106.13.134.164

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Apr 6 00:47:38 vmd48417 sshd[14398]: Failed password for root from 106.13.134.164 port 50976 ssh2	2020-04-06 07:17:15
attackbots	Invalid user wenyan from 106.13.134.164 port 45748	2020-02-29 07:23:28
attack	Unauthorized connection attempt detected from IP address 106.13.134.164 to port 2220 [J]	2020-01-26 13:15:26
attack	Invalid user direction from 106.13.134.164	2020-01-21 08:37:15
attackbotsspam	Invalid user dennard from 106.13.134.164 port 55072	2020-01-04 04:39:18
attackbots	Dec 19 15:39:34 mail sshd\[25062\]: Invalid user shot from 106.13.134.164 Dec 19 15:39:34 mail sshd\[25062\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.164 Dec 19 15:39:36 mail sshd\[25062\]: Failed password for invalid user shot from 106.13.134.164 port 53990 ssh2 ...	2019-12-19 22:51:35
attackbots	[ssh] SSH attack	2019-12-13 19:55:00
attackbotsspam	Dec 9 10:24:21 jane sshd[1416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.164 Dec 9 10:24:22 jane sshd[1416]: Failed password for invalid user admin from 106.13.134.164 port 54356 ssh2 ...	2019-12-09 17:51:36
attack	2019-11-23T20:11:40.495440abusebot-5.cloudsearch.cf sshd\[10812\]: Invalid user grung from 106.13.134.164 port 45920	2019-11-24 04:14:49
attackspam	Nov 8 04:52:09 tdfoods sshd\[2170\]: Invalid user car123 from 106.13.134.164 Nov 8 04:52:09 tdfoods sshd\[2170\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.164 Nov 8 04:52:11 tdfoods sshd\[2170\]: Failed password for invalid user car123 from 106.13.134.164 port 58672 ssh2 Nov 8 04:57:26 tdfoods sshd\[2563\]: Invalid user mk@123 from 106.13.134.164 Nov 8 04:57:26 tdfoods sshd\[2563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.164	2019-11-08 23:09:48

