106.12.111.201

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Aug 29 14:19:12 rotator sshd\[27540\]: Invalid user prisma from 106.12.111.201Aug 29 14:19:14 rotator sshd\[27540\]: Failed password for invalid user prisma from 106.12.111.201 port 48694 ssh2Aug 29 14:22:37 rotator sshd\[28312\]: Invalid user ftpuser from 106.12.111.201Aug 29 14:22:39 rotator sshd\[28312\]: Failed password for invalid user ftpuser from 106.12.111.201 port 60080 ssh2Aug 29 14:25:53 rotator sshd\[29084\]: Invalid user tcb from 106.12.111.201Aug 29 14:25:55 rotator sshd\[29084\]: Failed password for invalid user tcb from 106.12.111.201 port 43236 ssh2 ...	2020-08-30 04:05:08
attackbots	2020-08-24T17:05:25.193363paragon sshd[113479]: Failed password for root from 106.12.111.201 port 34928 ssh2 2020-08-24T17:10:14.819532paragon sshd[113898]: Invalid user gmodserver1 from 106.12.111.201 port 35380 2020-08-24T17:10:14.822393paragon sshd[113898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 2020-08-24T17:10:14.819532paragon sshd[113898]: Invalid user gmodserver1 from 106.12.111.201 port 35380 2020-08-24T17:10:17.036361paragon sshd[113898]: Failed password for invalid user gmodserver1 from 106.12.111.201 port 35380 ssh2 ...	2020-08-24 21:29:03
attackspambots	Aug 6 20:20:20 vmd26974 sshd[14271]: Failed password for root from 106.12.111.201 port 51512 ssh2 ...	2020-08-07 04:12:33
attackbots	Aug 6 03:54:00 jumpserver sshd[37777]: Failed password for root from 106.12.111.201 port 57296 ssh2 Aug 6 03:59:00 jumpserver sshd[37847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=root Aug 6 03:59:02 jumpserver sshd[37847]: Failed password for root from 106.12.111.201 port 35074 ssh2 ...	2020-08-06 12:25:46
attackspambots	2020-07-20T14:21:30.264246sd-86998 sshd[33903]: Invalid user godfrey from 106.12.111.201 port 54270 2020-07-20T14:21:30.268061sd-86998 sshd[33903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 2020-07-20T14:21:30.264246sd-86998 sshd[33903]: Invalid user godfrey from 106.12.111.201 port 54270 2020-07-20T14:21:32.535449sd-86998 sshd[33903]: Failed password for invalid user godfrey from 106.12.111.201 port 54270 ssh2 2020-07-20T14:26:37.064033sd-86998 sshd[37277]: Invalid user pass from 106.12.111.201 port 32820 ...	2020-07-21 03:16:42
attackspambots	SSH login attempts.	2020-07-06 14:49:42
attackspambots	Jun 20 02:08:09 vps639187 sshd\[3344\]: Invalid user union from 106.12.111.201 port 37966 Jun 20 02:08:09 vps639187 sshd\[3344\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 Jun 20 02:08:11 vps639187 sshd\[3344\]: Failed password for invalid user union from 106.12.111.201 port 37966 ssh2 ...	2020-06-20 08:30:00
attackspambots	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-06-20 03:16:32
attackbots	Jun 14 19:12:02 ny01 sshd[495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 Jun 14 19:12:04 ny01 sshd[495]: Failed password for invalid user tang from 106.12.111.201 port 44460 ssh2 Jun 14 19:15:39 ny01 sshd[1022]: Failed password for root from 106.12.111.201 port 34344 ssh2	2020-06-15 08:39:41
attackspambots	2020-05-26T02:51:37.482311abusebot.cloudsearch.cf sshd[30687]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=operator 2020-05-26T02:51:39.142691abusebot.cloudsearch.cf sshd[30687]: Failed password for operator from 106.12.111.201 port 52742 ssh2 2020-05-26T02:54:55.317179abusebot.cloudsearch.cf sshd[30992]: Invalid user lmwangi from 106.12.111.201 port 34656 2020-05-26T02:54:55.324249abusebot.cloudsearch.cf sshd[30992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 2020-05-26T02:54:55.317179abusebot.cloudsearch.cf sshd[30992]: Invalid user lmwangi from 106.12.111.201 port 34656 2020-05-26T02:54:57.501289abusebot.cloudsearch.cf sshd[30992]: Failed password for invalid user lmwangi from 106.12.111.201 port 34656 ssh2 2020-05-26T02:58:08.325213abusebot.cloudsearch.cf sshd[31277]: Invalid user gdm from 106.12.111.201 port 44822 ...	2020-05-26 11:06:59
attack	2020-04-29T12:08:23.653271abusebot-6.cloudsearch.cf sshd[8321]: Invalid user owncloud from 106.12.111.201 port 41206 2020-04-29T12:08:23.662822abusebot-6.cloudsearch.cf sshd[8321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 2020-04-29T12:08:23.653271abusebot-6.cloudsearch.cf sshd[8321]: Invalid user owncloud from 106.12.111.201 port 41206 2020-04-29T12:08:25.574894abusebot-6.cloudsearch.cf sshd[8321]: Failed password for invalid user owncloud from 106.12.111.201 port 41206 ssh2 2020-04-29T12:13:39.607539abusebot-6.cloudsearch.cf sshd[8578]: Invalid user sr from 106.12.111.201 port 35184 2020-04-29T12:13:39.615083abusebot-6.cloudsearch.cf sshd[8578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 2020-04-29T12:13:39.607539abusebot-6.cloudsearch.cf sshd[8578]: Invalid user sr from 106.12.111.201 port 35184 2020-04-29T12:13:41.241148abusebot-6.cloudsearch.cf sshd[8578]: Fail ...	2020-04-29 21:16:49
