106.13.82.231 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH Brute Force	2020-10-13 03:50:22
attack	Oct 12 13:11:55 dignus sshd[29800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.231 user=root Oct 12 13:11:57 dignus sshd[29800]: Failed password for root from 106.13.82.231 port 35120 ssh2 Oct 12 13:13:43 dignus sshd[29840]: Invalid user adalberto from 106.13.82.231 port 58826 Oct 12 13:13:43 dignus sshd[29840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.231 Oct 12 13:13:45 dignus sshd[29840]: Failed password for invalid user adalberto from 106.13.82.231 port 58826 ssh2 ...	2020-10-12 19:24:38
attackbots	2020-10-01T15:03:51.299541afi-git.jinr.ru sshd[8008]: Failed password for admin from 106.13.82.231 port 45114 ssh2 2020-10-01T15:06:02.078118afi-git.jinr.ru sshd[8746]: Invalid user julio from 106.13.82.231 port 46298 2020-10-01T15:06:02.081445afi-git.jinr.ru sshd[8746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.231 2020-10-01T15:06:02.078118afi-git.jinr.ru sshd[8746]: Invalid user julio from 106.13.82.231 port 46298 2020-10-01T15:06:03.993036afi-git.jinr.ru sshd[8746]: Failed password for invalid user julio from 106.13.82.231 port 46298 ssh2 ...	2020-10-02 04:24:11
attack	2020-10-01T15:03:51.299541afi-git.jinr.ru sshd[8008]: Failed password for admin from 106.13.82.231 port 45114 ssh2 2020-10-01T15:06:02.078118afi-git.jinr.ru sshd[8746]: Invalid user julio from 106.13.82.231 port 46298 2020-10-01T15:06:02.081445afi-git.jinr.ru sshd[8746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.231 2020-10-01T15:06:02.078118afi-git.jinr.ru sshd[8746]: Invalid user julio from 106.13.82.231 port 46298 2020-10-01T15:06:03.993036afi-git.jinr.ru sshd[8746]: Failed password for invalid user julio from 106.13.82.231 port 46298 ssh2 ...	2020-10-01 20:38:53
attackbotsspam	(sshd) Failed SSH login from 106.13.82.231 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 1 00:17:44 server4 sshd[8322]: Invalid user cluster from 106.13.82.231 Oct 1 00:17:44 server4 sshd[8322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.231 Oct 1 00:17:46 server4 sshd[8322]: Failed password for invalid user cluster from 106.13.82.231 port 55472 ssh2 Oct 1 00:21:40 server4 sshd[10396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.231 user=root Oct 1 00:21:42 server4 sshd[10396]: Failed password for root from 106.13.82.231 port 59472 ssh2	2020-10-01 12:50:21
attack	Sep 29 00:29:37 itv-usvr-01 sshd[11989]: Invalid user usuario from 106.13.82.231 Sep 29 00:29:37 itv-usvr-01 sshd[11989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.231 Sep 29 00:29:37 itv-usvr-01 sshd[11989]: Invalid user usuario from 106.13.82.231 Sep 29 00:29:39 itv-usvr-01 sshd[11989]: Failed password for invalid user usuario from 106.13.82.231 port 45596 ssh2 Sep 29 00:35:29 itv-usvr-01 sshd[12264]: Invalid user deploy from 106.13.82.231	2020-09-29 03:09:16
attackspambots	Sep 28 08:41:13 fhem-rasp sshd[13400]: Invalid user usuario from 106.13.82.231 port 43570 ...	2020-09-28 19:18:42
attackspam	sshd: Failed password for invalid user .... from 106.13.82.231 port 54392 ssh2 (6 attempts)	2020-09-09 18:57:13
attackspambots	Sep 8 18:41:32 ns382633 sshd\[11941\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.231 user=root Sep 8 18:41:35 ns382633 sshd\[11941\]: Failed password for root from 106.13.82.231 port 41728 ssh2 Sep 8 18:53:48 ns382633 sshd\[13791\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.231 user=root Sep 8 18:53:50 ns382633 sshd\[13791\]: Failed password for root from 106.13.82.231 port 38410 ssh2 Sep 8 18:57:14 ns382633 sshd\[14529\]: Invalid user speech-dispatcher from 106.13.82.231 port 50944 Sep 8 18:57:14 ns382633 sshd\[14529\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.231	2020-09-09 05:08:10
