必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:
类型 评论内容 时间
attack
Invalid user wps from 106.13.55.50 port 39974
2020-05-15 15:26:29
attackspambots
Apr 18 13:59:00 meumeu sshd[17527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.55.50 
Apr 18 13:59:02 meumeu sshd[17527]: Failed password for invalid user tc from 106.13.55.50 port 44918 ssh2
Apr 18 14:03:04 meumeu sshd[18435]: Failed password for root from 106.13.55.50 port 34274 ssh2
...
2020-04-18 20:14:58
attackbotsspam
Invalid user history from 106.13.55.50 port 35670
2020-04-03 16:27:32
attackbots
k+ssh-bruteforce
2020-04-03 09:46:55
attackbots
(sshd) Failed SSH login from 106.13.55.50 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 20 00:08:59 amsweb01 sshd[6462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.55.50  user=root
Mar 20 00:09:00 amsweb01 sshd[6462]: Failed password for root from 106.13.55.50 port 33622 ssh2
Mar 20 00:13:08 amsweb01 sshd[9919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.55.50  user=root
Mar 20 00:13:10 amsweb01 sshd[9919]: Failed password for root from 106.13.55.50 port 33966 ssh2
Mar 20 00:15:01 amsweb01 sshd[10173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.55.50  user=root
2020-03-20 07:36:19
attackbotsspam
Mar 12 09:19:03 server sshd\[32466\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.55.50  user=root
Mar 12 09:19:06 server sshd\[32466\]: Failed password for root from 106.13.55.50 port 42288 ssh2
Mar 12 09:29:59 server sshd\[2062\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.55.50  user=root
Mar 12 09:30:01 server sshd\[2062\]: Failed password for root from 106.13.55.50 port 59570 ssh2
Mar 12 09:34:23 server sshd\[2925\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.55.50  user=root
...
2020-03-12 14:35:21
attackbots
Lines containing failures of 106.13.55.50 (max 1000)
Mar  9 11:51:59 localhost sshd[16763]: User r.r from 106.13.55.50 not allowed because listed in DenyUsers
Mar  9 11:51:59 localhost sshd[16763]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.55.50  user=r.r
Mar  9 11:52:00 localhost sshd[16763]: Failed password for invalid user r.r from 106.13.55.50 port 57864 ssh2
Mar  9 11:52:01 localhost sshd[16763]: Received disconnect from 106.13.55.50 port 57864:11: Bye Bye [preauth]
Mar  9 11:52:01 localhost sshd[16763]: Disconnected from invalid user r.r 106.13.55.50 port 57864 [preauth]
Mar  9 12:16:32 localhost sshd[21274]: Invalid user wangdc from 106.13.55.50 port 58388
Mar  9 12:16:32 localhost sshd[21274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.55.50 
Mar  9 12:16:34 localhost sshd[21274]: Failed password for invalid user wangdc from 106.13.55.50 port 58388 ssh2
Mar  9........
------------------------------
2020-03-10 03:34:57
相同子网IP讨论:
IP 类型 评论内容 时间
106.13.55.178 attackspam
May 24 12:08:25 onepixel sshd[1255772]: Invalid user wad from 106.13.55.178 port 48412
May 24 12:08:25 onepixel sshd[1255772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.55.178 
May 24 12:08:25 onepixel sshd[1255772]: Invalid user wad from 106.13.55.178 port 48412
May 24 12:08:27 onepixel sshd[1255772]: Failed password for invalid user wad from 106.13.55.178 port 48412 ssh2
May 24 12:12:39 onepixel sshd[1256423]: Invalid user rus from 106.13.55.178 port 43450
2020-05-24 23:32:12
106.13.55.178 attackbots
Invalid user deploy from 106.13.55.178 port 52696
2020-05-16 08:11:18
106.13.55.178 attack
fail2ban -- 106.13.55.178
...
2020-05-14 12:55:37
106.13.55.178 attackbotsspam
5x Failed Password
2020-04-27 03:16:21
106.13.55.24 attackspambots
Feb 20 06:30:04 gw1 sshd[11938]: Failed password for lp from 106.13.55.24 port 41860 ssh2
...
2020-02-20 09:49:08
106.13.55.24 attackbotsspam
Feb 10 15:46:04 MK-Soft-Root2 sshd[23726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.55.24 
Feb 10 15:46:06 MK-Soft-Root2 sshd[23726]: Failed password for invalid user ydr from 106.13.55.24 port 47238 ssh2
...
