必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:
类型 评论内容 时间
attackbots
IP blocked
2020-04-12 04:25:38
attackbots
$f2bV_matches
2020-04-07 14:58:02
attackspam
Mar 17 00:39:37 vmd38886 sshd\[5587\]: Invalid user daniel from 106.13.144.164 port 49966
Mar 17 00:39:37 vmd38886 sshd\[5587\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164
Mar 17 00:39:39 vmd38886 sshd\[5587\]: Failed password for invalid user daniel from 106.13.144.164 port 49966 ssh2
2020-03-17 08:01:35
attackspambots
Feb 23 02:21:14 silence02 sshd[17163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164
Feb 23 02:21:15 silence02 sshd[17163]: Failed password for invalid user narciso from 106.13.144.164 port 50030 ssh2
Feb 23 02:24:40 silence02 sshd[17436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164
2020-02-23 09:29:44
attackbotsspam
Jan 15 07:26:32 vps691689 sshd[30928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164
Jan 15 07:26:34 vps691689 sshd[30928]: Failed password for invalid user apd from 106.13.144.164 port 43252 ssh2
...
2020-01-15 14:59:58
attackspambots
Invalid user admin from 106.13.144.164 port 51610
2020-01-13 08:36:41
attackbots
Dec 30 11:40:55 server sshd\[11253\]: Invalid user matilda from 106.13.144.164
Dec 30 11:40:55 server sshd\[11253\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 
Dec 30 11:40:57 server sshd\[11253\]: Failed password for invalid user matilda from 106.13.144.164 port 38624 ssh2
Dec 30 11:45:39 server sshd\[12246\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164  user=root
Dec 30 11:45:41 server sshd\[12246\]: Failed password for root from 106.13.144.164 port 41526 ssh2
...
2019-12-30 20:05:55
attackbotsspam
ssh failed login
2019-12-29 21:14:09
attackbots
Dec 21 19:42:14 sd-53420 sshd\[2567\]: User root from 106.13.144.164 not allowed because none of user's groups are listed in AllowGroups
Dec 21 19:42:14 sd-53420 sshd\[2567\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164  user=root
Dec 21 19:42:16 sd-53420 sshd\[2567\]: Failed password for invalid user root from 106.13.144.164 port 59556 ssh2
Dec 21 19:46:36 sd-53420 sshd\[4115\]: User root from 106.13.144.164 not allowed because none of user's groups are listed in AllowGroups
Dec 21 19:46:36 sd-53420 sshd\[4115\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164  user=root
...
2019-12-22 03:01:12
attackbotsspam
Dec 20 23:18:52 auw2 sshd\[16420\]: Invalid user shamik from 106.13.144.164
Dec 20 23:18:52 auw2 sshd\[16420\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164
Dec 20 23:18:54 auw2 sshd\[16420\]: Failed password for invalid user shamik from 106.13.144.164 port 58532 ssh2
Dec 20 23:25:13 auw2 sshd\[16989\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164  user=root
Dec 20 23:25:16 auw2 sshd\[16989\]: Failed password for root from 106.13.144.164 port 48384 ssh2
2019-12-21 17:33:02
attackspam
Dec 10 10:05:49 cp sshd[28628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164
2019-12-10 21:31:37
attackspambots
2019-12-03T16:38:05.465168abusebot-2.cloudsearch.cf sshd\[6640\]: Invalid user gazengel from 106.13.144.164 port 53914
2019-12-04 00:42:49
attackbotsspam
Nov 25 21:18:37 cumulus sshd[21590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164  user=r.r
Nov 25 21:18:39 cumulus sshd[21590]: Failed password for r.r from 106.13.144.164 port 38228 ssh2
Nov 25 21:18:39 cumulus sshd[21590]: Received disconnect from 106.13.144.164 port 38228:11: Bye Bye [preauth]
Nov 25 21:18:39 cumulus sshd[21590]: Disconnected from 106.13.144.164 port 38228 [preauth]
Nov 25 21:44:13 cumulus sshd[22691]: Invalid user qzeng from 106.13.144.164 port 57668
Nov 25 21:44:13 cumulus sshd[22691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164
Nov 25 21:44:16 cumulus sshd[22691]: Failed password for invalid user qzeng from 106.13.144.164 port 57668 ssh2
Nov 25 21:44:16 cumulus sshd[22691]: Received disconnect from 106.13.144.164 port 57668:11: Bye Bye [preauth]
Nov 25 21:44:16 cumulus sshd[22691]: Disconnected from 106.13.144.164 port 57668 [preau........
-------------------------------
2019-11-26 20:03:03
attack
Lines containing failures of 106.13.144.164
