106.12.139.138

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Invalid user admin from 106.12.139.138 port 43886	2020-04-18 07:50:28
attack	k+ssh-bruteforce	2020-04-07 06:38:19
attackspambots	SSH bruteforce (Triggered fail2ban)	2020-04-05 19:27:44

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.139.137	attackspambots	May 22 08:07:45 vps687878 sshd\[26039\]: Failed password for invalid user bjr from 106.12.139.137 port 46258 ssh2 May 22 08:09:38 vps687878 sshd\[26255\]: Invalid user vwc from 106.12.139.137 port 42516 May 22 08:09:38 vps687878 sshd\[26255\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.137 May 22 08:09:40 vps687878 sshd\[26255\]: Failed password for invalid user vwc from 106.12.139.137 port 42516 ssh2 May 22 08:11:35 vps687878 sshd\[26623\]: Invalid user lijingping from 106.12.139.137 port 38784 May 22 08:11:35 vps687878 sshd\[26623\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.137 ...	2020-05-22 17:12:36
106.12.139.149	attack	$f2bV_matches	2020-05-15 00:58:13
106.12.139.149	attack	2020-05-14T07:11:13.569671 sshd[4146]: Invalid user user2 from 106.12.139.149 port 35314 2020-05-14T07:11:13.585700 sshd[4146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.149 2020-05-14T07:11:13.569671 sshd[4146]: Invalid user user2 from 106.12.139.149 port 35314 2020-05-14T07:11:15.541463 sshd[4146]: Failed password for invalid user user2 from 106.12.139.149 port 35314 ssh2 ...	2020-05-14 14:24:41
106.12.139.149	attackspambots	$f2bV_matches	2020-05-11 17:35:45
106.12.139.137	attackspam	May 10 00:45:44 firewall sshd[13763]: Failed password for invalid user userftp from 106.12.139.137 port 42066 ssh2 May 10 00:47:16 firewall sshd[13800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.137 user=root May 10 00:47:18 firewall sshd[13800]: Failed password for root from 106.12.139.137 port 34058 ssh2 ...	2020-05-10 19:15:06
106.12.139.137	attackbotsspam	May 6 06:54:03 server sshd[27768]: Failed password for invalid user fgs from 106.12.139.137 port 58358 ssh2 May 6 06:57:01 server sshd[27935]: Failed password for invalid user root1 from 106.12.139.137 port 39836 ssh2 May 6 06:59:56 server sshd[28070]: Failed password for invalid user nagios from 106.12.139.137 port 49560 ssh2	2020-05-06 15:05:33
106.12.139.149	attack	Apr 28 05:38:59 v22018086721571380 sshd[12824]: Failed password for invalid user sridhar from 106.12.139.149 port 52636 ssh2	2020-04-28 12:03:00
106.12.139.137	attackspambots	Apr 21 15:11:37 pve1 sshd[12234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.137 Apr 21 15:11:39 pve1 sshd[12234]: Failed password for invalid user mysql from 106.12.139.137 port 34914 ssh2 ...	2020-04-21 22:24:46
106.12.139.149	attackbotsspam	Invalid user admin from 106.12.139.149 port 55384	2020-04-15 12:05:14
106.12.139.149	attack	Apr 10 16:23:40 webhost01 sshd[16562]: Failed password for root from 106.12.139.149 port 35014 ssh2 ...	2020-04-10 17:28:13
106.12.139.149	attack	$f2bV_matches	2020-04-08 08:41:58
106.12.139.137	attackspambots	Automatic report - SSH Brute-Force Attack	2020-04-03 16:35:24
106.12.139.137	attack	Invalid user liangbin from 106.12.139.137 port 33872	2020-04-03 06:25:00
106.12.139.149	attack	Apr 2 07:49:52 lukav-desktop sshd\[29814\]: Invalid user sc from 106.12.139.149 Apr 2 07:49:52 lukav-desktop sshd\[29814\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.149 Apr 2 07:49:54 lukav-desktop sshd\[29814\]: Failed password for invalid user sc from 106.12.139.149 port 43744 ssh2 Apr 2 07:53:23 lukav-desktop sshd\[30014\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.149 user=root Apr 2 07:53:25 lukav-desktop sshd\[30014\]: Failed password for root from 106.12.139.149 port 54526 ssh2	2020-04-02 18:54:35
106.12.139.149	attack	SSH bruteforce (Triggered fail2ban)	2020-03-28 03:43:55

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.139.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 526
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.139.138.			IN	A

