106.12.80.138 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2020-05-26T14:38:59.062339 sshd[20443]: Invalid user uplink from 106.12.80.138 port 57132 2020-05-26T14:38:59.077545 sshd[20443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.138 2020-05-26T14:38:59.062339 sshd[20443]: Invalid user uplink from 106.12.80.138 port 57132 2020-05-26T14:39:00.517458 sshd[20443]: Failed password for invalid user uplink from 106.12.80.138 port 57132 ssh2 ...	2020-05-26 21:21:05
attackspam	2020-05-14T14:20:11.1675111240 sshd\[2038\]: Invalid user support from 106.12.80.138 port 47392 2020-05-14T14:20:11.1723681240 sshd\[2038\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.138 2020-05-14T14:20:13.1762671240 sshd\[2038\]: Failed password for invalid user support from 106.12.80.138 port 47392 ssh2 ...	2020-05-15 04:09:14
attack	May 8 04:58:25 pi sshd[16206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.138 May 8 04:58:27 pi sshd[16206]: Failed password for invalid user ghost from 106.12.80.138 port 33596 ssh2	2020-05-08 12:32:42
attackspam	May 5 01:14:26 haigwepa sshd[1796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.138 May 5 01:14:28 haigwepa sshd[1796]: Failed password for invalid user sm from 106.12.80.138 port 45738 ssh2 ...	2020-05-05 07:22:45
attackspambots	2020-04-21T03:52:16.895090abusebot.cloudsearch.cf sshd[4800]: Invalid user oracle from 106.12.80.138 port 42120 2020-04-21T03:52:16.900642abusebot.cloudsearch.cf sshd[4800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.138 2020-04-21T03:52:16.895090abusebot.cloudsearch.cf sshd[4800]: Invalid user oracle from 106.12.80.138 port 42120 2020-04-21T03:52:18.599970abusebot.cloudsearch.cf sshd[4800]: Failed password for invalid user oracle from 106.12.80.138 port 42120 ssh2 2020-04-21T03:57:37.069271abusebot.cloudsearch.cf sshd[5117]: Invalid user rz from 106.12.80.138 port 50160 2020-04-21T03:57:37.075008abusebot.cloudsearch.cf sshd[5117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.138 2020-04-21T03:57:37.069271abusebot.cloudsearch.cf sshd[5117]: Invalid user rz from 106.12.80.138 port 50160 2020-04-21T03:57:38.844263abusebot.cloudsearch.cf sshd[5117]: Failed password for invalid user ...	2020-04-21 12:09:37
attackspambots	Invalid user admin from 106.12.80.138 port 49470	2020-04-21 02:06:18
attackbotsspam	Invalid user kd from 106.12.80.138 port 60674	2020-04-04 00:47:49
attackspam	Fail2Ban Ban Triggered	2020-03-27 06:15:15
attackspambots	Mar 3 22:18:34 jane sshd[1331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.138 Mar 3 22:18:35 jane sshd[1331]: Failed password for invalid user william from 106.12.80.138 port 33246 ssh2 ...	2020-03-04 05:24:48
attackspambots	Mar 1 05:06:51 marvibiene sshd[48263]: Invalid user usuario from 106.12.80.138 port 51094 Mar 1 05:06:51 marvibiene sshd[48263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.138 Mar 1 05:06:51 marvibiene sshd[48263]: Invalid user usuario from 106.12.80.138 port 51094 Mar 1 05:06:53 marvibiene sshd[48263]: Failed password for invalid user usuario from 106.12.80.138 port 51094 ssh2 ...	2020-03-01 20:13:32
attackspam	SSH invalid-user multiple login try	2020-02-29 04:56:16
attackspambots	Feb 22 00:37:24 [host] sshd[25493]: Invalid user s Feb 22 00:37:24 [host] sshd[25493]: pam_unix(sshd: Feb 22 00:37:26 [host] sshd[25493]: Failed passwor	2020-02-22 07:59:36
attackspam	Feb 9 06:55:14 silence02 sshd[408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.138 Feb 9 06:55:17 silence02 sshd[408]: Failed password for invalid user dtp from 106.12.80.138 port 55198 ssh2 Feb 9 06:58:39 silence02 sshd[597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.138	2020-02-09 14:14:07
attack	Jan 7 23:18:59 MK-Soft-VM5 sshd[13773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.138 Jan 7 23:19:02 MK-Soft-VM5 sshd[13773]: Failed password for invalid user fabian from 106.12.80.138 port 36596 ssh2 ...	2020-01-08 07:37:30
attack	Invalid user backup from 106.12.80.138 port 60034	2020-01-02 07:11:25
attack	SSH auth scanning - multiple failed logins	2019-12-25 15:34:16
attackbots	Invalid user juoniah from 106.12.80.138 port 59144	2019-12-15 04:17:12
