106.13.216.239

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Invalid user shao from 106.13.216.239 port 58874	2020-01-18 22:40:54
attack	Dec 22 13:27:59 server sshd\[28228\]: Invalid user duconge from 106.13.216.239 Dec 22 13:27:59 server sshd\[28228\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 Dec 22 13:28:02 server sshd\[28228\]: Failed password for invalid user duconge from 106.13.216.239 port 40234 ssh2 Dec 22 13:37:31 server sshd\[30702\]: Invalid user lr from 106.13.216.239 Dec 22 13:37:31 server sshd\[30702\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 ...	2019-12-22 21:09:21
attack	Dec 12 16:48:26 sd-53420 sshd\[24622\]: User root from 106.13.216.239 not allowed because none of user's groups are listed in AllowGroups Dec 12 16:48:26 sd-53420 sshd\[24622\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 user=root Dec 12 16:48:28 sd-53420 sshd\[24622\]: Failed password for invalid user root from 106.13.216.239 port 59280 ssh2 Dec 12 16:54:40 sd-53420 sshd\[25097\]: Invalid user sasabuchi from 106.13.216.239 Dec 12 16:54:40 sd-53420 sshd\[25097\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 ...	2019-12-13 06:05:58
attackbotsspam	Dec 6 08:35:48 v22018086721571380 sshd[5952]: Failed password for invalid user asterisk from 106.13.216.239 port 51100 ssh2	2019-12-06 15:47:46
attack	Nov 29 07:30:42 vpn01 sshd[27507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 Nov 29 07:30:45 vpn01 sshd[27507]: Failed password for invalid user newuser from 106.13.216.239 port 54424 ssh2 ...	2019-11-29 14:41:44
attackspambots	Nov 25 00:19:24 srv01 sshd[26069]: Invalid user testuser from 106.13.216.239 Nov 25 00:19:24 srv01 sshd[26069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 Nov 25 00:19:26 srv01 sshd[26069]: Failed password for invalid user testuser from 106.13.216.239 port 55606 ssh2 Nov 25 00:19:26 srv01 sshd[26069]: Received disconnect from 106.13.216.239: 11: Bye Bye [preauth] Nov 25 00:50:18 srv01 sshd[27770]: Invalid user brhostnamez from 106.13.216.239 Nov 25 00:50:18 srv01 sshd[27770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 Nov 25 00:50:20 srv01 sshd[27770]: Failed password for invalid user brhostnamez from 106.13.216.239 port 35894 ssh2 Nov 25 00:50:20 srv01 sshd[27770]: Received disconnect from 106.13.216.239: 11: Bye Bye [preauth] Nov 25 00:57:44 srv01 sshd[28039]: Invalid user steuernagel from 106.13.216.239 Nov 25 00:57:44 srv01 sshd[28039]: pam_unix(........ -------------------------------	2019-11-26 08:50:20
attackspambots	Nov 16 01:24:35 vps691689 sshd[30087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 Nov 16 01:24:36 vps691689 sshd[30087]: Failed password for invalid user 123456 from 106.13.216.239 port 60606 ssh2 ...	2019-11-16 08:40:25
attackbotsspam	2019-11-08T10:38:30.669629abusebot-7.cloudsearch.cf sshd\[32696\]: Invalid user admin from 106.13.216.239 port 58610	2019-11-08 21:15:50

