128.199.216.13

基本信息:

城市(city): Singapore

省份(region): Central Singapore Community Development Council

国家(country): Singapore

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Aug 18 23:47:28 lcl-usvr-02 sshd[14502]: Invalid user distcache from 128.199.216.13 port 34542 Aug 18 23:47:28 lcl-usvr-02 sshd[14502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.13 Aug 18 23:47:28 lcl-usvr-02 sshd[14502]: Invalid user distcache from 128.199.216.13 port 34542 Aug 18 23:47:31 lcl-usvr-02 sshd[14502]: Failed password for invalid user distcache from 128.199.216.13 port 34542 ssh2 Aug 18 23:52:10 lcl-usvr-02 sshd[15559]: Invalid user thiago from 128.199.216.13 port 51582 ...	2019-08-19 02:42:07
attackspam	2019-08-13T03:31:04.940334WS-Zach sshd[24553]: Invalid user arbaiah from 128.199.216.13 port 48886 2019-08-13T03:31:04.943911WS-Zach sshd[24553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.13 2019-08-13T03:31:04.940334WS-Zach sshd[24553]: Invalid user arbaiah from 128.199.216.13 port 48886 2019-08-13T03:31:06.658817WS-Zach sshd[24553]: Failed password for invalid user arbaiah from 128.199.216.13 port 48886 ssh2 2019-08-13T03:37:16.399776WS-Zach sshd[27710]: Invalid user sll from 128.199.216.13 port 46962 ...	2019-08-13 18:45:20
attackspam	Jul 24 20:46:47 cp sshd[24689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.13	2019-07-25 05:32:09
attackspam	Jul 21 15:51:56 srv-4 sshd\[17835\]: Invalid user git from 128.199.216.13 Jul 21 15:51:56 srv-4 sshd\[17835\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.13 Jul 21 15:51:58 srv-4 sshd\[17835\]: Failed password for invalid user git from 128.199.216.13 port 52708 ssh2 ...	2019-07-22 00:38:09
attackbots	Jul 18 12:11:50 legacy sshd[12514]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.13 Jul 18 12:11:52 legacy sshd[12514]: Failed password for invalid user ya from 128.199.216.13 port 41662 ssh2 Jul 18 12:19:01 legacy sshd[12746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.13 ...	2019-07-18 18:43:11
attackbots	Jul 17 23:07:35 legacy sshd[18474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.13 Jul 17 23:07:37 legacy sshd[18474]: Failed password for invalid user user from 128.199.216.13 port 49326 ssh2 Jul 17 23:14:48 legacy sshd[18715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.13 ...	2019-07-18 05:23:44
attackbotsspam	Jul 13 11:58:02 aat-srv002 sshd[14862]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.13 Jul 13 11:58:03 aat-srv002 sshd[14862]: Failed password for invalid user sftp from 128.199.216.13 port 46174 ssh2 Jul 13 12:05:57 aat-srv002 sshd[15072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.13 Jul 13 12:05:59 aat-srv002 sshd[15072]: Failed password for invalid user admin from 128.199.216.13 port 47708 ssh2 ...	2019-07-14 05:49:51
attackspam	Jul 13 07:15:08 aat-srv002 sshd[9042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.13 Jul 13 07:15:11 aat-srv002 sshd[9042]: Failed password for invalid user ze from 128.199.216.13 port 48222 ssh2 Jul 13 07:23:08 aat-srv002 sshd[9180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.13 Jul 13 07:23:11 aat-srv002 sshd[9180]: Failed password for invalid user admin from 128.199.216.13 port 49744 ssh2 ...	2019-07-13 20:25:46
attackspambots	SSH Bruteforce	2019-07-08 02:56:58

相同子网IP讨论:

