106.12.219.231

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Jun 5 23:25:31 server sshd[57156]: Failed password for root from 106.12.219.231 port 52410 ssh2 Jun 5 23:28:28 server sshd[59324]: Failed password for root from 106.12.219.231 port 45980 ssh2 Jun 5 23:31:32 server sshd[61614]: Failed password for root from 106.12.219.231 port 39542 ssh2	2020-06-06 09:55:42
attackspam	pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.231 Invalid user http from 106.12.219.231 port 37246 Failed password for invalid user http from 106.12.219.231 port 37246 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.231 user=root Failed password for root from 106.12.219.231 port 34702 ssh2	2020-05-28 15:55:39

类型

评论内容

时间

attackbots

Jun  5 23:25:31 server sshd[57156]: Failed password for root from 106.12.219.231 port 52410 ssh2
Jun  5 23:28:28 server sshd[59324]: Failed password for root from 106.12.219.231 port 45980 ssh2
Jun  5 23:31:32 server sshd[61614]: Failed password for root from 106.12.219.231 port 39542 ssh2

2020-06-06 09:55:42

attackspam

pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.231
Invalid user http from 106.12.219.231 port 37246
Failed password for invalid user http from 106.12.219.231 port 37246 ssh2
pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.231  user=root
Failed password for root from 106.12.219.231 port 34702 ssh2

2020-05-28 15:55:39

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.219.184	attack	Oct 12 16:35:54 mavik sshd[12611]: Invalid user test from 106.12.219.184 Oct 12 16:35:54 mavik sshd[12611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.184 Oct 12 16:35:56 mavik sshd[12611]: Failed password for invalid user test from 106.12.219.184 port 52482 ssh2 Oct 12 16:40:53 mavik sshd[13065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.184 user=root Oct 12 16:40:54 mavik sshd[13065]: Failed password for root from 106.12.219.184 port 49124 ssh2 ...	2020-10-13 04:35:34
106.12.219.184	attackspambots	Invalid user patrick from 106.12.219.184 port 52698	2020-10-12 20:15:38
106.12.219.184	attackbots	2020-09-23T00:34:34.333319abusebot-8.cloudsearch.cf sshd[16019]: Invalid user support from 106.12.219.184 port 45638 2020-09-23T00:34:34.348644abusebot-8.cloudsearch.cf sshd[16019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.184 2020-09-23T00:34:34.333319abusebot-8.cloudsearch.cf sshd[16019]: Invalid user support from 106.12.219.184 port 45638 2020-09-23T00:34:36.625965abusebot-8.cloudsearch.cf sshd[16019]: Failed password for invalid user support from 106.12.219.184 port 45638 ssh2 2020-09-23T00:38:40.430949abusebot-8.cloudsearch.cf sshd[16161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.184 user=root 2020-09-23T00:38:42.146235abusebot-8.cloudsearch.cf sshd[16161]: Failed password for root from 106.12.219.184 port 51270 ssh2 2020-09-23T00:42:41.334316abusebot-8.cloudsearch.cf sshd[16315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhos ...	2020-09-23 12:25:55