Nov 19 13:20:57 install sshd[2345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164  user=r.r
Nov 19 13:20:58 install sshd[2345]: Failed password for r.r from 106.13.144.164 port 43940 ssh2
Nov 19 13:20:58 install sshd[2345]: Received disconnect from 106.13.144.164 port 43940:11: Bye Bye [preauth]
Nov 19 13:20:58 install sshd[2345]: Disconnected from authenticating user r.r 106.13.144.164 port 43940 [preauth]
Nov 19 13:48:33 install sshd[6523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164  user=r.r
Nov 19 13:48:35 install sshd[6523]: Failed password for r.r from 106.13.144.164 port 37936 ssh2
Nov 19 13:48:35 install sshd[6523]: Received disconnect from 106.13.144.164 port 37936:11: Bye Bye [preauth]
Nov 19 13:48:35 install sshd[6523]: Disconnected from authenticating user r.r 106.13.144.164 port 37936 [preauth]
Nov 1........
------------------------------
2019-11-19 23:07:03
相同子网IP讨论:
IP 类型 评论内容 时间
106.13.144.207 attack
Oct 11 17:56:59 firewall sshd[26023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207  user=root
Oct 11 17:57:01 firewall sshd[26023]: Failed password for root from 106.13.144.207 port 43918 ssh2
Oct 11 17:59:14 firewall sshd[26065]: Invalid user deployer from 106.13.144.207
...
2020-10-12 05:58:47
106.13.144.207 attack
"fail2ban match"
2020-10-11 22:06:34
106.13.144.207 attackbotsspam
"fail2ban match"
2020-10-11 14:04:12
106.13.144.207 attackbots
detected by Fail2Ban
2020-10-11 07:26:02
106.13.144.207 attack
Sep 12 16:53:28 nuernberg-4g-01 sshd[21023]: Failed password for root from 106.13.144.207 port 54576 ssh2
Sep 12 16:58:06 nuernberg-4g-01 sshd[22590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207 
Sep 12 16:58:08 nuernberg-4g-01 sshd[22590]: Failed password for invalid user admin from 106.13.144.207 port 48522 ssh2
2020-09-12 23:23:44
106.13.144.207 attackspam
Sep 12 07:55:20 dhoomketu sshd[3026535]: Failed password for root from 106.13.144.207 port 52194 ssh2
Sep 12 07:56:28 dhoomketu sshd[3026551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207  user=root
Sep 12 07:56:30 dhoomketu sshd[3026551]: Failed password for root from 106.13.144.207 port 38840 ssh2
Sep 12 07:57:35 dhoomketu sshd[3026589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207  user=root
Sep 12 07:57:37 dhoomketu sshd[3026589]: Failed password for root from 106.13.144.207 port 53720 ssh2
...
2020-09-12 15:28:29
106.13.144.207 attackspam
Aug 19 05:22:19 rocket sshd[30396]: Failed password for root from 106.13.144.207 port 33564 ssh2
Aug 19 05:26:54 rocket sshd[31024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207
...
2020-08-19 12:36:58
106.13.144.207 attack
Bruteforce detected by fail2ban
2020-08-10 22:28:13
106.13.144.8 attackspam
Aug  1 21:31:21 game-panel sshd[22791]: Failed password for root from 106.13.144.8 port 60414 ssh2
Aug  1 21:34:00 game-panel sshd[22891]: Failed password for root from 106.13.144.8 port 41748 ssh2
2020-08-02 05:37:28
106.13.144.8 attackspam
(sshd) Failed SSH login from 106.13.144.8 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 28 09:41:09 s1 sshd[26890]: Invalid user zcx from 106.13.144.8 port 37296
Jul 28 09:41:11 s1 sshd[26890]: Failed password for invalid user zcx from 106.13.144.8 port 37296 ssh2
Jul 28 09:48:13 s1 sshd[27059]: Invalid user jzhang71 from 106.13.144.8 port 46252
Jul 28 09:48:15 s1 sshd[27059]: Failed password for invalid user jzhang71 from 106.13.144.8 port 46252 ssh2
Jul 28 09:51:06 s1 sshd[27223]: Invalid user icmsectest from 106.13.144.8 port 51158
2020-07-28 15:37:14
106.13.144.8 attackspambots
Invalid user mcftp from 106.13.144.8 port 56572
2020-07-19 01:18:16
106.13.144.207 attackspambots
SSH brutforce
2020-07-16 19:44:58
106.13.144.207 attackbotsspam
$f2bV_matches
2020-07-12 15:56:11
106.13.144.207 attackbots
SSH login attempts.
2020-07-08 00:30:32
106.13.144.8 attack
Jul  6 09:37:14 lnxded64 sshd[12943]: Failed password for root from 106.13.144.8 port 45766 ssh2
Jul  6 09:37:14 lnxded64 sshd[12943]: Failed password for root from 106.13.144.8 port 45766 ssh2
2020-07-06 15:39:34
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.144.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43841
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.144.164.			IN	A

