106.12.13.138 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Dec 13 01:12:10 localhost sshd\[23162\]: Invalid user eoff from 106.12.13.138 Dec 13 01:12:10 localhost sshd\[23162\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Dec 13 01:12:12 localhost sshd\[23162\]: Failed password for invalid user eoff from 106.12.13.138 port 40044 ssh2 Dec 13 01:17:40 localhost sshd\[23389\]: Invalid user okechukwu from 106.12.13.138 Dec 13 01:17:40 localhost sshd\[23389\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 ...	2019-12-13 09:04:16
attackspam	2019-12-08T08:52:29.851950scmdmz1 sshd\[21423\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 user=root 2019-12-08T08:52:31.819747scmdmz1 sshd\[21423\]: Failed password for root from 106.12.13.138 port 35966 ssh2 2019-12-08T08:58:28.148902scmdmz1 sshd\[22044\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 user=root ...	2019-12-08 16:19:48
attackspam	Dec 3 17:25:10 linuxvps sshd\[63730\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 user=root Dec 3 17:25:12 linuxvps sshd\[63730\]: Failed password for root from 106.12.13.138 port 40986 ssh2 Dec 3 17:32:00 linuxvps sshd\[2582\]: Invalid user alan from 106.12.13.138 Dec 3 17:32:00 linuxvps sshd\[2582\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Dec 3 17:32:02 linuxvps sshd\[2582\]: Failed password for invalid user alan from 106.12.13.138 port 50022 ssh2	2019-12-04 06:46:08
attack	Nov 7 21:25:12 auw2 sshd\[28592\]: Invalid user radiusd from 106.12.13.138 Nov 7 21:25:12 auw2 sshd\[28592\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Nov 7 21:25:14 auw2 sshd\[28592\]: Failed password for invalid user radiusd from 106.12.13.138 port 38936 ssh2 Nov 7 21:29:51 auw2 sshd\[28990\]: Invalid user deploy from 106.12.13.138 Nov 7 21:29:51 auw2 sshd\[28990\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138	2019-11-08 20:06:07
attack	Nov 6 23:55:17 web9 sshd\[9869\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 user=root Nov 6 23:55:18 web9 sshd\[9869\]: Failed password for root from 106.12.13.138 port 37068 ssh2 Nov 7 00:01:34 web9 sshd\[10678\]: Invalid user nagios from 106.12.13.138 Nov 7 00:01:34 web9 sshd\[10678\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Nov 7 00:01:36 web9 sshd\[10678\]: Failed password for invalid user nagios from 106.12.13.138 port 44890 ssh2	2019-11-07 18:20:55
attack	Nov 4 08:26:00 dallas01 sshd[16768]: Failed password for root from 106.12.13.138 port 35758 ssh2 Nov 4 08:32:04 dallas01 sshd[17922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Nov 4 08:32:07 dallas01 sshd[17922]: Failed password for invalid user alex from 106.12.13.138 port 43036 ssh2	2019-11-05 01:49:36
attackspam	Oct 29 17:39:57 DAAP sshd[12054]: Invalid user brunol from 106.12.13.138 port 45960 Oct 29 17:39:57 DAAP sshd[12054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Oct 29 17:39:57 DAAP sshd[12054]: Invalid user brunol from 106.12.13.138 port 45960 Oct 29 17:39:59 DAAP sshd[12054]: Failed password for invalid user brunol from 106.12.13.138 port 45960 ssh2 Oct 29 17:44:37 DAAP sshd[12120]: Invalid user admin from 106.12.13.138 port 54722 ...	2019-10-30 02:18:14
attackbots	Failed password for invalid user RolandGarros-123 from 106.12.13.138 port 55826 ssh2 Invalid user P@$$word13 from 106.12.13.138 port 35132 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Failed password for invalid user P@$$word13 from 106.12.13.138 port 35132 ssh2 Invalid user keiv123 from 106.12.13.138 port 42670 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138	2019-10-26 04:38:39
