106.13.94.96 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Oct 10 13:10:52 home sshd[10809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 user=root Oct 10 13:10:54 home sshd[10809]: Failed password for root from 106.13.94.96 port 36924 ssh2 Oct 10 13:36:24 home sshd[27892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 user=root Oct 10 13:36:26 home sshd[27892]: Failed password for root from 106.13.94.96 port 53156 ssh2 Oct 10 13:44:50 home sshd[1196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 user=root Oct 10 13:44:53 home sshd[1196]: Failed password for root from 106.13.94.96 port 58940 ssh2 Oct 10 13:48:34 home sshd[3760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 user=root Oct 10 13:48:36 home sshd[3760]: Failed password for root from 106.13.94.96 port 36442 ssh2 Oct 10 13:52:18 home sshd[6218]: pam_unix(sshd:auth): authentication fai	2019-10-11 06:53:44
attackbotsspam	Oct 6 19:36:44 web9 sshd\[19566\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 user=root Oct 6 19:36:46 web9 sshd\[19566\]: Failed password for root from 106.13.94.96 port 53224 ssh2 Oct 6 19:40:50 web9 sshd\[20094\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 user=root Oct 6 19:40:51 web9 sshd\[20094\]: Failed password for root from 106.13.94.96 port 52376 ssh2 Oct 6 19:44:39 web9 sshd\[20604\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 user=root	2019-10-07 13:46:23
attackspambots	Oct 2 11:45:37 ws19vmsma01 sshd[244048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 Oct 2 11:45:39 ws19vmsma01 sshd[244048]: Failed password for invalid user gitlab from 106.13.94.96 port 52180 ssh2 ...	2019-10-03 05:04:29
attack	2019-10-01T10:08:12.385777tmaserv sshd\[28185\]: Failed password for root from 106.13.94.96 port 46490 ssh2 2019-10-01T10:18:23.879406tmaserv sshd\[28926\]: Invalid user cssserver from 106.13.94.96 port 33220 2019-10-01T10:18:23.884974tmaserv sshd\[28926\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 2019-10-01T10:18:26.005734tmaserv sshd\[28926\]: Failed password for invalid user cssserver from 106.13.94.96 port 33220 ssh2 2019-10-01T10:23:34.431229tmaserv sshd\[29281\]: Invalid user user from 106.13.94.96 port 40698 2019-10-01T10:23:34.437013tmaserv sshd\[29281\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 ...	2019-10-01 15:26:45
attackspambots	Invalid user akira from 106.13.94.96 port 36588	2019-09-21 15:10:05
attack	Sep 10 15:12:31 www sshd\[14214\]: Invalid user 1 from 106.13.94.96 Sep 10 15:12:31 www sshd\[14214\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 Sep 10 15:12:32 www sshd\[14214\]: Failed password for invalid user 1 from 106.13.94.96 port 45984 ssh2 ...	2019-09-11 05:40:52
attackbotsspam	Sep 10 07:27:30 www sshd\[2895\]: Invalid user duser from 106.13.94.96 Sep 10 07:27:30 www sshd\[2895\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 Sep 10 07:27:32 www sshd\[2895\]: Failed password for invalid user duser from 106.13.94.96 port 44534 ssh2 ...	2019-09-10 12:43:07

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.94.131	attackspambots	Found on CINS badguys / proto=6 . srcport=55641 . dstport=5534 . (762)	2020-09-12 01:45:49
106.13.94.131	attackspambots	Found on CINS badguys / proto=6 . srcport=55641 . dstport=5534 . (762)	2020-09-11 17:36:29
106.13.94.193	attackspambots	Aug 25 05:50:39 v22019038103785759 sshd\[23410\]: Invalid user kingsley from 106.13.94.193 port 36652 Aug 25 05:50:39 v22019038103785759 sshd\[23410\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 Aug 25 05:50:41 v22019038103785759 sshd\[23410\]: Failed password for invalid user kingsley from 106.13.94.193 port 36652 ssh2 Aug 25 05:55:28 v22019038103785759 sshd\[24633\]: Invalid user ysl from 106.13.94.193 port 41834 Aug 25 05:55:28 v22019038103785759 sshd\[24633\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 ...	2020-08-25 15:13:14
