106.13.209.16 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Jun 28 15:49:59 meumeu sshd[31352]: Invalid user afp from 106.13.209.16 port 50332 Jun 28 15:49:59 meumeu sshd[31352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.16 Jun 28 15:49:59 meumeu sshd[31352]: Invalid user afp from 106.13.209.16 port 50332 Jun 28 15:50:01 meumeu sshd[31352]: Failed password for invalid user afp from 106.13.209.16 port 50332 ssh2 Jun 28 15:52:38 meumeu sshd[31397]: Invalid user deamon from 106.13.209.16 port 51712 Jun 28 15:52:38 meumeu sshd[31397]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.16 Jun 28 15:52:38 meumeu sshd[31397]: Invalid user deamon from 106.13.209.16 port 51712 Jun 28 15:52:40 meumeu sshd[31397]: Failed password for invalid user deamon from 106.13.209.16 port 51712 ssh2 Jun 28 15:55:24 meumeu sshd[31468]: Invalid user pc from 106.13.209.16 port 53104 ...	2020-06-28 23:04:52
attackbots	web-1 [ssh_2] SSH Attack	2020-06-25 14:24:35
attackspam	5x Failed Password	2020-06-24 15:58:10
attackspam	Jun 6 03:24:49 itv-usvr-02 sshd[23421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.16 user=root Jun 6 03:28:40 itv-usvr-02 sshd[23545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.16 user=root Jun 6 03:32:21 itv-usvr-02 sshd[23675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.16 user=root	2020-06-06 05:21:00
attackspam	Jun 3 03:02:26 php1 sshd\[1882\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.16 user=root Jun 3 03:02:29 php1 sshd\[1882\]: Failed password for root from 106.13.209.16 port 33314 ssh2 Jun 3 03:06:18 php1 sshd\[2223\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.16 user=root Jun 3 03:06:20 php1 sshd\[2223\]: Failed password for root from 106.13.209.16 port 51312 ssh2 Jun 3 03:10:06 php1 sshd\[2685\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.16 user=root	2020-06-03 21:48:52
attackbotsspam	May 28 21:46:47 web1 sshd[25744]: Invalid user admin from 106.13.209.16 port 47812 May 28 21:46:47 web1 sshd[25744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.16 May 28 21:46:47 web1 sshd[25744]: Invalid user admin from 106.13.209.16 port 47812 May 28 21:46:49 web1 sshd[25744]: Failed password for invalid user admin from 106.13.209.16 port 47812 ssh2 May 28 21:54:11 web1 sshd[27514]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.16 user=root May 28 21:54:12 web1 sshd[27514]: Failed password for root from 106.13.209.16 port 38394 ssh2 May 28 21:58:42 web1 sshd[28624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.16 user=root May 28 21:58:44 web1 sshd[28624]: Failed password for root from 106.13.209.16 port 34724 ssh2 May 28 22:03:09 web1 sshd[29732]: Invalid user saturn from 106.13.209.16 port 59288 ...	2020-05-28 21:04:30
attackspam	May 21 08:25:37 pixelmemory sshd[1486275]: Invalid user pir from 106.13.209.16 port 45342 May 21 08:25:37 pixelmemory sshd[1486275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.16 May 21 08:25:37 pixelmemory sshd[1486275]: Invalid user pir from 106.13.209.16 port 45342 May 21 08:25:39 pixelmemory sshd[1486275]: Failed password for invalid user pir from 106.13.209.16 port 45342 ssh2 May 21 08:29:38 pixelmemory sshd[1491340]: Invalid user vrx from 106.13.209.16 port 58274 ...	2020-05-22 02:31:35
attackspambots	Invalid user jake from 106.13.209.16 port 47682	2020-04-18 18:32:48
attackbotsspam	Apr 9 05:46:15 vserver sshd\[25133\]: Invalid user test from 106.13.209.16Apr 9 05:46:17 vserver sshd\[25133\]: Failed password for invalid user test from 106.13.209.16 port 59890 ssh2Apr 9 05:49:17 vserver sshd\[25180\]: Invalid user ubuntu from 106.13.209.16Apr 9 05:49:19 vserver sshd\[25180\]: Failed password for invalid user ubuntu from 106.13.209.16 port 33030 ssh2 ...	2020-04-09 19:24:38
