106.13.66.103 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Aug 21 08:19:36 pixelmemory sshd[2516658]: Invalid user rosa from 106.13.66.103 port 57960 Aug 21 08:19:36 pixelmemory sshd[2516658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 Aug 21 08:19:36 pixelmemory sshd[2516658]: Invalid user rosa from 106.13.66.103 port 57960 Aug 21 08:19:38 pixelmemory sshd[2516658]: Failed password for invalid user rosa from 106.13.66.103 port 57960 ssh2 Aug 21 08:23:17 pixelmemory sshd[2523039]: Invalid user user2 from 106.13.66.103 port 36144 ...	2020-08-21 23:31:38
attackbotsspam	Aug 15 20:15:46 firewall sshd[23813]: Failed password for root from 106.13.66.103 port 34498 ssh2 Aug 15 20:19:58 firewall sshd[24035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 user=root Aug 15 20:19:59 firewall sshd[24035]: Failed password for root from 106.13.66.103 port 42484 ssh2 ...	2020-08-16 07:37:20
attackbots	Aug 13 02:14:30 journals sshd\[21031\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 user=root Aug 13 02:14:33 journals sshd\[21031\]: Failed password for root from 106.13.66.103 port 53440 ssh2 Aug 13 02:18:49 journals sshd\[21409\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 user=root Aug 13 02:18:51 journals sshd\[21409\]: Failed password for root from 106.13.66.103 port 59618 ssh2 Aug 13 02:23:18 journals sshd\[21840\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 user=root ...	2020-08-13 07:44:12
attack	Aug 9 10:00:52 ns381471 sshd[32353]: Failed password for root from 106.13.66.103 port 36034 ssh2	2020-08-09 17:14:09
attack	SSH bruteforce	2020-08-06 16:26:54
attackbots	Aug 4 07:51:16 ny01 sshd[14010]: Failed password for root from 106.13.66.103 port 47510 ssh2 Aug 4 07:54:01 ny01 sshd[14339]: Failed password for root from 106.13.66.103 port 50162 ssh2	2020-08-04 20:19:50
attackbotsspam	5x Failed Password	2020-07-12 23:56:54
attack	Jun 28 11:48:43 ws26vmsma01 sshd[32293]: Failed password for root from 106.13.66.103 port 53740 ssh2 Jun 28 12:10:45 ws26vmsma01 sshd[72434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 ...	2020-06-29 00:46:47
attackbotsspam	Jun 21 07:56:26 jane sshd[24774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 Jun 21 07:56:28 jane sshd[24774]: Failed password for invalid user j from 106.13.66.103 port 38220 ssh2 ...	2020-06-21 15:09:07
attack	Jun 17 08:27:10 server sshd[7781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 Jun 17 08:27:12 server sshd[7781]: Failed password for invalid user arun from 106.13.66.103 port 51574 ssh2 Jun 17 08:31:05 server sshd[8079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 ...	2020-06-17 16:36:13
attackbots	Jun 12 01:20:19 php1 sshd\[10798\]: Invalid user idcisp from 106.13.66.103 Jun 12 01:20:19 php1 sshd\[10798\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 Jun 12 01:20:21 php1 sshd\[10798\]: Failed password for invalid user idcisp from 106.13.66.103 port 41836 ssh2 Jun 12 01:24:31 php1 sshd\[11133\]: Invalid user admin from 106.13.66.103 Jun 12 01:24:31 php1 sshd\[11133\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103	2020-06-12 19:26:41
