106.12.119.1 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	19927/tcp 31366/tcp 28302/tcp... [2020-07-07/09-02]13pkt,13pt.(tcp)	2020-09-03 02:32:49
attackbotsspam	Feb 3 23:54:56 ms-srv sshd[5187]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.119.1 Feb 3 23:54:59 ms-srv sshd[5187]: Failed password for invalid user vnc from 106.12.119.1 port 53594 ssh2	2020-09-02 18:03:40
attackspambots	" "	2020-07-19 04:56:37
attack	Jun 8 15:02:24 root sshd[26036]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.119.1 user=root Jun 8 15:02:26 root sshd[26036]: Failed password for root from 106.12.119.1 port 37829 ssh2 ...	2020-06-09 03:05:46
attack	$f2bV_matches	2020-06-04 17:52:59
attackbotsspam	May 28 11:44:26 v2202003116398111542 sshd[23010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.119.1 user=root	2020-06-02 23:14:57
attackbots	trying to access non-authorized port	2020-04-22 14:16:23
attackspambots	Apr 17 13:41:04 itv-usvr-01 sshd[1377]: Invalid user bf from 106.12.119.1 Apr 17 13:41:04 itv-usvr-01 sshd[1377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.119.1 Apr 17 13:41:04 itv-usvr-01 sshd[1377]: Invalid user bf from 106.12.119.1 Apr 17 13:41:06 itv-usvr-01 sshd[1377]: Failed password for invalid user bf from 106.12.119.1 port 36405 ssh2	2020-04-17 18:16:24
attackspam	Bruteforce detected by fail2ban	2020-04-16 01:02:35
attack	Apr 11 21:50:34: Invalid user user from 106.12.119.1 port 48979	2020-04-12 07:21:36
attackspambots	Apr 9 12:12:49 rotator sshd\[14590\]: Invalid user backups from 106.12.119.1Apr 9 12:12:52 rotator sshd\[14590\]: Failed password for invalid user backups from 106.12.119.1 port 49819 ssh2Apr 9 12:15:45 rotator sshd\[15368\]: Invalid user felix from 106.12.119.1Apr 9 12:15:47 rotator sshd\[15368\]: Failed password for invalid user felix from 106.12.119.1 port 37758 ssh2Apr 9 12:18:43 rotator sshd\[15410\]: Failed password for root from 106.12.119.1 port 53945 ssh2Apr 9 12:21:41 rotator sshd\[16173\]: Invalid user user from 106.12.119.1Apr 9 12:21:42 rotator sshd\[16173\]: Failed password for invalid user user from 106.12.119.1 port 41904 ssh2 ...	2020-04-09 19:21:33
attackspambots	Invalid user willow from 106.12.119.1 port 37706	2020-03-25 17:49:38
attack	Feb 26 01:46:22 webmail sshd[14306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.119.1 Feb 26 01:46:23 webmail sshd[14306]: Failed password for invalid user grid from 106.12.119.1 port 54221 ssh2	2020-02-26 09:34:40
attack	5x Failed Password	2020-02-06 07:49:27
attackspam	Unauthorized connection attempt detected from IP address 106.12.119.1 to port 2220 [J]	2020-01-16 19:35:02
attack	Jan 8 13:48:33 webhost01 sshd[18911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.119.1 Jan 8 13:48:36 webhost01 sshd[18911]: Failed password for invalid user mysqld from 106.12.119.1 port 47989 ssh2 ...	2020-01-08 20:55:12
attackbots	Too many connections or unauthorized access detected from Arctic banned ip	2019-12-26 16:54:43
attack	SSH/22 MH Probe, BF, Hack -	2019-12-24 23:09:42
attackbotsspam	Dec 21 21:56:16 webhost01 sshd[31218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.119.1 Dec 21 21:56:18 webhost01 sshd[31218]: Failed password for invalid user web from 106.12.119.1 port 59961 ssh2 ...	2019-12-21 23:21:02