IP	类型	评论内容	时间
128.199.216.168	attackbotsspam	Apr 13 09:54:20 ny01 sshd[12703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.168 Apr 13 09:54:22 ny01 sshd[12703]: Failed password for invalid user johnf from 128.199.216.168 port 33598 ssh2 Apr 13 09:56:05 ny01 sshd[13328]: Failed password for root from 128.199.216.168 port 54474 ssh2	2020-04-14 00:12:23
128.199.216.168	attackbots	2020-04-12T04:11:13.882826shield sshd\[13815\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.168 user=root 2020-04-12T04:11:16.068524shield sshd\[13815\]: Failed password for root from 128.199.216.168 port 56134 ssh2 2020-04-12T04:15:33.807964shield sshd\[14701\]: Invalid user lrios from 128.199.216.168 port 37006 2020-04-12T04:15:33.811819shield sshd\[14701\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.168 2020-04-12T04:15:35.691531shield sshd\[14701\]: Failed password for invalid user lrios from 128.199.216.168 port 37006 ssh2	2020-04-12 12:18:13
128.199.216.250	attack	$f2bV_matches	2019-12-25 03:37:20
128.199.216.250	attack	Dec 23 05:57:56 web9 sshd\[17586\]: Invalid user nana123 from 128.199.216.250 Dec 23 05:57:56 web9 sshd\[17586\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250 Dec 23 05:57:58 web9 sshd\[17586\]: Failed password for invalid user nana123 from 128.199.216.250 port 53674 ssh2 Dec 23 06:05:54 web9 sshd\[18942\]: Invalid user mandrake from 128.199.216.250 Dec 23 06:05:54 web9 sshd\[18942\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250	2019-12-24 03:10:31
128.199.216.250	attack	Dec 2 23:05:15 mail sshd[14300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250 Dec 2 23:05:17 mail sshd[14300]: Failed password for invalid user servers from 128.199.216.250 port 44916 ssh2 Dec 2 23:13:56 mail sshd[16711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250	2019-12-03 06:38:48
128.199.216.250	attackspam	Dec 2 00:02:24 OPSO sshd\[31059\]: Invalid user guest from 128.199.216.250 port 47359 Dec 2 00:02:24 OPSO sshd\[31059\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250 Dec 2 00:02:26 OPSO sshd\[31059\]: Failed password for invalid user guest from 128.199.216.250 port 47359 ssh2 Dec 2 00:08:27 OPSO sshd\[818\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250 user=root Dec 2 00:08:29 OPSO sshd\[818\]: Failed password for root from 128.199.216.250 port 53148 ssh2	2019-12-02 07:18:30
128.199.216.250	attackspambots	Nov 30 06:23:36 dedicated sshd[23396]: Invalid user dev from 128.199.216.250 port 41863	2019-11-30 13:54:53
128.199.216.250	attack	Nov 24 12:58:23 hosting sshd[12692]: Invalid user google from 128.199.216.250 port 55423 ...	2019-11-24 18:12:11
128.199.216.250	attackbotsspam	Nov 23 11:29:19 linuxvps sshd\[42628\]: Invalid user oost from 128.199.216.250 Nov 23 11:29:19 linuxvps sshd\[42628\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250 Nov 23 11:29:21 linuxvps sshd\[42628\]: Failed password for invalid user oost from 128.199.216.250 port 37904 ssh2 Nov 23 11:33:41 linuxvps sshd\[45321\]: Invalid user cattien from 128.199.216.250 Nov 23 11:33:41 linuxvps sshd\[45321\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250	2019-11-24 05:15:04
128.199.216.250	attackspam	Nov 17 10:43:42 web1 sshd\[6284\]: Invalid user raquel from 128.199.216.250 Nov 17 10:43:42 web1 sshd\[6284\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250 Nov 17 10:43:44 web1 sshd\[6284\]: Failed password for invalid user raquel from 128.199.216.250 port 36415 ssh2 Nov 17 10:48:07 web1 sshd\[6630\]: Invalid user lefforge from 128.199.216.250 Nov 17 10:48:07 web1 sshd\[6630\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250	2019-11-18 06:06:20
128.199.216.250	attack	Nov 17 09:59:09 sd-53420 sshd\[29534\]: Invalid user ms from 128.199.216.250 Nov 17 09:59:09 sd-53420 sshd\[29534\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250 Nov 17 09:59:10 sd-53420 sshd\[29534\]: Failed password for invalid user ms from 128.199.216.250 port 54525 ssh2 Nov 17 10:03:14 sd-53420 sshd\[30715\]: Invalid user renee from 128.199.216.250 Nov 17 10:03:14 sd-53420 sshd\[30715\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250 ...	2019-11-17 20:09:19
128.199.216.250	attackbotsspam	Nov 16 14:00:38 tdfoods sshd\[3894\]: Invalid user myfather from 128.199.216.250 Nov 16 14:00:38 tdfoods sshd\[3894\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250 Nov 16 14:00:41 tdfoods sshd\[3894\]: Failed password for invalid user myfather from 128.199.216.250 port 57957 ssh2 Nov 16 14:05:03 tdfoods sshd\[4298\]: Invalid user guest555 from 128.199.216.250 Nov 16 14:05:03 tdfoods sshd\[4298\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250	2019-11-17 08:16:30
128.199.216.250	attack	F2B blocked SSH bruteforcing	2019-11-17 04:37:22
128.199.216.250	attack	F2B jail: sshd. Time: 2019-11-11 17:34:23, Reported by: VKReport	2019-11-12 00:48:51
128.199.216.250	attack	Oct 26 10:24:56 tdfoods sshd\[18188\]: Invalid user pv from 128.199.216.250 Oct 26 10:24:56 tdfoods sshd\[18188\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250 Oct 26 10:24:58 tdfoods sshd\[18188\]: Failed password for invalid user pv from 128.199.216.250 port 49774 ssh2 Oct 26 10:29:39 tdfoods sshd\[18564\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250 user=root Oct 26 10:29:42 tdfoods sshd\[18564\]: Failed password for root from 128.199.216.250 port 40878 ssh2	2019-10-27 04:31:39