attackbots	Jun 11 19:32:40 ArkNodeAT sshd\[25423\]: Invalid user margarito from 106.13.66.103 Jun 11 19:32:40 ArkNodeAT sshd\[25423\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 Jun 11 19:32:43 ArkNodeAT sshd\[25423\]: Failed password for invalid user margarito from 106.13.66.103 port 45780 ssh2	2020-06-12 03:53:16
attackbots	Jun 6 23:54:35 home sshd[4318]: Failed password for root from 106.13.66.103 port 51654 ssh2 Jun 6 23:58:03 home sshd[4731]: Failed password for root from 106.13.66.103 port 50930 ssh2 ...	2020-06-07 07:16:45
attackspam	Jun 4 01:53:18 mout sshd[21623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 user=root Jun 4 01:53:20 mout sshd[21623]: Failed password for root from 106.13.66.103 port 48216 ssh2	2020-06-04 07:55:27
attack	May 30 14:20:28 ns392434 sshd[26504]: Invalid user ftpd from 106.13.66.103 port 40912 May 30 14:20:28 ns392434 sshd[26504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 May 30 14:20:28 ns392434 sshd[26504]: Invalid user ftpd from 106.13.66.103 port 40912 May 30 14:20:30 ns392434 sshd[26504]: Failed password for invalid user ftpd from 106.13.66.103 port 40912 ssh2 May 30 14:28:44 ns392434 sshd[26673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 user=root May 30 14:28:46 ns392434 sshd[26673]: Failed password for root from 106.13.66.103 port 44352 ssh2 May 30 14:33:01 ns392434 sshd[26734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 user=root May 30 14:33:03 ns392434 sshd[26734]: Failed password for root from 106.13.66.103 port 42708 ssh2 May 30 14:37:23 ns392434 sshd[26817]: Invalid user jean from 106.13.66.103 port 41058	2020-05-31 00:04:25
attackbotsspam	2020-05-28T14:23:05.527475billing sshd[19316]: Failed password for root from 106.13.66.103 port 60818 ssh2 2020-05-28T14:25:57.638479billing sshd[26060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 user=root 2020-05-28T14:25:59.732259billing sshd[26060]: Failed password for root from 106.13.66.103 port 37318 ssh2 ...	2020-05-28 19:52:57
attack	May 23 23:27:48 abendstille sshd\[22995\]: Invalid user doa from 106.13.66.103 May 23 23:27:48 abendstille sshd\[22995\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 May 23 23:27:50 abendstille sshd\[22995\]: Failed password for invalid user doa from 106.13.66.103 port 51292 ssh2 May 23 23:31:41 abendstille sshd\[26752\]: Invalid user xyh from 106.13.66.103 May 23 23:31:41 abendstille sshd\[26752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 ...	2020-05-24 05:41:58
attackbots	SSH Brute Force	2020-04-29 23:46:55
attackspambots	$f2bV_matches	2020-04-16 15:08:49
attackspam	Mar 31 12:33:14 powerpi2 sshd[32641]: Failed password for root from 106.13.66.103 port 60004 ssh2 Mar 31 12:34:55 powerpi2 sshd[32759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 user=root Mar 31 12:34:57 powerpi2 sshd[32759]: Failed password for root from 106.13.66.103 port 46954 ssh2 ...	2020-03-31 21:01:53
attackbots	Mar 29 08:43:29 ny01 sshd[31351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 Mar 29 08:43:31 ny01 sshd[31351]: Failed password for invalid user raynard from 106.13.66.103 port 59436 ssh2 Mar 29 08:48:47 ny01 sshd[984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103	2020-03-29 21:16:10
attack	k+ssh-bruteforce	2020-03-24 09:33:49
attackbots	20 attempts against mh-ssh on echoip	2020-03-22 06:12:35

