106.12.199.117

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	sshguard	2020-10-09 01:32:39
attack	sshguard	2020-10-08 17:28:52
attack	SSH brute-force attempt	2020-09-14 22:58:14
attackspam	SSH brute-force attempt	2020-09-14 14:48:05
attack	Bruteforce detected by fail2ban	2020-09-14 06:44:00
attackspam	Aug 18 00:49:48 vps sshd[536496]: Failed password for invalid user john from 106.12.199.117 port 38692 ssh2 Aug 18 00:53:46 vps sshd[561333]: Invalid user michael from 106.12.199.117 port 48426 Aug 18 00:53:46 vps sshd[561333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 Aug 18 00:53:49 vps sshd[561333]: Failed password for invalid user michael from 106.12.199.117 port 48426 ssh2 Aug 18 00:57:41 vps sshd[583692]: Invalid user krm from 106.12.199.117 port 58148 ...	2020-08-18 07:00:39
attackspam	2020-08-02T17:35:36.522097abusebot-3.cloudsearch.cf sshd[24513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 user=root 2020-08-02T17:35:38.479817abusebot-3.cloudsearch.cf sshd[24513]: Failed password for root from 106.12.199.117 port 43918 ssh2 2020-08-02T17:38:33.931214abusebot-3.cloudsearch.cf sshd[24548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 user=root 2020-08-02T17:38:35.190828abusebot-3.cloudsearch.cf sshd[24548]: Failed password for root from 106.12.199.117 port 52234 ssh2 2020-08-02T17:41:15.630278abusebot-3.cloudsearch.cf sshd[24637]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 user=root 2020-08-02T17:41:17.462123abusebot-3.cloudsearch.cf sshd[24637]: Failed password for root from 106.12.199.117 port 60552 ssh2 2020-08-02T17:44:06.852772abusebot-3.cloudsearch.cf sshd[24668]: pam_unix(sshd:auth): ...	2020-08-03 03:35:15
attackbots	Jul 13 12:22:48 *** sshd[11039]: Invalid user client from 106.12.199.117	2020-07-13 22:13:59
attack	Jul 3 16:00:27 NPSTNNYC01T sshd[18767]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 Jul 3 16:00:29 NPSTNNYC01T sshd[18767]: Failed password for invalid user hiperg from 106.12.199.117 port 49542 ssh2 Jul 3 16:03:21 NPSTNNYC01T sshd[19007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 ...	2020-07-04 04:19:59
attackspam	Jun 30 20:55:15 DAAP sshd[3608]: Invalid user omnix from 106.12.199.117 port 37702 Jun 30 20:55:16 DAAP sshd[3608]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 Jun 30 20:55:15 DAAP sshd[3608]: Invalid user omnix from 106.12.199.117 port 37702 Jun 30 20:55:18 DAAP sshd[3608]: Failed password for invalid user omnix from 106.12.199.117 port 37702 ssh2 Jun 30 21:01:54 DAAP sshd[3656]: Invalid user ftp from 106.12.199.117 port 48426 ...	2020-07-01 18:50:04
