106.13.144.164

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	IP blocked	2020-04-12 04:25:38
attackbots	$f2bV_matches	2020-04-07 14:58:02
attackspam	Mar 17 00:39:37 vmd38886 sshd\[5587\]: Invalid user daniel from 106.13.144.164 port 49966 Mar 17 00:39:37 vmd38886 sshd\[5587\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 Mar 17 00:39:39 vmd38886 sshd\[5587\]: Failed password for invalid user daniel from 106.13.144.164 port 49966 ssh2	2020-03-17 08:01:35
attackspambots	Feb 23 02:21:14 silence02 sshd[17163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 Feb 23 02:21:15 silence02 sshd[17163]: Failed password for invalid user narciso from 106.13.144.164 port 50030 ssh2 Feb 23 02:24:40 silence02 sshd[17436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164	2020-02-23 09:29:44
attackbotsspam	Jan 15 07:26:32 vps691689 sshd[30928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 Jan 15 07:26:34 vps691689 sshd[30928]: Failed password for invalid user apd from 106.13.144.164 port 43252 ssh2 ...	2020-01-15 14:59:58
attackspambots	Invalid user admin from 106.13.144.164 port 51610	2020-01-13 08:36:41
attackbots	Dec 30 11:40:55 server sshd\[11253\]: Invalid user matilda from 106.13.144.164 Dec 30 11:40:55 server sshd\[11253\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 Dec 30 11:40:57 server sshd\[11253\]: Failed password for invalid user matilda from 106.13.144.164 port 38624 ssh2 Dec 30 11:45:39 server sshd\[12246\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=root Dec 30 11:45:41 server sshd\[12246\]: Failed password for root from 106.13.144.164 port 41526 ssh2 ...	2019-12-30 20:05:55
attackbotsspam	ssh failed login	2019-12-29 21:14:09
attackbots	Dec 21 19:42:14 sd-53420 sshd\[2567\]: User root from 106.13.144.164 not allowed because none of user's groups are listed in AllowGroups Dec 21 19:42:14 sd-53420 sshd\[2567\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=root Dec 21 19:42:16 sd-53420 sshd\[2567\]: Failed password for invalid user root from 106.13.144.164 port 59556 ssh2 Dec 21 19:46:36 sd-53420 sshd\[4115\]: User root from 106.13.144.164 not allowed because none of user's groups are listed in AllowGroups Dec 21 19:46:36 sd-53420 sshd\[4115\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=root ...	2019-12-22 03:01:12
attackbotsspam	Dec 20 23:18:52 auw2 sshd\[16420\]: Invalid user shamik from 106.13.144.164 Dec 20 23:18:52 auw2 sshd\[16420\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 Dec 20 23:18:54 auw2 sshd\[16420\]: Failed password for invalid user shamik from 106.13.144.164 port 58532 ssh2 Dec 20 23:25:13 auw2 sshd\[16989\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=root Dec 20 23:25:16 auw2 sshd\[16989\]: Failed password for root from 106.13.144.164 port 48384 ssh2	2019-12-21 17:33:02
attackspam	Dec 10 10:05:49 cp sshd[28628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164	2019-12-10 21:31:37
attackspambots	2019-12-03T16:38:05.465168abusebot-2.cloudsearch.cf sshd\[6640\]: Invalid user gazengel from 106.13.144.164 port 53914	2019-12-04 00:42:49
attackbotsspam	Nov 25 21:18:37 cumulus sshd[21590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=r.r Nov 25 21:18:39 cumulus sshd[21590]: Failed password for r.r from 106.13.144.164 port 38228 ssh2 Nov 25 21:18:39 cumulus sshd[21590]: Received disconnect from 106.13.144.164 port 38228:11: Bye Bye [preauth] Nov 25 21:18:39 cumulus sshd[21590]: Disconnected from 106.13.144.164 port 38228 [preauth] Nov 25 21:44:13 cumulus sshd[22691]: Invalid user qzeng from 106.13.144.164 port 57668 Nov 25 21:44:13 cumulus sshd[22691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 Nov 25 21:44:16 cumulus sshd[22691]: Failed password for invalid user qzeng from 106.13.144.164 port 57668 ssh2 Nov 25 21:44:16 cumulus sshd[22691]: Received disconnect from 106.13.144.164 port 57668:11: Bye Bye [preauth] Nov 25 21:44:16 cumulus sshd[22691]: Disconnected from 106.13.144.164 port 57668 [preau........ -------------------------------	2019-11-26 20:03:03
attack	Lines containing failures of 106.13.144.164 Nov 19 13:20:57 install sshd[2345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=r.r Nov 19 13:20:58 install sshd[2345]: Failed password for r.r from 106.13.144.164 port 43940 ssh2 Nov 19 13:20:58 install sshd[2345]: Received disconnect from 106.13.144.164 port 43940:11: Bye Bye [preauth] Nov 19 13:20:58 install sshd[2345]: Disconnected from authenticating user r.r 106.13.144.164 port 43940 [preauth] Nov 19 13:48:33 install sshd[6523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=r.r Nov 19 13:48:35 install sshd[6523]: Failed password for r.r from 106.13.144.164 port 37936 ssh2 Nov 19 13:48:35 install sshd[6523]: Received disconnect from 106.13.144.164 port 37936:11: Bye Bye [preauth] Nov 19 13:48:35 install sshd[6523]: Disconnected from authenticating user r.r 106.13.144.164 port 37936 [preauth] Nov 1........ ------------------------------	2019-11-19 23:07:03

