106.12.14.130 - IPInfo

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Automatic report BANNED IP	2020-10-14 04:06:55
attackspam	Oct 12 23:29:19 raspberrypi sshd[12992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 Oct 12 23:29:21 raspberrypi sshd[12992]: Failed password for invalid user jack from 106.12.14.130 port 43164 ssh2 ...	2020-10-13 19:29:29
attackbots	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-31 21:43:33
attack	Aug 30 20:37:16 web1 sshd\[28561\]: Invalid user mario from 106.12.14.130 Aug 30 20:37:16 web1 sshd\[28561\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 Aug 30 20:37:18 web1 sshd\[28561\]: Failed password for invalid user mario from 106.12.14.130 port 38362 ssh2 Aug 30 20:40:15 web1 sshd\[28827\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 user=root Aug 30 20:40:17 web1 sshd\[28827\]: Failed password for root from 106.12.14.130 port 52892 ssh2	2020-08-31 04:18:02
attack	Aug 3 05:55:20 db sshd[27827]: User root from 106.12.14.130 not allowed because none of user's groups are listed in AllowGroups ...	2020-08-03 14:25:55
attackbots	Jul 29 20:17:42 ny01 sshd[17236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 Jul 29 20:17:44 ny01 sshd[17236]: Failed password for invalid user chenjing from 106.12.14.130 port 42434 ssh2 Jul 29 20:19:21 ny01 sshd[17442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130	2020-07-30 08:23:29
attackbots	Jul 24 09:24:21 home sshd[437654]: Invalid user elliot from 106.12.14.130 port 34918 Jul 24 09:24:21 home sshd[437654]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 Jul 24 09:24:21 home sshd[437654]: Invalid user elliot from 106.12.14.130 port 34918 Jul 24 09:24:22 home sshd[437654]: Failed password for invalid user elliot from 106.12.14.130 port 34918 ssh2 Jul 24 09:27:55 home sshd[437975]: Invalid user oracle from 106.12.14.130 port 46720 ...	2020-07-24 15:39:28
attackspambots	Ssh brute force	2020-05-22 08:21:44
attackbotsspam	$f2bV_matches	2020-05-12 00:17:36
attackspam	prod8 ...	2020-04-24 14:53:37
attack	Apr 22 00:18:42 163-172-32-151 sshd[24169]: Invalid user yq from 106.12.14.130 port 35852 ...	2020-04-22 07:27:20
attack	$f2bV_matches	2020-04-17 15:30:28
attackspambots	Apr 2 18:58:33 ws19vmsma01 sshd[64673]: Failed password for root from 106.12.14.130 port 50540 ssh2 ...	2020-04-03 07:55:59
attackspambots	SSH invalid-user multiple login attempts	2020-04-02 22:00:47
attack	Mar 31 05:43:35 vserver sshd\[21716\]: Invalid user xgues from 106.12.14.130Mar 31 05:43:37 vserver sshd\[21716\]: Failed password for invalid user xgues from 106.12.14.130 port 35050 ssh2Mar 31 05:48:33 vserver sshd\[21760\]: Failed password for root from 106.12.14.130 port 39064 ssh2Mar 31 05:53:30 vserver sshd\[21779\]: Failed password for root from 106.12.14.130 port 43078 ssh2 ...	2020-03-31 14:01:53
attackspam	Invalid user qo from 106.12.14.130 port 37492	2020-03-28 03:42:55
attackbots	Mar 9 04:54:55 DAAP sshd[23999]: Invalid user qq from 106.12.14.130 port 48298 Mar 9 04:54:56 DAAP sshd[23999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 Mar 9 04:54:55 DAAP sshd[23999]: Invalid user qq from 106.12.14.130 port 48298 Mar 9 04:54:57 DAAP sshd[23999]: Failed password for invalid user qq from 106.12.14.130 port 48298 ssh2 Mar 9 05:00:18 DAAP sshd[24083]: Invalid user gmodserver from 106.12.14.130 port 52268 ...	2020-03-09 12:01:45
attackspam	2020-02-18T07:56:17.289375 sshd[23758]: Invalid user mythtv from 106.12.14.130 port 60546 2020-02-18T07:56:17.304765 sshd[23758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 2020-02-18T07:56:17.289375 sshd[23758]: Invalid user mythtv from 106.12.14.130 port 60546 2020-02-18T07:56:18.852039 sshd[23758]: Failed password for invalid user mythtv from 106.12.14.130 port 60546 ssh2 ...	2020-02-18 15:59:13
attack	Unauthorized connection attempt detected from IP address 106.12.14.130 to port 2220 [J]	2020-02-06 06:00:20

