106.12.13.138 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Dec 13 01:12:10 localhost sshd\[23162\]: Invalid user eoff from 106.12.13.138 Dec 13 01:12:10 localhost sshd\[23162\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Dec 13 01:12:12 localhost sshd\[23162\]: Failed password for invalid user eoff from 106.12.13.138 port 40044 ssh2 Dec 13 01:17:40 localhost sshd\[23389\]: Invalid user okechukwu from 106.12.13.138 Dec 13 01:17:40 localhost sshd\[23389\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 ...	2019-12-13 09:04:16
attackspam	2019-12-08T08:52:29.851950scmdmz1 sshd\[21423\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 user=root 2019-12-08T08:52:31.819747scmdmz1 sshd\[21423\]: Failed password for root from 106.12.13.138 port 35966 ssh2 2019-12-08T08:58:28.148902scmdmz1 sshd\[22044\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 user=root ...	2019-12-08 16:19:48
attackspam	Dec 3 17:25:10 linuxvps sshd\[63730\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 user=root Dec 3 17:25:12 linuxvps sshd\[63730\]: Failed password for root from 106.12.13.138 port 40986 ssh2 Dec 3 17:32:00 linuxvps sshd\[2582\]: Invalid user alan from 106.12.13.138 Dec 3 17:32:00 linuxvps sshd\[2582\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Dec 3 17:32:02 linuxvps sshd\[2582\]: Failed password for invalid user alan from 106.12.13.138 port 50022 ssh2	2019-12-04 06:46:08
attack	Nov 7 21:25:12 auw2 sshd\[28592\]: Invalid user radiusd from 106.12.13.138 Nov 7 21:25:12 auw2 sshd\[28592\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Nov 7 21:25:14 auw2 sshd\[28592\]: Failed password for invalid user radiusd from 106.12.13.138 port 38936 ssh2 Nov 7 21:29:51 auw2 sshd\[28990\]: Invalid user deploy from 106.12.13.138 Nov 7 21:29:51 auw2 sshd\[28990\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138	2019-11-08 20:06:07
attack	Nov 6 23:55:17 web9 sshd\[9869\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 user=root Nov 6 23:55:18 web9 sshd\[9869\]: Failed password for root from 106.12.13.138 port 37068 ssh2 Nov 7 00:01:34 web9 sshd\[10678\]: Invalid user nagios from 106.12.13.138 Nov 7 00:01:34 web9 sshd\[10678\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Nov 7 00:01:36 web9 sshd\[10678\]: Failed password for invalid user nagios from 106.12.13.138 port 44890 ssh2	2019-11-07 18:20:55
attack	Nov 4 08:26:00 dallas01 sshd[16768]: Failed password for root from 106.12.13.138 port 35758 ssh2 Nov 4 08:32:04 dallas01 sshd[17922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Nov 4 08:32:07 dallas01 sshd[17922]: Failed password for invalid user alex from 106.12.13.138 port 43036 ssh2	2019-11-05 01:49:36
attackspam	Oct 29 17:39:57 DAAP sshd[12054]: Invalid user brunol from 106.12.13.138 port 45960 Oct 29 17:39:57 DAAP sshd[12054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Oct 29 17:39:57 DAAP sshd[12054]: Invalid user brunol from 106.12.13.138 port 45960 Oct 29 17:39:59 DAAP sshd[12054]: Failed password for invalid user brunol from 106.12.13.138 port 45960 ssh2 Oct 29 17:44:37 DAAP sshd[12120]: Invalid user admin from 106.12.13.138 port 54722 ...	2019-10-30 02:18:14
attackbots	Failed password for invalid user RolandGarros-123 from 106.12.13.138 port 55826 ssh2 Invalid user P@$$word13 from 106.12.13.138 port 35132 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Failed password for invalid user P@$$word13 from 106.12.13.138 port 35132 ssh2 Invalid user keiv123 from 106.12.13.138 port 42670 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138	2019-10-26 04:38:39
attack	Oct 19 06:57:12 www sshd\[32378\]: Invalid user ible from 106.12.13.138 Oct 19 06:57:12 www sshd\[32378\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Oct 19 06:57:14 www sshd\[32378\]: Failed password for invalid user ible from 106.12.13.138 port 41092 ssh2 ...	2019-10-19 12:59:50
