106.12.199.117

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	sshguard	2020-10-09 01:32:39
attack	sshguard	2020-10-08 17:28:52
attack	SSH brute-force attempt	2020-09-14 22:58:14
attackspam	SSH brute-force attempt	2020-09-14 14:48:05
attack	Bruteforce detected by fail2ban	2020-09-14 06:44:00
attackspam	Aug 18 00:49:48 vps sshd[536496]: Failed password for invalid user john from 106.12.199.117 port 38692 ssh2 Aug 18 00:53:46 vps sshd[561333]: Invalid user michael from 106.12.199.117 port 48426 Aug 18 00:53:46 vps sshd[561333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 Aug 18 00:53:49 vps sshd[561333]: Failed password for invalid user michael from 106.12.199.117 port 48426 ssh2 Aug 18 00:57:41 vps sshd[583692]: Invalid user krm from 106.12.199.117 port 58148 ...	2020-08-18 07:00:39
attackspam	2020-08-02T17:35:36.522097abusebot-3.cloudsearch.cf sshd[24513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 user=root 2020-08-02T17:35:38.479817abusebot-3.cloudsearch.cf sshd[24513]: Failed password for root from 106.12.199.117 port 43918 ssh2 2020-08-02T17:38:33.931214abusebot-3.cloudsearch.cf sshd[24548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 user=root 2020-08-02T17:38:35.190828abusebot-3.cloudsearch.cf sshd[24548]: Failed password for root from 106.12.199.117 port 52234 ssh2 2020-08-02T17:41:15.630278abusebot-3.cloudsearch.cf sshd[24637]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 user=root 2020-08-02T17:41:17.462123abusebot-3.cloudsearch.cf sshd[24637]: Failed password for root from 106.12.199.117 port 60552 ssh2 2020-08-02T17:44:06.852772abusebot-3.cloudsearch.cf sshd[24668]: pam_unix(sshd:auth): ...	2020-08-03 03:35:15
attackbots	Jul 13 12:22:48 *** sshd[11039]: Invalid user client from 106.12.199.117	2020-07-13 22:13:59
attack	Jul 3 16:00:27 NPSTNNYC01T sshd[18767]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 Jul 3 16:00:29 NPSTNNYC01T sshd[18767]: Failed password for invalid user hiperg from 106.12.199.117 port 49542 ssh2 Jul 3 16:03:21 NPSTNNYC01T sshd[19007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 ...	2020-07-04 04:19:59
attackspam	Jun 30 20:55:15 DAAP sshd[3608]: Invalid user omnix from 106.12.199.117 port 37702 Jun 30 20:55:16 DAAP sshd[3608]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 Jun 30 20:55:15 DAAP sshd[3608]: Invalid user omnix from 106.12.199.117 port 37702 Jun 30 20:55:18 DAAP sshd[3608]: Failed password for invalid user omnix from 106.12.199.117 port 37702 ssh2 Jun 30 21:01:54 DAAP sshd[3656]: Invalid user ftp from 106.12.199.117 port 48426 ...	2020-07-01 18:50:04
attack	Jun 11 09:12:33 ns37 sshd[1223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 Jun 11 09:12:35 ns37 sshd[1223]: Failed password for invalid user oracle from 106.12.199.117 port 54766 ssh2 Jun 11 09:16:02 ns37 sshd[1402]: Failed password for root from 106.12.199.117 port 46594 ssh2	2020-06-11 15:21:49
attack	May 3 14:02:34 OPSO sshd\[465\]: Invalid user xbox from 106.12.199.117 port 48946 May 3 14:02:34 OPSO sshd\[465\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 May 3 14:02:36 OPSO sshd\[465\]: Failed password for invalid user xbox from 106.12.199.117 port 48946 ssh2 May 3 14:06:55 OPSO sshd\[1367\]: Invalid user sj from 106.12.199.117 port 52926 May 3 14:06:55 OPSO sshd\[1367\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117	2020-05-04 03:04:41
attackspambots	Unauthorized SSH login attempts	2020-04-18 00:32:00
attackspambots	Apr 14 21:47:57 scw-6657dc sshd[26055]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 user=root Apr 14 21:47:57 scw-6657dc sshd[26055]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 user=root Apr 14 21:47:58 scw-6657dc sshd[26055]: Failed password for root from 106.12.199.117 port 41230 ssh2 ...	2020-04-15 06:03:04
attack	Apr 13 00:12:05 cdc sshd[28385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 Apr 13 00:12:08 cdc sshd[28385]: Failed password for invalid user vojin from 106.12.199.117 port 33312 ssh2	2020-04-13 08:13:37
attack	Apr 11 08:10:33 srv206 sshd[4657]: Invalid user admin from 106.12.199.117 ...	2020-04-11 14:49:41
attack	Mar 13 04:24:11 vps sshd[9500]: Failed password for root from 106.12.199.117 port 39354 ssh2 Mar 13 04:48:36 vps sshd[10611]: Failed password for root from 106.12.199.117 port 59398 ssh2 ...	2020-03-13 14:27:43
attack	Mar 4 05:47:45 Ubuntu-1404-trusty-64-minimal sshd\[5543\]: Invalid user tmbcn from 106.12.199.117 Mar 4 05:47:45 Ubuntu-1404-trusty-64-minimal sshd\[5543\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 Mar 4 05:47:48 Ubuntu-1404-trusty-64-minimal sshd\[5543\]: Failed password for invalid user tmbcn from 106.12.199.117 port 47410 ssh2 Mar 4 06:05:09 Ubuntu-1404-trusty-64-minimal sshd\[18072\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.117 user=root Mar 4 06:05:12 Ubuntu-1404-trusty-64-minimal sshd\[18072\]: Failed password for root from 106.12.199.117 port 48456 ssh2	2020-03-04 15:52:50