attackspambots	Apr 3 23:39:18 srv01 sshd[11783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.16 user=root Apr 3 23:39:20 srv01 sshd[11783]: Failed password for root from 106.13.209.16 port 59510 ssh2 Apr 3 23:41:58 srv01 sshd[11935]: Invalid user my from 106.13.209.16 port 41230 Apr 3 23:41:58 srv01 sshd[11935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.16 Apr 3 23:41:58 srv01 sshd[11935]: Invalid user my from 106.13.209.16 port 41230 Apr 3 23:42:00 srv01 sshd[11935]: Failed password for invalid user my from 106.13.209.16 port 41230 ssh2 ...	2020-04-04 05:47:33
attackbots	$f2bV_matches	2020-03-30 19:31:25
attack	Invalid user tlp from 106.13.209.16 port 55488	2020-03-28 03:47:24
attackbots	SSH invalid-user multiple login try	2020-03-13 07:07:46
attack	Mar 11 17:41:28 XXX sshd[25368]: Invalid user couchdb from 106.13.209.16 port 53810	2020-03-12 08:37:05

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.209.80	attackspam	Aug 12 05:11:19 Ubuntu-1404-trusty-64-minimal sshd\[2798\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.80 user=root Aug 12 05:11:21 Ubuntu-1404-trusty-64-minimal sshd\[2798\]: Failed password for root from 106.13.209.80 port 41158 ssh2 Aug 12 05:36:37 Ubuntu-1404-trusty-64-minimal sshd\[15155\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.80 user=root Aug 12 05:36:38 Ubuntu-1404-trusty-64-minimal sshd\[15155\]: Failed password for root from 106.13.209.80 port 40990 ssh2 Aug 12 05:46:36 Ubuntu-1404-trusty-64-minimal sshd\[22327\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.80 user=root	2020-08-12 19:18:33
106.13.209.80	attack	TCP (SYN) 106.13.209.80:44476 -> port 1711, len 44	2020-08-08 02:22:10
106.13.209.80	attackbotsspam	Jul 22 01:20:07 pkdns2 sshd\[16129\]: Invalid user nicolas from 106.13.209.80Jul 22 01:20:08 pkdns2 sshd\[16129\]: Failed password for invalid user nicolas from 106.13.209.80 port 55116 ssh2Jul 22 01:25:37 pkdns2 sshd\[16431\]: Invalid user curtis from 106.13.209.80Jul 22 01:25:39 pkdns2 sshd\[16431\]: Failed password for invalid user curtis from 106.13.209.80 port 60534 ssh2Jul 22 01:27:32 pkdns2 sshd\[16508\]: Invalid user alex from 106.13.209.80Jul 22 01:27:33 pkdns2 sshd\[16508\]: Failed password for invalid user alex from 106.13.209.80 port 43544 ssh2 ...	2020-07-22 07:07:26
106.13.209.80	attack	May 14 20:47:17 vps687878 sshd\[32528\]: Failed password for invalid user developer from 106.13.209.80 port 38508 ssh2 May 14 20:48:48 vps687878 sshd\[32613\]: Invalid user oracle from 106.13.209.80 port 55936 May 14 20:48:48 vps687878 sshd\[32613\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.80 May 14 20:48:50 vps687878 sshd\[32613\]: Failed password for invalid user oracle from 106.13.209.80 port 55936 ssh2 May 14 20:50:18 vps687878 sshd\[433\]: Invalid user ubuntu from 106.13.209.80 port 45122 May 14 20:50:18 vps687878 sshd\[433\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.80 ...	2020-05-15 03:09:29
106.13.209.80	attackbotsspam	Invalid user postgres from 106.13.209.80 port 58220	2020-05-13 07:00:29
106.13.209.80	attack	May 8 16:40:40 mail sshd\[4913\]: Invalid user opo from 106.13.209.80 May 8 16:40:40 mail sshd\[4913\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.80 ...	2020-05-09 23:20:01
