106.12.145.126

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Invalid user hola from 106.12.145.126 port 47428	2020-04-18 13:57:11
attackbots	$f2bV_matches	2020-04-10 00:18:07
attack	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-04-08 06:04:19
attack	Apr 5 00:41:26 v22019038103785759 sshd\[6678\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.145.126 user=root Apr 5 00:41:28 v22019038103785759 sshd\[6678\]: Failed password for root from 106.12.145.126 port 52480 ssh2 Apr 5 00:45:52 v22019038103785759 sshd\[7030\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.145.126 user=root Apr 5 00:45:54 v22019038103785759 sshd\[7030\]: Failed password for root from 106.12.145.126 port 51804 ssh2 Apr 5 00:50:28 v22019038103785759 sshd\[7429\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.145.126 user=root ...	2020-04-05 09:06:18
attackbotsspam	Apr 4 06:11:41 eventyay sshd[15935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.145.126 Apr 4 06:11:43 eventyay sshd[15935]: Failed password for invalid user linuxtest from 106.12.145.126 port 45708 ssh2 Apr 4 06:16:34 eventyay sshd[16121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.145.126 ...	2020-04-04 13:49:03
attackbotsspam	Invalid user qdyh from 106.12.145.126 port 40080	2020-03-27 08:21:24
attack	2020-03-18T06:36:16.424110ionos.janbro.de sshd[70348]: Invalid user ubuntu from 106.12.145.126 port 37252 2020-03-18T06:36:18.227194ionos.janbro.de sshd[70348]: Failed password for invalid user ubuntu from 106.12.145.126 port 37252 ssh2 2020-03-18T06:37:54.430925ionos.janbro.de sshd[70366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.145.126 user=root 2020-03-18T06:37:56.464161ionos.janbro.de sshd[70366]: Failed password for root from 106.12.145.126 port 58974 ssh2 2020-03-18T06:39:35.864702ionos.janbro.de sshd[70371]: Invalid user deluge from 106.12.145.126 port 52454 2020-03-18T06:39:36.032236ionos.janbro.de sshd[70371]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.145.126 2020-03-18T06:39:35.864702ionos.janbro.de sshd[70371]: Invalid user deluge from 106.12.145.126 port 52454 2020-03-18T06:39:37.959369ionos.janbro.de sshd[70371]: Failed password for invalid user deluge from 106.12.1 ...	2020-03-18 18:21:58

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.145.1	attack	Automatic report - Banned IP Access	2020-08-21 23:11:39
106.12.145.194	attack	[Aegis] @ 2020-01-17 02:03:05 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2020-05-02 03:22:29
106.12.145.152	attackbotsspam	2019-08-11T07:26:41.305628Z 179cd6ea2e24 New connection: 106.12.145.152:49326 (172.17.0.3:2222) [session: 179cd6ea2e24] 2019-08-11T07:43:00.699306Z c5b120235759 New connection: 106.12.145.152:42874 (172.17.0.3:2222) [session: c5b120235759]	2019-08-12 02:14:11
106.12.145.152	attackspam	30.07.2019 09:34:41 SSH access blocked by firewall	2019-07-30 19:21:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.145.126
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52206
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.145.126.			IN	A

