106.13.144.164

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	IP blocked	2020-04-12 04:25:38
attackbots	$f2bV_matches	2020-04-07 14:58:02
attackspam	Mar 17 00:39:37 vmd38886 sshd\[5587\]: Invalid user daniel from 106.13.144.164 port 49966 Mar 17 00:39:37 vmd38886 sshd\[5587\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 Mar 17 00:39:39 vmd38886 sshd\[5587\]: Failed password for invalid user daniel from 106.13.144.164 port 49966 ssh2	2020-03-17 08:01:35
attackspambots	Feb 23 02:21:14 silence02 sshd[17163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 Feb 23 02:21:15 silence02 sshd[17163]: Failed password for invalid user narciso from 106.13.144.164 port 50030 ssh2 Feb 23 02:24:40 silence02 sshd[17436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164	2020-02-23 09:29:44
attackbotsspam	Jan 15 07:26:32 vps691689 sshd[30928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 Jan 15 07:26:34 vps691689 sshd[30928]: Failed password for invalid user apd from 106.13.144.164 port 43252 ssh2 ...	2020-01-15 14:59:58
attackspambots	Invalid user admin from 106.13.144.164 port 51610	2020-01-13 08:36:41
attackbots	Dec 30 11:40:55 server sshd\[11253\]: Invalid user matilda from 106.13.144.164 Dec 30 11:40:55 server sshd\[11253\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 Dec 30 11:40:57 server sshd\[11253\]: Failed password for invalid user matilda from 106.13.144.164 port 38624 ssh2 Dec 30 11:45:39 server sshd\[12246\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=root Dec 30 11:45:41 server sshd\[12246\]: Failed password for root from 106.13.144.164 port 41526 ssh2 ...	2019-12-30 20:05:55
attackbotsspam	ssh failed login	2019-12-29 21:14:09
attackbots	Dec 21 19:42:14 sd-53420 sshd\[2567\]: User root from 106.13.144.164 not allowed because none of user's groups are listed in AllowGroups Dec 21 19:42:14 sd-53420 sshd\[2567\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=root Dec 21 19:42:16 sd-53420 sshd\[2567\]: Failed password for invalid user root from 106.13.144.164 port 59556 ssh2 Dec 21 19:46:36 sd-53420 sshd\[4115\]: User root from 106.13.144.164 not allowed because none of user's groups are listed in AllowGroups Dec 21 19:46:36 sd-53420 sshd\[4115\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=root ...	2019-12-22 03:01:12
attackbotsspam	Dec 20 23:18:52 auw2 sshd\[16420\]: Invalid user shamik from 106.13.144.164 Dec 20 23:18:52 auw2 sshd\[16420\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 Dec 20 23:18:54 auw2 sshd\[16420\]: Failed password for invalid user shamik from 106.13.144.164 port 58532 ssh2 Dec 20 23:25:13 auw2 sshd\[16989\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=root Dec 20 23:25:16 auw2 sshd\[16989\]: Failed password for root from 106.13.144.164 port 48384 ssh2	2019-12-21 17:33:02
attackspam	Dec 10 10:05:49 cp sshd[28628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164	2019-12-10 21:31:37
attackspambots	2019-12-03T16:38:05.465168abusebot-2.cloudsearch.cf sshd\[6640\]: Invalid user gazengel from 106.13.144.164 port 53914	2019-12-04 00:42:49
attackbotsspam	Nov 25 21:18:37 cumulus sshd[21590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=r.r Nov 25 21:18:39 cumulus sshd[21590]: Failed password for r.r from 106.13.144.164 port 38228 ssh2 Nov 25 21:18:39 cumulus sshd[21590]: Received disconnect from 106.13.144.164 port 38228:11: Bye Bye [preauth] Nov 25 21:18:39 cumulus sshd[21590]: Disconnected from 106.13.144.164 port 38228 [preauth] Nov 25 21:44:13 cumulus sshd[22691]: Invalid user qzeng from 106.13.144.164 port 57668 Nov 25 21:44:13 cumulus sshd[22691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 Nov 25 21:44:16 cumulus sshd[22691]: Failed password for invalid user qzeng from 106.13.144.164 port 57668 ssh2 Nov 25 21:44:16 cumulus sshd[22691]: Received disconnect from 106.13.144.164 port 57668:11: Bye Bye [preauth] Nov 25 21:44:16 cumulus sshd[22691]: Disconnected from 106.13.144.164 port 57668 [preau........ -------------------------------	2019-11-26 20:03:03
attack	Lines containing failures of 106.13.144.164 Nov 19 13:20:57 install sshd[2345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=r.r Nov 19 13:20:58 install sshd[2345]: Failed password for r.r from 106.13.144.164 port 43940 ssh2 Nov 19 13:20:58 install sshd[2345]: Received disconnect from 106.13.144.164 port 43940:11: Bye Bye [preauth] Nov 19 13:20:58 install sshd[2345]: Disconnected from authenticating user r.r 106.13.144.164 port 43940 [preauth] Nov 19 13:48:33 install sshd[6523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=r.r Nov 19 13:48:35 install sshd[6523]: Failed password for r.r from 106.13.144.164 port 37936 ssh2 Nov 19 13:48:35 install sshd[6523]: Received disconnect from 106.13.144.164 port 37936:11: Bye Bye [preauth] Nov 19 13:48:35 install sshd[6523]: Disconnected from authenticating user r.r 106.13.144.164 port 37936 [preauth] Nov 1........ ------------------------------	2019-11-19 23:07:03

