106.12.14.130 - IPInfo

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Automatic report BANNED IP	2020-10-14 04:06:55
attackspam	Oct 12 23:29:19 raspberrypi sshd[12992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 Oct 12 23:29:21 raspberrypi sshd[12992]: Failed password for invalid user jack from 106.12.14.130 port 43164 ssh2 ...	2020-10-13 19:29:29
attackbots	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-31 21:43:33
attack	Aug 30 20:37:16 web1 sshd\[28561\]: Invalid user mario from 106.12.14.130 Aug 30 20:37:16 web1 sshd\[28561\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 Aug 30 20:37:18 web1 sshd\[28561\]: Failed password for invalid user mario from 106.12.14.130 port 38362 ssh2 Aug 30 20:40:15 web1 sshd\[28827\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 user=root Aug 30 20:40:17 web1 sshd\[28827\]: Failed password for root from 106.12.14.130 port 52892 ssh2	2020-08-31 04:18:02
attack	Aug 3 05:55:20 db sshd[27827]: User root from 106.12.14.130 not allowed because none of user's groups are listed in AllowGroups ...	2020-08-03 14:25:55
attackbots	Jul 29 20:17:42 ny01 sshd[17236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 Jul 29 20:17:44 ny01 sshd[17236]: Failed password for invalid user chenjing from 106.12.14.130 port 42434 ssh2 Jul 29 20:19:21 ny01 sshd[17442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130	2020-07-30 08:23:29
attackbots	Jul 24 09:24:21 home sshd[437654]: Invalid user elliot from 106.12.14.130 port 34918 Jul 24 09:24:21 home sshd[437654]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 Jul 24 09:24:21 home sshd[437654]: Invalid user elliot from 106.12.14.130 port 34918 Jul 24 09:24:22 home sshd[437654]: Failed password for invalid user elliot from 106.12.14.130 port 34918 ssh2 Jul 24 09:27:55 home sshd[437975]: Invalid user oracle from 106.12.14.130 port 46720 ...	2020-07-24 15:39:28
attackspambots	Ssh brute force	2020-05-22 08:21:44
attackbotsspam	$f2bV_matches	2020-05-12 00:17:36
attackspam	prod8 ...	2020-04-24 14:53:37
attack	Apr 22 00:18:42 163-172-32-151 sshd[24169]: Invalid user yq from 106.12.14.130 port 35852 ...	2020-04-22 07:27:20
attack	$f2bV_matches	2020-04-17 15:30:28
attackspambots	Apr 2 18:58:33 ws19vmsma01 sshd[64673]: Failed password for root from 106.12.14.130 port 50540 ssh2 ...	2020-04-03 07:55:59
attackspambots	SSH invalid-user multiple login attempts	2020-04-02 22:00:47
attack	Mar 31 05:43:35 vserver sshd\[21716\]: Invalid user xgues from 106.12.14.130Mar 31 05:43:37 vserver sshd\[21716\]: Failed password for invalid user xgues from 106.12.14.130 port 35050 ssh2Mar 31 05:48:33 vserver sshd\[21760\]: Failed password for root from 106.12.14.130 port 39064 ssh2Mar 31 05:53:30 vserver sshd\[21779\]: Failed password for root from 106.12.14.130 port 43078 ssh2 ...	2020-03-31 14:01:53
attackspam	Invalid user qo from 106.12.14.130 port 37492	2020-03-28 03:42:55
attackbots	Mar 9 04:54:55 DAAP sshd[23999]: Invalid user qq from 106.12.14.130 port 48298 Mar 9 04:54:56 DAAP sshd[23999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 Mar 9 04:54:55 DAAP sshd[23999]: Invalid user qq from 106.12.14.130 port 48298 Mar 9 04:54:57 DAAP sshd[23999]: Failed password for invalid user qq from 106.12.14.130 port 48298 ssh2 Mar 9 05:00:18 DAAP sshd[24083]: Invalid user gmodserver from 106.12.14.130 port 52268 ...	2020-03-09 12:01:45
attackspam	2020-02-18T07:56:17.289375 sshd[23758]: Invalid user mythtv from 106.12.14.130 port 60546 2020-02-18T07:56:17.304765 sshd[23758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 2020-02-18T07:56:17.289375 sshd[23758]: Invalid user mythtv from 106.12.14.130 port 60546 2020-02-18T07:56:18.852039 sshd[23758]: Failed password for invalid user mythtv from 106.12.14.130 port 60546 ssh2 ...	2020-02-18 15:59:13
attack	Unauthorized connection attempt detected from IP address 106.12.14.130 to port 2220 [J]	2020-02-06 06:00:20

