106.13.147.6 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH login attempts with user root.	2019-11-30 06:52:47

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.147.89	attackspambots	sshd: Failed password for .... from 106.13.147.89 port 33094 ssh2	2020-10-08 00:24:45
106.13.147.89	attackspambots	ssh brute force	2020-10-07 16:32:24
106.13.147.89	attackspam	Sep 14 11:44:01 dev0-dcde-rnet sshd[11712]: Failed password for root from 106.13.147.89 port 34164 ssh2 Sep 14 11:44:29 dev0-dcde-rnet sshd[11718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.147.89 Sep 14 11:44:31 dev0-dcde-rnet sshd[11718]: Failed password for invalid user aclocal from 106.13.147.89 port 36372 ssh2	2020-09-14 19:21:34
106.13.147.89	attack	$f2bV_matches	2020-09-11 03:08:50
106.13.147.89	attackspam	$f2bV_matches	2020-09-10 18:37:17
106.13.147.89	attackbots	2020-08-12T16:33:47.9265661495-001 sshd[31570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.147.89 user=root 2020-08-12T16:33:49.3906211495-001 sshd[31570]: Failed password for root from 106.13.147.89 port 55540 ssh2 2020-08-12T16:37:39.9776391495-001 sshd[31818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.147.89 user=root 2020-08-12T16:37:41.9585791495-001 sshd[31818]: Failed password for root from 106.13.147.89 port 55572 ssh2 2020-08-12T16:41:35.8301761495-001 sshd[32082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.147.89 user=root 2020-08-12T16:41:38.2120881495-001 sshd[32082]: Failed password for root from 106.13.147.89 port 55598 ssh2 ...	2020-08-13 06:17:38
106.13.147.89	attackspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-12T03:54:27Z and 2020-08-12T04:04:08Z	2020-08-12 13:15:08
106.13.147.89	attackspam	web-1 [ssh] SSH Attack	2020-08-10 12:17:40
106.13.147.89	attackbots	Aug 7 05:53:52 ip106 sshd[24091]: Failed password for root from 106.13.147.89 port 53514 ssh2 ...	2020-08-07 12:47:19
106.13.147.89	attackbots	Jul 27 07:23:05 prox sshd[31199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.147.89 Jul 27 07:23:07 prox sshd[31199]: Failed password for invalid user ahmad from 106.13.147.89 port 43164 ssh2	2020-07-27 15:24:11
106.13.147.89	attackspambots	Jul 25 00:15:18 vmd36147 sshd[7853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.147.89 Jul 25 00:15:20 vmd36147 sshd[7853]: Failed password for invalid user mantis from 106.13.147.89 port 49356 ssh2 Jul 25 00:19:53 vmd36147 sshd[18145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.147.89 ...	2020-07-25 07:28:34
106.13.147.89	attack	Invalid user katya from 106.13.147.89 port 51138	2020-07-23 15:25:44
106.13.147.89	attackspambots	Jul 16 14:12:36 plex-server sshd[2062391]: Invalid user testuser from 106.13.147.89 port 58880 Jul 16 14:12:36 plex-server sshd[2062391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.147.89 Jul 16 14:12:36 plex-server sshd[2062391]: Invalid user testuser from 106.13.147.89 port 58880 Jul 16 14:12:38 plex-server sshd[2062391]: Failed password for invalid user testuser from 106.13.147.89 port 58880 ssh2 Jul 16 14:14:29 plex-server sshd[2063027]: Invalid user poster from 106.13.147.89 port 48604 ...	2020-07-16 22:43:40
106.13.147.89	attack	Jul 9 14:04:59 h2779839 sshd[31211]: Invalid user test from 106.13.147.89 port 38462 Jul 9 14:04:59 h2779839 sshd[31211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.147.89 Jul 9 14:04:59 h2779839 sshd[31211]: Invalid user test from 106.13.147.89 port 38462 Jul 9 14:05:01 h2779839 sshd[31211]: Failed password for invalid user test from 106.13.147.89 port 38462 ssh2 Jul 9 14:05:51 h2779839 sshd[31223]: Invalid user sascha from 106.13.147.89 port 47766 Jul 9 14:05:51 h2779839 sshd[31223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.147.89 Jul 9 14:05:51 h2779839 sshd[31223]: Invalid user sascha from 106.13.147.89 port 47766 Jul 9 14:05:54 h2779839 sshd[31223]: Failed password for invalid user sascha from 106.13.147.89 port 47766 ssh2 Jul 9 14:06:42 h2779839 sshd[31229]: Invalid user uclm from 106.13.147.89 port 57072 ...	2020-07-09 23:59:56
106.13.147.89	attackbots	Jul 1 03:18:36 minden010 sshd[28877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.147.89 Jul 1 03:18:37 minden010 sshd[28877]: Failed password for invalid user john from 106.13.147.89 port 42198 ssh2 Jul 1 03:21:54 minden010 sshd[30704]: Failed password for root from 106.13.147.89 port 33264 ssh2 ...	2020-07-02 09:18:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.147.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13531
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.147.6.			IN	A