2020-02-10 23:06:48
106.13.55.5 attackspam
Jan 31 12:23:53 sd-53420 sshd\[22969\]: Invalid user sajay from 106.13.55.5
Jan 31 12:23:53 sd-53420 sshd\[22969\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.55.5
Jan 31 12:23:55 sd-53420 sshd\[22969\]: Failed password for invalid user sajay from 106.13.55.5 port 36832 ssh2
Jan 31 12:26:59 sd-53420 sshd\[23283\]: Invalid user project from 106.13.55.5
Jan 31 12:26:59 sd-53420 sshd\[23283\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.55.5
...
2020-01-31 19:37:28
106.13.55.5 attackspambots
Unauthorized connection attempt detected from IP address 106.13.55.5 to port 2220 [J]
2020-01-27 08:59:32
106.13.55.24 attack
Unauthorized connection attempt detected from IP address 106.13.55.24 to port 2220 [J]
2020-01-22 01:42:52
106.13.55.24 attack
Unauthorized connection attempt detected from IP address 106.13.55.24 to port 2220 [J]
2020-01-20 17:40:50
106.13.55.24 attackspam
Unauthorized connection attempt detected from IP address 106.13.55.24 to port 2220 [J]
2020-01-19 21:37:54
106.13.55.24 attackspam
Unauthorized connection attempt detected from IP address 106.13.55.24 to port 2220 [J]
2020-01-04 21:06:08
106.13.55.24 attackbots
Jan  3 01:23:34 ws22vmsma01 sshd[190945]: Failed password for root from 106.13.55.24 port 51000 ssh2
...
2020-01-03 19:59:38
106.13.55.24 attackbots
Invalid user lilian from 106.13.55.24 port 60164
2019-12-28 22:15:15
106.13.55.170 attackspam
Invalid user delchini from 106.13.55.170 port 42876
2019-12-27 20:28:38
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.55.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23337
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.55.50.			IN	A

;; AUTHORITY SECTION:
.			417	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030902 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 10 03:34:53 CST 2020
;; MSG SIZE  rcvd: 116
HOST信息:
Host 50.55.13.106.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 50.55.13.106.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
103.48.81.8 attackspambots
Spam
2019-09-08 06:50:43
128.199.79.37 attack
2019-09-07T23:48:47.088403  sshd[2078]: Invalid user minecraftpassword from 128.199.79.37 port 53009
2019-09-07T23:48:47.103833  sshd[2078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.79.37
2019-09-07T23:48:47.088403  sshd[2078]: Invalid user minecraftpassword from 128.199.79.37 port 53009
2019-09-07T23:48:48.840851  sshd[2078]: Failed password for invalid user minecraftpassword from 128.199.79.37 port 53009 ssh2
2019-09-07T23:53:35.800980  sshd[2105]: Invalid user plex123 from 128.199.79.37 port 46359
...
2019-09-08 06:49:50
177.234.178.103 attack
2019-09-07T23:52:07.867703 X postfix/smtpd[25632]: NOQUEUE: reject: RCPT from unknown[177.234.178.103]: 554 5.7.1 Service unavailable; Client host [177.234.178.103] blocked using zen.spamhaus.org; from= to= proto=SMTP helo=
2019-09-08 07:25:07
188.130.166.5 attackbotsspam
[portscan] Port scan
2019-09-08 07:03:58
37.187.113.229 attack
Jan 27 10:40:09 vtv3 sshd\[23809\]: Invalid user webmail from 37.187.113.229 port 50850
Jan 27 10:40:09 vtv3 sshd\[23809\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.113.229
Jan 27 10:40:11 vtv3 sshd\[23809\]: Failed password for invalid user webmail from 37.187.113.229 port 50850 ssh2
Jan 27 10:44:41 vtv3 sshd\[24460\]: Invalid user openvpn from 37.187.113.229 port 54806
Jan 27 10:44:41 vtv3 sshd\[24460\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.113.229
Feb 12 14:05:38 vtv3 sshd\[23839\]: Invalid user systemuser from 37.187.113.229 port 46390
Feb 12 14:05:38 vtv3 sshd\[23839\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.113.229
Feb 12 14:05:40 vtv3 sshd\[23839\]: Failed password for invalid user systemuser from 37.187.113.229 port 46390 ssh2
Feb 12 14:10:46 vtv3 sshd\[25219\]: Invalid user sysadm from 37.187.113.229 port 36688
Feb 12 14:10:46
2019-09-08 07:23:14
114.203.178.207 attack
Sep  7 17:52:30 localhost kernel: [1630967.555753] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=114.203.178.207 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=49 ID=13686 PROTO=TCP SPT=2917 DPT=23 WINDOW=63365 RES=0x00 SYN URGP=0 