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.148.170	attack	Oct 13 17:25:17 server sshd[26547]: Failed password for invalid user vsftpd from 106.12.148.170 port 48018 ssh2 Oct 13 17:29:10 server sshd[28630]: Failed password for invalid user quiros from 106.12.148.170 port 59850 ssh2 Oct 13 17:32:51 server sshd[30741]: Failed password for root from 106.12.148.170 port 43450 ssh2	2020-10-14 00:30:01
106.12.140.168	attack	Oct 13 13:06:35 ns381471 sshd[1805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.140.168 Oct 13 13:06:37 ns381471 sshd[1805]: Failed password for invalid user catalina from 106.12.140.168 port 47396 ssh2	2020-10-13 23:36:11
106.12.148.154	attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-13 23:15:47
106.12.148.170	attack	Invalid user cb from 106.12.148.170 port 47326	2020-10-13 15:40:59
106.12.140.168	attackspambots	Oct 13 06:02:42 buvik sshd[15619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.140.168 Oct 13 06:02:44 buvik sshd[15619]: Failed password for invalid user wangyi from 106.12.140.168 port 35384 ssh2 Oct 13 06:04:48 buvik sshd[15853]: Invalid user rolf from 106.12.140.168 ...	2020-10-13 14:52:54
106.12.148.154	attackbotsspam	Oct 12 08:48:24 v26 sshd[4335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.154 user=r.r Oct 12 08:48:25 v26 sshd[4335]: Failed password for r.r from 106.12.148.154 port 53357 ssh2 Oct 12 08:48:25 v26 sshd[4335]: Received disconnect from 106.12.148.154 port 53357:11: Bye Bye [preauth] Oct 12 08:48:25 v26 sshd[4335]: Disconnected from 106.12.148.154 port 53357 [preauth] Oct 12 08:58:27 v26 sshd[5841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.154 user=r.r Oct 12 08:58:29 v26 sshd[5841]: Failed password for r.r from 106.12.148.154 port 54441 ssh2 Oct 12 08:58:29 v26 sshd[5841]: Received disconnect from 106.12.148.154 port 54441:11: Bye Bye [preauth] Oct 12 08:58:29 v26 sshd[5841]: Disconnected from 106.12.148.154 port 54441 [preauth] Oct 12 09:02:29 v26 sshd[6474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.1........ -------------------------------	2020-10-13 14:32:48
106.12.148.170	attackbots	SSH brute-force attempt	2020-10-13 08:16:48
106.12.140.168	attackspam	2020-10-12T23:00:59.647224vps1033 sshd[8184]: Failed password for root from 106.12.140.168 port 58638 ssh2 2020-10-12T23:03:33.402422vps1033 sshd[13622]: Invalid user labor from 106.12.140.168 port 41596 2020-10-12T23:03:33.409296vps1033 sshd[13622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.140.168 2020-10-12T23:03:33.402422vps1033 sshd[13622]: Invalid user labor from 106.12.140.168 port 41596 2020-10-12T23:03:35.621207vps1033 sshd[13622]: Failed password for invalid user labor from 106.12.140.168 port 41596 ssh2 ...	2020-10-13 07:32:05
106.12.148.154	attack	Oct 12 08:48:24 v26 sshd[4335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.154 user=r.r Oct 12 08:48:25 v26 sshd[4335]: Failed password for r.r from 106.12.148.154 port 53357 ssh2 Oct 12 08:48:25 v26 sshd[4335]: Received disconnect from 106.12.148.154 port 53357:11: Bye Bye [preauth] Oct 12 08:48:25 v26 sshd[4335]: Disconnected from 106.12.148.154 port 53357 [preauth] Oct 12 08:58:27 v26 sshd[5841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.154 user=r.r Oct 12 08:58:29 v26 sshd[5841]: Failed password for r.r from 106.12.148.154 port 54441 ssh2 Oct 12 08:58:29 v26 sshd[5841]: Received disconnect from 106.12.148.154 port 54441:11: Bye Bye [preauth] Oct 12 08:58:29 v26 sshd[5841]: Disconnected from 106.12.148.154 port 54441 [preauth] Oct 12 09:02:29 v26 sshd[6474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.1........ -------------------------------	2020-10-13 07:14:00
106.12.148.170	attack	Oct 7 17:54:11 dev0-dcde-rnet sshd[8763]: Failed password for root from 106.12.148.170 port 36916 ssh2 Oct 7 17:59:40 dev0-dcde-rnet sshd[8788]: Failed password for root from 106.12.148.170 port 36546 ssh2	2020-10-08 05:48:25
106.12.148.170	attackbotsspam	2020-10-06T22:39:57.103856shield sshd\[6255\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.170 user=root 2020-10-06T22:39:58.968096shield sshd\[6255\]: Failed password for root from 106.12.148.170 port 51866 ssh2 2020-10-06T22:44:05.757563shield sshd\[6611\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.170 user=root 2020-10-06T22:44:07.667391shield sshd\[6611\]: Failed password for root from 106.12.148.170 port 54962 ssh2 2020-10-06T22:48:13.684314shield sshd\[7030\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.170 user=root	2020-10-07 14:04:02
106.12.141.206	attackspam	Oct 6 20:10:35 staging sshd[235069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.141.206 user=root Oct 6 20:10:37 staging sshd[235069]: Failed password for root from 106.12.141.206 port 38044 ssh2 Oct 6 20:13:36 staging sshd[235124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.141.206 user=root Oct 6 20:13:38 staging sshd[235124]: Failed password for root from 106.12.141.206 port 60304 ssh2 ...	2020-10-07 04:45:56
106.12.141.206	attack	Invalid user sandeep from 106.12.141.206 port 52128	2020-10-06 20:51:14
106.12.141.206	attack	Banned for a week because repeated abuses, for example SSH, but not only	2020-10-06 12:31:56
106.12.148.74	attackspambots	2020-10-01T10:48:50.173302ionos.janbro.de sshd[191644]: Failed password for root from 106.12.148.74 port 34782 ssh2 2020-10-01T10:51:52.634872ionos.janbro.de sshd[191657]: Invalid user user2 from 106.12.148.74 port 48520 2020-10-01T10:51:52.867944ionos.janbro.de sshd[191657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.74 2020-10-01T10:51:52.634872ionos.janbro.de sshd[191657]: Invalid user user2 from 106.12.148.74 port 48520 2020-10-01T10:51:54.559763ionos.janbro.de sshd[191657]: Failed password for invalid user user2 from 106.12.148.74 port 48520 ssh2 2020-10-01T10:54:52.963134ionos.janbro.de sshd[191672]: Invalid user oracle from 106.12.148.74 port 34042 2020-10-01T10:54:53.101926ionos.janbro.de sshd[191672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.148.74 2020-10-01T10:54:52.963134ionos.janbro.de sshd[191672]: Invalid user oracle from 106.12.148.74 port 34042 2020-10-01T10:54 ...	2020-10-02 02:42:44

