106.13.4.150 - IPInfo

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): Beijing Baidu Netcom Science and Technology Co., Ltd.

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Jan 1 00:02:29 srv-ubuntu-dev3 sshd[101129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 user=root Jan 1 00:02:32 srv-ubuntu-dev3 sshd[101129]: Failed password for root from 106.13.4.150 port 33735 ssh2 Jan 1 00:05:40 srv-ubuntu-dev3 sshd[101331]: Invalid user kim from 106.13.4.150 Jan 1 00:05:40 srv-ubuntu-dev3 sshd[101331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 Jan 1 00:05:40 srv-ubuntu-dev3 sshd[101331]: Invalid user kim from 106.13.4.150 Jan 1 00:05:42 srv-ubuntu-dev3 sshd[101331]: Failed password for invalid user kim from 106.13.4.150 port 55237 ssh2 Jan 1 00:08:52 srv-ubuntu-dev3 sshd[101630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 user=uucp Jan 1 00:08:55 srv-ubuntu-dev3 sshd[101630]: Failed password for uucp from 106.13.4.150 port 20200 ssh2 Jan 1 00:12:05 srv-ubuntu-dev3 sshd[102063]: In ...	2020-01-01 09:12:47
attackspam	Dec 20 05:32:05 php1 sshd\[10623\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 user=root Dec 20 05:32:07 php1 sshd\[10623\]: Failed password for root from 106.13.4.150 port 23936 ssh2 Dec 20 05:37:43 php1 sshd\[11283\]: Invalid user betje from 106.13.4.150 Dec 20 05:37:43 php1 sshd\[11283\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 Dec 20 05:37:46 php1 sshd\[11283\]: Failed password for invalid user betje from 106.13.4.150 port 60752 ssh2	2019-12-21 04:27:06
attackspambots	SSH invalid-user multiple login try	2019-12-06 19:48:57
attackspam	Nov 28 12:24:16 ovpn sshd\[20781\]: Invalid user tomao from 106.13.4.150 Nov 28 12:24:16 ovpn sshd\[20781\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 Nov 28 12:24:18 ovpn sshd\[20781\]: Failed password for invalid user tomao from 106.13.4.150 port 11822 ssh2 Nov 28 12:37:18 ovpn sshd\[23949\]: Invalid user smith from 106.13.4.150 Nov 28 12:37:18 ovpn sshd\[23949\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150	2019-11-28 20:08:55
attack	Triggered by Fail2Ban at Vostok web server	2019-11-12 22:17:23
attackspam	Nov 11 09:30:13 pornomens sshd\[31384\]: Invalid user aries from 106.13.4.150 port 47525 Nov 11 09:30:13 pornomens sshd\[31384\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 Nov 11 09:30:15 pornomens sshd\[31384\]: Failed password for invalid user aries from 106.13.4.150 port 47525 ssh2 ...	2019-11-11 17:12:28
attackbotsspam	Oct 23 16:09:53 vps647732 sshd[2874]: Failed password for root from 106.13.4.150 port 47282 ssh2 ...	2019-10-23 23:54:26
attack	2019-10-13 17:33:50,287 fail2ban.actions [843]: NOTICE [sshd] Ban 106.13.4.150 2019-10-13 20:44:41,330 fail2ban.actions [843]: NOTICE [sshd] Ban 106.13.4.150 2019-10-13 23:53:58,553 fail2ban.actions [843]: NOTICE [sshd] Ban 106.13.4.150 ...	2019-10-14 15:02:51
attackbots	Oct 12 22:42:19 auw2 sshd\[18963\]: Invalid user abc!@ from 106.13.4.150 Oct 12 22:42:19 auw2 sshd\[18963\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 Oct 12 22:42:21 auw2 sshd\[18963\]: Failed password for invalid user abc!@ from 106.13.4.150 port 15444 ssh2 Oct 12 22:47:17 auw2 sshd\[19453\]: Invalid user Hospital@2017 from 106.13.4.150 Oct 12 22:47:17 auw2 sshd\[19453\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150	2019-10-13 17:58:25
attackbots	Oct 8 00:42:01 xtremcommunity sshd\[301285\]: Invalid user Asd!@\# from 106.13.4.150 port 10362 Oct 8 00:42:01 xtremcommunity sshd\[301285\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 Oct 8 00:42:03 xtremcommunity sshd\[301285\]: Failed password for invalid user Asd!@\# from 106.13.4.150 port 10362 ssh2 Oct 8 00:46:07 xtremcommunity sshd\[301397\]: Invalid user Asd!@\# from 106.13.4.150 port 43862 Oct 8 00:46:07 xtremcommunity sshd\[301397\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 ...	2019-10-08 16:51:51
