106.12.204.75 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Jul 8 01:32:07 piServer sshd[28772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 Jul 8 01:32:08 piServer sshd[28772]: Failed password for invalid user tibor from 106.12.204.75 port 33702 ssh2 Jul 8 01:32:46 piServer sshd[28819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 ...	2020-07-08 10:33:29
attackspam	Jul 4 06:31:26 server1 sshd\[8519\]: Invalid user vikram from 106.12.204.75 Jul 4 06:31:26 server1 sshd\[8519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 Jul 4 06:31:28 server1 sshd\[8519\]: Failed password for invalid user vikram from 106.12.204.75 port 38094 ssh2 Jul 4 06:34:36 server1 sshd\[28895\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 user=mysql Jul 4 06:34:38 server1 sshd\[28895\]: Failed password for mysql from 106.12.204.75 port 49950 ssh2 ...	2020-07-04 23:39:43
attackspambots	Jun 10 05:43:46 vps sshd[139427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 Jun 10 05:43:48 vps sshd[139427]: Failed password for invalid user ts1 from 106.12.204.75 port 56870 ssh2 Jun 10 05:47:11 vps sshd[155357]: Invalid user armenta from 106.12.204.75 port 49022 Jun 10 05:47:11 vps sshd[155357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 Jun 10 05:47:12 vps sshd[155357]: Failed password for invalid user armenta from 106.12.204.75 port 49022 ssh2 ...	2020-06-10 18:43:11
attackspam	May 26 03:12:56 eventyay sshd[18004]: Failed password for root from 106.12.204.75 port 38934 ssh2 May 26 03:15:59 eventyay sshd[18122]: Failed password for root from 106.12.204.75 port 55372 ssh2 May 26 03:19:05 eventyay sshd[18210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 ...	2020-05-26 12:57:03
attack	20 attempts against mh-ssh on echoip	2020-05-23 07:44:16
attack	May 11 10:16:51 vps58358 sshd\[5075\]: Invalid user sammy from 106.12.204.75May 11 10:16:53 vps58358 sshd\[5075\]: Failed password for invalid user sammy from 106.12.204.75 port 60900 ssh2May 11 10:21:47 vps58358 sshd\[5151\]: Invalid user andres from 106.12.204.75May 11 10:21:49 vps58358 sshd\[5151\]: Failed password for invalid user andres from 106.12.204.75 port 59578 ssh2May 11 10:23:22 vps58358 sshd\[5189\]: Invalid user lorenza from 106.12.204.75May 11 10:23:24 vps58358 sshd\[5189\]: Failed password for invalid user lorenza from 106.12.204.75 port 40330 ssh2 ...	2020-05-11 19:31:29
attackspam	Invalid user sentry from 106.12.204.75 port 60602	2020-05-03 08:01:49
attackspam	2020-04-27T05:56:02.776609vps751288.ovh.net sshd\[4943\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 user=root 2020-04-27T05:56:04.793760vps751288.ovh.net sshd\[4943\]: Failed password for root from 106.12.204.75 port 56458 ssh2 2020-04-27T05:59:00.958686vps751288.ovh.net sshd\[4963\]: Invalid user peter from 106.12.204.75 port 41906 2020-04-27T05:59:00.965270vps751288.ovh.net sshd\[4963\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 2020-04-27T05:59:03.083110vps751288.ovh.net sshd\[4963\]: Failed password for invalid user peter from 106.12.204.75 port 41906 ssh2	2020-04-27 12:55:12
attackbotsspam	Apr 9 14:57:47 * sshd[8223]: Failed password for irc from 106.12.204.75 port 37106 ssh2 Apr 9 15:02:15 * sshd[8818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75	2020-04-09 23:29:24
attack	Mar 24 18:34:40 ny01 sshd[9428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 Mar 24 18:34:42 ny01 sshd[9428]: Failed password for invalid user digital from 106.12.204.75 port 47502 ssh2 Mar 24 18:37:50 ny01 sshd[10686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75	2020-03-25 07:14:35
attackbots	5x Failed Password	2020-03-20 06:20:31
attack	Invalid user info from 106.12.204.75 port 48488	2020-03-14 14:02:40
attackspambots	$f2bV_matches	2020-02-28 07:13:50
attack	Unauthorized connection attempt detected from IP address 106.12.204.75 to port 2220 [J]	2020-01-23 20:38:25
attack	Invalid user apply from 106.12.204.75 port 43752	2020-01-19 03:25:07
attackbotsspam	Unauthorized connection attempt detected from IP address 106.12.204.75 to port 2220 [J]	2020-01-17 04:17:18
attack	Jan 7 11:47:15 MK-Soft-VM5 sshd[6078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 Jan 7 11:47:17 MK-Soft-VM5 sshd[6078]: Failed password for invalid user apple from 106.12.204.75 port 45060 ssh2 ...	2020-01-07 19:00:56

