106.12.137.55 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Dec 25 23:49:20 vpn01 sshd[20541]: Failed password for root from 106.12.137.55 port 40710 ssh2 ...	2019-12-26 08:38:38
attackbotsspam	Dec 14 07:58:33 [host] sshd[7069]: Invalid user viriya from 106.12.137.55 Dec 14 07:58:33 [host] sshd[7069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.55 Dec 14 07:58:36 [host] sshd[7069]: Failed password for invalid user viriya from 106.12.137.55 port 37250 ssh2	2019-12-14 20:54:00
attack	Dec 13 13:25:14 nextcloud sshd\[4910\]: Invalid user cmpir from 106.12.137.55 Dec 13 13:25:14 nextcloud sshd\[4910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.55 Dec 13 13:25:17 nextcloud sshd\[4910\]: Failed password for invalid user cmpir from 106.12.137.55 port 55380 ssh2 ...	2019-12-13 20:30:55
attackspam	Dec 5 13:26:10 v22018086721571380 sshd[19932]: Failed password for invalid user oudermeulen from 106.12.137.55 port 54476 ssh2 Dec 5 14:30:59 v22018086721571380 sshd[24523]: Failed password for invalid user zxzczvg from 106.12.137.55 port 38472 ssh2	2019-12-05 21:50:01
attackspambots	Dec 4 04:49:24 venus sshd\[29203\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.55 user=news Dec 4 04:49:25 venus sshd\[29203\]: Failed password for news from 106.12.137.55 port 54308 ssh2 Dec 4 04:58:06 venus sshd\[29471\]: Invalid user home from 106.12.137.55 port 33980 ...	2019-12-04 13:00:29
attack	Nov 30 09:22:35 sso sshd[12235]: Failed password for root from 106.12.137.55 port 50230 ssh2 ...	2019-11-30 16:51:17
attack	Automatic report - Banned IP Access	2019-11-29 06:48:55
attack	Nov 25 10:15:47 sd-53420 sshd\[14889\]: Invalid user admin from 106.12.137.55 Nov 25 10:15:47 sd-53420 sshd\[14889\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.55 Nov 25 10:15:49 sd-53420 sshd\[14889\]: Failed password for invalid user admin from 106.12.137.55 port 34102 ssh2 Nov 25 10:20:14 sd-53420 sshd\[15617\]: Invalid user gilemette from 106.12.137.55 Nov 25 10:20:14 sd-53420 sshd\[15617\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.55 ...	2019-11-25 20:46:52
attackspambots	Nov 17 16:44:31 nextcloud sshd\[15986\]: Invalid user hambone from 106.12.137.55 Nov 17 16:44:31 nextcloud sshd\[15986\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.55 Nov 17 16:44:33 nextcloud sshd\[15986\]: Failed password for invalid user hambone from 106.12.137.55 port 48344 ssh2 ...	2019-11-18 00:33:54
attackspambots	Nov 11 06:23:32 srv01 sshd[17523]: Invalid user hendriks from 106.12.137.55 Nov 11 06:23:32 srv01 sshd[17523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.55 Nov 11 06:23:32 srv01 sshd[17523]: Invalid user hendriks from 106.12.137.55 Nov 11 06:23:34 srv01 sshd[17523]: Failed password for invalid user hendriks from 106.12.137.55 port 38794 ssh2 Nov 11 06:28:36 srv01 sshd[18412]: Invalid user nakatsuka from 106.12.137.55 ...	2019-11-11 13:33:56
attack	Nov 5 23:52:48 TORMINT sshd\[32025\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.55 user=root Nov 5 23:52:50 TORMINT sshd\[32025\]: Failed password for root from 106.12.137.55 port 40980 ssh2 Nov 5 23:58:01 TORMINT sshd\[32243\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.55 user=root ...	2019-11-06 13:07:43
attackspam	Oct 30 13:33:08 localhost sshd\[18590\]: Invalid user minna from 106.12.137.55 Oct 30 13:33:08 localhost sshd\[18590\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.55 Oct 30 13:33:10 localhost sshd\[18590\]: Failed password for invalid user minna from 106.12.137.55 port 45004 ssh2 Oct 30 13:39:05 localhost sshd\[18949\]: Invalid user admin from 106.12.137.55 Oct 30 13:39:05 localhost sshd\[18949\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.55 ...	2019-10-31 04:26:50