attack	Jun 11 09:12:33 ns37 sshd[1223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 Jun 11 09:12:35 ns37 sshd[1223]: Failed password for invalid user oracle from 106.12.199.117 port 54766 ssh2 Jun 11 09:16:02 ns37 sshd[1402]: Failed password for root from 106.12.199.117 port 46594 ssh2	2020-06-11 15:21:49
attack	May 3 14:02:34 OPSO sshd\[465\]: Invalid user xbox from 106.12.199.117 port 48946 May 3 14:02:34 OPSO sshd\[465\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 May 3 14:02:36 OPSO sshd\[465\]: Failed password for invalid user xbox from 106.12.199.117 port 48946 ssh2 May 3 14:06:55 OPSO sshd\[1367\]: Invalid user sj from 106.12.199.117 port 52926 May 3 14:06:55 OPSO sshd\[1367\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117	2020-05-04 03:04:41
attackspambots	Unauthorized SSH login attempts	2020-04-18 00:32:00
attackspambots	Apr 14 21:47:57 scw-6657dc sshd[26055]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 user=root Apr 14 21:47:57 scw-6657dc sshd[26055]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 user=root Apr 14 21:47:58 scw-6657dc sshd[26055]: Failed password for root from 106.12.199.117 port 41230 ssh2 ...	2020-04-15 06:03:04
attack	Apr 13 00:12:05 cdc sshd[28385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 Apr 13 00:12:08 cdc sshd[28385]: Failed password for invalid user vojin from 106.12.199.117 port 33312 ssh2	2020-04-13 08:13:37
attack	Apr 11 08:10:33 srv206 sshd[4657]: Invalid user admin from 106.12.199.117 ...	2020-04-11 14:49:41
attack	Mar 13 04:24:11 vps sshd[9500]: Failed password for root from 106.12.199.117 port 39354 ssh2 Mar 13 04:48:36 vps sshd[10611]: Failed password for root from 106.12.199.117 port 59398 ssh2 ...	2020-03-13 14:27:43
attack	Mar 4 05:47:45 Ubuntu-1404-trusty-64-minimal sshd\[5543\]: Invalid user tmbcn from 106.12.199.117 Mar 4 05:47:45 Ubuntu-1404-trusty-64-minimal sshd\[5543\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 Mar 4 05:47:48 Ubuntu-1404-trusty-64-minimal sshd\[5543\]: Failed password for invalid user tmbcn from 106.12.199.117 port 47410 ssh2 Mar 4 06:05:09 Ubuntu-1404-trusty-64-minimal sshd\[18072\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 user=root Mar 4 06:05:12 Ubuntu-1404-trusty-64-minimal sshd\[18072\]: Failed password for root from 106.12.199.117 port 48456 ssh2	2020-03-04 15:52:50

