106.13.94.96 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Oct 10 13:10:52 home sshd[10809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 user=root Oct 10 13:10:54 home sshd[10809]: Failed password for root from 106.13.94.96 port 36924 ssh2 Oct 10 13:36:24 home sshd[27892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 user=root Oct 10 13:36:26 home sshd[27892]: Failed password for root from 106.13.94.96 port 53156 ssh2 Oct 10 13:44:50 home sshd[1196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 user=root Oct 10 13:44:53 home sshd[1196]: Failed password for root from 106.13.94.96 port 58940 ssh2 Oct 10 13:48:34 home sshd[3760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 user=root Oct 10 13:48:36 home sshd[3760]: Failed password for root from 106.13.94.96 port 36442 ssh2 Oct 10 13:52:18 home sshd[6218]: pam_unix(sshd:auth): authentication fai	2019-10-11 06:53:44
attackbotsspam	Oct 6 19:36:44 web9 sshd\[19566\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 user=root Oct 6 19:36:46 web9 sshd\[19566\]: Failed password for root from 106.13.94.96 port 53224 ssh2 Oct 6 19:40:50 web9 sshd\[20094\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 user=root Oct 6 19:40:51 web9 sshd\[20094\]: Failed password for root from 106.13.94.96 port 52376 ssh2 Oct 6 19:44:39 web9 sshd\[20604\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 user=root	2019-10-07 13:46:23
attackspambots	Oct 2 11:45:37 ws19vmsma01 sshd[244048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 Oct 2 11:45:39 ws19vmsma01 sshd[244048]: Failed password for invalid user gitlab from 106.13.94.96 port 52180 ssh2 ...	2019-10-03 05:04:29
attack	2019-10-01T10:08:12.385777tmaserv sshd\[28185\]: Failed password for root from 106.13.94.96 port 46490 ssh2 2019-10-01T10:18:23.879406tmaserv sshd\[28926\]: Invalid user cssserver from 106.13.94.96 port 33220 2019-10-01T10:18:23.884974tmaserv sshd\[28926\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 2019-10-01T10:18:26.005734tmaserv sshd\[28926\]: Failed password for invalid user cssserver from 106.13.94.96 port 33220 ssh2 2019-10-01T10:23:34.431229tmaserv sshd\[29281\]: Invalid user user from 106.13.94.96 port 40698 2019-10-01T10:23:34.437013tmaserv sshd\[29281\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 ...	2019-10-01 15:26:45
attackspambots	Invalid user akira from 106.13.94.96 port 36588	2019-09-21 15:10:05
attack	Sep 10 15:12:31 www sshd\[14214\]: Invalid user 1 from 106.13.94.96 Sep 10 15:12:31 www sshd\[14214\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 Sep 10 15:12:32 www sshd\[14214\]: Failed password for invalid user 1 from 106.13.94.96 port 45984 ssh2 ...	2019-09-11 05:40:52
attackbotsspam	Sep 10 07:27:30 www sshd\[2895\]: Invalid user duser from 106.13.94.96 Sep 10 07:27:30 www sshd\[2895\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.96 Sep 10 07:27:32 www sshd\[2895\]: Failed password for invalid user duser from 106.13.94.96 port 44534 ssh2 ...	2019-09-10 12:43:07

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.94.131	attackspambots	Found on CINS badguys / proto=6 . srcport=55641 . dstport=5534 . (762)	2020-09-12 01:45:49
106.13.94.131	attackspambots	Found on CINS badguys / proto=6 . srcport=55641 . dstport=5534 . (762)	2020-09-11 17:36:29