attack	Fail2Ban Ban Triggered	2019-09-29 08:51:41
attack	Sep 23 18:40:51 anodpoucpklekan sshd[101002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 user=root Sep 23 18:40:54 anodpoucpklekan sshd[101002]: Failed password for root from 106.13.4.150 port 62238 ssh2 ...	2019-09-24 04:21:21
attackbotsspam	Sep 3 03:16:10 ip-172-31-1-72 sshd\[30168\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 user=root Sep 3 03:16:11 ip-172-31-1-72 sshd\[30168\]: Failed password for root from 106.13.4.150 port 12818 ssh2 Sep 3 03:19:24 ip-172-31-1-72 sshd\[30209\]: Invalid user billy from 106.13.4.150 Sep 3 03:19:24 ip-172-31-1-72 sshd\[30209\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 Sep 3 03:19:25 ip-172-31-1-72 sshd\[30209\]: Failed password for invalid user billy from 106.13.4.150 port 36578 ssh2	2019-09-03 15:12:59
attackspam	Aug 15 14:20:23 localhost sshd\[14425\]: Invalid user dns from 106.13.4.150 port 42741 Aug 15 14:20:23 localhost sshd\[14425\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 Aug 15 14:20:26 localhost sshd\[14425\]: Failed password for invalid user dns from 106.13.4.150 port 42741 ssh2 Aug 15 14:24:30 localhost sshd\[14565\]: Invalid user student05 from 106.13.4.150 port 12314 Aug 15 14:24:30 localhost sshd\[14565\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 ...	2019-08-16 01:20:31
attackbots	Aug 13 13:14:40 mail sshd\[10869\]: Failed password for invalid user tweety from 106.13.4.150 port 29530 ssh2 Aug 13 13:31:38 mail sshd\[11359\]: Invalid user harold from 106.13.4.150 port 24722 Aug 13 13:31:38 mail sshd\[11359\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 ...	2019-08-14 01:34:15
attackbotsspam	Automatic report - Banned IP Access	2019-08-02 07:18:30
attackbots	03.07.2019 13:15:21 SSH access blocked by firewall	2019-07-04 04:13:37
attack	Failed password for invalid user bitrix from 106.13.4.150 port 55871 ssh2 Invalid user jiong from 106.13.4.150 port 13784 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 Failed password for invalid user jiong from 106.13.4.150 port 13784 ssh2 Invalid user deploy from 106.13.4.150 port 28194 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150	2019-07-03 05:30:47

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.46.123	attackspam	Oct 12 17:40:14 buvik sshd[7813]: Failed password for invalid user velarde from 106.13.46.123 port 54450 ssh2 Oct 12 17:44:39 buvik sshd[8406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.46.123 user=root Oct 12 17:44:41 buvik sshd[8406]: Failed password for root from 106.13.46.123 port 44970 ssh2 ...	2020-10-12 23:48:43
106.13.4.132	attackbots	2020-10-12T13:35:54+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-10-12 22:34:30
106.13.46.123	attack	Repeated brute force against a port	2020-10-12 15:13:26
106.13.4.132	attackbotsspam	$f2bV_matches	2020-10-12 14:01:58
106.13.42.140	attack	Oct 11 22:12:43 ip-172-31-16-56 sshd\[26755\]: Invalid user ion from 106.13.42.140\ Oct 11 22:12:45 ip-172-31-16-56 sshd\[26755\]: Failed password for invalid user ion from 106.13.42.140 port 59816 ssh2\ Oct 11 22:15:55 ip-172-31-16-56 sshd\[26810\]: Invalid user oracle from 106.13.42.140\ Oct 11 22:15:57 ip-172-31-16-56 sshd\[26810\]: Failed password for invalid user oracle from 106.13.42.140 port 57116 ssh2\ Oct 11 22:19:12 ip-172-31-16-56 sshd\[26875\]: Invalid user jjonglee from 106.13.42.140\	2020-10-12 07:26:45
