106.13.149.162

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-04-06 01:39:33
attackbots	(sshd) Failed SSH login from 106.13.149.162 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 2 00:01:40 srv sshd[6596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.162 user=root Apr 2 00:01:42 srv sshd[6596]: Failed password for root from 106.13.149.162 port 38420 ssh2 Apr 2 00:09:59 srv sshd[6829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.162 user=root Apr 2 00:10:01 srv sshd[6829]: Failed password for root from 106.13.149.162 port 48164 ssh2 Apr 2 00:13:58 srv sshd[7249]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.162 user=root	2020-04-02 07:06:13

类型

评论内容

时间

attackbots

Unauthorized access or intrusion attempt detected from Thor banned IP

2020-04-06 01:39:33

attackbots

(sshd) Failed SSH login from 106.13.149.162 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr  2 00:01:40 srv sshd[6596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.162  user=root
Apr  2 00:01:42 srv sshd[6596]: Failed password for root from 106.13.149.162 port 38420 ssh2
Apr  2 00:09:59 srv sshd[6829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.162  user=root
Apr  2 00:10:01 srv sshd[6829]: Failed password for root from 106.13.149.162 port 48164 ssh2
Apr  2 00:13:58 srv sshd[7249]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.162  user=root

2020-04-02 07:06:13

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.149.57	attackspambots	Aug 24 21:51:45 game-panel sshd[13385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.57 Aug 24 21:51:47 game-panel sshd[13385]: Failed password for invalid user blumberg from 106.13.149.57 port 58800 ssh2 Aug 24 21:56:00 game-panel sshd[13589]: Failed password for root from 106.13.149.57 port 34292 ssh2	2020-08-25 06:15:49
106.13.149.57	attackbotsspam	Aug 22 23:29:45 lukav-desktop sshd\[7527\]: Invalid user admin from 106.13.149.57 Aug 22 23:29:45 lukav-desktop sshd\[7527\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.57 Aug 22 23:29:47 lukav-desktop sshd\[7527\]: Failed password for invalid user admin from 106.13.149.57 port 58544 ssh2 Aug 22 23:33:59 lukav-desktop sshd\[7624\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.57 user=root Aug 22 23:34:01 lukav-desktop sshd\[7624\]: Failed password for root from 106.13.149.57 port 36082 ssh2	2020-08-23 04:45:10
106.13.149.227	attackbots	SSH Brute-force	2020-08-18 16:53:58
106.13.149.57	attack	2020-08-09T04:56:40.273646shield sshd\[27694\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.57 user=root 2020-08-09T04:56:41.771595shield sshd\[27694\]: Failed password for root from 106.13.149.57 port 55300 ssh2 2020-08-09T05:01:20.095696shield sshd\[28615\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.57 user=root 2020-08-09T05:01:22.366356shield sshd\[28615\]: Failed password for root from 106.13.149.57 port 55636 ssh2 2020-08-09T05:06:07.172147shield sshd\[29365\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.57 user=root	2020-08-09 13:47:56
106.13.149.227	attack	Port scan denied	2020-08-06 18:07:15
106.13.149.57	attackbots	Aug 5 22:34:36 buvik sshd[451]: Failed password for root from 106.13.149.57 port 48492 ssh2 Aug 5 22:38:29 buvik sshd[1069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.57 user=root Aug 5 22:38:31 buvik sshd[1069]: Failed password for root from 106.13.149.57 port 48508 ssh2 ...	2020-08-06 07:13:28
106.13.149.57	attackbotsspam	Jul 28 02:12:31 journals sshd\[58590\]: Invalid user baoyonglian from 106.13.149.57 Jul 28 02:12:31 journals sshd\[58590\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.57 Jul 28 02:12:33 journals sshd\[58590\]: Failed password for invalid user baoyonglian from 106.13.149.57 port 36688 ssh2 Jul 28 02:13:43 journals sshd\[58700\]: Invalid user mace from 106.13.149.57 Jul 28 02:13:43 journals sshd\[58700\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.57 ...	2020-07-28 07:22:08
106.13.149.57	attackbots	Jul 24 05:32:26 rush sshd[7755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.57 Jul 24 05:32:28 rush sshd[7755]: Failed password for invalid user java from 106.13.149.57 port 44870 ssh2 Jul 24 05:38:31 rush sshd[7962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.57 ...	2020-07-24 13:55:30
106.13.149.227	attackspam	Unauthorized connection attempt detected from IP address 106.13.149.227 to port 11659	2020-07-16 04:27:48
106.13.149.227	attack	11898/tcp 26264/tcp 10538/tcp... [2020-06-23/07-08]10pkt,10pt.(tcp)	2020-07-08 23:30:07
106.13.149.57	attackspam	Jul 8 09:58:19 dhoomketu sshd[1362956]: Invalid user tudor from 106.13.149.57 port 43958 Jul 8 09:58:19 dhoomketu sshd[1362956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.57 Jul 8 09:58:19 dhoomketu sshd[1362956]: Invalid user tudor from 106.13.149.57 port 43958 Jul 8 09:58:22 dhoomketu sshd[1362956]: Failed password for invalid user tudor from 106.13.149.57 port 43958 ssh2 Jul 8 10:01:42 dhoomketu sshd[1362992]: Invalid user yfbastion from 106.13.149.57 port 32846 ...	2020-07-08 13:45:32
106.13.149.57	attackbots	Jul 7 15:32:24 cp sshd[32005]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.57	2020-07-08 01:02:35
106.13.149.227	attackbotsspam	Jul 5 17:02:58 dignus sshd[13103]: Invalid user postgres from 106.13.149.227 port 45614 Jul 5 17:02:58 dignus sshd[13103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.227 Jul 5 17:03:00 dignus sshd[13103]: Failed password for invalid user postgres from 106.13.149.227 port 45614 ssh2 Jul 5 17:08:41 dignus sshd[13589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.227 user=root Jul 5 17:08:42 dignus sshd[13589]: Failed password for root from 106.13.149.227 port 38358 ssh2 ...	2020-07-06 08:21:23
106.13.149.227	attackbotsspam	(sshd) Failed SSH login from 106.13.149.227 (CN/China/-): 5 in the last 3600 secs	2020-06-30 14:15:50
106.13.149.227	attack	sshd	2020-06-13 23:36:33