106.13.94.193	attackspambots	Aug 25 05:50:39 v22019038103785759 sshd\[23410\]: Invalid user kingsley from 106.13.94.193 port 36652 Aug 25 05:50:39 v22019038103785759 sshd\[23410\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 Aug 25 05:50:41 v22019038103785759 sshd\[23410\]: Failed password for invalid user kingsley from 106.13.94.193 port 36652 ssh2 Aug 25 05:55:28 v22019038103785759 sshd\[24633\]: Invalid user ysl from 106.13.94.193 port 41834 Aug 25 05:55:28 v22019038103785759 sshd\[24633\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 ...	2020-08-25 15:13:14
106.13.94.131	attackspambots	Aug 20 18:48:56 cumulus sshd[31469]: Invalid user doc from 106.13.94.131 port 54944 Aug 20 18:48:56 cumulus sshd[31469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.131 Aug 20 18:48:58 cumulus sshd[31469]: Failed password for invalid user doc from 106.13.94.131 port 54944 ssh2 Aug 20 18:48:58 cumulus sshd[31469]: Received disconnect from 106.13.94.131 port 54944:11: Bye Bye [preauth] Aug 20 18:48:58 cumulus sshd[31469]: Disconnected from 106.13.94.131 port 54944 [preauth] Aug 20 18:58:12 cumulus sshd[32225]: Invalid user dms from 106.13.94.131 port 45134 Aug 20 18:58:12 cumulus sshd[32225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.131 Aug 20 18:58:14 cumulus sshd[32225]: Failed password for invalid user dms from 106.13.94.131 port 45134 ssh2 Aug 20 18:58:14 cumulus sshd[32225]: Received disconnect from 106.13.94.131 port 45134:11: Bye Bye [preauth] Aug 20 18:58........ -------------------------------	2020-08-23 13:53:18
106.13.94.131	attackbots	2020-08-22T06:00:33.342627shield sshd\[21876\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.131 user=root 2020-08-22T06:00:35.514827shield sshd\[21876\]: Failed password for root from 106.13.94.131 port 41064 ssh2 2020-08-22T06:02:17.677213shield sshd\[22417\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.131 user=root 2020-08-22T06:02:19.452783shield sshd\[22417\]: Failed password for root from 106.13.94.131 port 59434 ssh2 2020-08-22T06:03:59.186372shield sshd\[22924\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.131 user=root	2020-08-22 17:00:35
106.13.94.193	attack	Aug 20 08:06:15 OPSO sshd\[9037\]: Invalid user wang from 106.13.94.193 port 38136 Aug 20 08:06:15 OPSO sshd\[9037\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 Aug 20 08:06:17 OPSO sshd\[9037\]: Failed password for invalid user wang from 106.13.94.193 port 38136 ssh2 Aug 20 08:09:39 OPSO sshd\[9724\]: Invalid user a from 106.13.94.193 port 44116 Aug 20 08:09:39 OPSO sshd\[9724\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193	2020-08-20 14:59:27
106.13.94.193	attack	$f2bV_matches	2020-08-12 14:11:14
106.13.94.193	attackbots	Invalid user wangxiaoyi from 106.13.94.193 port 33692	2020-07-31 06:33:12
106.13.94.193	attackbots	2020-06-20T06:22:44.772444sd-86998 sshd[36689]: Invalid user deployment from 106.13.94.193 port 47690 2020-06-20T06:22:44.777857sd-86998 sshd[36689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 2020-06-20T06:22:44.772444sd-86998 sshd[36689]: Invalid user deployment from 106.13.94.193 port 47690 2020-06-20T06:22:47.341148sd-86998 sshd[36689]: Failed password for invalid user deployment from 106.13.94.193 port 47690 ssh2 2020-06-20T06:26:33.181061sd-86998 sshd[37075]: Invalid user stats from 106.13.94.193 port 42520 ...	2020-06-20 12:33:29
106.13.94.193	attackspam	Jun 7 15:58:27 vps sshd[519822]: Failed password for root from 106.13.94.193 port 34244 ssh2 Jun 7 16:00:41 vps sshd[531947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 user=root Jun 7 16:00:44 vps sshd[531947]: Failed password for root from 106.13.94.193 port 33130 ssh2 Jun 7 16:03:03 vps sshd[541155]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 user=root Jun 7 16:03:04 vps sshd[541155]: Failed password for root from 106.13.94.193 port 60254 ssh2 ...	2020-06-07 23:16:18