;; AUTHORITY SECTION:
.			597	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112901 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 30 06:52:44 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 6.147.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 6.147.13.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
67.205.171.235	attack	Invalid user admin from 67.205.171.235 port 58874	2019-09-13 11:02:16
103.28.2.60	attack	Invalid user appuser from 103.28.2.60 port 50106	2019-09-13 11:30:12
115.29.3.34	attackbotsspam	Invalid user webadmin from 115.29.3.34 port 43550	2019-09-13 10:52:43
23.133.240.6	attack	goldgier-watches-purchase.com:80 23.133.240.6 - - \[13/Sep/2019:04:12:18 +0200\] "POST /xmlrpc.php HTTP/1.0" 301 525 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" goldgier-watches-purchase.com 23.133.240.6 \[13/Sep/2019:04:12:21 +0200\] "POST /xmlrpc.php HTTP/1.0" 302 3617 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-09-13 11:36:55
112.198.194.243	attackspam	Invalid user ts3bot from 112.198.194.243 port 56745	2019-09-13 10:53:11
46.182.106.190	attackspam	Invalid user zte from 46.182.106.190 port 33332	2019-09-13 11:34:45
116.132.22.78	attackspambots	Invalid user test from 116.132.22.78 port 53972	2019-09-13 10:52:09
49.231.68.58	attackspambots	Invalid user plex from 49.231.68.58 port 57083	2019-09-13 11:05:35
24.221.19.31	attackspam	Invalid user pi from 24.221.19.31 port 44932	2019-09-13 11:08:18
162.247.74.74	attack	Invalid user zte from 162.247.74.74 port 54436	2019-09-13 11:23:08
106.13.105.77	attackspambots	Invalid user deploy from 106.13.105.77 port 54488	2019-09-13 10:54:55
125.41.7.100	attack	Invalid user admin from 125.41.7.100 port 40551	2019-09-13 11:25:14
182.252.0.188	attackspam	Invalid user odoo from 182.252.0.188 port 57624	2019-09-13 11:18:56
117.0.35.153	attackspam	Invalid user admin from 117.0.35.153 port 50885	2019-09-13 10:51:31
185.34.33.2	attack	Invalid user zte from 185.34.33.2 port 40832	2019-09-13 11:17:41

最近上报的IP列表

111.253.205.156	103.73.183.1	68.15.246.4	103.70.61.1
233.119.2.28	218.205.203.114	117.72.208.42	103.66.16.1
119.157.144.162	31.1.63.187	176.31.131.255	158.214.139.170
227.59.11.146	120.132.27.181	103.58.248.1	103.56.113.6
103.27.238.2	103.229.83.1	103.206.102.1	103.129.221.6