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.149.162
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28900
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.149.162.			IN	A

;; AUTHORITY SECTION:
.			301	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040102 1800 900 604800 86400

;; Query time: 76 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 02 07:06:10 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 162.149.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 162.149.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
187.32.178.33	attackbots	Automatic report - Banned IP Access	2020-02-06 09:45:33
64.201.57.114	attackspambots	Unauthorized connection attempt from IP address 64.201.57.114 on Port 445(SMB)	2020-02-06 09:33:36
222.127.30.130	attackbotsspam	Feb 6 01:54:52 karger sshd[29691]: Connection from 222.127.30.130 port 29278 on 188.68.60.164 port 22 Feb 6 01:54:53 karger sshd[29691]: Invalid user test from 222.127.30.130 port 29278 Feb 6 01:56:38 karger sshd[30199]: Connection from 222.127.30.130 port 5943 on 188.68.60.164 port 22 Feb 6 01:56:39 karger sshd[30199]: Invalid user hduser from 222.127.30.130 port 5943 Feb 6 01:58:25 karger sshd[30673]: Connection from 222.127.30.130 port 19754 on 188.68.60.164 port 22 Feb 6 01:58:26 karger sshd[30673]: Invalid user master from 222.127.30.130 port 19754 Feb 6 02:00:18 karger sshd[31204]: Connection from 222.127.30.130 port 9738 on 188.68.60.164 port 22 Feb 6 02:00:19 karger sshd[31204]: Invalid user zabbix from 222.127.30.130 port 9738 Feb 6 02:02:14 karger sshd[31700]: Connection from 222.127.30.130 port 8616 on 188.68.60.164 port 22 Feb 6 02:02:16 karger sshd[31700]: Invalid user ec2-user from 222.127.30.130 port 8616 ...	2020-02-06 09:36:51
185.175.93.19	attackspam	Feb 6 02:56:20 debian-2gb-nbg1-2 kernel: \[3213426.115865\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.175.93.19 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=40331 PROTO=TCP SPT=46426 DPT=5922 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-06 09:58:54
37.187.120.96	attack	$f2bV_matches	2020-02-06 09:52:08
82.103.100.25	attackspambots	port	2020-02-06 09:40:45
61.155.2.2	attackbotsspam	Feb 6 02:46:34 silence02 sshd[30236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.155.2.2 Feb 6 02:46:37 silence02 sshd[30236]: Failed password for invalid user jec from 61.155.2.2 port 54152 ssh2 Feb 6 02:49:45 silence02 sshd[30595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.155.2.2	2020-02-06 10:02:07
45.177.95.27	attackbots	Automatic report - Port Scan Attack	2020-02-06 09:09:14
176.35.128.210	attackspambots	Unauthorized connection attempt detected from IP address 176.35.128.210 to port 23 [J]	2020-02-06 09:30:29
112.85.42.176	attackbots	Feb 6 02:31:01 mail sshd[15291]: Failed password for root from 112.85.42.176 port 27210 ssh2 Feb 6 02:31:05 mail sshd[15291]: Failed password for root from 112.85.42.176 port 27210 ssh2 Feb 6 02:31:09 mail sshd[15291]: Failed password for root from 112.85.42.176 port 27210 ssh2 Feb 6 02:31:15 mail sshd[15291]: Failed password for root from 112.85.42.176 port 27210 ssh2	2020-02-06 09:53:44
92.46.40.110	attack	Unauthorized connection attempt detected from IP address 92.46.40.110 to port 2220 [J]	2020-02-06 09:13:59
58.186.19.185	attackbots	Unauthorized connection attempt detected from IP address 58.186.19.185 to port 81 [J]	2020-02-06 09:43:05
149.202.61.217	attackbotsspam	$f2bV_matches	2020-02-06 09:07:29
210.99.216.205	attack	Feb 6 02:57:33 dedicated sshd[12717]: Invalid user xpp from 210.99.216.205 port 58730	2020-02-06 09:58:38
40.121.128.153	attack	Feb 6 02:45:41 cp sshd[23018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.121.128.153 Feb 6 02:45:41 cp sshd[23018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.121.128.153	2020-02-06 10:08:47

最近上报的IP列表

77.117.119.198	175.184.96.154	124.45.223.82	178.48.140.5
219.12.4.153	60.53.39.24	80.213.54.128	126.45.8.65
189.94.198.117	72.109.47.149	80.221.168.105	116.127.253.111
77.161.77.89	179.132.57.185	108.243.76.47	148.101.14.55
51.83.73.115	219.103.245.189	203.122.176.223	58.185.154.69