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.119.218	attackbots	(sshd) Failed SSH login from 106.12.119.218 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 17 01:46:04 server5 sshd[1447]: Invalid user git from 106.12.119.218 Sep 17 01:46:04 server5 sshd[1447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.119.218 Sep 17 01:46:06 server5 sshd[1447]: Failed password for invalid user git from 106.12.119.218 port 46290 ssh2 Sep 17 01:57:30 server5 sshd[7569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.119.218 user=root Sep 17 01:57:32 server5 sshd[7569]: Failed password for root from 106.12.119.218 port 58756 ssh2	2020-09-17 21:11:10
106.12.119.218	attackspambots	2020-09-17T10:27:57.490824hostname sshd[18686]: Invalid user test from 106.12.119.218 port 35516 2020-09-17T10:27:59.650705hostname sshd[18686]: Failed password for invalid user test from 106.12.119.218 port 35516 ssh2 2020-09-17T10:31:22.296283hostname sshd[19950]: Invalid user robinetta from 106.12.119.218 port 38760 ...	2020-09-17 13:22:23
106.12.119.218	attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-17 04:27:50
106.12.119.218	attackspam	2020-08-25T07:45:15.553969lavrinenko.info sshd[4368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.119.218 2020-08-25T07:45:15.542269lavrinenko.info sshd[4368]: Invalid user amos from 106.12.119.218 port 44032 2020-08-25T07:45:16.791756lavrinenko.info sshd[4368]: Failed password for invalid user amos from 106.12.119.218 port 44032 ssh2 2020-08-25T07:45:56.276587lavrinenko.info sshd[4389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.119.218 user=root 2020-08-25T07:45:58.809103lavrinenko.info sshd[4389]: Failed password for root from 106.12.119.218 port 50500 ssh2 ...	2020-08-25 13:04:13
106.12.119.218	attackspam	Invalid user filer from 106.12.119.218 port 43984	2020-08-21 12:08:46
106.12.119.218	attackspambots	Invalid user qy from 106.12.119.218 port 42086	2020-07-25 13:26:07
106.12.119.218	attack	2020-07-25T00:58:35.741128lavrinenko.info sshd[15359]: Invalid user chentao from 106.12.119.218 port 35998 2020-07-25T00:58:35.753678lavrinenko.info sshd[15359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.119.218 2020-07-25T00:58:35.741128lavrinenko.info sshd[15359]: Invalid user chentao from 106.12.119.218 port 35998 2020-07-25T00:58:37.955333lavrinenko.info sshd[15359]: Failed password for invalid user chentao from 106.12.119.218 port 35998 ssh2 2020-07-25T01:01:55.028684lavrinenko.info sshd[15668]: Invalid user pp from 106.12.119.218 port 55530 ...	2020-07-25 06:38:16
106.12.119.218	attackspam	Bruteforce detected by fail2ban	2020-07-08 18:08:59
106.12.119.218	attack	Jul 4 09:20:46 cp sshd[12498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.119.218	2020-07-04 15:44:07
106.12.119.209	attack	port scan and connect, tcp 1433 (ms-sql-s)	2020-07-04 13:27:57
106.12.119.218	attackbotsspam	Jun 30 12:43:38 ip-172-31-62-245 sshd\[9120\]: Invalid user admin from 106.12.119.218\ Jun 30 12:43:40 ip-172-31-62-245 sshd\[9120\]: Failed password for invalid user admin from 106.12.119.218 port 54400 ssh2\ Jun 30 12:44:28 ip-172-31-62-245 sshd\[9131\]: Invalid user nlu from 106.12.119.218\ Jun 30 12:44:29 ip-172-31-62-245 sshd\[9131\]: Failed password for invalid user nlu from 106.12.119.218 port 36172 ssh2\ Jun 30 12:45:23 ip-172-31-62-245 sshd\[9142\]: Invalid user pi from 106.12.119.218\	2020-07-01 22:57:33
106.12.119.218	attack	SSH auth scanning - multiple failed logins	2020-05-22 02:04:21
106.12.119.218	attackspambots	Invalid user lkw from 106.12.119.218 port 48412	2020-05-20 01:02:17
106.12.119.218	attack	Unauthorized SSH login attempts	2020-04-28 15:16:23
