106.12.14.130 - IPInfo

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Automatic report BANNED IP	2020-10-14 04:06:55
attackspam	Oct 12 23:29:19 raspberrypi sshd[12992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 Oct 12 23:29:21 raspberrypi sshd[12992]: Failed password for invalid user jack from 106.12.14.130 port 43164 ssh2 ...	2020-10-13 19:29:29
attackbots	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-31 21:43:33
attack	Aug 30 20:37:16 web1 sshd\[28561\]: Invalid user mario from 106.12.14.130 Aug 30 20:37:16 web1 sshd\[28561\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 Aug 30 20:37:18 web1 sshd\[28561\]: Failed password for invalid user mario from 106.12.14.130 port 38362 ssh2 Aug 30 20:40:15 web1 sshd\[28827\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 user=root Aug 30 20:40:17 web1 sshd\[28827\]: Failed password for root from 106.12.14.130 port 52892 ssh2	2020-08-31 04:18:02
attack	Aug 3 05:55:20 db sshd[27827]: User root from 106.12.14.130 not allowed because none of user's groups are listed in AllowGroups ...	2020-08-03 14:25:55
attackbots	Jul 29 20:17:42 ny01 sshd[17236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 Jul 29 20:17:44 ny01 sshd[17236]: Failed password for invalid user chenjing from 106.12.14.130 port 42434 ssh2 Jul 29 20:19:21 ny01 sshd[17442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130	2020-07-30 08:23:29
attackbots	Jul 24 09:24:21 home sshd[437654]: Invalid user elliot from 106.12.14.130 port 34918 Jul 24 09:24:21 home sshd[437654]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 Jul 24 09:24:21 home sshd[437654]: Invalid user elliot from 106.12.14.130 port 34918 Jul 24 09:24:22 home sshd[437654]: Failed password for invalid user elliot from 106.12.14.130 port 34918 ssh2 Jul 24 09:27:55 home sshd[437975]: Invalid user oracle from 106.12.14.130 port 46720 ...	2020-07-24 15:39:28
attackspambots	Ssh brute force	2020-05-22 08:21:44
attackbotsspam	$f2bV_matches	2020-05-12 00:17:36
attackspam	prod8 ...	2020-04-24 14:53:37
attack	Apr 22 00:18:42 163-172-32-151 sshd[24169]: Invalid user yq from 106.12.14.130 port 35852 ...	2020-04-22 07:27:20
attack	$f2bV_matches	2020-04-17 15:30:28
attackspambots	Apr 2 18:58:33 ws19vmsma01 sshd[64673]: Failed password for root from 106.12.14.130 port 50540 ssh2 ...	2020-04-03 07:55:59
attackspambots	SSH invalid-user multiple login attempts	2020-04-02 22:00:47
attack	Mar 31 05:43:35 vserver sshd\[21716\]: Invalid user xgues from 106.12.14.130Mar 31 05:43:37 vserver sshd\[21716\]: Failed password for invalid user xgues from 106.12.14.130 port 35050 ssh2Mar 31 05:48:33 vserver sshd\[21760\]: Failed password for root from 106.12.14.130 port 39064 ssh2Mar 31 05:53:30 vserver sshd\[21779\]: Failed password for root from 106.12.14.130 port 43078 ssh2 ...	2020-03-31 14:01:53
attackspam	Invalid user qo from 106.12.14.130 port 37492	2020-03-28 03:42:55
attackbots	Mar 9 04:54:55 DAAP sshd[23999]: Invalid user qq from 106.12.14.130 port 48298 Mar 9 04:54:56 DAAP sshd[23999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 Mar 9 04:54:55 DAAP sshd[23999]: Invalid user qq from 106.12.14.130 port 48298 Mar 9 04:54:57 DAAP sshd[23999]: Failed password for invalid user qq from 106.12.14.130 port 48298 ssh2 Mar 9 05:00:18 DAAP sshd[24083]: Invalid user gmodserver from 106.12.14.130 port 52268 ...	2020-03-09 12:01:45
attackspam	2020-02-18T07:56:17.289375 sshd[23758]: Invalid user mythtv from 106.12.14.130 port 60546 2020-02-18T07:56:17.304765 sshd[23758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 2020-02-18T07:56:17.289375 sshd[23758]: Invalid user mythtv from 106.12.14.130 port 60546 2020-02-18T07:56:18.852039 sshd[23758]: Failed password for invalid user mythtv from 106.12.14.130 port 60546 ssh2 ...	2020-02-18 15:59:13
attack	Unauthorized connection attempt detected from IP address 106.12.14.130 to port 2220 [J]	2020-02-06 06:00:20

