131.196.13.106

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Ecuador

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
131.196.13.8	attack	2019-02-26 18:56:06 H=\(\[131.196.13.8\]\) \[131.196.13.8\]:38031 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-02-26 18:56:09 H=\(\[131.196.13.8\]\) \[131.196.13.8\]:38096 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-02-26 18:56:11 H=\(\[131.196.13.8\]\) \[131.196.13.8\]:38152 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-02-05 04:22:42

类型

评论内容

时间

131.196.13.8

attack

2019-02-26 18:56:06 H=\(\[131.196.13.8\]\) \[131.196.13.8\]:38031 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
2019-02-26 18:56:09 H=\(\[131.196.13.8\]\) \[131.196.13.8\]:38096 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
2019-02-26 18:56:11 H=\(\[131.196.13.8\]\) \[131.196.13.8\]:38152 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
...

2020-02-05 04:22:42

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.196.13.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11329
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;131.196.13.106.			IN	A

;; AUTHORITY SECTION:
.			439	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 07:06:08 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

106.13.196.131.in-addr.arpa domain name pointer host-131-196-13-106.nedetel.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
106.13.196.131.in-addr.arpa	name = host-131-196-13-106.nedetel.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
93.97.217.81	attackbots	Sep 29 18:10:53 core sshd[30328]: Invalid user cron from 93.97.217.81 port 41593 Sep 29 18:10:54 core sshd[30328]: Failed password for invalid user cron from 93.97.217.81 port 41593 ssh2 ...	2019-09-30 00:31:20
123.136.161.146	attack	Sep 29 06:12:01 friendsofhawaii sshd\[24973\]: Invalid user 12 from 123.136.161.146 Sep 29 06:12:02 friendsofhawaii sshd\[24973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.136.161.146 Sep 29 06:12:03 friendsofhawaii sshd\[24973\]: Failed password for invalid user 12 from 123.136.161.146 port 44542 ssh2 Sep 29 06:16:03 friendsofhawaii sshd\[25345\]: Invalid user password123456 from 123.136.161.146 Sep 29 06:16:03 friendsofhawaii sshd\[25345\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.136.161.146	2019-09-30 00:28:37
86.125.35.209	attackspam	Automatic report - Port Scan Attack	2019-09-30 00:56:27
222.186.173.183	attackbotsspam	Sep 29 18:09:57 MainVPS sshd[31575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root Sep 29 18:09:59 MainVPS sshd[31575]: Failed password for root from 222.186.173.183 port 51022 ssh2 Sep 29 18:10:18 MainVPS sshd[31575]: error: maximum authentication attempts exceeded for root from 222.186.173.183 port 51022 ssh2 [preauth] Sep 29 18:09:57 MainVPS sshd[31575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root Sep 29 18:09:59 MainVPS sshd[31575]: Failed password for root from 222.186.173.183 port 51022 ssh2 Sep 29 18:10:18 MainVPS sshd[31575]: error: maximum authentication attempts exceeded for root from 222.186.173.183 port 51022 ssh2 [preauth] Sep 29 18:10:27 MainVPS sshd[31609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root Sep 29 18:10:30 MainVPS sshd[31609]: Failed password for root from 222.186.173.183 port	2019-09-30 00:40:37
222.163.15.82	attackbots	23/tcp 23/tcp [2019-09-27]2pkt	2019-09-30 01:07:28
42.237.45.59	attack	Unauthorised access (Sep 29) SRC=42.237.45.59 LEN=40 TTL=49 ID=61536 TCP DPT=8080 WINDOW=13409 SYN Unauthorised access (Sep 29) SRC=42.237.45.59 LEN=40 TTL=49 ID=34164 TCP DPT=8080 WINDOW=60065 SYN	2019-09-30 00:59:44