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.66.172	attack	(sshd) Failed SSH login from 106.13.66.172 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Feb 20 23:53:51 host sshd[61436]: Invalid user www from 106.13.66.172 port 37418	2020-02-21 16:43:16
106.13.66.134	attack	Unauthorized connection attempt detected from IP address 106.13.66.134 to port 2004	2019-12-31 02:37:19

类型

评论内容

时间

106.13.66.172

attack

(sshd) Failed SSH login from 106.13.66.172 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Feb 20 23:53:51 host sshd[61436]: Invalid user www from 106.13.66.172 port 37418

2020-02-21 16:43:16

106.13.66.134

attack

Unauthorized connection attempt detected from IP address 106.13.66.134 to port 2004

2019-12-31 02:37:19

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.66.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5917
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.66.103.			IN	A

;; AUTHORITY SECTION:
.			320	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032102 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 22 06:12:32 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 103.66.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 103.66.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
54.37.17.21	attackbotsspam	54.37.17.21 - - [15/Aug/2020:21:43:20 +0100] "POST /wp-login.php HTTP/1.1" 200 2132 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.37.17.21 - - [15/Aug/2020:21:43:21 +0100] "POST /wp-login.php HTTP/1.1" 200 2100 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.37.17.21 - - [15/Aug/2020:21:43:22 +0100] "POST /wp-login.php HTTP/1.1" 200 2101 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-16 08:02:33
47.89.18.138	attackbotsspam	47.89.18.138 - - [16/Aug/2020:00:07:37 +0100] "POST /wp-login.php HTTP/1.1" 200 2136 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 47.89.18.138 - - [16/Aug/2020:00:07:40 +0100] "POST /wp-login.php HTTP/1.1" 200 2111 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 47.89.18.138 - - [16/Aug/2020:00:07:43 +0100] "POST /wp-login.php HTTP/1.1" 200 2113 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-16 07:47:55
222.76.203.58	attackspam	Aug 15 23:09:18 cosmoit sshd[31733]: Failed password for root from 222.76.203.58 port 2216 ssh2	2020-08-16 08:08:27
104.220.19.193	attackbots	Port scan on 1 port(s): 22	2020-08-16 07:53:42
222.186.175.202	attackspam	$f2bV_matches	2020-08-16 07:45:10
106.12.88.246	attackspam	Failed password for root from 106.12.88.246 port 43038 ssh2	2020-08-16 07:42:39
81.68.68.231	attackspam	prod6 ...	2020-08-16 07:49:51
106.13.66.103	attackbotsspam	Aug 15 20:15:46 firewall sshd[23813]: Failed password for root from 106.13.66.103 port 34498 ssh2 Aug 15 20:19:58 firewall sshd[24035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 user=root Aug 15 20:19:59 firewall sshd[24035]: Failed password for root from 106.13.66.103 port 42484 ssh2 ...	2020-08-16 07:37:20
13.71.21.123	attack	Bruteforce detected by fail2ban	2020-08-16 08:05:01
187.95.19.68	attack	20/8/15@16:43:42: FAIL: Alarm-Intrusion address from=187.95.19.68 ...	2020-08-16 07:48:26
202.79.34.76	attackbots	Aug 15 22:33:43 ns382633 sshd\[11230\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.79.34.76 user=root Aug 15 22:33:45 ns382633 sshd\[11230\]: Failed password for root from 202.79.34.76 port 34510 ssh2 Aug 15 22:41:30 ns382633 sshd\[12781\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.79.34.76 user=root Aug 15 22:41:32 ns382633 sshd\[12781\]: Failed password for root from 202.79.34.76 port 45218 ssh2 Aug 15 22:43:20 ns382633 sshd\[12935\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.79.34.76 user=root	2020-08-16 08:03:12
113.240.198.211	attackbots	E-Mail Spam (RBL) [REJECTED]	2020-08-16 07:34:19
93.174.95.106	attackspambots	Icarus honeypot on github	2020-08-16 07:58:45
174.219.154.87	attack	Brute forcing email accounts	2020-08-16 07:44:32
178.62.104.58	attackbots	Aug 16 01:38:16 haigwepa sshd[26349]: Failed password for root from 178.62.104.58 port 39980 ssh2 ...	2020-08-16 08:04:22

最近上报的IP列表

130.97.168.12	79.63.228.37	179.17.211.119	35.8.181.19
19.247.103.239	135.172.249.150	77.53.16.171	45.95.168.212
188.40.79.100	66.71.179.237	174.74.222.247	85.231.152.64
128.111.96.82	179.128.19.59	92.33.14.137	209.181.238.1
39.68.38.234	72.35.122.99	126.44.145.7	131.215.78.232