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.199.30	attackspambots	Sep 28 15:23:05 ns382633 sshd\[8529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 user=root Sep 28 15:23:07 ns382633 sshd\[8529\]: Failed password for root from 106.12.199.30 port 53908 ssh2 Sep 28 15:29:29 ns382633 sshd\[9778\]: Invalid user crm from 106.12.199.30 port 56700 Sep 28 15:29:29 ns382633 sshd\[9778\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 Sep 28 15:29:31 ns382633 sshd\[9778\]: Failed password for invalid user crm from 106.12.199.30 port 56700 ssh2	2020-09-29 04:29:25
106.12.199.30	attack	Invalid user claudio from 106.12.199.30 port 41208	2020-09-28 20:44:48
106.12.199.30	attackbotsspam	Sep 27 07:56:53 abendstille sshd\[25457\]: Invalid user song from 106.12.199.30 Sep 27 07:56:53 abendstille sshd\[25457\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 Sep 27 07:56:55 abendstille sshd\[25457\]: Failed password for invalid user song from 106.12.199.30 port 44214 ssh2 Sep 27 08:01:40 abendstille sshd\[30149\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 user=root Sep 27 08:01:42 abendstille sshd\[30149\]: Failed password for root from 106.12.199.30 port 49748 ssh2 ...	2020-09-28 02:42:05
106.12.199.30	attackspam	Sep 27 07:56:53 abendstille sshd\[25457\]: Invalid user song from 106.12.199.30 Sep 27 07:56:53 abendstille sshd\[25457\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 Sep 27 07:56:55 abendstille sshd\[25457\]: Failed password for invalid user song from 106.12.199.30 port 44214 ssh2 Sep 27 08:01:40 abendstille sshd\[30149\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 user=root Sep 27 08:01:42 abendstille sshd\[30149\]: Failed password for root from 106.12.199.30 port 49748 ssh2 ...	2020-09-27 18:48:35
106.12.199.30	attackspam	Aug 23 10:55:58 gw1 sshd[5231]: Failed password for root from 106.12.199.30 port 46672 ssh2 Aug 23 10:58:44 gw1 sshd[5294]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 ...	2020-08-23 15:43:44
106.12.199.30	attackspam	Aug 17 15:44:14 ns381471 sshd[13041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 Aug 17 15:44:15 ns381471 sshd[13041]: Failed password for invalid user monitor from 106.12.199.30 port 33984 ssh2	2020-08-17 23:03:05
106.12.199.30	attack	Too many connections or unauthorized access detected from Arctic banned ip	2020-08-07 05:38:24
106.12.199.30	attack	Jul 19 18:51:48 vps687878 sshd\[31750\]: Invalid user glen from 106.12.199.30 port 51232 Jul 19 18:51:48 vps687878 sshd\[31750\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 Jul 19 18:51:50 vps687878 sshd\[31750\]: Failed password for invalid user glen from 106.12.199.30 port 51232 ssh2 Jul 19 18:57:00 vps687878 sshd\[32099\]: Invalid user main from 106.12.199.30 port 55466 Jul 19 18:57:00 vps687878 sshd\[32099\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 ...	2020-07-20 01:01:12
106.12.199.30	attackspam	Jul 13 23:01:25 mout sshd[30708]: Invalid user job from 106.12.199.30 port 38816	2020-07-14 08:14:00
106.12.199.30	attackbots	Jul 8 00:07:14 vps687878 sshd\[13571\]: Failed password for invalid user biagio from 106.12.199.30 port 59294 ssh2 Jul 8 00:10:47 vps687878 sshd\[14046\]: Invalid user fangyiwei from 106.12.199.30 port 53168 Jul 8 00:10:47 vps687878 sshd\[14046\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 Jul 8 00:10:50 vps687878 sshd\[14046\]: Failed password for invalid user fangyiwei from 106.12.199.30 port 53168 ssh2 Jul 8 00:14:28 vps687878 sshd\[14375\]: Invalid user hansheng from 106.12.199.30 port 47058 Jul 8 00:14:28 vps687878 sshd\[14375\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 ...	2020-07-08 06:43:28
106.12.199.30	attackspam	$f2bV_matches	2020-06-11 02:49:14
106.12.199.30	attackspam	May 31 01:46:36 vps46666688 sshd[22072]: Failed password for root from 106.12.199.30 port 34094 ssh2 ...	2020-05-31 13:49:36
106.12.199.30	attackspam	$f2bV_matches	2020-05-29 19:37:46
106.12.199.30	attackspam	May 28 11:03:20 vps46666688 sshd[20641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 May 28 11:03:22 vps46666688 sshd[20641]: Failed password for invalid user ubnt from 106.12.199.30 port 40646 ssh2 ...	2020-05-28 22:09:27
106.12.199.30	attack	May 28 08:55:47 MainVPS sshd[2610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 user=root May 28 08:55:48 MainVPS sshd[2610]: Failed password for root from 106.12.199.30 port 35374 ssh2 May 28 09:03:10 MainVPS sshd[8808]: Invalid user ts from 106.12.199.30 port 33306 May 28 09:03:10 MainVPS sshd[8808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 May 28 09:03:10 MainVPS sshd[8808]: Invalid user ts from 106.12.199.30 port 33306 May 28 09:03:12 MainVPS sshd[8808]: Failed password for invalid user ts from 106.12.199.30 port 33306 ssh2 ...	2020-05-28 17:12:30