attackspam	Lines containing failures of 106.12.137.55 Oct 18 01:51:54 smtp-out sshd[7785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.55 user=r.r Oct 18 01:51:55 smtp-out sshd[7785]: Failed password for r.r from 106.12.137.55 port 36194 ssh2 Oct 18 01:51:56 smtp-out sshd[7785]: Received disconnect from 106.12.137.55 port 36194:11: Bye Bye [preauth] Oct 18 01:51:56 smtp-out sshd[7785]: Disconnected from authenticating user r.r 106.12.137.55 port 36194 [preauth] Oct 18 02:10:18 smtp-out sshd[8466]: Invalid user nfvip from 106.12.137.55 port 56826 Oct 18 02:10:18 smtp-out sshd[8466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.55 Oct 18 02:10:19 smtp-out sshd[8466]: Failed password for invalid user nfvip from 106.12.137.55 port 56826 ssh2 Oct 18 02:10:19 smtp-out sshd[8466]: Received disconnect from 106.12.137.55 port 56826:11: Bye Bye [preauth] Oct 18 02:10:19 smtp-out ssh........ ------------------------------	2019-10-18 15:19:50

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.137.46	attackbots	Invalid user iww from 106.12.137.46 port 47568	2020-05-23 12:24:41
106.12.137.46	attack	May 21 23:29:57 santamaria sshd\[21696\]: Invalid user fin from 106.12.137.46 May 21 23:29:57 santamaria sshd\[21696\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.46 May 21 23:29:59 santamaria sshd\[21696\]: Failed password for invalid user fin from 106.12.137.46 port 50278 ssh2 ...	2020-05-22 06:17:12
106.12.137.1	attackspam	May 20 20:20:09 web1 sshd\[2468\]: Invalid user wgo from 106.12.137.1 May 20 20:20:09 web1 sshd\[2468\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.1 May 20 20:20:11 web1 sshd\[2468\]: Failed password for invalid user wgo from 106.12.137.1 port 35692 ssh2 May 20 20:24:43 web1 sshd\[2844\]: Invalid user oba from 106.12.137.1 May 20 20:24:43 web1 sshd\[2844\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.1	2020-05-21 14:27:21
106.12.137.46	attackspambots	2020-04-29T04:38:35.221791abusebot-5.cloudsearch.cf sshd[13642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.46 user=root 2020-04-29T04:38:36.816331abusebot-5.cloudsearch.cf sshd[13642]: Failed password for root from 106.12.137.46 port 44302 ssh2 2020-04-29T04:42:08.647851abusebot-5.cloudsearch.cf sshd[13691]: Invalid user Justin from 106.12.137.46 port 58962 2020-04-29T04:42:08.654313abusebot-5.cloudsearch.cf sshd[13691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.46 2020-04-29T04:42:08.647851abusebot-5.cloudsearch.cf sshd[13691]: Invalid user Justin from 106.12.137.46 port 58962 2020-04-29T04:42:10.158161abusebot-5.cloudsearch.cf sshd[13691]: Failed password for invalid user Justin from 106.12.137.46 port 58962 ssh2 2020-04-29T04:45:49.859745abusebot-5.cloudsearch.cf sshd[13695]: Invalid user kwinfo from 106.12.137.46 port 45390 ...	2020-04-29 13:19:22
106.12.137.226	attack	Apr 21 20:43:27 server4-pi sshd[28636]: Failed password for root from 106.12.137.226 port 37650 ssh2 Apr 21 20:47:14 server4-pi sshd[29826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.226	2020-04-22 07:27:03
106.12.137.1	attack	invalid login attempt (it)	2020-04-22 06:36:07
106.12.137.1	attackbots	Apr 20 21:56:13 ncomp sshd[31110]: Invalid user v from 106.12.137.1 Apr 20 21:56:13 ncomp sshd[31110]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.1 Apr 20 21:56:13 ncomp sshd[31110]: Invalid user v from 106.12.137.1 Apr 20 21:56:14 ncomp sshd[31110]: Failed password for invalid user v from 106.12.137.1 port 38980 ssh2	2020-04-21 05:33:32
