106.13.50.145 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Aug 29 16:10:12 lukav-desktop sshd\[27316\]: Invalid user user from 106.13.50.145 Aug 29 16:10:12 lukav-desktop sshd\[27316\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145 Aug 29 16:10:13 lukav-desktop sshd\[27316\]: Failed password for invalid user user from 106.13.50.145 port 50782 ssh2 Aug 29 16:15:05 lukav-desktop sshd\[24216\]: Invalid user smbguest from 106.13.50.145 Aug 29 16:15:05 lukav-desktop sshd\[24216\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145	2020-08-30 01:35:18
attackbotsspam	Aug 28 03:47:35 lanister sshd[1746]: Invalid user francis from 106.13.50.145 Aug 28 03:47:37 lanister sshd[1746]: Failed password for invalid user francis from 106.13.50.145 port 56854 ssh2 Aug 28 03:49:55 lanister sshd[1811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145 user=root Aug 28 03:49:57 lanister sshd[1811]: Failed password for root from 106.13.50.145 port 51058 ssh2	2020-08-28 17:07:51
attackspam	Aug 26 10:28:43 dhoomketu sshd[2669964]: Invalid user relay from 106.13.50.145 port 45712 Aug 26 10:28:43 dhoomketu sshd[2669964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145 Aug 26 10:28:43 dhoomketu sshd[2669964]: Invalid user relay from 106.13.50.145 port 45712 Aug 26 10:28:45 dhoomketu sshd[2669964]: Failed password for invalid user relay from 106.13.50.145 port 45712 ssh2 Aug 26 10:31:55 dhoomketu sshd[2670037]: Invalid user eswar from 106.13.50.145 port 56230 ...	2020-08-26 13:24:05
attackspambots	Aug 25 16:56:38 fhem-rasp sshd[8571]: Invalid user hugo from 106.13.50.145 port 59826 ...	2020-08-26 03:51:41
attack	Aug 25 13:25:59 itv-usvr-01 sshd[6902]: Invalid user superman from 106.13.50.145 Aug 25 13:25:59 itv-usvr-01 sshd[6902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145 Aug 25 13:25:59 itv-usvr-01 sshd[6902]: Invalid user superman from 106.13.50.145 Aug 25 13:26:01 itv-usvr-01 sshd[6902]: Failed password for invalid user superman from 106.13.50.145 port 38080 ssh2 Aug 25 13:34:37 itv-usvr-01 sshd[7235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145 user=root Aug 25 13:34:38 itv-usvr-01 sshd[7235]: Failed password for root from 106.13.50.145 port 59844 ssh2	2020-08-25 16:04:57
attack	Unauthorized SSH login attempts	2020-08-23 17:21:10
attackspambots	Aug 15 03:46:23 rush sshd[5269]: Failed password for root from 106.13.50.145 port 55444 ssh2 Aug 15 03:50:55 rush sshd[5420]: Failed password for root from 106.13.50.145 port 53658 ssh2 ...	2020-08-15 14:46:43
attackspam	Failed password for root from 106.13.50.145 port 41378 ssh2	2020-08-11 12:17:37
attackbots	Jul 28 14:05:21 h2829583 sshd[9558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145	2020-07-28 23:33:16
attack	Invalid user dasusr1 from 106.13.50.145 port 60146 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145 Invalid user dasusr1 from 106.13.50.145 port 60146 Failed password for invalid user dasusr1 from 106.13.50.145 port 60146 ssh2 Invalid user berta from 106.13.50.145 port 36518	2020-07-16 13:34:55
attack	Jul 16 00:01:53 OPSO sshd\[14684\]: Invalid user red from 106.13.50.145 port 45864 Jul 16 00:01:53 OPSO sshd\[14684\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145 Jul 16 00:01:55 OPSO sshd\[14684\]: Failed password for invalid user red from 106.13.50.145 port 45864 ssh2 Jul 16 00:07:01 OPSO sshd\[15657\]: Invalid user lab from 106.13.50.145 port 57850 Jul 16 00:07:01 OPSO sshd\[15657\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145	2020-07-16 06:24:01
attackbotsspam	Jun 20 10:48:57 mockhub sshd[17272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145 Jun 20 10:48:58 mockhub sshd[17272]: Failed password for invalid user ghh from 106.13.50.145 port 53216 ssh2 ...	2020-06-21 04:02:47
attack	Invalid user prova from 106.13.50.145 port 49036	2020-06-20 04:18:04
attackspam	Jun 13 06:12:16 vps333114 sshd[15862]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.145 Jun 13 06:12:18 vps333114 sshd[15862]: Failed password for invalid user testuser from 106.13.50.145 port 36786 ssh2 ...	2020-06-13 16:41:08
attack	2020-06-12 03:51:07 server sshd[57094]: Failed password for invalid user root from 106.13.50.145 port 55958 ssh2	2020-06-13 00:16:25
attackbotsspam	Jun 11 08:27:25 server sshd[48180]: Failed password for root from 106.13.50.145 port 34886 ssh2 Jun 11 08:31:06 server sshd[51012]: Failed password for invalid user packer from 106.13.50.145 port 56022 ssh2 Jun 11 08:34:40 server sshd[53787]: Failed password for invalid user jerry from 106.13.50.145 port 48932 ssh2	2020-06-11 15:12:25
attack	Invalid user postgres from 106.13.50.145 port 32848	2020-05-28 17:02:44