106.13.94.131	attackspambots	Aug 20 18:48:56 cumulus sshd[31469]: Invalid user doc from 106.13.94.131 port 54944 Aug 20 18:48:56 cumulus sshd[31469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.131 Aug 20 18:48:58 cumulus sshd[31469]: Failed password for invalid user doc from 106.13.94.131 port 54944 ssh2 Aug 20 18:48:58 cumulus sshd[31469]: Received disconnect from 106.13.94.131 port 54944:11: Bye Bye [preauth] Aug 20 18:48:58 cumulus sshd[31469]: Disconnected from 106.13.94.131 port 54944 [preauth] Aug 20 18:58:12 cumulus sshd[32225]: Invalid user dms from 106.13.94.131 port 45134 Aug 20 18:58:12 cumulus sshd[32225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.131 Aug 20 18:58:14 cumulus sshd[32225]: Failed password for invalid user dms from 106.13.94.131 port 45134 ssh2 Aug 20 18:58:14 cumulus sshd[32225]: Received disconnect from 106.13.94.131 port 45134:11: Bye Bye [preauth] Aug 20 18:58........ -------------------------------	2020-08-23 13:53:18
106.13.94.131	attackbots	2020-08-22T06:00:33.342627shield sshd\[21876\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.131 user=root 2020-08-22T06:00:35.514827shield sshd\[21876\]: Failed password for root from 106.13.94.131 port 41064 ssh2 2020-08-22T06:02:17.677213shield sshd\[22417\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.131 user=root 2020-08-22T06:02:19.452783shield sshd\[22417\]: Failed password for root from 106.13.94.131 port 59434 ssh2 2020-08-22T06:03:59.186372shield sshd\[22924\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.131 user=root	2020-08-22 17:00:35
106.13.94.193	attack	Aug 20 08:06:15 OPSO sshd\[9037\]: Invalid user wang from 106.13.94.193 port 38136 Aug 20 08:06:15 OPSO sshd\[9037\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 Aug 20 08:06:17 OPSO sshd\[9037\]: Failed password for invalid user wang from 106.13.94.193 port 38136 ssh2 Aug 20 08:09:39 OPSO sshd\[9724\]: Invalid user a from 106.13.94.193 port 44116 Aug 20 08:09:39 OPSO sshd\[9724\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193	2020-08-20 14:59:27
106.13.94.193	attack	$f2bV_matches	2020-08-12 14:11:14
106.13.94.193	attackbots	Invalid user wangxiaoyi from 106.13.94.193 port 33692	2020-07-31 06:33:12
106.13.94.193	attackbots	2020-06-20T06:22:44.772444sd-86998 sshd[36689]: Invalid user deployment from 106.13.94.193 port 47690 2020-06-20T06:22:44.777857sd-86998 sshd[36689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 2020-06-20T06:22:44.772444sd-86998 sshd[36689]: Invalid user deployment from 106.13.94.193 port 47690 2020-06-20T06:22:47.341148sd-86998 sshd[36689]: Failed password for invalid user deployment from 106.13.94.193 port 47690 ssh2 2020-06-20T06:26:33.181061sd-86998 sshd[37075]: Invalid user stats from 106.13.94.193 port 42520 ...	2020-06-20 12:33:29
106.13.94.193	attackspam	Jun 7 15:58:27 vps sshd[519822]: Failed password for root from 106.13.94.193 port 34244 ssh2 Jun 7 16:00:41 vps sshd[531947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 user=root Jun 7 16:00:44 vps sshd[531947]: Failed password for root from 106.13.94.193 port 33130 ssh2 Jun 7 16:03:03 vps sshd[541155]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 user=root Jun 7 16:03:04 vps sshd[541155]: Failed password for root from 106.13.94.193 port 60254 ssh2 ...	2020-06-07 23:16:18