106.12.137.226	attackbots	distributed sshd attacks	2020-04-17 14:45:26
106.12.137.46	attackspambots	Apr 15 01:04:13 ns381471 sshd[1816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.46 Apr 15 01:04:16 ns381471 sshd[1816]: Failed password for invalid user astr from 106.12.137.46 port 48418 ssh2	2020-04-15 07:45:21
106.12.137.1	attack	2020-04-06T04:18:19.496754shield sshd\[21493\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.1 user=root 2020-04-06T04:18:21.539837shield sshd\[21493\]: Failed password for root from 106.12.137.1 port 43448 ssh2 2020-04-06T04:20:30.338104shield sshd\[21927\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.1 user=root 2020-04-06T04:20:32.366529shield sshd\[21927\]: Failed password for root from 106.12.137.1 port 44942 ssh2 2020-04-06T04:22:40.834119shield sshd\[22445\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.1 user=root	2020-04-06 16:52:54
106.12.137.1	attack	2020-04-02T15:51:59.429356linuxbox-skyline sshd[7052]: Invalid user jayheo from 106.12.137.1 port 52188 ...	2020-04-03 06:51:59
106.12.137.46	attackbots	2020-03-20T22:30:52.230451shield sshd\[30053\]: Invalid user zo from 106.12.137.46 port 50884 2020-03-20T22:30:52.237766shield sshd\[30053\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.46 2020-03-20T22:30:54.909915shield sshd\[30053\]: Failed password for invalid user zo from 106.12.137.46 port 50884 ssh2 2020-03-20T22:32:20.973568shield sshd\[30462\]: Invalid user 01 from 106.12.137.46 port 45592 2020-03-20T22:32:20.982035shield sshd\[30462\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.46	2020-03-21 08:53:01
106.12.137.1	attackspambots	[MK-VM2] Blocked by UFW	2020-03-17 02:47:24
106.12.137.1	attackspambots	Mar 13 07:08:21 santamaria sshd\[32291\]: Invalid user plexuser from 106.12.137.1 Mar 13 07:08:21 santamaria sshd\[32291\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.1 Mar 13 07:08:22 santamaria sshd\[32291\]: Failed password for invalid user plexuser from 106.12.137.1 port 50482 ssh2 ...	2020-03-13 15:00:43
106.12.137.226	attackspambots	Unauthorized connection attempt detected from IP address 106.12.137.226 to port 2220 [J]	2020-01-29 05:17:20

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.137.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38399
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.137.55.			IN	A

;; AUTHORITY SECTION:
.			592	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101800 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 18 15:19:47 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 55.137.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 55.137.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
134.175.28.62	attackbots	Sep 14 14:30:36 jane sshd[11478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.28.62 Sep 14 14:30:39 jane sshd[11478]: Failed password for invalid user cal from 134.175.28.62 port 54244 ssh2 ...	2020-09-15 00:21:46
211.144.69.249	attackspam	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-09-15 00:06:04
89.248.168.217	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 75 - port: 16000 proto: udp cat: Misc Attackbytes: 71	2020-09-15 00:17:06
104.198.157.73	attack	Port Scan: TCP/80	2020-09-15 00:30:11