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.50.219	attackbotsspam	Sep 3 19:47:59 lnxweb61 sshd[30349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.219	2020-09-04 03:50:33
106.13.50.219	attackspam	(sshd) Failed SSH login from 106.13.50.219 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 3 01:43:25 server sshd[13990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.219 user=root Sep 3 01:43:27 server sshd[13990]: Failed password for root from 106.13.50.219 port 49370 ssh2 Sep 3 02:00:52 server sshd[18563]: Invalid user guest from 106.13.50.219 port 50700 Sep 3 02:00:54 server sshd[18563]: Failed password for invalid user guest from 106.13.50.219 port 50700 ssh2 Sep 3 02:03:49 server sshd[19321]: Invalid user postgres from 106.13.50.219 port 56616	2020-09-03 19:25:41
106.13.50.219	attack	Aug 30 16:04:11 vpn01 sshd[30284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.219 Aug 30 16:04:13 vpn01 sshd[30284]: Failed password for invalid user jordi from 106.13.50.219 port 59596 ssh2 ...	2020-08-30 23:54:36
106.13.50.219	attack	SSH BruteForce Attack	2020-08-27 22:14:32
106.13.50.219	attack	Invalid user cot from 106.13.50.219 port 54628	2020-08-21 17:58:25
106.13.50.219	attack	$f2bV_matches	2020-08-04 12:32:11
106.13.50.219	attack	Aug 2 14:09:34 h2829583 sshd[6513]: Failed password for root from 106.13.50.219 port 37766 ssh2	2020-08-03 00:02:09
106.13.50.219	attack	2020-07-28T07:45:27.025987-07:00 suse-nuc sshd[30649]: Invalid user sunlili from 106.13.50.219 port 37298 ...	2020-07-29 00:23:38
106.13.50.219	attackspambots	2020-07-17T18:59:50+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-07-18 02:22:57
106.13.50.219	attackbotsspam	Jul 16 13:14:46 webhost01 sshd[31740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.219 Jul 16 13:14:48 webhost01 sshd[31740]: Failed password for invalid user kiwi from 106.13.50.219 port 50546 ssh2 ...	2020-07-16 14:41:14
106.13.50.219	attack	Jul 14 05:52:45 piServer sshd[653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.219 Jul 14 05:52:47 piServer sshd[653]: Failed password for invalid user prueba from 106.13.50.219 port 38966 ssh2 Jul 14 05:53:45 piServer sshd[741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.219 ...	2020-07-14 14:45:29
106.13.50.219	attackbots	Jul 13 10:04:48 ny01 sshd[1786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.219 Jul 13 10:04:50 ny01 sshd[1786]: Failed password for invalid user test from 106.13.50.219 port 52580 ssh2 Jul 13 10:07:00 ny01 sshd[2068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.50.219	2020-07-13 22:28:14
106.13.50.219	attack	SSH bruteforce	2020-07-08 19:55:02
106.13.50.219	attackspam	Brute force attempt	2020-07-07 12:25:19
106.13.50.219	attack	20 attempts against mh-ssh on cloud	2020-07-06 13:00:28

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.50.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37059
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.50.145.			IN	A

;; AUTHORITY SECTION:
.			571	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052800 1800 900 604800 86400

