106.13.192.5 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	firewall-block, port(s): 5327/tcp	2020-08-04 05:37:53
attack	Jul 24 23:02:24 rush sshd[23127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.192.5 Jul 24 23:02:25 rush sshd[23127]: Failed password for invalid user cl from 106.13.192.5 port 61108 ssh2 Jul 24 23:10:22 rush sshd[23455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.192.5 ...	2020-07-25 07:16:49
attackspambots	Unauthorized connection attempt detected from IP address 106.13.192.5 to port 6245	2020-07-22 20:03:27
attack	SSH login attempts.	2020-06-19 14:17:10
attackspam	Jun 10 10:27:03 plex sshd[10163]: Invalid user symmetry from 106.13.192.5 port 18735	2020-06-10 16:45:05
attackspam	May 27 07:29:33 electroncash sshd[8916]: Failed password for root from 106.13.192.5 port 37080 ssh2 May 27 07:32:36 electroncash sshd[9770]: Invalid user tech from 106.13.192.5 port 9803 May 27 07:32:36 electroncash sshd[9770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.192.5 May 27 07:32:36 electroncash sshd[9770]: Invalid user tech from 106.13.192.5 port 9803 May 27 07:32:39 electroncash sshd[9770]: Failed password for invalid user tech from 106.13.192.5 port 9803 ssh2 ...	2020-05-27 15:54:27
attack	May 8 14:35:38 home sshd[2016]: Failed password for root from 106.13.192.5 port 35255 ssh2 May 8 14:36:14 home sshd[2115]: Failed password for root from 106.13.192.5 port 39389 ssh2 ...	2020-05-08 22:28:58
attackbots	May 5 15:13:30 vserver sshd\[3394\]: Invalid user test123 from 106.13.192.5May 5 15:13:32 vserver sshd\[3394\]: Failed password for invalid user test123 from 106.13.192.5 port 18267 ssh2May 5 15:17:17 vserver sshd\[3420\]: Invalid user testing from 106.13.192.5May 5 15:17:20 vserver sshd\[3420\]: Failed password for invalid user testing from 106.13.192.5 port 60289 ssh2 ...	2020-05-05 21:24:24
attackbots	May 4 08:46:24 nextcloud sshd\[21203\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.192.5 user=root May 4 08:46:25 nextcloud sshd\[21203\]: Failed password for root from 106.13.192.5 port 45018 ssh2 May 4 08:50:48 nextcloud sshd\[26522\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.192.5 user=root	2020-05-04 15:10:48
attackbotsspam	SSH Brute-Force attacks	2020-04-22 05:38:05

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.192.38	attack	Unauthorized connection attempt detected from IP address 106.13.192.38 to port 2220 [J]	2020-01-15 01:25:08
106.13.192.38	attackbots	Unauthorized connection attempt detected from IP address 106.13.192.38 to port 2220 [J]	2020-01-05 00:15:17

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.192.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42436
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.192.5.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042101 1800 900 604800 86400

