106.13.187.114

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH Brute Force	2020-04-29 12:59:53
attack	Apr 9 05:23:30 webhost01 sshd[6632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114 Apr 9 05:23:33 webhost01 sshd[6632]: Failed password for invalid user research from 106.13.187.114 port 42664 ssh2 ...	2020-04-09 06:26:30
attackspambots	Apr 7 03:23:36 silence02 sshd[6249]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114 Apr 7 03:23:38 silence02 sshd[6249]: Failed password for invalid user oneadmin from 106.13.187.114 port 40372 ssh2 Apr 7 03:27:41 silence02 sshd[6577]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114	2020-04-07 10:03:19
attackspam	2020-03-28T15:37:05.728872linuxbox-skyline sshd[49393]: Invalid user hng from 106.13.187.114 port 52032 ...	2020-03-29 06:00:41
attackbots	2020-03-27T15:31:10.381539ionos.janbro.de sshd[394]: Invalid user pff from 106.13.187.114 port 43524 2020-03-27T15:31:11.985687ionos.janbro.de sshd[394]: Failed password for invalid user pff from 106.13.187.114 port 43524 ssh2 2020-03-27T15:34:53.474361ionos.janbro.de sshd[425]: Invalid user jpu from 106.13.187.114 port 33284 2020-03-27T15:34:53.639454ionos.janbro.de sshd[425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114 2020-03-27T15:34:53.474361ionos.janbro.de sshd[425]: Invalid user jpu from 106.13.187.114 port 33284 2020-03-27T15:34:55.728813ionos.janbro.de sshd[425]: Failed password for invalid user jpu from 106.13.187.114 port 33284 ssh2 2020-03-27T15:38:20.927944ionos.janbro.de sshd[498]: Invalid user ojm from 106.13.187.114 port 51280 2020-03-27T15:38:21.113214ionos.janbro.de sshd[498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114 2020-03-27T15:38:20.927944ionos. ...	2020-03-28 01:05:16
attack	Mar 26 00:02:20 server sshd\[4802\]: Failed password for invalid user media from 106.13.187.114 port 50154 ssh2 Mar 26 09:12:17 server sshd\[16541\]: Invalid user card from 106.13.187.114 Mar 26 09:12:17 server sshd\[16541\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114 Mar 26 09:12:19 server sshd\[16541\]: Failed password for invalid user card from 106.13.187.114 port 53328 ssh2 Mar 26 09:24:02 server sshd\[19232\]: Invalid user hila from 106.13.187.114 Mar 26 09:24:02 server sshd\[19232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114 ...	2020-03-26 15:47:30
attackbots	Feb 25 15:33:51 gw1 sshd[11276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114 Feb 25 15:33:52 gw1 sshd[11276]: Failed password for invalid user upload from 106.13.187.114 port 41778 ssh2 ...	2020-02-25 21:19:16
attackspambots	Invalid user navya from 106.13.187.114 port 49040 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114 Failed password for invalid user navya from 106.13.187.114 port 49040 ssh2 Invalid user unix123 from 106.13.187.114 port 40494 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114	2020-02-17 19:50:53
attack	Feb 10 07:32:10 lnxded64 sshd[3256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114	2020-02-10 15:44:44

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.187.27	attackbots	Oct 11 20:21:59 sso sshd[28668]: Failed password for root from 106.13.187.27 port 31952 ssh2 ...	2020-10-12 05:26:11
106.13.187.27	attackbots	2020-10-10T23:33:42.802540yoshi.linuxbox.ninja sshd[1672752]: Invalid user nagios from 106.13.187.27 port 36730 2020-10-10T23:33:45.024232yoshi.linuxbox.ninja sshd[1672752]: Failed password for invalid user nagios from 106.13.187.27 port 36730 ssh2 2020-10-10T23:35:55.807648yoshi.linuxbox.ninja sshd[1674073]: Invalid user andy from 106.13.187.27 port 60418 ...	2020-10-11 13:29:21
