106.13.78.137 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	May 13 08:56:35 pkdns2 sshd\[62046\]: Invalid user admin from 106.13.78.137May 13 08:56:37 pkdns2 sshd\[62046\]: Failed password for invalid user admin from 106.13.78.137 port 26952 ssh2May 13 09:00:55 pkdns2 sshd\[62261\]: Invalid user wps from 106.13.78.137May 13 09:00:57 pkdns2 sshd\[62261\]: Failed password for invalid user wps from 106.13.78.137 port 18401 ssh2May 13 09:05:13 pkdns2 sshd\[62578\]: Invalid user admin from 106.13.78.137May 13 09:05:16 pkdns2 sshd\[62578\]: Failed password for invalid user admin from 106.13.78.137 port 9856 ssh2 ...	2020-05-13 19:24:16
attack	Apr 26 18:59:36 vlre-nyc-1 sshd\[8337\]: Invalid user sergio from 106.13.78.137 Apr 26 18:59:36 vlre-nyc-1 sshd\[8337\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.137 Apr 26 18:59:37 vlre-nyc-1 sshd\[8337\]: Failed password for invalid user sergio from 106.13.78.137 port 57219 ssh2 Apr 26 19:02:23 vlre-nyc-1 sshd\[8414\]: Invalid user rdp from 106.13.78.137 Apr 26 19:02:23 vlre-nyc-1 sshd\[8414\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.137 ...	2020-04-27 03:15:55
attack	$f2bV_matches	2020-04-21 15:04:46
attackspambots	Apr 6 12:40:45 marvibiene sshd[50380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.137 user=root Apr 6 12:40:47 marvibiene sshd[50380]: Failed password for root from 106.13.78.137 port 47343 ssh2 Apr 6 12:45:58 marvibiene sshd[50462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.137 user=root Apr 6 12:46:00 marvibiene sshd[50462]: Failed password for root from 106.13.78.137 port 36730 ssh2 ...	2020-04-06 20:52:01
attack	SSH Bruteforce attack	2020-04-06 19:17:36
attackbots	Mar 29 23:43:36 meumeu sshd[24934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.137 Mar 29 23:43:38 meumeu sshd[24934]: Failed password for invalid user rj from 106.13.78.137 port 24616 ssh2 Mar 29 23:47:20 meumeu sshd[25497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.137 ...	2020-03-30 06:00:54
attackbots	Mar 19 20:28:36 php1 sshd\[27939\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.137 user=root Mar 19 20:28:38 php1 sshd\[27939\]: Failed password for root from 106.13.78.137 port 22210 ssh2 Mar 19 20:30:19 php1 sshd\[28163\]: Invalid user lab from 106.13.78.137 Mar 19 20:30:19 php1 sshd\[28163\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.137 Mar 19 20:30:22 php1 sshd\[28163\]: Failed password for invalid user lab from 106.13.78.137 port 35644 ssh2	2020-03-20 16:08:32
attackbotsspam	Mar 13 13:06:57 *** sshd[3555]: User root from 106.13.78.137 not allowed because not listed in AllowUsers	2020-03-14 03:35:16
attackspambots	Mar 9 05:52:16 v22018086721571380 sshd[20514]: Failed password for invalid user root!2# from 106.13.78.137 port 28553 ssh2	2020-03-09 13:57:43
attackbotsspam	Invalid user mm from 106.13.78.137 port 40176	2020-02-21 08:20:24
attack	Unauthorized connection attempt detected from IP address 106.13.78.137 to port 2220 [J]	2020-01-23 17:14:35
attackbots	Automatic report - SSH Brute-Force Attack	2020-01-10 16:37:29
attackbots	Unauthorized connection attempt detected from IP address 106.13.78.137 to port 2220 [J]	2020-01-07 18:01:00
attack	Dec 14 15:58:50 meumeu sshd[3991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.137 Dec 14 15:58:51 meumeu sshd[3991]: Failed password for invalid user wojtecki from 106.13.78.137 port 26613 ssh2 Dec 14 16:06:30 meumeu sshd[5614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.137 ...	2019-12-15 01:20:53