106.13.94.193	attackbotsspam	Jun 1 12:34:13 s30-ffm-r02 sshd[19090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 user=r.r Jun 1 12:34:15 s30-ffm-r02 sshd[19090]: Failed password for r.r from 106.13.94.193 port 43538 ssh2 Jun 1 12:43:40 s30-ffm-r02 sshd[19319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 user=r.r Jun 1 12:43:42 s30-ffm-r02 sshd[19319]: Failed password for r.r from 106.13.94.193 port 45914 ssh2 Jun 1 12:46:08 s30-ffm-r02 sshd[19374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 user=r.r Jun 1 12:46:10 s30-ffm-r02 sshd[19374]: Failed password for r.r from 106.13.94.193 port 43670 ssh2 Jun 1 12:48:00 s30-ffm-r02 sshd[19418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 user=r.r Jun 1 12:48:02 s30-ffm-r02 sshd[19418]: Failed password for r.r from 10........ -------------------------------	2020-06-01 23:52:43
106.13.94.193	attack	May 30 15:01:45 ArkNodeAT sshd\[21767\]: Invalid user jenkins from 106.13.94.193 May 30 15:01:45 ArkNodeAT sshd\[21767\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 May 30 15:01:47 ArkNodeAT sshd\[21767\]: Failed password for invalid user jenkins from 106.13.94.193 port 59660 ssh2	2020-05-30 23:13:53
106.13.94.193	attackspam	May 25 04:53:22 www6-3 sshd[25364]: Invalid user aulay from 106.13.94.193 port 39726 May 25 04:53:22 www6-3 sshd[25364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 May 25 04:53:24 www6-3 sshd[25364]: Failed password for invalid user aulay from 106.13.94.193 port 39726 ssh2 May 25 04:53:24 www6-3 sshd[25364]: Received disconnect from 106.13.94.193 port 39726:11: Bye Bye [preauth] May 25 04:53:24 www6-3 sshd[25364]: Disconnected from 106.13.94.193 port 39726 [preauth] May 25 04:57:10 www6-3 sshd[25615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 user=r.r May 25 04:57:12 www6-3 sshd[25615]: Failed password for r.r from 106.13.94.193 port 57672 ssh2 May 25 04:57:12 www6-3 sshd[25615]: Received disconnect from 106.13.94.193 port 57672:11: Bye Bye [preauth] May 25 04:57:12 www6-3 sshd[25615]: Disconnected from 106.13.94.193 port 57672 [preauth] ........ -------------------------------------------	2020-05-25 14:13:20
106.13.94.100	attack	2019-10-28T06:22:44.5393151495-001 sshd\[12172\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.100 user=root 2019-10-28T06:22:45.9520771495-001 sshd\[12172\]: Failed password for root from 106.13.94.100 port 39472 ssh2 2019-10-28T06:27:59.1518781495-001 sshd\[12398\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.100 user=root 2019-10-28T06:28:01.4777031495-001 sshd\[12398\]: Failed password for root from 106.13.94.100 port 48656 ssh2 2019-10-28T06:33:13.5697471495-001 sshd\[12564\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.100 user=root 2019-10-28T06:33:16.0010151495-001 sshd\[12564\]: Failed password for root from 106.13.94.100 port 57820 ssh2 ...	2019-10-28 19:30:18
106.13.94.100	attackspambots	Invalid user support from 106.13.94.100 port 37668	2019-10-27 02:05:04

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.94.96
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5865
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.94.96.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090902 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 10 12:43:00 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 96.94.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 96.94.13.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
