106.13.50.145 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Aug 29 16:10:12 lukav-desktop sshd\[27316\]: Invalid user user from 106.13.50.145 Aug 29 16:10:12 lukav-desktop sshd\[27316\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145 Aug 29 16:10:13 lukav-desktop sshd\[27316\]: Failed password for invalid user user from 106.13.50.145 port 50782 ssh2 Aug 29 16:15:05 lukav-desktop sshd\[24216\]: Invalid user smbguest from 106.13.50.145 Aug 29 16:15:05 lukav-desktop sshd\[24216\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145	2020-08-30 01:35:18
attackbotsspam	Aug 28 03:47:35 lanister sshd[1746]: Invalid user francis from 106.13.50.145 Aug 28 03:47:37 lanister sshd[1746]: Failed password for invalid user francis from 106.13.50.145 port 56854 ssh2 Aug 28 03:49:55 lanister sshd[1811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145 user=root Aug 28 03:49:57 lanister sshd[1811]: Failed password for root from 106.13.50.145 port 51058 ssh2	2020-08-28 17:07:51
attackspam	Aug 26 10:28:43 dhoomketu sshd[2669964]: Invalid user relay from 106.13.50.145 port 45712 Aug 26 10:28:43 dhoomketu sshd[2669964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145 Aug 26 10:28:43 dhoomketu sshd[2669964]: Invalid user relay from 106.13.50.145 port 45712 Aug 26 10:28:45 dhoomketu sshd[2669964]: Failed password for invalid user relay from 106.13.50.145 port 45712 ssh2 Aug 26 10:31:55 dhoomketu sshd[2670037]: Invalid user eswar from 106.13.50.145 port 56230 ...	2020-08-26 13:24:05
attackspambots	Aug 25 16:56:38 fhem-rasp sshd[8571]: Invalid user hugo from 106.13.50.145 port 59826 ...	2020-08-26 03:51:41
attack	Aug 25 13:25:59 itv-usvr-01 sshd[6902]: Invalid user superman from 106.13.50.145 Aug 25 13:25:59 itv-usvr-01 sshd[6902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145 Aug 25 13:25:59 itv-usvr-01 sshd[6902]: Invalid user superman from 106.13.50.145 Aug 25 13:26:01 itv-usvr-01 sshd[6902]: Failed password for invalid user superman from 106.13.50.145 port 38080 ssh2 Aug 25 13:34:37 itv-usvr-01 sshd[7235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145 user=root Aug 25 13:34:38 itv-usvr-01 sshd[7235]: Failed password for root from 106.13.50.145 port 59844 ssh2	2020-08-25 16:04:57
attack	Unauthorized SSH login attempts	2020-08-23 17:21:10
attackspambots	Aug 15 03:46:23 rush sshd[5269]: Failed password for root from 106.13.50.145 port 55444 ssh2 Aug 15 03:50:55 rush sshd[5420]: Failed password for root from 106.13.50.145 port 53658 ssh2 ...	2020-08-15 14:46:43
attackspam	Failed password for root from 106.13.50.145 port 41378 ssh2	2020-08-11 12:17:37
attackbots	Jul 28 14:05:21 h2829583 sshd[9558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145	2020-07-28 23:33:16
attack	Invalid user dasusr1 from 106.13.50.145 port 60146 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145 Invalid user dasusr1 from 106.13.50.145 port 60146 Failed password for invalid user dasusr1 from 106.13.50.145 port 60146 ssh2 Invalid user berta from 106.13.50.145 port 36518	2020-07-16 13:34:55
attack	Jul 16 00:01:53 OPSO sshd\[14684\]: Invalid user red from 106.13.50.145 port 45864 Jul 16 00:01:53 OPSO sshd\[14684\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145 Jul 16 00:01:55 OPSO sshd\[14684\]: Failed password for invalid user red from 106.13.50.145 port 45864 ssh2 Jul 16 00:07:01 OPSO sshd\[15657\]: Invalid user lab from 106.13.50.145 port 57850 Jul 16 00:07:01 OPSO sshd\[15657\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145	2020-07-16 06:24:01
attackbotsspam	Jun 20 10:48:57 mockhub sshd[17272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145 Jun 20 10:48:58 mockhub sshd[17272]: Failed password for invalid user ghh from 106.13.50.145 port 53216 ssh2 ...	2020-06-21 04:02:47
attack	Invalid user prova from 106.13.50.145 port 49036	2020-06-20 04:18:04
attackspam	Jun 13 06:12:16 vps333114 sshd[15862]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145 Jun 13 06:12:18 vps333114 sshd[15862]: Failed password for invalid user testuser from 106.13.50.145 port 36786 ssh2 ...	2020-06-13 16:41:08
attack	2020-06-12 03:51:07 server sshd[57094]: Failed password for invalid user root from 106.13.50.145 port 55958 ssh2	2020-06-13 00:16:25
attackbotsspam	Jun 11 08:27:25 server sshd[48180]: Failed password for root from 106.13.50.145 port 34886 ssh2 Jun 11 08:31:06 server sshd[51012]: Failed password for invalid user packer from 106.13.50.145 port 56022 ssh2 Jun 11 08:34:40 server sshd[53787]: Failed password for invalid user jerry from 106.13.50.145 port 48932 ssh2	2020-06-11 15:12:25
attack	Invalid user postgres from 106.13.50.145 port 32848	2020-05-28 17:02:44