;; AUTHORITY SECTION:
.			537	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111900 1800 900 604800 86400

;; Query time: 329 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 19 23:06:58 CST 2019
;; MSG SIZE  rcvd: 118
HOST信息:
Host 164.144.13.106.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 164.144.13.106.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
1.179.180.98 attack
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 12:43:20,803 INFO [amun_request_handler] PortScan Detected on Port: 445 (1.179.180.98)
2019-09-22 01:35:40
78.142.208.160 attackbotsspam
LAMP,DEF GET /wp-login.php
2019-09-22 02:02:42
194.156.121.202 attackbots
Sep 21 15:45:35 MK-Soft-Root1 sshd\[12963\]: Invalid user deploy from 194.156.121.202 port 56362
Sep 21 15:45:35 MK-Soft-Root1 sshd\[12963\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.156.121.202
Sep 21 15:45:37 MK-Soft-Root1 sshd\[12963\]: Failed password for invalid user deploy from 194.156.121.202 port 56362 ssh2
...
2019-09-22 01:35:22
54.37.151.239 attackbots
Sep 21 18:24:54 rpi sshd[31029]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.151.239 
Sep 21 18:24:57 rpi sshd[31029]: Failed password for invalid user spen from 54.37.151.239 port 51208 ssh2
2019-09-22 02:10:23
199.76.38.81 attackspam
SSH Bruteforce attempt
2019-09-22 02:00:22
41.144.137.63 attackspambots
IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/41.144.137.63/ 
 ZA - 1H : (14)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : ZA 
 NAME ASN : ASN5713 
 