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.144.207	attack	Oct 11 17:56:59 firewall sshd[26023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207 user=root Oct 11 17:57:01 firewall sshd[26023]: Failed password for root from 106.13.144.207 port 43918 ssh2 Oct 11 17:59:14 firewall sshd[26065]: Invalid user deployer from 106.13.144.207 ...	2020-10-12 05:58:47
106.13.144.207	attack	"fail2ban match"	2020-10-11 22:06:34
106.13.144.207	attackbotsspam	"fail2ban match"	2020-10-11 14:04:12
106.13.144.207	attackbots	detected by Fail2Ban	2020-10-11 07:26:02
106.13.144.207	attack	Sep 12 16:53:28 nuernberg-4g-01 sshd[21023]: Failed password for root from 106.13.144.207 port 54576 ssh2 Sep 12 16:58:06 nuernberg-4g-01 sshd[22590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207 Sep 12 16:58:08 nuernberg-4g-01 sshd[22590]: Failed password for invalid user admin from 106.13.144.207 port 48522 ssh2	2020-09-12 23:23:44
106.13.144.207	attackspam	Sep 12 07:55:20 dhoomketu sshd[3026535]: Failed password for root from 106.13.144.207 port 52194 ssh2 Sep 12 07:56:28 dhoomketu sshd[3026551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207 user=root Sep 12 07:56:30 dhoomketu sshd[3026551]: Failed password for root from 106.13.144.207 port 38840 ssh2 Sep 12 07:57:35 dhoomketu sshd[3026589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207 user=root Sep 12 07:57:37 dhoomketu sshd[3026589]: Failed password for root from 106.13.144.207 port 53720 ssh2 ...	2020-09-12 15:28:29
106.13.144.207	attackspam	Aug 19 05:22:19 rocket sshd[30396]: Failed password for root from 106.13.144.207 port 33564 ssh2 Aug 19 05:26:54 rocket sshd[31024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207 ...	2020-08-19 12:36:58
106.13.144.207	attack	Bruteforce detected by fail2ban	2020-08-10 22:28:13
106.13.144.8	attackspam	Aug 1 21:31:21 game-panel sshd[22791]: Failed password for root from 106.13.144.8 port 60414 ssh2 Aug 1 21:34:00 game-panel sshd[22891]: Failed password for root from 106.13.144.8 port 41748 ssh2	2020-08-02 05:37:28
106.13.144.8	attackspam	(sshd) Failed SSH login from 106.13.144.8 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 28 09:41:09 s1 sshd[26890]: Invalid user zcx from 106.13.144.8 port 37296 Jul 28 09:41:11 s1 sshd[26890]: Failed password for invalid user zcx from 106.13.144.8 port 37296 ssh2 Jul 28 09:48:13 s1 sshd[27059]: Invalid user jzhang71 from 106.13.144.8 port 46252 Jul 28 09:48:15 s1 sshd[27059]: Failed password for invalid user jzhang71 from 106.13.144.8 port 46252 ssh2 Jul 28 09:51:06 s1 sshd[27223]: Invalid user icmsectest from 106.13.144.8 port 51158	2020-07-28 15:37:14
106.13.144.8	attackspambots	Invalid user mcftp from 106.13.144.8 port 56572	2020-07-19 01:18:16
106.13.144.207	attackspambots	SSH brutforce	2020-07-16 19:44:58
106.13.144.207	attackbotsspam	$f2bV_matches	2020-07-12 15:56:11
106.13.144.207	attackbots	SSH login attempts.	2020-07-08 00:30:32
106.13.144.8	attack	Jul 6 09:37:14 lnxded64 sshd[12943]: Failed password for root from 106.13.144.8 port 45766 ssh2 Jul 6 09:37:14 lnxded64 sshd[12943]: Failed password for root from 106.13.144.8 port 45766 ssh2	2020-07-06 15:39:34