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.148.170	attack	Oct 13 17:25:17 server sshd[26547]: Failed password for invalid user vsftpd from 106.12.148.170 port 48018 ssh2 Oct 13 17:29:10 server sshd[28630]: Failed password for invalid user quiros from 106.12.148.170 port 59850 ssh2 Oct 13 17:32:51 server sshd[30741]: Failed password for root from 106.12.148.170 port 43450 ssh2	2020-10-14 00:30:01
106.12.140.168	attack	Oct 13 13:06:35 ns381471 sshd[1805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.140.168 Oct 13 13:06:37 ns381471 sshd[1805]: Failed password for invalid user catalina from 106.12.140.168 port 47396 ssh2	2020-10-13 23:36:11
106.12.148.154	attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-13 23:15:47
106.12.148.170	attack	Invalid user cb from 106.12.148.170 port 47326	2020-10-13 15:40:59
106.12.140.168	attackspambots	Oct 13 06:02:42 buvik sshd[15619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.140.168 Oct 13 06:02:44 buvik sshd[15619]: Failed password for invalid user wangyi from 106.12.140.168 port 35384 ssh2 Oct 13 06:04:48 buvik sshd[15853]: Invalid user rolf from 106.12.140.168 ...	2020-10-13 14:52:54
106.12.148.154	attackbotsspam	Oct 12 08:48:24 v26 sshd[4335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.154 user=r.r Oct 12 08:48:25 v26 sshd[4335]: Failed password for r.r from 106.12.148.154 port 53357 ssh2 Oct 12 08:48:25 v26 sshd[4335]: Received disconnect from 106.12.148.154 port 53357:11: Bye Bye [preauth] Oct 12 08:48:25 v26 sshd[4335]: Disconnected from 106.12.148.154 port 53357 [preauth] Oct 12 08:58:27 v26 sshd[5841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.154 user=r.r Oct 12 08:58:29 v26 sshd[5841]: Failed password for r.r from 106.12.148.154 port 54441 ssh2 Oct 12 08:58:29 v26 sshd[5841]: Received disconnect from 106.12.148.154 port 54441:11: Bye Bye [preauth] Oct 12 08:58:29 v26 sshd[5841]: Disconnected from 106.12.148.154 port 54441 [preauth] Oct 12 09:02:29 v26 sshd[6474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.1........ -------------------------------	2020-10-13 14:32:48
106.12.148.170	attackbots	SSH brute-force attempt	2020-10-13 08:16:48
106.12.140.168	attackspam	2020-10-12T23:00:59.647224vps1033 sshd[8184]: Failed password for root from 106.12.140.168 port 58638 ssh2 2020-10-12T23:03:33.402422vps1033 sshd[13622]: Invalid user labor from 106.12.140.168 port 41596 2020-10-12T23:03:33.409296vps1033 sshd[13622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.140.168 2020-10-12T23:03:33.402422vps1033 sshd[13622]: Invalid user labor from 106.12.140.168 port 41596 2020-10-12T23:03:35.621207vps1033 sshd[13622]: Failed password for invalid user labor from 106.12.140.168 port 41596 ssh2 ...	2020-10-13 07:32:05
106.12.148.154	attack	Oct 12 08:48:24 v26 sshd[4335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.154 user=r.r Oct 12 08:48:25 v26 sshd[4335]: Failed password for r.r from 106.12.148.154 port 53357 ssh2 Oct 12 08:48:25 v26 sshd[4335]: Received disconnect from 106.12.148.154 port 53357:11: Bye Bye [preauth] Oct 12 08:48:25 v26 sshd[4335]: Disconnected from 106.12.148.154 port 53357 [preauth] Oct 12 08:58:27 v26 sshd[5841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.154 user=r.r Oct 12 08:58:29 v26 sshd[5841]: Failed password for r.r from 106.12.148.154 port 54441 ssh2 Oct 12 08:58:29 v26 sshd[5841]: Received disconnect from 106.12.148.154 port 54441:11: Bye Bye [preauth] Oct 12 08:58:29 v26 sshd[5841]: Disconnected from 106.12.148.154 port 54441 [preauth] Oct 12 09:02:29 v26 sshd[6474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.1........ -------------------------------	2020-10-13 07:14:00
106.12.148.170	attack	Oct 7 17:54:11 dev0-dcde-rnet sshd[8763]: Failed password for root from 106.12.148.170 port 36916 ssh2 Oct 7 17:59:40 dev0-dcde-rnet sshd[8788]: Failed password for root from 106.12.148.170 port 36546 ssh2	2020-10-08 05:48:25
106.12.148.170	attackbotsspam	2020-10-06T22:39:57.103856shield sshd\[6255\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.170 user=root 2020-10-06T22:39:58.968096shield sshd\[6255\]: Failed password for root from 106.12.148.170 port 51866 ssh2 2020-10-06T22:44:05.757563shield sshd\[6611\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.170 user=root 2020-10-06T22:44:07.667391shield sshd\[6611\]: Failed password for root from 106.12.148.170 port 54962 ssh2 2020-10-06T22:48:13.684314shield sshd\[7030\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.170 user=root	2020-10-07 14:04:02
106.12.141.206	attackspam	Oct 6 20:10:35 staging sshd[235069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.141.206 user=root Oct 6 20:10:37 staging sshd[235069]: Failed password for root from 106.12.141.206 port 38044 ssh2 Oct 6 20:13:36 staging sshd[235124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.141.206 user=root Oct 6 20:13:38 staging sshd[235124]: Failed password for root from 106.12.141.206 port 60304 ssh2 ...	2020-10-07 04:45:56
106.12.141.206	attack	Invalid user sandeep from 106.12.141.206 port 52128	2020-10-06 20:51:14
106.12.141.206	attack	Banned for a week because repeated abuses, for example SSH, but not only	2020-10-06 12:31:56
106.12.148.74	attackspambots	2020-10-01T10:48:50.173302ionos.janbro.de sshd[191644]: Failed password for root from 106.12.148.74 port 34782 ssh2 2020-10-01T10:51:52.634872ionos.janbro.de sshd[191657]: Invalid user user2 from 106.12.148.74 port 48520 2020-10-01T10:51:52.867944ionos.janbro.de sshd[191657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.74 2020-10-01T10:51:52.634872ionos.janbro.de sshd[191657]: Invalid user user2 from 106.12.148.74 port 48520 2020-10-01T10:51:54.559763ionos.janbro.de sshd[191657]: Failed password for invalid user user2 from 106.12.148.74 port 48520 ssh2 2020-10-01T10:54:52.963134ionos.janbro.de sshd[191672]: Invalid user oracle from 106.12.148.74 port 34042 2020-10-01T10:54:53.101926ionos.janbro.de sshd[191672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.74 2020-10-01T10:54:52.963134ionos.janbro.de sshd[191672]: Invalid user oracle from 106.12.148.74 port 34042 2020-10-01T10:54 ...	2020-10-02 02:42:44