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.50.219	attackbotsspam	Sep 3 19:47:59 lnxweb61 sshd[30349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.219	2020-09-04 03:50:33
106.13.50.219	attackspam	(sshd) Failed SSH login from 106.13.50.219 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 3 01:43:25 server sshd[13990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.219 user=root Sep 3 01:43:27 server sshd[13990]: Failed password for root from 106.13.50.219 port 49370 ssh2 Sep 3 02:00:52 server sshd[18563]: Invalid user guest from 106.13.50.219 port 50700 Sep 3 02:00:54 server sshd[18563]: Failed password for invalid user guest from 106.13.50.219 port 50700 ssh2 Sep 3 02:03:49 server sshd[19321]: Invalid user postgres from 106.13.50.219 port 56616	2020-09-03 19:25:41
106.13.50.219	attack	Aug 30 16:04:11 vpn01 sshd[30284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.219 Aug 30 16:04:13 vpn01 sshd[30284]: Failed password for invalid user jordi from 106.13.50.219 port 59596 ssh2 ...	2020-08-30 23:54:36
106.13.50.219	attack	SSH BruteForce Attack	2020-08-27 22:14:32
106.13.50.219	attack	Invalid user cot from 106.13.50.219 port 54628	2020-08-21 17:58:25
106.13.50.219	attack	$f2bV_matches	2020-08-04 12:32:11
106.13.50.219	attack	Aug 2 14:09:34 h2829583 sshd[6513]: Failed password for root from 106.13.50.219 port 37766 ssh2	2020-08-03 00:02:09
106.13.50.219	attack	2020-07-28T07:45:27.025987-07:00 suse-nuc sshd[30649]: Invalid user sunlili from 106.13.50.219 port 37298 ...	2020-07-29 00:23:38
106.13.50.219	attackspambots	2020-07-17T18:59:50+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-07-18 02:22:57
106.13.50.219	attackbotsspam	Jul 16 13:14:46 webhost01 sshd[31740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.219 Jul 16 13:14:48 webhost01 sshd[31740]: Failed password for invalid user kiwi from 106.13.50.219 port 50546 ssh2 ...	2020-07-16 14:41:14
106.13.50.219	attack	Jul 14 05:52:45 piServer sshd[653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.219 Jul 14 05:52:47 piServer sshd[653]: Failed password for invalid user prueba from 106.13.50.219 port 38966 ssh2 Jul 14 05:53:45 piServer sshd[741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.219 ...	2020-07-14 14:45:29
106.13.50.219	attackbots	Jul 13 10:04:48 ny01 sshd[1786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.219 Jul 13 10:04:50 ny01 sshd[1786]: Failed password for invalid user test from 106.13.50.219 port 52580 ssh2 Jul 13 10:07:00 ny01 sshd[2068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.219	2020-07-13 22:28:14
106.13.50.219	attack	SSH bruteforce	2020-07-08 19:55:02
106.13.50.219	attackspam	Brute force attempt	2020-07-07 12:25:19
106.13.50.219	attack	20 attempts against mh-ssh on cloud	2020-07-06 13:00:28

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.50.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37059
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.50.145.			IN	A

;; AUTHORITY SECTION:
.			571	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052800 1800 900 604800 86400

;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 28 17:02:40 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 145.50.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.50.13.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
198.199.88.103	attackbots	Port Scan: TCP/23	2019-09-16 06:41:47
216.59.166.113	attackbotsspam	(imapd) Failed IMAP login from 216.59.166.113 (US/United States/-): 1 in the last 3600 secs	2019-09-16 06:07:04
95.61.254.247	attackspam	Port Scan: TCP/23	2019-09-16 06:26:35
197.50.187.181	attackspambots	Port Scan: TCP/445	2019-09-16 06:11:17
116.234.186.138	attack	Port Scan: TCP/22	2019-09-16 06:21:55
208.84.91.36	attackspambots	Port Scan: TCP/139	2019-09-16 06:37:53
12.187.97.122	attack	Port Scan: UDP/137	2019-09-16 06:02:54
96.85.230.91	attackbots	Port Scan: UDP/80	2019-09-16 06:25:40
192.139.139.132	attackspam	Port Scan: TCP/2343	2019-09-16 06:42:39
191.190.20.15	attackbots	Port Scan: TCP/88	2019-09-16 06:43:03
35.234.139.53	attackspam	Port Scan: TCP/443	2019-09-16 06:34:30
184.180.139.66	attackspambots	Port Scan: UDP/137	2019-09-16 06:45:19
221.139.50.53	attack	Port Scan: TCP/445	2019-09-16 06:04:59
221.8.148.82	attack	Port Scan: TCP/23	2019-09-16 06:36:19
221.201.196.209	attackspam	Port Scan: TCP/23	2019-09-16 06:36:02

最近上报的IP列表

111.229.73.100	2a01:4f8:191:8463::2	178.128.225.72	212.124.22.156
89.250.162.28	49.233.182.205	149.126.57.87	78.87.81.170
235.171.16.208	149.115.120.88	219.84.174.49	19.153.129.220
219.249.144.112	173.105.158.127	254.50.237.199	141.221.167.240
94.255.149.122	5.105.230.78	160.116.195.29	15.53.175.28