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.216.30	attackbotsspam	445/tcp 445/tcp 445/tcp... [2020-06-21/28]4pkt,1pt.(tcp)	2020-06-29 07:14:26
106.13.216.231	attackbotsspam	May 3 21:22:09 vmd48417 sshd[13085]: Failed password for root from 106.13.216.231 port 50984 ssh2	2020-05-04 03:40:57
106.13.216.231	attackspam	Apr 10 01:30:28 odroid64 sshd\[30824\]: Invalid user admin from 106.13.216.231 Apr 10 01:30:28 odroid64 sshd\[30824\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.231 ...	2020-04-10 09:21:35
106.13.216.231	attack	Apr 3 22:11:45 meumeu sshd[29624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.231 Apr 3 22:11:47 meumeu sshd[29624]: Failed password for invalid user ed from 106.13.216.231 port 49310 ssh2 Apr 3 22:14:00 meumeu sshd[29947]: Failed password for root from 106.13.216.231 port 52626 ssh2 ...	2020-04-04 04:54:36
106.13.216.231	attackbots	SSH login attempts.	2020-04-02 16:15:12
106.13.216.92	attackspam	Invalid user lyne from 106.13.216.92 port 47662	2020-03-28 00:52:25
106.13.216.92	attackbotsspam	Brute force SMTP login attempted. ...	2020-03-23 03:00:13
106.13.216.92	attack	Mar 18 04:52:20 localhost sshd\[8169\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.92 user=root Mar 18 04:52:22 localhost sshd\[8169\]: Failed password for root from 106.13.216.92 port 47290 ssh2 Mar 18 04:55:12 localhost sshd\[8782\]: Invalid user deploy from 106.13.216.92 port 51596	2020-03-18 12:16:00
106.13.216.231	attackbotsspam	Mar 11 07:32:23 dallas01 sshd[12147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.231 Mar 11 07:32:26 dallas01 sshd[12147]: Failed password for invalid user ghost from 106.13.216.231 port 35250 ssh2 Mar 11 07:41:50 dallas01 sshd[14713]: Failed password for root from 106.13.216.231 port 56520 ssh2	2020-03-12 00:40:27
106.13.216.92	attackspam	Mar 9 08:59:47 MK-Soft-VM3 sshd[18016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.92 Mar 9 08:59:49 MK-Soft-VM3 sshd[18016]: Failed password for invalid user sh from 106.13.216.92 port 52064 ssh2 ...	2020-03-09 17:11:39
106.13.216.231	attackbotsspam	Mar 8 18:25:09 tdfoods sshd\[32227\]: Invalid user visitor from 106.13.216.231 Mar 8 18:25:09 tdfoods sshd\[32227\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.231 Mar 8 18:25:11 tdfoods sshd\[32227\]: Failed password for invalid user visitor from 106.13.216.231 port 35136 ssh2 Mar 8 18:29:48 tdfoods sshd\[32533\]: Invalid user gitlab-psql from 106.13.216.231 Mar 8 18:29:48 tdfoods sshd\[32533\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.231	2020-03-09 14:05:24
106.13.216.231	attackbotsspam	Mar 5 10:15:06 silence02 sshd[27525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.231 Mar 5 10:15:08 silence02 sshd[27525]: Failed password for invalid user zhanglei from 106.13.216.231 port 60012 ssh2 Mar 5 10:22:57 silence02 sshd[27921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.231	2020-03-05 17:36:34
106.13.216.134	attackspam	Mar 4 21:49:52 *** sshd[28624]: Invalid user bot from 106.13.216.134	2020-03-05 09:25:52
106.13.216.92	attack	2020-02-25T07:35:44.453054shield sshd\[31760\]: Invalid user testing from 106.13.216.92 port 37262 2020-02-25T07:35:44.457530shield sshd\[31760\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.92 2020-02-25T07:35:46.457183shield sshd\[31760\]: Failed password for invalid user testing from 106.13.216.92 port 37262 ssh2 2020-02-25T07:42:00.530719shield sshd\[932\]: Invalid user user01 from 106.13.216.92 port 54476 2020-02-25T07:42:00.539023shield sshd\[932\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.92	2020-02-25 19:05:35
106.13.216.134	attack	Feb 10 05:48:02 web1 sshd\[20586\]: Invalid user mjq from 106.13.216.134 Feb 10 05:48:02 web1 sshd\[20586\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.134 Feb 10 05:48:05 web1 sshd\[20586\]: Failed password for invalid user mjq from 106.13.216.134 port 52358 ssh2 Feb 10 05:53:04 web1 sshd\[21040\]: Invalid user scu from 106.13.216.134 Feb 10 05:53:04 web1 sshd\[21040\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.134	2020-02-11 03:30:23