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.134.142	attackspam	(sshd) Failed SSH login from 106.13.134.142 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 8 10:48:46 optimus sshd[26065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.142 user=root Sep 8 10:48:48 optimus sshd[26065]: Failed password for root from 106.13.134.142 port 58966 ssh2 Sep 8 10:54:08 optimus sshd[28026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.142 user=root Sep 8 10:54:10 optimus sshd[28026]: Failed password for root from 106.13.134.142 port 57340 ssh2 Sep 8 10:59:37 optimus sshd[29889]: Did not receive identification string from 106.13.134.142	2020-09-09 00:13:09
106.13.134.142	attackspam	firewall-block, port(s): 7374/tcp	2020-09-08 15:44:46
106.13.134.142	attackspambots	k+ssh-bruteforce	2020-09-08 08:18:33
106.13.134.142	attackbotsspam	firewall-block, port(s): 29420/tcp	2020-09-03 03:43:07
106.13.134.142	attack	Invalid user zt from 106.13.134.142 port 38514	2020-09-02 19:21:55
106.13.134.142	attackbots	" "	2020-09-01 00:36:51
106.13.134.142	attackbots	Invalid user anon from 106.13.134.142 port 49572	2020-08-17 04:12:17
106.13.134.19	attackbots	May 19 20:50:46 vmd48417 sshd[18889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.19	2020-05-20 04:03:28
106.13.134.19	attackspambots	May 8 23:00:10 vps46666688 sshd[31277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.19 May 8 23:00:13 vps46666688 sshd[31277]: Failed password for invalid user anonymous from 106.13.134.19 port 41980 ssh2 ...	2020-05-10 01:38:55
106.13.134.19	attackspambots	May 1 13:38:17 ns392434 sshd[13174]: Invalid user pai from 106.13.134.19 port 34706 May 1 13:38:17 ns392434 sshd[13174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.19 May 1 13:38:17 ns392434 sshd[13174]: Invalid user pai from 106.13.134.19 port 34706 May 1 13:38:19 ns392434 sshd[13174]: Failed password for invalid user pai from 106.13.134.19 port 34706 ssh2 May 1 13:45:20 ns392434 sshd[13444]: Invalid user kalista from 106.13.134.19 port 45798 May 1 13:45:20 ns392434 sshd[13444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.19 May 1 13:45:20 ns392434 sshd[13444]: Invalid user kalista from 106.13.134.19 port 45798 May 1 13:45:22 ns392434 sshd[13444]: Failed password for invalid user kalista from 106.13.134.19 port 45798 ssh2 May 1 13:47:52 ns392434 sshd[13496]: Invalid user test_user from 106.13.134.19 port 43416	2020-05-02 00:47:01
106.13.134.19	attack	2020-04-21T12:55:14.597397homeassistant sshd[7451]: Invalid user admin from 106.13.134.19 port 57042 2020-04-21T12:55:14.609134homeassistant sshd[7451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.19 ...	2020-04-21 23:49:49
106.13.134.248	attack	Automatic report - SSH Brute-Force Attack	2020-04-12 21:16:58
106.13.134.19	attack	SSH Brute-Force reported by Fail2Ban	2020-04-11 05:38:52
106.13.134.19	attackbots	Apr 9 23:21:42 php1 sshd\[20825\]: Invalid user deploy from 106.13.134.19 Apr 9 23:21:42 php1 sshd\[20825\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.19 Apr 9 23:21:44 php1 sshd\[20825\]: Failed password for invalid user deploy from 106.13.134.19 port 45516 ssh2 Apr 9 23:25:43 php1 sshd\[21241\]: Invalid user deploy from 106.13.134.19 Apr 9 23:25:43 php1 sshd\[21241\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.19	2020-04-10 19:34:21
106.13.134.161	attack	Mar 25 18:35:51 itv-usvr-01 sshd[14660]: Invalid user marissa from 106.13.134.161 Mar 25 18:35:51 itv-usvr-01 sshd[14660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.161 Mar 25 18:35:51 itv-usvr-01 sshd[14660]: Invalid user marissa from 106.13.134.161 Mar 25 18:35:52 itv-usvr-01 sshd[14660]: Failed password for invalid user marissa from 106.13.134.161 port 43756 ssh2	2020-03-28 01:29:13

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.134.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50058
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.134.164.			IN	A

;; AUTHORITY SECTION:
.			421	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110401 1800 900 604800 86400