;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 28 17:02:40 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 145.50.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.50.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
182.75.216.74	attackspambots	Feb 21 05:38:52 vps sshd[31511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.75.216.74 Feb 21 05:38:54 vps sshd[31511]: Failed password for invalid user wanghui from 182.75.216.74 port 7867 ssh2 Feb 21 05:55:20 vps sshd[32386]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.75.216.74 ...	2020-02-21 15:45:51
45.252.248.18	attack	45.252.248.18 - - \[21/Feb/2020:05:54:47 +0100\] "POST /wp-login.php HTTP/1.0" 200 7778 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 45.252.248.18 - - \[21/Feb/2020:05:54:50 +0100\] "POST /wp-login.php HTTP/1.0" 200 7768 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 45.252.248.18 - - \[21/Feb/2020:05:54:54 +0100\] "POST /wp-login.php HTTP/1.0" 200 7634 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-02-21 16:08:44
222.186.169.192	attack	Feb 21 08:31:30 sso sshd[5081]: Failed password for root from 222.186.169.192 port 35114 ssh2 Feb 21 08:31:34 sso sshd[5081]: Failed password for root from 222.186.169.192 port 35114 ssh2 ...	2020-02-21 15:49:02
47.50.246.114	attackspambots	Invalid user info from 47.50.246.114 port 45144	2020-02-21 15:53:48
222.186.180.8	attackbots	2020-02-21T08:42:46.747286vps751288.ovh.net sshd\[27660\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root 2020-02-21T08:42:48.488061vps751288.ovh.net sshd\[27660\]: Failed password for root from 222.186.180.8 port 39380 ssh2 2020-02-21T08:42:52.851886vps751288.ovh.net sshd\[27660\]: Failed password for root from 222.186.180.8 port 39380 ssh2 2020-02-21T08:42:56.260219vps751288.ovh.net sshd\[27660\]: Failed password for root from 222.186.180.8 port 39380 ssh2 2020-02-21T08:42:59.223891vps751288.ovh.net sshd\[27660\]: Failed password for root from 222.186.180.8 port 39380 ssh2	2020-02-21 15:47:41
98.21.189.161	attack	Automatic report - Port Scan Attack	2020-02-21 15:47:08
193.56.28.100	attackspambots	Feb 21 06:55:20 heicom postfix/smtpd\[8679\]: warning: unknown\[193.56.28.100\]: SASL LOGIN authentication failed: authentication failure Feb 21 06:56:02 heicom postfix/smtpd\[8679\]: warning: unknown\[193.56.28.100\]: SASL LOGIN authentication failed: authentication failure Feb 21 06:57:01 heicom postfix/smtpd\[8677\]: warning: unknown\[193.56.28.100\]: SASL LOGIN authentication failed: authentication failure Feb 21 07:03:14 heicom postfix/smtpd\[8786\]: warning: unknown\[193.56.28.100\]: SASL LOGIN authentication failed: authentication failure Feb 21 07:05:18 heicom postfix/smtpd\[8786\]: warning: unknown\[193.56.28.100\]: SASL LOGIN authentication failed: authentication failure ...	2020-02-21 16:15:59
41.190.31.188	attack	spam bot	2020-02-21 16:13:46
177.222.193.159	attackbotsspam	" "	2020-02-21 16:05:12
14.229.81.127	attackspam	Fail2Ban Ban Triggered	2020-02-21 16:06:22
194.26.29.121	attackbotsspam	firewall-block, port(s): 5008/tcp, 6009/tcp, 6010/tcp	2020-02-21 16:18:51
123.128.126.14	attack	Feb 21 05:54:44 debian-2gb-nbg1-2 kernel: \[4520093.534680\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=123.128.126.14 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=43 ID=9981 PROTO=TCP SPT=18599 DPT=23 WINDOW=16351 RES=0x00 SYN URGP=0	2020-02-21 16:14:32
27.78.14.83	attackbots	Feb 21 09:25:56 tuxlinux sshd[47134]: Invalid user test from 27.78.14.83 port 40366 ...	2020-02-21 16:28:41
140.143.140.242	attackbots	5x Failed Password	2020-02-21 16:21:36
222.186.42.155	attack	Feb 21 07:55:59 vpn01 sshd[23341]: Failed password for root from 222.186.42.155 port 56558 ssh2 ...	2020-02-21 15:58:47

最近上报的IP列表

111.229.73.100	2a01:4f8:191:8463::2	178.128.225.72	212.124.22.156
89.250.162.28	49.233.182.205	149.126.57.87	78.87.81.170
235.171.16.208	149.115.120.88	219.84.174.49	19.153.129.220
219.249.144.112	173.105.158.127	254.50.237.199	141.221.167.240
94.255.149.122	5.105.230.78	160.116.195.29	15.53.175.28