106.13.187.114

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH Brute Force	2020-04-29 12:59:53
attack	Apr 9 05:23:30 webhost01 sshd[6632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114 Apr 9 05:23:33 webhost01 sshd[6632]: Failed password for invalid user research from 106.13.187.114 port 42664 ssh2 ...	2020-04-09 06:26:30
attackspambots	Apr 7 03:23:36 silence02 sshd[6249]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114 Apr 7 03:23:38 silence02 sshd[6249]: Failed password for invalid user oneadmin from 106.13.187.114 port 40372 ssh2 Apr 7 03:27:41 silence02 sshd[6577]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114	2020-04-07 10:03:19
attackspam	2020-03-28T15:37:05.728872linuxbox-skyline sshd[49393]: Invalid user hng from 106.13.187.114 port 52032 ...	2020-03-29 06:00:41
attackbots	2020-03-27T15:31:10.381539ionos.janbro.de sshd[394]: Invalid user pff from 106.13.187.114 port 43524 2020-03-27T15:31:11.985687ionos.janbro.de sshd[394]: Failed password for invalid user pff from 106.13.187.114 port 43524 ssh2 2020-03-27T15:34:53.474361ionos.janbro.de sshd[425]: Invalid user jpu from 106.13.187.114 port 33284 2020-03-27T15:34:53.639454ionos.janbro.de sshd[425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114 2020-03-27T15:34:53.474361ionos.janbro.de sshd[425]: Invalid user jpu from 106.13.187.114 port 33284 2020-03-27T15:34:55.728813ionos.janbro.de sshd[425]: Failed password for invalid user jpu from 106.13.187.114 port 33284 ssh2 2020-03-27T15:38:20.927944ionos.janbro.de sshd[498]: Invalid user ojm from 106.13.187.114 port 51280 2020-03-27T15:38:21.113214ionos.janbro.de sshd[498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114 2020-03-27T15:38:20.927944ionos. ...	2020-03-28 01:05:16
attack	Mar 26 00:02:20 server sshd\[4802\]: Failed password for invalid user media from 106.13.187.114 port 50154 ssh2 Mar 26 09:12:17 server sshd\[16541\]: Invalid user card from 106.13.187.114 Mar 26 09:12:17 server sshd\[16541\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114 Mar 26 09:12:19 server sshd\[16541\]: Failed password for invalid user card from 106.13.187.114 port 53328 ssh2 Mar 26 09:24:02 server sshd\[19232\]: Invalid user hila from 106.13.187.114 Mar 26 09:24:02 server sshd\[19232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114 ...	2020-03-26 15:47:30
attackbots	Feb 25 15:33:51 gw1 sshd[11276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114 Feb 25 15:33:52 gw1 sshd[11276]: Failed password for invalid user upload from 106.13.187.114 port 41778 ssh2 ...	2020-02-25 21:19:16
attackspambots	Invalid user navya from 106.13.187.114 port 49040 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114 Failed password for invalid user navya from 106.13.187.114 port 49040 ssh2 Invalid user unix123 from 106.13.187.114 port 40494 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114	2020-02-17 19:50:53
attack	Feb 10 07:32:10 lnxded64 sshd[3256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.114	2020-02-10 15:44:44

