106.12.80.62 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	1596055655 - 07/30/2020 03:47:35 Host: 106.12.80.62/106.12.80.62 Port: 6379 TCP Blocked ...	2020-07-30 06:10:14

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.80.246	attack	Port scan denied	2020-08-24 14:17:24
106.12.80.246	attackbotsspam	2020-08-18T00:22:54.551625vps773228.ovh.net sshd[5721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.246 2020-08-18T00:22:54.534006vps773228.ovh.net sshd[5721]: Invalid user guest from 106.12.80.246 port 16588 2020-08-18T00:22:56.213108vps773228.ovh.net sshd[5721]: Failed password for invalid user guest from 106.12.80.246 port 16588 ssh2 2020-08-18T00:28:46.461957vps773228.ovh.net sshd[5820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.246 user=root 2020-08-18T00:28:48.449410vps773228.ovh.net sshd[5820]: Failed password for root from 106.12.80.246 port 19193 ssh2 ...	2020-08-18 07:28:52
106.12.80.246	attack	Port scan denied	2020-08-14 14:32:29
106.12.80.246	attack	Invalid user nuevo from 106.12.80.246 port 17941	2020-06-21 18:14:34
106.12.80.246	attackspam	SASL PLAIN auth failed: ruser=...	2020-06-06 06:45:47
106.12.80.138	attack	2020-05-26T14:38:59.062339 sshd[20443]: Invalid user uplink from 106.12.80.138 port 57132 2020-05-26T14:38:59.077545 sshd[20443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.138 2020-05-26T14:38:59.062339 sshd[20443]: Invalid user uplink from 106.12.80.138 port 57132 2020-05-26T14:39:00.517458 sshd[20443]: Failed password for invalid user uplink from 106.12.80.138 port 57132 ssh2 ...	2020-05-26 21:21:05
106.12.80.246	attack	May 16 04:41:23 PorscheCustomer sshd[22082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.246 May 16 04:41:25 PorscheCustomer sshd[22082]: Failed password for invalid user test from 106.12.80.246 port 63341 ssh2 May 16 04:46:44 PorscheCustomer sshd[22277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.246 ...	2020-05-16 19:24:23
106.12.80.138	attackspam	2020-05-14T14:20:11.1675111240 sshd\[2038\]: Invalid user support from 106.12.80.138 port 47392 2020-05-14T14:20:11.1723681240 sshd\[2038\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.138 2020-05-14T14:20:13.1762671240 sshd\[2038\]: Failed password for invalid user support from 106.12.80.138 port 47392 ssh2 ...	2020-05-15 04:09:14
106.12.80.246	attack	$f2bV_matches	2020-05-14 18:31:34
106.12.80.246	attack	$f2bV_matches	2020-05-12 13:55:55
106.12.80.246	attackspam	May 8 16:15:28 dev0-dcde-rnet sshd[27599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.246 May 8 16:15:30 dev0-dcde-rnet sshd[27599]: Failed password for invalid user deb from 106.12.80.246 port 38886 ssh2 May 8 16:21:35 dev0-dcde-rnet sshd[27647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.246	2020-05-08 22:54:39
106.12.80.138	attack	May 8 04:58:25 pi sshd[16206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.138 May 8 04:58:27 pi sshd[16206]: Failed password for invalid user ghost from 106.12.80.138 port 33596 ssh2	2020-05-08 12:32:42
106.12.80.138	attackspam	May 5 01:14:26 haigwepa sshd[1796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.138 May 5 01:14:28 haigwepa sshd[1796]: Failed password for invalid user sm from 106.12.80.138 port 45738 ssh2 ...	2020-05-05 07:22:45
106.12.80.138	attackspambots	2020-04-21T03:52:16.895090abusebot.cloudsearch.cf sshd[4800]: Invalid user oracle from 106.12.80.138 port 42120 2020-04-21T03:52:16.900642abusebot.cloudsearch.cf sshd[4800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.138 2020-04-21T03:52:16.895090abusebot.cloudsearch.cf sshd[4800]: Invalid user oracle from 106.12.80.138 port 42120 2020-04-21T03:52:18.599970abusebot.cloudsearch.cf sshd[4800]: Failed password for invalid user oracle from 106.12.80.138 port 42120 ssh2 2020-04-21T03:57:37.069271abusebot.cloudsearch.cf sshd[5117]: Invalid user rz from 106.12.80.138 port 50160 2020-04-21T03:57:37.075008abusebot.cloudsearch.cf sshd[5117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.80.138 2020-04-21T03:57:37.069271abusebot.cloudsearch.cf sshd[5117]: Invalid user rz from 106.12.80.138 port 50160 2020-04-21T03:57:38.844263abusebot.cloudsearch.cf sshd[5117]: Failed password for invalid user ...	2020-04-21 12:09:37
106.12.80.138	attackspambots	Invalid user admin from 106.12.80.138 port 49470	2020-04-21 02:06:18

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.80.62
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20270
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.80.62.			IN	A

;; AUTHORITY SECTION:
.			296	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072901 1800 900 604800 86400