200.10.108.22	attackbotsspam	Invalid user matt from 200.10.108.22 port 40894	2019-09-30 00:23:40
118.92.93.233	attackbots	Sep 29 18:07:02 markkoudstaal sshd[20269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.92.93.233 Sep 29 18:07:04 markkoudstaal sshd[20269]: Failed password for invalid user jmcginley from 118.92.93.233 port 55328 ssh2 Sep 29 18:11:52 markkoudstaal sshd[20797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.92.93.233	2019-09-30 00:17:01
36.234.132.75	attackbots	Port scan	2019-09-30 00:58:36
89.248.160.193	attackbotsspam	09/29/2019-11:31:41.735683 89.248.160.193 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 97	2019-09-30 00:22:33
155.4.120.9	attackbots	Port scan	2019-09-30 00:37:17
144.217.40.3	attackspambots	Sep 29 12:05:26 *** sshd[15170]: Invalid user ubuntu from 144.217.40.3	2019-09-30 00:18:00
222.186.175.202	attack	Sep 29 18:32:57 MainVPS sshd[852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root Sep 29 18:32:59 MainVPS sshd[852]: Failed password for root from 222.186.175.202 port 26906 ssh2 Sep 29 18:33:16 MainVPS sshd[852]: error: maximum authentication attempts exceeded for root from 222.186.175.202 port 26906 ssh2 [preauth] Sep 29 18:32:57 MainVPS sshd[852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root Sep 29 18:32:59 MainVPS sshd[852]: Failed password for root from 222.186.175.202 port 26906 ssh2 Sep 29 18:33:16 MainVPS sshd[852]: error: maximum authentication attempts exceeded for root from 222.186.175.202 port 26906 ssh2 [preauth] Sep 29 18:33:25 MainVPS sshd[886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root Sep 29 18:33:27 MainVPS sshd[886]: Failed password for root from 222.186.175.202 port 30086 ssh2 ...	2019-09-30 01:02:43
193.164.6.142	attackspambots	Sep 27 12:16:36 penfold postfix/smtpd[827]: connect from car2.careerdre.info[193.164.6.142] Sep 27 12:16:37 penfold postfix/smtpd[827]: Anonymous TLS connection established from car2.careerdre.info[193.164.6.142]: TLSv1.2 whostnameh cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bhostnames) Sep 27 12:16:37 penfold postfix/smtpd[827]: C756520F6B: client=car2.careerdre.info[193.164.6.142] Sep 27 12:16:38 penfold opendkim[2690]: C756520F6B: car2.careerdre.info [193.164.6.142] not internal Sep 27 12:16:39 penfold postfix/smtpd[827]: disconnect from car2.careerdre.info[193.164.6.142] ehlo=2 starttls=1 mail=1 rcpt=1 data=1 quhostname=1 commands=7 Sep 27 13:23:00 penfold postfix/smtpd[4753]: connect from car2.careerdre.info[193.164.6.142] Sep 27 13:23:01 penfold postfix/smtpd[4753]: Anonymous TLS connection established from car2.careerdre.info[193.164.6.142]: TLSv1.2 whostnameh cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bhostnames) Sep x@x Sep 27 13:23:02 penfold postfix/smtpd[4........ -------------------------------	2019-09-30 00:48:36
178.62.60.233	attackbots	Sep 29 02:32:39 sachi sshd\[10803\]: Invalid user xbian from 178.62.60.233 Sep 29 02:32:39 sachi sshd\[10803\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=exxonmobil.online Sep 29 02:32:41 sachi sshd\[10803\]: Failed password for invalid user xbian from 178.62.60.233 port 59524 ssh2 Sep 29 02:36:39 sachi sshd\[11131\]: Invalid user olivia from 178.62.60.233 Sep 29 02:36:39 sachi sshd\[11131\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=exxonmobil.online	2019-09-30 00:18:58

最近上报的IP列表

131.196.79.165	131.188.6.165	131.196.78.174	131.221.161.9
131.221.131.98	131.241.233.31	131.221.194.48	131.221.163.97
131.221.254.164	131.93.249.189	132.145.167.186	131.255.10.169
131.72.106.50	132.148.222.253	131.72.71.100	132.148.159.119
131.72.220.191	132.255.156.59	133.106.61.7	132.255.20.66