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.204.81	attackbots	Aug 30 23:54:23 PorscheCustomer sshd[27932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 Aug 30 23:54:25 PorscheCustomer sshd[27932]: Failed password for invalid user mali from 106.12.204.81 port 59612 ssh2 Aug 30 23:57:37 PorscheCustomer sshd[28031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 ...	2020-08-31 07:01:57
106.12.204.81	attackspambots	Aug 26 23:48:41 pve1 sshd[10261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 Aug 26 23:48:43 pve1 sshd[10261]: Failed password for invalid user juanita from 106.12.204.81 port 48440 ssh2 ...	2020-08-27 09:03:40
106.12.204.81	attack	Aug 24 00:33:13 h2646465 sshd[9337]: Invalid user m from 106.12.204.81 Aug 24 00:33:13 h2646465 sshd[9337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 Aug 24 00:33:13 h2646465 sshd[9337]: Invalid user m from 106.12.204.81 Aug 24 00:33:15 h2646465 sshd[9337]: Failed password for invalid user m from 106.12.204.81 port 46784 ssh2 Aug 24 00:46:13 h2646465 sshd[11345]: Invalid user account from 106.12.204.81 Aug 24 00:46:13 h2646465 sshd[11345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 Aug 24 00:46:13 h2646465 sshd[11345]: Invalid user account from 106.12.204.81 Aug 24 00:46:15 h2646465 sshd[11345]: Failed password for invalid user account from 106.12.204.81 port 50808 ssh2 Aug 24 00:49:42 h2646465 sshd[11475]: Invalid user tower from 106.12.204.81 ...	2020-08-24 08:53:14
106.12.204.81	attackspam	Aug 19 15:17:45 home sshd[1601724]: Failed password for invalid user admin7 from 106.12.204.81 port 40820 ssh2 Aug 19 15:20:03 home sshd[1603224]: Invalid user stats from 106.12.204.81 port 37220 Aug 19 15:20:03 home sshd[1603224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 Aug 19 15:20:03 home sshd[1603224]: Invalid user stats from 106.12.204.81 port 37220 Aug 19 15:20:05 home sshd[1603224]: Failed password for invalid user stats from 106.12.204.81 port 37220 ssh2 ...	2020-08-19 21:29:54
106.12.204.81	attackspam	Aug 11 12:53:21 localhost sshd[33365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 user=root Aug 11 12:53:23 localhost sshd[33365]: Failed password for root from 106.12.204.81 port 44664 ssh2 Aug 11 12:58:13 localhost sshd[33920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 user=root Aug 11 12:58:15 localhost sshd[33920]: Failed password for root from 106.12.204.81 port 42184 ssh2 Aug 11 13:02:54 localhost sshd[34462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 user=root Aug 11 13:02:56 localhost sshd[34462]: Failed password for root from 106.12.204.81 port 39688 ssh2 ...	2020-08-12 01:38:27
106.12.204.174	attack	106.12.204.174 - - [04/Aug/2020:21:58:16 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1865 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 106.12.204.174 - - [04/Aug/2020:21:58:17 +0100] "POST /wp/xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 106.12.204.174 - - [04/Aug/2020:22:13:16 +0100] "POST /wp-login.php HTTP/1.1" 200 1949 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-05 06:23:13
106.12.204.81	attackspambots	Aug 4 05:53:24 vps639187 sshd\[8366\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 user=root Aug 4 05:53:26 vps639187 sshd\[8366\]: Failed password for root from 106.12.204.81 port 39270 ssh2 Aug 4 05:56:46 vps639187 sshd\[8394\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 user=root ...	2020-08-04 14:01:17
106.12.204.81	attackbotsspam	Bruteforce detected by fail2ban	2020-08-04 07:53:34
106.12.204.81	attackbots	sshd jail - ssh hack attempt	2020-07-26 04:55:58
106.12.204.81	attackspambots	Jul 25 00:41:17 vps647732 sshd[11246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 Jul 25 00:41:19 vps647732 sshd[11246]: Failed password for invalid user vaibhav from 106.12.204.81 port 57160 ssh2 ...	2020-07-25 07:59:57
106.12.204.81	attack	Jul 10 08:31:05 rancher-0 sshd[226801]: Invalid user jeraldine from 106.12.204.81 port 54178 ...	2020-07-10 15:40:56
106.12.204.81	attack	Jul 9 15:54:09 vm0 sshd[32487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 Jul 9 15:54:10 vm0 sshd[32487]: Failed password for invalid user yaohuachao from 106.12.204.81 port 53130 ssh2 ...	2020-07-09 22:23:05
106.12.204.174	attackspambots	Automatic report - Banned IP Access	2020-07-07 16:20:30
106.12.204.174	attackspambots	WordPress brute force	2020-06-17 08:54:44
106.12.204.81	attackbotsspam	detected by Fail2Ban	2020-06-10 02:40:47

