106.12.204.75 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Jul 8 01:32:07 piServer sshd[28772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 Jul 8 01:32:08 piServer sshd[28772]: Failed password for invalid user tibor from 106.12.204.75 port 33702 ssh2 Jul 8 01:32:46 piServer sshd[28819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 ...	2020-07-08 10:33:29
attackspam	Jul 4 06:31:26 server1 sshd\[8519\]: Invalid user vikram from 106.12.204.75 Jul 4 06:31:26 server1 sshd\[8519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 Jul 4 06:31:28 server1 sshd\[8519\]: Failed password for invalid user vikram from 106.12.204.75 port 38094 ssh2 Jul 4 06:34:36 server1 sshd\[28895\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 user=mysql Jul 4 06:34:38 server1 sshd\[28895\]: Failed password for mysql from 106.12.204.75 port 49950 ssh2 ...	2020-07-04 23:39:43
attackspambots	Jun 10 05:43:46 vps sshd[139427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 Jun 10 05:43:48 vps sshd[139427]: Failed password for invalid user ts1 from 106.12.204.75 port 56870 ssh2 Jun 10 05:47:11 vps sshd[155357]: Invalid user armenta from 106.12.204.75 port 49022 Jun 10 05:47:11 vps sshd[155357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 Jun 10 05:47:12 vps sshd[155357]: Failed password for invalid user armenta from 106.12.204.75 port 49022 ssh2 ...	2020-06-10 18:43:11
attackspam	May 26 03:12:56 eventyay sshd[18004]: Failed password for root from 106.12.204.75 port 38934 ssh2 May 26 03:15:59 eventyay sshd[18122]: Failed password for root from 106.12.204.75 port 55372 ssh2 May 26 03:19:05 eventyay sshd[18210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 ...	2020-05-26 12:57:03
attack	20 attempts against mh-ssh on echoip	2020-05-23 07:44:16
attack	May 11 10:16:51 vps58358 sshd\[5075\]: Invalid user sammy from 106.12.204.75May 11 10:16:53 vps58358 sshd\[5075\]: Failed password for invalid user sammy from 106.12.204.75 port 60900 ssh2May 11 10:21:47 vps58358 sshd\[5151\]: Invalid user andres from 106.12.204.75May 11 10:21:49 vps58358 sshd\[5151\]: Failed password for invalid user andres from 106.12.204.75 port 59578 ssh2May 11 10:23:22 vps58358 sshd\[5189\]: Invalid user lorenza from 106.12.204.75May 11 10:23:24 vps58358 sshd\[5189\]: Failed password for invalid user lorenza from 106.12.204.75 port 40330 ssh2 ...	2020-05-11 19:31:29
attackspam	Invalid user sentry from 106.12.204.75 port 60602	2020-05-03 08:01:49
attackspam	2020-04-27T05:56:02.776609vps751288.ovh.net sshd\[4943\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 user=root 2020-04-27T05:56:04.793760vps751288.ovh.net sshd\[4943\]: Failed password for root from 106.12.204.75 port 56458 ssh2 2020-04-27T05:59:00.958686vps751288.ovh.net sshd\[4963\]: Invalid user peter from 106.12.204.75 port 41906 2020-04-27T05:59:00.965270vps751288.ovh.net sshd\[4963\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 2020-04-27T05:59:03.083110vps751288.ovh.net sshd\[4963\]: Failed password for invalid user peter from 106.12.204.75 port 41906 ssh2	2020-04-27 12:55:12
attackbotsspam	Apr 9 14:57:47 * sshd[8223]: Failed password for irc from 106.12.204.75 port 37106 ssh2 Apr 9 15:02:15 * sshd[8818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75	2020-04-09 23:29:24
attack	Mar 24 18:34:40 ny01 sshd[9428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 Mar 24 18:34:42 ny01 sshd[9428]: Failed password for invalid user digital from 106.12.204.75 port 47502 ssh2 Mar 24 18:37:50 ny01 sshd[10686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75	2020-03-25 07:14:35
attackbots	5x Failed Password	2020-03-20 06:20:31
attack	Invalid user info from 106.12.204.75 port 48488	2020-03-14 14:02:40
attackspambots	$f2bV_matches	2020-02-28 07:13:50
attack	Unauthorized connection attempt detected from IP address 106.12.204.75 to port 2220 [J]	2020-01-23 20:38:25
attack	Invalid user apply from 106.12.204.75 port 43752	2020-01-19 03:25:07
attackbotsspam	Unauthorized connection attempt detected from IP address 106.12.204.75 to port 2220 [J]	2020-01-17 04:17:18
attack	Jan 7 11:47:15 MK-Soft-VM5 sshd[6078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.75 Jan 7 11:47:17 MK-Soft-VM5 sshd[6078]: Failed password for invalid user apple from 106.12.204.75 port 45060 ssh2 ...	2020-01-07 19:00:56