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.187.27	attackbots	Oct 11 20:21:59 sso sshd[28668]: Failed password for root from 106.13.187.27 port 31952 ssh2 ...	2020-10-12 05:26:11
106.13.187.27	attackbots	2020-10-10T23:33:42.802540yoshi.linuxbox.ninja sshd[1672752]: Invalid user nagios from 106.13.187.27 port 36730 2020-10-10T23:33:45.024232yoshi.linuxbox.ninja sshd[1672752]: Failed password for invalid user nagios from 106.13.187.27 port 36730 ssh2 2020-10-10T23:35:55.807648yoshi.linuxbox.ninja sshd[1674073]: Invalid user andy from 106.13.187.27 port 60418 ...	2020-10-11 13:29:21
106.13.187.27	attack	Oct 10 23:53:17 ip106 sshd[9718]: Failed password for mail from 106.13.187.27 port 22468 ssh2 ...	2020-10-11 06:53:12
106.13.187.27	attackspam	Oct 10 21:33:23 ip106 sshd[2551]: Failed password for root from 106.13.187.27 port 18889 ssh2 ...	2020-10-11 03:44:39
106.13.187.27	attackspambots	Oct 10 06:59:33 inter-technics sshd[21470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27 user=root Oct 10 06:59:35 inter-technics sshd[21470]: Failed password for root from 106.13.187.27 port 32456 ssh2 Oct 10 07:02:45 inter-technics sshd[21753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27 user=root Oct 10 07:02:48 inter-technics sshd[21753]: Failed password for root from 106.13.187.27 port 13517 ssh2 Oct 10 07:05:45 inter-technics sshd[22002]: Invalid user web from 106.13.187.27 port 51075 ...	2020-10-10 19:38:09
106.13.187.90	attackspam	SSH Invalid Login	2020-09-25 10:18:25
106.13.187.27	attack	Sep 8 10:11:45 root sshd[29435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27 ...	2020-09-09 00:03:48
106.13.187.27	attack	Jul 13 23:27:14 server sshd[11452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27 Jul 13 23:27:16 server sshd[11452]: Failed password for invalid user angular from 106.13.187.27 port 32156 ssh2 Jul 13 23:37:06 server sshd[11850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27 Jul 13 23:37:08 server sshd[11850]: Failed password for invalid user guest from 106.13.187.27 port 9416 ssh2	2020-09-08 15:35:53
106.13.187.27	attack	2020-09-07T23:36:42.809392abusebot-8.cloudsearch.cf sshd[16256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27 user=root 2020-09-07T23:36:44.882528abusebot-8.cloudsearch.cf sshd[16256]: Failed password for root from 106.13.187.27 port 46956 ssh2 2020-09-07T23:41:12.478016abusebot-8.cloudsearch.cf sshd[16366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27 user=root 2020-09-07T23:41:13.946604abusebot-8.cloudsearch.cf sshd[16366]: Failed password for root from 106.13.187.27 port 41365 ssh2 2020-09-07T23:45:30.043166abusebot-8.cloudsearch.cf sshd[16426]: Invalid user squid from 106.13.187.27 port 35780 2020-09-07T23:45:30.049606abusebot-8.cloudsearch.cf sshd[16426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27 2020-09-07T23:45:30.043166abusebot-8.cloudsearch.cf sshd[16426]: Invalid user squid from 106.13.187.27 port 35780 ...	2020-09-08 08:08:53
106.13.187.27	attackspambots	Jul 29 05:44:26 ns382633 sshd\[10923\]: Invalid user odoo from 106.13.187.27 port 64872 Jul 29 05:44:26 ns382633 sshd\[10923\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27 Jul 29 05:44:28 ns382633 sshd\[10923\]: Failed password for invalid user odoo from 106.13.187.27 port 64872 ssh2 Jul 29 05:55:45 ns382633 sshd\[13335\]: Invalid user shajiaojiao from 106.13.187.27 port 9827 Jul 29 05:55:45 ns382633 sshd\[13335\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.27	2020-07-29 13:16:01
106.13.187.27	attack	Jul 28 18:49:54 Tower sshd[1360]: Connection from 106.13.187.27 port 44652 on 192.168.10.220 port 22 rdomain "" Jul 28 18:50:02 Tower sshd[1360]: Invalid user bxx from 106.13.187.27 port 44652 Jul 28 18:50:02 Tower sshd[1360]: error: Could not get shadow information for NOUSER Jul 28 18:50:02 Tower sshd[1360]: Failed password for invalid user bxx from 106.13.187.27 port 44652 ssh2 Jul 28 18:50:02 Tower sshd[1360]: Received disconnect from 106.13.187.27 port 44652:11: Bye Bye [preauth] Jul 28 18:50:02 Tower sshd[1360]: Disconnected from invalid user bxx 106.13.187.27 port 44652 [preauth]	2020-07-29 07:03:20
106.13.187.27	attackbotsspam	20 attempts against mh-ssh on mist	2020-07-04 04:21:08
106.13.187.42	attack	Invalid user wfz from 106.13.187.42 port 44486	2020-03-18 01:37:10
106.13.187.30	attack	Mar 3 23:32:25 mail sshd[4216]: Invalid user arma3 from 106.13.187.30 Mar 3 23:32:25 mail sshd[4216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.187.30 Mar 3 23:32:25 mail sshd[4216]: Invalid user arma3 from 106.13.187.30 Mar 3 23:32:28 mail sshd[4216]: Failed password for invalid user arma3 from 106.13.187.30 port 32403 ssh2 Mar 3 23:47:09 mail sshd[26977]: Invalid user sandbox from 106.13.187.30 ...	2020-03-04 09:36:05
106.13.187.27	attackbotsspam	Unauthorized connection attempt detected from IP address 106.13.187.27 to port 2220 [J]	2020-02-23 18:34:56

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.187.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44717
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.187.114.			IN	A

