106.12.111.201

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Aug 29 14:19:12 rotator sshd\[27540\]: Invalid user prisma from 106.12.111.201Aug 29 14:19:14 rotator sshd\[27540\]: Failed password for invalid user prisma from 106.12.111.201 port 48694 ssh2Aug 29 14:22:37 rotator sshd\[28312\]: Invalid user ftpuser from 106.12.111.201Aug 29 14:22:39 rotator sshd\[28312\]: Failed password for invalid user ftpuser from 106.12.111.201 port 60080 ssh2Aug 29 14:25:53 rotator sshd\[29084\]: Invalid user tcb from 106.12.111.201Aug 29 14:25:55 rotator sshd\[29084\]: Failed password for invalid user tcb from 106.12.111.201 port 43236 ssh2 ...	2020-08-30 04:05:08
attackbots	2020-08-24T17:05:25.193363paragon sshd[113479]: Failed password for root from 106.12.111.201 port 34928 ssh2 2020-08-24T17:10:14.819532paragon sshd[113898]: Invalid user gmodserver1 from 106.12.111.201 port 35380 2020-08-24T17:10:14.822393paragon sshd[113898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 2020-08-24T17:10:14.819532paragon sshd[113898]: Invalid user gmodserver1 from 106.12.111.201 port 35380 2020-08-24T17:10:17.036361paragon sshd[113898]: Failed password for invalid user gmodserver1 from 106.12.111.201 port 35380 ssh2 ...	2020-08-24 21:29:03
attackspambots	Aug 6 20:20:20 vmd26974 sshd[14271]: Failed password for root from 106.12.111.201 port 51512 ssh2 ...	2020-08-07 04:12:33
attackbots	Aug 6 03:54:00 jumpserver sshd[37777]: Failed password for root from 106.12.111.201 port 57296 ssh2 Aug 6 03:59:00 jumpserver sshd[37847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=root Aug 6 03:59:02 jumpserver sshd[37847]: Failed password for root from 106.12.111.201 port 35074 ssh2 ...	2020-08-06 12:25:46
attackspambots	2020-07-20T14:21:30.264246sd-86998 sshd[33903]: Invalid user godfrey from 106.12.111.201 port 54270 2020-07-20T14:21:30.268061sd-86998 sshd[33903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 2020-07-20T14:21:30.264246sd-86998 sshd[33903]: Invalid user godfrey from 106.12.111.201 port 54270 2020-07-20T14:21:32.535449sd-86998 sshd[33903]: Failed password for invalid user godfrey from 106.12.111.201 port 54270 ssh2 2020-07-20T14:26:37.064033sd-86998 sshd[37277]: Invalid user pass from 106.12.111.201 port 32820 ...	2020-07-21 03:16:42
attackspambots	SSH login attempts.	2020-07-06 14:49:42
attackspambots	Jun 20 02:08:09 vps639187 sshd\[3344\]: Invalid user union from 106.12.111.201 port 37966 Jun 20 02:08:09 vps639187 sshd\[3344\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 Jun 20 02:08:11 vps639187 sshd\[3344\]: Failed password for invalid user union from 106.12.111.201 port 37966 ssh2 ...	2020-06-20 08:30:00
attackspambots	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-06-20 03:16:32
attackbots	Jun 14 19:12:02 ny01 sshd[495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 Jun 14 19:12:04 ny01 sshd[495]: Failed password for invalid user tang from 106.12.111.201 port 44460 ssh2 Jun 14 19:15:39 ny01 sshd[1022]: Failed password for root from 106.12.111.201 port 34344 ssh2	2020-06-15 08:39:41
attackspambots	2020-05-26T02:51:37.482311abusebot.cloudsearch.cf sshd[30687]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=operator 2020-05-26T02:51:39.142691abusebot.cloudsearch.cf sshd[30687]: Failed password for operator from 106.12.111.201 port 52742 ssh2 2020-05-26T02:54:55.317179abusebot.cloudsearch.cf sshd[30992]: Invalid user lmwangi from 106.12.111.201 port 34656 2020-05-26T02:54:55.324249abusebot.cloudsearch.cf sshd[30992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 2020-05-26T02:54:55.317179abusebot.cloudsearch.cf sshd[30992]: Invalid user lmwangi from 106.12.111.201 port 34656 2020-05-26T02:54:57.501289abusebot.cloudsearch.cf sshd[30992]: Failed password for invalid user lmwangi from 106.12.111.201 port 34656 ssh2 2020-05-26T02:58:08.325213abusebot.cloudsearch.cf sshd[31277]: Invalid user gdm from 106.12.111.201 port 44822 ...	2020-05-26 11:06:59