106.12.219.184	attackbotsspam	Fail2Ban Ban Triggered	2020-09-23 04:12:03
106.12.219.184	attackspam	$f2bV_matches	2020-09-12 21:18:35
106.12.219.184	attackbotsspam	prod11 ...	2020-09-12 13:21:16
106.12.219.184	attackspambots	2020-09-11 15:48:10.053029-0500 localhost sshd[67814]: Failed password for root from 106.12.219.184 port 55268 ssh2	2020-09-12 05:08:52
106.12.219.184	attackspam	$f2bV_matches	2020-08-26 01:15:36
106.12.219.184	attackbotsspam	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-09 08:20:59
106.12.219.184	attack	Aug 7 01:57:13 santamaria sshd\[9224\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.184 user=root Aug 7 01:57:16 santamaria sshd\[9224\]: Failed password for root from 106.12.219.184 port 47468 ssh2 Aug 7 01:59:20 santamaria sshd\[9248\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.184 user=root ...	2020-08-07 08:39:12
106.12.219.184	attackspambots	Jun 19 23:41:52 django-0 sshd[29498]: Invalid user ubuntu from 106.12.219.184 ...	2020-06-20 07:48:59
106.12.219.184	attackbots	Jun 15 10:24:40 pornomens sshd\[21358\]: Invalid user web from 106.12.219.184 port 54634 Jun 15 10:24:40 pornomens sshd\[21358\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.184 Jun 15 10:24:43 pornomens sshd\[21358\]: Failed password for invalid user web from 106.12.219.184 port 54634 ssh2 ...	2020-06-15 16:48:15
106.12.219.184	attack	Jun 3 07:53:56 NPSTNNYC01T sshd[15176]: Failed password for root from 106.12.219.184 port 50350 ssh2 Jun 3 07:55:57 NPSTNNYC01T sshd[15433]: Failed password for root from 106.12.219.184 port 49088 ssh2 ...	2020-06-03 20:03:08
106.12.219.184	attack	May 29 07:57:45 onepixel sshd[2133303]: Failed password for root from 106.12.219.184 port 60406 ssh2 May 29 08:00:38 onepixel sshd[2133699]: Invalid user ftpd from 106.12.219.184 port 41920 May 29 08:00:38 onepixel sshd[2133699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.184 May 29 08:00:38 onepixel sshd[2133699]: Invalid user ftpd from 106.12.219.184 port 41920 May 29 08:00:40 onepixel sshd[2133699]: Failed password for invalid user ftpd from 106.12.219.184 port 41920 ssh2	2020-05-29 20:10:51
106.12.219.184	attack	May 22 16:01:30 DAAP sshd[22439]: Invalid user tdl from 106.12.219.184 port 40710 May 22 16:01:30 DAAP sshd[22439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.219.184 May 22 16:01:30 DAAP sshd[22439]: Invalid user tdl from 106.12.219.184 port 40710 May 22 16:01:33 DAAP sshd[22439]: Failed password for invalid user tdl from 106.12.219.184 port 40710 ssh2 May 22 16:06:07 DAAP sshd[22480]: Invalid user sjt from 106.12.219.184 port 37794 ...	2020-05-23 02:00:37