106.13.94.193	attackbotsspam	Jun 1 12:34:13 s30-ffm-r02 sshd[19090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 user=r.r Jun 1 12:34:15 s30-ffm-r02 sshd[19090]: Failed password for r.r from 106.13.94.193 port 43538 ssh2 Jun 1 12:43:40 s30-ffm-r02 sshd[19319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 user=r.r Jun 1 12:43:42 s30-ffm-r02 sshd[19319]: Failed password for r.r from 106.13.94.193 port 45914 ssh2 Jun 1 12:46:08 s30-ffm-r02 sshd[19374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 user=r.r Jun 1 12:46:10 s30-ffm-r02 sshd[19374]: Failed password for r.r from 106.13.94.193 port 43670 ssh2 Jun 1 12:48:00 s30-ffm-r02 sshd[19418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 user=r.r Jun 1 12:48:02 s30-ffm-r02 sshd[19418]: Failed password for r.r from 10........ -------------------------------	2020-06-01 23:52:43
106.13.94.193	attack	May 30 15:01:45 ArkNodeAT sshd\[21767\]: Invalid user jenkins from 106.13.94.193 May 30 15:01:45 ArkNodeAT sshd\[21767\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 May 30 15:01:47 ArkNodeAT sshd\[21767\]: Failed password for invalid user jenkins from 106.13.94.193 port 59660 ssh2	2020-05-30 23:13:53
106.13.94.193	attackspam	May 25 04:53:22 www6-3 sshd[25364]: Invalid user aulay from 106.13.94.193 port 39726 May 25 04:53:22 www6-3 sshd[25364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 May 25 04:53:24 www6-3 sshd[25364]: Failed password for invalid user aulay from 106.13.94.193 port 39726 ssh2 May 25 04:53:24 www6-3 sshd[25364]: Received disconnect from 106.13.94.193 port 39726:11: Bye Bye [preauth] May 25 04:53:24 www6-3 sshd[25364]: Disconnected from 106.13.94.193 port 39726 [preauth] May 25 04:57:10 www6-3 sshd[25615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 user=r.r May 25 04:57:12 www6-3 sshd[25615]: Failed password for r.r from 106.13.94.193 port 57672 ssh2 May 25 04:57:12 www6-3 sshd[25615]: Received disconnect from 106.13.94.193 port 57672:11: Bye Bye [preauth] May 25 04:57:12 www6-3 sshd[25615]: Disconnected from 106.13.94.193 port 57672 [preauth] ........ -------------------------------------------	2020-05-25 14:13:20
106.13.94.100	attack	2019-10-28T06:22:44.5393151495-001 sshd\[12172\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.100 user=root 2019-10-28T06:22:45.9520771495-001 sshd\[12172\]: Failed password for root from 106.13.94.100 port 39472 ssh2 2019-10-28T06:27:59.1518781495-001 sshd\[12398\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.100 user=root 2019-10-28T06:28:01.4777031495-001 sshd\[12398\]: Failed password for root from 106.13.94.100 port 48656 ssh2 2019-10-28T06:33:13.5697471495-001 sshd\[12564\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.100 user=root 2019-10-28T06:33:16.0010151495-001 sshd\[12564\]: Failed password for root from 106.13.94.100 port 57820 ssh2 ...	2019-10-28 19:30:18
106.13.94.100	attackspambots	Invalid user support from 106.13.94.100 port 37668	2019-10-27 02:05:04

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.94.96
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5865
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.94.96.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090902 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 10 12:43:00 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 96.94.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 96.94.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
159.203.30.50	attack	20 attempts against mh-ssh on cloud	2020-07-10 04:52:45
46.38.148.18	attack	Jul 9 23:11:11 srv01 postfix/smtpd\[20905\]: warning: unknown\[46.38.148.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 9 23:11:38 srv01 postfix/smtpd\[20905\]: warning: unknown\[46.38.148.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 9 23:12:05 srv01 postfix/smtpd\[27341\]: warning: unknown\[46.38.148.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 9 23:12:29 srv01 postfix/smtpd\[20905\]: warning: unknown\[46.38.148.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 9 23:12:59 srv01 postfix/smtpd\[30091\]: warning: unknown\[46.38.148.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-10 05:13:51
