106.12.19.8 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jun 8 06:54:33 legacy sshd[15672]: Failed password for root from 106.12.19.8 port 35784 ssh2 Jun 8 06:58:04 legacy sshd[15888]: Failed password for root from 106.12.19.8 port 49374 ssh2 ...	2020-06-08 15:12:00

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.197.37	attackbotsspam	Invalid user support1 from 106.12.197.37 port 34940	2020-10-14 03:36:36
106.12.197.37	attack	Invalid user deginal from 106.12.197.37 port 56416	2020-10-13 18:55:47
106.12.196.118	attackbotsspam	Oct 12 14:10:41 host sshd[17786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.118 user=root Oct 12 14:10:43 host sshd[17786]: Failed password for root from 106.12.196.118 port 38322 ssh2 ...	2020-10-13 00:29:44
106.12.196.118	attack	Invalid user informix from 106.12.196.118 port 41438	2020-10-12 15:51:32
106.12.196.118	attack	2020-10-11T15:47:05.520064kitsunetech sshd[17599]: Invalid user admin from 106.12.196.118 port 37394	2020-10-12 07:43:20
106.12.196.118	attackbotsspam	(sshd) Failed SSH login from 106.12.196.118 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 01:35:39 server5 sshd[21225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.118 user=root Oct 11 01:35:41 server5 sshd[21225]: Failed password for root from 106.12.196.118 port 56116 ssh2 Oct 11 01:36:12 server5 sshd[21554]: Invalid user openvpn from 106.12.196.118 Oct 11 01:36:12 server5 sshd[21554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.118 Oct 11 01:36:14 server5 sshd[21554]: Failed password for invalid user openvpn from 106.12.196.118 port 59952 ssh2	2020-10-12 00:00:17
106.12.196.118	attackbotsspam	(sshd) Failed SSH login from 106.12.196.118 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 01:35:39 server5 sshd[21225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.118 user=root Oct 11 01:35:41 server5 sshd[21225]: Failed password for root from 106.12.196.118 port 56116 ssh2 Oct 11 01:36:12 server5 sshd[21554]: Invalid user openvpn from 106.12.196.118 Oct 11 01:36:12 server5 sshd[21554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.118 Oct 11 01:36:14 server5 sshd[21554]: Failed password for invalid user openvpn from 106.12.196.118 port 59952 ssh2	2020-10-11 15:59:14
106.12.196.118	attack	Oct 11 02:23:19 h2829583 sshd[29641]: Failed password for root from 106.12.196.118 port 49538 ssh2	2020-10-11 09:16:37
106.12.193.6	attackspam	Oct 10 19:01:01 prod4 sshd\[11205\]: Invalid user azureuser from 106.12.193.6 Oct 10 19:01:03 prod4 sshd\[11205\]: Failed password for invalid user azureuser from 106.12.193.6 port 37762 ssh2 Oct 10 19:09:14 prod4 sshd\[14196\]: Failed password for root from 106.12.193.6 port 52658 ssh2 ...	2020-10-11 03:35:50
106.12.193.6	attackbotsspam	repeated SSH login attempts	2020-10-10 19:28:46
106.12.199.117	attackbots	sshguard	2020-10-09 01:32:39
106.12.199.117	attack	sshguard	2020-10-08 17:28:52
106.12.196.118	attack	Bruteforce detected by fail2ban	2020-10-06 06:35:13
106.12.196.118	attack	Bruteforce detected by fail2ban	2020-10-05 22:42:14
106.12.196.118	attackspambots	SSH / Telnet Brute Force Attempts on Honeypot	2020-10-05 14:37:23

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.19.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38507
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.19.8.			IN	A