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.219.231
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57116
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.219.231.			IN	A

;; AUTHORITY SECTION:
.			378	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051100 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 11 20:03:48 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 231.219.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 231.219.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
140.143.19.237	attackbots	Sep 23 10:36:38 firewall sshd[26059]: Invalid user deploy from 140.143.19.237 Sep 23 10:36:40 firewall sshd[26059]: Failed password for invalid user deploy from 140.143.19.237 port 45452 ssh2 Sep 23 10:41:28 firewall sshd[26160]: Invalid user user3 from 140.143.19.237 ...	2020-09-24 02:17:44
74.124.24.114	attack	Sep 23 13:39:01 firewall sshd[30940]: Invalid user wetserver from 74.124.24.114 Sep 23 13:39:02 firewall sshd[30940]: Failed password for invalid user wetserver from 74.124.24.114 port 54352 ssh2 Sep 23 13:42:48 firewall sshd[31056]: Invalid user ftp from 74.124.24.114 ...	2020-09-24 02:36:11
180.76.173.75	attackspam	Sep 23 17:11:37 ajax sshd[21799]: Failed password for root from 180.76.173.75 port 40882 ssh2 Sep 23 17:16:31 ajax sshd[23619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.173.75	2020-09-24 02:21:22
121.171.54.104	attack	Sep 23 09:02:15 ssh2 sshd[56467]: User root from 121.171.54.104 not allowed because not listed in AllowUsers Sep 23 09:02:15 ssh2 sshd[56467]: Failed password for invalid user root from 121.171.54.104 port 56385 ssh2 Sep 23 09:02:16 ssh2 sshd[56467]: Connection closed by invalid user root 121.171.54.104 port 56385 [preauth] ...	2020-09-24 02:32:07
51.75.23.62	attackbotsspam	Invalid user ubuntu from 51.75.23.62 port 34536	2020-09-24 02:43:47
170.106.3.225	attackbotsspam	Sep 22 21:16:47 php1 sshd\[27804\]: Invalid user test2 from 170.106.3.225 Sep 22 21:16:47 php1 sshd\[27804\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.106.3.225 Sep 22 21:16:49 php1 sshd\[27804\]: Failed password for invalid user test2 from 170.106.3.225 port 53976 ssh2 Sep 22 21:22:45 php1 sshd\[28286\]: Invalid user sftpuser from 170.106.3.225 Sep 22 21:22:45 php1 sshd\[28286\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.106.3.225	2020-09-24 02:21:48
46.101.164.33	attack	Sep 23 10:10:46 IngegnereFirenze sshd[11132]: User root from 46.101.164.33 not allowed because not listed in AllowUsers ...	2020-09-24 02:35:58
123.14.249.181	attackbots	Listed on zen-spamhaus also abuseat.org / proto=6 . srcport=57468 . dstport=23 . (3051)	2020-09-24 02:39:37
67.205.138.198	attackbots	Found on Github Combined on 4 lists / proto=6 . srcport=55467 . dstport=24014 . (2328)	2020-09-24 02:14:40
115.99.13.183	attackspambots	Icarus honeypot on github	2020-09-24 02:27:27
104.168.11.217	attackbots	spam	2020-09-24 02:18:28
123.205.179.16	attackspambots	Icarus honeypot on github	2020-09-24 02:30:48
81.224.190.185	attack	Sep 22 16:01:09 roki-contabo sshd\[18943\]: Invalid user ubnt from 81.224.190.185 Sep 22 16:01:09 roki-contabo sshd\[18943\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.224.190.185 Sep 22 16:01:12 roki-contabo sshd\[18943\]: Failed password for invalid user ubnt from 81.224.190.185 port 45194 ssh2 Sep 22 19:01:05 roki-contabo sshd\[20534\]: Invalid user guest from 81.224.190.185 Sep 22 19:01:05 roki-contabo sshd\[20534\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.224.190.185 ...	2020-09-24 02:25:24
51.91.120.136	attackbots	Sep 23 20:09:52 sip sshd[1707746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.120.136 Sep 23 20:09:52 sip sshd[1707746]: Invalid user greg from 51.91.120.136 port 42846 Sep 23 20:09:54 sip sshd[1707746]: Failed password for invalid user greg from 51.91.120.136 port 42846 ssh2 ...	2020-09-24 02:49:17
122.51.200.223	attack	Sep 22 09:04:11 roki-contabo sshd\[14909\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.200.223 user=root Sep 22 09:04:13 roki-contabo sshd\[14909\]: Failed password for root from 122.51.200.223 port 51628 ssh2 Sep 22 09:09:34 roki-contabo sshd\[14925\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.200.223 user=root Sep 22 09:09:37 roki-contabo sshd\[14925\]: Failed password for root from 122.51.200.223 port 57306 ssh2 Sep 22 09:14:27 roki-contabo sshd\[14973\]: Invalid user anna from 122.51.200.223 Sep 22 09:14:27 roki-contabo sshd\[14973\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.200.223 ...	2020-09-24 02:47:13

最近上报的IP列表

52.38.64.239	90.207.192.191	223.49.110.122	31.214.245.69
64.225.62.121	138.197.150.154	81.43.67.179	141.101.143.6
123.206.89.41	177.54.149.184	110.139.150.13	94.242.143.125
49.232.0.101	103.127.225.110	14.251.49.39	111.125.221.81
93.99.104.182	209.141.60.224	1.175.156.161	187.85.132.118