106.12.219.231

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Jun 5 23:25:31 server sshd[57156]: Failed password for root from 106.12.219.231 port 52410 ssh2 Jun 5 23:28:28 server sshd[59324]: Failed password for root from 106.12.219.231 port 45980 ssh2 Jun 5 23:31:32 server sshd[61614]: Failed password for root from 106.12.219.231 port 39542 ssh2	2020-06-06 09:55:42
attackspam	pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.231 Invalid user http from 106.12.219.231 port 37246 Failed password for invalid user http from 106.12.219.231 port 37246 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.231 user=root Failed password for root from 106.12.219.231 port 34702 ssh2	2020-05-28 15:55:39

类型

评论内容

时间

attackbots

Jun  5 23:25:31 server sshd[57156]: Failed password for root from 106.12.219.231 port 52410 ssh2
Jun  5 23:28:28 server sshd[59324]: Failed password for root from 106.12.219.231 port 45980 ssh2
Jun  5 23:31:32 server sshd[61614]: Failed password for root from 106.12.219.231 port 39542 ssh2

2020-06-06 09:55:42

attackspam

pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.231
Invalid user http from 106.12.219.231 port 37246
Failed password for invalid user http from 106.12.219.231 port 37246 ssh2
pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.231  user=root
Failed password for root from 106.12.219.231 port 34702 ssh2

2020-05-28 15:55:39

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.219.184	attack	Oct 12 16:35:54 mavik sshd[12611]: Invalid user test from 106.12.219.184 Oct 12 16:35:54 mavik sshd[12611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.184 Oct 12 16:35:56 mavik sshd[12611]: Failed password for invalid user test from 106.12.219.184 port 52482 ssh2 Oct 12 16:40:53 mavik sshd[13065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.184 user=root Oct 12 16:40:54 mavik sshd[13065]: Failed password for root from 106.12.219.184 port 49124 ssh2 ...	2020-10-13 04:35:34
106.12.219.184	attackspambots	Invalid user patrick from 106.12.219.184 port 52698	2020-10-12 20:15:38
106.12.219.184	attackbots	2020-09-23T00:34:34.333319abusebot-8.cloudsearch.cf sshd[16019]: Invalid user support from 106.12.219.184 port 45638 2020-09-23T00:34:34.348644abusebot-8.cloudsearch.cf sshd[16019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.184 2020-09-23T00:34:34.333319abusebot-8.cloudsearch.cf sshd[16019]: Invalid user support from 106.12.219.184 port 45638 2020-09-23T00:34:36.625965abusebot-8.cloudsearch.cf sshd[16019]: Failed password for invalid user support from 106.12.219.184 port 45638 ssh2 2020-09-23T00:38:40.430949abusebot-8.cloudsearch.cf sshd[16161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.184 user=root 2020-09-23T00:38:42.146235abusebot-8.cloudsearch.cf sshd[16161]: Failed password for root from 106.12.219.184 port 51270 ssh2 2020-09-23T00:42:41.334316abusebot-8.cloudsearch.cf sshd[16315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhos ...	2020-09-23 12:25:55
106.12.219.184	attackbotsspam	Fail2Ban Ban Triggered	2020-09-23 04:12:03
106.12.219.184	attackspam	$f2bV_matches	2020-09-12 21:18:35
106.12.219.184	attackbotsspam	prod11 ...	2020-09-12 13:21:16
106.12.219.184	attackspambots	2020-09-11 15:48:10.053029-0500 localhost sshd[67814]: Failed password for root from 106.12.219.184 port 55268 ssh2	2020-09-12 05:08:52
106.12.219.184	attackspam	$f2bV_matches	2020-08-26 01:15:36
106.12.219.184	attackbotsspam	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-09 08:20:59
106.12.219.184	attack	Aug 7 01:57:13 santamaria sshd\[9224\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.184 user=root Aug 7 01:57:16 santamaria sshd\[9224\]: Failed password for root from 106.12.219.184 port 47468 ssh2 Aug 7 01:59:20 santamaria sshd\[9248\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.184 user=root ...	2020-08-07 08:39:12
106.12.219.184	attackspambots	Jun 19 23:41:52 django-0 sshd[29498]: Invalid user ubuntu from 106.12.219.184 ...	2020-06-20 07:48:59
106.12.219.184	attackbots	Jun 15 10:24:40 pornomens sshd\[21358\]: Invalid user web from 106.12.219.184 port 54634 Jun 15 10:24:40 pornomens sshd\[21358\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.184 Jun 15 10:24:43 pornomens sshd\[21358\]: Failed password for invalid user web from 106.12.219.184 port 54634 ssh2 ...	2020-06-15 16:48:15
106.12.219.184	attack	Jun 3 07:53:56 NPSTNNYC01T sshd[15176]: Failed password for root from 106.12.219.184 port 50350 ssh2 Jun 3 07:55:57 NPSTNNYC01T sshd[15433]: Failed password for root from 106.12.219.184 port 49088 ssh2 ...	2020-06-03 20:03:08
106.12.219.184	attack	May 29 07:57:45 onepixel sshd[2133303]: Failed password for root from 106.12.219.184 port 60406 ssh2 May 29 08:00:38 onepixel sshd[2133699]: Invalid user ftpd from 106.12.219.184 port 41920 May 29 08:00:38 onepixel sshd[2133699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.184 May 29 08:00:38 onepixel sshd[2133699]: Invalid user ftpd from 106.12.219.184 port 41920 May 29 08:00:40 onepixel sshd[2133699]: Failed password for invalid user ftpd from 106.12.219.184 port 41920 ssh2	2020-05-29 20:10:51
106.12.219.184	attack	May 22 16:01:30 DAAP sshd[22439]: Invalid user tdl from 106.12.219.184 port 40710 May 22 16:01:30 DAAP sshd[22439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.184 May 22 16:01:30 DAAP sshd[22439]: Invalid user tdl from 106.12.219.184 port 40710 May 22 16:01:33 DAAP sshd[22439]: Failed password for invalid user tdl from 106.12.219.184 port 40710 ssh2 May 22 16:06:07 DAAP sshd[22480]: Invalid user sjt from 106.12.219.184 port 37794 ...	2020-05-23 02:00:37