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.148.170	attack	Oct 13 17:25:17 server sshd[26547]: Failed password for invalid user vsftpd from 106.12.148.170 port 48018 ssh2 Oct 13 17:29:10 server sshd[28630]: Failed password for invalid user quiros from 106.12.148.170 port 59850 ssh2 Oct 13 17:32:51 server sshd[30741]: Failed password for root from 106.12.148.170 port 43450 ssh2	2020-10-14 00:30:01
106.12.140.168	attack	Oct 13 13:06:35 ns381471 sshd[1805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.140.168 Oct 13 13:06:37 ns381471 sshd[1805]: Failed password for invalid user catalina from 106.12.140.168 port 47396 ssh2	2020-10-13 23:36:11
106.12.148.154	attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-13 23:15:47
106.12.148.170	attack	Invalid user cb from 106.12.148.170 port 47326	2020-10-13 15:40:59
106.12.140.168	attackspambots	Oct 13 06:02:42 buvik sshd[15619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.140.168 Oct 13 06:02:44 buvik sshd[15619]: Failed password for invalid user wangyi from 106.12.140.168 port 35384 ssh2 Oct 13 06:04:48 buvik sshd[15853]: Invalid user rolf from 106.12.140.168 ...	2020-10-13 14:52:54
106.12.148.154	attackbotsspam	Oct 12 08:48:24 v26 sshd[4335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.154 user=r.r Oct 12 08:48:25 v26 sshd[4335]: Failed password for r.r from 106.12.148.154 port 53357 ssh2 Oct 12 08:48:25 v26 sshd[4335]: Received disconnect from 106.12.148.154 port 53357:11: Bye Bye [preauth] Oct 12 08:48:25 v26 sshd[4335]: Disconnected from 106.12.148.154 port 53357 [preauth] Oct 12 08:58:27 v26 sshd[5841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.154 user=r.r Oct 12 08:58:29 v26 sshd[5841]: Failed password for r.r from 106.12.148.154 port 54441 ssh2 Oct 12 08:58:29 v26 sshd[5841]: Received disconnect from 106.12.148.154 port 54441:11: Bye Bye [preauth] Oct 12 08:58:29 v26 sshd[5841]: Disconnected from 106.12.148.154 port 54441 [preauth] Oct 12 09:02:29 v26 sshd[6474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.1........ -------------------------------	2020-10-13 14:32:48
106.12.148.170	attackbots	SSH brute-force attempt	2020-10-13 08:16:48
106.12.140.168	attackspam	2020-10-12T23:00:59.647224vps1033 sshd[8184]: Failed password for root from 106.12.140.168 port 58638 ssh2 2020-10-12T23:03:33.402422vps1033 sshd[13622]: Invalid user labor from 106.12.140.168 port 41596 2020-10-12T23:03:33.409296vps1033 sshd[13622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.140.168 2020-10-12T23:03:33.402422vps1033 sshd[13622]: Invalid user labor from 106.12.140.168 port 41596 2020-10-12T23:03:35.621207vps1033 sshd[13622]: Failed password for invalid user labor from 106.12.140.168 port 41596 ssh2 ...	2020-10-13 07:32:05