;; AUTHORITY SECTION:
.			440	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021000 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 15:44:38 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 114.187.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 114.187.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
49.88.112.114	attackspam	Nov 29 13:31:13 php1 sshd\[32339\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Nov 29 13:31:15 php1 sshd\[32339\]: Failed password for root from 49.88.112.114 port 34205 ssh2 Nov 29 13:33:01 php1 sshd\[32469\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Nov 29 13:33:03 php1 sshd\[32469\]: Failed password for root from 49.88.112.114 port 59771 ssh2 Nov 29 13:36:02 php1 sshd\[32710\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root	2019-11-30 07:40:39
222.186.180.9	attack	Nov 29 20:26:18 firewall sshd[24290]: Failed password for root from 222.186.180.9 port 43546 ssh2 Nov 29 20:26:18 firewall sshd[24290]: error: maximum authentication attempts exceeded for root from 222.186.180.9 port 43546 ssh2 [preauth] Nov 29 20:26:18 firewall sshd[24290]: Disconnecting: Too many authentication failures [preauth] ...	2019-11-30 07:27:57
35.201.136.218	attack	The IP has triggered Cloudflare WAF. CF-Ray: 53d4bd2d0beaf0a9 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: XX \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: d.skk.moe \| User-Agent: QQ%E6%B5%8F%E8%A7%88%E5%99%A8/9.6.2.4196 CFNetwork/1107.1 Darwin/19.0.0 \| CF_DC: TPE. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-11-30 07:15:34
171.251.22.179	attack	Nov 29 23:20:35 localhost sshd\[86285\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.251.22.179 user=root Nov 29 23:20:37 localhost sshd\[86285\]: Failed password for root from 171.251.22.179 port 58314 ssh2 Nov 29 23:20:44 localhost sshd\[86311\]: Invalid user listd from 171.251.22.179 port 34962 Nov 29 23:20:45 localhost sshd\[86309\]: Invalid user claudia from 171.251.22.179 port 41214 Nov 29 23:20:45 localhost sshd\[86309\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.251.22.179 ...	2019-11-30 07:36:47
112.85.42.176	attack	2019-11-30T00:22:47.036833scmdmz1 sshd\[13917\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.176 user=root 2019-11-30T00:22:48.240013scmdmz1 sshd\[13917\]: Failed password for root from 112.85.42.176 port 4786 ssh2 2019-11-30T00:22:51.602044scmdmz1 sshd\[13917\]: Failed password for root from 112.85.42.176 port 4786 ssh2 ...	2019-11-30 07:24:48
124.160.236.194	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 53d4c87b1de3ed93 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Mobile Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-11-30 07:17:34
106.12.74.238	attackspambots	Automatic report - Banned IP Access	2019-11-30 07:35:24
192.95.14.196	bots	Excessive page not found. Auto locked out.	2019-11-30 07:15:29
185.176.27.18	attackbotsspam	11/30/2019-00:32:16.805861 185.176.27.18 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-30 07:37:17
175.184.166.247	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 53d2e4b36c9293e8 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/4.047745454 Mozilla/4.0 (compatible; MSIE 5.00; Windows 98) \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-11-30 07:11:05
209.17.97.26	attackbotsspam	209.17.97.26 was recorded 7 times by 5 hosts attempting to connect to the following ports: 990,5916,37777,8081. Incident counter (4h, 24h, all-time): 7, 44, 900	2019-11-30 07:09:24
120.132.27.181	attack	Nov 29 12:57:18 web1 sshd\[1365\]: Invalid user bronny from 120.132.27.181 Nov 29 12:57:18 web1 sshd\[1365\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.27.181 Nov 29 12:57:21 web1 sshd\[1365\]: Failed password for invalid user bronny from 120.132.27.181 port 40884 ssh2 Nov 29 13:00:35 web1 sshd\[1689\]: Invalid user test from 120.132.27.181 Nov 29 13:00:35 web1 sshd\[1689\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.27.181	2019-11-30 07:03:35
84.122.18.69	attack	ssh failed login	2019-11-30 07:35:37
103.119.145.4	attackbots	web Attack on Wordpress site	2019-11-30 07:07:47
118.25.183.241	attack	1433/tcp 445/tcp... [2019-10-02/11-29]8pkt,2pt.(tcp)	2019-11-30 07:04:07

最近上报的IP列表

183.89.237.17	69.160.7.37	178.102.175.188	49.75.229.255
178.98.45.44	38.1.91.199	66.52.209.228	191.255.101.145
232.176.180.240	79.90.40.33	21.137.217.64	13.176.118.27
187.16.4.216	123.201.35.50	192.99.232.147	73.252.57.219
135.118.122.21	62.148.131.53	122.115.182.15	41.138.123.195