106.13.144.164

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	IP blocked	2020-04-12 04:25:38
attackbots	$f2bV_matches	2020-04-07 14:58:02
attackspam	Mar 17 00:39:37 vmd38886 sshd\[5587\]: Invalid user daniel from 106.13.144.164 port 49966 Mar 17 00:39:37 vmd38886 sshd\[5587\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 Mar 17 00:39:39 vmd38886 sshd\[5587\]: Failed password for invalid user daniel from 106.13.144.164 port 49966 ssh2	2020-03-17 08:01:35
attackspambots	Feb 23 02:21:14 silence02 sshd[17163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 Feb 23 02:21:15 silence02 sshd[17163]: Failed password for invalid user narciso from 106.13.144.164 port 50030 ssh2 Feb 23 02:24:40 silence02 sshd[17436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164	2020-02-23 09:29:44
attackbotsspam	Jan 15 07:26:32 vps691689 sshd[30928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 Jan 15 07:26:34 vps691689 sshd[30928]: Failed password for invalid user apd from 106.13.144.164 port 43252 ssh2 ...	2020-01-15 14:59:58
attackspambots	Invalid user admin from 106.13.144.164 port 51610	2020-01-13 08:36:41
attackbots	Dec 30 11:40:55 server sshd\[11253\]: Invalid user matilda from 106.13.144.164 Dec 30 11:40:55 server sshd\[11253\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 Dec 30 11:40:57 server sshd\[11253\]: Failed password for invalid user matilda from 106.13.144.164 port 38624 ssh2 Dec 30 11:45:39 server sshd\[12246\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=root Dec 30 11:45:41 server sshd\[12246\]: Failed password for root from 106.13.144.164 port 41526 ssh2 ...	2019-12-30 20:05:55
attackbotsspam	ssh failed login	2019-12-29 21:14:09
attackbots	Dec 21 19:42:14 sd-53420 sshd\[2567\]: User root from 106.13.144.164 not allowed because none of user's groups are listed in AllowGroups Dec 21 19:42:14 sd-53420 sshd\[2567\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=root Dec 21 19:42:16 sd-53420 sshd\[2567\]: Failed password for invalid user root from 106.13.144.164 port 59556 ssh2 Dec 21 19:46:36 sd-53420 sshd\[4115\]: User root from 106.13.144.164 not allowed because none of user's groups are listed in AllowGroups Dec 21 19:46:36 sd-53420 sshd\[4115\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=root ...	2019-12-22 03:01:12
attackbotsspam	Dec 20 23:18:52 auw2 sshd\[16420\]: Invalid user shamik from 106.13.144.164 Dec 20 23:18:52 auw2 sshd\[16420\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 Dec 20 23:18:54 auw2 sshd\[16420\]: Failed password for invalid user shamik from 106.13.144.164 port 58532 ssh2 Dec 20 23:25:13 auw2 sshd\[16989\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=root Dec 20 23:25:16 auw2 sshd\[16989\]: Failed password for root from 106.13.144.164 port 48384 ssh2	2019-12-21 17:33:02
attackspam	Dec 10 10:05:49 cp sshd[28628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164	2019-12-10 21:31:37
attackspambots	2019-12-03T16:38:05.465168abusebot-2.cloudsearch.cf sshd\[6640\]: Invalid user gazengel from 106.13.144.164 port 53914	2019-12-04 00:42:49
attackbotsspam	Nov 25 21:18:37 cumulus sshd[21590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=r.r Nov 25 21:18:39 cumulus sshd[21590]: Failed password for r.r from 106.13.144.164 port 38228 ssh2 Nov 25 21:18:39 cumulus sshd[21590]: Received disconnect from 106.13.144.164 port 38228:11: Bye Bye [preauth] Nov 25 21:18:39 cumulus sshd[21590]: Disconnected from 106.13.144.164 port 38228 [preauth] Nov 25 21:44:13 cumulus sshd[22691]: Invalid user qzeng from 106.13.144.164 port 57668 Nov 25 21:44:13 cumulus sshd[22691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 Nov 25 21:44:16 cumulus sshd[22691]: Failed password for invalid user qzeng from 106.13.144.164 port 57668 ssh2 Nov 25 21:44:16 cumulus sshd[22691]: Received disconnect from 106.13.144.164 port 57668:11: Bye Bye [preauth] Nov 25 21:44:16 cumulus sshd[22691]: Disconnected from 106.13.144.164 port 57668 [preau........ -------------------------------	2019-11-26 20:03:03
attack	Lines containing failures of 106.13.144.164 Nov 19 13:20:57 install sshd[2345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=r.r Nov 19 13:20:58 install sshd[2345]: Failed password for r.r from 106.13.144.164 port 43940 ssh2 Nov 19 13:20:58 install sshd[2345]: Received disconnect from 106.13.144.164 port 43940:11: Bye Bye [preauth] Nov 19 13:20:58 install sshd[2345]: Disconnected from authenticating user r.r 106.13.144.164 port 43940 [preauth] Nov 19 13:48:33 install sshd[6523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.164 user=r.r Nov 19 13:48:35 install sshd[6523]: Failed password for r.r from 106.13.144.164 port 37936 ssh2 Nov 19 13:48:35 install sshd[6523]: Received disconnect from 106.13.144.164 port 37936:11: Bye Bye [preauth] Nov 19 13:48:35 install sshd[6523]: Disconnected from authenticating user r.r 106.13.144.164 port 37936 [preauth] Nov 1........ ------------------------------	2019-11-19 23:07:03