106.12.148.154	attack	Oct 12 08:48:24 v26 sshd[4335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.154 user=r.r Oct 12 08:48:25 v26 sshd[4335]: Failed password for r.r from 106.12.148.154 port 53357 ssh2 Oct 12 08:48:25 v26 sshd[4335]: Received disconnect from 106.12.148.154 port 53357:11: Bye Bye [preauth] Oct 12 08:48:25 v26 sshd[4335]: Disconnected from 106.12.148.154 port 53357 [preauth] Oct 12 08:58:27 v26 sshd[5841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.154 user=r.r Oct 12 08:58:29 v26 sshd[5841]: Failed password for r.r from 106.12.148.154 port 54441 ssh2 Oct 12 08:58:29 v26 sshd[5841]: Received disconnect from 106.12.148.154 port 54441:11: Bye Bye [preauth] Oct 12 08:58:29 v26 sshd[5841]: Disconnected from 106.12.148.154 port 54441 [preauth] Oct 12 09:02:29 v26 sshd[6474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.1........ -------------------------------	2020-10-13 07:14:00
106.12.148.170	attack	Oct 7 17:54:11 dev0-dcde-rnet sshd[8763]: Failed password for root from 106.12.148.170 port 36916 ssh2 Oct 7 17:59:40 dev0-dcde-rnet sshd[8788]: Failed password for root from 106.12.148.170 port 36546 ssh2	2020-10-08 05:48:25
106.12.148.170	attackbotsspam	2020-10-06T22:39:57.103856shield sshd\[6255\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.170 user=root 2020-10-06T22:39:58.968096shield sshd\[6255\]: Failed password for root from 106.12.148.170 port 51866 ssh2 2020-10-06T22:44:05.757563shield sshd\[6611\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.170 user=root 2020-10-06T22:44:07.667391shield sshd\[6611\]: Failed password for root from 106.12.148.170 port 54962 ssh2 2020-10-06T22:48:13.684314shield sshd\[7030\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.170 user=root	2020-10-07 14:04:02
106.12.141.206	attackspam	Oct 6 20:10:35 staging sshd[235069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.141.206 user=root Oct 6 20:10:37 staging sshd[235069]: Failed password for root from 106.12.141.206 port 38044 ssh2 Oct 6 20:13:36 staging sshd[235124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.141.206 user=root Oct 6 20:13:38 staging sshd[235124]: Failed password for root from 106.12.141.206 port 60304 ssh2 ...	2020-10-07 04:45:56
106.12.141.206	attack	Invalid user sandeep from 106.12.141.206 port 52128	2020-10-06 20:51:14
106.12.141.206	attack	Banned for a week because repeated abuses, for example SSH, but not only	2020-10-06 12:31:56
106.12.148.74	attackspambots	2020-10-01T10:48:50.173302ionos.janbro.de sshd[191644]: Failed password for root from 106.12.148.74 port 34782 ssh2 2020-10-01T10:51:52.634872ionos.janbro.de sshd[191657]: Invalid user user2 from 106.12.148.74 port 48520 2020-10-01T10:51:52.867944ionos.janbro.de sshd[191657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.74 2020-10-01T10:51:52.634872ionos.janbro.de sshd[191657]: Invalid user user2 from 106.12.148.74 port 48520 2020-10-01T10:51:54.559763ionos.janbro.de sshd[191657]: Failed password for invalid user user2 from 106.12.148.74 port 48520 ssh2 2020-10-01T10:54:52.963134ionos.janbro.de sshd[191672]: Invalid user oracle from 106.12.148.74 port 34042 2020-10-01T10:54:53.101926ionos.janbro.de sshd[191672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.74 2020-10-01T10:54:52.963134ionos.janbro.de sshd[191672]: Invalid user oracle from 106.12.148.74 port 34042 2020-10-01T10:54 ...	2020-10-02 02:42:44