106.13.187.27	attack	Oct 10 23:53:17 ip106 sshd[9718]: Failed password for mail from 106.13.187.27 port 22468 ssh2 ...	2020-10-11 06:53:12
106.13.187.27	attackspam	Oct 10 21:33:23 ip106 sshd[2551]: Failed password for root from 106.13.187.27 port 18889 ssh2 ...	2020-10-11 03:44:39
106.13.187.27	attackspambots	Oct 10 06:59:33 inter-technics sshd[21470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27 user=root Oct 10 06:59:35 inter-technics sshd[21470]: Failed password for root from 106.13.187.27 port 32456 ssh2 Oct 10 07:02:45 inter-technics sshd[21753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27 user=root Oct 10 07:02:48 inter-technics sshd[21753]: Failed password for root from 106.13.187.27 port 13517 ssh2 Oct 10 07:05:45 inter-technics sshd[22002]: Invalid user web from 106.13.187.27 port 51075 ...	2020-10-10 19:38:09
106.13.187.90	attackspam	SSH Invalid Login	2020-09-25 10:18:25
106.13.187.27	attack	Sep 8 10:11:45 root sshd[29435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27 ...	2020-09-09 00:03:48
106.13.187.27	attack	Jul 13 23:27:14 server sshd[11452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27 Jul 13 23:27:16 server sshd[11452]: Failed password for invalid user angular from 106.13.187.27 port 32156 ssh2 Jul 13 23:37:06 server sshd[11850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27 Jul 13 23:37:08 server sshd[11850]: Failed password for invalid user guest from 106.13.187.27 port 9416 ssh2	2020-09-08 15:35:53
106.13.187.27	attack	2020-09-07T23:36:42.809392abusebot-8.cloudsearch.cf sshd[16256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27 user=root 2020-09-07T23:36:44.882528abusebot-8.cloudsearch.cf sshd[16256]: Failed password for root from 106.13.187.27 port 46956 ssh2 2020-09-07T23:41:12.478016abusebot-8.cloudsearch.cf sshd[16366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27 user=root 2020-09-07T23:41:13.946604abusebot-8.cloudsearch.cf sshd[16366]: Failed password for root from 106.13.187.27 port 41365 ssh2 2020-09-07T23:45:30.043166abusebot-8.cloudsearch.cf sshd[16426]: Invalid user squid from 106.13.187.27 port 35780 2020-09-07T23:45:30.049606abusebot-8.cloudsearch.cf sshd[16426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27 2020-09-07T23:45:30.043166abusebot-8.cloudsearch.cf sshd[16426]: Invalid user squid from 106.13.187.27 port 35780 ...	2020-09-08 08:08:53
106.13.187.27	attackspambots	Jul 29 05:44:26 ns382633 sshd\[10923\]: Invalid user odoo from 106.13.187.27 port 64872 Jul 29 05:44:26 ns382633 sshd\[10923\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27 Jul 29 05:44:28 ns382633 sshd\[10923\]: Failed password for invalid user odoo from 106.13.187.27 port 64872 ssh2 Jul 29 05:55:45 ns382633 sshd\[13335\]: Invalid user shajiaojiao from 106.13.187.27 port 9827 Jul 29 05:55:45 ns382633 sshd\[13335\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27	2020-07-29 13:16:01
106.13.187.27	attack	Jul 28 18:49:54 Tower sshd[1360]: Connection from 106.13.187.27 port 44652 on 192.168.10.220 port 22 rdomain "" Jul 28 18:50:02 Tower sshd[1360]: Invalid user bxx from 106.13.187.27 port 44652 Jul 28 18:50:02 Tower sshd[1360]: error: Could not get shadow information for NOUSER Jul 28 18:50:02 Tower sshd[1360]: Failed password for invalid user bxx from 106.13.187.27 port 44652 ssh2 Jul 28 18:50:02 Tower sshd[1360]: Received disconnect from 106.13.187.27 port 44652:11: Bye Bye [preauth] Jul 28 18:50:02 Tower sshd[1360]: Disconnected from invalid user bxx 106.13.187.27 port 44652 [preauth]	2020-07-29 07:03:20