attackspambots	Dec 9 23:52:03 ArkNodeAT sshd\[26182\]: Invalid user justin from 106.12.80.138 Dec 9 23:52:03 ArkNodeAT sshd\[26182\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.138 Dec 9 23:52:05 ArkNodeAT sshd\[26182\]: Failed password for invalid user justin from 106.12.80.138 port 60656 ssh2	2019-12-10 06:57:20

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.80.246	attack	Port scan denied	2020-08-24 14:17:24
106.12.80.246	attackbotsspam	2020-08-18T00:22:54.551625vps773228.ovh.net sshd[5721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.246 2020-08-18T00:22:54.534006vps773228.ovh.net sshd[5721]: Invalid user guest from 106.12.80.246 port 16588 2020-08-18T00:22:56.213108vps773228.ovh.net sshd[5721]: Failed password for invalid user guest from 106.12.80.246 port 16588 ssh2 2020-08-18T00:28:46.461957vps773228.ovh.net sshd[5820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.246 user=root 2020-08-18T00:28:48.449410vps773228.ovh.net sshd[5820]: Failed password for root from 106.12.80.246 port 19193 ssh2 ...	2020-08-18 07:28:52
106.12.80.246	attack	Port scan denied	2020-08-14 14:32:29
106.12.80.62	attackbotsspam	1596055655 - 07/30/2020 03:47:35 Host: 106.12.80.62/106.12.80.62 Port: 6379 TCP Blocked ...	2020-07-30 06:10:14
106.12.80.246	attack	Invalid user nuevo from 106.12.80.246 port 17941	2020-06-21 18:14:34
106.12.80.246	attackspam	SASL PLAIN auth failed: ruser=...	2020-06-06 06:45:47
106.12.80.246	attack	May 16 04:41:23 PorscheCustomer sshd[22082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.246 May 16 04:41:25 PorscheCustomer sshd[22082]: Failed password for invalid user test from 106.12.80.246 port 63341 ssh2 May 16 04:46:44 PorscheCustomer sshd[22277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.246 ...	2020-05-16 19:24:23
106.12.80.246	attack	$f2bV_matches	2020-05-14 18:31:34
106.12.80.246	attack	$f2bV_matches	2020-05-12 13:55:55
106.12.80.246	attackspam	May 8 16:15:28 dev0-dcde-rnet sshd[27599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.246 May 8 16:15:30 dev0-dcde-rnet sshd[27599]: Failed password for invalid user deb from 106.12.80.246 port 38886 ssh2 May 8 16:21:35 dev0-dcde-rnet sshd[27647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.246	2020-05-08 22:54:39
106.12.80.246	attackspam	Mar 30 00:18:29 h2779839 sshd[17514]: Invalid user ddo from 106.12.80.246 port 9480 Mar 30 00:18:29 h2779839 sshd[17514]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.246 Mar 30 00:18:29 h2779839 sshd[17514]: Invalid user ddo from 106.12.80.246 port 9480 Mar 30 00:18:31 h2779839 sshd[17514]: Failed password for invalid user ddo from 106.12.80.246 port 9480 ssh2 Mar 30 00:21:20 h2779839 sshd[17592]: Invalid user sam from 106.12.80.246 port 46620 Mar 30 00:21:20 h2779839 sshd[17592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.246 Mar 30 00:21:20 h2779839 sshd[17592]: Invalid user sam from 106.12.80.246 port 46620 Mar 30 00:21:22 h2779839 sshd[17592]: Failed password for invalid user sam from 106.12.80.246 port 46620 ssh2 Mar 30 00:24:14 h2779839 sshd[17672]: Invalid user oracle from 106.12.80.246 port 27259 ...	2020-03-30 06:25:59
106.12.80.246	attackspam	SSH login attempts.	2020-03-27 22:34:13
106.12.80.246	attack	(sshd) Failed SSH login from 106.12.80.246 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 25 13:48:31 amsweb01 sshd[15051]: Invalid user cha from 106.12.80.246 port 10359 Mar 25 13:48:33 amsweb01 sshd[15051]: Failed password for invalid user cha from 106.12.80.246 port 10359 ssh2 Mar 25 14:02:43 amsweb01 sshd[17077]: Invalid user test from 106.12.80.246 port 54571 Mar 25 14:02:46 amsweb01 sshd[17077]: Failed password for invalid user test from 106.12.80.246 port 54571 ssh2 Mar 25 14:06:44 amsweb01 sshd[17513]: Invalid user cpanelconnecttrack from 106.12.80.246 port 46810	2020-03-26 01:00:31
106.12.80.246	attackbots	Mar 18 23:44:50 OPSO sshd\[29175\]: Invalid user couchdb from 106.12.80.246 port 16801 Mar 18 23:44:50 OPSO sshd\[29175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.246 Mar 18 23:44:52 OPSO sshd\[29175\]: Failed password for invalid user couchdb from 106.12.80.246 port 16801 ssh2 Mar 18 23:50:04 OPSO sshd\[30286\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.246 user=root Mar 18 23:50:06 OPSO sshd\[30286\]: Failed password for root from 106.12.80.246 port 27084 ssh2	2020-03-19 06:51:35