106.12.119.218	attackbots	Unauthorized SSH login attempts	2020-04-27 18:31:15

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.119.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56926
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.119.1.			IN	A

;; AUTHORITY SECTION:
.			342	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122100 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Dec 21 23:20:57 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 1.119.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 1.119.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
51.77.140.36	attack	Apr 10 08:02:20 webhost01 sshd[7020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.140.36 Apr 10 08:02:21 webhost01 sshd[7020]: Failed password for invalid user test from 51.77.140.36 port 36742 ssh2 ...	2020-04-10 10:14:36
111.229.212.132	attackbots	Apr 10 06:13:12 srv-ubuntu-dev3 sshd[26660]: Invalid user postgres from 111.229.212.132 Apr 10 06:13:12 srv-ubuntu-dev3 sshd[26660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.212.132 Apr 10 06:13:12 srv-ubuntu-dev3 sshd[26660]: Invalid user postgres from 111.229.212.132 Apr 10 06:13:14 srv-ubuntu-dev3 sshd[26660]: Failed password for invalid user postgres from 111.229.212.132 port 32800 ssh2 Apr 10 06:18:08 srv-ubuntu-dev3 sshd[27618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.212.132 user=root Apr 10 06:18:10 srv-ubuntu-dev3 sshd[27618]: Failed password for root from 111.229.212.132 port 54926 ssh2 Apr 10 06:22:50 srv-ubuntu-dev3 sshd[28365]: Invalid user svn from 111.229.212.132 Apr 10 06:22:50 srv-ubuntu-dev3 sshd[28365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.212.132 Apr 10 06:22:50 srv-ubuntu-dev3 sshd[28365]: Invalid ...	2020-04-10 12:25:42
77.42.72.140	attack	Unauthorised access (Apr 10) SRC=77.42.72.140 LEN=44 TTL=47 ID=43515 TCP DPT=23 WINDOW=35342 SYN	2020-04-10 12:18:36
189.8.108.161	attackspam	Apr 10 04:42:25 ift sshd\[41487\]: Failed password for root from 189.8.108.161 port 43614 ssh2Apr 10 04:46:53 ift sshd\[42375\]: Invalid user pgadmin from 189.8.108.161Apr 10 04:46:55 ift sshd\[42375\]: Failed password for invalid user pgadmin from 189.8.108.161 port 51350 ssh2Apr 10 04:51:18 ift sshd\[43151\]: Invalid user test from 189.8.108.161Apr 10 04:51:20 ift sshd\[43151\]: Failed password for invalid user test from 189.8.108.161 port 59082 ssh2 ...	2020-04-10 10:16:05
212.95.137.207	attackbots	2020-04-10T02:25:51.284706ns386461 sshd\[10638\]: Invalid user ubuntu from 212.95.137.207 port 41992 2020-04-10T02:25:51.289437ns386461 sshd\[10638\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.95.137.207 2020-04-10T02:25:53.376353ns386461 sshd\[10638\]: Failed password for invalid user ubuntu from 212.95.137.207 port 41992 ssh2 2020-04-10T02:29:51.974444ns386461 sshd\[14257\]: Invalid user clara from 212.95.137.207 port 47778 2020-04-10T02:29:51.979513ns386461 sshd\[14257\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.95.137.207 ...	2020-04-10 10:12:07
139.59.44.173	attackbots	Apr 10 11:11:53 webhost01 sshd[11076]: Failed password for root from 139.59.44.173 port 33668 ssh2 Apr 10 11:20:39 webhost01 sshd[11226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.44.173 ...	2020-04-10 12:32:42
222.186.175.148	attackspam	Apr 10 01:22:20 firewall sshd[8615]: Failed password for root from 222.186.175.148 port 25268 ssh2 Apr 10 01:22:23 firewall sshd[8615]: Failed password for root from 222.186.175.148 port 25268 ssh2 Apr 10 01:22:27 firewall sshd[8615]: Failed password for root from 222.186.175.148 port 25268 ssh2 ...	2020-04-10 12:22:59