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.144.207	attack	Oct 11 17:56:59 firewall sshd[26023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207 user=root Oct 11 17:57:01 firewall sshd[26023]: Failed password for root from 106.13.144.207 port 43918 ssh2 Oct 11 17:59:14 firewall sshd[26065]: Invalid user deployer from 106.13.144.207 ...	2020-10-12 05:58:47
106.13.144.207	attack	"fail2ban match"	2020-10-11 22:06:34
106.13.144.207	attackbotsspam	"fail2ban match"	2020-10-11 14:04:12
106.13.144.207	attackbots	detected by Fail2Ban	2020-10-11 07:26:02
106.13.144.207	attack	Sep 12 16:53:28 nuernberg-4g-01 sshd[21023]: Failed password for root from 106.13.144.207 port 54576 ssh2 Sep 12 16:58:06 nuernberg-4g-01 sshd[22590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207 Sep 12 16:58:08 nuernberg-4g-01 sshd[22590]: Failed password for invalid user admin from 106.13.144.207 port 48522 ssh2	2020-09-12 23:23:44
106.13.144.207	attackspam	Sep 12 07:55:20 dhoomketu sshd[3026535]: Failed password for root from 106.13.144.207 port 52194 ssh2 Sep 12 07:56:28 dhoomketu sshd[3026551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207 user=root Sep 12 07:56:30 dhoomketu sshd[3026551]: Failed password for root from 106.13.144.207 port 38840 ssh2 Sep 12 07:57:35 dhoomketu sshd[3026589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207 user=root Sep 12 07:57:37 dhoomketu sshd[3026589]: Failed password for root from 106.13.144.207 port 53720 ssh2 ...	2020-09-12 15:28:29
106.13.144.207	attackspam	Aug 19 05:22:19 rocket sshd[30396]: Failed password for root from 106.13.144.207 port 33564 ssh2 Aug 19 05:26:54 rocket sshd[31024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207 ...	2020-08-19 12:36:58
106.13.144.207	attack	Bruteforce detected by fail2ban	2020-08-10 22:28:13
106.13.144.8	attackspam	Aug 1 21:31:21 game-panel sshd[22791]: Failed password for root from 106.13.144.8 port 60414 ssh2 Aug 1 21:34:00 game-panel sshd[22891]: Failed password for root from 106.13.144.8 port 41748 ssh2	2020-08-02 05:37:28
106.13.144.8	attackspam	(sshd) Failed SSH login from 106.13.144.8 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 28 09:41:09 s1 sshd[26890]: Invalid user zcx from 106.13.144.8 port 37296 Jul 28 09:41:11 s1 sshd[26890]: Failed password for invalid user zcx from 106.13.144.8 port 37296 ssh2 Jul 28 09:48:13 s1 sshd[27059]: Invalid user jzhang71 from 106.13.144.8 port 46252 Jul 28 09:48:15 s1 sshd[27059]: Failed password for invalid user jzhang71 from 106.13.144.8 port 46252 ssh2 Jul 28 09:51:06 s1 sshd[27223]: Invalid user icmsectest from 106.13.144.8 port 51158	2020-07-28 15:37:14
106.13.144.8	attackspambots	Invalid user mcftp from 106.13.144.8 port 56572	2020-07-19 01:18:16
106.13.144.207	attackspambots	SSH brutforce	2020-07-16 19:44:58
106.13.144.207	attackbotsspam	$f2bV_matches	2020-07-12 15:56:11
106.13.144.207	attackbots	SSH login attempts.	2020-07-08 00:30:32
106.13.144.8	attack	Jul 6 09:37:14 lnxded64 sshd[12943]: Failed password for root from 106.13.144.8 port 45766 ssh2 Jul 6 09:37:14 lnxded64 sshd[12943]: Failed password for root from 106.13.144.8 port 45766 ssh2	2020-07-06 15:39:34