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.14.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44160
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.14.130.			IN	A

;; AUTHORITY SECTION:
.			508	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020501 1800 900 604800 86400

;; Query time: 93 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 06 06:00:17 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 130.14.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 130.14.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
152.136.101.65	attackspambots	Oct 11 05:27:42 apollo sshd\[23755\]: Failed password for root from 152.136.101.65 port 37688 ssh2Oct 11 05:43:04 apollo sshd\[23810\]: Failed password for root from 152.136.101.65 port 48430 ssh2Oct 11 05:47:33 apollo sshd\[23820\]: Failed password for root from 152.136.101.65 port 59358 ssh2 ...	2019-10-11 18:54:32
142.93.211.66	attackspambots	WordPress wp-login brute force :: 142.93.211.66 0.132 BYPASS [11/Oct/2019:21:22:26 1100] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-11 18:56:14
36.5.132.122	attackspambots	Oct 10 03:23:23 eola sshd[4857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.5.132.122 user=r.r Oct 10 03:23:25 eola sshd[4857]: Failed password for r.r from 36.5.132.122 port 18129 ssh2 Oct 10 03:23:25 eola sshd[4857]: Received disconnect from 36.5.132.122 port 18129:11: Bye Bye [preauth] Oct 10 03:23:25 eola sshd[4857]: Disconnected from 36.5.132.122 port 18129 [preauth] Oct 10 03:27:56 eola sshd[5233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.5.132.122 user=r.r Oct 10 03:27:57 eola sshd[5233]: Failed password for r.r from 36.5.132.122 port 19167 ssh2 Oct 10 03:27:58 eola sshd[5233]: Received disconnect from 36.5.132.122 port 19167:11: Bye Bye [preauth] Oct 10 03:27:58 eola sshd[5233]: Disconnected from 36.5.132.122 port 19167 [preauth] Oct 10 03:37:10 eola sshd[5559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.5.132.122 u........ -------------------------------	2019-10-11 19:16:14
171.235.84.8	attackbotsspam	Oct 11 17:08:32 webhost01 sshd[7988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.235.84.8 Oct 11 17:08:33 webhost01 sshd[7988]: Failed password for invalid user admin from 171.235.84.8 port 22878 ssh2 ...	2019-10-11 18:53:14
106.13.4.117	attackbotsspam	Oct 10 22:53:31 php1 sshd\[1853\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.117 user=root Oct 10 22:53:33 php1 sshd\[1853\]: Failed password for root from 106.13.4.117 port 56040 ssh2 Oct 10 22:57:33 php1 sshd\[2203\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.117 user=root Oct 10 22:57:35 php1 sshd\[2203\]: Failed password for root from 106.13.4.117 port 59072 ssh2 Oct 10 23:01:23 php1 sshd\[2542\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.117 user=root	2019-10-11 19:00:02
51.38.237.214	attack	Oct 11 08:41:57 sauna sshd[99727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.237.214 Oct 11 08:41:59 sauna sshd[99727]: Failed password for invalid user Pharm123 from 51.38.237.214 port 47116 ssh2 ...	2019-10-11 19:33:20
149.202.210.31	attackbotsspam	Automatic report - Banned IP Access	2019-10-11 18:55:24
