106.12.104.202

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.104.80	attack	Mar 13 17:39:05 lcl-usvr-02 sshd[16751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.104.80 user=root Mar 13 17:39:07 lcl-usvr-02 sshd[16751]: Failed password for root from 106.12.104.80 port 35766 ssh2 Mar 13 17:48:37 lcl-usvr-02 sshd[16907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.104.80 user=root Mar 13 17:48:39 lcl-usvr-02 sshd[16907]: Failed password for root from 106.12.104.80 port 40358 ssh2 Mar 13 17:48:37 lcl-usvr-02 sshd[16907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.104.80 user=root Mar 13 17:48:39 lcl-usvr-02 sshd[16907]: Failed password for root from 106.12.104.80 port 40358 ssh2 ...	2020-03-13 19:02:02

类型

评论内容

时间

106.12.104.80

attack

Mar 13 17:39:05 lcl-usvr-02 sshd[16751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.104.80  user=root
Mar 13 17:39:07 lcl-usvr-02 sshd[16751]: Failed password for root from 106.12.104.80 port 35766 ssh2
Mar 13 17:48:37 lcl-usvr-02 sshd[16907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.104.80  user=root
Mar 13 17:48:39 lcl-usvr-02 sshd[16907]: Failed password for root from 106.12.104.80 port 40358 ssh2
Mar 13 17:48:37 lcl-usvr-02 sshd[16907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.104.80  user=root
Mar 13 17:48:39 lcl-usvr-02 sshd[16907]: Failed password for root from 106.12.104.80 port 40358 ssh2
...

2020-03-13 19:02:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.104.202
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47578
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.12.104.202.			IN	A

;; AUTHORITY SECTION:
.			419	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2021123100 1800 900 604800 86400

;; Query time: 82 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 31 21:05:55 CST 2021
;; MSG SIZE  rcvd: 107

HOST信息:

Host 202.104.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 202.104.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
114.55.104.155	attack	114.55.104.155 - - [12/Aug/2020:15:53:27 +0500] "GET /TP/public/index.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)"	2020-08-13 09:47:25
92.7.55.27	attack	92.7.55.27 - - [13/Aug/2020:00:29:53 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 92.7.55.27 - - [13/Aug/2020:00:29:54 +0100] "POST /wp-login.php HTTP/1.1" 200 5871 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 92.7.55.27 - - [13/Aug/2020:00:31:03 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ...	2020-08-13 09:59:55
49.88.112.112	attack	August 12 2020, 21:50:05 [sshd] - Banned from the Mad Pony WordPress hosting platform by Fail2ban.	2020-08-13 09:57:11
222.186.3.249	attackspam	Aug 13 03:13:54 minden010 sshd[20124]: Failed password for root from 222.186.3.249 port 23786 ssh2 Aug 13 03:13:57 minden010 sshd[20124]: Failed password for root from 222.186.3.249 port 23786 ssh2 Aug 13 03:14:00 minden010 sshd[20124]: Failed password for root from 222.186.3.249 port 23786 ssh2 ...	2020-08-13 09:37:45
46.101.201.200	attackspam	TCP (SYN) 46.101.201.200:59886 -> port 8080, len 40	2020-08-13 09:53:59
111.229.79.169	attackspam	frenzy	2020-08-13 10:02:38
72.186.139.38	attackspambots	Automatic report - Banned IP Access	2020-08-13 10:12:54
163.172.9.10	attackbotsspam	UDP 163.172.9.10:5068 -> port 5060, len 433	2020-08-13 09:54:21
3.90.188.80	attack	A portscan was detected. Details about the event: Time.............: 2020-08-12 22:57:57 Source IP address: 3.90.188.80 (ec2-3-90-188-80.compute-1.amazonaws.com)	2020-08-13 09:54:48
193.169.212.14	attackspam	Spammer	2020-08-13 09:41:47
148.70.3.152	attackbotsspam	Aug 13 01:16:43 scw-tender-jepsen sshd[28743]: Failed password for root from 148.70.3.152 port 43738 ssh2	2020-08-13 09:38:36
132.232.79.135	attackbotsspam	SSH / Telnet Brute Force Attempts on Honeypot	2020-08-13 10:07:31
47.244.148.248	attackspambots	" "	2020-08-13 09:53:34
185.147.212.8	attack	[2020-08-12 22:13:40] NOTICE[1185] chan_sip.c: Registration from '' failed for '185.147.212.8:55981' - Wrong password [2020-08-12 22:13:40] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-12T22:13:40.571-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="6445",SessionID="0x7f10c405a408",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.212.8/55981",Challenge="69c21bfc",ReceivedChallenge="69c21bfc",ReceivedHash="c0bfd1bc6a6b16e59a313c53242ba019" [2020-08-12 22:14:09] NOTICE[1185] chan_sip.c: Registration from '' failed for '185.147.212.8:51455' - Wrong password [2020-08-12 22:14:09] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-12T22:14:09.249-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5472",SessionID="0x7f10c405ea98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.212.8 ...	2020-08-13 10:18:51
114.33.133.236	attack	" "	2020-08-13 09:39:17

最近上报的IP列表

130.65.80.195	111.210.190.1	183.254.7.144	92.243.253.168
37.187.74.202	204.31.22.89	72.55.174.166	117.58.136.250
89.192.166.167	246.45.89.51	235.243.152.66	95.48.169.137
218.51.33.70	204.68.91.139	243.230.132.145	68.79.237.21
175.106.203.236	166.2.187.38	185.157.111.152	194.193.199.154