 IP : 41.144.137.63 
 
 CIDR : 41.144.0.0/13 
 
 PREFIX COUNT : 117 
 
 UNIQUE IP COUNT : 1794304 
 
 
 WYKRYTE ATAKI Z ASN5713 :  
  1H - 1 
  3H - 1 
  6H - 1 
 12H - 2 
 24H - 2 
 
 INFO : SERVER - ABB - Looking for resource vulnerabilities Detected and Blocked by ADMIN  - data recovery
2019-09-22 02:05:37
83.76.24.180 attackbotsspam
2019-09-2119:04:59dovecot_plainauthenticatorfailedfor180.24.76.83.dynamic.wline.res.cust.swisscom.ch\([IPv6:::ffff:192.168.1.91]\)[83.76.24.180]:54819:535Incorrectauthenticationdata\(set_id=info@alphaboulder.ch\)2019-09-2119:05:05dovecot_loginauthenticatorfailedfor180.24.76.83.dynamic.wline.res.cust.swisscom.ch\([IPv6:::ffff:192.168.1.91]\)[83.76.24.180]:54819:535Incorrectauthenticationdata\(set_id=info@alphaboulder.ch\)2019-09-2119:05:11dovecot_plainauthenticatorfailedfor180.24.76.83.dynamic.wline.res.cust.swisscom.ch\([IPv6:::ffff:192.168.1.91]\)[83.76.24.180]:54823:535Incorrectauthenticationdata\(set_id=info@alphaboulder.ch\)2019-09-2119:05:17dovecot_loginauthenticatorfailedfor180.24.76.83.dynamic.wline.res.cust.swisscom.ch\([IPv6:::ffff:192.168.1.91]\)[83.76.24.180]:54823:535Incorrectauthenticationdata\(set_id=info@alphaboulder.ch\)2019-09-2119:32:58dovecot_plainauthenticatorfailedfor180.24.76.83.dynamic.wline.res.cust.swisscom.ch\([IPv6:::ffff:192.168.1.91]\)[83.76.24.180]:54834:535Incorrectauthenticatio
2019-09-22 02:12:34
106.12.38.84 attackbotsspam
Sep 21 11:32:43 dallas01 sshd[22199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.38.84
Sep 21 11:32:45 dallas01 sshd[22199]: Failed password for invalid user ubuntu from 106.12.38.84 port 47748 ssh2
Sep 21 11:36:55 dallas01 sshd[22758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.38.84
2019-09-22 01:38:53
145.239.73.103 attackspam
Sep 21 14:53:56 [host] sshd[26964]: Invalid user ie from 145.239.73.103
Sep 21 14:53:56 [host] sshd[26964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.73.103
Sep 21 14:53:58 [host] sshd[26964]: Failed password for invalid user ie from 145.239.73.103 port 36826 ssh2
2019-09-22 01:48:02
179.95.230.249 attack
Sep 21 20:30:55 www sshd\[19886\]: Invalid user odroid from 179.95.230.249
Sep 21 20:30:55 www sshd\[19886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.95.230.249
Sep 21 20:30:57 www sshd\[19886\]: Failed password for invalid user odroid from 179.95.230.249 port 60390 ssh2
...
2019-09-22 01:36:41
192.163.201.173 attackspam
192.163.201.173 - - [21/Sep/2019:18:15:24 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
192.163.201.173 - - [21/Sep/2019:18:15:25 +0200] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
192.163.201.173 - - [21/Sep/2019:18:15:28 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
192.163.201.173 - - [21/Sep/2019:18:15:30 +0200] "POST /wp-login.php HTTP/1.1" 200 1631 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
192.163.201.173 - - [21/Sep/2019:18:15:32 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
192.163.201.173 - - [21/Sep/2019:18:15:33 +0200] "POST /wp-login.php HTTP/1.1" 200 1630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
.
2019-09-22 02:08:24
103.206.138.95 attackbots
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 11:51:46,073 INFO [amun_request_handler] PortScan Detected on Port: 445 (103.206.138.95)
2019-09-22 02:09:56
106.12.17.243 attackspam
Sep 21 19:58:23 rpi sshd[32353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.17.243 
Sep 21 19:58:25 rpi sshd[32353]: Failed password for invalid user hartnett from 106.12.17.243 port 38952 ssh2
2019-09-22 02:11:05
222.186.15.110 attackbots
Sep 21 20:06:02 cvbnet sshd[27092]: Failed password for root from 222.186.15.110 port 38844 ssh2
Sep 21 20:06:06 cvbnet sshd[27092]: Failed password for root from 222.186.15.110 port 38844 ssh2
2019-09-22 02:13:09
150.249.192.154 attackbots
2019-09-21T17:54:22.482133abusebot-7.cloudsearch.cf sshd\[17028\]: Invalid user admin from 150.249.192.154 port 55998
2019-09-22 01:56:31

最近上报的IP列表

181.49.132.18 105.226.131.30 41.250.176.152 193.106.49.18
183.78.61.42 128.201.207.58 95.42.209.248 14.228.208.54
134.201.254.187 14.98.25.82 87.235.101.226 201.16.197.177
170.202.130.82 85.91.207.172 77.225.216.136 85.114.100.161
209.182.219.195 171.240.98.188 81.37.97.192 77.81.224.88