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.199.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27656
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.199.117.			IN	A

;; AUTHORITY SECTION:
.			560	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030401 1800 900 604800 86400

;; Query time: 43 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 04 15:52:46 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 117.199.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 117.199.12.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
118.223.237.2	attack	Apr 13 00:31:49 vps sshd[188469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.223.237.2 user=root Apr 13 00:31:50 vps sshd[188469]: Failed password for root from 118.223.237.2 port 55272 ssh2 Apr 13 00:36:00 vps sshd[213081]: Invalid user delnaz from 118.223.237.2 port 35452 Apr 13 00:36:00 vps sshd[213081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.223.237.2 Apr 13 00:36:02 vps sshd[213081]: Failed password for invalid user delnaz from 118.223.237.2 port 35452 ssh2 ...	2020-04-13 06:41:01
218.248.42.226	attackspambots	1433/tcp 445/tcp [2020-03-19/04-12]2pkt	2020-04-13 06:51:03
101.36.150.59	attackspambots	bruteforce detected	2020-04-13 06:47:14
94.191.70.187	attackbotsspam	Apr 12 23:17:19 cdc sshd[25348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.70.187 Apr 12 23:17:21 cdc sshd[25348]: Failed password for invalid user mysql from 94.191.70.187 port 55886 ssh2	2020-04-13 07:13:54
88.88.112.98	attackspambots	Apr 13 00:29:21 vps sshd[171840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ti0003a400-3666.bb.online.no user=root Apr 13 00:29:23 vps sshd[171840]: Failed password for root from 88.88.112.98 port 43194 ssh2 Apr 13 00:34:02 vps sshd[199680]: Invalid user ROot from 88.88.112.98 port 51526 Apr 13 00:34:02 vps sshd[199680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ti0003a400-3666.bb.online.no Apr 13 00:34:04 vps sshd[199680]: Failed password for invalid user ROot from 88.88.112.98 port 51526 ssh2 ...	2020-04-13 07:02:04
66.161.137.115	attack	445/tcp 445/tcp 445/tcp [2020-03-04/04-12]3pkt	2020-04-13 06:47:56
125.212.217.214	attack	firewall-block, port(s): 28017/tcp	2020-04-13 06:37:22
103.87.214.100	attack	Invalid user admin from 103.87.214.100 port 34210	2020-04-13 07:12:16
175.126.176.21	attack	DATE:2020-04-12 22:40:03, IP:175.126.176.21, PORT:ssh SSH brute force auth (docker-dc)	2020-04-13 06:58:17
68.183.181.7	attack	Apr 12 23:14:58 contabo sshd[23090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.181.7 Apr 12 23:15:01 contabo sshd[23090]: Failed password for invalid user admin from 68.183.181.7 port 35352 ssh2 Apr 12 23:18:51 contabo sshd[23380]: Invalid user denise from 68.183.181.7 port 43352 Apr 12 23:18:51 contabo sshd[23380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.181.7 Apr 12 23:18:53 contabo sshd[23380]: Failed password for invalid user denise from 68.183.181.7 port 43352 ssh2 ...	2020-04-13 06:50:10
104.248.187.165	attackbotsspam	Attempted connection to port 7208.	2020-04-13 06:49:12
89.45.226.116	attackspambots	Invalid user uftp from 89.45.226.116 port 54608	2020-04-13 06:44:36
185.147.68.23	attackspam	$f2bV_matches	2020-04-13 06:36:09
94.183.118.104	attackbotsspam	4567/tcp 8000/tcp [2020-03-12/04-12]2pkt	2020-04-13 07:01:50
222.186.175.148	attack	Apr 13 00:56:11 eventyay sshd[24898]: Failed password for root from 222.186.175.148 port 42804 ssh2 Apr 13 00:56:23 eventyay sshd[24898]: error: maximum authentication attempts exceeded for root from 222.186.175.148 port 42804 ssh2 [preauth] Apr 13 00:56:29 eventyay sshd[24903]: Failed password for root from 222.186.175.148 port 47144 ssh2 ...	2020-04-13 07:05:58

最近上报的IP列表

85.255.203.42	122.114.73.23	86.99.211.242	85.74.72.127
123.193.147.150	117.4.243.188	86.35.26.109	45.56.137.133
186.104.234.253	64.225.58.236	86.253.33.116	3.120.37.90
58.250.125.185	49.7.20.28	115.75.82.51	180.251.150.145
113.161.143.173	208.80.202.2	86.124.98.74	189.208.166.202