attack	Dec 2 22:16:37 ns382633 sshd\[11283\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.137 user=root Dec 2 22:16:39 ns382633 sshd\[11283\]: Failed password for root from 106.13.78.137 port 14974 ssh2 Dec 2 22:34:30 ns382633 sshd\[14503\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.137 user=root Dec 2 22:34:32 ns382633 sshd\[14503\]: Failed password for root from 106.13.78.137 port 58454 ssh2 Dec 2 22:39:22 ns382633 sshd\[15747\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.137 user=root	2019-12-03 08:14:27
attack	Nov 30 08:03:33 OPSO sshd\[9071\]: Invalid user tatsu from 106.13.78.137 port 26480 Nov 30 08:03:33 OPSO sshd\[9071\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.137 Nov 30 08:03:35 OPSO sshd\[9071\]: Failed password for invalid user tatsu from 106.13.78.137 port 26480 ssh2 Nov 30 08:08:25 OPSO sshd\[9781\]: Invalid user anavin from 106.13.78.137 port 59794 Nov 30 08:08:25 OPSO sshd\[9781\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.137	2019-11-30 15:12:19

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.78.210	attackspam	Invalid user pozvizd from 106.13.78.210 port 39564	2020-10-13 13:59:43
106.13.78.210	attackbots	Oct 13 00:27:21 eventyay sshd[1551]: Failed password for root from 106.13.78.210 port 36368 ssh2 Oct 13 00:30:37 eventyay sshd[1680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.210 Oct 13 00:30:39 eventyay sshd[1680]: Failed password for invalid user zy from 106.13.78.210 port 33060 ssh2 ...	2020-10-13 06:44:08
106.13.78.210	attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-12 01:27:38
106.13.78.210	attackbotsspam	Oct 7 22:52:29 buvik sshd[984]: Failed password for root from 106.13.78.210 port 46792 ssh2 Oct 7 22:54:52 buvik sshd[1344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.210 user=root Oct 7 22:54:55 buvik sshd[1344]: Failed password for root from 106.13.78.210 port 56786 ssh2 ...	2020-10-08 06:11:04
106.13.78.210	attackbotsspam	Oct 7 13:41:58 Server sshd[688713]: Failed password for root from 106.13.78.210 port 37416 ssh2 Oct 7 13:44:01 Server sshd[689683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.210 user=root Oct 7 13:44:03 Server sshd[689683]: Failed password for root from 106.13.78.210 port 35462 ssh2 Oct 7 13:46:09 Server sshd[690587]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.210 user=root Oct 7 13:46:11 Server sshd[690587]: Failed password for root from 106.13.78.210 port 33514 ssh2 ...	2020-10-07 22:30:41
106.13.78.210	attack	prod8 ...	2020-10-07 14:31:43
106.13.78.210	attack	$f2bV_matches	2020-10-07 04:14:29
106.13.78.210	attackspambots	Invalid user user from 106.13.78.210 port 41994	2020-10-06 20:18:01
106.13.78.210	attack	Invalid user tortoisesvn from 106.13.78.210 port 45430	2020-09-15 19:59:28
106.13.78.210	attack	Sep 15 03:51:44 roki-contabo sshd\[13296\]: Invalid user ts from 106.13.78.210 Sep 15 03:51:44 roki-contabo sshd\[13296\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.210 Sep 15 03:51:46 roki-contabo sshd\[13296\]: Failed password for invalid user ts from 106.13.78.210 port 58110 ssh2 Sep 15 03:56:56 roki-contabo sshd\[13325\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.210 user=root Sep 15 03:56:57 roki-contabo sshd\[13325\]: Failed password for root from 106.13.78.210 port 53784 ssh2 ...	2020-09-15 12:03:57
106.13.78.210	attack	$f2bV_matches	2020-09-15 04:10:20
106.13.78.198	attack	Bruteforce detected by fail2ban	2020-08-23 02:05:22
106.13.78.198	attack	Aug 20 08:33:26 h2646465 sshd[20166]: Invalid user oracle from 106.13.78.198 Aug 20 08:33:26 h2646465 sshd[20166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.198 Aug 20 08:33:26 h2646465 sshd[20166]: Invalid user oracle from 106.13.78.198 Aug 20 08:33:28 h2646465 sshd[20166]: Failed password for invalid user oracle from 106.13.78.198 port 48150 ssh2 Aug 20 08:45:20 h2646465 sshd[21979]: Invalid user admin from 106.13.78.198 Aug 20 08:45:20 h2646465 sshd[21979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.198 Aug 20 08:45:20 h2646465 sshd[21979]: Invalid user admin from 106.13.78.198 Aug 20 08:45:22 h2646465 sshd[21979]: Failed password for invalid user admin from 106.13.78.198 port 56706 ssh2 Aug 20 08:47:40 h2646465 sshd[22054]: Invalid user cwt from 106.13.78.198 ...	2020-08-20 15:14:59