attack	2020-04-29T12:08:23.653271abusebot-6.cloudsearch.cf sshd[8321]: Invalid user owncloud from 106.12.111.201 port 41206 2020-04-29T12:08:23.662822abusebot-6.cloudsearch.cf sshd[8321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 2020-04-29T12:08:23.653271abusebot-6.cloudsearch.cf sshd[8321]: Invalid user owncloud from 106.12.111.201 port 41206 2020-04-29T12:08:25.574894abusebot-6.cloudsearch.cf sshd[8321]: Failed password for invalid user owncloud from 106.12.111.201 port 41206 ssh2 2020-04-29T12:13:39.607539abusebot-6.cloudsearch.cf sshd[8578]: Invalid user sr from 106.12.111.201 port 35184 2020-04-29T12:13:39.615083abusebot-6.cloudsearch.cf sshd[8578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 2020-04-29T12:13:39.607539abusebot-6.cloudsearch.cf sshd[8578]: Invalid user sr from 106.12.111.201 port 35184 2020-04-29T12:13:41.241148abusebot-6.cloudsearch.cf sshd[8578]: Fail ...	2020-04-29 21:16:49
attackspam	Apr 5 21:49:42 server1 sshd\[12639\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=root Apr 5 21:49:44 server1 sshd\[12639\]: Failed password for root from 106.12.111.201 port 41990 ssh2 Apr 5 21:51:48 server1 sshd\[13278\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=root Apr 5 21:51:50 server1 sshd\[13278\]: Failed password for root from 106.12.111.201 port 38562 ssh2 Apr 5 21:54:10 server1 sshd\[14012\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=root ...	2020-04-06 15:18:57
attackbotsspam	Fail2Ban Ban Triggered (2)	2020-03-30 00:21:41
attack	Feb 21 13:31:16 gw1 sshd[27027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 Feb 21 13:31:18 gw1 sshd[27027]: Failed password for invalid user david from 106.12.111.201 port 59682 ssh2 ...	2020-02-21 16:45:29
attack	Unauthorized connection attempt detected from IP address 106.12.111.201 to port 2220 [J]	2020-02-02 00:14:55
attackspambots	$f2bV_matches	2020-01-20 22:39:41
attackspam	Unauthorized connection attempt detected from IP address 106.12.111.201 to port 2220 [J]	2020-01-20 01:29:08
attackbots	Dec 14 23:51:34 * sshd[13456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 Dec 14 23:51:36 * sshd[13456]: Failed password for invalid user zado from 106.12.111.201 port 59180 ssh2	2019-12-15 07:49:22
attackspam	sshd jail - ssh hack attempt	2019-12-14 07:32:33
attack	Dec 6 01:33:05 pi sshd\[15314\]: Failed password for invalid user server from 106.12.111.201 port 49142 ssh2 Dec 6 01:40:16 pi sshd\[15741\]: Invalid user skard from 106.12.111.201 port 55702 Dec 6 01:40:16 pi sshd\[15741\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 Dec 6 01:40:19 pi sshd\[15741\]: Failed password for invalid user skard from 106.12.111.201 port 55702 ssh2 Dec 6 01:47:30 pi sshd\[16064\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=root ...	2019-12-06 10:01:31
attack	Nov 30 12:38:15 sachi sshd\[29215\]: Invalid user ports from 106.12.111.201 Nov 30 12:38:15 sachi sshd\[29215\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 Nov 30 12:38:18 sachi sshd\[29215\]: Failed password for invalid user ports from 106.12.111.201 port 48456 ssh2 Nov 30 12:41:26 sachi sshd\[29528\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=lp Nov 30 12:41:28 sachi sshd\[29528\]: Failed password for lp from 106.12.111.201 port 52582 ssh2	2019-12-01 07:12:06
attackspam	$f2bV_matches	2019-11-30 06:09:55