attack	2019-10-15T05:25:21.679564abusebot-4.cloudsearch.cf sshd\[27546\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 user=root	2019-10-15 17:40:28
attackbotsspam	Oct 9 09:01:10 plusreed sshd[26502]: Invalid user Wachtwoord1@1 from 106.12.13.138 ...	2019-10-09 22:43:50
attackspambots	$f2bV_matches	2019-10-08 19:31:14
attack	Oct 7 07:53:12 MK-Soft-VM7 sshd[9384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Oct 7 07:53:14 MK-Soft-VM7 sshd[9384]: Failed password for invalid user Leonard from 106.12.13.138 port 51574 ssh2 ...	2019-10-07 17:00:31
attackspambots	Sep 24 10:41:39 mail sshd\[9800\]: Invalid user test5 from 106.12.13.138 port 56402 Sep 24 10:41:39 mail sshd\[9800\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Sep 24 10:41:41 mail sshd\[9800\]: Failed password for invalid user test5 from 106.12.13.138 port 56402 ssh2 Sep 24 10:46:52 mail sshd\[10537\]: Invalid user dg from 106.12.13.138 port 39572 Sep 24 10:46:52 mail sshd\[10537\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138	2019-09-24 17:06:15
attack	2019-09-23T06:36:29.610915abusebot-4.cloudsearch.cf sshd\[25756\]: Invalid user test from 106.12.13.138 port 58532	2019-09-23 14:59:44
attack	Sep 20 12:09:56 hiderm sshd\[10899\]: Invalid user dnsadrc from 106.12.13.138 Sep 20 12:09:56 hiderm sshd\[10899\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Sep 20 12:09:58 hiderm sshd\[10899\]: Failed password for invalid user dnsadrc from 106.12.13.138 port 33062 ssh2 Sep 20 12:13:43 hiderm sshd\[11262\]: Invalid user oracle from 106.12.13.138 Sep 20 12:13:43 hiderm sshd\[11262\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138	2019-09-21 06:30:59

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.132.224	attackspam	pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.132.224 Failed password for invalid user ekim from 106.12.132.224 port 52754 ssh2 Failed password for root from 106.12.132.224 port 36956 ssh2	2020-10-13 00:57:56
106.12.132.224	attackspam	Oct 12 10:14:25 abendstille sshd\[30630\]: Invalid user yoneyama from 106.12.132.224 Oct 12 10:14:25 abendstille sshd\[30630\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.132.224 Oct 12 10:14:27 abendstille sshd\[30630\]: Failed password for invalid user yoneyama from 106.12.132.224 port 39144 ssh2 Oct 12 10:18:24 abendstille sshd\[3001\]: Invalid user briacheslav from 106.12.132.224 Oct 12 10:18:24 abendstille sshd\[3001\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.132.224 ...	2020-10-12 16:21:33
106.12.130.44	attackspambots	Oct 12 03:55:17 santamaria sshd\[6269\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.130.44 user=root Oct 12 03:55:19 santamaria sshd\[6269\]: Failed password for root from 106.12.130.44 port 59464 ssh2 Oct 12 03:59:04 santamaria sshd\[6322\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.130.44 user=root ...	2020-10-12 12:10:58
106.12.133.225	attack	(sshd) Failed SSH login from 106.12.133.225 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 10 12:31:56 server5 sshd[22095]: Invalid user test from 106.12.133.225 Oct 10 12:31:56 server5 sshd[22095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.133.225 Oct 10 12:31:58 server5 sshd[22095]: Failed password for invalid user test from 106.12.133.225 port 58176 ssh2 Oct 10 12:47:16 server5 sshd[28926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.133.225 user=root Oct 10 12:47:18 server5 sshd[28926]: Failed password for root from 106.12.133.225 port 58396 ssh2	2020-10-11 01:23:34
106.12.133.225	attack	Oct 10 06:20:09 scw-gallant-ride sshd[27935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.133.225	2020-10-10 17:16:20