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.216.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29553
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.216.239.			IN	A

;; AUTHORITY SECTION:
.			469	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110800 1800 900 604800 86400

;; Query time: 186 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 08 21:15:42 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 239.216.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		100.100.2.136
Address:	100.100.2.136#53

** server can't find 239.216.13.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
158.69.27.222	attack	/sitemap.xml /ads.txt	2019-10-22 03:25:03
60.113.85.41	attackbotsspam	Oct 21 18:30:20 localhost sshd\[7057\]: Invalid user 123456 from 60.113.85.41 port 42260 Oct 21 18:30:20 localhost sshd\[7057\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.113.85.41 Oct 21 18:30:22 localhost sshd\[7057\]: Failed password for invalid user 123456 from 60.113.85.41 port 42260 ssh2 Oct 21 18:34:20 localhost sshd\[7144\]: Invalid user admin from 60.113.85.41 port 53204 Oct 21 18:34:20 localhost sshd\[7144\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.113.85.41 ...	2019-10-22 02:57:36
31.25.94.13	attackspam	Fail2Ban Ban Triggered	2019-10-22 03:04:35
36.92.104.119	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 21-10-2019 12:35:29.	2019-10-22 03:36:47
163.172.45.139	attack	Repeated brute force against a port	2019-10-22 03:27:48
80.21.233.254	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 21-10-2019 12:35:30.	2019-10-22 03:33:17
123.5.83.242	attackspam	Unauthorised access (Oct 21) SRC=123.5.83.242 LEN=40 TTL=49 ID=61302 TCP DPT=8080 WINDOW=41991 SYN Unauthorised access (Oct 21) SRC=123.5.83.242 LEN=40 TTL=49 ID=46148 TCP DPT=8080 WINDOW=40734 SYN	2019-10-22 03:23:26
185.156.177.2	attackspam	RDP_Brute_Force	2019-10-22 03:12:55
136.32.26.158	attackspambots	SSH Scan	2019-10-22 03:05:10
178.164.253.126	attackbots	SSH Scan	2019-10-22 02:58:14
138.197.183.21	attackspambots	Invalid user jboss from 138.197.183.21 port 51602	2019-10-22 03:16:09
51.38.71.36	attackspambots	$f2bV_matches	2019-10-22 03:09:23
118.24.9.152	attackbotsspam	Oct 21 03:55:41 php1 sshd\[2420\]: Invalid user 11Fum4tulP0@t3Uc1d\^%\^\&\\?122412 from 118.24.9.152 Oct 21 03:55:41 php1 sshd\[2420\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.9.152 Oct 21 03:55:43 php1 sshd\[2420\]: Failed password for invalid user 11Fum4tulP0@t3Uc1d\^%\^\&\\?122412 from 118.24.9.152 port 34292 ssh2 Oct 21 04:02:34 php1 sshd\[2956\]: Invalid user TEST@2020 from 118.24.9.152 Oct 21 04:02:34 php1 sshd\[2956\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.9.152	2019-10-22 03:26:03
203.195.152.247	attack	Repeated brute force against a port	2019-10-22 03:21:04
51.91.102.128	attack	xmlrpc attack	2019-10-22 03:09:08

最近上报的IP列表

139.99.97.46	82.223.35.206	54.212.2.205	165.22.214.2
84.244.180.7	74.208.136.228	185.76.71.174	118.181.226.216
58.49.127.246	41.190.232.4	219.83.125.226	213.32.253.150
211.114.178.151	200.54.172.148	195.112.216.10	195.24.61.7
113.208.119.92	113.208.119.82	167.99.119.43	186.219.3.5