187.174.219.142	attack	Apr 10 05:55:04 Ubuntu-1404-trusty-64-minimal sshd\[10402\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.174.219.142 user=root Apr 10 05:55:06 Ubuntu-1404-trusty-64-minimal sshd\[10402\]: Failed password for root from 187.174.219.142 port 53780 ssh2 Apr 10 05:58:38 Ubuntu-1404-trusty-64-minimal sshd\[12153\]: Invalid user user from 187.174.219.142 Apr 10 05:58:38 Ubuntu-1404-trusty-64-minimal sshd\[12153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.174.219.142 Apr 10 05:58:40 Ubuntu-1404-trusty-64-minimal sshd\[12153\]: Failed password for invalid user user from 187.174.219.142 port 48058 ssh2	2020-04-10 12:27:49
128.14.140.122	attack	Honeypot hit.	2020-04-10 12:34:07
218.56.160.82	attack	2020-04-10T01:37:09.720843struts4.enskede.local sshd\[4194\]: Invalid user admin from 218.56.160.82 port 43770 2020-04-10T01:37:09.726947struts4.enskede.local sshd\[4194\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.56.160.82 2020-04-10T01:37:13.648708struts4.enskede.local sshd\[4194\]: Failed password for invalid user admin from 218.56.160.82 port 43770 ssh2 2020-04-10T01:40:56.945217struts4.enskede.local sshd\[4251\]: Invalid user ut2k4server from 218.56.160.82 port 33431 2020-04-10T01:40:56.951294struts4.enskede.local sshd\[4251\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.56.160.82 ...	2020-04-10 10:17:57
220.132.75.140	attack	Apr 9 22:22:51 server1 sshd\[31522\]: Invalid user ts3 from 220.132.75.140 Apr 9 22:22:51 server1 sshd\[31522\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.132.75.140 Apr 9 22:22:53 server1 sshd\[31522\]: Failed password for invalid user ts3 from 220.132.75.140 port 39972 ssh2 Apr 9 22:30:24 server1 sshd\[1161\]: Invalid user test from 220.132.75.140 Apr 9 22:30:24 server1 sshd\[1161\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.132.75.140 ...	2020-04-10 12:36:52
45.122.223.198	attackbots	CMS (WordPress or Joomla) login attempt.	2020-04-10 12:30:02
130.61.209.207	attackbots	Apr 9 18:06:24 eddieflores sshd\[4615\]: Invalid user james from 130.61.209.207 Apr 9 18:06:24 eddieflores sshd\[4615\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.209.207 Apr 9 18:06:26 eddieflores sshd\[4615\]: Failed password for invalid user james from 130.61.209.207 port 51804 ssh2 Apr 9 18:10:17 eddieflores sshd\[5014\]: Invalid user maxim from 130.61.209.207 Apr 9 18:10:17 eddieflores sshd\[5014\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.209.207	2020-04-10 12:17:32
91.121.164.188	attack	Apr 10 03:58:37 ws26vmsma01 sshd[82337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.164.188 Apr 10 03:58:39 ws26vmsma01 sshd[82337]: Failed password for invalid user ubuntu from 91.121.164.188 port 34758 ssh2 ...	2020-04-10 12:27:02
190.205.59.6	attack	Apr 10 06:05:06 ks10 sshd[3549755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.205.59.6 Apr 10 06:05:09 ks10 sshd[3549755]: Failed password for invalid user backupdb140 from 190.205.59.6 port 47658 ssh2 ...	2020-04-10 12:14:41

最近上报的IP列表

110.118.81.126	121.112.36.229	58.60.130.87	212.130.79.147
252.88.8.150	22.183.215.31	194.164.15.107	51.13.46.21
192.96.146.254	156.207.92.101	112.230.192.24	243.70.53.58
218.219.9.56	160.230.192.147	40.120.81.208	239.239.105.102
135.136.214.233	32.204.253.162	221.254.110.93	117.196.179.163