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.144.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43841
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.144.164.			IN	A

;; AUTHORITY SECTION:
.			537	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111900 1800 900 604800 86400

;; Query time: 329 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 19 23:06:58 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 164.144.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 164.144.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
1.179.180.98	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 12:43:20,803 INFO [amun_request_handler] PortScan Detected on Port: 445 (1.179.180.98)	2019-09-22 01:35:40
78.142.208.160	attackbotsspam	LAMP,DEF GET /wp-login.php	2019-09-22 02:02:42
194.156.121.202	attackbots	Sep 21 15:45:35 MK-Soft-Root1 sshd\[12963\]: Invalid user deploy from 194.156.121.202 port 56362 Sep 21 15:45:35 MK-Soft-Root1 sshd\[12963\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.156.121.202 Sep 21 15:45:37 MK-Soft-Root1 sshd\[12963\]: Failed password for invalid user deploy from 194.156.121.202 port 56362 ssh2 ...	2019-09-22 01:35:22
54.37.151.239	attackbots	Sep 21 18:24:54 rpi sshd[31029]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.151.239 Sep 21 18:24:57 rpi sshd[31029]: Failed password for invalid user spen from 54.37.151.239 port 51208 ssh2	2019-09-22 02:10:23
199.76.38.81	attackspam	SSH Bruteforce attempt	2019-09-22 02:00:22
41.144.137.63	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/41.144.137.63/ ZA - 1H : (14) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : ZA NAME ASN : ASN5713 IP : 41.144.137.63 CIDR : 41.144.0.0/13 PREFIX COUNT : 117 UNIQUE IP COUNT : 1794304 WYKRYTE ATAKI Z ASN5713 : 1H - 1 3H - 1 6H - 1 12H - 2 24H - 2 INFO : SERVER - ABB - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-09-22 02:05:37
83.76.24.180	attackbotsspam	2019-09-2119:04:59dovecot_plainauthenticatorfailedfor180.24.76.83.dynamic.wline.res.cust.swisscom.ch$[IPv6:::ffff:192.168.1.91]$[83.76.24.180]:54819:535Incorrectauthenticationdata$set_id=info@alphaboulder.ch$2019-09-2119:05:05dovecot_loginauthenticatorfailedfor180.24.76.83.dynamic.wline.res.cust.swisscom.ch$[IPv6:::ffff:192.168.1.91]$[83.76.24.180]:54819:535Incorrectauthenticationdata$set_id=info@alphaboulder.ch$2019-09-2119:05:11dovecot_plainauthenticatorfailedfor180.24.76.83.dynamic.wline.res.cust.swisscom.ch$[IPv6:::ffff:192.168.1.91]$[83.76.24.180]:54823:535Incorrectauthenticationdata$set_id=info@alphaboulder.ch$2019-09-2119:05:17dovecot_loginauthenticatorfailedfor180.24.76.83.dynamic.wline.res.cust.swisscom.ch$[IPv6:::ffff:192.168.1.91]$[83.76.24.180]:54823:535Incorrectauthenticationdata$set_id=info@alphaboulder.ch$2019-09-2119:32:58dovecot_plainauthenticatorfailedfor180.24.76.83.dynamic.wline.res.cust.swisscom.ch$[IPv6:::ffff:192.168.1.91]$[83.76.24.180]:54834:535Incorrectauthenticatio	2019-09-22 02:12:34