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.144.207	attack	Oct 11 17:56:59 firewall sshd[26023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207 user=root Oct 11 17:57:01 firewall sshd[26023]: Failed password for root from 106.13.144.207 port 43918 ssh2 Oct 11 17:59:14 firewall sshd[26065]: Invalid user deployer from 106.13.144.207 ...	2020-10-12 05:58:47
106.13.144.207	attack	"fail2ban match"	2020-10-11 22:06:34
106.13.144.207	attackbotsspam	"fail2ban match"	2020-10-11 14:04:12
106.13.144.207	attackbots	detected by Fail2Ban	2020-10-11 07:26:02
106.13.144.207	attack	Sep 12 16:53:28 nuernberg-4g-01 sshd[21023]: Failed password for root from 106.13.144.207 port 54576 ssh2 Sep 12 16:58:06 nuernberg-4g-01 sshd[22590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207 Sep 12 16:58:08 nuernberg-4g-01 sshd[22590]: Failed password for invalid user admin from 106.13.144.207 port 48522 ssh2	2020-09-12 23:23:44
106.13.144.207	attackspam	Sep 12 07:55:20 dhoomketu sshd[3026535]: Failed password for root from 106.13.144.207 port 52194 ssh2 Sep 12 07:56:28 dhoomketu sshd[3026551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207 user=root Sep 12 07:56:30 dhoomketu sshd[3026551]: Failed password for root from 106.13.144.207 port 38840 ssh2 Sep 12 07:57:35 dhoomketu sshd[3026589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207 user=root Sep 12 07:57:37 dhoomketu sshd[3026589]: Failed password for root from 106.13.144.207 port 53720 ssh2 ...	2020-09-12 15:28:29
106.13.144.207	attackspam	Aug 19 05:22:19 rocket sshd[30396]: Failed password for root from 106.13.144.207 port 33564 ssh2 Aug 19 05:26:54 rocket sshd[31024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207 ...	2020-08-19 12:36:58
106.13.144.207	attack	Bruteforce detected by fail2ban	2020-08-10 22:28:13
106.13.144.8	attackspam	Aug 1 21:31:21 game-panel sshd[22791]: Failed password for root from 106.13.144.8 port 60414 ssh2 Aug 1 21:34:00 game-panel sshd[22891]: Failed password for root from 106.13.144.8 port 41748 ssh2	2020-08-02 05:37:28
106.13.144.8	attackspam	(sshd) Failed SSH login from 106.13.144.8 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 28 09:41:09 s1 sshd[26890]: Invalid user zcx from 106.13.144.8 port 37296 Jul 28 09:41:11 s1 sshd[26890]: Failed password for invalid user zcx from 106.13.144.8 port 37296 ssh2 Jul 28 09:48:13 s1 sshd[27059]: Invalid user jzhang71 from 106.13.144.8 port 46252 Jul 28 09:48:15 s1 sshd[27059]: Failed password for invalid user jzhang71 from 106.13.144.8 port 46252 ssh2 Jul 28 09:51:06 s1 sshd[27223]: Invalid user icmsectest from 106.13.144.8 port 51158	2020-07-28 15:37:14
106.13.144.8	attackspambots	Invalid user mcftp from 106.13.144.8 port 56572	2020-07-19 01:18:16
106.13.144.207	attackspambots	SSH brutforce	2020-07-16 19:44:58
106.13.144.207	attackbotsspam	$f2bV_matches	2020-07-12 15:56:11
106.13.144.207	attackbots	SSH login attempts.	2020-07-08 00:30:32
106.13.144.8	attack	Jul 6 09:37:14 lnxded64 sshd[12943]: Failed password for root from 106.13.144.8 port 45766 ssh2 Jul 6 09:37:14 lnxded64 sshd[12943]: Failed password for root from 106.13.144.8 port 45766 ssh2	2020-07-06 15:39:34