106.13.209.80	attackspambots	Apr 18 05:40:06 server sshd[30701]: Failed password for invalid user testadmin from 106.13.209.80 port 51968 ssh2 Apr 18 05:54:46 server sshd[871]: Failed password for invalid user test from 106.13.209.80 port 42732 ssh2 Apr 18 05:58:06 server sshd[1561]: Failed password for invalid user d from 106.13.209.80 port 55992 ssh2	2020-04-18 12:02:12
106.13.209.94	attackbots	Sep 30 02:41:15 xxxxxxx0 sshd[14126]: Invalid user suporte from 106.13.209.94 port 40910 Sep 30 02:41:15 xxxxxxx0 sshd[14126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.94 Sep 30 02:41:16 xxxxxxx0 sshd[14126]: Failed password for invalid user suporte from 106.13.209.94 port 40910 ssh2 Sep 30 02:57:23 xxxxxxx0 sshd[16598]: Invalid user lucy from 106.13.209.94 port 54762 Sep 30 02:57:23 xxxxxxx0 sshd[16598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.94 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.13.209.94	2019-10-01 16:17:24
106.13.209.94	attackbots	2019-09-27T19:41:47.975588centos sshd\[7098\]: Invalid user sun from 106.13.209.94 port 60102 2019-09-27T19:41:47.981128centos sshd\[7098\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.209.94 2019-09-27T19:41:50.160100centos sshd\[7098\]: Failed password for invalid user sun from 106.13.209.94 port 60102 ssh2	2019-09-28 03:16:17

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.209.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 81
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.209.16.			IN	A

;; AUTHORITY SECTION:
.			286	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031102 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 12 08:37:02 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 16.209.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 16.209.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
94.237.101.218	attackbotsspam	SP-Scan 59687:3389 detected 2020.10.08 22:49:12 blocked until 2020.11.27 14:51:59	2020-10-09 15:04:04
201.77.7.219	attack	Unauthorized connection attempt from IP address 201.77.7.219 on Port 445(SMB)	2020-10-09 14:59:26
103.133.106.150	attackspambots	Oct 9 08:31:54 server sshd[59975]: Failed password for invalid user admin from 103.133.106.150 port 51637 ssh2 Oct 9 08:32:02 server sshd[59997]: Failed password for invalid user admin from 103.133.106.150 port 52015 ssh2 Oct 9 08:32:13 server sshd[60133]: Failed password for invalid user admin from 103.133.106.150 port 52248 ssh2	2020-10-09 14:42:31
206.189.171.204	attack	Oct 9 09:59:14 dignus sshd[26614]: Failed password for invalid user rr from 206.189.171.204 port 33080 ssh2 Oct 9 10:02:40 dignus sshd[26691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.171.204 user=root Oct 9 10:02:42 dignus sshd[26691]: Failed password for root from 206.189.171.204 port 38796 ssh2 Oct 9 10:06:11 dignus sshd[26741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.171.204 user=root Oct 9 10:06:14 dignus sshd[26741]: Failed password for root from 206.189.171.204 port 44484 ssh2 ...	2020-10-09 15:09:35
200.11.192.2	attackspambots	Oct 9 07:21:32 web-main sshd[2714478]: Invalid user admin from 200.11.192.2 port 62523 Oct 9 07:21:33 web-main sshd[2714478]: Failed password for invalid user admin from 200.11.192.2 port 62523 ssh2 Oct 9 07:29:57 web-main sshd[2715514]: Invalid user db2 from 200.11.192.2 port 37268	2020-10-09 15:03:08
