106.13.4.250 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	2020-05-06T12:18:12.544286shield sshd\[1856\]: Invalid user haha from 106.13.4.250 port 41072 2020-05-06T12:18:12.547802shield sshd\[1856\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 2020-05-06T12:18:14.491087shield sshd\[1856\]: Failed password for invalid user haha from 106.13.4.250 port 41072 ssh2 2020-05-06T12:20:44.810244shield sshd\[2348\]: Invalid user catering from 106.13.4.250 port 44730 2020-05-06T12:20:44.814211shield sshd\[2348\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250	2020-05-06 20:43:02
attackbotsspam	2020-04-25T11:34:46.2270731495-001 sshd[47617]: Invalid user sudoku from 106.13.4.250 port 45310 2020-04-25T11:34:46.2337211495-001 sshd[47617]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 2020-04-25T11:34:46.2270731495-001 sshd[47617]: Invalid user sudoku from 106.13.4.250 port 45310 2020-04-25T11:34:47.5893661495-001 sshd[47617]: Failed password for invalid user sudoku from 106.13.4.250 port 45310 ssh2 2020-04-25T11:37:48.4830181495-001 sshd[47822]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 user=mail 2020-04-25T11:37:49.8237311495-001 sshd[47822]: Failed password for mail from 106.13.4.250 port 44996 ssh2 ...	2020-04-26 00:26:04
attack	Invalid user opfor from 106.13.4.250 port 54546	2020-04-12 07:51:33
attackbots	Apr 7 05:49:10 localhost sshd\[18138\]: Invalid user postgres from 106.13.4.250 Apr 7 05:49:10 localhost sshd\[18138\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 Apr 7 05:49:13 localhost sshd\[18138\]: Failed password for invalid user postgres from 106.13.4.250 port 55768 ssh2 Apr 7 05:51:18 localhost sshd\[18396\]: Invalid user sogo from 106.13.4.250 Apr 7 05:51:18 localhost sshd\[18396\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 ...	2020-04-07 15:45:10
attackbots	Invalid user www from 106.13.4.250 port 60470	2020-04-04 00:47:19
attackspam	$f2bV_matches	2020-04-01 19:00:39
attackspambots	Invalid user le from 106.13.4.250 port 55708	2020-03-28 07:19:15
attack	Invalid user guest3 from 106.13.4.250 port 58760	2020-03-27 16:46:33
attack	Invalid user guest3 from 106.13.4.250 port 58760	2020-03-25 08:25:26
attackspambots	Mar 22 08:16:46 ws19vmsma01 sshd[202633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 Mar 22 08:16:48 ws19vmsma01 sshd[202633]: Failed password for invalid user eshop from 106.13.4.250 port 51290 ssh2 ...	2020-03-22 19:58:36
attack	2020-03-10T21:35:55.438089vps773228.ovh.net sshd[10031]: Invalid user git from 106.13.4.250 port 52064 2020-03-10T21:35:55.444527vps773228.ovh.net sshd[10031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 2020-03-10T21:35:55.438089vps773228.ovh.net sshd[10031]: Invalid user git from 106.13.4.250 port 52064 2020-03-10T21:35:57.789963vps773228.ovh.net sshd[10031]: Failed password for invalid user git from 106.13.4.250 port 52064 ssh2 2020-03-10T22:01:05.723564vps773228.ovh.net sshd[10331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 user=root 2020-03-10T22:01:08.035762vps773228.ovh.net sshd[10331]: Failed password for root from 106.13.4.250 port 52738 ssh2 2020-03-10T22:05:01.482672vps773228.ovh.net sshd[10403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 user=root 2020-03-10T22:05:03.193088vps773228.ovh.net sshd[10403 ...	2020-03-11 05:14:17
attackbots	Mar 10 07:49:54 localhost sshd\[14072\]: Invalid user bot1 from 106.13.4.250 port 37162 Mar 10 07:49:54 localhost sshd\[14072\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 Mar 10 07:49:56 localhost sshd\[14072\]: Failed password for invalid user bot1 from 106.13.4.250 port 37162 ssh2	2020-03-10 16:47:32