attackspambots	Jul 29 14:38:57 inter-technics sshd[29595]: Invalid user pranava from 106.13.82.231 port 44096 Jul 29 14:38:57 inter-technics sshd[29595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.231 Jul 29 14:38:57 inter-technics sshd[29595]: Invalid user pranava from 106.13.82.231 port 44096 Jul 29 14:38:59 inter-technics sshd[29595]: Failed password for invalid user pranava from 106.13.82.231 port 44096 ssh2 Jul 29 14:41:30 inter-technics sshd[29861]: Invalid user liudingbo from 106.13.82.231 port 43642 ...	2020-07-29 21:13:45
attackspambots	prod6 ...	2020-07-28 16:48:59
attackbots	Invalid user rancid from 106.13.82.231 port 44962	2020-07-16 18:19:32
attackbotsspam	Jun 28 05:50:26 h1745522 sshd[23426]: Invalid user repos from 106.13.82.231 port 39508 Jun 28 05:50:27 h1745522 sshd[23426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.231 Jun 28 05:50:26 h1745522 sshd[23426]: Invalid user repos from 106.13.82.231 port 39508 Jun 28 05:50:28 h1745522 sshd[23426]: Failed password for invalid user repos from 106.13.82.231 port 39508 ssh2 Jun 28 05:53:33 h1745522 sshd[23527]: Invalid user tsbot from 106.13.82.231 port 59070 Jun 28 05:53:33 h1745522 sshd[23527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.231 Jun 28 05:53:33 h1745522 sshd[23527]: Invalid user tsbot from 106.13.82.231 port 59070 Jun 28 05:53:35 h1745522 sshd[23527]: Failed password for invalid user tsbot from 106.13.82.231 port 59070 ssh2 Jun 28 05:56:43 h1745522 sshd[23757]: Invalid user workflow from 106.13.82.231 port 50428 ...	2020-06-28 12:32:28
attack	2020-06-27T15:59:07+0200 Failed SSH Authentication/Brute Force Attack.(Server 2)	2020-06-28 03:57:56
attack	Jun 24 15:13:50 plex sshd[28480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.231 user=root Jun 24 15:13:52 plex sshd[28480]: Failed password for root from 106.13.82.231 port 38742 ssh2	2020-06-25 02:01:13
attack	Jun 15 22:14:08 hostnameis sshd[15453]: Invalid user sonar from 106.13.82.231 Jun 15 22:14:08 hostnameis sshd[15453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.231 Jun 15 22:14:10 hostnameis sshd[15453]: Failed password for invalid user sonar from 106.13.82.231 port 60488 ssh2 Jun 15 22:14:10 hostnameis sshd[15453]: Received disconnect from 106.13.82.231: 11: Bye Bye [preauth] Jun 15 22:31:42 hostnameis sshd[15514]: Invalid user bx from 106.13.82.231 Jun 15 22:31:42 hostnameis sshd[15514]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.231 Jun 15 22:31:44 hostnameis sshd[15514]: Failed password for invalid user bx from 106.13.82.231 port 41962 ssh2 Jun 15 22:31:45 hostnameis sshd[15514]: Received disconnect from 106.13.82.231: 11: Bye Bye [preauth] Jun 15 22:34:42 hostnameis sshd[15529]: Invalid user ewg from 106.13.82.231 Jun 15 22:34:42 hostnameis sshd[15529]: p........ ------------------------------	2020-06-16 06:37:46

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.82.49	attack	2020-10-07T15:38:53.454754devel sshd[20844]: Failed password for root from 106.13.82.49 port 42382 ssh2 2020-10-07T15:42:11.982056devel sshd[21716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.49 user=root 2020-10-07T15:42:13.587627devel sshd[21716]: Failed password for root from 106.13.82.49 port 60268 ssh2	2020-10-08 04:47:20
106.13.82.49	attack	SSH Brute-force	2020-10-07 21:09:14
106.13.82.49	attack	Oct 7 03:56:14 PorscheCustomer sshd[13773]: Failed password for root from 106.13.82.49 port 58220 ssh2 Oct 7 04:00:26 PorscheCustomer sshd[13863]: Failed password for root from 106.13.82.49 port 59802 ssh2 ...	2020-10-07 12:56:06
106.13.82.49	attackbots	Aug 13 22:42:44 sip sshd[1295870]: Failed password for root from 106.13.82.49 port 51912 ssh2 Aug 13 22:46:23 sip sshd[1295903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.49 user=root Aug 13 22:46:25 sip sshd[1295903]: Failed password for root from 106.13.82.49 port 46214 ssh2 ...	2020-08-14 04:57:45
