106.13.193.45 - IPInfo

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Automatic report - Port Scan	2019-11-08 16:07:25

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.193.235	attackspambots	Aug 31 08:02:54 root sshd[20495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.193.235 Aug 31 08:02:56 root sshd[20495]: Failed password for invalid user mlsmith from 106.13.193.235 port 55050 ssh2 Aug 31 08:06:00 root sshd[20552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.193.235 ...	2019-08-31 19:04:43
106.13.193.195	attackspam	Aug 29 21:17:14 wbs sshd\[27027\]: Invalid user icosftp from 106.13.193.195 Aug 29 21:17:14 wbs sshd\[27027\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.193.195 Aug 29 21:17:16 wbs sshd\[27027\]: Failed password for invalid user icosftp from 106.13.193.195 port 60708 ssh2 Aug 29 21:21:20 wbs sshd\[27413\]: Invalid user postgres from 106.13.193.195 Aug 29 21:21:20 wbs sshd\[27413\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.193.195	2019-08-30 21:55:36
106.13.193.235	attackspam	Aug 29 16:19:23 MK-Soft-VM6 sshd\[19694\]: Invalid user wilford from 106.13.193.235 port 41912 Aug 29 16:19:23 MK-Soft-VM6 sshd\[19694\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.193.235 Aug 29 16:19:24 MK-Soft-VM6 sshd\[19694\]: Failed password for invalid user wilford from 106.13.193.235 port 41912 ssh2 ...	2019-08-30 00:46:04
106.13.193.195	attackbots	Aug 27 12:23:13 cp sshd[9582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.193.195	2019-08-28 00:53:31
106.13.193.195	attackspambots	Aug 25 02:11:45 dedicated sshd[7552]: Invalid user unseen from 106.13.193.195 port 43864	2019-08-25 08:15:40
106.13.193.235	attack	$f2bV_matches_ltvn	2019-08-20 15:52:20

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.193.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51444
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.193.45.			IN	A

;; AUTHORITY SECTION:
.			235	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110800 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 08 16:07:21 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 45.193.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 45.193.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
34.76.110.50	attack	php WP PHPmyadamin ABUSE blocked for 12h	2019-12-23 02:52:58
51.83.98.52	attackspam	Triggered by Fail2Ban at Vostok web server	2019-12-23 02:36:33
49.88.112.66	attackbots	Dec 22 15:08:11 firewall sshd[4126]: Failed password for root from 49.88.112.66 port 26929 ssh2 Dec 22 15:11:55 firewall sshd[4204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.66 user=root Dec 22 15:11:57 firewall sshd[4204]: Failed password for root from 49.88.112.66 port 58631 ssh2 ...	2019-12-23 02:50:36
198.20.103.244	attackbotsspam	Dec 22 17:49:23 MikroTik IMAP amplification attack TCP: in:BelPak out:K-Lan, src-mac 4c:b1:6c:f6:99:48, proto TCP (SYN), 198.20.103.244:34469->192.168.216.3:995, NAT 198.20.103.244:34469->(82.209.199.58:995->192.168.216.3:995), len 40	2019-12-23 02:30:38
209.97.161.46	attackbots	$f2bV_matches	2019-12-23 02:56:44
182.61.42.234	attackbots	$f2bV_matches	2019-12-23 02:31:01
141.136.65.140	attackbotsspam	12/22/2019-15:48:49.359224 141.136.65.140 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-12-23 03:02:56
217.182.140.117	attackbots	Malicious/Probing: /wp/wp-login.php	2019-12-23 02:29:43
126.51.247.65	attackspambots	Dec 22 15:48:49 pornomens sshd\[5798\]: Invalid user haig from 126.51.247.65 port 35509 Dec 22 15:48:49 pornomens sshd\[5798\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=126.51.247.65 Dec 22 15:48:51 pornomens sshd\[5798\]: Failed password for invalid user haig from 126.51.247.65 port 35509 ssh2 ...	2019-12-23 03:00:54
68.183.233.171	attack	Dec 22 15:49:14 serwer sshd\[5430\]: User sync from 68.183.233.171 not allowed because not listed in AllowUsers Dec 22 15:49:14 serwer sshd\[5430\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.233.171 user=sync Dec 22 15:49:16 serwer sshd\[5430\]: Failed password for invalid user sync from 68.183.233.171 port 58336 ssh2 ...	2019-12-23 02:37:59
222.186.42.4	attack	Dec 22 18:38:40 sshgateway sshd\[21370\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.4 user=root Dec 22 18:38:42 sshgateway sshd\[21370\]: Failed password for root from 222.186.42.4 port 29880 ssh2 Dec 22 18:38:45 sshgateway sshd\[21370\]: Failed password for root from 222.186.42.4 port 29880 ssh2	2019-12-23 02:43:43
222.186.175.182	attackspambots	Dec 22 19:21:55 srv206 sshd[24230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root Dec 22 19:21:56 srv206 sshd[24230]: Failed password for root from 222.186.175.182 port 65286 ssh2 ...	2019-12-23 02:23:12
109.173.40.60	attackbots	Dec 22 19:28:57 nextcloud sshd\[5316\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.173.40.60 user=sync Dec 22 19:28:59 nextcloud sshd\[5316\]: Failed password for sync from 109.173.40.60 port 48026 ssh2 Dec 22 19:33:49 nextcloud sshd\[12807\]: Invalid user tn from 109.173.40.60 ...	2019-12-23 02:53:47
133.130.89.115	attack	$f2bV_matches	2019-12-23 02:21:29
77.81.230.120	attack	Dec 22 18:38:55 sd-53420 sshd\[31148\]: Invalid user ginel from 77.81.230.120 Dec 22 18:38:55 sd-53420 sshd\[31148\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.81.230.120 Dec 22 18:38:57 sd-53420 sshd\[31148\]: Failed password for invalid user ginel from 77.81.230.120 port 60302 ssh2 Dec 22 18:44:36 sd-53420 sshd\[933\]: Invalid user ramondo from 77.81.230.120 Dec 22 18:44:36 sd-53420 sshd\[933\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.81.230.120 ...	2019-12-23 02:44:55

最近上报的IP列表

106.13.127.238	79.12.232.151	216.239.136.54	167.99.173.234
202.69.191.85	157.245.44.200	125.83.105.83	91.237.98.22
220.64.199.196	106.13.24.164	120.42.158.32	103.31.109.194
50.70.229.239	91.228.96.156	115.84.76.5	165.227.80.35
31.163.3.227	103.122.12.106	123.26.206.168	157.167.52.180