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.219.231
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57116
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.219.231.			IN	A

;; AUTHORITY SECTION:
.			378	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051100 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 11 20:03:48 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 231.219.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 231.219.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
62.32.66.190	attack	Dec 14 09:24:04 plusreed sshd[9955]: Invalid user millette from 62.32.66.190 ...	2019-12-14 22:40:13
115.231.163.85	attackbotsspam	Invalid user ching from 115.231.163.85 port 38250 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.231.163.85 Failed password for invalid user ching from 115.231.163.85 port 38250 ssh2 Invalid user http from 115.231.163.85 port 32826 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.231.163.85	2019-12-14 22:45:25
103.36.84.180	attackbots	Dec 14 04:39:32 sachi sshd\[16583\]: Invalid user rmgadmin from 103.36.84.180 Dec 14 04:39:32 sachi sshd\[16583\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.36.84.180 Dec 14 04:39:34 sachi sshd\[16583\]: Failed password for invalid user rmgadmin from 103.36.84.180 port 41204 ssh2 Dec 14 04:46:00 sachi sshd\[17203\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.36.84.180 user=backup Dec 14 04:46:02 sachi sshd\[17203\]: Failed password for backup from 103.36.84.180 port 49494 ssh2	2019-12-14 22:49:15
73.82.168.112	attackbots	fail2ban	2019-12-14 22:35:34
46.72.192.89	attackspambots	Unauthorized connection attempt from IP address 46.72.192.89 on Port 445(SMB)	2019-12-14 22:52:32
222.95.250.199	attackbots	Dec 14 07:16:02 admin sshd[25480]: Did not receive identification string from 222.95.250.199 port 42563 Dec 14 07:16:06 admin sshd[25481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.95.250.199 user=r.r Dec 14 07:16:07 admin sshd[25481]: Failed password for r.r from 222.95.250.199 port 44750 ssh2 Dec 14 07:16:07 admin sshd[25481]: error: Received disconnect from 222.95.250.199 port 44750:3: com.jcraft.jsch.JSchException: Auth fail [preauth] Dec 14 07:16:07 admin sshd[25481]: Disconnected from 222.95.250.199 port 44750 [preauth] Dec 14 07:16:34 admin sshd[25493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.95.250.199 user=r.r Dec 14 07:16:36 admin sshd[25493]: Failed password for r.r from 222.95.250.199 port 57992 ssh2 Dec 14 07:16:36 admin sshd[25493]: error: Received disconnect from 222.95.250.199 port 57992:3: com.jcraft.jsch.JSchException: Auth fail [preauth] Dec 14 07:1........ -------------------------------	2019-12-14 22:29:01
