.13.140.83	attack	Failed password for invalid user montse from 106.13.140.83 port 53072 ssh2	2020-07-06 01:14:33
106.13.140.83	attackspam	Invalid user baum from 106.13.140.83 port 43214	2020-06-28 14:50:08
106.13.140.33	attack	Jun 13 22:42:26 askasleikir sshd[29906]: Failed password for invalid user Administrator from 106.13.140.33 port 40856 ssh2 Jun 13 22:26:27 askasleikir sshd[29873]: Failed password for invalid user oscar from 106.13.140.33 port 43878 ssh2 Jun 13 22:36:49 askasleikir sshd[29895]: Failed password for invalid user golf from 106.13.140.33 port 51232 ssh2	2020-06-14 20:52:13
106.13.140.200	attackspambots	Invalid user Administrator from 106.13.140.200 port 35714	2020-06-13 20:07:24
106.13.140.200	attackbots	Jun 9 20:15:52 django-0 sshd\[6369\]: Invalid user yjj from 106.13.140.200Jun 9 20:15:53 django-0 sshd\[6369\]: Failed password for invalid user yjj from 106.13.140.200 port 46486 ssh2Jun 9 20:25:11 django-0 sshd\[6572\]: Invalid user kshitiz from 106.13.140.200 ...	2020-06-10 06:37:43

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.140.237
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33508
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.140.237.			IN	A

