106.13.193.45 - IPInfo

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Automatic report - Port Scan	2019-11-08 16:07:25

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.193.235	attackspambots	Aug 31 08:02:54 root sshd[20495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.193.235 Aug 31 08:02:56 root sshd[20495]: Failed password for invalid user mlsmith from 106.13.193.235 port 55050 ssh2 Aug 31 08:06:00 root sshd[20552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.193.235 ...	2019-08-31 19:04:43
106.13.193.195	attackspam	Aug 29 21:17:14 wbs sshd\[27027\]: Invalid user icosftp from 106.13.193.195 Aug 29 21:17:14 wbs sshd\[27027\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.193.195 Aug 29 21:17:16 wbs sshd\[27027\]: Failed password for invalid user icosftp from 106.13.193.195 port 60708 ssh2 Aug 29 21:21:20 wbs sshd\[27413\]: Invalid user postgres from 106.13.193.195 Aug 29 21:21:20 wbs sshd\[27413\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.193.195	2019-08-30 21:55:36
106.13.193.235	attackspam	Aug 29 16:19:23 MK-Soft-VM6 sshd\[19694\]: Invalid user wilford from 106.13.193.235 port 41912 Aug 29 16:19:23 MK-Soft-VM6 sshd\[19694\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.193.235 Aug 29 16:19:24 MK-Soft-VM6 sshd\[19694\]: Failed password for invalid user wilford from 106.13.193.235 port 41912 ssh2 ...	2019-08-30 00:46:04
106.13.193.195	attackbots	Aug 27 12:23:13 cp sshd[9582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.193.195	2019-08-28 00:53:31
106.13.193.195	attackspambots	Aug 25 02:11:45 dedicated sshd[7552]: Invalid user unseen from 106.13.193.195 port 43864	2019-08-25 08:15:40
106.13.193.235	attack	$f2bV_matches_ltvn	2019-08-20 15:52:20

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.193.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51444
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.193.45.			IN	A