attack	Oct 19 06:57:12 www sshd\[32378\]: Invalid user ible from 106.12.13.138 Oct 19 06:57:12 www sshd\[32378\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Oct 19 06:57:14 www sshd\[32378\]: Failed password for invalid user ible from 106.12.13.138 port 41092 ssh2 ...	2019-10-19 12:59:50
attack	2019-10-15T05:25:21.679564abusebot-4.cloudsearch.cf sshd\[27546\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 user=root	2019-10-15 17:40:28
attackbotsspam	Oct 9 09:01:10 plusreed sshd[26502]: Invalid user Wachtwoord1@1 from 106.12.13.138 ...	2019-10-09 22:43:50
attackspambots	$f2bV_matches	2019-10-08 19:31:14
attack	Oct 7 07:53:12 MK-Soft-VM7 sshd[9384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Oct 7 07:53:14 MK-Soft-VM7 sshd[9384]: Failed password for invalid user Leonard from 106.12.13.138 port 51574 ssh2 ...	2019-10-07 17:00:31
attackspambots	Sep 24 10:41:39 mail sshd\[9800\]: Invalid user test5 from 106.12.13.138 port 56402 Sep 24 10:41:39 mail sshd\[9800\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Sep 24 10:41:41 mail sshd\[9800\]: Failed password for invalid user test5 from 106.12.13.138 port 56402 ssh2 Sep 24 10:46:52 mail sshd\[10537\]: Invalid user dg from 106.12.13.138 port 39572 Sep 24 10:46:52 mail sshd\[10537\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138	2019-09-24 17:06:15
attack	2019-09-23T06:36:29.610915abusebot-4.cloudsearch.cf sshd\[25756\]: Invalid user test from 106.12.13.138 port 58532	2019-09-23 14:59:44
attack	Sep 20 12:09:56 hiderm sshd\[10899\]: Invalid user dnsadrc from 106.12.13.138 Sep 20 12:09:56 hiderm sshd\[10899\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Sep 20 12:09:58 hiderm sshd\[10899\]: Failed password for invalid user dnsadrc from 106.12.13.138 port 33062 ssh2 Sep 20 12:13:43 hiderm sshd\[11262\]: Invalid user oracle from 106.12.13.138 Sep 20 12:13:43 hiderm sshd\[11262\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138	2019-09-21 06:30:59

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.132.224	attackspam	pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.132.224 Failed password for invalid user ekim from 106.12.132.224 port 52754 ssh2 Failed password for root from 106.12.132.224 port 36956 ssh2	2020-10-13 00:57:56
106.12.132.224	attackspam	Oct 12 10:14:25 abendstille sshd\[30630\]: Invalid user yoneyama from 106.12.132.224 Oct 12 10:14:25 abendstille sshd\[30630\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.132.224 Oct 12 10:14:27 abendstille sshd\[30630\]: Failed password for invalid user yoneyama from 106.12.132.224 port 39144 ssh2 Oct 12 10:18:24 abendstille sshd\[3001\]: Invalid user briacheslav from 106.12.132.224 Oct 12 10:18:24 abendstille sshd\[3001\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.132.224 ...	2020-10-12 16:21:33
106.12.130.44	attackspambots	Oct 12 03:55:17 santamaria sshd\[6269\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.130.44 user=root Oct 12 03:55:19 santamaria sshd\[6269\]: Failed password for root from 106.12.130.44 port 59464 ssh2 Oct 12 03:59:04 santamaria sshd\[6322\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.130.44 user=root ...	2020-10-12 12:10:58
