106.13.173.12 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH invalid-user multiple login try	2020-05-12 00:39:50
attackbotsspam	2020-05-05T01:49:30.0602951495-001 sshd[8495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.173.12 2020-05-05T01:49:30.0571851495-001 sshd[8495]: Invalid user austin from 106.13.173.12 port 53122 2020-05-05T01:49:31.7510581495-001 sshd[8495]: Failed password for invalid user austin from 106.13.173.12 port 53122 ssh2 2020-05-05T01:51:45.5432491495-001 sshd[8569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.173.12 user=root 2020-05-05T01:51:48.1021661495-001 sshd[8569]: Failed password for root from 106.13.173.12 port 48844 ssh2 2020-05-05T01:54:00.1734421495-001 sshd[8627]: Invalid user postgres from 106.13.173.12 port 44568 ...	2020-05-05 14:50:25
attackbotsspam	$f2bV_matches	2020-04-29 17:41:36
attack	SSH brute-force: detected 10 distinct usernames within a 24-hour window.	2020-04-21 18:18:16
attack	Invalid user R00T from 106.13.173.12 port 59298	2020-04-16 07:05:58
attackbots	2020-04-07T06:58:21.036424abusebot-2.cloudsearch.cf sshd[16912]: Invalid user ethos from 106.13.173.12 port 60678 2020-04-07T06:58:21.049424abusebot-2.cloudsearch.cf sshd[16912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.173.12 2020-04-07T06:58:21.036424abusebot-2.cloudsearch.cf sshd[16912]: Invalid user ethos from 106.13.173.12 port 60678 2020-04-07T06:58:22.162950abusebot-2.cloudsearch.cf sshd[16912]: Failed password for invalid user ethos from 106.13.173.12 port 60678 ssh2 2020-04-07T07:05:19.678833abusebot-2.cloudsearch.cf sshd[17278]: Invalid user upload from 106.13.173.12 port 39444 2020-04-07T07:05:19.687084abusebot-2.cloudsearch.cf sshd[17278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.173.12 2020-04-07T07:05:19.678833abusebot-2.cloudsearch.cf sshd[17278]: Invalid user upload from 106.13.173.12 port 39444 2020-04-07T07:05:21.517957abusebot-2.cloudsearch.cf sshd[17278]: Fail ...	2020-04-07 18:33:54

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.173.137	attack	$f2bV_matches	2020-09-26 02:18:43
106.13.173.137	attack	2020-09-25T00:11:30.506764yoshi.linuxbox.ninja sshd[3422970]: Invalid user irene from 106.13.173.137 port 50112 2020-09-25T00:11:32.973136yoshi.linuxbox.ninja sshd[3422970]: Failed password for invalid user irene from 106.13.173.137 port 50112 ssh2 2020-09-25T00:15:43.000665yoshi.linuxbox.ninja sshd[3425871]: Invalid user upload from 106.13.173.137 port 44166 ...	2020-09-25 18:01:53
106.13.173.137	attack	Sep 23 13:40:13 XXX sshd[38096]: Invalid user drcomadmin from 106.13.173.137 port 36570	2020-09-23 23:49:05
106.13.173.137	attack	Invalid user daniel from 106.13.173.137 port 54250	2020-09-23 15:59:32
106.13.173.137	attackspambots	Invalid user boss from 106.13.173.137 port 40320	2020-09-23 07:55:15
106.13.173.137	attackbotsspam	invalid login attempt (pramod)	2020-09-22 04:02:20
106.13.173.73	attackbots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-09-15 03:04:04
106.13.173.73	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-09-14 18:56:12
106.13.173.187	attack	Sep 8 07:14:14 root sshd[3855]: Failed password for root from 106.13.173.187 port 41222 ssh2 ...	2020-09-09 02:15:54
106.13.173.187	attackbotsspam	Sep 8 07:14:14 root sshd[3855]: Failed password for root from 106.13.173.187 port 41222 ssh2 ...	2020-09-08 17:45:26
106.13.173.137	attackbotsspam	Invalid user deploy from 106.13.173.137 port 50056	2020-08-30 12:25:01
106.13.173.73	attack	Repeated brute force against a port	2020-08-25 21:03:52
106.13.173.187	attackspam	Aug 24 15:16:32 buvik sshd[25680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.173.187 Aug 24 15:16:35 buvik sshd[25680]: Failed password for invalid user felipe from 106.13.173.187 port 49852 ssh2 Aug 24 15:23:53 buvik sshd[26563]: Invalid user tmp from 106.13.173.187 ...	2020-08-25 03:46:45
106.13.173.137	attackspam	Aug 21 13:52:21 localhost sshd[2286567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.173.137 user=root Aug 21 13:52:23 localhost sshd[2286567]: Failed password for root from 106.13.173.137 port 39694 ssh2 ...	2020-08-21 17:45:28
106.13.173.137	attackspam	Aug 19 18:38:20 vps46666688 sshd[23212]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.173.137 Aug 19 18:38:21 vps46666688 sshd[23212]: Failed password for invalid user xun from 106.13.173.137 port 48886 ssh2 ...	2020-08-20 05:42:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.173.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28224
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.173.12.			IN	A