;; AUTHORITY SECTION:
.			509	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031800 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 18 18:21:53 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 126.145.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 126.145.12.106.in-addr.arpa.: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
177.47.140.248	attackspambots	$f2bV_matches	2019-12-02 19:02:35
51.68.138.143	attackbotsspam	Dec 2 12:06:55 ns37 sshd[13575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.138.143 Dec 2 12:06:57 ns37 sshd[13575]: Failed password for invalid user trombone from 51.68.138.143 port 50488 ssh2 Dec 2 12:15:01 ns37 sshd[14226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.138.143	2019-12-02 19:38:06
45.116.68.28	attackspambots	1575276812 - 12/02/2019 09:53:32 Host: 45.116.68.28/45.116.68.28 Port: 6667 TCP Blocked	2019-12-02 19:26:19
5.104.107.28	attackspambots	Dec 2 09:27:28 sd1 sshd[20599]: Invalid user bonsack from 5.104.107.28 Dec 2 09:27:30 sd1 sshd[20599]: Failed password for invalid user bonsack from 5.104.107.28 port 46626 ssh2 Dec 2 09:40:44 sd1 sshd[21170]: Invalid user ew from 5.104.107.28 Dec 2 09:40:46 sd1 sshd[21170]: Failed password for invalid user ew from 5.104.107.28 port 37958 ssh2 Dec 2 09:48:09 sd1 sshd[21440]: Invalid user test from 5.104.107.28 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=5.104.107.28	2019-12-02 19:29:44
182.254.154.89	attackspam	Dec 2 00:58:19 hpm sshd\[16483\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.154.89 user=root Dec 2 00:58:21 hpm sshd\[16483\]: Failed password for root from 182.254.154.89 port 52918 ssh2 Dec 2 01:05:51 hpm sshd\[17223\]: Invalid user pano from 182.254.154.89 Dec 2 01:05:51 hpm sshd\[17223\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.154.89 Dec 2 01:05:53 hpm sshd\[17223\]: Failed password for invalid user pano from 182.254.154.89 port 33252 ssh2	2019-12-02 19:06:46
154.83.17.97	attack	Dec 2 00:25:11 php1 sshd\[14792\]: Invalid user com from 154.83.17.97 Dec 2 00:25:11 php1 sshd\[14792\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.83.17.97 Dec 2 00:25:14 php1 sshd\[14792\]: Failed password for invalid user com from 154.83.17.97 port 52993 ssh2 Dec 2 00:31:53 php1 sshd\[15410\]: Invalid user sille from 154.83.17.97 Dec 2 00:31:53 php1 sshd\[15410\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.83.17.97	2019-12-02 19:29:06
188.166.239.106	attackspam	Dec 2 11:01:31 localhost sshd\[36392\]: Invalid user user from 188.166.239.106 port 56212 Dec 2 11:01:31 localhost sshd\[36392\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.239.106 Dec 2 11:01:32 localhost sshd\[36392\]: Failed password for invalid user user from 188.166.239.106 port 56212 ssh2 Dec 2 11:08:12 localhost sshd\[36544\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.239.106 user=root Dec 2 11:08:14 localhost sshd\[36544\]: Failed password for root from 188.166.239.106 port 33588 ssh2 ...	2019-12-02 19:23:37
138.197.163.11	attack	2019-12-02T12:03:22.902030scmdmz1 sshd\[1877\]: Invalid user sofus from 138.197.163.11 port 54902 2019-12-02T12:03:22.904538scmdmz1 sshd\[1877\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.163.11 2019-12-02T12:03:24.879185scmdmz1 sshd\[1877\]: Failed password for invalid user sofus from 138.197.163.11 port 54902 ssh2 ...	2019-12-02 19:11:29
118.172.188.195	attackspambots	port scan and connect, tcp 23 (telnet)	2019-12-02 19:14:51
125.124.152.59	attackbots	Dec 2 12:08:38 root sshd[7352]: Failed password for root from 125.124.152.59 port 39508 ssh2 Dec 2 12:16:31 root sshd[7535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.152.59 Dec 2 12:16:33 root sshd[7535]: Failed password for invalid user www from 125.124.152.59 port 49234 ssh2 ...	2019-12-02 19:34:33
149.210.159.123	attackspambots	Dec 2 12:01:13 ArkNodeAT sshd\[32328\]: Invalid user claybrook from 149.210.159.123 Dec 2 12:01:13 ArkNodeAT sshd\[32328\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.210.159.123 Dec 2 12:01:15 ArkNodeAT sshd\[32328\]: Failed password for invalid user claybrook from 149.210.159.123 port 46412 ssh2	2019-12-02 19:09:50
222.186.180.223	attack	Dec 2 12:22:46 eventyay sshd[6274]: Failed password for root from 222.186.180.223 port 53116 ssh2 Dec 2 12:23:00 eventyay sshd[6274]: error: maximum authentication attempts exceeded for root from 222.186.180.223 port 53116 ssh2 [preauth] Dec 2 12:23:08 eventyay sshd[6293]: Failed password for root from 222.186.180.223 port 29424 ssh2 ...	2019-12-02 19:25:05
194.243.6.150	attack	2019-12-02T08:53:37.339928abusebot-5.cloudsearch.cf sshd\[27184\]: Invalid user robert from 194.243.6.150 port 50244	2019-12-02 19:16:20
112.85.42.187	attackbots	Dec 2 11:27:19 ns381471 sshd[18709]: Failed password for root from 112.85.42.187 port 24246 ssh2	2019-12-02 19:29:22
106.13.70.29	attackbots	Dec 2 11:36:44 OPSO sshd\[19481\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.29 user=backup Dec 2 11:36:46 OPSO sshd\[19481\]: Failed password for backup from 106.13.70.29 port 53592 ssh2 Dec 2 11:44:10 OPSO sshd\[20762\]: Invalid user smmsp from 106.13.70.29 port 51792 Dec 2 11:44:10 OPSO sshd\[20762\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.29 Dec 2 11:44:12 OPSO sshd\[20762\]: Failed password for invalid user smmsp from 106.13.70.29 port 51792 ssh2	2019-12-02 19:01:22

最近上报的IP列表

14.219.91.151	128.232.194.101	34.81.193.214	107.80.176.177
78.207.22.205	236.135.136.211	239.141.62.17	137.10.235.1
188.34.178.117	62.210.29.142	173.55.157.224	13.227.209.190
61.191.55.33	192.70.121.169	178.128.53.79	60.167.22.138
42.127.104.179	181.64.176.95	53.232.216.113	190.200.46.107