106.12.214.128

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	TCP (SYN) 106.12.214.128:54575 -> port 21503, len 44	2020-10-08 01:15:29
attackspam	Found on CINS badguys / proto=6 . srcport=54139 . dstport=13186 . (866)	2020-10-07 17:23:53
attackspam	Found on CINS badguys / proto=6 . srcport=52002 . dstport=10679 . (1272)	2020-10-05 07:10:39
attackspambots	Found on CINS badguys / proto=6 . srcport=52002 . dstport=10679 . (1272)	2020-10-04 23:22:18
attack	TCP (SYN) 106.12.214.128:52002 -> port 10679, len 44	2020-10-04 15:06:03
attackbots	Apr 14 12:06:02 localhost sshd[7752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.128 user=root Apr 14 12:06:05 localhost sshd[7752]: Failed password for root from 106.12.214.128 port 37878 ssh2 Apr 14 12:10:42 localhost sshd[8247]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.128 user=root Apr 14 12:10:45 localhost sshd[8247]: Failed password for root from 106.12.214.128 port 37019 ssh2 Apr 14 12:15:37 localhost sshd[8804]: Invalid user tester from 106.12.214.128 port 36160 ...	2020-04-14 20:42:36
attackspam	Invalid user rap from 106.12.214.128 port 48507	2020-03-31 17:35:53
attackspam	Mar 29 07:31:52 [host] sshd[29628]: Invalid user z Mar 29 07:31:52 [host] sshd[29628]: pam_unix(sshd: Mar 29 07:31:54 [host] sshd[29628]: Failed passwor	2020-03-29 14:02:50
attack	5x Failed Password	2020-03-28 17:02:23
attackbotsspam	Mar 23 12:22:01 areeb-Workstation sshd[7459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.128 Mar 23 12:22:03 areeb-Workstation sshd[7459]: Failed password for invalid user im from 106.12.214.128 port 45554 ssh2 ...	2020-03-23 18:03:46
attackbots	Mar 5 13:41:38 gw1 sshd[29738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.128 Mar 5 13:41:39 gw1 sshd[29738]: Failed password for invalid user es from 106.12.214.128 port 57909 ssh2 ...	2020-03-05 16:44:43
attackspambots	Jan 25 05:56:36 jane sshd[18413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.128 Jan 25 05:56:38 jane sshd[18413]: Failed password for invalid user server from 106.12.214.128 port 37117 ssh2 ...	2020-01-25 13:46:57
attackbotsspam	Automatic report - Banned IP Access	2019-12-30 18:01:53
attackspam	(sshd) Failed SSH login from 106.12.214.128 (-): 5 in the last 3600 secs	2019-12-28 16:02:53
attackspambots	Nov 20 11:49:12 Tower sshd[28021]: Connection from 106.12.214.128 port 43649 on 192.168.10.220 port 22 Nov 20 11:49:16 Tower sshd[28021]: Invalid user fricke from 106.12.214.128 port 43649 Nov 20 11:49:16 Tower sshd[28021]: error: Could not get shadow information for NOUSER Nov 20 11:49:16 Tower sshd[28021]: Failed password for invalid user fricke from 106.12.214.128 port 43649 ssh2 Nov 20 11:49:17 Tower sshd[28021]: Received disconnect from 106.12.214.128 port 43649:11: Bye Bye [preauth] Nov 20 11:49:17 Tower sshd[28021]: Disconnected from invalid user fricke 106.12.214.128 port 43649 [preauth]	2019-11-21 02:50:20
attack	Nov 8 22:42:20 server sshd\[21338\]: Invalid user ftptest from 106.12.214.128 Nov 8 22:42:20 server sshd\[21338\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.128 Nov 8 22:42:22 server sshd\[21338\]: Failed password for invalid user ftptest from 106.12.214.128 port 54060 ssh2 Nov 8 22:53:08 server sshd\[24043\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.128 user=root Nov 8 22:53:10 server sshd\[24043\]: Failed password for root from 106.12.214.128 port 37031 ssh2 ...	2019-11-09 06:22:37
attackspam	Invalid user mjb from 106.12.214.128 port 32974	2019-11-03 14:10:10
attackspambots	Oct 24 11:37:57 kapalua sshd\[15975\]: Invalid user lollakas from 106.12.214.128 Oct 24 11:37:57 kapalua sshd\[15975\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.128 Oct 24 11:37:59 kapalua sshd\[15975\]: Failed password for invalid user lollakas from 106.12.214.128 port 54993 ssh2 Oct 24 11:41:49 kapalua sshd\[16379\]: Invalid user Coeur from 106.12.214.128 Oct 24 11:41:49 kapalua sshd\[16379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.128	2019-10-25 05:42:09