106.13.82.54	attackbotsspam	2020-07-31T07:23:29.812926shield sshd\[18028\]: Invalid user nouri from 106.13.82.54 port 52990 2020-07-31T07:23:29.822047shield sshd\[18028\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.54 2020-07-31T07:23:32.041004shield sshd\[18028\]: Failed password for invalid user nouri from 106.13.82.54 port 52990 ssh2 2020-07-31T07:29:05.042198shield sshd\[19130\]: Invalid user adgjmptw1 from 106.13.82.54 port 60584 2020-07-31T07:29:05.050616shield sshd\[19130\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.54	2020-07-31 15:34:58
106.13.82.49	attackbotsspam	2020-07-21T03:42:33.740723SusPend.routelink.net.id sshd[92517]: Invalid user testmail from 106.13.82.49 port 42854 2020-07-21T03:42:35.805633SusPend.routelink.net.id sshd[92517]: Failed password for invalid user testmail from 106.13.82.49 port 42854 ssh2 2020-07-21T03:43:56.618711SusPend.routelink.net.id sshd[92631]: Invalid user baumann from 106.13.82.49 port 51344 ...	2020-07-21 04:46:52
106.13.82.54	attack	Invalid user wmg from 106.13.82.54 port 43802	2020-07-19 02:01:33
106.13.82.151	attack	Invalid user niharika from 106.13.82.151 port 44542	2020-07-17 16:47:17
106.13.82.151	attackspam	TCP (SYN) 106.13.82.151:43125 -> port 808, len 44	2020-07-01 12:29:18
106.13.82.49	attack	Jun 21 23:27:39 server sshd[37589]: Failed password for root from 106.13.82.49 port 40098 ssh2 Jun 21 23:30:51 server sshd[40031]: Failed password for invalid user wpa from 106.13.82.49 port 60508 ssh2 Jun 21 23:34:06 server sshd[42421]: Failed password for invalid user guest from 106.13.82.49 port 52680 ssh2	2020-06-22 05:35:17
106.13.82.49	attack	Jun 18 03:55:33 scw-6657dc sshd[22922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.49 Jun 18 03:55:33 scw-6657dc sshd[22922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.49 Jun 18 03:55:35 scw-6657dc sshd[22922]: Failed password for invalid user feng from 106.13.82.49 port 33320 ssh2 ...	2020-06-18 12:55:11
106.13.82.54	attackspam	Jun 11 19:14:13 vps sshd[722207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.54 user=root Jun 11 19:14:16 vps sshd[722207]: Failed password for root from 106.13.82.54 port 57910 ssh2 Jun 11 19:16:47 vps sshd[735860]: Invalid user digicel from 106.13.82.54 port 36052 Jun 11 19:16:47 vps sshd[735860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.54 Jun 11 19:16:49 vps sshd[735860]: Failed password for invalid user digicel from 106.13.82.54 port 36052 ssh2 ...	2020-06-12 01:32:22
106.13.82.49	attack	Jun 8 13:00:53 Host-KLAX-C sshd[6050]: Invalid user test from 106.13.82.49 port 46906 ...	2020-06-09 03:46:25
106.13.82.49	attack	Jun 6 17:31:57 vpn01 sshd[21272]: Failed password for root from 106.13.82.49 port 36782 ssh2 ...	2020-06-07 01:22:59
106.13.82.54	attackbotsspam	May 27 14:18:54 powerpi2 sshd[4181]: Failed password for invalid user test from 106.13.82.54 port 50092 ssh2 May 27 14:23:40 powerpi2 sshd[4404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.54 user=root May 27 14:23:41 powerpi2 sshd[4404]: Failed password for root from 106.13.82.54 port 44368 ssh2 ...	2020-05-28 00:28:14

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.82.231
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52093
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.82.231.			IN	A

;; AUTHORITY SECTION:
.			568	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061502 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 16 06:37:43 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 231.82.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 231.82.13.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
122.146.196.217	attack	Invalid user guest from 122.146.196.217 port 59203	2020-07-21 17:27:00
