106.12.139.138

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Invalid user admin from 106.12.139.138 port 43886	2020-04-18 07:50:28
attack	k+ssh-bruteforce	2020-04-07 06:38:19
attackspambots	SSH bruteforce (Triggered fail2ban)	2020-04-05 19:27:44

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.139.137	attackspambots	May 22 08:07:45 vps687878 sshd\[26039\]: Failed password for invalid user bjr from 106.12.139.137 port 46258 ssh2 May 22 08:09:38 vps687878 sshd\[26255\]: Invalid user vwc from 106.12.139.137 port 42516 May 22 08:09:38 vps687878 sshd\[26255\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.137 May 22 08:09:40 vps687878 sshd\[26255\]: Failed password for invalid user vwc from 106.12.139.137 port 42516 ssh2 May 22 08:11:35 vps687878 sshd\[26623\]: Invalid user lijingping from 106.12.139.137 port 38784 May 22 08:11:35 vps687878 sshd\[26623\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.137 ...	2020-05-22 17:12:36
106.12.139.149	attack	$f2bV_matches	2020-05-15 00:58:13
106.12.139.149	attack	2020-05-14T07:11:13.569671 sshd[4146]: Invalid user user2 from 106.12.139.149 port 35314 2020-05-14T07:11:13.585700 sshd[4146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.149 2020-05-14T07:11:13.569671 sshd[4146]: Invalid user user2 from 106.12.139.149 port 35314 2020-05-14T07:11:15.541463 sshd[4146]: Failed password for invalid user user2 from 106.12.139.149 port 35314 ssh2 ...	2020-05-14 14:24:41
106.12.139.149	attackspambots	$f2bV_matches	2020-05-11 17:35:45
106.12.139.137	attackspam	May 10 00:45:44 firewall sshd[13763]: Failed password for invalid user userftp from 106.12.139.137 port 42066 ssh2 May 10 00:47:16 firewall sshd[13800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.137 user=root May 10 00:47:18 firewall sshd[13800]: Failed password for root from 106.12.139.137 port 34058 ssh2 ...	2020-05-10 19:15:06
106.12.139.137	attackbotsspam	May 6 06:54:03 server sshd[27768]: Failed password for invalid user fgs from 106.12.139.137 port 58358 ssh2 May 6 06:57:01 server sshd[27935]: Failed password for invalid user root1 from 106.12.139.137 port 39836 ssh2 May 6 06:59:56 server sshd[28070]: Failed password for invalid user nagios from 106.12.139.137 port 49560 ssh2	2020-05-06 15:05:33
106.12.139.149	attack	Apr 28 05:38:59 v22018086721571380 sshd[12824]: Failed password for invalid user sridhar from 106.12.139.149 port 52636 ssh2	2020-04-28 12:03:00
106.12.139.137	attackspambots	Apr 21 15:11:37 pve1 sshd[12234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.137 Apr 21 15:11:39 pve1 sshd[12234]: Failed password for invalid user mysql from 106.12.139.137 port 34914 ssh2 ...	2020-04-21 22:24:46
106.12.139.149	attackbotsspam	Invalid user admin from 106.12.139.149 port 55384	2020-04-15 12:05:14
106.12.139.149	attack	Apr 10 16:23:40 webhost01 sshd[16562]: Failed password for root from 106.12.139.149 port 35014 ssh2 ...	2020-04-10 17:28:13
106.12.139.149	attack	$f2bV_matches	2020-04-08 08:41:58
106.12.139.137	attackspambots	Automatic report - SSH Brute-Force Attack	2020-04-03 16:35:24
106.12.139.137	attack	Invalid user liangbin from 106.12.139.137 port 33872	2020-04-03 06:25:00
106.12.139.149	attack	Apr 2 07:49:52 lukav-desktop sshd\[29814\]: Invalid user sc from 106.12.139.149 Apr 2 07:49:52 lukav-desktop sshd\[29814\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.149 Apr 2 07:49:54 lukav-desktop sshd\[29814\]: Failed password for invalid user sc from 106.12.139.149 port 43744 ssh2 Apr 2 07:53:23 lukav-desktop sshd\[30014\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.149 user=root Apr 2 07:53:25 lukav-desktop sshd\[30014\]: Failed password for root from 106.12.139.149 port 54526 ssh2	2020-04-02 18:54:35
106.12.139.149	attack	SSH bruteforce (Triggered fail2ban)	2020-03-28 03:43:55