;; AUTHORITY SECTION:
.			125	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040400 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 04 20:49:11 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 12.173.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 12.173.13.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
87.17.70.250	attack	Unauthorized connection attempt detected from IP address 87.17.70.250 to port 81	2020-06-13 08:23:50
109.134.113.102	attack	Jun 12 17:37:33 pi sshd[3452]: Failed password for pi from 109.134.113.102 port 52844 ssh2 Jun 12 17:37:34 pi sshd[3454]: Failed password for pi from 109.134.113.102 port 52848 ssh2	2020-06-13 07:54:37
82.58.58.7	attack	Unauthorized connection attempt detected from IP address 82.58.58.7 to port 23	2020-06-13 08:24:27
61.75.239.55	attackspambots	Unauthorized connection attempt detected from IP address 61.75.239.55 to port 81	2020-06-13 08:00:19
181.229.28.250	attack	port scan and connect, tcp 23 (telnet)	2020-06-13 08:12:55
36.154.17.94	attackspam	Unauthorized connection attempt detected from IP address 36.154.17.94 to port 5555	2020-06-13 08:03:54
70.71.243.196	attack	Unauthorized connection attempt detected from IP address 70.71.243.196 to port 8089	2020-06-13 07:59:02
79.166.48.179	attackbotsspam	Unauthorized connection attempt detected from IP address 79.166.48.179 to port 80	2020-06-13 08:25:33
118.81.119.21	attackbotsspam	TCP (SYN) 118.81.119.21:59907 -> port 23, len 44	2020-06-13 08:17:48
176.118.144.54	attackbotsspam	Unauthorized connection attempt detected from IP address 176.118.144.54 to port 80	2020-06-13 08:14:40
103.52.217.17	attackbotsspam	Unauthorized connection attempt detected from IP address 103.52.217.17 to port 2600	2020-06-13 08:21:30
181.114.238.203	attackspam	Unauthorized connection attempt detected from IP address 181.114.238.203 to port 8080	2020-06-13 08:13:21
201.171.190.254	attackbots	Unauthorized connection attempt detected from IP address 201.171.190.254 to port 23	2020-06-13 08:08:47
123.233.242.236	attackbots	Unauthorized connection attempt detected from IP address 123.233.242.236 to port 23	2020-06-13 07:48:31
82.62.19.216	attackspambots	Unauthorized connection attempt detected from IP address 82.62.19.216 to port 23	2020-06-13 07:57:12

最近上报的IP列表

111.241.193.49	46.185.214.92	122.114.88.206	68.183.228.99
23.108.50.55	195.24.67.186	7.202.89.235	82.125.248.222
196.68.35.36	30.224.244.70	207.253.193.218	156.248.207.230
100.228.135.129	159.189.194.165	215.145.128.145	105.62.250.26
31.255.131.149	23.108.50.22	117.220.253.17	31.156.22.183