2.219.180.73	attackbots	Automatic report - Port Scan Attack	2020-07-21 18:16:24
185.86.164.109	attackbotsspam	CMS (WordPress or Joomla) login attempt.	2020-07-21 18:20:30
164.90.216.156	attackbotsspam	2020-07-21T12:04:31.6982721240 sshd\[3100\]: Invalid user tomek from 164.90.216.156 port 59244 2020-07-21T12:04:31.7019271240 sshd\[3100\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.90.216.156 2020-07-21T12:04:33.5239041240 sshd\[3100\]: Failed password for invalid user tomek from 164.90.216.156 port 59244 ssh2 ...	2020-07-21 18:12:20
37.49.224.49	attackbotsspam	TCP (SYN) 37.49.224.49:56784 -> port 50802, len 44	2020-07-21 17:50:59
195.231.2.55	attackbotsspam	2020-07-21T11:52:19.183071n23.at sshd[2031153]: Invalid user www from 195.231.2.55 port 37432 2020-07-21T11:52:20.857593n23.at sshd[2031153]: Failed password for invalid user www from 195.231.2.55 port 37432 ssh2 2020-07-21T11:57:35.995027n23.at sshd[2035167]: Invalid user xl from 195.231.2.55 port 39382 ...	2020-07-21 18:19:24
61.90.104.213	attackspam	Jul 21 11:51:58 itachi1706steam sshd[53437]: Did not receive identification string from 61.90.104.213 port 13615 Jul 21 11:52:01 itachi1706steam sshd[53439]: Invalid user service from 61.90.104.213 port 14035 Jul 21 11:52:01 itachi1706steam sshd[53439]: Connection closed by invalid user service 61.90.104.213 port 14035 [preauth] ...	2020-07-21 18:05:58
101.21.145.129	attackspam	$f2bV_matches	2020-07-21 18:13:25
193.106.57.177	attackbots	Port probing on unauthorized port 445	2020-07-21 18:15:44
159.224.87.165	attackspambots	GET /wp-login.php HTTP/1.1	2020-07-21 17:32:12
167.114.24.184	attack	Automatic report - Banned IP Access	2020-07-21 18:03:43
103.242.200.38	attack	Jul 21 09:17:14 ip-172-31-61-156 sshd[25374]: Invalid user konstantina from 103.242.200.38 Jul 21 09:17:16 ip-172-31-61-156 sshd[25374]: Failed password for invalid user konstantina from 103.242.200.38 port 53850 ssh2 Jul 21 09:17:14 ip-172-31-61-156 sshd[25374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.242.200.38 Jul 21 09:17:14 ip-172-31-61-156 sshd[25374]: Invalid user konstantina from 103.242.200.38 Jul 21 09:17:16 ip-172-31-61-156 sshd[25374]: Failed password for invalid user konstantina from 103.242.200.38 port 53850 ssh2 ...	2020-07-21 17:20:21
181.40.76.162	attack	Jul 21 10:29:07 sshgateway sshd\[526\]: Invalid user cloud from 181.40.76.162 Jul 21 10:29:07 sshgateway sshd\[526\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.40.76.162 Jul 21 10:29:08 sshgateway sshd\[526\]: Failed password for invalid user cloud from 181.40.76.162 port 45672 ssh2	2020-07-21 17:36:51
182.61.49.107	attackbots	Jul 21 06:59:31 jumpserver sshd[166777]: Invalid user ircd from 182.61.49.107 port 51310 Jul 21 06:59:32 jumpserver sshd[166777]: Failed password for invalid user ircd from 182.61.49.107 port 51310 ssh2 Jul 21 07:05:26 jumpserver sshd[166840]: Invalid user oo from 182.61.49.107 port 54448 ...	2020-07-21 17:46:18
188.170.13.225	attack	Jul 21 09:05:39 web8 sshd\[13212\]: Invalid user vboxuser from 188.170.13.225 Jul 21 09:05:39 web8 sshd\[13212\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.170.13.225 Jul 21 09:05:41 web8 sshd\[13212\]: Failed password for invalid user vboxuser from 188.170.13.225 port 52510 ssh2 Jul 21 09:10:02 web8 sshd\[15508\]: Invalid user admin from 188.170.13.225 Jul 21 09:10:02 web8 sshd\[15508\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.170.13.225	2020-07-21 17:19:59

最近上报的IP列表

203.109.132.103	189.235.17.231	176.158.91.88	217.130.10.62
72.229.139.137	159.171.4.150	35.194.70.139	87.141.16.31
67.180.126.138	49.167.6.186	18.223.77.198	142.120.202.229
123.20.7.150	41.232.107.223	68.1.76.43	67.232.232.63
69.212.158.58	62.10.50.254	136.26.174.144	164.107.54.59