attack	Oct 20 10:36:45 * sshd[30899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.128 Oct 20 10:36:48 * sshd[30899]: Failed password for invalid user admin from 106.12.214.128 port 54362 ssh2	2019-10-20 20:01:18
attack	2019-10-19T03:53:54.955530abusebot-5.cloudsearch.cf sshd\[30864\]: Invalid user !@\#\$1234 from 106.12.214.128 port 50010	2019-10-19 14:55:52
attackbots	Unauthorized SSH login attempts	2019-10-16 07:07:52
attackbots	2019-10-14T14:39:14.632219abusebot-7.cloudsearch.cf sshd\[25198\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.128 user=root	2019-10-14 23:19:34

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.214.173	attackbots	2020-07-14T14:34:01.275536linuxbox-skyline sshd[972962]: Invalid user sawada from 106.12.214.173 port 54844 ...	2020-07-15 06:23:39
106.12.214.145	attackbotsspam	Jun 19 08:24:17 web1 sshd[19646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.145 user=root Jun 19 08:24:19 web1 sshd[19646]: Failed password for root from 106.12.214.145 port 51396 ssh2 Jun 19 08:29:43 web1 sshd[20983]: Invalid user plex from 106.12.214.145 port 46968 Jun 19 08:29:43 web1 sshd[20983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.145 Jun 19 08:29:43 web1 sshd[20983]: Invalid user plex from 106.12.214.145 port 46968 Jun 19 08:29:45 web1 sshd[20983]: Failed password for invalid user plex from 106.12.214.145 port 46968 ssh2 Jun 19 08:31:38 web1 sshd[21515]: Invalid user ansible from 106.12.214.145 port 41264 Jun 19 08:31:38 web1 sshd[21515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.145 Jun 19 08:31:38 web1 sshd[21515]: Invalid user ansible from 106.12.214.145 port 41264 Jun 19 08:31:40 web1 sshd[21515]: Fai ...	2020-06-19 07:33:13
106.12.214.145	attack	frenzy	2020-06-18 13:08:05
106.12.214.145	attack	Jun 9 04:05:35 game-panel sshd[25860]: Failed password for root from 106.12.214.145 port 43816 ssh2 Jun 9 04:12:26 game-panel sshd[26275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.145 Jun 9 04:12:28 game-panel sshd[26275]: Failed password for invalid user vagrant from 106.12.214.145 port 39292 ssh2	2020-06-09 15:38:50
106.12.214.145	attackspam	$f2bV_matches	2020-05-02 06:46:12
106.12.214.145	attack	Apr 13 18:52:46 lock-38 sshd[955621]: Failed password for root from 106.12.214.145 port 55340 ssh2 Apr 13 18:57:32 lock-38 sshd[955733]: Failed password for root from 106.12.214.145 port 57750 ssh2 Apr 13 19:02:15 lock-38 sshd[955845]: Invalid user radu from 106.12.214.145 port 60168 Apr 13 19:02:15 lock-38 sshd[955845]: Invalid user radu from 106.12.214.145 port 60168 Apr 13 19:02:15 lock-38 sshd[955845]: Failed password for invalid user radu from 106.12.214.145 port 60168 ssh2 ...	2020-04-20 03:41:05
106.12.214.145	attack	DATE:2020-04-15 23:04:59, IP:106.12.214.145, PORT:ssh SSH brute force auth (docker-dc)	2020-04-16 05:35:54
106.12.214.145	attackspambots	DATE:2020-04-14 14:15:58, IP:106.12.214.145, PORT:ssh SSH brute force auth (docker-dc)	2020-04-14 20:21:38
106.12.214.145	attackspam	SSH login attempts.	2020-04-10 20:10:23
106.12.214.145	attackspambots	Invalid user tyj from 106.12.214.145 port 40496	2020-04-04 15:33:38
106.12.214.217	attackspambots	fail2ban	2020-03-27 01:09:01
106.12.214.217	attackspam	SSH Invalid Login	2020-03-14 06:45:37