Sep  7 17:52:30 localhost kernel: [1630967.555760] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=114.203.178.207 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=49 ID=13686 PROTO=TCP SPT=2917 DPT=23 SEQ=758669438 ACK=0 WINDOW=63365 RES=0x00 SYN URGP=0 
Sep  7 17:52:31 localhost kernel: [1630967.581193] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=114.203.178.207 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=49 ID=13686 PROTO=TCP SPT=2917 DPT=23 WINDOW=63365 RES=0x00 SYN URGP=0 
Sep  7 17:52:31 localhost kernel: [1630967.581200] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=114.203.178.207 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0
2019-09-08 07:10:24
14.2.190.194 attackbotsspam
Sep  7 11:46:59 hpm sshd\[13632\]: Invalid user system from 14.2.190.194
Sep  7 11:46:59 hpm sshd\[13632\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.2.190.194
Sep  7 11:47:00 hpm sshd\[13632\]: Failed password for invalid user system from 14.2.190.194 port 34856 ssh2
Sep  7 11:52:16 hpm sshd\[14093\]: Invalid user ftpuser from 14.2.190.194
Sep  7 11:52:16 hpm sshd\[14093\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.2.190.194
2019-09-08 07:18:24
185.187.93.218 attackspam
Spam
2019-09-08 06:42:22
165.227.214.163 attack
F2B jail: sshd. Time: 2019-09-08 01:05:41, Reported by: VKReport
2019-09-08 07:11:38
112.78.167.65 attack
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-07 21:15:04,093 INFO [amun_request_handler] PortScan Detected on Port: 445 (112.78.167.65)
2019-09-08 07:28:52
104.223.170.190 attackbotsspam
Spam
2019-09-08 06:48:10
46.227.63.58 attackspam
Sep  8 01:33:49 server sshd\[29620\]: Invalid user tomcat from 46.227.63.58 port 52848
Sep  8 01:33:49 server sshd\[29620\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.227.63.58
Sep  8 01:33:51 server sshd\[29620\]: Failed password for invalid user tomcat from 46.227.63.58 port 52848 ssh2
Sep  8 01:38:21 server sshd\[10921\]: Invalid user mc3 from 46.227.63.58 port 46609
Sep  8 01:38:21 server sshd\[10921\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.227.63.58
2019-09-08 06:53:22
42.145.72.12 attackbotsspam
" "
2019-09-08 06:52:09
27.77.254.179 attackspam
(sshd) Failed SSH login from 27.77.254.179 (localhost): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep  7 19:12:41 chookity sshd[21628]: Invalid user admin from 27.77.254.179 port 43072
Sep  7 19:13:06 chookity sshd[21634]: Invalid user user from 27.77.254.179 port 11032
Sep  7 19:13:21 chookity sshd[21636]: Invalid user ubnt from 27.77.254.179 port 47008
Sep  7 19:13:46 chookity sshd[21641]: Invalid user nagios from 27.77.254.179 port 24076
Sep  7 19:14:47 chookity sshd[21652]: Invalid user tomcat from 27.77.254.179 port 50452
2019-09-08 07:19:20
208.64.33.123 attackspam
Jul 31 10:49:49 vtv3 sshd\[7875\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.64.33.123  user=root
Jul 31 10:49:51 vtv3 sshd\[7875\]: Failed password for root from 208.64.33.123 port 59884 ssh2
Jul 31 10:56:28 vtv3 sshd\[11376\]: Invalid user mapred from 208.64.33.123 port 54500
Jul 31 10:56:28 vtv3 sshd\[11376\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.64.33.123
Jul 31 10:56:30 vtv3 sshd\[11376\]: Failed password for invalid user mapred from 208.64.33.123 port 54500 ssh2
Jul 31 11:08:40 vtv3 sshd\[17235\]: Invalid user admin from 208.64.33.123 port 35994
Jul 31 11:08:40 vtv3 sshd\[17235\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.64.33.123
Jul 31 11:08:43 vtv3 sshd\[17235\]: Failed password for invalid user admin from 208.64.33.123 port 35994 ssh2
Jul 31 11:12:47 vtv3 sshd\[19270\]: Invalid user wifi from 208.64.33.123 port 58128
Jul 31 11:12:47 vtv3
2019-09-08 07:30:12

最近上报的IP列表

122.152.192.98 77.103.119.84 124.207.169.60 114.110.36.114
73.248.25.95 48.106.64.57 146.228.177.216 41.65.36.170
183.182.111.63 185.171.63.79 60.242.128.1 88.25.191.252
183.199.40.188 154.121.26.86 68.183.32.244 112.206.162.129
185.220.182.70 154.127.235.212 38.121.43.109 185.230.206.47