106.12.133.225	attack	(sshd) Failed SSH login from 106.12.133.225 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 10 12:31:56 server5 sshd[22095]: Invalid user test from 106.12.133.225 Oct 10 12:31:56 server5 sshd[22095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.133.225 Oct 10 12:31:58 server5 sshd[22095]: Failed password for invalid user test from 106.12.133.225 port 58176 ssh2 Oct 10 12:47:16 server5 sshd[28926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.133.225 user=root Oct 10 12:47:18 server5 sshd[28926]: Failed password for root from 106.12.133.225 port 58396 ssh2	2020-10-11 01:23:34
106.12.133.225	attack	Oct 10 06:20:09 scw-gallant-ride sshd[27935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.133.225	2020-10-10 17:16:20
106.12.138.72	attack	Sep 28 10:46:38 XXX sshd[60152]: Invalid user 51.254.2.202 from 106.12.138.72 port 52994	2020-09-30 05:02:21
106.12.138.72	attackspam	Sep 28 10:46:38 XXX sshd[60152]: Invalid user 51.254.2.202 from 106.12.138.72 port 52994	2020-09-29 21:10:51
106.12.138.72	attackspam	Sep 28 10:46:38 XXX sshd[60152]: Invalid user 51.254.2.202 from 106.12.138.72 port 52994	2020-09-29 13:24:31
106.12.133.225	attackspam	Sep 27 18:18:52 roki sshd[310]: Invalid user soporte from 106.12.133.225 Sep 27 18:18:52 roki sshd[310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.133.225 Sep 27 18:18:54 roki sshd[310]: Failed password for invalid user soporte from 106.12.133.225 port 37132 ssh2 Sep 27 18:28:04 roki sshd[1030]: Invalid user colin from 106.12.133.225 Sep 27 18:28:04 roki sshd[1030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.133.225 ...	2020-09-28 03:29:21
106.12.133.225	attackspambots	Sep 27 13:39:14 santamaria sshd\[27856\]: Invalid user shun from 106.12.133.225 Sep 27 13:39:14 santamaria sshd\[27856\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.133.225 Sep 27 13:39:16 santamaria sshd\[27856\]: Failed password for invalid user shun from 106.12.133.225 port 36374 ssh2 ...	2020-09-27 19:40:23
106.12.130.44	attackspambots	$f2bV_matches	2020-09-25 08:00:23
106.12.13.20	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 95 - port: 18475 proto: tcp cat: Misc Attackbytes: 60	2020-09-24 03:24:15
106.12.133.38	attack	Brute-force attempt banned	2020-09-22 03:39:36
106.12.133.38	attackbotsspam	SSH Bruteforce Attempt on Honeypot	2020-09-21 19:26:36
106.12.133.38	attackspambots	Sep 20 13:57:07 logopedia-1vcpu-1gb-nyc1-01 sshd[442802]: Failed password for root from 106.12.133.38 port 36926 ssh2 ...	2020-09-21 00:57:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.13.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17900
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.13.138.			IN	A

;; AUTHORITY SECTION:
.			520	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092001 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 21 06:30:56 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 138.13.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.13.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
154.8.151.45	attackbots	Aug 16 22:16:16 josie sshd[25930]: Invalid user anton from 154.8.151.45 Aug 16 22:16:16 josie sshd[25930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.151.45 Aug 16 22:16:17 josie sshd[25930]: Failed password for invalid user anton from 154.8.151.45 port 9996 ssh2 Aug 16 22:16:17 josie sshd[25931]: Received disconnect from 154.8.151.45: 11: Bye Bye Aug 16 22:23:05 josie sshd[27456]: Invalid user new from 154.8.151.45 Aug 16 22:23:05 josie sshd[27456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.151.45 Aug 16 22:23:07 josie sshd[27456]: Failed password for invalid user new from 154.8.151.45 port 28377 ssh2 Aug 16 22:23:07 josie sshd[27457]: Received disconnect from 154.8.151.45: 11: Bye Bye Aug 16 22:25:45 josie sshd[28095]: Invalid user shoutcast from 154.8.151.45 Aug 16 22:25:45 josie sshd[28095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=s........ -------------------------------	2020-08-19 19:02:46