;; AUTHORITY SECTION:
.			403	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112802 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 29 04:40:02 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 237.140.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 237.140.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
169.197.112.102	attackbotsspam	Oct 9 13:36:17 rotator sshd\[25631\]: Failed password for root from 169.197.112.102 port 39078 ssh2Oct 9 13:36:20 rotator sshd\[25631\]: Failed password for root from 169.197.112.102 port 39078 ssh2Oct 9 13:36:22 rotator sshd\[25631\]: Failed password for root from 169.197.112.102 port 39078 ssh2Oct 9 13:36:24 rotator sshd\[25631\]: Failed password for root from 169.197.112.102 port 39078 ssh2Oct 9 13:36:27 rotator sshd\[25631\]: Failed password for root from 169.197.112.102 port 39078 ssh2Oct 9 13:36:30 rotator sshd\[25631\]: Failed password for root from 169.197.112.102 port 39078 ssh2 ...	2019-10-09 23:07:54
122.224.203.228	attackbots	Oct 9 08:49:01 Tower sshd[18200]: Connection from 122.224.203.228 port 48586 on 192.168.10.220 port 22 Oct 9 08:49:03 Tower sshd[18200]: Failed password for root from 122.224.203.228 port 48586 ssh2 Oct 9 08:49:03 Tower sshd[18200]: Received disconnect from 122.224.203.228 port 48586:11: Bye Bye [preauth] Oct 9 08:49:03 Tower sshd[18200]: Disconnected from authenticating user root 122.224.203.228 port 48586 [preauth]	2019-10-09 23:31:48
188.173.80.134	attackspam	Oct 9 07:28:05 xtremcommunity sshd\[343629\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.173.80.134 user=root Oct 9 07:28:07 xtremcommunity sshd\[343629\]: Failed password for root from 188.173.80.134 port 55418 ssh2 Oct 9 07:32:24 xtremcommunity sshd\[343709\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.173.80.134 user=root Oct 9 07:32:26 xtremcommunity sshd\[343709\]: Failed password for root from 188.173.80.134 port 46880 ssh2 Oct 9 07:36:38 xtremcommunity sshd\[343812\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.173.80.134 user=root ...	2019-10-09 23:05:13
218.58.251.82	attackbots	Unauthorised access (Oct 9) SRC=218.58.251.82 LEN=40 TTL=49 ID=13016 TCP DPT=8080 WINDOW=23515 SYN Unauthorised access (Oct 8) SRC=218.58.251.82 LEN=40 TTL=49 ID=47734 TCP DPT=8080 WINDOW=56222 SYN Unauthorised access (Oct 8) SRC=218.58.251.82 LEN=40 TTL=49 ID=36248 TCP DPT=8080 WINDOW=35082 SYN	2019-10-09 23:09:08
122.166.204.79	attackbots	DATE:2019-10-09 13:35:34, IP:122.166.204.79, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2019-10-09 23:32:35
190.214.76.3	attackbotsspam	Oct 9 13:36:34 ns341937 sshd[6384]: Failed password for root from 190.214.76.3 port 52310 ssh2 Oct 9 13:36:37 ns341937 sshd[6384]: Failed password for root from 190.214.76.3 port 52310 ssh2 Oct 9 13:36:39 ns341937 sshd[6384]: Failed password for root from 190.214.76.3 port 52310 ssh2 Oct 9 13:36:42 ns341937 sshd[6384]: Failed password for root from 190.214.76.3 port 52310 ssh2 ...	2019-10-09 23:03:16
103.101.52.48	attackbotsspam	Oct 9 19:44:12 gw1 sshd[2318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.101.52.48 Oct 9 19:44:13 gw1 sshd[2318]: Failed password for invalid user ftpuser from 103.101.52.48 port 42974 ssh2 ...	2019-10-09 23:22:34
177.152.187.218	attackbotsspam	SPF Fail sender not permitted to send mail for @brdigital.net.br / Sent mail to target address hacked/leaked from abandonia in 2016	2019-10-09 23:37:59
180.119.141.123	attack	SASL broute force	2019-10-09 23:17:21
190.221.50.90	attackbots	2019-10-09T15:18:18.099502tmaserv sshd\[20873\]: Failed password for root from 190.221.50.90 port 1193 ssh2 2019-10-09T15:29:08.011098tmaserv sshd\[21519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.221.50.90 user=root 2019-10-09T15:29:09.351987tmaserv sshd\[21519\]: Failed password for root from 190.221.50.90 port 22045 ssh2 2019-10-09T15:34:31.217612tmaserv sshd\[21769\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.221.50.90 user=root 2019-10-09T15:34:33.034994tmaserv sshd\[21769\]: Failed password for root from 190.221.50.90 port 61859 ssh2 2019-10-09T15:39:57.423081tmaserv sshd\[22117\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.221.50.90 user=root ...	2019-10-09 23:24:35
106.12.82.84	attackspam	2019-10-09T13:50:54.429639hub.schaetter.us sshd\[28210\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.82.84 user=root 2019-10-09T13:50:56.749229hub.schaetter.us sshd\[28210\]: Failed password for root from 106.12.82.84 port 33474 ssh2 2019-10-09T13:55:48.816264hub.schaetter.us sshd\[28257\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.82.84 user=root 2019-10-09T13:55:50.162453hub.schaetter.us sshd\[28257\]: Failed password for root from 106.12.82.84 port 38008 ssh2 2019-10-09T14:00:42.430168hub.schaetter.us sshd\[28312\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.82.84 user=root ...	2019-10-09 23:02:56
119.90.98.82	attackbotsspam	Oct 9 16:56:48 jane sshd[3185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.90.98.82 Oct 9 16:56:51 jane sshd[3185]: Failed password for invalid user Parola111 from 119.90.98.82 port 58217 ssh2 ...	2019-10-09 23:15:11
157.230.119.200	attackbotsspam	Oct 9 03:39:39 friendsofhawaii sshd\[8545\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.119.200 user=root Oct 9 03:39:41 friendsofhawaii sshd\[8545\]: Failed password for root from 157.230.119.200 port 42038 ssh2 Oct 9 03:43:13 friendsofhawaii sshd\[8836\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.119.200 user=root Oct 9 03:43:15 friendsofhawaii sshd\[8836\]: Failed password for root from 157.230.119.200 port 52758 ssh2 Oct 9 03:46:53 friendsofhawaii sshd\[9130\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.119.200 user=root	2019-10-09 23:27:02
46.105.30.20	attackspambots	Oct 9 14:00:30 marvibiene sshd[20766]: Invalid user ubuntu from 46.105.30.20 port 49248 Oct 9 14:00:30 marvibiene sshd[20766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.30.20 Oct 9 14:00:30 marvibiene sshd[20766]: Invalid user ubuntu from 46.105.30.20 port 49248 Oct 9 14:00:32 marvibiene sshd[20766]: Failed password for invalid user ubuntu from 46.105.30.20 port 49248 ssh2 ...	2019-10-09 23:11:48
2.139.215.255	attackbots	ssh bruteforce or scan ...	2019-10-09 22:54:34

最近上报的IP列表

17.192.9.47	214.136.170.236	224.88.23.42	113.227.77.161
123.24.189.231	10.185.170.235	124.63.125.76	209.239.69.104
129.23.60.147	59.169.22.172	40.200.40.86	131.175.175.17
230.161.223.21	203.99.123.25	23.218.168.151	21.125.144.254
29.67.239.150	119.164.193.17	216.92.254.250	74.201.229.239