106.13.42.140	attack	Oct 11 15:24:05 serwer sshd\[24282\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.42.140 user=root Oct 11 15:24:08 serwer sshd\[24282\]: Failed password for root from 106.13.42.140 port 35530 ssh2 Oct 11 15:29:06 serwer sshd\[24929\]: Invalid user ellen from 106.13.42.140 port 58314 Oct 11 15:29:06 serwer sshd\[24929\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.42.140 ...	2020-10-11 23:41:38
106.13.42.140	attackbots	leo_www	2020-10-11 15:40:49
106.13.42.140	attack	5x Failed Password	2020-10-11 08:58:30
106.13.41.87	attack	2020-10-10T21:33:05.633586hostname sshd[29936]: Failed password for invalid user ark from 106.13.41.87 port 39526 ssh2 2020-10-10T21:36:13.475247hostname sshd[31217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.41.87 user=root 2020-10-10T21:36:15.718396hostname sshd[31217]: Failed password for root from 106.13.41.87 port 38682 ssh2 ...	2020-10-10 23:09:58
106.13.41.87	attackspam	$f2bV_matches	2020-10-10 15:00:24
106.13.48.9	attackbotsspam	Oct 8 21:59:31 hidden sshd[4418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.48.9 Oct 8 21:59:33 hidden sshd[4418]: Failed password for invalid user kevin from 106.13.48.9 port 40514 ssh2 Oct 8 22:16:27 hidden sshd[11400]: Invalid user info from 106.13.48.9 port 38028	2020-10-10 04:46:19
106.13.48.9	attack	SSH bruteforce	2020-10-09 20:45:22
106.13.48.9	attackspam	2020-10-09T04:48:40+0200 Failed SSH Authentication/Brute Force Attack.(Server 2)	2020-10-09 12:31:36
106.13.47.78	attackbots	2020-10-07T18:58:06.178811abusebot-4.cloudsearch.cf sshd[29305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.47.78 user=root 2020-10-07T18:58:07.888553abusebot-4.cloudsearch.cf sshd[29305]: Failed password for root from 106.13.47.78 port 59938 ssh2 2020-10-07T19:00:56.752007abusebot-4.cloudsearch.cf sshd[29323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.47.78 user=root 2020-10-07T19:00:58.466828abusebot-4.cloudsearch.cf sshd[29323]: Failed password for root from 106.13.47.78 port 41708 ssh2 2020-10-07T19:03:53.790334abusebot-4.cloudsearch.cf sshd[29440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.47.78 user=root 2020-10-07T19:03:56.135880abusebot-4.cloudsearch.cf sshd[29440]: Failed password for root from 106.13.47.78 port 51712 ssh2 2020-10-07T19:06:14.010121abusebot-4.cloudsearch.cf sshd[29458]: pam_unix(sshd:auth): authenticat ...	2020-10-08 03:31:04
106.13.47.78	attackspambots	5x Failed Password	2020-10-07 19:46:55

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.4.150
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6274
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.4.150.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040501 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Apr 06 11:39:19 +08 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 150.4.13.106.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.3, trying next server
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 150.4.13.106.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
85.209.83.242	attackbots	Unauthorized connection attempt from IP address 85.209.83.242 on Port 445(SMB)	2019-12-23 05:56:30
222.186.190.92	attackbots	Dec 23 02:45:07 vibhu-HP-Z238-Microtower-Workstation sshd\[31649\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.92 user=root Dec 23 02:45:09 vibhu-HP-Z238-Microtower-Workstation sshd\[31649\]: Failed password for root from 222.186.190.92 port 11818 ssh2 Dec 23 02:45:13 vibhu-HP-Z238-Microtower-Workstation sshd\[31649\]: Failed password for root from 222.186.190.92 port 11818 ssh2 Dec 23 02:45:16 vibhu-HP-Z238-Microtower-Workstation sshd\[31649\]: Failed password for root from 222.186.190.92 port 11818 ssh2 Dec 23 02:45:19 vibhu-HP-Z238-Microtower-Workstation sshd\[31649\]: Failed password for root from 222.186.190.92 port 11818 ssh2 ...	2019-12-23 05:28:46