;; AUTHORITY SECTION:
.			524	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040500 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 05 19:27:40 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 138.139.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.139.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
185.143.72.34	attackbotsspam	Jul 10 16:48:49 srv01 postfix/smtpd\[28698\]: warning: unknown\[185.143.72.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 10 16:49:27 srv01 postfix/smtpd\[28698\]: warning: unknown\[185.143.72.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 10 16:50:05 srv01 postfix/smtpd\[22008\]: warning: unknown\[185.143.72.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 10 16:50:42 srv01 postfix/smtpd\[8480\]: warning: unknown\[185.143.72.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 10 16:51:18 srv01 postfix/smtpd\[22008\]: warning: unknown\[185.143.72.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-10 23:01:38
143.255.5.31	attack	failed_logins	2020-07-10 22:30:06
222.113.191.34	attackspam	port scan and connect, tcp 23 (telnet)	2020-07-10 22:40:14
222.186.175.217	attack	Jul 10 16:24:46 server sshd[3209]: Failed none for root from 222.186.175.217 port 15872 ssh2 Jul 10 16:24:48 server sshd[3209]: Failed password for root from 222.186.175.217 port 15872 ssh2 Jul 10 16:24:51 server sshd[3209]: Failed password for root from 222.186.175.217 port 15872 ssh2	2020-07-10 22:46:59
180.101.147.147	attack	SSH brutforce	2020-07-10 22:49:02
34.82.27.159	attackspambots	Jul 10 14:34:45 raspberrypi sshd[2955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.82.27.159 Jul 10 14:34:47 raspberrypi sshd[2955]: Failed password for invalid user hec from 34.82.27.159 port 44212 ssh2 ...	2020-07-10 22:18:53
208.64.64.68	attackspam	Automatic report - XMLRPC Attack	2020-07-10 22:44:27
77.40.123.115	attackbotsspam	2020-07-10T16:56:09.663097sd-86998 sshd[48218]: Invalid user sotokara from 77.40.123.115 port 36156 2020-07-10T16:56:09.670198sd-86998 sshd[48218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.40.123.115 2020-07-10T16:56:09.663097sd-86998 sshd[48218]: Invalid user sotokara from 77.40.123.115 port 36156 2020-07-10T16:56:11.631299sd-86998 sshd[48218]: Failed password for invalid user sotokara from 77.40.123.115 port 36156 ssh2 2020-07-10T16:59:27.641389sd-86998 sshd[48594]: Invalid user proxy from 77.40.123.115 port 46394 ...	2020-07-10 23:00:17
82.94.168.34	attackbots	ssh -- 2020-07-10 14:30:54 openssh -- 2020-07-10 14:30:54	2020-07-10 22:59:45
218.92.0.171	attackbotsspam	Jul 10 14:16:55 124388 sshd[25898]: Failed password for root from 218.92.0.171 port 18221 ssh2 Jul 10 14:16:59 124388 sshd[25898]: Failed password for root from 218.92.0.171 port 18221 ssh2 Jul 10 14:17:02 124388 sshd[25898]: Failed password for root from 218.92.0.171 port 18221 ssh2 Jul 10 14:17:06 124388 sshd[25898]: Failed password for root from 218.92.0.171 port 18221 ssh2 Jul 10 14:17:06 124388 sshd[25898]: error: maximum authentication attempts exceeded for root from 218.92.0.171 port 18221 ssh2 [preauth]	2020-07-10 22:36:11
157.230.53.57	attackbots	25765/tcp 31231/tcp 1378/tcp... [2020-06-21/07-10]60pkt,20pt.(tcp)	2020-07-10 22:27:43
118.24.33.38	attack	Jul 10 13:47:46 rush sshd[16008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.33.38 Jul 10 13:47:47 rush sshd[16008]: Failed password for invalid user jiachen from 118.24.33.38 port 50808 ssh2 Jul 10 13:51:03 rush sshd[16123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.33.38 ...	2020-07-10 22:52:39
222.186.175.216	attackspambots	2020-07-10T14:22:26.345739mail.csmailer.org sshd[9203]: Failed password for root from 222.186.175.216 port 48752 ssh2 2020-07-10T14:22:29.643372mail.csmailer.org sshd[9203]: Failed password for root from 222.186.175.216 port 48752 ssh2 2020-07-10T14:22:33.632151mail.csmailer.org sshd[9203]: Failed password for root from 222.186.175.216 port 48752 ssh2 2020-07-10T14:22:33.632587mail.csmailer.org sshd[9203]: error: maximum authentication attempts exceeded for root from 222.186.175.216 port 48752 ssh2 [preauth] 2020-07-10T14:22:33.632621mail.csmailer.org sshd[9203]: Disconnecting: Too many authentication failures [preauth] ...	2020-07-10 22:23:34
139.155.1.62	attackbotsspam	Jul 10 14:02:47 onepixel sshd[2125058]: Invalid user dywang from 139.155.1.62 port 53354 Jul 10 14:02:47 onepixel sshd[2125058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.1.62 Jul 10 14:02:47 onepixel sshd[2125058]: Invalid user dywang from 139.155.1.62 port 53354 Jul 10 14:02:49 onepixel sshd[2125058]: Failed password for invalid user dywang from 139.155.1.62 port 53354 ssh2 Jul 10 14:04:57 onepixel sshd[2126214]: Invalid user marisol from 139.155.1.62 port 49498	2020-07-10 22:58:18
200.169.6.206	attackspambots	Jul 10 15:14:49 lnxmysql61 sshd[10015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.169.6.206	2020-07-10 22:24:04

最近上报的IP列表

200.44.197.40	62.82.75.58	45.114.10.132	149.54.1.66
185.133.193.88	138.197.66.68	73.76.148.61	111.254.201.22
162.248.92.145	2a01:488:66:1000:5bfa:7184:0:1	27.78.105.228	177.185.93.89
110.44.124.141	122.51.194.23	219.146.73.5	172.69.68.220
45.249.92.62	87.195.244.111	192.144.230.158	185.238.160.30