attackspam	Apr 5 21:49:42 server1 sshd\[12639\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=root Apr 5 21:49:44 server1 sshd\[12639\]: Failed password for root from 106.12.111.201 port 41990 ssh2 Apr 5 21:51:48 server1 sshd\[13278\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=root Apr 5 21:51:50 server1 sshd\[13278\]: Failed password for root from 106.12.111.201 port 38562 ssh2 Apr 5 21:54:10 server1 sshd\[14012\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=root ...	2020-04-06 15:18:57
attackbotsspam	Fail2Ban Ban Triggered (2)	2020-03-30 00:21:41
attack	Feb 21 13:31:16 gw1 sshd[27027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 Feb 21 13:31:18 gw1 sshd[27027]: Failed password for invalid user david from 106.12.111.201 port 59682 ssh2 ...	2020-02-21 16:45:29
attack	Unauthorized connection attempt detected from IP address 106.12.111.201 to port 2220 [J]	2020-02-02 00:14:55
attackspambots	$f2bV_matches	2020-01-20 22:39:41
attackspam	Unauthorized connection attempt detected from IP address 106.12.111.201 to port 2220 [J]	2020-01-20 01:29:08
attackbots	Dec 14 23:51:34 * sshd[13456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 Dec 14 23:51:36 * sshd[13456]: Failed password for invalid user zado from 106.12.111.201 port 59180 ssh2	2019-12-15 07:49:22
attackspam	sshd jail - ssh hack attempt	2019-12-14 07:32:33
attack	Dec 6 01:33:05 pi sshd\[15314\]: Failed password for invalid user server from 106.12.111.201 port 49142 ssh2 Dec 6 01:40:16 pi sshd\[15741\]: Invalid user skard from 106.12.111.201 port 55702 Dec 6 01:40:16 pi sshd\[15741\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 Dec 6 01:40:19 pi sshd\[15741\]: Failed password for invalid user skard from 106.12.111.201 port 55702 ssh2 Dec 6 01:47:30 pi sshd\[16064\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=root ...	2019-12-06 10:01:31
attack	Nov 30 12:38:15 sachi sshd\[29215\]: Invalid user ports from 106.12.111.201 Nov 30 12:38:15 sachi sshd\[29215\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 Nov 30 12:38:18 sachi sshd\[29215\]: Failed password for invalid user ports from 106.12.111.201 port 48456 ssh2 Nov 30 12:41:26 sachi sshd\[29528\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=lp Nov 30 12:41:28 sachi sshd\[29528\]: Failed password for lp from 106.12.111.201 port 52582 ssh2	2019-12-01 07:12:06
attackspam	$f2bV_matches	2019-11-30 06:09:55
attack	Nov 17 15:32:09 vps666546 sshd\[2082\]: Invalid user colnago from 106.12.111.201 port 58184 Nov 17 15:32:09 vps666546 sshd\[2082\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 Nov 17 15:32:11 vps666546 sshd\[2082\]: Failed password for invalid user colnago from 106.12.111.201 port 58184 ssh2 Nov 17 15:37:34 vps666546 sshd\[2185\]: Invalid user slackware from 106.12.111.201 port 35262 Nov 17 15:37:34 vps666546 sshd\[2185\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 ...	2019-11-18 04:45:15
attack	$f2bV_matches	2019-11-14 18:14:47
attack	ssh failed login	2019-11-14 00:54:01
attackbotsspam	Nov 4 16:54:05 server sshd\[13999\]: User root from 106.12.111.201 not allowed because listed in DenyUsers Nov 4 16:54:05 server sshd\[13999\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=root Nov 4 16:54:08 server sshd\[13999\]: Failed password for invalid user root from 106.12.111.201 port 60270 ssh2 Nov 4 17:00:33 server sshd\[9787\]: User root from 106.12.111.201 not allowed because listed in DenyUsers Nov 4 17:00:33 server sshd\[9787\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=root	2019-11-05 00:09:44
attackspam	Oct 29 10:44:14 MK-Soft-VM6 sshd[7011]: Failed password for root from 106.12.111.201 port 56564 ssh2 Oct 29 10:48:34 MK-Soft-VM6 sshd[7022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 ...	2019-10-29 18:17:19
attackspambots	2019-10-27T21:35:35.553104abusebot-4.cloudsearch.cf sshd\[18319\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=root	2019-10-28 05:56:37
attack	Oct 14 21:59:02 v22018076622670303 sshd\[15813\]: Invalid user hw from 106.12.111.201 port 42196 Oct 14 21:59:02 v22018076622670303 sshd\[15813\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 Oct 14 21:59:05 v22018076622670303 sshd\[15813\]: Failed password for invalid user hw from 106.12.111.201 port 42196 ssh2 ...	2019-10-15 04:33:49
attackbots	Oct 10 01:49:15 plusreed sshd[2014]: Invalid user o0i9u8y7t6 from 106.12.111.201 ...	2019-10-10 16:48:57