185.53.168.96	attackbots	Dec 22 22:30:11 localhost sshd\[9672\]: Invalid user loy from 185.53.168.96 port 50482 Dec 22 22:30:11 localhost sshd\[9672\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.53.168.96 Dec 22 22:30:14 localhost sshd\[9672\]: Failed password for invalid user loy from 185.53.168.96 port 50482 ssh2	2019-12-23 05:42:49
163.47.214.158	attackbotsspam	Dec 22 14:05:34 plusreed sshd[13327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.47.214.158 user=root Dec 22 14:05:35 plusreed sshd[13327]: Failed password for root from 163.47.214.158 port 59054 ssh2 ...	2019-12-23 05:29:01
173.171.161.43	attack	2019-12-22 20:11:12,795 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 173.171.161.43 2019-12-22 20:46:29,932 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 173.171.161.43 2019-12-22 21:19:33,337 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 173.171.161.43 2019-12-22 21:52:42,753 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 173.171.161.43 2019-12-22 22:25:54,994 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 173.171.161.43 ...	2019-12-23 05:56:02
106.241.16.119	attackbotsspam	Dec 22 21:46:00 game-panel sshd[13537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.241.16.119 Dec 22 21:46:02 game-panel sshd[13537]: Failed password for invalid user gracia from 106.241.16.119 port 35450 ssh2 Dec 22 21:51:37 game-panel sshd[13822]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.241.16.119	2019-12-23 05:54:43
65.98.111.218	attackspambots	Invalid user ss3server from 65.98.111.218 port 57646	2019-12-23 05:33:33
179.177.37.78	attack	Unauthorized connection attempt from IP address 179.177.37.78 on Port 445(SMB)	2019-12-23 05:23:24
103.126.245.130	attack	2019-12-22T20:36:11.364272abusebot-5.cloudsearch.cf sshd[2356]: Invalid user thorp from 103.126.245.130 port 40597 2019-12-22T20:36:11.370009abusebot-5.cloudsearch.cf sshd[2356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.126.245.130 2019-12-22T20:36:11.364272abusebot-5.cloudsearch.cf sshd[2356]: Invalid user thorp from 103.126.245.130 port 40597 2019-12-22T20:36:12.913201abusebot-5.cloudsearch.cf sshd[2356]: Failed password for invalid user thorp from 103.126.245.130 port 40597 ssh2 2019-12-22T20:42:14.192053abusebot-5.cloudsearch.cf sshd[2401]: Invalid user styles from 103.126.245.130 port 58789 2019-12-22T20:42:14.197933abusebot-5.cloudsearch.cf sshd[2401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.126.245.130 2019-12-22T20:42:14.192053abusebot-5.cloudsearch.cf sshd[2401]: Invalid user styles from 103.126.245.130 port 58789 2019-12-22T20:42:16.242589abusebot-5.cloudsearch.cf sshd[2401] ...	2019-12-23 05:52:07
36.239.4.25	attackspam	12/22/2019-09:45:26.014005 36.239.4.25 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-12-23 05:49:41
104.244.79.250	attackbots	" "	2019-12-23 05:32:18
69.163.225.129	attack	Wordpress login scanning	2019-12-23 05:36:18
87.253.93.190	attackspambots	Dec 22 23:11:50 gw1 sshd[5217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.253.93.190 Dec 22 23:11:51 gw1 sshd[5217]: Failed password for invalid user ambroziu from 87.253.93.190 port 44930 ssh2 ...	2019-12-23 05:20:45
197.36.137.53	attackspambots	DLink DSL Remote OS Command Injection Vulnerability	2019-12-23 05:51:26
78.155.61.60	attack	Unauthorised access (Dec 22) SRC=78.155.61.60 LEN=52 TTL=116 ID=10335 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-23 05:41:26

最近上报的IP列表

128.199.209.6	128.199.147.106	60.11.113.164	222.128.93.67
118.126.104.151	198.27.69.219	14.145.38.196	183.203.215.34
89.35.39.78	203.186.85.210	107.170.238.245	184.105.139.108
149.129.99.116	74.82.47.62	37.49.225.236	84.91.128.47
41.208.222.165	125.47.98.159	178.47.214.65	154.216.245.67