;; AUTHORITY SECTION:
.			235	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110800 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 08 16:07:21 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 45.193.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 45.193.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
77.247.110.161	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 70 - port: 3363 proto: TCP cat: Misc Attack	2019-11-07 06:07:53
170.233.251.138	attackspambots	Nov 6 15:31:29 server postfix/smtpd[11563]: NOQUEUE: reject: RCPT from unknown[170.233.251.138]: 554 5.7.1 Service unavailable; Client host [170.233.251.138] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/170.233.251.138 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to=<7927378anav@anavveneto.it> proto=ESMTP helo=<[170.233.251.138]>	2019-11-07 06:07:37
104.172.217.159	attackbotsspam	Lines containing failures of 104.172.217.159 Nov 6 11:32:13 kopano sshd[31848]: Invalid user pi from 104.172.217.159 port 35620 Nov 6 11:32:13 kopano sshd[31849]: Invalid user pi from 104.172.217.159 port 35632 Nov 6 11:32:13 kopano sshd[31848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.172.217.159 Nov 6 11:32:13 kopano sshd[31849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.172.217.159 Nov 6 11:32:15 kopano sshd[31848]: Failed password for invalid user pi from 104.172.217.159 port 35620 ssh2 Nov 6 11:32:15 kopano sshd[31849]: Failed password for invalid user pi from 104.172.217.159 port 35632 ssh2 Nov 6 11:32:15 kopano sshd[31848]: Connection closed by invalid user pi 104.172.217.159 port 35620 [preauth] Nov 6 11:32:15 kopano sshd[31849]: Connection closed by invalid user pi 104.172.217.159 port 35632 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.h	2019-11-07 05:50:00
129.204.46.170	attackspambots	Nov 6 16:21:11 microserver sshd[1466]: Invalid user research from 129.204.46.170 port 54402 Nov 6 16:21:11 microserver sshd[1466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.46.170 Nov 6 16:21:13 microserver sshd[1466]: Failed password for invalid user research from 129.204.46.170 port 54402 ssh2 Nov 6 16:26:47 microserver sshd[2171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.46.170 user=root Nov 6 16:26:49 microserver sshd[2171]: Failed password for root from 129.204.46.170 port 35512 ssh2 Nov 6 16:39:35 microserver sshd[3638]: Invalid user usuario from 129.204.46.170 port 54300 Nov 6 16:39:35 microserver sshd[3638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.46.170 Nov 6 16:39:37 microserver sshd[3638]: Failed password for invalid user usuario from 129.204.46.170 port 54300 ssh2 Nov 6 16:44:49 microserver sshd[4312]: pam_unix(sshd:auth): au	2019-11-07 06:16:29
88.214.11.29	attackbotsspam	Unauthorized connection attempt from IP address 88.214.11.29 on Port 445(SMB)	2019-11-07 06:06:11
185.209.0.32	attackspam	firewall-block, port(s): 35700/tcp, 35900/tcp, 36200/tcp, 39000/tcp	2019-11-07 06:13:59
118.68.101.135	attackspambots	Unauthorized connection attempt from IP address 118.68.101.135 on Port 445(SMB)	2019-11-07 05:45:06
77.247.110.103	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-07 06:19:41
151.80.61.103	attack	Nov 6 10:41:17 TORMINT sshd\[9293\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.61.103 user=root Nov 6 10:41:18 TORMINT sshd\[9293\]: Failed password for root from 151.80.61.103 port 59698 ssh2 Nov 6 10:44:49 TORMINT sshd\[9410\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.61.103 user=root ...	2019-11-07 06:08:57
139.59.95.216	attackbotsspam	Nov 6 09:11:50 wbs sshd\[25383\]: Invalid user conta from 139.59.95.216 Nov 6 09:11:50 wbs sshd\[25383\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.95.216 Nov 6 09:11:52 wbs sshd\[25383\]: Failed password for invalid user conta from 139.59.95.216 port 46242 ssh2 Nov 6 09:16:57 wbs sshd\[25823\]: Invalid user umountsys from 139.59.95.216 Nov 6 09:16:57 wbs sshd\[25823\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.95.216	2019-11-07 05:54:18
39.42.118.83	attackbots	Unauthorized connection attempt from IP address 39.42.118.83 on Port 445(SMB)	2019-11-07 06:12:24
14.161.14.159	attackspam	Unauthorized connection attempt from IP address 14.161.14.159 on Port 445(SMB)	2019-11-07 05:54:32
52.186.168.121	attackbotsspam	Nov 6 16:28:06 meumeu sshd[16360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.186.168.121 Nov 6 16:28:09 meumeu sshd[16360]: Failed password for invalid user sqladmin from 52.186.168.121 port 43834 ssh2 Nov 6 16:32:34 meumeu sshd[23069]: Failed password for root from 52.186.168.121 port 60292 ssh2 ...	2019-11-07 05:48:45
77.247.110.39	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-07 05:57:18
218.92.0.191	attackbotsspam	Nov 6 16:02:49 dcd-gentoo sshd[11530]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Nov 6 16:02:51 dcd-gentoo sshd[11530]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Nov 6 16:02:49 dcd-gentoo sshd[11530]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Nov 6 16:02:51 dcd-gentoo sshd[11530]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Nov 6 16:02:49 dcd-gentoo sshd[11530]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Nov 6 16:02:51 dcd-gentoo sshd[11530]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Nov 6 16:02:51 dcd-gentoo sshd[11530]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.191 port 58065 ssh2 ...	2019-11-07 05:59:41

最近上报的IP列表

106.13.127.238	79.12.232.151	216.239.136.54	167.99.173.234
202.69.191.85	157.245.44.200	125.83.105.83	91.237.98.22
220.64.199.196	106.13.24.164	120.42.158.32	103.31.109.194
50.70.229.239	91.228.96.156	115.84.76.5	165.227.80.35
31.163.3.227	103.122.12.106	123.26.206.168	157.167.52.180