211.253.24.250	attack	2020-09-14T17:54:53.777764hostname sshd[14973]: Invalid user rizon from 211.253.24.250 port 59601 2020-09-14T17:54:55.991578hostname sshd[14973]: Failed password for invalid user rizon from 211.253.24.250 port 59601 ssh2 2020-09-14T18:00:58.407565hostname sshd[16990]: Invalid user nginx from 211.253.24.250 port 59710 ...	2020-09-15 00:07:05
50.246.53.29	attackspam	Invalid user admin from 50.246.53.29 port 46224	2020-09-15 00:22:38
114.69.249.194	attackspam	Sep 14 13:09:43 scw-6657dc sshd[11740]: Failed password for root from 114.69.249.194 port 49730 ssh2 Sep 14 13:09:43 scw-6657dc sshd[11740]: Failed password for root from 114.69.249.194 port 49730 ssh2 Sep 14 13:17:09 scw-6657dc sshd[11980]: Invalid user administrador from 114.69.249.194 port 50904 ...	2020-09-15 00:04:39
193.29.15.132	attack	2020-09-13 19:18:53.016041-0500 localhost screensharingd[16681]: Authentication: FAILED :: User Name: N/A :: Viewer Address: 193.29.15.132 :: Type: VNC DES	2020-09-15 00:13:16
193.29.15.115	attack	2020-09-13 19:27:13.545907-0500 localhost screensharingd[17292]: Authentication: FAILED :: User Name: N/A :: Viewer Address: 193.29.15.115 :: Type: VNC DES	2020-09-15 00:13:47
193.29.15.91	attackbotsspam	2020-09-13 19:22:22.899429-0500 localhost screensharingd[16789]: Authentication: FAILED :: User Name: N/A :: Viewer Address: 193.29.15.91 :: Type: VNC DES	2020-09-15 00:08:53
176.31.31.185	attack	(sshd) Failed SSH login from 176.31.31.185 (FR/France/Provence-Alpes-CÃ´te dAzur/La Ciotat/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 14 09:57:10 atlas sshd[11826]: Invalid user arma from 176.31.31.185 port 45895 Sep 14 09:57:11 atlas sshd[11826]: Failed password for invalid user arma from 176.31.31.185 port 45895 ssh2 Sep 14 10:02:15 atlas sshd[13587]: Invalid user sharona from 176.31.31.185 port 57915 Sep 14 10:02:17 atlas sshd[13587]: Failed password for invalid user sharona from 176.31.31.185 port 57915 ssh2 Sep 14 10:06:23 atlas sshd[14761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.31.185 user=root	2020-09-15 00:23:46
185.164.138.21	attackspambots	2020-09-14T15:48:35.960691hostname sshd[67060]: Invalid user testftp from 185.164.138.21 port 58432 ...	2020-09-15 00:19:54
156.54.102.1	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-14T10:04:22Z and 2020-09-14T10:18:28Z	2020-09-15 00:08:01
110.49.71.245	attack	Sep 14 16:35:18 h2646465 sshd[15702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.71.245 user=root Sep 14 16:35:20 h2646465 sshd[15702]: Failed password for root from 110.49.71.245 port 34722 ssh2 Sep 14 16:37:59 h2646465 sshd[15785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.71.245 user=root Sep 14 16:38:01 h2646465 sshd[15785]: Failed password for root from 110.49.71.245 port 51900 ssh2 Sep 14 16:38:12 h2646465 sshd[15810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.71.245 user=root Sep 14 16:38:14 h2646465 sshd[15810]: Failed password for root from 110.49.71.245 port 12616 ssh2 Sep 14 16:41:50 h2646465 sshd[16450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.71.245 user=root Sep 14 16:41:52 h2646465 sshd[16450]: Failed password for root from 110.49.71.245 port 30607 ssh2 Sep 14 16:45:51 h2646465 ssh	2020-09-15 00:06:41
85.248.227.163	attackspambots	Trolling for resource vulnerabilities	2020-09-15 00:44:32

最近上报的IP列表

172.105.86.192	118.20.53.162	241.117.254.106	184.226.232.52
218.86.124.102	168.214.94.207	127.112.54.12	160.159.16.126
179.207.54.25	15.199.140.126	112.80.178.14	129.161.252.51
253.177.133.66	112.35.9.247	60.190.252.21	13.237.85.49
210.117.183.125	165.22.234.155	89.106.236.46	191.125.158.26