69.194.8.237	attack	2020-10-09T06:04:46.159668abusebot.cloudsearch.cf sshd[6108]: Invalid user toor from 69.194.8.237 port 55420 2020-10-09T06:04:46.164745abusebot.cloudsearch.cf sshd[6108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.194.8.237.16clouds.com 2020-10-09T06:04:46.159668abusebot.cloudsearch.cf sshd[6108]: Invalid user toor from 69.194.8.237 port 55420 2020-10-09T06:04:48.062004abusebot.cloudsearch.cf sshd[6108]: Failed password for invalid user toor from 69.194.8.237 port 55420 ssh2 2020-10-09T06:09:20.137843abusebot.cloudsearch.cf sshd[6185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.194.8.237.16clouds.com user=root 2020-10-09T06:09:21.648754abusebot.cloudsearch.cf sshd[6185]: Failed password for root from 69.194.8.237 port 33588 ssh2 2020-10-09T06:13:49.361580abusebot.cloudsearch.cf sshd[6249]: Invalid user apache from 69.194.8.237 port 39978 ...	2020-10-09 14:30:59
113.88.100.58	attackspambots	Lines containing failures of 113.88.100.58 Oct 8 13:33:55 shared11 sshd[10168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.88.100.58 user=r.r Oct 8 13:33:57 shared11 sshd[10168]: Failed password for r.r from 113.88.100.58 port 50710 ssh2 Oct 8 13:33:57 shared11 sshd[10168]: Received disconnect from 113.88.100.58 port 50710:11: Bye Bye [preauth] Oct 8 13:33:57 shared11 sshd[10168]: Disconnected from authenticating user r.r 113.88.100.58 port 50710 [preauth] Oct 8 13:47:46 shared11 sshd[15380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.88.100.58 user=r.r Oct 8 13:47:48 shared11 sshd[15380]: Failed password for r.r from 113.88.100.58 port 58102 ssh2 Oct 8 13:47:49 shared11 sshd[15380]: Received disconnect from 113.88.100.58 port 58102:11: Bye Bye [preauth] Oct 8 13:47:49 shared11 sshd[15380]: Disconnected from authenticating user r.r 113.88.100.58 port 58102 [preauth........ ------------------------------	2020-10-09 15:10:54
85.106.196.90	attackbotsspam	Unauthorized connection attempt from IP address 85.106.196.90 on Port 445(SMB)	2020-10-09 15:07:43
167.71.209.158	attackspambots	SSH invalid-user multiple login attempts	2020-10-09 15:06:27
111.95.141.34	attackbotsspam	Brute-force attempt banned	2020-10-09 15:02:43
202.147.192.242	attack	Oct 9 11:46:03 dhoomketu sshd[3687690]: Failed password for invalid user helpdesk from 202.147.192.242 port 44616 ssh2 Oct 9 11:52:02 dhoomketu sshd[3687810]: Invalid user teste from 202.147.192.242 port 52696 Oct 9 11:52:02 dhoomketu sshd[3687810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.147.192.242 Oct 9 11:52:02 dhoomketu sshd[3687810]: Invalid user teste from 202.147.192.242 port 52696 Oct 9 11:52:04 dhoomketu sshd[3687810]: Failed password for invalid user teste from 202.147.192.242 port 52696 ssh2 ...	2020-10-09 14:31:20
67.225.5.77	attack	Forbidden directory scan :: 2020/10/08 20:46:31 [error] 47022#47022: *195184 access forbidden by rule, client: 67.225.5.77, server: [censored_1], request: "HEAD /https://www.[censored_1]/ HTTP/1.1", host: "www.[censored_1]"	2020-10-09 14:54:56
90.110.31.70	attack	SSH Bruteforce attempt	2020-10-09 14:33:56
112.85.42.151	attack	Oct 9 08:30:53 sso sshd[23252]: Failed password for root from 112.85.42.151 port 31314 ssh2 Oct 9 08:31:02 sso sshd[23252]: Failed password for root from 112.85.42.151 port 31314 ssh2 ...	2020-10-09 14:43:11
117.34.91.22	attackbots	Oct 8 21:12:21 mockhub sshd[865763]: Failed password for invalid user test from 117.34.91.22 port 64890 ssh2 Oct 8 21:16:11 mockhub sshd[865926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.34.91.22 user=root Oct 8 21:16:13 mockhub sshd[865926]: Failed password for root from 117.34.91.22 port 63876 ssh2 ...	2020-10-09 14:39:22

最近上报的IP列表

191.7.145.246	139.59.66.243	120.70.96.196	103.82.80.21
72.167.190.74	103.61.195.45	182.52.68.169	110.78.155.163
181.214.211.240	110.138.43.148	216.158.219.246	202.79.168.154
113.173.182.36	14.226.84.73	37.114.157.76	171.241.59.161
83.234.18.24	212.250.160.34	171.239.186.193	115.79.140.220