attackspam	2020-2-11 10:33:36 PM: failed ssh attempt	2020-02-12 06:18:12
attackspambots	Dec 5 23:49:16 ms-srv sshd[61214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 user=root Dec 5 23:49:19 ms-srv sshd[61214]: Failed password for invalid user root from 106.13.4.250 port 39050 ssh2	2020-02-02 21:20:04
attackbots	Unauthorized connection attempt detected from IP address 106.13.4.250 to port 2220 [J]	2020-01-31 05:36:16
attackbotsspam	Jan 8 06:12:54 MK-Soft-VM7 sshd[13556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 Jan 8 06:12:56 MK-Soft-VM7 sshd[13556]: Failed password for invalid user mongo from 106.13.4.250 port 46390 ssh2 ...	2020-01-08 13:17:36
attackspam	2019-12-23T09:40:24.557319vps751288.ovh.net sshd\[9163\]: Invalid user andy from 106.13.4.250 port 41764 2019-12-23T09:40:24.564827vps751288.ovh.net sshd\[9163\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 2019-12-23T09:40:26.448716vps751288.ovh.net sshd\[9163\]: Failed password for invalid user andy from 106.13.4.250 port 41764 ssh2 2019-12-23T09:47:05.046913vps751288.ovh.net sshd\[9267\]: Invalid user 99999999 from 106.13.4.250 port 57590 2019-12-23T09:47:05.054672vps751288.ovh.net sshd\[9267\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250	2019-12-23 17:24:56
attackbots	2019-12-11T08:08:43.660054abusebot-7.cloudsearch.cf sshd\[1899\]: Invalid user aymer from 106.13.4.250 port 54734	2019-12-11 16:35:06
attackspambots	Dec 5 17:45:30 localhost sshd\[13300\]: Invalid user mysql from 106.13.4.250 port 49506 Dec 5 17:45:30 localhost sshd\[13300\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 Dec 5 17:45:33 localhost sshd\[13300\]: Failed password for invalid user mysql from 106.13.4.250 port 49506 ssh2	2019-12-06 01:10:03
attackbotsspam	Dec 4 20:48:08 vserver sshd\[4899\]: Invalid user kaaren from 106.13.4.250Dec 4 20:48:10 vserver sshd\[4899\]: Failed password for invalid user kaaren from 106.13.4.250 port 43648 ssh2Dec 4 20:53:53 vserver sshd\[4949\]: Invalid user ident from 106.13.4.250Dec 4 20:53:55 vserver sshd\[4949\]: Failed password for invalid user ident from 106.13.4.250 port 49150 ssh2 ...	2019-12-05 04:05:33
attackspambots	Dec 4 01:45:15 areeb-Workstation sshd[31488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 Dec 4 01:45:17 areeb-Workstation sshd[31488]: Failed password for invalid user phpBB from 106.13.4.250 port 39146 ssh2 ...	2019-12-04 04:58:07
attackbots	no	2019-11-15 19:14:21
attackspambots	Nov 10 14:31:33 web1 sshd\[17737\]: Invalid user wwwrun from 106.13.4.250 Nov 10 14:31:33 web1 sshd\[17737\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 Nov 10 14:31:35 web1 sshd\[17737\]: Failed password for invalid user wwwrun from 106.13.4.250 port 37816 ssh2 Nov 10 14:36:12 web1 sshd\[18192\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 user=root Nov 10 14:36:14 web1 sshd\[18192\]: Failed password for root from 106.13.4.250 port 45580 ssh2	2019-11-11 08:49:33
attack	Oct 25 03:55:45 anodpoucpklekan sshd[33999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 user=root Oct 25 03:55:47 anodpoucpklekan sshd[33999]: Failed password for root from 106.13.4.250 port 42504 ssh2 ...	2019-10-25 13:13:28
attackbots	Invalid user imapuser from 106.13.4.250 port 38180	2019-10-20 03:08:06
attackbotsspam	$f2bV_matches	2019-10-07 03:10:36