106.13.78.198	attackbots	2020-08-02T22:12:59.071977shield sshd\[1723\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.198 user=root 2020-08-02T22:13:00.490726shield sshd\[1723\]: Failed password for root from 106.13.78.198 port 40342 ssh2 2020-08-02T22:17:01.766000shield sshd\[2367\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.198 user=root 2020-08-02T22:17:03.741725shield sshd\[2367\]: Failed password for root from 106.13.78.198 port 48466 ssh2 2020-08-02T22:21:08.216266shield sshd\[2757\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.198 user=root	2020-08-03 08:30:17
106.13.78.143	attack	Aug 2 02:39:36 php1 sshd\[23713\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.143 user=root Aug 2 02:39:38 php1 sshd\[23713\]: Failed password for root from 106.13.78.143 port 52326 ssh2 Aug 2 02:42:09 php1 sshd\[23882\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.143 user=root Aug 2 02:42:11 php1 sshd\[23882\]: Failed password for root from 106.13.78.143 port 55040 ssh2 Aug 2 02:44:50 php1 sshd\[24072\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.143 user=root	2020-08-02 20:57:39

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.78.137
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63467
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.78.137.			IN	A

;; AUTHORITY SECTION:
.			470	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019113000 1800 900 604800 86400

;; Query time: 120 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 30 15:12:15 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 137.78.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 137.78.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
59.63.163.30	attackspambots	WordPress wp-login brute force :: 59.63.163.30 0.040 BYPASS [21/Oct/2019:07:27:07 1100] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-21 05:26:25
183.240.157.3	attackbotsspam	Oct 20 11:02:53 web9 sshd\[17670\]: Invalid user mdev from 183.240.157.3 Oct 20 11:02:53 web9 sshd\[17670\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.240.157.3 Oct 20 11:02:54 web9 sshd\[17670\]: Failed password for invalid user mdev from 183.240.157.3 port 44278 ssh2 Oct 20 11:07:18 web9 sshd\[18268\]: Invalid user simon from 183.240.157.3 Oct 20 11:07:18 web9 sshd\[18268\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.240.157.3	2019-10-21 05:20:30
202.164.48.202	attack	Oct 20 22:06:00 nextcloud sshd\[5579\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.164.48.202 user=root Oct 20 22:06:02 nextcloud sshd\[5579\]: Failed password for root from 202.164.48.202 port 46359 ssh2 Oct 20 22:27:22 nextcloud sshd\[12346\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.164.48.202 user=root ...	2019-10-21 05:15:39
92.91.60.249	attack	2019-10-20T21:10:21.676560abusebot-4.cloudsearch.cf sshd\[19471\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=249.60.91.92.rev.sfr.net user=root	2019-10-21 05:23:02
106.75.215.121	attackspam	Oct 20 10:57:25 hanapaa sshd\[11788\]: Invalid user jon from 106.75.215.121 Oct 20 10:57:25 hanapaa sshd\[11788\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.215.121 Oct 20 10:57:27 hanapaa sshd\[11788\]: Failed password for invalid user jon from 106.75.215.121 port 38394 ssh2 Oct 20 11:01:41 hanapaa sshd\[12117\]: Invalid user teamspeak from 106.75.215.121 Oct 20 11:01:41 hanapaa sshd\[12117\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.215.121	2019-10-21 05:02:55