;; AUTHORITY SECTION:
.			532	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060800 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 08 15:11:55 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 8.19.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 8.19.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
112.17.184.171	attackspam	2020-07-11T11:06:58.157744devel sshd[29113]: Invalid user zabbix from 112.17.184.171 port 36402 2020-07-11T11:07:00.437062devel sshd[29113]: Failed password for invalid user zabbix from 112.17.184.171 port 36402 ssh2 2020-07-11T11:22:47.334626devel sshd[30144]: Invalid user ronica from 112.17.184.171 port 59068	2020-07-12 03:12:07
183.134.91.53	attackbots	SSH bruteforce	2020-07-12 03:01:15
223.223.187.2	attackspambots	Jul 11 20:24:55 OPSO sshd\[16665\]: Invalid user www from 223.223.187.2 port 52717 Jul 11 20:24:55 OPSO sshd\[16665\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.223.187.2 Jul 11 20:24:58 OPSO sshd\[16665\]: Failed password for invalid user www from 223.223.187.2 port 52717 ssh2 Jul 11 20:26:26 OPSO sshd\[17221\]: Invalid user wanker from 223.223.187.2 port 35152 Jul 11 20:26:26 OPSO sshd\[17221\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.223.187.2	2020-07-12 02:53:58
134.209.96.131	attackspam	Jul 11 21:00:59 mout sshd[17321]: Invalid user kristen from 134.209.96.131 port 34452	2020-07-12 03:06:59
111.161.74.106	attackbotsspam	Jul 11 15:51:24 ws12vmsma01 sshd[7425]: Invalid user zhicong from 111.161.74.106 Jul 11 15:51:26 ws12vmsma01 sshd[7425]: Failed password for invalid user zhicong from 111.161.74.106 port 54636 ssh2 Jul 11 15:56:12 ws12vmsma01 sshd[8084]: Invalid user yokoyama from 111.161.74.106 ...	2020-07-12 03:14:24
203.81.99.235	attack	Jul 11 17:52:19 pkdns2 sshd\[30102\]: Invalid user user from 203.81.99.235Jul 11 17:52:20 pkdns2 sshd\[30102\]: Failed password for invalid user user from 203.81.99.235 port 46928 ssh2Jul 11 17:55:02 pkdns2 sshd\[30180\]: Invalid user ftpuser from 203.81.99.235Jul 11 17:55:03 pkdns2 sshd\[30180\]: Failed password for invalid user ftpuser from 203.81.99.235 port 58466 ssh2Jul 11 17:57:52 pkdns2 sshd\[30320\]: Failed password for list from 203.81.99.235 port 41786 ssh2Jul 11 18:00:30 pkdns2 sshd\[30469\]: Invalid user vmail from 203.81.99.235 ...	2020-07-12 02:57:15
54.37.156.188	attackbots	Jul 11 17:39:41 vserver sshd\[28849\]: Invalid user rabbitmq from 54.37.156.188Jul 11 17:39:43 vserver sshd\[28849\]: Failed password for invalid user rabbitmq from 54.37.156.188 port 50725 ssh2Jul 11 17:42:59 vserver sshd\[28878\]: Invalid user cailine from 54.37.156.188Jul 11 17:43:01 vserver sshd\[28878\]: Failed password for invalid user cailine from 54.37.156.188 port 48504 ssh2 ...	2020-07-12 03:24:27
149.56.44.101	attackbots	Fail2Ban - SSH Bruteforce Attempt	2020-07-12 03:05:01
220.130.10.13	attackspambots	Repeated brute force against a port	2020-07-12 02:54:48
111.231.62.217	attackbots	Jul 10 11:36:16 Invalid user user from 111.231.62.217 port 45650	2020-07-12 03:12:56
106.13.164.67	attackbotsspam	2020-07-11T19:53:02.508622mail.broermann.family sshd[29353]: Invalid user abilenki from 106.13.164.67 port 52416 2020-07-11T19:53:02.511623mail.broermann.family sshd[29353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.164.67 2020-07-11T19:53:02.508622mail.broermann.family sshd[29353]: Invalid user abilenki from 106.13.164.67 port 52416 2020-07-11T19:53:03.999351mail.broermann.family sshd[29353]: Failed password for invalid user abilenki from 106.13.164.67 port 52416 ssh2 2020-07-11T19:54:03.515999mail.broermann.family sshd[29408]: Invalid user je from 106.13.164.67 port 56234 ...	2020-07-12 03:17:27
101.93.242.154	attackspam	Jul 9 19:11:53 lamijardin sshd[5997]: Invalid user addie from 101.93.242.154 Jul 9 19:11:53 lamijardin sshd[5997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.93.242.154 Jul 9 19:11:55 lamijardin sshd[5997]: Failed password for invalid user addie from 101.93.242.154 port 51392 ssh2 Jul 9 19:11:55 lamijardin sshd[5997]: Received disconnect from 101.93.242.154 port 51392:11: Bye Bye [preauth] Jul 9 19:11:55 lamijardin sshd[5997]: Disconnected from 101.93.242.154 port 51392 [preauth] Jul 9 19:20:05 lamijardin sshd[6069]: Invalid user edwards from 101.93.242.154 Jul 9 19:20:05 lamijardin sshd[6069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.93.242.154 Jul 9 19:20:07 lamijardin sshd[6069]: Failed password for invalid user edwards from 101.93.242.154 port 47034 ssh2 Jul 9 19:20:07 lamijardin sshd[6069]: Received disconnect from 101.93.242.154 port 47034:11: Bye Bye [prea........ -------------------------------	2020-07-12 03:19:04
221.122.119.50	attack	Invalid user solaris from 221.122.119.50 port 53619	2020-07-12 02:54:34
51.178.50.98	attackspambots	Jul 11 20:23:39 ns382633 sshd\[26713\]: Invalid user izawa from 51.178.50.98 port 44732 Jul 11 20:23:39 ns382633 sshd\[26713\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.50.98 Jul 11 20:23:41 ns382633 sshd\[26713\]: Failed password for invalid user izawa from 51.178.50.98 port 44732 ssh2 Jul 11 20:38:00 ns382633 sshd\[29325\]: Invalid user admin from 51.178.50.98 port 36922 Jul 11 20:38:00 ns382633 sshd\[29325\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.50.98	2020-07-12 03:25:37
157.230.216.233	attackspambots	Brute-force attempt banned	2020-07-12 03:03:45

最近上报的IP列表

118.70.151.185	144.217.228.125	5.180.79.250	114.5.110.250
212.102.33.74	180.241.44.203	174.59.213.75	166.157.225.212
124.11.168.4	203.205.26.10	36.68.86.64	61.93.246.33
85.128.142.248	200.8.127.141	185.55.47.1	182.2.138.113
36.81.7.66	220.132.252.227	190.229.15.254	113.169.151.205