36.110.118.132	attackbotsspam	Oct 11 00:36:30 wbs sshd\[28284\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.110.118.132 user=root Oct 11 00:36:32 wbs sshd\[28284\]: Failed password for root from 36.110.118.132 port 14681 ssh2 Oct 11 00:40:23 wbs sshd\[28747\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.110.118.132 user=root Oct 11 00:40:24 wbs sshd\[28747\]: Failed password for root from 36.110.118.132 port 45062 ssh2 Oct 11 00:44:19 wbs sshd\[29113\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.110.118.132 user=root	2019-10-11 19:06:54
77.247.110.144	attackspambots	10/11/2019-08:08:39.395840 77.247.110.144 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 74	2019-10-11 19:01:28
222.186.133.71	attackbots	Oct 11 04:30:55 de sshd[2905]: User r.r from 222.186.133.71 not allowed because not listed in AllowUsers Oct 11 04:30:55 de sshd[2905]: Failed password for invalid user r.r from 222.186.133.71 port 33331 ssh2 Oct 11 04:30:55 de sshd[2905]: Failed password for invalid user r.r from 222.186.133.71 port 33331 ssh2 Oct 11 04:30:56 de sshd[2905]: Failed password for invalid user r.r from 222.186.133.71 port 33331 ssh2 Oct 11 04:30:56 de sshd[2905]: Failed password for invalid user r.r from 222.186.133.71 port 33331 ssh2 Oct 11 04:30:56 de sshd[2905]: Failed password for invalid user r.r from 222.186.133.71 port 33331 ssh2 Oct 11 04:31:03 de sshd[2915]: User r.r from 222.186.133.71 not allowed because not listed in AllowUsers Oct 11 04:31:03 de sshd[2915]: Failed password for invalid user r.r from 222.186.133.71 port 34046 ssh2 Oct 11 04:31:03 de sshd[2915]: Failed password for invalid user r.r from 222.186.133.71 port 34046 ssh2 Oct 11 04:31:04 de sshd[2915]: Failed password ........ ------------------------------	2019-10-11 19:38:56
103.138.154.67	attack	Automatic report - Port Scan Attack	2019-10-11 19:35:04
139.199.113.2	attackbotsspam	Oct 11 11:40:27 mail sshd[25154]: Failed password for root from 139.199.113.2 port 23811 ssh2 Oct 11 11:44:35 mail sshd[26514]: Failed password for root from 139.199.113.2 port 56851 ssh2	2019-10-11 19:09:11
37.59.51.51	attack	Oct 11 11:39:14 v22018076622670303 sshd\[10809\]: Invalid user anonymous from 37.59.51.51 port 47520 Oct 11 11:39:14 v22018076622670303 sshd\[10809\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.51.51 Oct 11 11:39:16 v22018076622670303 sshd\[10809\]: Failed password for invalid user anonymous from 37.59.51.51 port 47520 ssh2 ...	2019-10-11 19:05:51
49.232.35.211	attackspambots	[ssh] SSH attack	2019-10-11 19:35:25
116.25.250.255	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/116.25.250.255/ CN - 1H : (518) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 116.25.250.255 CIDR : 116.24.0.0/14 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 WYKRYTE ATAKI Z ASN4134 : 1H - 14 3H - 45 6H - 72 12H - 116 24H - 231 DateTime : 2019-10-11 07:25:40 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-11 18:58:35

最近上报的IP列表

46.73.4.114	24.177.192.22	84.232.247.187	173.107.199.34
81.162.75.3	217.232.181.87	149.163.36.56	79.101.58.9
32.40.177.229	77.120.240.26	5.136.42.255	59.44.239.87
73.64.190.40	77.42.95.75	71.94.66.122	158.109.45.60
62.29.32.112	1.150.150.105	84.191.52.115	81.134.96.167