106.12.214.217	attackspam	2020-03-07T14:20:34.857824vps773228.ovh.net sshd[10162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.217 user=root 2020-03-07T14:20:36.267286vps773228.ovh.net sshd[10162]: Failed password for root from 106.12.214.217 port 57666 ssh2 2020-03-07T14:27:48.919960vps773228.ovh.net sshd[10224]: Invalid user jocelyn from 106.12.214.217 port 43975 2020-03-07T14:27:48.927155vps773228.ovh.net sshd[10224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.217 2020-03-07T14:27:48.919960vps773228.ovh.net sshd[10224]: Invalid user jocelyn from 106.12.214.217 port 43975 2020-03-07T14:27:51.254062vps773228.ovh.net sshd[10224]: Failed password for invalid user jocelyn from 106.12.214.217 port 43975 ssh2 2020-03-07T14:34:59.630073vps773228.ovh.net sshd[10270]: Invalid user user from 106.12.214.217 port 58529 2020-03-07T14:34:59.649460vps773228.ovh.net sshd[10270]: pam_unix(sshd:auth): authentication ...	2020-03-07 21:50:37
106.12.214.217	attackbots	Feb 25 15:58:40 wbs sshd\[28050\]: Invalid user project from 106.12.214.217 Feb 25 15:58:40 wbs sshd\[28050\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.217 Feb 25 15:58:42 wbs sshd\[28050\]: Failed password for invalid user project from 106.12.214.217 port 41269 ssh2 Feb 25 16:08:02 wbs sshd\[28904\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.217 user=root Feb 25 16:08:04 wbs sshd\[28904\]: Failed password for root from 106.12.214.217 port 42785 ssh2	2020-02-26 11:12:14
106.12.214.217	attackspambots	$f2bV_matches	2020-02-08 14:13:25

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.214.128
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29608
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.214.128.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101401 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 14 23:19:18 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 128.214.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 128.214.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
174.138.43.162	attack	SSH Invalid Login	2020-08-28 06:04:22
188.166.9.210	attack	pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.9.210 Invalid user faina from 188.166.9.210 port 33944 Failed password for invalid user faina from 188.166.9.210 port 33944 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.9.210 user=root Failed password for root from 188.166.9.210 port 40882 ssh2	2020-08-28 06:03:58
129.211.18.180	attackspambots	Aug 27 23:08:36 ns381471 sshd[24027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.18.180 Aug 27 23:08:38 ns381471 sshd[24027]: Failed password for invalid user see from 129.211.18.180 port 24698 ssh2	2020-08-28 05:48:43
112.85.42.195	attack	Aug 27 21:32:09 onepixel sshd[4124066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.195 user=root Aug 27 21:32:11 onepixel sshd[4124066]: Failed password for root from 112.85.42.195 port 50630 ssh2 Aug 27 21:32:09 onepixel sshd[4124066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.195 user=root Aug 27 21:32:11 onepixel sshd[4124066]: Failed password for root from 112.85.42.195 port 50630 ssh2 Aug 27 21:32:15 onepixel sshd[4124066]: Failed password for root from 112.85.42.195 port 50630 ssh2	2020-08-28 05:41:08
106.13.226.170	attackspambots	Aug 27 23:06:38 ns37 sshd[30449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.170 Aug 27 23:06:40 ns37 sshd[30449]: Failed password for invalid user dekait from 106.13.226.170 port 53832 ssh2 Aug 27 23:08:51 ns37 sshd[30553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.170	2020-08-28 05:34:46
154.213.22.34	attackbots	Aug 27 23:31:04 santamaria sshd\[32216\]: Invalid user ian from 154.213.22.34 Aug 27 23:31:04 santamaria sshd\[32216\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.213.22.34 Aug 27 23:31:06 santamaria sshd\[32216\]: Failed password for invalid user ian from 154.213.22.34 port 44122 ssh2 ...	2020-08-28 05:48:26
165.232.77.134	attackspam	SSH brute force	2020-08-28 05:59:53
20.37.99.237	attackspambots	Aug 27 23:30:57 lnxmail61 postfix/smtps/smtpd[24114]: warning: unknown[20.37.99.237]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-08-28 05:44:45