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 128.199.216.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24888
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;128.199.216.13.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040402 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 05 04:11:29 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 13.216.199.128.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 13.216.199.128.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
90.189.113.55	attackbotsspam	20/2/1@16:57:20: FAIL: Alarm-Network address from=90.189.113.55 ...	2020-02-02 07:45:17
218.92.0.175	attackspambots	Feb 2 01:06:50 MK-Soft-Root1 sshd[26058]: Failed password for root from 218.92.0.175 port 23769 ssh2 Feb 2 01:06:53 MK-Soft-Root1 sshd[26058]: Failed password for root from 218.92.0.175 port 23769 ssh2 ...	2020-02-02 08:11:51
83.21.207.125	attack	Automatic report - Port Scan Attack	2020-02-02 08:13:12
103.144.77.24	attackspambots	Unauthorized connection attempt detected from IP address 103.144.77.24 to port 2220 [J]	2020-02-02 08:16:38
106.54.117.51	attackspam	Unauthorized connection attempt detected from IP address 106.54.117.51 to port 2220 [J]	2020-02-02 08:02:21
190.65.212.90	attackbotsspam	Feb 1 18:56:50 ws24vmsma01 sshd[161145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.65.212.90 Feb 1 18:56:53 ws24vmsma01 sshd[161145]: Failed password for invalid user losts from 190.65.212.90 port 42656 ssh2 ...	2020-02-02 07:58:42
92.177.238.63	attackbots		2020-02-02 08:09:39
37.193.108.101	attack	Invalid user rajjat from 37.193.108.101 port 63990	2020-02-02 07:59:55
193.70.36.161	attackspam	Unauthorized connection attempt detected from IP address 193.70.36.161 to port 2220 [J]	2020-02-02 07:55:03
139.99.87.51	attack	Feb 1 22:56:57 server postfix/smtpd[31627]: NOQUEUE: reject: RCPT from smtp1-52.pinkpillmedia.org[139.99.87.51]: 554 5.7.1 Service unavailable; Client host [139.99.87.51] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-02-02 07:57:30
80.39.184.70	attackbotsspam	ENG,WP GET /wp-login.php	2020-02-02 08:14:30
189.41.32.181	attackspambots	Telnet Server BruteForce Attack	2020-02-02 08:17:49
91.204.72.77	attack	php WP PHPmyadamin ABUSE blocked for 12h	2020-02-02 08:06:47
18.222.133.43	attackspam	Unauthorized connection attempt detected from IP address 18.222.133.43 to port 3389 [J]	2020-02-02 08:01:10
123.126.20.90	attackspam	Unauthorized connection attempt detected from IP address 123.126.20.90 to port 2220 [J]	2020-02-02 08:05:33

最近上报的IP列表

101.89.145.133	88.202.190.135	118.24.19.185	107.170.200.63
92.68.176.254	92.50.59.98	91.121.142.225	71.6.233.228
58.221.247.206	202.29.238.153	139.162.71.210	103.63.31.31
182.176.170.148	180.124.201.82	188.166.251.87	170.254.226.245
81.32.212.115	14.215.46.94	222.114.16.117	95.158.165.189