106.12.104.202

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.104.80	attack	Mar 13 17:39:05 lcl-usvr-02 sshd[16751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.104.80 user=root Mar 13 17:39:07 lcl-usvr-02 sshd[16751]: Failed password for root from 106.12.104.80 port 35766 ssh2 Mar 13 17:48:37 lcl-usvr-02 sshd[16907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.104.80 user=root Mar 13 17:48:39 lcl-usvr-02 sshd[16907]: Failed password for root from 106.12.104.80 port 40358 ssh2 Mar 13 17:48:37 lcl-usvr-02 sshd[16907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.104.80 user=root Mar 13 17:48:39 lcl-usvr-02 sshd[16907]: Failed password for root from 106.12.104.80 port 40358 ssh2 ...	2020-03-13 19:02:02

类型

评论内容

时间

106.12.104.80

attack

Mar 13 17:39:05 lcl-usvr-02 sshd[16751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.104.80  user=root
Mar 13 17:39:07 lcl-usvr-02 sshd[16751]: Failed password for root from 106.12.104.80 port 35766 ssh2
Mar 13 17:48:37 lcl-usvr-02 sshd[16907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.104.80  user=root
Mar 13 17:48:39 lcl-usvr-02 sshd[16907]: Failed password for root from 106.12.104.80 port 40358 ssh2
Mar 13 17:48:37 lcl-usvr-02 sshd[16907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.104.80  user=root
Mar 13 17:48:39 lcl-usvr-02 sshd[16907]: Failed password for root from 106.12.104.80 port 40358 ssh2
...

2020-03-13 19:02:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.104.202
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47578
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.12.104.202.			IN	A

;; AUTHORITY SECTION:
.			419	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2021123100 1800 900 604800 86400

;; Query time: 82 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 31 21:05:55 CST 2021
;; MSG SIZE  rcvd: 107

HOST信息:

