106.13.216.239

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Invalid user shao from 106.13.216.239 port 58874	2020-01-18 22:40:54
attack	Dec 22 13:27:59 server sshd\[28228\]: Invalid user duconge from 106.13.216.239 Dec 22 13:27:59 server sshd\[28228\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 Dec 22 13:28:02 server sshd\[28228\]: Failed password for invalid user duconge from 106.13.216.239 port 40234 ssh2 Dec 22 13:37:31 server sshd\[30702\]: Invalid user lr from 106.13.216.239 Dec 22 13:37:31 server sshd\[30702\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 ...	2019-12-22 21:09:21
attack	Dec 12 16:48:26 sd-53420 sshd\[24622\]: User root from 106.13.216.239 not allowed because none of user's groups are listed in AllowGroups Dec 12 16:48:26 sd-53420 sshd\[24622\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 user=root Dec 12 16:48:28 sd-53420 sshd\[24622\]: Failed password for invalid user root from 106.13.216.239 port 59280 ssh2 Dec 12 16:54:40 sd-53420 sshd\[25097\]: Invalid user sasabuchi from 106.13.216.239 Dec 12 16:54:40 sd-53420 sshd\[25097\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 ...	2019-12-13 06:05:58
attackbotsspam	Dec 6 08:35:48 v22018086721571380 sshd[5952]: Failed password for invalid user asterisk from 106.13.216.239 port 51100 ssh2	2019-12-06 15:47:46
attack	Nov 29 07:30:42 vpn01 sshd[27507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 Nov 29 07:30:45 vpn01 sshd[27507]: Failed password for invalid user newuser from 106.13.216.239 port 54424 ssh2 ...	2019-11-29 14:41:44
attackspambots	Nov 25 00:19:24 srv01 sshd[26069]: Invalid user testuser from 106.13.216.239 Nov 25 00:19:24 srv01 sshd[26069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 Nov 25 00:19:26 srv01 sshd[26069]: Failed password for invalid user testuser from 106.13.216.239 port 55606 ssh2 Nov 25 00:19:26 srv01 sshd[26069]: Received disconnect from 106.13.216.239: 11: Bye Bye [preauth] Nov 25 00:50:18 srv01 sshd[27770]: Invalid user brhostnamez from 106.13.216.239 Nov 25 00:50:18 srv01 sshd[27770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 Nov 25 00:50:20 srv01 sshd[27770]: Failed password for invalid user brhostnamez from 106.13.216.239 port 35894 ssh2 Nov 25 00:50:20 srv01 sshd[27770]: Received disconnect from 106.13.216.239: 11: Bye Bye [preauth] Nov 25 00:57:44 srv01 sshd[28039]: Invalid user steuernagel from 106.13.216.239 Nov 25 00:57:44 srv01 sshd[28039]: pam_unix(........ -------------------------------	2019-11-26 08:50:20
attackspambots	Nov 16 01:24:35 vps691689 sshd[30087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 Nov 16 01:24:36 vps691689 sshd[30087]: Failed password for invalid user 123456 from 106.13.216.239 port 60606 ssh2 ...	2019-11-16 08:40:25
attackbotsspam	2019-11-08T10:38:30.669629abusebot-7.cloudsearch.cf sshd\[32696\]: Invalid user admin from 106.13.216.239 port 58610	2019-11-08 21:15:50