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.144.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43841
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.144.164.			IN	A

;; AUTHORITY SECTION:
.			537	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111900 1800 900 604800 86400

;; Query time: 329 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 19 23:06:58 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 164.144.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 164.144.13.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
67.140.97.108	attackspam	Unauthorized connection attempt detected from IP address 67.140.97.108 to port 2220 [J]	2020-01-19 02:45:54
122.51.158.15	attackbotsspam	Unauthorized connection attempt detected from IP address 122.51.158.15 to port 2220 [J]	2020-01-19 02:34:52
106.13.222.115	attackspambots	Autoban 106.13.222.115 CONNECT/AUTH	2020-01-19 02:39:36
112.78.178.213	attackbotsspam	Unauthorized connection attempt detected from IP address 112.78.178.213 to port 2220 [J]	2020-01-19 02:37:33
61.73.3.183	attackspambots	Unauthorized connection attempt detected from IP address 61.73.3.183 to port 2220 [J]	2020-01-19 02:47:03
101.255.52.171	attack	Unauthorized connection attempt detected from IP address 101.255.52.171 to port 2220 [J]	2020-01-19 02:43:26
91.231.148.50	attack	Unauthorized connection attempt detected from IP address 91.231.148.50 to port 5555 [J]	2020-01-19 02:43:52
54.39.138.246	attackspambots	Autoban 54.39.138.246 CONNECT/AUTH	2020-01-19 02:48:25
120.70.100.54	attackspam	Invalid user u from 120.70.100.54 port 32974	2020-01-19 02:35:20
123.126.20.94	attack	Unauthorized connection attempt detected from IP address 123.126.20.94 to port 2220 [J]	2020-01-19 02:32:44
142.93.172.64	attack	Jan 18 16:58:22 ncomp sshd[13124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 user=root Jan 18 16:58:24 ncomp sshd[13124]: Failed password for root from 142.93.172.64 port 42838 ssh2 Jan 18 17:06:42 ncomp sshd[13455]: Invalid user deploy from 142.93.172.64	2020-01-19 02:29:48
129.28.193.154	attack	Autoban 129.28.193.154 CONNECT/AUTH	2020-01-19 02:31:45
118.126.111.108	attackbots	20 attempts against mh-ssh on cloud.magehost.pro	2020-01-19 02:35:36
111.230.19.43	attackspambots	Jan 18 19:02:51 mout sshd[26281]: Invalid user db from 111.230.19.43 port 33522 Jan 18 19:02:53 mout sshd[26281]: Failed password for invalid user db from 111.230.19.43 port 33522 ssh2 Jan 18 19:24:25 mout sshd[28545]: Connection closed by 111.230.19.43 port 47300 [preauth]	2020-01-19 02:38:24
66.98.79.181	attackbots	SSH_scan	2020-01-19 02:46:07

最近上报的IP列表

181.49.132.18	105.226.131.30	41.250.176.152	193.106.49.18
183.78.61.42	128.201.207.58	95.42.209.248	14.228.208.54
134.201.254.187	14.98.25.82	87.235.101.226	201.16.197.177
170.202.130.82	85.91.207.172	77.225.216.136	85.114.100.161
209.182.219.195	171.240.98.188	81.37.97.192	77.81.224.88