attack	Nov 17 15:32:09 vps666546 sshd\[2082\]: Invalid user colnago from 106.12.111.201 port 58184 Nov 17 15:32:09 vps666546 sshd\[2082\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 Nov 17 15:32:11 vps666546 sshd\[2082\]: Failed password for invalid user colnago from 106.12.111.201 port 58184 ssh2 Nov 17 15:37:34 vps666546 sshd\[2185\]: Invalid user slackware from 106.12.111.201 port 35262 Nov 17 15:37:34 vps666546 sshd\[2185\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 ...	2019-11-18 04:45:15
attack	$f2bV_matches	2019-11-14 18:14:47
attack	ssh failed login	2019-11-14 00:54:01
attackbotsspam	Nov 4 16:54:05 server sshd\[13999\]: User root from 106.12.111.201 not allowed because listed in DenyUsers Nov 4 16:54:05 server sshd\[13999\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=root Nov 4 16:54:08 server sshd\[13999\]: Failed password for invalid user root from 106.12.111.201 port 60270 ssh2 Nov 4 17:00:33 server sshd\[9787\]: User root from 106.12.111.201 not allowed because listed in DenyUsers Nov 4 17:00:33 server sshd\[9787\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=root	2019-11-05 00:09:44
attackspam	Oct 29 10:44:14 MK-Soft-VM6 sshd[7011]: Failed password for root from 106.12.111.201 port 56564 ssh2 Oct 29 10:48:34 MK-Soft-VM6 sshd[7022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 ...	2019-10-29 18:17:19
attackspambots	2019-10-27T21:35:35.553104abusebot-4.cloudsearch.cf sshd\[18319\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 user=root	2019-10-28 05:56:37
attack	Oct 14 21:59:02 v22018076622670303 sshd\[15813\]: Invalid user hw from 106.12.111.201 port 42196 Oct 14 21:59:02 v22018076622670303 sshd\[15813\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 Oct 14 21:59:05 v22018076622670303 sshd\[15813\]: Failed password for invalid user hw from 106.12.111.201 port 42196 ssh2 ...	2019-10-15 04:33:49
attackbots	Oct 10 01:49:15 plusreed sshd[2014]: Invalid user o0i9u8y7t6 from 106.12.111.201 ...	2019-10-10 16:48:57

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.111.202	attack	Unauthorized connection attempt detected from IP address 106.12.111.202 to port 2220 [J]	2020-02-04 20:17:05
106.12.111.202	attackspambots	SSH-BruteForce	2020-02-03 07:42:05
106.12.111.202	attackspam	Unauthorized connection attempt detected from IP address 106.12.111.202 to port 2220 [J]	2020-01-24 03:20:51
106.12.111.202	attackbotsspam	$f2bV_matches	2020-01-22 00:51:44

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.111.201
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14243
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.111.201.			IN	A

;; AUTHORITY SECTION:
.			3060	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072503 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 26 07:34:07 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 201.111.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 201.111.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
84.2.226.70	attackspambots	Invalid user butterer from 84.2.226.70 port 51180	2020-01-28 07:01:03
1.170.107.105	attackspambots	Honeypot attack, port: 5555, PTR: 1-170-107-105.dynamic-ip.hinet.net.	2020-01-28 07:06:24
91.20.100.81	attackspam	2019-11-25 01:34:04 1iZ2KH-0005cR-Mk SMTP connection from p5b146451.dip0.t-ipconnect.de \[91.20.100.81\]:18966 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-11-25 01:34:09 1iZ2KN-0005cn-9O SMTP connection from p5b146451.dip0.t-ipconnect.de \[91.20.100.81\]:19007 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-11-25 01:34:13 1iZ2KR-0005cu-Rk SMTP connection from p5b146451.dip0.t-ipconnect.de \[91.20.100.81\]:19033 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 07:25:23