106.12.38.84	attackbotsspam	Sep 21 11:32:43 dallas01 sshd[22199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.38.84 Sep 21 11:32:45 dallas01 sshd[22199]: Failed password for invalid user ubuntu from 106.12.38.84 port 47748 ssh2 Sep 21 11:36:55 dallas01 sshd[22758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.38.84	2019-09-22 01:38:53
145.239.73.103	attackspam	Sep 21 14:53:56 [host] sshd[26964]: Invalid user ie from 145.239.73.103 Sep 21 14:53:56 [host] sshd[26964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.73.103 Sep 21 14:53:58 [host] sshd[26964]: Failed password for invalid user ie from 145.239.73.103 port 36826 ssh2	2019-09-22 01:48:02
179.95.230.249	attack	Sep 21 20:30:55 www sshd\[19886\]: Invalid user odroid from 179.95.230.249 Sep 21 20:30:55 www sshd\[19886\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.95.230.249 Sep 21 20:30:57 www sshd\[19886\]: Failed password for invalid user odroid from 179.95.230.249 port 60390 ssh2 ...	2019-09-22 01:36:41
192.163.201.173	attackspam	192.163.201.173 - - [21/Sep/2019:18:15:24 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.163.201.173 - - [21/Sep/2019:18:15:25 +0200] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.163.201.173 - - [21/Sep/2019:18:15:28 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.163.201.173 - - [21/Sep/2019:18:15:30 +0200] "POST /wp-login.php HTTP/1.1" 200 1631 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.163.201.173 - - [21/Sep/2019:18:15:32 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.163.201.173 - - [21/Sep/2019:18:15:33 +0200] "POST /wp-login.php HTTP/1.1" 200 1630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" .	2019-09-22 02:08:24
103.206.138.95	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 11:51:46,073 INFO [amun_request_handler] PortScan Detected on Port: 445 (103.206.138.95)	2019-09-22 02:09:56
106.12.17.243	attackspam	Sep 21 19:58:23 rpi sshd[32353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.17.243 Sep 21 19:58:25 rpi sshd[32353]: Failed password for invalid user hartnett from 106.12.17.243 port 38952 ssh2	2019-09-22 02:11:05
222.186.15.110	attackbots	Sep 21 20:06:02 cvbnet sshd[27092]: Failed password for root from 222.186.15.110 port 38844 ssh2 Sep 21 20:06:06 cvbnet sshd[27092]: Failed password for root from 222.186.15.110 port 38844 ssh2	2019-09-22 02:13:09
150.249.192.154	attackbots	2019-09-21T17:54:22.482133abusebot-7.cloudsearch.cf sshd\[17028\]: Invalid user admin from 150.249.192.154 port 55998	2019-09-22 01:56:31

最近上报的IP列表

181.49.132.18	105.226.131.30	41.250.176.152	193.106.49.18
183.78.61.42	128.201.207.58	95.42.209.248	14.228.208.54
134.201.254.187	14.98.25.82	87.235.101.226	201.16.197.177
170.202.130.82	85.91.207.172	77.225.216.136	85.114.100.161
209.182.219.195	171.240.98.188	81.37.97.192	77.81.224.88