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.199.30	attackspambots	Sep 28 15:23:05 ns382633 sshd\[8529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 user=root Sep 28 15:23:07 ns382633 sshd\[8529\]: Failed password for root from 106.12.199.30 port 53908 ssh2 Sep 28 15:29:29 ns382633 sshd\[9778\]: Invalid user crm from 106.12.199.30 port 56700 Sep 28 15:29:29 ns382633 sshd\[9778\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 Sep 28 15:29:31 ns382633 sshd\[9778\]: Failed password for invalid user crm from 106.12.199.30 port 56700 ssh2	2020-09-29 04:29:25
106.12.199.30	attack	Invalid user claudio from 106.12.199.30 port 41208	2020-09-28 20:44:48
106.12.199.30	attackbotsspam	Sep 27 07:56:53 abendstille sshd\[25457\]: Invalid user song from 106.12.199.30 Sep 27 07:56:53 abendstille sshd\[25457\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 Sep 27 07:56:55 abendstille sshd\[25457\]: Failed password for invalid user song from 106.12.199.30 port 44214 ssh2 Sep 27 08:01:40 abendstille sshd\[30149\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 user=root Sep 27 08:01:42 abendstille sshd\[30149\]: Failed password for root from 106.12.199.30 port 49748 ssh2 ...	2020-09-28 02:42:05
106.12.199.30	attackspam	Sep 27 07:56:53 abendstille sshd\[25457\]: Invalid user song from 106.12.199.30 Sep 27 07:56:53 abendstille sshd\[25457\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 Sep 27 07:56:55 abendstille sshd\[25457\]: Failed password for invalid user song from 106.12.199.30 port 44214 ssh2 Sep 27 08:01:40 abendstille sshd\[30149\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 user=root Sep 27 08:01:42 abendstille sshd\[30149\]: Failed password for root from 106.12.199.30 port 49748 ssh2 ...	2020-09-27 18:48:35
106.12.199.30	attackspam	Aug 23 10:55:58 gw1 sshd[5231]: Failed password for root from 106.12.199.30 port 46672 ssh2 Aug 23 10:58:44 gw1 sshd[5294]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 ...	2020-08-23 15:43:44
106.12.199.30	attackspam	Aug 17 15:44:14 ns381471 sshd[13041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 Aug 17 15:44:15 ns381471 sshd[13041]: Failed password for invalid user monitor from 106.12.199.30 port 33984 ssh2	2020-08-17 23:03:05
106.12.199.30	attack	Too many connections or unauthorized access detected from Arctic banned ip	2020-08-07 05:38:24
106.12.199.30	attack	Jul 19 18:51:48 vps687878 sshd\[31750\]: Invalid user glen from 106.12.199.30 port 51232 Jul 19 18:51:48 vps687878 sshd\[31750\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 Jul 19 18:51:50 vps687878 sshd\[31750\]: Failed password for invalid user glen from 106.12.199.30 port 51232 ssh2 Jul 19 18:57:00 vps687878 sshd\[32099\]: Invalid user main from 106.12.199.30 port 55466 Jul 19 18:57:00 vps687878 sshd\[32099\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 ...	2020-07-20 01:01:12
106.12.199.30	attackspam	Jul 13 23:01:25 mout sshd[30708]: Invalid user job from 106.12.199.30 port 38816	2020-07-14 08:14:00
106.12.199.30	attackbots	Jul 8 00:07:14 vps687878 sshd\[13571\]: Failed password for invalid user biagio from 106.12.199.30 port 59294 ssh2 Jul 8 00:10:47 vps687878 sshd\[14046\]: Invalid user fangyiwei from 106.12.199.30 port 53168 Jul 8 00:10:47 vps687878 sshd\[14046\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 Jul 8 00:10:50 vps687878 sshd\[14046\]: Failed password for invalid user fangyiwei from 106.12.199.30 port 53168 ssh2 Jul 8 00:14:28 vps687878 sshd\[14375\]: Invalid user hansheng from 106.12.199.30 port 47058 Jul 8 00:14:28 vps687878 sshd\[14375\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 ...	2020-07-08 06:43:28
106.12.199.30	attackspam	$f2bV_matches	2020-06-11 02:49:14
106.12.199.30	attackspam	May 31 01:46:36 vps46666688 sshd[22072]: Failed password for root from 106.12.199.30 port 34094 ssh2 ...	2020-05-31 13:49:36
106.12.199.30	attackspam	$f2bV_matches	2020-05-29 19:37:46
106.12.199.30	attackspam	May 28 11:03:20 vps46666688 sshd[20641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 May 28 11:03:22 vps46666688 sshd[20641]: Failed password for invalid user ubnt from 106.12.199.30 port 40646 ssh2 ...	2020-05-28 22:09:27
106.12.199.30	attack	May 28 08:55:47 MainVPS sshd[2610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 user=root May 28 08:55:48 MainVPS sshd[2610]: Failed password for root from 106.12.199.30 port 35374 ssh2 May 28 09:03:10 MainVPS sshd[8808]: Invalid user ts from 106.12.199.30 port 33306 May 28 09:03:10 MainVPS sshd[8808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 May 28 09:03:10 MainVPS sshd[8808]: Invalid user ts from 106.12.199.30 port 33306 May 28 09:03:12 MainVPS sshd[8808]: Failed password for invalid user ts from 106.12.199.30 port 33306 ssh2 ...	2020-05-28 17:12:30