;; Query time: 201 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 05 11:29:29 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 164.134.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 164.134.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
220.248.17.34	attackbotsspam	Aug 7 00:05:36 mail sshd\[10241\]: Failed password for invalid user vuser from 220.248.17.34 port 44665 ssh2 Aug 7 00:22:23 mail sshd\[10475\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.248.17.34 user=root ...	2019-08-07 07:37:08
103.9.159.59	attackspambots	2019-08-07T00:48:34.709522 sshd[6742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.9.159.59 user=root 2019-08-07T00:48:36.990599 sshd[6742]: Failed password for root from 103.9.159.59 port 58352 ssh2 2019-08-07T00:55:11.662542 sshd[6802]: Invalid user marcin from 103.9.159.59 port 55298 2019-08-07T00:55:11.676621 sshd[6802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.9.159.59 2019-08-07T00:55:11.662542 sshd[6802]: Invalid user marcin from 103.9.159.59 port 55298 2019-08-07T00:55:14.459385 sshd[6802]: Failed password for invalid user marcin from 103.9.159.59 port 55298 ssh2 ...	2019-08-07 07:35:42
89.46.196.34	attackbots	Aug 7 01:53:57 mout sshd[16603]: Invalid user wangtao from 89.46.196.34 port 50064	2019-08-07 08:25:50
59.32.95.12	attackbots	Automatic report - Port Scan Attack	2019-08-07 07:51:31
185.176.27.178	attackspambots	Aug 6 23:49:27 mail kernel: [216993.995272] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=185.176.27.178 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=11096 PROTO=TCP SPT=56685 DPT=18297 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 6 23:49:47 mail kernel: [217014.631881] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=185.176.27.178 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=18005 PROTO=TCP SPT=56685 DPT=56878 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 6 23:53:02 mail kernel: [217209.034523] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=185.176.27.178 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=5394 PROTO=TCP SPT=56685 DPT=15349 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 6 23:53:08 mail kernel: [217215.712958] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=185.176.27.178 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=37416 PROTO=TCP SPT=56685 DPT=15919 WINDOW=1024 RES=0x00 S	2019-08-07 08:06:12
118.200.67.32	attack	Aug 7 00:44:06 debian sshd\[27540\]: Invalid user archana from 118.200.67.32 port 43866 Aug 7 00:44:06 debian sshd\[27540\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.200.67.32 ...	2019-08-07 07:52:40
125.63.69.196	attackspambots	Automatic report	2019-08-07 07:34:32
171.83.234.61	attack	SSH/22 MH Probe, BF, Hack -	2019-08-07 07:42:01
212.64.51.62	attackbotsspam	Aug 6 23:04:21 debian sshd\[26381\]: Invalid user dkauffman from 212.64.51.62 port 39340 Aug 6 23:04:21 debian sshd\[26381\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.51.62 ...	2019-08-07 08:12:32
58.47.177.158	attackspambots	Aug 6 21:45:36 MK-Soft-VM6 sshd\[12843\]: Invalid user ircbot from 58.47.177.158 port 37686 Aug 6 21:45:36 MK-Soft-VM6 sshd\[12843\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.47.177.158 Aug 6 21:45:37 MK-Soft-VM6 sshd\[12843\]: Failed password for invalid user ircbot from 58.47.177.158 port 37686 ssh2 ...	2019-08-07 08:09:27
51.68.173.108	attackspambots	Aug 7 01:31:10 SilenceServices sshd[14440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.173.108 Aug 7 01:31:13 SilenceServices sshd[14440]: Failed password for invalid user john from 51.68.173.108 port 57054 ssh2 Aug 7 01:35:21 SilenceServices sshd[18945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.173.108	2019-08-07 07:45:42
170.244.69.100	attackbots	Unauthorised access (Aug 7) SRC=170.244.69.100 LEN=52 TTL=107 ID=14011 DF TCP DPT=445 WINDOW=8192 SYN	2019-08-07 07:57:36
106.12.108.23	attackspam	Aug 7 01:40:14 OPSO sshd\[28881\]: Invalid user web from 106.12.108.23 port 49560 Aug 7 01:40:14 OPSO sshd\[28881\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.108.23 Aug 7 01:40:17 OPSO sshd\[28881\]: Failed password for invalid user web from 106.12.108.23 port 49560 ssh2 Aug 7 01:45:10 OPSO sshd\[29357\]: Invalid user library from 106.12.108.23 port 41520 Aug 7 01:45:10 OPSO sshd\[29357\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.108.23	2019-08-07 08:03:49
191.7.152.13	attackbots	Aug 6 23:45:55 herz-der-gamer sshd[20411]: Invalid user staette from 191.7.152.13 port 42134 Aug 6 23:45:55 herz-der-gamer sshd[20411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.7.152.13 Aug 6 23:45:55 herz-der-gamer sshd[20411]: Invalid user staette from 191.7.152.13 port 42134 Aug 6 23:45:56 herz-der-gamer sshd[20411]: Failed password for invalid user staette from 191.7.152.13 port 42134 ssh2 ...	2019-08-07 08:04:18
60.22.160.58	attackspam	Unauthorised access (Aug 7) SRC=60.22.160.58 LEN=40 TTL=49 ID=54327 TCP DPT=23 WINDOW=41947 SYN Unauthorised access (Aug 6) SRC=60.22.160.58 LEN=40 TTL=49 ID=6107 TCP DPT=23 WINDOW=41947 SYN	2019-08-07 08:22:39

最近上报的IP列表

141.136.76.217	104.13.221.147	148.163.72.166	110.34.22.102
148.163.123.125	109.120.32.71	31.171.247.15	68.113.158.89
23.23.175.195	102.182.104.168	149.28.237.175	138.197.156.48
185.114.183.95	175.161.93.163	125.167.58.248	105.4.4.152
109.107.235.224	178.128.170.140	91.121.76.97	78.140.200.50