37.236.174.135	attackspam	2020-07-09 22:13:11 plain_virtual_exim authenticator failed for ([37.236.174.135]) [37.236.174.135]: 535 Incorrect authentication data ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=37.236.174.135	2020-07-10 05:06:06
31.129.58.14	attackspam	Email rejected due to spam filtering	2020-07-10 04:44:47
117.157.227.210	attack	SSH fail RA	2020-07-10 05:11:59
13.68.158.99	attackbotsspam	$f2bV_matches	2020-07-10 05:04:11
178.33.67.12	attack	$f2bV_matches	2020-07-10 05:10:57
222.186.175.183	attack	Jul 9 20:52:50 game-panel sshd[7171]: Failed password for root from 222.186.175.183 port 11724 ssh2 Jul 9 20:53:03 game-panel sshd[7171]: Failed password for root from 222.186.175.183 port 11724 ssh2 Jul 9 20:53:03 game-panel sshd[7171]: error: maximum authentication attempts exceeded for root from 222.186.175.183 port 11724 ssh2 [preauth]	2020-07-10 04:55:42
89.160.26.162	attackbots	SSH fail RA	2020-07-10 05:08:47
186.58.234.176	attackbots	1594326064 - 07/09/2020 22:21:04 Host: 186.58.234.176/186.58.234.176 Port: 445 TCP Blocked	2020-07-10 05:02:25
222.186.173.154	attack	Jul 9 23:02:46 abendstille sshd\[23479\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.154 user=root Jul 9 23:02:47 abendstille sshd\[23482\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.154 user=root Jul 9 23:02:48 abendstille sshd\[23479\]: Failed password for root from 222.186.173.154 port 5642 ssh2 Jul 9 23:02:49 abendstille sshd\[23482\]: Failed password for root from 222.186.173.154 port 56424 ssh2 Jul 9 23:02:51 abendstille sshd\[23479\]: Failed password for root from 222.186.173.154 port 5642 ssh2 ...	2020-07-10 05:04:49
167.172.156.227	attackbots	SSH Brute Force	2020-07-10 04:54:04
118.100.176.138	attackbotsspam	Jul 9 22:11:55 nbi-636 sshd[26912]: Bad protocol version identification '' from 118.100.176.138 port 39133 Jul 9 22:11:57 nbi-636 sshd[26922]: Invalid user pi from 118.100.176.138 port 39299 Jul 9 22:11:57 nbi-636 sshd[26922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.100.176.138 Jul 9 22:11:58 nbi-636 sshd[26922]: Failed password for invalid user pi from 118.100.176.138 port 39299 ssh2 Jul 9 22:11:59 nbi-636 sshd[26922]: Connection closed by invalid user pi 118.100.176.138 port 39299 [preauth] Jul 9 22:12:01 nbi-636 sshd[26944]: Invalid user pi from 118.100.176.138 port 40297 Jul 9 22:12:01 nbi-636 sshd[26944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.100.176.138 Jul 9 22:12:03 nbi-636 sshd[26944]: Failed password for invalid user pi from 118.100.176.138 port 40297 ssh2 Jul 9 22:12:03 nbi-636 sshd[26944]: Connection closed by invalid user pi 118.100.176.138 p........ -------------------------------	2020-07-10 04:53:07
61.231.96.85	attack	SSH fail RA	2020-07-10 04:55:18
60.210.98.107	attackspambots	60.210.98.107 - - [09/Jul/2020:21:21:07 +0100] "POST /wp-login.php HTTP/1.1" 200 2160 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 60.210.98.107 - - [09/Jul/2020:21:21:10 +0100] "POST /wp-login.php HTTP/1.1" 200 2083 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 60.210.98.107 - - [09/Jul/2020:21:21:12 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-10 04:56:26

最近上报的IP列表

222.253.118.64	27.227.55.49	208.209.181.126	18.246.142.226
61.83.145.199	195.158.24.178	77.247.108.211	205.209.173.7
14.36.156.188	78.190.64.254	144.239.129.88	89.253.160.81
61.153.203.152	103.254.148.224	101.99.75.212	152.78.187.95
27.77.113.81	178.128.29.94	212.24.255.4	96.221.36.203