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.199.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27656
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.199.117.			IN	A

;; AUTHORITY SECTION:
.			560	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030401 1800 900 604800 86400

;; Query time: 43 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 04 15:52:46 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 117.199.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 117.199.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
159.89.169.125	attackspam	Mar 18 23:29:01 sd-53420 sshd\[18646\]: User root from 159.89.169.125 not allowed because none of user's groups are listed in AllowGroups Mar 18 23:29:01 sd-53420 sshd\[18646\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.169.125 user=root Mar 18 23:29:03 sd-53420 sshd\[18646\]: Failed password for invalid user root from 159.89.169.125 port 54988 ssh2 Mar 18 23:32:25 sd-53420 sshd\[19805\]: Invalid user dba from 159.89.169.125 Mar 18 23:32:25 sd-53420 sshd\[19805\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.169.125 ...	2020-03-19 06:34:41
95.130.168.234	attackspam	Mar 18 23:15:52 odroid64 sshd\[32037\]: User root from 95.130.168.234 not allowed because not listed in AllowUsers Mar 18 23:15:52 odroid64 sshd\[32037\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.130.168.234 user=root ...	2020-03-19 06:30:15
95.217.50.47	attackspam	(From doreen.warby54@gmail.com) Good morning My name is Sergey and I am a founder of Sweaty Quid Freelancer Marketplace just where you can purchase and sell all kinds of on-line solutions ranging from back links and guest post to explainer video clips, infographics and articles for your business website. I believe that you and drroeder.com can seriously benefit from Sweaty Quid, no matter if you would like to supply your services or employ the services of freelancers to assist you to expand your business. I have been a freelancer on a number of marketplaces for over 5 years and have had my accounts randomly shut down, my revenues pocketed and I simply had a tough time with many poor quality freelancers. After much unnecessary aggravation, I made a decision to launch my very own freelance market place that would do things differently and much better. After almost one year of caffeinne powered evenings, myself and my crew at Creative Bear Tech have developed Sweaty Quid from ground up. One month in	2020-03-19 06:21:43
189.79.111.149	attackbotsspam	Mar 18 19:13:46 ws24vmsma01 sshd[112466]: Failed password for root from 189.79.111.149 port 39720 ssh2 Mar 18 19:16:03 ws24vmsma01 sshd[12752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.79.111.149 ...	2020-03-19 06:19:09
69.229.6.47	attackspam	" "	2020-03-19 06:23:29
117.4.114.183	attackspam	Unauthorized connection attempt from IP address 117.4.114.183 on Port 445(SMB)	2020-03-19 06:48:36
91.134.135.220	attackspam	Mar 19 00:18:22 itv-usvr-02 sshd[24826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.135.220 user=root Mar 19 00:21:56 itv-usvr-02 sshd[24937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.135.220 user=root Mar 19 00:25:42 itv-usvr-02 sshd[25085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.135.220	2020-03-19 06:12:43