106.12.138.72	attack	Sep 28 10:46:38 XXX sshd[60152]: Invalid user 51.254.2.202 from 106.12.138.72 port 52994	2020-09-30 05:02:21
106.12.138.72	attackspam	Sep 28 10:46:38 XXX sshd[60152]: Invalid user 51.254.2.202 from 106.12.138.72 port 52994	2020-09-29 21:10:51
106.12.138.72	attackspam	Sep 28 10:46:38 XXX sshd[60152]: Invalid user 51.254.2.202 from 106.12.138.72 port 52994	2020-09-29 13:24:31
106.12.133.225	attackspam	Sep 27 18:18:52 roki sshd[310]: Invalid user soporte from 106.12.133.225 Sep 27 18:18:52 roki sshd[310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.133.225 Sep 27 18:18:54 roki sshd[310]: Failed password for invalid user soporte from 106.12.133.225 port 37132 ssh2 Sep 27 18:28:04 roki sshd[1030]: Invalid user colin from 106.12.133.225 Sep 27 18:28:04 roki sshd[1030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.133.225 ...	2020-09-28 03:29:21
106.12.133.225	attackspambots	Sep 27 13:39:14 santamaria sshd\[27856\]: Invalid user shun from 106.12.133.225 Sep 27 13:39:14 santamaria sshd\[27856\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.133.225 Sep 27 13:39:16 santamaria sshd\[27856\]: Failed password for invalid user shun from 106.12.133.225 port 36374 ssh2 ...	2020-09-27 19:40:23
106.12.130.44	attackspambots	$f2bV_matches	2020-09-25 08:00:23
106.12.13.20	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 95 - port: 18475 proto: tcp cat: Misc Attackbytes: 60	2020-09-24 03:24:15
106.12.133.38	attack	Brute-force attempt banned	2020-09-22 03:39:36
106.12.133.38	attackbotsspam	SSH Bruteforce Attempt on Honeypot	2020-09-21 19:26:36
106.12.133.38	attackspambots	Sep 20 13:57:07 logopedia-1vcpu-1gb-nyc1-01 sshd[442802]: Failed password for root from 106.12.133.38 port 36926 ssh2 ...	2020-09-21 00:57:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.13.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17900
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.13.138.			IN	A

;; AUTHORITY SECTION:
.			520	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092001 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 21 06:30:56 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 138.13.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.13.12.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
111.203.19.4	attackbots	unauthorized connection attempt	2020-02-26 13:37:17
5.134.195.143	attackspam	unauthorized connection attempt	2020-02-26 13:41:39
79.139.83.5	attack	unauthorized connection attempt	2020-02-26 13:20:15
95.52.152.204	attackbots	unauthorized connection attempt	2020-02-26 13:39:31
120.243.37.147	attackspambots	unauthorized connection attempt	2020-02-26 13:47:37
95.242.143.40	attack	unauthorized connection attempt	2020-02-26 13:39:07
88.100.30.7	attackbots	unauthorized connection attempt	2020-02-26 13:56:12
189.18.210.170	attackbotsspam	unauthorized connection attempt	2020-02-26 13:27:05
112.186.132.19	attackspambots	unauthorized connection attempt	2020-02-26 13:48:42
171.221.200.49	attack	unauthorized connection attempt	2020-02-26 13:46:16
47.96.91.14	attack	unauthorized connection attempt	2020-02-26 13:22:59
116.106.28.91	attackbots	unauthorized connection attempt	2020-02-26 13:36:36
188.27.242.210	attackspam	unauthorized connection attempt	2020-02-26 13:44:06
114.33.19.32	attackspambots	unauthorized connection attempt	2020-02-26 13:36:50
154.65.196.144	attack	unauthorized connection attempt	2020-02-26 13:29:18

最近上报的IP列表

45.114.68.142	170.82.189.255	94.129.52.221	142.212.213.185
138.59.18.110	67.167.238.32	103.137.250.156	2.45.111.158
176.103.74.89	165.22.184.168	155.119.86.122	109.133.158.137
183.185.184.0	196.188.42.130	165.123.155.65	170.143.49.177
248.61.120.13	86.67.248.234	38.220.44.236	10.187.43.156