Host 202.104.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 202.104.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
218.92.0.188	attack	Dec 5 07:30:32 sauna sshd[87304]: Failed password for root from 218.92.0.188 port 47014 ssh2 Dec 5 07:30:46 sauna sshd[87304]: error: maximum authentication attempts exceeded for root from 218.92.0.188 port 47014 ssh2 [preauth] ...	2019-12-05 13:38:50
159.65.144.233	attackspam	2019-12-05T04:56:38.751839abusebot-7.cloudsearch.cf sshd\[20225\]: Invalid user ftpuser from 159.65.144.233 port 34890	2019-12-05 13:54:05
51.158.104.58	attackspambots	Dec 5 07:01:05 mail sshd\[12991\]: Invalid user amen from 51.158.104.58 Dec 5 07:01:05 mail sshd\[12991\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.104.58 Dec 5 07:01:07 mail sshd\[12991\]: Failed password for invalid user amen from 51.158.104.58 port 46546 ssh2 ...	2019-12-05 14:01:38
164.132.54.215	attackbotsspam	Dec 5 07:47:34 server sshd\[22584\]: Invalid user chacon from 164.132.54.215 Dec 5 07:47:34 server sshd\[22584\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=215.ip-164-132-54.eu Dec 5 07:47:36 server sshd\[22584\]: Failed password for invalid user chacon from 164.132.54.215 port 38700 ssh2 Dec 5 07:56:33 server sshd\[25070\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=215.ip-164-132-54.eu user=root Dec 5 07:56:34 server sshd\[25070\]: Failed password for root from 164.132.54.215 port 42268 ssh2 ...	2019-12-05 13:58:48
81.45.56.199	attackbots	Dec 5 07:33:50 sauna sshd[87415]: Failed password for root from 81.45.56.199 port 51172 ssh2 ...	2019-12-05 13:41:57
51.68.123.192	attackspam	Dec 5 05:53:21 h2812830 sshd[16602]: Invalid user elexis from 51.68.123.192 port 50904 Dec 5 05:53:21 h2812830 sshd[16602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.ip-51-68-123.eu Dec 5 05:53:21 h2812830 sshd[16602]: Invalid user elexis from 51.68.123.192 port 50904 Dec 5 05:53:23 h2812830 sshd[16602]: Failed password for invalid user elexis from 51.68.123.192 port 50904 ssh2 Dec 5 06:01:49 h2812830 sshd[17022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.ip-51-68-123.eu user=lp Dec 5 06:01:51 h2812830 sshd[17022]: Failed password for lp from 51.68.123.192 port 50460 ssh2 ...	2019-12-05 14:02:13
59.148.173.231	attackbotsspam	2019-12-05T05:28:06.246312shield sshd\[19180\]: Invalid user cav from 59.148.173.231 port 35360 2019-12-05T05:28:06.250537shield sshd\[19180\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=059148173231.ctinets.com 2019-12-05T05:28:08.631294shield sshd\[19180\]: Failed password for invalid user cav from 59.148.173.231 port 35360 ssh2 2019-12-05T05:34:01.795505shield sshd\[20594\]: Invalid user webadmin from 59.148.173.231 port 46850 2019-12-05T05:34:01.799766shield sshd\[20594\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=059148173231.ctinets.com	2019-12-05 13:40:19
132.145.223.207	attackbots	Dec 4 19:27:30 hpm sshd\[14723\]: Invalid user hung from 132.145.223.207 Dec 4 19:27:30 hpm sshd\[14723\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.223.207 Dec 4 19:27:33 hpm sshd\[14723\]: Failed password for invalid user hung from 132.145.223.207 port 41364 ssh2 Dec 4 19:33:42 hpm sshd\[15259\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.223.207 user=root Dec 4 19:33:44 hpm sshd\[15259\]: Failed password for root from 132.145.223.207 port 55044 ssh2	2019-12-05 13:41:32
120.29.73.97	attackspam	firewall-block, port(s): 26/tcp	2019-12-05 13:59:46
37.49.230.29	attackspambots	\[2019-12-05 00:43:00\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-05T00:43:00.564-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="9908810441975359003",SessionID="0x7f26c4c3fee8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.230.29/56744",ACLName="no_extension_match" \[2019-12-05 00:43:25\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-05T00:43:25.586-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="9909810441975359003",SessionID="0x7f26c445f668",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.230.29/49920",ACLName="no_extension_match" \[2019-12-05 00:43:50\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-05T00:43:50.865-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="99001810441975359003",SessionID="0x7f26c4c3fee8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.230.29/64253",ACLNa	2019-12-05 14:01:59
222.186.173.215	attackspambots	Dec 5 02:43:01 sshd: Connection from 222.186.173.215 port 54760 Dec 5 02:43:04 sshd: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root Dec 5 02:43:06 sshd: Failed password for root from 222.186.173.215 port 54760 ssh2 Dec 5 02:43:09 sshd: Failed password for root from 222.186.173.215 port 54760 ssh2 Dec 5 02:43:12 sshd: Failed password for root from 222.186.173.215 port 54760 ssh2 Dec 5 02:43:15 sshd: Failed password for root from 222.186.173.215 port 54760 ssh2 Dec 5 02:43:17 sshd: Received disconnect from 222.186.173.215: 11: [preauth] Dec 5 02:43:17 sshd: PAM 3 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root	2019-12-05 14:08:11
193.188.22.118	attackbotsspam	RDP Bruteforce	2019-12-05 14:03:44
165.227.96.190	attackspambots	Invalid user mysql from 165.227.96.190 port 36096 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.96.190 Failed password for invalid user mysql from 165.227.96.190 port 36096 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.96.190 user=root Failed password for root from 165.227.96.190 port 46882 ssh2	2019-12-05 14:04:09
206.189.91.97	attackspam	Invalid user admins from 206.189.91.97 port 50934 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.91.97 Failed password for invalid user admins from 206.189.91.97 port 50934 ssh2 Invalid user vincintz from 206.189.91.97 port 58480 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.91.97	2019-12-05 13:46:39
186.1.198.133	attackbots	Dec 4 19:38:26 web9 sshd\[3228\]: Invalid user yuam from 186.1.198.133 Dec 4 19:38:26 web9 sshd\[3228\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.1.198.133 Dec 4 19:38:27 web9 sshd\[3228\]: Failed password for invalid user yuam from 186.1.198.133 port 39432 ssh2 Dec 4 19:45:18 web9 sshd\[4223\]: Invalid user tarantino from 186.1.198.133 Dec 4 19:45:18 web9 sshd\[4223\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.1.198.133	2019-12-05 13:51:11

最近上报的IP列表

130.65.80.195	111.210.190.1	183.254.7.144	92.243.253.168
37.187.74.202	204.31.22.89	72.55.174.166	117.58.136.250
89.192.166.167	246.45.89.51	235.243.152.66	95.48.169.137
218.51.33.70	204.68.91.139	243.230.132.145	68.79.237.21
175.106.203.236	166.2.187.38	185.157.111.152	194.193.199.154