168.255.251.126	attackspam	Oct 20 23:08:12 vps647732 sshd[24983]: Failed password for root from 168.255.251.126 port 35008 ssh2 ...	2019-10-21 05:11:24
51.83.41.120	attackbots	SSH Bruteforce	2019-10-21 05:07:12
139.155.45.196	attackspambots	Oct 16 12:35:43 mail sshd[18193]: Failed password for invalid user abdellaue from 139.155.45.196 port 38122 ssh2 Oct 16 12:35:43 mail sshd[18193]: Received disconnect from 139.155.45.196: 11: Bye Bye [preauth] Oct 16 12:43:11 mail sshd[19551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.45.196 user=r.r Oct 16 12:43:13 mail sshd[19551]: Failed password for r.r from 139.155.45.196 port 33534 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=139.155.45.196	2019-10-21 05:08:32
159.65.155.227	attackspam	2019-10-20T15:06:39.8440101495-001 sshd\[39141\]: Failed password for root from 159.65.155.227 port 42328 ssh2 2019-10-20T16:09:31.1010831495-001 sshd\[41538\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.155.227 user=root 2019-10-20T16:09:32.7696461495-001 sshd\[41538\]: Failed password for root from 159.65.155.227 port 33858 ssh2 2019-10-20T16:13:39.1064971495-001 sshd\[41670\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.155.227 user=root 2019-10-20T16:13:41.4878091495-001 sshd\[41670\]: Failed password for root from 159.65.155.227 port 44576 ssh2 2019-10-20T16:17:55.1229881495-001 sshd\[41796\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.155.227 user=root ...	2019-10-21 05:04:36
115.159.86.75	attackspambots	Oct 20 23:27:12 sauna sshd[96319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.86.75 Oct 20 23:27:14 sauna sshd[96319]: Failed password for invalid user ts3srv2 from 115.159.86.75 port 40308 ssh2 ...	2019-10-21 05:22:48
106.13.189.240	attackspam	2019-10-20T20:18:41.878256hub.schaetter.us sshd\[9351\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.189.240 user=root 2019-10-20T20:18:43.717417hub.schaetter.us sshd\[9351\]: Failed password for root from 106.13.189.240 port 58382 ssh2 2019-10-20T20:22:52.139744hub.schaetter.us sshd\[9379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.189.240 user=root 2019-10-20T20:22:54.104224hub.schaetter.us sshd\[9379\]: Failed password for root from 106.13.189.240 port 40634 ssh2 2019-10-20T20:27:10.638491hub.schaetter.us sshd\[9387\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.189.240 user=root ...	2019-10-21 05:24:03
45.55.176.165	attackbotsspam	www.lust-auf-land.com 45.55.176.165 \[20/Oct/2019:22:27:41 +0200\] "POST /wp-login.php HTTP/1.1" 200 8150 "http://www.lust-auf-land.com/wp-login.php" "Mozilla/5.0 $Windows NT 6.1\; rv:60.0$ Gecko/20100101 Firefox/60.0" www.lust-auf-land.com 45.55.176.165 \[20/Oct/2019:22:27:42 +0200\] "POST /wp-login.php HTTP/1.1" 200 5114 "http://www.lust-auf-land.com/wp-login.php" "Mozilla/5.0 $Windows NT 6.1\; rv:60.0$ Gecko/20100101 Firefox/60.0"	2019-10-21 05:06:23
124.118.179.35	attackbots	Unauthorised access (Oct 20) SRC=124.118.179.35 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=23137 TCP DPT=23 WINDOW=64677 SYN	2019-10-21 05:10:45
80.103.35.79	attack	[Aegis] @ 2019-10-20 21:27:19 0100 -> SSH insecure connection attempt (scan).	2019-10-21 05:13:05
51.83.69.78	attack	Oct 20 22:42:31 xeon sshd[3269]: Failed password for root from 51.83.69.78 port 34940 ssh2	2019-10-21 05:12:05

最近上报的IP列表

100.193.182.166	179.114.165.187	49.49.45.220	105.151.158.141
43.227.253.152	97.91.226.214	201.200.25.255	180.161.83.58
2.116.207.17	74.70.33.188	154.111.100.194	150.191.213.118
75.121.22.132	175.28.85.104	211.159.182.44	77.247.109.61
61.180.39.72	106.12.6.136	117.4.120.126	81.77.9.212