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.14.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44160
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.14.130.			IN	A

;; AUTHORITY SECTION:
.			508	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020501 1800 900 604800 86400

;; Query time: 93 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 06 06:00:17 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 130.14.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 130.14.12.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
213.238.216.166	attackbots	Unauthorized connection attempt detected from IP address 213.238.216.166 to port 5555 [J]	2020-02-23 19:44:37
189.41.83.251	attack	Unauthorized connection attempt detected from IP address 189.41.83.251 to port 23 [J]	2020-02-23 19:47:51
181.197.64.77	attackspambots	Feb 23 10:59:32 ns382633 sshd\[11092\]: Invalid user suporte from 181.197.64.77 port 42444 Feb 23 10:59:32 ns382633 sshd\[11092\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.197.64.77 Feb 23 10:59:34 ns382633 sshd\[11092\]: Failed password for invalid user suporte from 181.197.64.77 port 42444 ssh2 Feb 23 11:02:37 ns382633 sshd\[11734\]: Invalid user ts3 from 181.197.64.77 port 37740 Feb 23 11:02:37 ns382633 sshd\[11734\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.197.64.77	2020-02-23 19:51:45
134.209.76.144	attackbots	xmlrpc attack	2020-02-23 19:24:57
200.175.44.191	attackspam	Unauthorized connection attempt detected from IP address 200.175.44.191 to port 23 [J]	2020-02-23 19:47:20
211.159.157.252	attackbots	Unauthorized connection attempt detected from IP address 211.159.157.252 to port 8080 [J]	2020-02-23 19:45:14
1.55.16.63	attackspambots	[portscan] tcp/23 [TELNET] *(RWIN=46607)(02231144)	2020-02-23 19:15:00
220.127.231.89	attackspam	Unauthorized connection attempt detected from IP address 220.127.231.89 to port 23 [J]	2020-02-23 19:43:14
178.79.188.154	attackbots	Unauthorized connection attempt detected from IP address 178.79.188.154 to port 902 [J]	2020-02-23 19:20:44
87.27.206.249	attackspambots	Unauthorized connection attempt detected from IP address 87.27.206.249 to port 23 [J]	2020-02-23 19:35:16
185.230.82.40	attackspambots	Feb 23 11:49:35 MK-Soft-VM7 sshd[28053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.230.82.40 Feb 23 11:49:38 MK-Soft-VM7 sshd[28053]: Failed password for invalid user vpn from 185.230.82.40 port 56724 ssh2 ...	2020-02-23 19:50:28
186.193.28.60	attackbotsspam	Unauthorized connection attempt detected from IP address 186.193.28.60 to port 88 [J]	2020-02-23 19:50:01
200.187.170.185	attackspam	Unauthorized connection attempt detected from IP address 200.187.170.185 to port 8080 [J]	2020-02-23 19:46:45
186.249.29.190	attackbotsspam	Unauthorized connection attempt detected from IP address 186.249.29.190 to port 23 [J]	2020-02-23 19:18:52
125.39.100.166	attackspambots	Unauthorized connection attempt detected from IP address 125.39.100.166 to port 1433 [J]	2020-02-23 19:26:08

最近上报的IP列表

46.73.4.114	24.177.192.22	84.232.247.187	173.107.199.34
81.162.75.3	217.232.181.87	149.163.36.56	79.101.58.9
32.40.177.229	77.120.240.26	5.136.42.255	59.44.239.87
73.64.190.40	77.42.95.75	71.94.66.122	158.109.45.60
62.29.32.112	1.150.150.105	84.191.52.115	81.134.96.167