106.13.187.27	attackbotsspam	20 attempts against mh-ssh on mist	2020-07-04 04:21:08
106.13.187.42	attack	Invalid user wfz from 106.13.187.42 port 44486	2020-03-18 01:37:10
106.13.187.30	attack	Mar 3 23:32:25 mail sshd[4216]: Invalid user arma3 from 106.13.187.30 Mar 3 23:32:25 mail sshd[4216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.30 Mar 3 23:32:25 mail sshd[4216]: Invalid user arma3 from 106.13.187.30 Mar 3 23:32:28 mail sshd[4216]: Failed password for invalid user arma3 from 106.13.187.30 port 32403 ssh2 Mar 3 23:47:09 mail sshd[26977]: Invalid user sandbox from 106.13.187.30 ...	2020-03-04 09:36:05
106.13.187.27	attackbotsspam	Unauthorized connection attempt detected from IP address 106.13.187.27 to port 2220 [J]	2020-02-23 18:34:56

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.187.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44717
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.187.114.			IN	A

;; AUTHORITY SECTION:
.			440	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021000 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 15:44:38 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 114.187.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 114.187.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
95.0.194.245	attack	May 13 05:57:50 vps339862 kernel: \[8561185.751439\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=95.0.194.245 DST=51.254.206.43 LEN=40 TOS=0x00 PREC=0x00 TTL=104 ID=256 PROTO=TCP SPT=6000 DPT=4433 SEQ=213647360 ACK=0 WINDOW=16384 RES=0x00 SYN URGP=0 May 13 05:57:50 vps339862 kernel: \[8561185.751552\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=95.0.194.245 DST=51.254.206.43 LEN=40 TOS=0x00 PREC=0x00 TTL=104 ID=256 PROTO=TCP SPT=6000 DPT=8433 SEQ=1616838656 ACK=0 WINDOW=16384 RES=0x00 SYN URGP=0 May 13 05:57:50 vps339862 kernel: \[8561185.751576\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=95.0.194.245 DST=51.254.206.43 LEN=40 TOS=0x00 PREC=0x00 TTL=104 ID=256 PROTO=TCP SPT=6000 DPT=7433 SEQ=8454144 ACK=0 WINDOW=16384 RES=0x00 SYN URGP=0 May 13 05:57:50 vps339862 kernel: \[8561185.751590\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6 ...	2020-05-13 13:58:14
103.145.12.87	attackspam	[2020-05-13 00:59:20] NOTICE[1157][C-00004119] chan_sip.c: Call from '' (103.145.12.87:57944) to extension '9011441482455983' rejected because extension not found in context 'public'. [2020-05-13 00:59:20] SECURITY[1173] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-05-13T00:59:20.057-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441482455983",SessionID="0x7f5f100266a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.145.12.87/57944",ACLName="no_extension_match" [2020-05-13 00:59:21] NOTICE[1157][C-0000411a] chan_sip.c: Call from '' (103.145.12.87:51624) to extension '901146812400368' rejected because extension not found in context 'public'. [2020-05-13 00:59:21] SECURITY[1173] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-05-13T00:59:21.867-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="901146812400368",SessionID="0x7f5f107b3898",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UD ...	2020-05-13 13:09:19
14.29.214.207	attackspam	Wordpress malicious attack:[sshd]	2020-05-13 13:24:34
128.199.171.81	attackspam	May 12 19:06:41 hanapaa sshd\[4078\]: Invalid user virl from 128.199.171.81 May 12 19:06:41 hanapaa sshd\[4078\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.171.81 May 12 19:06:43 hanapaa sshd\[4078\]: Failed password for invalid user virl from 128.199.171.81 port 12134 ssh2 May 12 19:11:01 hanapaa sshd\[4462\]: Invalid user agencia from 128.199.171.81 May 12 19:11:01 hanapaa sshd\[4462\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.171.81	2020-05-13 13:20:33