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.46.123	attackspam	Oct 12 17:40:14 buvik sshd[7813]: Failed password for invalid user velarde from 106.13.46.123 port 54450 ssh2 Oct 12 17:44:39 buvik sshd[8406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.46.123 user=root Oct 12 17:44:41 buvik sshd[8406]: Failed password for root from 106.13.46.123 port 44970 ssh2 ...	2020-10-12 23:48:43
106.13.4.132	attackbots	2020-10-12T13:35:54+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-10-12 22:34:30
106.13.46.123	attack	Repeated brute force against a port	2020-10-12 15:13:26
106.13.4.132	attackbotsspam	$f2bV_matches	2020-10-12 14:01:58
106.13.42.140	attack	Oct 11 22:12:43 ip-172-31-16-56 sshd\[26755\]: Invalid user ion from 106.13.42.140\ Oct 11 22:12:45 ip-172-31-16-56 sshd\[26755\]: Failed password for invalid user ion from 106.13.42.140 port 59816 ssh2\ Oct 11 22:15:55 ip-172-31-16-56 sshd\[26810\]: Invalid user oracle from 106.13.42.140\ Oct 11 22:15:57 ip-172-31-16-56 sshd\[26810\]: Failed password for invalid user oracle from 106.13.42.140 port 57116 ssh2\ Oct 11 22:19:12 ip-172-31-16-56 sshd\[26875\]: Invalid user jjonglee from 106.13.42.140\	2020-10-12 07:26:45
106.13.42.140	attack	Oct 11 15:24:05 serwer sshd\[24282\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.42.140 user=root Oct 11 15:24:08 serwer sshd\[24282\]: Failed password for root from 106.13.42.140 port 35530 ssh2 Oct 11 15:29:06 serwer sshd\[24929\]: Invalid user ellen from 106.13.42.140 port 58314 Oct 11 15:29:06 serwer sshd\[24929\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.42.140 ...	2020-10-11 23:41:38
106.13.42.140	attackbots	leo_www	2020-10-11 15:40:49
106.13.42.140	attack	5x Failed Password	2020-10-11 08:58:30
106.13.41.87	attack	2020-10-10T21:33:05.633586hostname sshd[29936]: Failed password for invalid user ark from 106.13.41.87 port 39526 ssh2 2020-10-10T21:36:13.475247hostname sshd[31217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.41.87 user=root 2020-10-10T21:36:15.718396hostname sshd[31217]: Failed password for root from 106.13.41.87 port 38682 ssh2 ...	2020-10-10 23:09:58
106.13.41.87	attackspam	$f2bV_matches	2020-10-10 15:00:24
106.13.48.9	attackbotsspam	Oct 8 21:59:31 hidden sshd[4418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.48.9 Oct 8 21:59:33 hidden sshd[4418]: Failed password for invalid user kevin from 106.13.48.9 port 40514 ssh2 Oct 8 22:16:27 hidden sshd[11400]: Invalid user info from 106.13.48.9 port 38028	2020-10-10 04:46:19
106.13.48.9	attack	SSH bruteforce	2020-10-09 20:45:22
106.13.48.9	attackspam	2020-10-09T04:48:40+0200 Failed SSH Authentication/Brute Force Attack.(Server 2)	2020-10-09 12:31:36
106.13.47.78	attackbots	2020-10-07T18:58:06.178811abusebot-4.cloudsearch.cf sshd[29305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.47.78 user=root 2020-10-07T18:58:07.888553abusebot-4.cloudsearch.cf sshd[29305]: Failed password for root from 106.13.47.78 port 59938 ssh2 2020-10-07T19:00:56.752007abusebot-4.cloudsearch.cf sshd[29323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.47.78 user=root 2020-10-07T19:00:58.466828abusebot-4.cloudsearch.cf sshd[29323]: Failed password for root from 106.13.47.78 port 41708 ssh2 2020-10-07T19:03:53.790334abusebot-4.cloudsearch.cf sshd[29440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.47.78 user=root 2020-10-07T19:03:56.135880abusebot-4.cloudsearch.cf sshd[29440]: Failed password for root from 106.13.47.78 port 51712 ssh2 2020-10-07T19:06:14.010121abusebot-4.cloudsearch.cf sshd[29458]: pam_unix(sshd:auth): authenticat ...	2020-10-08 03:31:04