111.75.215.165	attackspam	Mar 18 23:15:41 nextcloud sshd\[29585\]: Invalid user nas from 111.75.215.165 Mar 18 23:15:41 nextcloud sshd\[29585\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.75.215.165 Mar 18 23:15:43 nextcloud sshd\[29585\]: Failed password for invalid user nas from 111.75.215.165 port 31664 ssh2	2020-03-19 06:37:44
5.231.88.107	attackbots	(From breedlove.ilene79@yahoo.com) Good morning My name is Sergey and I am a co-founder of Sweaty Quid Freelancer Marketplace where you can easily buy and offer all types of online services varying from backlinks and guest post to explainer video tutorials, infographics and articles for your site. I strongly believe that you and jbchiro.com can truly benefit from Sweaty Quid, no matter if you wish to supply your services or employ the services of freelancers to assist you to expand your business. I have been a freelancer on various marketplaces for over 5 years and have had my accounts randomly closed down, my incomes misappropriated and I just simply had a difficult time with many poor quality freelancers. After much unnecessary aggravation, I made a decision to launch my very own freelance marketplace that would do things differently and a lot better. After almost one year of caffeinne powered nights, myself and my team at Creative Bear Tech have developed Sweaty Quid from ground up. One month	2020-03-19 06:29:18
34.92.65.153	attackbots	Mar 19 05:11:07 itv-usvr-02 sshd[3976]: Invalid user rajesh from 34.92.65.153 port 40750 Mar 19 05:11:07 itv-usvr-02 sshd[3976]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.92.65.153 Mar 19 05:11:07 itv-usvr-02 sshd[3976]: Invalid user rajesh from 34.92.65.153 port 40750 Mar 19 05:11:08 itv-usvr-02 sshd[3976]: Failed password for invalid user rajesh from 34.92.65.153 port 40750 ssh2 Mar 19 05:15:50 itv-usvr-02 sshd[4134]: Invalid user spark from 34.92.65.153 port 44970	2020-03-19 06:33:02
122.152.201.228	attackbotsspam	20/3/18@18:15:44: FAIL: Alarm-SSH address from=122.152.201.228 ...	2020-03-19 06:36:13
182.61.185.1	attack	Mar 18 23:06:57 SilenceServices sshd[5248]: Failed password for root from 182.61.185.1 port 50780 ssh2 Mar 18 23:14:27 SilenceServices sshd[10515]: Failed password for root from 182.61.185.1 port 43372 ssh2	2020-03-19 06:23:05
187.114.212.197	attackbotsspam	Unauthorized connection attempt from IP address 187.114.212.197 on Port 445(SMB)	2020-03-19 06:37:30
118.69.8.227	attackbotsspam	Unauthorized connection attempt from IP address 118.69.8.227 on Port 445(SMB)	2020-03-19 06:41:13
178.128.183.90	attack	Mar 18 18:12:10 ny01 sshd[31754]: Failed password for root from 178.128.183.90 port 45938 ssh2 Mar 18 18:13:57 ny01 sshd[32468]: Failed password for root from 178.128.183.90 port 53304 ssh2	2020-03-19 06:38:43

最近上报的IP列表

85.255.203.42	122.114.73.23	86.99.211.242	85.74.72.127
123.193.147.150	117.4.243.188	86.35.26.109	45.56.137.133
186.104.234.253	64.225.58.236	86.253.33.116	3.120.37.90
58.250.125.185	49.7.20.28	115.75.82.51	180.251.150.145
113.161.143.173	208.80.202.2	86.124.98.74	189.208.166.202