125.117.40.50	attackbots	Honeypot attack, port: 23, PTR: PTR record not found	2019-06-30 17:35:02
45.124.85.111	attackspam	www.geburtshaus-fulda.de 45.124.85.111 \[30/Jun/2019:05:36:41 +0200\] "POST /wp-login.php HTTP/1.1" 200 5794 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.geburtshaus-fulda.de 45.124.85.111 \[30/Jun/2019:05:36:43 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4107 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-06-30 17:52:01
45.239.44.51	attackspambots	Jun 30 03:38:27 MK-Soft-VM5 sshd\[23956\]: Invalid user gary from 45.239.44.51 port 37502 Jun 30 03:38:27 MK-Soft-VM5 sshd\[23956\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.239.44.51 Jun 30 03:38:29 MK-Soft-VM5 sshd\[23956\]: Failed password for invalid user gary from 45.239.44.51 port 37502 ssh2 ...	2019-06-30 17:11:18
58.45.31.54	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-06-30 17:48:12
223.16.216.92	attackbots	Jun 30 10:54:48 mail sshd[24814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.16.216.92 user=root Jun 30 10:54:50 mail sshd[24814]: Failed password for root from 223.16.216.92 port 55832 ssh2 Jun 30 11:09:39 mail sshd[26788]: Invalid user contracts from 223.16.216.92 Jun 30 11:09:39 mail sshd[26788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.16.216.92 Jun 30 11:09:39 mail sshd[26788]: Invalid user contracts from 223.16.216.92 Jun 30 11:09:41 mail sshd[26788]: Failed password for invalid user contracts from 223.16.216.92 port 34114 ssh2 ...	2019-06-30 17:29:36
115.47.146.216	attackbots	Jun 30 11:27:56 mail sshd\[21036\]: Invalid user server from 115.47.146.216 port 52183 Jun 30 11:27:56 mail sshd\[21036\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.47.146.216 Jun 30 11:27:58 mail sshd\[21036\]: Failed password for invalid user server from 115.47.146.216 port 52183 ssh2 Jun 30 11:32:13 mail sshd\[21763\]: Invalid user regi from 115.47.146.216 port 42661 Jun 30 11:32:13 mail sshd\[21763\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.47.146.216	2019-06-30 17:45:59
177.21.202.101	attack	SMTP-sasl brute force ...	2019-06-30 17:58:13
159.203.141.208	attackspambots	Invalid user su from 159.203.141.208 port 60722	2019-06-30 17:23:11
202.51.110.214	attackspambots	30.06.2019 06:34:04 SSH access blocked by firewall	2019-06-30 17:41:37
46.229.220.212	attackbots	Port scan, login attempts on SMTP:25. IP auto-blocked. Too many fails and connects.	2019-06-30 17:35:59
81.12.159.146	attackspambots	2019-06-30T09:27:13.938760abusebot-2.cloudsearch.cf sshd\[14107\]: Invalid user vyatta from 81.12.159.146 port 49612	2019-06-30 17:53:20
118.25.186.197	attack	Reported by AbuseIPDB proxy server.	2019-06-30 17:50:19
201.216.193.65	attackspam	$f2bV_matches	2019-06-30 17:16:00
47.186.44.152	attack	ssh failed login	2019-06-30 18:06:03
95.85.39.203	attackbots	Jun 30 10:54:55 core01 sshd\[2395\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.85.39.203 user=root Jun 30 10:54:57 core01 sshd\[2395\]: Failed password for root from 95.85.39.203 port 43614 ssh2 ...	2019-06-30 17:12:13

最近上报的IP列表

222.253.118.64	27.227.55.49	208.209.181.126	18.246.142.226
61.83.145.199	195.158.24.178	77.247.108.211	205.209.173.7
14.36.156.188	78.190.64.254	144.239.129.88	89.253.160.81
61.153.203.152	103.254.148.224	101.99.75.212	152.78.187.95
27.77.113.81	178.128.29.94	212.24.255.4	96.221.36.203