106.13.47.78	attackspambots	5x Failed Password	2020-10-07 19:46:55

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.4.250
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 853
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.4.250.			IN	A

;; AUTHORITY SECTION:
.			250	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100601 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 07 03:10:27 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 250.4.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 250.4.13.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
198.98.50.112	attackspam	Aug 17 12:49:27 sachi sshd\[27238\]: Invalid user admin from 198.98.50.112 Aug 17 12:49:27 sachi sshd\[27238\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.98.50.112 Aug 17 12:49:29 sachi sshd\[27238\]: Failed password for invalid user admin from 198.98.50.112 port 26693 ssh2 Aug 17 12:49:31 sachi sshd\[27238\]: Failed password for invalid user admin from 198.98.50.112 port 26693 ssh2 Aug 17 12:49:34 sachi sshd\[27238\]: Failed password for invalid user admin from 198.98.50.112 port 26693 ssh2	2019-08-18 07:26:39
104.140.188.42	attack	firewall-block, port(s): 5432/tcp	2019-08-18 07:42:37
185.100.85.132	attackbotsspam	Aug 18 00:51:41 plex sshd[18774]: Invalid user admin from 185.100.85.132 port 48307 Aug 18 00:51:43 plex sshd[18774]: Failed password for invalid user admin from 185.100.85.132 port 48307 ssh2 Aug 18 00:51:45 plex sshd[18774]: Failed password for invalid user admin from 185.100.85.132 port 48307 ssh2 Aug 18 00:51:48 plex sshd[18774]: Failed password for invalid user admin from 185.100.85.132 port 48307 ssh2 Aug 18 00:51:51 plex sshd[18774]: Failed password for invalid user admin from 185.100.85.132 port 48307 ssh2	2019-08-18 07:20:42
5.39.82.197	attackspambots	Invalid user juanda from 5.39.82.197 port 37276	2019-08-18 07:33:39
121.67.184.228	attack	Invalid user test from 121.67.184.228 port 42810	2019-08-18 07:30:00
27.208.220.219	attack	Invalid user service from 27.208.220.219 port 61114	2019-08-18 07:26:19
190.191.194.9	attackbots	2019-08-17T23:25:29.448657abusebot-8.cloudsearch.cf sshd\[738\]: Invalid user patric from 190.191.194.9 port 47902	2019-08-18 07:37:43
91.218.67.116	attackspam	2019-08-17T23:36:54.738531abusebot-4.cloudsearch.cf sshd\[11328\]: Invalid user xo from 91.218.67.116 port 38009	2019-08-18 07:43:51
49.231.15.15	attack	Scanning random ports - tries to find possible vulnerable services	2019-08-18 07:51:14
93.91.172.78	attackbots	Unauthorized connection attempt from IP address 93.91.172.78 on Port 445(SMB)	2019-08-18 07:23:41
142.93.241.93	attackbotsspam	2019-08-17T23:17:12.535450abusebot-4.cloudsearch.cf sshd\[11261\]: Invalid user test1 from 142.93.241.93 port 56876	2019-08-18 07:39:29
114.220.0.232	attack	Fail2Ban - SMTP Bruteforce Attempt	2019-08-18 07:53:14
45.60.204.9	attack	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-08-18 07:27:31
178.128.98.134	attackbotsspam	2019-08-17 10:07:59 server sshd[40689]: Failed password for invalid user rudy from 178.128.98.134 port 40438 ssh2	2019-08-18 07:24:51
203.77.234.92	attack	2019-08-17T22:27:24.687517abusebot-8.cloudsearch.cf sshd\[475\]: Invalid user 123123 from 203.77.234.92 port 44096	2019-08-18 07:22:13

最近上报的IP列表

166.89.105.147	82.62.161.20	173.131.244.0	58.163.151.198
141.106.149.34	37.122.44.176	79.76.93.119	68.126.183.119
5.38.158.158	59.167.201.108	31.238.24.158	119.225.75.201
13.231.246.0	72.35.34.86	179.197.121.183	147.211.122.67
111.33.77.251	54.36.149.66	32.156.160.124	117.197.146.141