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.204.75
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11226
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.204.75.			IN	A

;; AUTHORITY SECTION:
.			595	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010700 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 07 19:00:53 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 75.204.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 75.204.12.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
59.36.83.249	attackspam	Feb 25 09:11:39 hanapaa sshd\[27260\]: Invalid user admin2 from 59.36.83.249 Feb 25 09:11:39 hanapaa sshd\[27260\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.36.83.249 Feb 25 09:11:41 hanapaa sshd\[27260\]: Failed password for invalid user admin2 from 59.36.83.249 port 37690 ssh2 Feb 25 09:17:53 hanapaa sshd\[27747\]: Invalid user carlo from 59.36.83.249 Feb 25 09:17:53 hanapaa sshd\[27747\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.36.83.249	2020-02-26 04:33:37
190.152.217.158	attackbotsspam	Honeypot attack, port: 445, PTR: 158.217.152.190.static.anycast.cnt-grms.ec.	2020-02-26 04:55:44
51.255.132.213	attack	Feb 25 17:35:41 sshd\[16357\]: Invalid user csgoserver from 51.255.132.213Feb 25 17:35:43 sshd\[16357\]: Failed password for invalid user csgoserver from 51.255.132.213 port 40912 ssh2 ...	2020-02-26 04:53:51
82.102.173.78	attack	firewall-block, port(s): 21011/tcp	2020-02-26 04:58:51
91.250.242.12	attack	02/25/2020-19:28:05.773062 91.250.242.12 Protocol: 6 ET TOR Known Tor Exit Node Traffic group 87	2020-02-26 04:30:05
211.51.219.193	attack	Feb 25 17:53:08 sshd\[17085\]: Invalid user deploy from 211.51.219.193Feb 25 17:53:10 sshd\[17085\]: Failed password for invalid user deploy from 211.51.219.193 port 48080 ssh2 ...	2020-02-26 04:39:26
51.178.78.153	attackspambots	Feb 25 20:49:09 debian-2gb-nbg1-2 kernel: \[4919346.611892\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=51.178.78.153 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=43193 DPT=6881 WINDOW=65535 RES=0x00 SYN URGP=0	2020-02-26 04:46:58
193.169.132.216	attackspam	445/tcp [2020-02-25]1pkt	2020-02-26 04:57:47
138.197.171.149	attackbotsspam	$f2bV_matches	2020-02-26 04:26:28
103.91.54.100	attackspam	Feb 25 20:27:31 ns382633 sshd\[10963\]: Invalid user loyal from 103.91.54.100 port 53585 Feb 25 20:27:31 ns382633 sshd\[10963\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.91.54.100 Feb 25 20:27:33 ns382633 sshd\[10963\]: Failed password for invalid user loyal from 103.91.54.100 port 53585 ssh2 Feb 25 20:53:40 ns382633 sshd\[15078\]: Invalid user newadmin from 103.91.54.100 port 43950 Feb 25 20:53:40 ns382633 sshd\[15078\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.91.54.100	2020-02-26 04:21:03
71.6.135.131	attackbots	port scan and connect, tcp 22 (ssh)	2020-02-26 04:56:28
187.21.160.231	attackbotsspam	DATE:2020-02-25 17:33:52, IP:187.21.160.231, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-02-26 04:33:19
94.102.56.181	attackspambots	" "	2020-02-26 04:35:47
177.124.88.1	attack	Feb 25 19:46:46 lnxweb61 sshd[7012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.124.88.1	2020-02-26 04:28:10
202.175.126.186	attack	suspicious action Tue, 25 Feb 2020 13:36:06 -0300	2020-02-26 04:30:53

最近上报的IP列表

42.113.22.38	41.146.13.125	41.90.8.226	37.57.82.112
5.21.67.52	3.82.19.216	2.184.223.80	1.34.84.30
220.133.220.149	202.102.79.232	136.244.81.101	101.164.233.20
201.95.91.108	190.48.92.181	189.253.215.6	183.90.87.186
176.236.42.218	168.0.174.166	162.200.143.124	161.142.208.31