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.216.30	attackbotsspam	445/tcp 445/tcp 445/tcp... [2020-06-21/28]4pkt,1pt.(tcp)	2020-06-29 07:14:26
106.13.216.231	attackbotsspam	May 3 21:22:09 vmd48417 sshd[13085]: Failed password for root from 106.13.216.231 port 50984 ssh2	2020-05-04 03:40:57
106.13.216.231	attackspam	Apr 10 01:30:28 odroid64 sshd\[30824\]: Invalid user admin from 106.13.216.231 Apr 10 01:30:28 odroid64 sshd\[30824\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.231 ...	2020-04-10 09:21:35
106.13.216.231	attack	Apr 3 22:11:45 meumeu sshd[29624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.231 Apr 3 22:11:47 meumeu sshd[29624]: Failed password for invalid user ed from 106.13.216.231 port 49310 ssh2 Apr 3 22:14:00 meumeu sshd[29947]: Failed password for root from 106.13.216.231 port 52626 ssh2 ...	2020-04-04 04:54:36
106.13.216.231	attackbots	SSH login attempts.	2020-04-02 16:15:12
106.13.216.92	attackspam	Invalid user lyne from 106.13.216.92 port 47662	2020-03-28 00:52:25
106.13.216.92	attackbotsspam	Brute force SMTP login attempted. ...	2020-03-23 03:00:13
106.13.216.92	attack	Mar 18 04:52:20 localhost sshd\[8169\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.92 user=root Mar 18 04:52:22 localhost sshd\[8169\]: Failed password for root from 106.13.216.92 port 47290 ssh2 Mar 18 04:55:12 localhost sshd\[8782\]: Invalid user deploy from 106.13.216.92 port 51596	2020-03-18 12:16:00
106.13.216.231	attackbotsspam	Mar 11 07:32:23 dallas01 sshd[12147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.231 Mar 11 07:32:26 dallas01 sshd[12147]: Failed password for invalid user ghost from 106.13.216.231 port 35250 ssh2 Mar 11 07:41:50 dallas01 sshd[14713]: Failed password for root from 106.13.216.231 port 56520 ssh2	2020-03-12 00:40:27
106.13.216.92	attackspam	Mar 9 08:59:47 MK-Soft-VM3 sshd[18016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.92 Mar 9 08:59:49 MK-Soft-VM3 sshd[18016]: Failed password for invalid user sh from 106.13.216.92 port 52064 ssh2 ...	2020-03-09 17:11:39
106.13.216.231	attackbotsspam	Mar 8 18:25:09 tdfoods sshd\[32227\]: Invalid user visitor from 106.13.216.231 Mar 8 18:25:09 tdfoods sshd\[32227\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.231 Mar 8 18:25:11 tdfoods sshd\[32227\]: Failed password for invalid user visitor from 106.13.216.231 port 35136 ssh2 Mar 8 18:29:48 tdfoods sshd\[32533\]: Invalid user gitlab-psql from 106.13.216.231 Mar 8 18:29:48 tdfoods sshd\[32533\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.231	2020-03-09 14:05:24
106.13.216.231	attackbotsspam	Mar 5 10:15:06 silence02 sshd[27525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.231 Mar 5 10:15:08 silence02 sshd[27525]: Failed password for invalid user zhanglei from 106.13.216.231 port 60012 ssh2 Mar 5 10:22:57 silence02 sshd[27921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.231	2020-03-05 17:36:34
106.13.216.134	attackspam	Mar 4 21:49:52 *** sshd[28624]: Invalid user bot from 106.13.216.134	2020-03-05 09:25:52
106.13.216.92	attack	2020-02-25T07:35:44.453054shield sshd\[31760\]: Invalid user testing from 106.13.216.92 port 37262 2020-02-25T07:35:44.457530shield sshd\[31760\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.92 2020-02-25T07:35:46.457183shield sshd\[31760\]: Failed password for invalid user testing from 106.13.216.92 port 37262 ssh2 2020-02-25T07:42:00.530719shield sshd\[932\]: Invalid user user01 from 106.13.216.92 port 54476 2020-02-25T07:42:00.539023shield sshd\[932\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.92	2020-02-25 19:05:35
106.13.216.134	attack	Feb 10 05:48:02 web1 sshd\[20586\]: Invalid user mjq from 106.13.216.134 Feb 10 05:48:02 web1 sshd\[20586\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.134 Feb 10 05:48:05 web1 sshd\[20586\]: Failed password for invalid user mjq from 106.13.216.134 port 52358 ssh2 Feb 10 05:53:04 web1 sshd\[21040\]: Invalid user scu from 106.13.216.134 Feb 10 05:53:04 web1 sshd\[21040\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.134	2020-02-11 03:30:23

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.216.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29553
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.216.239.			IN	A

;; AUTHORITY SECTION:
.			469	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110800 1800 900 604800 86400

;; Query time: 186 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 08 21:15:42 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 239.216.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		100.100.2.136
Address:	100.100.2.136#53