91.214.197.165	attack	2020-01-25 22:36:04 1ivT61-0000Zw-US SMTP connection from $\[91.214.197.165\]$ \[91.214.197.165\]:33017 I=\[193.107.88.166\]:25 closed by DROP in ACL 2020-01-25 22:37:00 1ivT6s-0000bW-B0 SMTP connection from $\[91.214.197.165\]$ \[91.214.197.165\]:33223 I=\[193.107.88.166\]:25 closed by DROP in ACL 2020-01-25 22:37:39 1ivT7W-0000cY-5C SMTP connection from $\[91.214.197.165\]$ \[91.214.197.165\]:33356 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 07:15:31
73.229.232.218	attackbots	$f2bV_matches	2020-01-28 07:33:48
113.53.82.10	attack	Honeypot attack, port: 445, PTR: node-g7e.pool-113-53.dynamic.totinternet.net.	2020-01-28 07:12:32
168.90.91.170	attackbotsspam	Honeypot attack, port: 445, PTR: 170.91.90.168.static.megalinkpi.net.br.	2020-01-28 07:26:24
80.82.77.243	attack	01/28/2020-00:06:50.683432 80.82.77.243 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-01-28 07:35:53
91.204.177.46	attackbotsspam	2020-01-24 12:03:47 1iuwkc-0007bG-Vn SMTP connection from flynet-dynamic-client-46.soskol.ru \[91.204.177.46\]:35959 I=\[193.107.88.166\]:25 closed by DROP in ACL 2020-01-24 12:04:03 1iuwkt-0007c3-1V SMTP connection from flynet-dynamic-client-46.soskol.ru \[91.204.177.46\]:36129 I=\[193.107.88.166\]:25 closed by DROP in ACL 2020-01-24 12:04:12 1iuwl1-0007cR-RC SMTP connection from flynet-dynamic-client-46.soskol.ru \[91.204.177.46\]:36219 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 07:21:30
182.112.211.69	attack	23/tcp [2020-01-27]1pkt	2020-01-28 07:34:49
91.207.200.21	attack	2019-03-12 19:53:40 H=$\[91.207.200.21\]$ \[91.207.200.21\]:46553 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-03-12 19:53:54 H=$\[91.207.200.21\]$ \[91.207.200.21\]:46732 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-03-12 19:54:05 H=$\[91.207.200.21\]$ \[91.207.200.21\]:46869 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-01-28 07:19:37
91.226.243.139	attackspambots	2019-03-15 18:44:22 H=$\[91.226.243.140\]$ \[91.226.243.139\]:41324 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-03-15 18:44:54 H=$\[91.226.243.140\]$ \[91.226.243.139\]:41577 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-03-15 18:45:10 H=$\[91.226.243.140\]$ \[91.226.243.139\]:41738 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-01-28 07:02:48
91.228.217.21	attack	2019-09-16 20:33:56 1i9voy-0001NE-8g SMTP connection from $\[91.228.217.21\]$ \[91.228.217.21\]:31744 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-09-16 20:34:18 1i9vpJ-0001O3-1U SMTP connection from $\[91.228.217.21\]$ \[91.228.217.21\]:31934 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-09-16 20:34:30 1i9vpV-0001OF-N3 SMTP connection from $\[91.228.217.21\]$ \[91.228.217.21\]:32078 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 06:59:17
186.155.214.180	attack	Unauthorized connection attempt detected from IP address 186.155.214.180 to port 8080 [J]	2020-01-28 07:32:35
91.196.91.114	attackbotsspam	2019-02-26 22:33:42 H=$client-pool.rune.lg.ua$ \[91.196.91.114\]:64615 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-02-26 22:33:53 H=$client-pool.rune.lg.ua$ \[91.196.91.114\]:65425 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-02-26 22:34:04 H=$client-pool.rune.lg.ua$ \[91.196.91.114\]:64773 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-01-28 07:29:38

最近上报的IP列表

184.82.9.233	68.183.183.174	23.101.5.138	68.183.155.33
13.233.51.96	101.53.147.187	165.231.13.13	68.183.11.101
153.37.106.14	80.211.78.252	197.251.224.54	153.126.135.24
49.234.106.172	159.192.247.132	218.64.36.165	212.154.77.235
119.253.84.243	104.248.165.225	87.44.3.151	138.68.16.212