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.111.202	attack	Unauthorized connection attempt detected from IP address 106.12.111.202 to port 2220 [J]	2020-02-04 20:17:05
106.12.111.202	attackspambots	SSH-BruteForce	2020-02-03 07:42:05
106.12.111.202	attackspam	Unauthorized connection attempt detected from IP address 106.12.111.202 to port 2220 [J]	2020-01-24 03:20:51
106.12.111.202	attackbotsspam	$f2bV_matches	2020-01-22 00:51:44

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.111.201
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14243
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.111.201.			IN	A

;; AUTHORITY SECTION:
.			3060	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072503 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 26 07:34:07 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 201.111.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 201.111.12.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
106.12.204.44	attack	Jul 5 19:51:06 vmd17057 sshd\[16260\]: Invalid user johny from 106.12.204.44 port 46190 Jul 5 19:51:06 vmd17057 sshd\[16260\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.44 Jul 5 19:51:08 vmd17057 sshd\[16260\]: Failed password for invalid user johny from 106.12.204.44 port 46190 ssh2 ...	2019-07-06 10:05:35
171.253.194.49	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 15:58:47,472 INFO [shellcode_manager] (171.253.194.49) no match, writing hexdump (993c42cf24d635c522db7b4a1cc2b751 :2219695) - MS17010 (EternalBlue)	2019-07-06 10:41:29
176.109.176.162	attackspambots	" "	2019-07-06 10:07:02
1.179.184.177	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 22:30:29,352 INFO [shellcode_manager] (1.179.184.177) no match, writing hexdump (82d9fe5a436b804f2aefe369d0cb9d07 :2125842) - MS17010 (EternalBlue)	2019-07-06 09:54:42
121.194.2.247	attackspam	firewall-block, port(s): 22/tcp	2019-07-06 10:28:29
36.66.149.211	attackbots	Jul 6 02:50:59 * sshd[2790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.66.149.211 Jul 6 02:51:01 * sshd[2790]: Failed password for invalid user mud from 36.66.149.211 port 56184 ssh2	2019-07-06 10:24:29
104.236.2.45	attackspambots	Jul 6 02:48:12 mail sshd[11423]: Invalid user ltenti from 104.236.2.45 Jul 6 02:48:12 mail sshd[11423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.2.45 Jul 6 02:48:12 mail sshd[11423]: Invalid user ltenti from 104.236.2.45 Jul 6 02:48:14 mail sshd[11423]: Failed password for invalid user ltenti from 104.236.2.45 port 56546 ssh2 Jul 6 02:53:54 mail sshd[11999]: Invalid user idc from 104.236.2.45 ...	2019-07-06 10:33:16
187.86.200.34	attackbots	TCP port 445 (SMB) attempt blocked by firewall. [2019-07-06 03:07:16]	2019-07-06 10:23:35
166.88.18.98	attackspambots	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-07-06 10:26:16
213.136.88.141	attack	Jul 6 01:03:00 rpi sshd[14849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.136.88.141 Jul 6 01:03:01 rpi sshd[14849]: Failed password for invalid user pass from 213.136.88.141 port 38340 ssh2	2019-07-06 10:11:17
94.136.152.84	attackspambots	NAME : MINET-SK CIDR : DDoS attack Slovakia (Slovak Republic) "" - block certain countries :) IP: 94.136.152.84 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-07-06 10:09:56
36.7.140.77	attack	Jul 5 20:37:52 core01 sshd\[27722\]: Invalid user ph from 36.7.140.77 port 48455 Jul 5 20:37:52 core01 sshd\[27722\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.7.140.77 ...	2019-07-06 10:19:15
34.214.111.177	attackspam	Go-http-client/1.1	2019-07-06 10:40:52
187.60.149.158	attackspambots	Port scan and connecxt tcp 80	2019-07-06 10:13:27
117.131.215.170	attackspam	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-07-06 10:06:11

最近上报的IP列表

184.82.9.233	68.183.183.174	23.101.5.138	68.183.155.33
13.233.51.96	101.53.147.187	165.231.13.13	68.183.11.101
153.37.106.14	80.211.78.252	197.251.224.54	153.126.135.24
49.234.106.172	159.192.247.132	218.64.36.165	212.154.77.235
119.253.84.243	104.248.165.225	87.44.3.151	138.68.16.212