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.139.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 526
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.139.138.			IN	A

;; AUTHORITY SECTION:
.			524	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040500 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 05 19:27:40 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 138.139.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.139.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
14.56.180.103	attackbots	$f2bV_matches	2020-03-14 04:07:08
118.25.195.244	attack	Invalid user prashant from 118.25.195.244 port 43638	2020-03-14 04:30:49
34.89.65.19	attackspam	CMS (WordPress or Joomla) login attempt.	2020-03-14 04:25:41
221.181.197.226	attackspambots	Mar 13 13:40:05 santamaria sshd\[5327\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.181.197.226 user=root Mar 13 13:40:08 santamaria sshd\[5327\]: Failed password for root from 221.181.197.226 port 35970 ssh2 Mar 13 13:44:26 santamaria sshd\[5353\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.181.197.226 user=root ...	2020-03-14 04:26:53
219.79.12.7	attackbots	Honeypot attack, port: 5555, PTR: n219079012007.netvigator.com.	2020-03-14 04:00:44
140.143.157.207	attackbots	Jan 4 16:54:51 pi sshd[4238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.157.207 Jan 4 16:54:54 pi sshd[4238]: Failed password for invalid user garg from 140.143.157.207 port 49904 ssh2	2020-03-14 03:49:58
93.171.171.74	attack	1584103488 - 03/13/2020 13:44:48 Host: 93.171.171.74/93.171.171.74 Port: 445 TCP Blocked	2020-03-14 03:51:06
42.104.97.228	attack	SSH Brute Force	2020-03-14 03:45:27
200.70.56.204	attackbotsspam	2020-03-13T17:00:18.254182 sshd[14612]: Invalid user openvpn_as from 200.70.56.204 port 48856 2020-03-13T17:00:18.268268 sshd[14612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.70.56.204 2020-03-13T17:00:18.254182 sshd[14612]: Invalid user openvpn_as from 200.70.56.204 port 48856 2020-03-13T17:00:20.019283 sshd[14612]: Failed password for invalid user openvpn_as from 200.70.56.204 port 48856 ssh2 ...	2020-03-14 03:54:39
51.36.244.167	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-14 03:46:51
222.186.31.83	attackbots	Mar 13 20:48:39 dcd-gentoo sshd[28037]: User root from 222.186.31.83 not allowed because none of user's groups are listed in AllowGroups Mar 13 20:48:41 dcd-gentoo sshd[28037]: error: PAM: Authentication failure for illegal user root from 222.186.31.83 Mar 13 20:48:39 dcd-gentoo sshd[28037]: User root from 222.186.31.83 not allowed because none of user's groups are listed in AllowGroups Mar 13 20:48:41 dcd-gentoo sshd[28037]: error: PAM: Authentication failure for illegal user root from 222.186.31.83 Mar 13 20:48:39 dcd-gentoo sshd[28037]: User root from 222.186.31.83 not allowed because none of user's groups are listed in AllowGroups Mar 13 20:48:41 dcd-gentoo sshd[28037]: error: PAM: Authentication failure for illegal user root from 222.186.31.83 Mar 13 20:48:41 dcd-gentoo sshd[28037]: Failed keyboard-interactive/pam for invalid user root from 222.186.31.83 port 59958 ssh2 ...	2020-03-14 03:52:05
193.56.28.188	attackbotsspam	(smtpauth) Failed SMTP AUTH login from 193.56.28.188 (GB/United Kingdom/-): 5 in the last 3600 secs	2020-03-14 04:02:25
189.130.128.79	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-14 04:27:21
14.29.232.8	attack	Jan 27 10:27:37 pi sshd[5735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.232.8 Jan 27 10:27:40 pi sshd[5735]: Failed password for invalid user marcio from 14.29.232.8 port 60316 ssh2	2020-03-14 04:12:44
64.227.54.28	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-14 04:33:25

最近上报的IP列表

200.44.197.40	62.82.75.58	45.114.10.132	149.54.1.66
185.133.193.88	138.197.66.68	73.76.148.61	111.254.201.22
162.248.92.145	2a01:488:66:1000:5bfa:7184:0:1	27.78.105.228	177.185.93.89
110.44.124.141	122.51.194.23	219.146.73.5	172.69.68.220
45.249.92.62	87.195.244.111	192.144.230.158	185.238.160.30