178.46.167.178	attackspam	Automatic report - WordPress Brute Force	2020-05-13 13:19:58
49.88.112.65	attackspambots	May 13 05:51:31 onepixel sshd[3307446]: Failed password for root from 49.88.112.65 port 30210 ssh2 May 13 05:53:47 onepixel sshd[3307714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.65 user=root May 13 05:53:49 onepixel sshd[3307714]: Failed password for root from 49.88.112.65 port 29895 ssh2 May 13 05:56:04 onepixel sshd[3308017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.65 user=root May 13 05:56:06 onepixel sshd[3308017]: Failed password for root from 49.88.112.65 port 43008 ssh2	2020-05-13 14:03:42
51.79.2.182	attackspambots	2020-05-13T03:52:45.947170abusebot-6.cloudsearch.cf sshd[27288]: Invalid user ubuntu from 51.79.2.182 port 50386 2020-05-13T03:52:45.954382abusebot-6.cloudsearch.cf sshd[27288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip182.ip-51-79-2.net 2020-05-13T03:52:45.947170abusebot-6.cloudsearch.cf sshd[27288]: Invalid user ubuntu from 51.79.2.182 port 50386 2020-05-13T03:52:47.704815abusebot-6.cloudsearch.cf sshd[27288]: Failed password for invalid user ubuntu from 51.79.2.182 port 50386 ssh2 2020-05-13T03:57:41.662588abusebot-6.cloudsearch.cf sshd[27577]: Invalid user wwwrunwwwrun from 51.79.2.182 port 35940 2020-05-13T03:57:41.674572abusebot-6.cloudsearch.cf sshd[27577]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip182.ip-51-79-2.net 2020-05-13T03:57:41.662588abusebot-6.cloudsearch.cf sshd[27577]: Invalid user wwwrunwwwrun from 51.79.2.182 port 35940 2020-05-13T03:57:43.415020abusebot-6.cloudsearch.c ...	2020-05-13 14:06:09
46.21.208.224	attackbots	Autoban 46.21.208.224 AUTH/CONNECT	2020-05-13 13:59:39
171.244.139.171	attack	Invalid user thegame from 171.244.139.171 port 38090	2020-05-13 13:16:11
46.101.110.27	attack	2375/tcp [2020-05-13]1pkt	2020-05-13 13:52:04
222.186.173.201	attackspam	May 13 07:28:47 ns381471 sshd[15164]: Failed password for root from 222.186.173.201 port 53880 ssh2 May 13 07:29:02 ns381471 sshd[15164]: error: maximum authentication attempts exceeded for root from 222.186.173.201 port 53880 ssh2 [preauth]	2020-05-13 13:43:44
138.68.176.38	attack	Invalid user logan from 138.68.176.38 port 46396	2020-05-13 13:13:01
182.61.64.212	attackbots	Invalid user admin from 182.61.64.212 port 47318	2020-05-13 13:10:29
36.26.64.143	attackspam	2020-05-12T22:59:14.358354linuxbox-skyline sshd[132582]: Invalid user admin from 36.26.64.143 port 37947 ...	2020-05-13 13:22:47
106.243.2.244	attack	2020-05-13T05:13:00.870489shield sshd\[14183\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.243.2.244 user=root 2020-05-13T05:13:02.968467shield sshd\[14183\]: Failed password for root from 106.243.2.244 port 42108 ssh2 2020-05-13T05:16:50.679872shield sshd\[15094\]: Invalid user ml from 106.243.2.244 port 43844 2020-05-13T05:16:50.683442shield sshd\[15094\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.243.2.244 2020-05-13T05:16:52.690835shield sshd\[15094\]: Failed password for invalid user ml from 106.243.2.244 port 43844 ssh2	2020-05-13 13:17:28

最近上报的IP列表

183.89.237.17	69.160.7.37	178.102.175.188	49.75.229.255
178.98.45.44	38.1.91.199	66.52.209.228	191.255.101.145
232.176.180.240	79.90.40.33	21.137.217.64	13.176.118.27
187.16.4.216	123.201.35.50	192.99.232.147	73.252.57.219
135.118.122.21	62.148.131.53	122.115.182.15	41.138.123.195