95.53.99.36	attackspambots	Dec 14 07:15:31 nbi-636 sshd[10183]: User r.r from 95.53.99.36 not allowed because not listed in AllowUsers Dec 14 07:15:31 nbi-636 sshd[10183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.53.99.36 user=r.r Dec 14 07:15:33 nbi-636 sshd[10183]: Failed password for invalid user r.r from 95.53.99.36 port 58945 ssh2 Dec 14 07:15:35 nbi-636 sshd[10183]: Failed password for invalid user r.r from 95.53.99.36 port 58945 ssh2 Dec 14 07:15:38 nbi-636 sshd[10183]: Failed password for invalid user r.r from 95.53.99.36 port 58945 ssh2 Dec 14 07:15:40 nbi-636 sshd[10183]: Failed password for invalid user r.r from 95.53.99.36 port 58945 ssh2 Dec 14 07:15:42 nbi-636 sshd[10183]: Failed password for invalid user r.r from 95.53.99.36 port 58945 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=95.53.99.36	2019-12-14 22:22:33
185.143.223.128	attackspam	Port scan on 8 port(s): 10077 10287 10377 10451 10538 10544 10556 10667	2019-12-14 22:58:54
14.168.160.162	attackspam	1576304501 - 12/14/2019 07:21:41 Host: 14.168.160.162/14.168.160.162 Port: 445 TCP Blocked	2019-12-14 22:24:58
60.246.82.106	attack	Dec 14 14:46:02 *** sshd[27316]: Invalid user admin from 60.246.82.106	2019-12-14 22:49:35
124.123.117.133	attack	1576304481 - 12/14/2019 07:21:21 Host: 124.123.117.133/124.123.117.133 Port: 445 TCP Blocked	2019-12-14 22:47:09
114.242.143.121	attack	Dec 14 16:53:09 server sshd\[21412\]: Invalid user anurous from 114.242.143.121 Dec 14 16:53:10 server sshd\[21412\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.242.143.121 Dec 14 16:53:12 server sshd\[21412\]: Failed password for invalid user anurous from 114.242.143.121 port 60216 ssh2 Dec 14 17:09:29 server sshd\[26152\]: Invalid user draier from 114.242.143.121 Dec 14 17:09:29 server sshd\[26152\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.242.143.121 ...	2019-12-14 22:41:02
111.230.211.183	attack	Dec 14 15:40:33 OPSO sshd\[13962\]: Invalid user ax400 from 111.230.211.183 port 33870 Dec 14 15:40:33 OPSO sshd\[13962\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.211.183 Dec 14 15:40:35 OPSO sshd\[13962\]: Failed password for invalid user ax400 from 111.230.211.183 port 33870 ssh2 Dec 14 15:46:12 OPSO sshd\[14670\]: Invalid user john from 111.230.211.183 port 48826 Dec 14 15:46:12 OPSO sshd\[14670\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.211.183	2019-12-14 22:47:26
195.8.51.139	attackspambots	Unauthorized connection attempt from IP address 195.8.51.139 on Port 445(SMB)	2019-12-14 23:01:53
134.209.7.179	attack	Dec 14 14:17:58 serwer sshd\[23118\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.7.179 user=root Dec 14 14:18:00 serwer sshd\[23118\]: Failed password for root from 134.209.7.179 port 57086 ssh2 Dec 14 14:23:47 serwer sshd\[23689\]: Invalid user vagrant from 134.209.7.179 port 43858 Dec 14 14:23:47 serwer sshd\[23689\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.7.179 ...	2019-12-14 22:36:37

最近上报的IP列表

52.38.64.239	90.207.192.191	223.49.110.122	31.214.245.69
64.225.62.121	138.197.150.154	81.43.67.179	141.101.143.6
123.206.89.41	177.54.149.184	110.139.150.13	94.242.143.125
49.232.0.101	103.127.225.110	14.251.49.39	111.125.221.81
93.99.104.182	209.141.60.224	1.175.156.161	187.85.132.118