120.92.35.127	attack	Aug 27 23:05:10 server sshd[7703]: Failed password for invalid user firebird from 120.92.35.127 port 35904 ssh2 Aug 27 23:06:57 server sshd[8521]: Failed password for invalid user biadmin from 120.92.35.127 port 59194 ssh2 Aug 27 23:08:45 server sshd[9512]: Failed password for invalid user Azerty123 from 120.92.35.127 port 54256 ssh2	2020-08-28 05:40:17
183.194.212.16	attackspambots	Aug 27 21:20:19 game-panel sshd[28538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.194.212.16 Aug 27 21:20:21 game-panel sshd[28538]: Failed password for invalid user deluge from 183.194.212.16 port 55766 ssh2 Aug 27 21:24:12 game-panel sshd[28709]: Failed password for root from 183.194.212.16 port 55484 ssh2	2020-08-28 05:46:07
54.39.138.251	attack	Aug 28 00:01:36 abendstille sshd\[22958\]: Invalid user cc from 54.39.138.251 Aug 28 00:01:36 abendstille sshd\[22958\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.138.251 Aug 28 00:01:38 abendstille sshd\[22958\]: Failed password for invalid user cc from 54.39.138.251 port 57248 ssh2 Aug 28 00:05:29 abendstille sshd\[26952\]: Invalid user gmodserver from 54.39.138.251 Aug 28 00:05:29 abendstille sshd\[26952\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.138.251 ...	2020-08-28 06:09:07
182.122.1.232	attackbotsspam	Aug 26 08:45:31 fwweb01 sshd[6586]: reveeclipse mapping checking getaddrinfo for hn.kd.ny.adsl [182.122.1.232] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 26 08:45:31 fwweb01 sshd[6586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.122.1.232 user=r.r Aug 26 08:45:33 fwweb01 sshd[6586]: Failed password for r.r from 182.122.1.232 port 25500 ssh2 Aug 26 08:45:33 fwweb01 sshd[6586]: Received disconnect from 182.122.1.232: 11: Bye Bye [preauth] Aug 26 08:50:14 fwweb01 sshd[7096]: reveeclipse mapping checking getaddrinfo for hn.kd.ny.adsl [182.122.1.232] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 26 08:50:14 fwweb01 sshd[7096]: Invalid user yangchen from 182.122.1.232 Aug 26 08:50:14 fwweb01 sshd[7096]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.122.1.232 Aug 26 08:50:16 fwweb01 sshd[7096]: Failed password for invalid user yangchen from 182.122.1.232 port 21272 ssh2 Aug 26 08:50:17 fwwe........ -------------------------------	2020-08-28 05:55:22
140.255.44.242	attackspam	SSH Invalid Login	2020-08-28 06:00:22
195.54.167.152	attack	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-08-27T19:46:11Z and 2020-08-27T21:08:21Z	2020-08-28 06:03:37
23.94.183.112	attackbots	Lines containing failures of 23.94.183.112 Aug 26 10:04:42 v2hgb sshd[2097]: Did not receive identification string from 23.94.183.112 port 50135 Aug 26 10:04:50 v2hgb sshd[2099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.94.183.112 user=r.r Aug 26 10:04:53 v2hgb sshd[2099]: Failed password for r.r from 23.94.183.112 port 58526 ssh2 Aug 26 10:04:55 v2hgb sshd[2099]: Received disconnect from 23.94.183.112 port 58526:11: Normal Shutdown, Thank you for playing [preauth] Aug 26 10:04:55 v2hgb sshd[2099]: Disconnected from authenticating user r.r 23.94.183.112 port 58526 [preauth] Aug 26 10:05:09 v2hgb sshd[2195]: Invalid user oracle from 23.94.183.112 port 37174 Aug 26 10:05:09 v2hgb sshd[2195]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.94.183.112 Aug 26 10:05:11 v2hgb sshd[2195]: Failed password for invalid user oracle from 23.94.183.112 port 37174 ssh2 ........ ----------------------------------------------- htt	2020-08-28 05:58:50

最近上报的IP列表

205.198.111.117	26.154.237.79	23.198.87.165	206.221.209.120
82.234.252.139	175.193.104.93	1.75.202.55	151.20.5.185
67.242.250.234	241.235.127.221	199.161.137.218	175.110.136.36
244.169.80.58	160.94.185.137	190.13.213.198	176.117.131.237
47.157.42.246	100.16.84.170	189.130.117.171	185.97.104.10