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.144.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43841
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.144.164.			IN	A

;; AUTHORITY SECTION:
.			537	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111900 1800 900 604800 86400

;; Query time: 329 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 19 23:06:58 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 164.144.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 164.144.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
103.38.15.102	attackbots	WordPress login Brute force / Web App Attack on client site.	2019-06-24 09:50:28
65.220.84.27	attack	Jun 24 03:13:45 yabzik sshd[14113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.220.84.27 Jun 24 03:13:47 yabzik sshd[14113]: Failed password for invalid user admin from 65.220.84.27 port 34246 ssh2 Jun 24 03:14:55 yabzik sshd[14325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.220.84.27	2019-06-24 10:14:20
37.6.224.22	attackspam	port scan and connect, tcp 23 (telnet)	2019-06-24 10:17:53
92.114.18.54	attackspambots	Automatic report - Web App Attack	2019-06-24 09:42:35
191.53.199.245	attack	SMTP-sasl brute force ...	2019-06-24 10:06:50
162.247.73.192	attackspambots	Jun 24 01:03:17 risk sshd[20148]: Failed password for r.r from 162.247.73.192 port 34384 ssh2 Jun 24 01:03:20 risk sshd[20148]: Failed password for r.r from 162.247.73.192 port 34384 ssh2 Jun 24 01:03:23 risk sshd[20148]: Failed password for r.r from 162.247.73.192 port 34384 ssh2 Jun 24 01:03:25 risk sshd[20148]: Failed password for r.r from 162.247.73.192 port 34384 ssh2 Jun 24 01:03:28 risk sshd[20148]: Failed password for r.r from 162.247.73.192 port 34384 ssh2 Jun 24 01:03:30 risk sshd[20148]: Failed password for r.r from 162.247.73.192 port 34384 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=162.247.73.192	2019-06-24 10:15:52
168.196.148.195	attackbots	23.06.2019 21:55:46 - Login Fail on hMailserver Detected by ELinOX-hMail-A2F	2019-06-24 09:54:59
179.7.192.210	attackspambots	Brute force attempt	2019-06-24 09:40:51
68.41.23.123	attack	Jun 23 20:56:49 ip-172-31-62-245 sshd\[19138\]: Invalid user webmaster from 68.41.23.123\ Jun 23 20:56:51 ip-172-31-62-245 sshd\[19138\]: Failed password for invalid user webmaster from 68.41.23.123 port 34900 ssh2\ Jun 23 20:59:41 ip-172-31-62-245 sshd\[19146\]: Invalid user mongo from 68.41.23.123\ Jun 23 20:59:43 ip-172-31-62-245 sshd\[19146\]: Failed password for invalid user mongo from 68.41.23.123 port 49256 ssh2\ Jun 23 21:02:26 ip-172-31-62-245 sshd\[19149\]: Invalid user shares from 68.41.23.123\	2019-06-24 10:03:58
185.244.25.247	attack	DATE:2019-06-23_21:54:54, IP:185.244.25.247, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-06-24 10:07:50
185.220.101.25	attackbotsspam	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.25 user=root Failed password for root from 185.220.101.25 port 37529 ssh2 Failed password for root from 185.220.101.25 port 37529 ssh2 Failed password for root from 185.220.101.25 port 37529 ssh2 Failed password for root from 185.220.101.25 port 37529 ssh2	2019-06-24 09:54:00
150.95.54.141	attackspam	Brute force attempt	2019-06-24 09:52:23
36.111.191.73	attack	Trying ports that it shouldn't be.	2019-06-24 09:59:29
162.243.144.22	attackbots	¯\_(ツ)_/¯	2019-06-24 10:18:41
106.13.3.214	attackbotsspam	Jun 23 22:18:43 dedicated sshd[27669]: Invalid user willy from 106.13.3.214 port 44906 Jun 23 22:18:46 dedicated sshd[27669]: Failed password for invalid user willy from 106.13.3.214 port 44906 ssh2 Jun 23 22:18:43 dedicated sshd[27669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.3.214 Jun 23 22:18:43 dedicated sshd[27669]: Invalid user willy from 106.13.3.214 port 44906 Jun 23 22:18:46 dedicated sshd[27669]: Failed password for invalid user willy from 106.13.3.214 port 44906 ssh2	2019-06-24 09:51:59

最近上报的IP列表

181.49.132.18	105.226.131.30	41.250.176.152	193.106.49.18
183.78.61.42	128.201.207.58	95.42.209.248	14.228.208.54
134.201.254.187	14.98.25.82	87.235.101.226	201.16.197.177
170.202.130.82	85.91.207.172	77.225.216.136	85.114.100.161
209.182.219.195	171.240.98.188	81.37.97.192	77.81.224.88