;; Query time: 891 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 22 05:38:02 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 5.192.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 5.192.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
125.238.81.110	attackspam	SSH scan ::	2019-07-23 02:09:41
82.196.14.222	attack	Jul 22 13:32:37 vps200512 sshd\[29928\]: Invalid user mata from 82.196.14.222 Jul 22 13:32:37 vps200512 sshd\[29928\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.196.14.222 Jul 22 13:32:39 vps200512 sshd\[29928\]: Failed password for invalid user mata from 82.196.14.222 port 54582 ssh2 Jul 22 13:38:15 vps200512 sshd\[30040\]: Invalid user anselmo from 82.196.14.222 Jul 22 13:38:15 vps200512 sshd\[30040\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.196.14.222	2019-07-23 01:45:49
123.213.47.108	attack	Portscan or hack attempt detected by psad/fwsnort	2019-07-23 02:35:01
80.226.132.183	attackspambots	Jul 22 17:05:21 [host] sshd[32629]: Invalid user pi from 80.226.132.183 Jul 22 17:05:22 [host] sshd[32629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.226.132.183 Jul 22 17:05:23 [host] sshd[32629]: Failed password for invalid user pi from 80.226.132.183 port 59044 ssh2	2019-07-23 02:16:48
173.167.200.227	attackbotsspam	Jul 22 19:07:35 areeb-Workstation sshd\[4990\]: Invalid user victoria from 173.167.200.227 Jul 22 19:07:35 areeb-Workstation sshd\[4990\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.167.200.227 Jul 22 19:07:37 areeb-Workstation sshd\[4990\]: Failed password for invalid user victoria from 173.167.200.227 port 41822 ssh2 ...	2019-07-23 02:41:29
91.61.40.224	attackspam	Jul 22 15:47:35 XXXXXX sshd[45086]: Invalid user farah from 91.61.40.224 port 38209	2019-07-23 02:45:53
182.76.1.22	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-20 15:41:39,611 INFO [shellcode_manager] (182.76.1.22) no match, writing hexdump (a6088cf2d54207d8e8ff46a9ca5d0d9a :2082368) - MS17010 (EternalBlue)	2019-07-23 02:44:27
77.42.72.193	attackspam	Automatic report - Port Scan Attack	2019-07-23 02:40:56
83.86.47.46	attackspam	Automatic report - Port Scan Attack	2019-07-23 02:14:42
59.25.197.138	attackspam	Jul 22 15:17:13 MK-Soft-Root1 sshd\[1538\]: Invalid user rasa from 59.25.197.138 port 38170 Jul 22 15:17:13 MK-Soft-Root1 sshd\[1538\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.25.197.138 Jul 22 15:17:15 MK-Soft-Root1 sshd\[1538\]: Failed password for invalid user rasa from 59.25.197.138 port 38170 ssh2 ...	2019-07-23 02:11:50
152.168.211.200	attack	Jul 22 16:34:59 ns37 sshd[12297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.168.211.200	2019-07-23 02:07:05
185.176.26.19	attackspam	firewall-block, port(s): 9999/tcp	2019-07-23 02:07:48
207.154.194.145	attack	Jul 22 20:11:55 OPSO sshd\[11273\]: Invalid user ubuntu from 207.154.194.145 port 58878 Jul 22 20:11:55 OPSO sshd\[11273\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.194.145 Jul 22 20:11:57 OPSO sshd\[11273\]: Failed password for invalid user ubuntu from 207.154.194.145 port 58878 ssh2 Jul 22 20:17:55 OPSO sshd\[12067\]: Invalid user ls from 207.154.194.145 port 56078 Jul 22 20:17:55 OPSO sshd\[12067\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.194.145	2019-07-23 02:28:40
115.29.11.146	attackbotsspam	Jul 22 20:00:33 microserver sshd[18634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.29.11.146 user=root Jul 22 20:00:35 microserver sshd[18634]: Failed password for root from 115.29.11.146 port 34756 ssh2 Jul 22 20:04:03 microserver sshd[18812]: Invalid user VM from 115.29.11.146 port 48815 Jul 22 20:04:03 microserver sshd[18812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.29.11.146 Jul 22 20:04:05 microserver sshd[18812]: Failed password for invalid user VM from 115.29.11.146 port 48815 ssh2 Jul 22 20:14:33 microserver sshd[20145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.29.11.146 user=mysql Jul 22 20:14:35 microserver sshd[20145]: Failed password for mysql from 115.29.11.146 port 34523 ssh2 Jul 22 20:17:49 microserver sshd[20715]: Invalid user arkserver from 115.29.11.146 port 48568 Jul 22 20:17:49 microserver sshd[20715]: pam_unix(sshd:auth): authentication	2019-07-23 02:20:44
185.220.101.31	attackbots	Jul 22 16:42:04 lnxmysql61 sshd[32586]: Failed password for root from 185.220.101.31 port 39025 ssh2 Jul 22 16:42:07 lnxmysql61 sshd[32586]: Failed password for root from 185.220.101.31 port 39025 ssh2 Jul 22 16:42:10 lnxmysql61 sshd[32586]: Failed password for root from 185.220.101.31 port 39025 ssh2 Jul 22 16:42:12 lnxmysql61 sshd[32586]: Failed password for root from 185.220.101.31 port 39025 ssh2	2019-07-23 02:12:13

最近上报的IP列表

88.23.5.179	222.227.200.103	129.67.148.18	206.217.142.89
27.140.225.225	178.252.214.147	179.132.255.246	96.76.224.249
63.49.194.64	188.107.75.14	103.48.193.152	129.206.16.6
75.148.158.246	216.106.38.112	175.138.79.74	111.220.172.221
72.118.64.239	109.159.111.25	191.32.9.253	155.235.10.72