106.12.80.246	attack	Mar 11 05:13:07 vps647732 sshd[20524]: Failed password for root from 106.12.80.246 port 28036 ssh2 Mar 11 05:15:45 vps647732 sshd[20582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.246 ...	2020-03-11 14:01:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.80.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9324
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.80.138.			IN	A

;; AUTHORITY SECTION:
.			546	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120902 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 10 06:57:17 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 138.80.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.80.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
94.198.196.132	attackspambots	94.198.196.132 - - [24/Oct/2019:22:30:13 +0300] "\x03\x00\x00+&\xE0\x00\x00\x00\x00\x00Cookie: mstshash=hello" 400 150 "-" "-"	2019-10-25 05:46:40
60.174.134.190	attack	Oct 24 23:25:03 bouncer sshd\[3248\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.174.134.190 user=root Oct 24 23:25:05 bouncer sshd\[3248\]: Failed password for root from 60.174.134.190 port 54622 ssh2 Oct 24 23:25:07 bouncer sshd\[3250\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.174.134.190 user=root ...	2019-10-25 05:56:10
222.186.175.167	attack	2019-10-22 09:15:16 -> 2019-10-24 16:30:31 : 54 login attempts (222.186.175.167)	2019-10-25 05:23:40
218.92.0.203	attack	2019-10-24T21:17:30.924728abusebot-8.cloudsearch.cf sshd\[31835\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.203 user=root	2019-10-25 05:29:40
49.235.226.43	attack	Oct 24 23:20:20 sso sshd[17036]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.226.43 Oct 24 23:20:22 sso sshd[17036]: Failed password for invalid user postgres01 from 49.235.226.43 port 43308 ssh2 ...	2019-10-25 05:51:28
201.183.225.114	attack	Automatic report - Banned IP Access	2019-10-25 05:44:46
45.114.15.1	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/45.114.15.1/ HK - 1H : (30) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : HK NAME ASN : ASN24119 IP : 45.114.15.1 CIDR : 45.114.15.0/24 PREFIX COUNT : 20 UNIQUE IP COUNT : 16384 ATTACKS DETECTED ASN24119 : 1H - 1 3H - 2 6H - 2 12H - 2 24H - 2 DateTime : 2019-10-24 22:16:05 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-10-25 05:35:47
117.89.71.220	attackspam	Oct 24 22:12:45 SilenceServices sshd[29441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.89.71.220 Oct 24 22:12:47 SilenceServices sshd[29441]: Failed password for invalid user denbeigh from 117.89.71.220 port 18400 ssh2 Oct 24 22:16:35 SilenceServices sshd[30441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.89.71.220	2019-10-25 05:20:27
219.144.70.6	attackspambots	[portscan] Port scan	2019-10-25 05:55:26
35.245.204.161	attack	Hit on /wp/wp-login.php	2019-10-25 05:26:31
212.72.144.226	attackbotsspam	(From silke.goward@gmail.com) Hi, Do you want to reach new clients? We are personally welcoming you to sign up with one of the leading influencer and affiliate networks on the web. This network finds influencers and affiliates in your niche who will promote your products/services on their websites and social media channels. Benefits of our program consist of: brand exposure for your business, increased reputation, and potentially more clients. It's the best, easiest and most efficient way to increase your sales! What do you think? Find out more here: http://socialinfluencer.nicheadvertising.online	2019-10-25 05:39:57
92.118.160.49	attack	firewall-block, port(s): 1026/tcp	2019-10-25 05:55:53
184.191.162.4	attackbots	Automatic report - XMLRPC Attack	2019-10-25 05:50:33
185.143.221.55	attackbots	2019-10-24T23:23:50.281963+02:00 lumpi kernel: [1774629.186745] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=185.143.221.55 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=41790 PROTO=TCP SPT=54130 DPT=3391 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-25 05:49:52
45.128.204.158	attack	Oct 25 00:48:58 tuotantolaitos sshd[19174]: Failed password for root from 45.128.204.158 port 34580 ssh2 ...	2019-10-25 05:54:18

最近上报的IP列表

36.229.97.205	113.22.150.136	78.84.187.202	252.182.180.206
14.169.253.142	179.23.97.242	188.162.187.116	190.72.18.243
182.61.1.64	123.21.207.135	120.31.160.66	59.63.178.26
187.114.145.244	14.232.105.12	180.251.40.202	205.169.224.69
124.115.173.253	208.26.81.99	182.149.165.37	89.248.162.161