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.204.81	attackbots	Aug 30 23:54:23 PorscheCustomer sshd[27932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 Aug 30 23:54:25 PorscheCustomer sshd[27932]: Failed password for invalid user mali from 106.12.204.81 port 59612 ssh2 Aug 30 23:57:37 PorscheCustomer sshd[28031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 ...	2020-08-31 07:01:57
106.12.204.81	attackspambots	Aug 26 23:48:41 pve1 sshd[10261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 Aug 26 23:48:43 pve1 sshd[10261]: Failed password for invalid user juanita from 106.12.204.81 port 48440 ssh2 ...	2020-08-27 09:03:40
106.12.204.81	attack	Aug 24 00:33:13 h2646465 sshd[9337]: Invalid user m from 106.12.204.81 Aug 24 00:33:13 h2646465 sshd[9337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 Aug 24 00:33:13 h2646465 sshd[9337]: Invalid user m from 106.12.204.81 Aug 24 00:33:15 h2646465 sshd[9337]: Failed password for invalid user m from 106.12.204.81 port 46784 ssh2 Aug 24 00:46:13 h2646465 sshd[11345]: Invalid user account from 106.12.204.81 Aug 24 00:46:13 h2646465 sshd[11345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 Aug 24 00:46:13 h2646465 sshd[11345]: Invalid user account from 106.12.204.81 Aug 24 00:46:15 h2646465 sshd[11345]: Failed password for invalid user account from 106.12.204.81 port 50808 ssh2 Aug 24 00:49:42 h2646465 sshd[11475]: Invalid user tower from 106.12.204.81 ...	2020-08-24 08:53:14
106.12.204.81	attackspam	Aug 19 15:17:45 home sshd[1601724]: Failed password for invalid user admin7 from 106.12.204.81 port 40820 ssh2 Aug 19 15:20:03 home sshd[1603224]: Invalid user stats from 106.12.204.81 port 37220 Aug 19 15:20:03 home sshd[1603224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 Aug 19 15:20:03 home sshd[1603224]: Invalid user stats from 106.12.204.81 port 37220 Aug 19 15:20:05 home sshd[1603224]: Failed password for invalid user stats from 106.12.204.81 port 37220 ssh2 ...	2020-08-19 21:29:54
106.12.204.81	attackspam	Aug 11 12:53:21 localhost sshd[33365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 user=root Aug 11 12:53:23 localhost sshd[33365]: Failed password for root from 106.12.204.81 port 44664 ssh2 Aug 11 12:58:13 localhost sshd[33920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 user=root Aug 11 12:58:15 localhost sshd[33920]: Failed password for root from 106.12.204.81 port 42184 ssh2 Aug 11 13:02:54 localhost sshd[34462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 user=root Aug 11 13:02:56 localhost sshd[34462]: Failed password for root from 106.12.204.81 port 39688 ssh2 ...	2020-08-12 01:38:27
106.12.204.174	attack	106.12.204.174 - - [04/Aug/2020:21:58:16 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1865 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 106.12.204.174 - - [04/Aug/2020:21:58:17 +0100] "POST /wp/xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 106.12.204.174 - - [04/Aug/2020:22:13:16 +0100] "POST /wp-login.php HTTP/1.1" 200 1949 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-05 06:23:13
106.12.204.81	attackspambots	Aug 4 05:53:24 vps639187 sshd\[8366\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 user=root Aug 4 05:53:26 vps639187 sshd\[8366\]: Failed password for root from 106.12.204.81 port 39270 ssh2 Aug 4 05:56:46 vps639187 sshd\[8394\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 user=root ...	2020-08-04 14:01:17
106.12.204.81	attackbotsspam	Bruteforce detected by fail2ban	2020-08-04 07:53:34
106.12.204.81	attackbots	sshd jail - ssh hack attempt	2020-07-26 04:55:58
106.12.204.81	attackspambots	Jul 25 00:41:17 vps647732 sshd[11246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 Jul 25 00:41:19 vps647732 sshd[11246]: Failed password for invalid user vaibhav from 106.12.204.81 port 57160 ssh2 ...	2020-07-25 07:59:57
106.12.204.81	attack	Jul 10 08:31:05 rancher-0 sshd[226801]: Invalid user jeraldine from 106.12.204.81 port 54178 ...	2020-07-10 15:40:56
106.12.204.81	attack	Jul 9 15:54:09 vm0 sshd[32487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 Jul 9 15:54:10 vm0 sshd[32487]: Failed password for invalid user yaohuachao from 106.12.204.81 port 53130 ssh2 ...	2020-07-09 22:23:05
106.12.204.174	attackspambots	Automatic report - Banned IP Access	2020-07-07 16:20:30
106.12.204.174	attackspambots	WordPress brute force	2020-06-17 08:54:44
106.12.204.81	attackbotsspam	detected by Fail2Ban	2020-06-10 02:40:47