159.89.49.139	attackbots	Aug 19 12:48:28 jane sshd[11391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.49.139 Aug 19 12:48:29 jane sshd[11391]: Failed password for invalid user superadmin from 159.89.49.139 port 43418 ssh2 ...	2020-08-19 18:50:18
106.13.189.158	attackspambots	Invalid user infa from 106.13.189.158 port 49628	2020-08-19 18:46:52
144.76.186.38	attack	20 attempts against mh-misbehave-ban on tree	2020-08-19 18:42:16
51.68.44.13	attack	Aug 19 12:37:48 server sshd[12843]: Failed password for invalid user olx from 51.68.44.13 port 42442 ssh2 Aug 19 12:44:18 server sshd[16016]: Failed password for root from 51.68.44.13 port 47646 ssh2 Aug 19 12:48:21 server sshd[17776]: Failed password for invalid user jasmin from 51.68.44.13 port 54394 ssh2	2020-08-19 18:50:45
42.200.80.42	attackbots	Aug 19 05:52:25 jumpserver sshd[211693]: Failed password for invalid user info from 42.200.80.42 port 56272 ssh2 Aug 19 05:55:30 jumpserver sshd[211724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.80.42 user=root Aug 19 05:55:31 jumpserver sshd[211724]: Failed password for root from 42.200.80.42 port 52272 ssh2 ...	2020-08-19 19:10:12
198.12.250.168	attackbots	HTTP DDOS	2020-08-19 18:41:06
37.153.138.206	attackbots	Aug 18 20:21:11 php1 sshd\[10526\]: Invalid user rene from 37.153.138.206 Aug 18 20:21:11 php1 sshd\[10526\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.153.138.206 Aug 18 20:21:12 php1 sshd\[10526\]: Failed password for invalid user rene from 37.153.138.206 port 57164 ssh2 Aug 18 20:25:16 php1 sshd\[10891\]: Invalid user ts from 37.153.138.206 Aug 18 20:25:16 php1 sshd\[10891\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.153.138.206	2020-08-19 19:03:16
97.74.24.218	attackbotsspam	Automatic report - XMLRPC Attack	2020-08-19 18:37:55
183.82.34.246	attackbotsspam	Aug 19 12:18:12 fhem-rasp sshd[7548]: Invalid user guo from 183.82.34.246 port 55188 ...	2020-08-19 18:43:33
181.114.208.178	attackbotsspam	Autoban 181.114.208.178 AUTH/CONNECT	2020-08-19 18:44:39
193.77.65.237	attack	Aug 19 06:28:26 Tower sshd[24948]: Connection from 193.77.65.237 port 10781 on 192.168.10.220 port 22 rdomain "" Aug 19 06:28:27 Tower sshd[24948]: Failed password for root from 193.77.65.237 port 10781 ssh2 Aug 19 06:28:28 Tower sshd[24948]: Received disconnect from 193.77.65.237 port 10781:11: Bye Bye [preauth] Aug 19 06:28:28 Tower sshd[24948]: Disconnected from authenticating user root 193.77.65.237 port 10781 [preauth]	2020-08-19 18:41:29
72.129.166.218	attackspambots	Invalid user nj from 72.129.166.218 port 64968	2020-08-19 19:08:59
132.148.28.20	attackbotsspam	132.148.28.20 - - [19/Aug/2020:10:16:36 +0100] "POST /wp-login.php HTTP/1.1" 200 2106 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.28.20 - - [19/Aug/2020:10:16:37 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.28.20 - - [19/Aug/2020:10:16:44 +0100] "POST /wp-login.php HTTP/1.1" 200 2305 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-19 18:38:59
98.159.99.217	attack	Brute force attempt	2020-08-19 18:53:37

最近上报的IP列表

45.114.68.142	170.82.189.255	94.129.52.221	142.212.213.185
138.59.18.110	67.167.238.32	103.137.250.156	2.45.111.158
176.103.74.89	165.22.184.168	155.119.86.122	109.133.158.137
183.185.184.0	196.188.42.130	165.123.155.65	170.143.49.177
248.61.120.13	86.67.248.234	38.220.44.236	10.187.43.156