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.14.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44160
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.14.130.			IN	A

;; AUTHORITY SECTION:
.			508	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020501 1800 900 604800 86400

;; Query time: 93 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 06 06:00:17 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 130.14.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 130.14.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
162.243.133.233	attack	firewall-block, port(s): 7473/tcp	2020-03-19 09:58:59
94.232.136.126	attack	Ssh brute force	2020-03-19 09:39:19
222.186.175.212	attack	Mar 19 02:20:55 meumeu sshd[874]: Failed password for root from 222.186.175.212 port 13818 ssh2 Mar 19 02:21:07 meumeu sshd[874]: Failed password for root from 222.186.175.212 port 13818 ssh2 Mar 19 02:21:11 meumeu sshd[874]: Failed password for root from 222.186.175.212 port 13818 ssh2 Mar 19 02:21:11 meumeu sshd[874]: error: maximum authentication attempts exceeded for root from 222.186.175.212 port 13818 ssh2 [preauth] ...	2020-03-19 09:32:31
31.41.255.34	attackbots	2020-03-18T15:48:30.981580suse-nuc sshd[8287]: User root from 31.41.255.34 not allowed because not listed in AllowUsers ...	2020-03-19 10:11:58
123.206.81.59	attackspambots	SSH Invalid Login	2020-03-19 09:50:14
46.190.32.197	attackbotsspam	Port probing on unauthorized port 23	2020-03-19 09:51:07
89.163.131.51	attackspam	Scanned 3 times in the last 24 hours on port 22	2020-03-19 09:35:53
222.186.15.18	attackspambots	Mar 19 02:03:31 OPSO sshd\[30790\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.18 user=root Mar 19 02:03:32 OPSO sshd\[30790\]: Failed password for root from 222.186.15.18 port 35354 ssh2 Mar 19 02:03:34 OPSO sshd\[30790\]: Failed password for root from 222.186.15.18 port 35354 ssh2 Mar 19 02:03:37 OPSO sshd\[30790\]: Failed password for root from 222.186.15.18 port 35354 ssh2 Mar 19 02:04:43 OPSO sshd\[30975\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.18 user=root	2020-03-19 09:33:11
62.234.97.139	attackspambots	2020-03-19T02:56:00.420589jannga.de sshd[31616]: Invalid user workshop from 62.234.97.139 port 60084 2020-03-19T02:56:02.343877jannga.de sshd[31616]: Failed password for invalid user workshop from 62.234.97.139 port 60084 ssh2 ...	2020-03-19 09:57:41
177.94.244.73	attackspam	Mar 18 07:40:39 zulu1842 sshd[32285]: reveeclipse mapping checking getaddrinfo for 177-94-244-73.dsl.telesp.net.br [177.94.244.73] failed - POSSIBLE BREAK-IN ATTEMPT! Mar 18 07:40:39 zulu1842 sshd[32285]: Invalid user quest from 177.94.244.73 Mar 18 07:40:39 zulu1842 sshd[32285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.94.244.73 Mar 18 07:40:41 zulu1842 sshd[32285]: Failed password for invalid user quest from 177.94.244.73 port 19506 ssh2 Mar 18 07:40:41 zulu1842 sshd[32285]: Received disconnect from 177.94.244.73: 11: Bye Bye [preauth] Mar 18 07:43:15 zulu1842 sshd[32511]: reveeclipse mapping checking getaddrinfo for 177-94-244-73.dsl.telesp.net.br [177.94.244.73] failed - POSSIBLE BREAK-IN ATTEMPT! Mar 18 07:43:15 zulu1842 sshd[32511]: Invalid user ts3 from 177.94.244.73 Mar 18 07:43:15 zulu1842 sshd[32511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.94.244.73 Mar 18........ -------------------------------	2020-03-19 09:30:20
1.214.215.236	attackbots	Mar 19 08:34:24 itv-usvr-01 sshd[7166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.214.215.236 user=root Mar 19 08:34:26 itv-usvr-01 sshd[7166]: Failed password for root from 1.214.215.236 port 33398 ssh2 Mar 19 08:38:01 itv-usvr-01 sshd[7262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.214.215.236 user=root Mar 19 08:38:03 itv-usvr-01 sshd[7262]: Failed password for root from 1.214.215.236 port 38908 ssh2 Mar 19 08:41:47 itv-usvr-01 sshd[7527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.214.215.236 user=root Mar 19 08:41:50 itv-usvr-01 sshd[7527]: Failed password for root from 1.214.215.236 port 44422 ssh2	2020-03-19 09:43:22
185.147.215.12	attack	[2020-03-18 21:42:09] NOTICE[1148] chan_sip.c: Registration from '' failed for '185.147.215.12:53350' - Wrong password [2020-03-18 21:42:09] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-03-18T21:42:09.207-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1274",SessionID="0x7fd82c530768",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.12/53350",Challenge="638c8706",ReceivedChallenge="638c8706",ReceivedHash="6c8a0fa37156e4481945b22da8c77516" [2020-03-18 21:42:26] NOTICE[1148] chan_sip.c: Registration from '' failed for '185.147.215.12:63083' - Wrong password [2020-03-18 21:42:26] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-03-18T21:42:26.324-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5912",SessionID="0x7fd82c40aa58",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.21 ...	2020-03-19 09:56:33
85.243.128.8	attackbots	Mar 19 00:14:58 silence02 sshd[23274]: Failed password for root from 85.243.128.8 port 50894 ssh2 Mar 19 00:17:47 silence02 sshd[23488]: Failed password for root from 85.243.128.8 port 51220 ssh2	2020-03-19 09:32:49
222.186.175.154	attackspam	Mar 19 02:43:31 eventyay sshd[22409]: Failed password for root from 222.186.175.154 port 56900 ssh2 Mar 19 02:43:34 eventyay sshd[22409]: Failed password for root from 222.186.175.154 port 56900 ssh2 Mar 19 02:43:44 eventyay sshd[22409]: error: maximum authentication attempts exceeded for root from 222.186.175.154 port 56900 ssh2 [preauth] ...	2020-03-19 09:44:22
187.74.241.78	attackspam	" "	2020-03-19 10:13:19

最近上报的IP列表

46.73.4.114	24.177.192.22	84.232.247.187	173.107.199.34
81.162.75.3	217.232.181.87	149.163.36.56	79.101.58.9
32.40.177.229	77.120.240.26	5.136.42.255	59.44.239.87
73.64.190.40	77.42.95.75	71.94.66.122	158.109.45.60
62.29.32.112	1.150.150.105	84.191.52.115	81.134.96.167