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.204.75
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11226
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.204.75.			IN	A

;; AUTHORITY SECTION:
.			595	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010700 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 07 19:00:53 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 75.204.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 75.204.12.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
103.141.142.227	attack	Hack attempt	2019-12-26 09:39:47
111.12.52.239	attackbotsspam	SSH Login Bruteforce	2019-12-26 09:03:59
13.235.53.124	attack	Dec 25 04:54:08 XXX sshd[34023]: Invalid user minecraft from 13.235.53.124 port 10929	2019-12-26 09:16:01
124.156.121.169	attackbots	Lines containing failures of 124.156.121.169 Dec 23 04:56:45 HOSTNAME sshd[5423]: Invalid user claudius from 124.156.121.169 port 60660 Dec 23 04:56:45 HOSTNAME sshd[5423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.121.169 Dec 23 04:56:47 HOSTNAME sshd[5423]: Failed password for invalid user claudius from 124.156.121.169 port 60660 ssh2 Dec 23 04:56:47 HOSTNAME sshd[5423]: Received disconnect from 124.156.121.169 port 60660:11: Bye Bye [preauth] Dec 23 04:56:47 HOSTNAME sshd[5423]: Disconnected from 124.156.121.169 port 60660 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=124.156.121.169	2019-12-26 08:56:27
163.172.18.180	attackspam	CloudCIX Reconnaissance Scan Detected, PTR: 163-172-18-180.rev.poneytelecom.eu.	2019-12-26 09:10:03
222.186.173.154	attack	Dec 26 00:44:12 game-panel sshd[14276]: Failed password for root from 222.186.173.154 port 56922 ssh2 Dec 26 00:44:25 game-panel sshd[14276]: error: maximum authentication attempts exceeded for root from 222.186.173.154 port 56922 ssh2 [preauth] Dec 26 00:44:32 game-panel sshd[14278]: Failed password for root from 222.186.173.154 port 27628 ssh2	2019-12-26 08:48:20
218.92.0.171	attack	Dec 26 01:53:59 * sshd[3648]: Failed password for root from 218.92.0.171 port 4364 ssh2 Dec 26 01:54:13 * sshd[3648]: error: maximum authentication attempts exceeded for root from 218.92.0.171 port 4364 ssh2 [preauth]	2019-12-26 09:06:55
190.88.135.84	attack	[Aegis] @ 2019-12-25 23:50:48 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-12-26 09:25:31
167.172.35.224	attackbotsspam	Chat Spam	2019-12-26 09:23:50
134.175.6.69	attackbots	Dec 26 03:54:52 server sshd\[24041\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.6.69 user=root Dec 26 03:54:54 server sshd\[24041\]: Failed password for root from 134.175.6.69 port 51378 ssh2 Dec 26 04:03:34 server sshd\[25992\]: Invalid user test from 134.175.6.69 Dec 26 04:03:34 server sshd\[25992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.6.69 Dec 26 04:03:37 server sshd\[25992\]: Failed password for invalid user test from 134.175.6.69 port 48030 ssh2 ...	2019-12-26 09:07:43
170.239.101.8	attack	Invalid user admin from 170.239.101.8 port 56014	2019-12-26 09:09:21
198.211.124.188	attackbotsspam	Invalid user ftpuser from 198.211.124.188 port 57760	2019-12-26 09:11:01
51.38.129.20	attack	2019-12-26T00:51:09.178223shield sshd\[7559\]: Invalid user kamada from 51.38.129.20 port 58258 2019-12-26T00:51:09.182452shield sshd\[7559\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.ip-51-38-129.eu 2019-12-26T00:51:10.856120shield sshd\[7559\]: Failed password for invalid user kamada from 51.38.129.20 port 58258 ssh2 2019-12-26T00:54:15.822173shield sshd\[8173\]: Invalid user martainn from 51.38.129.20 port 60082 2019-12-26T00:54:15.825179shield sshd\[8173\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.ip-51-38-129.eu	2019-12-26 08:54:23
221.216.212.35	attack	Invalid user ortilla from 221.216.212.35 port 19510	2019-12-26 09:00:54
201.192.152.202	attackspam	Automatic report - SSH Brute-Force Attack	2019-12-26 09:08:26

最近上报的IP列表

42.113.22.38	41.146.13.125	41.90.8.226	37.57.82.112
5.21.67.52	3.82.19.216	2.184.223.80	1.34.84.30
220.133.220.149	202.102.79.232	136.244.81.101	101.164.233.20
201.95.91.108	190.48.92.181	189.253.215.6	183.90.87.186
176.236.42.218	168.0.174.166	162.200.143.124	161.142.208.31