** server can't find 239.216.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
2.87.249.116	attack	serveres are UTC -0400 Lines containing failures of 2.87.249.116 Aug 7 02:16:09 tux2 sshd[20267]: Failed password for r.r from 2.87.249.116 port 34886 ssh2 Aug 7 02:16:09 tux2 sshd[20267]: Failed password for r.r from 2.87.249.116 port 34886 ssh2 Aug 7 02:16:09 tux2 sshd[20267]: Failed password for r.r from 2.87.249.116 port 34886 ssh2 Aug 7 02:16:09 tux2 sshd[20267]: Failed password for r.r from 2.87.249.116 port 34886 ssh2 Aug 7 02:16:09 tux2 sshd[20267]: Failed password for r.r from 2.87.249.116 port 34886 ssh2 Aug 7 02:16:09 tux2 sshd[20267]: Failed password for r.r from 2.87.249.116 port 34886 ssh2 Aug 7 02:16:09 tux2 sshd[20267]: Disconnecting authenticating user r.r 2.87.249.116 port 34886: Too many authentication failures [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=2.87.249.116	2019-08-07 23:35:42
185.176.27.170	attack	Aug 7 15:01:35 TCP Attack: SRC=185.176.27.170 DST=[Masked] LEN=40 TOS=0x08 PREC=0x20 TTL=244 PROTO=TCP SPT=44749 DPT=42326 WINDOW=1024 RES=0x00 SYN URGP=0	2019-08-08 00:18:53
107.170.240.9	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-07 05:21:56,324 INFO [amun_request_handler] PortScan Detected on Port: 25 (107.170.240.9)	2019-08-07 23:46:02
165.22.55.3	attack	Aug 7 14:09:00 localhost sshd\[59217\]: Invalid user bismarck from 165.22.55.3 port 46904 Aug 7 14:09:00 localhost sshd\[59217\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.55.3 Aug 7 14:09:02 localhost sshd\[59217\]: Failed password for invalid user bismarck from 165.22.55.3 port 46904 ssh2 Aug 7 14:14:32 localhost sshd\[59359\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.55.3 user=nobody Aug 7 14:14:35 localhost sshd\[59359\]: Failed password for nobody from 165.22.55.3 port 35438 ssh2 ...	2019-08-08 00:25:56
117.247.181.210	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-07 06:57:19,840 INFO [shellcode_manager] (117.247.181.210) no match, writing hexdump (1717d82c4d0da5dc6987826b6bb7b041 :137) - SMB (Unknown) Vulnerability	2019-08-08 00:32:11
115.110.249.114	attack	Aug 7 09:50:21 srv-4 sshd\[24457\]: Invalid user deployer from 115.110.249.114 Aug 7 09:50:21 srv-4 sshd\[24457\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.110.249.114 Aug 7 09:50:23 srv-4 sshd\[24457\]: Failed password for invalid user deployer from 115.110.249.114 port 45546 ssh2 ...	2019-08-08 00:03:00
205.185.115.78	attackspam	ZTE Router Exploit Scanner	2019-08-07 23:20:18
217.125.110.139	attackbots	Aug 7 12:21:34 *** sshd[26867]: Invalid user nathan from 217.125.110.139	2019-08-08 00:24:52
180.126.235.233	attackbots	20 attempts against mh-ssh on field.magehost.pro	2019-08-07 23:25:45
182.115.190.210	attack	Telnet Server BruteForce Attack	2019-08-08 00:23:19
67.211.215.190	attack	404 NOT FOUND	2019-08-08 00:17:12
120.52.152.17	attackbots	07.08.2019 16:12:25 Connection to port 30303 blocked by firewall	2019-08-08 00:23:56
14.225.3.37	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-08 00:04:21
217.219.222.66	attack	firewall-block, port(s): 445/tcp	2019-08-08 00:08:35
14.247.253.102	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-07 05:24:16,547 INFO [amun_request_handler] PortScan Detected on Port: 445 (14.247.253.102)	2019-08-07 23:42:42

最近上报的IP列表

139.99.97.46	82.223.35.206	54.212.2.205	165.22.214.2
84.244.180.7	74.208.136.228	185.76.71.174	118.181.226.216
58.49.127.246	41.190.232.4	219.83.125.226	213.32.253.150
211.114.178.151	200.54.172.148	195.112.216.10	195.24.61.7
113.208.119.92	113.208.119.82	167.99.119.43	186.219.3.5