;; Query time: 74 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 30 06:10:11 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 62.80.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 62.80.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
197.54.184.120	attack	Feb 4 00:58:49 b-admin sshd[24609]: Invalid user admin from 197.54.184.120 port 51423 Feb 4 00:58:49 b-admin sshd[24609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.54.184.120 Feb 4 00:58:51 b-admin sshd[24609]: Failed password for invalid user admin from 197.54.184.120 port 51423 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=197.54.184.120	2020-02-04 09:38:27
69.122.115.65	attackbotsspam	Unauthorized connection attempt detected from IP address 69.122.115.65 to port 3389 [J]	2020-02-04 09:32:28
181.223.246.66	attackbots	trying to access non-authorized port	2020-02-04 09:17:42
106.13.236.132	attackbotsspam	Feb 3 18:47:05 finn sshd[15846]: Invalid user robertazzi from 106.13.236.132 port 33660 Feb 3 18:47:05 finn sshd[15846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.236.132 Feb 3 18:47:07 finn sshd[15846]: Failed password for invalid user robertazzi from 106.13.236.132 port 33660 ssh2 Feb 3 18:47:07 finn sshd[15846]: Received disconnect from 106.13.236.132 port 33660:11: Bye Bye [preauth] Feb 3 18:47:07 finn sshd[15846]: Disconnected from 106.13.236.132 port 33660 [preauth] Feb 3 18:52:39 finn sshd[17212]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.236.132 user=r.r Feb 3 18:52:42 finn sshd[17212]: Failed password for r.r from 106.13.236.132 port 34148 ssh2 Feb 3 18:52:42 finn sshd[17212]: Received disconnect from 106.13.236.132 port 34148:11: Bye Bye [preauth] Feb 3 18:52:42 finn sshd[17212]: Disconnected from 106.13.236.132 port 34148 [preauth] ........ ------------------------------------------	2020-02-04 09:24:23
222.186.30.167	attackbotsspam	04.02.2020 01:00:28 SSH access blocked by firewall	2020-02-04 09:03:16
173.88.191.163	attack	Unauthorized connection attempt detected from IP address 173.88.191.163 to port 2220 [J]	2020-02-04 09:22:14
82.118.236.186	attack	Feb 4 02:33:37 sd-53420 sshd\[30309\]: Invalid user xie from 82.118.236.186 Feb 4 02:33:37 sd-53420 sshd\[30309\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.118.236.186 Feb 4 02:33:39 sd-53420 sshd\[30309\]: Failed password for invalid user xie from 82.118.236.186 port 34594 ssh2 Feb 4 02:36:30 sd-53420 sshd\[30614\]: User root from 82.118.236.186 not allowed because none of user's groups are listed in AllowGroups Feb 4 02:36:30 sd-53420 sshd\[30614\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.118.236.186 user=root ...	2020-02-04 09:39:29
192.241.234.99	attackbots	firewall-block, port(s): 27019/tcp	2020-02-04 09:35:53
95.167.243.148	attack	Feb 4 01:33:18 markkoudstaal sshd[3797]: Failed password for list from 95.167.243.148 port 56903 ssh2 Feb 4 01:37:06 markkoudstaal sshd[4521]: Failed password for root from 95.167.243.148 port 43250 ssh2	2020-02-04 08:59:24
79.166.13.205	attackbotsspam	Feb 4 01:06:05 grey postfix/smtpd\[5866\]: NOQUEUE: reject: RCPT from ppp079166013205.access.hol.gr\[79.166.13.205\]: 554 5.7.1 Service unavailable\; Client host \[79.166.13.205\] blocked using dul.dnsbl.sorbs.net\; Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml\?79.166.13.205\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-04 09:31:59
37.114.181.217	attack	Feb 4 00:50:08 pl3server sshd[29080]: Invalid user admin from 37.114.181.217 Feb 4 00:50:08 pl3server sshd[29080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.114.181.217 Feb 4 00:50:10 pl3server sshd[29080]: Failed password for invalid user admin from 37.114.181.217 port 35306 ssh2 Feb 4 00:50:10 pl3server sshd[29080]: Connection closed by 37.114.181.217 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=37.114.181.217	2020-02-04 09:16:46
36.91.153.41	attack	Feb 4 01:11:43 srv01 sshd[30736]: Invalid user kr from 36.91.153.41 port 35608 Feb 4 01:11:43 srv01 sshd[30736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.91.153.41 Feb 4 01:11:43 srv01 sshd[30736]: Invalid user kr from 36.91.153.41 port 35608 Feb 4 01:11:44 srv01 sshd[30736]: Failed password for invalid user kr from 36.91.153.41 port 35608 ssh2 Feb 4 01:13:39 srv01 sshd[30820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.91.153.41 user=root Feb 4 01:13:41 srv01 sshd[30820]: Failed password for root from 36.91.153.41 port 49226 ssh2 ...	2020-02-04 09:14:19
92.126.222.172	attackspam	'IP reached maximum auth failures for a one day block'	2020-02-04 09:16:17
13.64.241.243	attackspambots	Feb 4 01:14:39 OPSO sshd\[14999\]: Invalid user opso from 13.64.241.243 port 38036 Feb 4 01:14:39 OPSO sshd\[14999\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.64.241.243 Feb 4 01:14:41 OPSO sshd\[14999\]: Failed password for invalid user opso from 13.64.241.243 port 38036 ssh2 Feb 4 01:14:43 OPSO sshd\[15001\]: Invalid user opso from 13.64.241.243 port 38694 Feb 4 01:14:43 OPSO sshd\[15001\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.64.241.243	2020-02-04 09:15:59
222.186.30.76	attackbots	SSH bruteforce (Triggered fail2ban)	2020-02-04 08:56:03

最近上报的IP列表

41.114.79.130	5.180.220.119	178.62.59.59	14.32.90.213
203.38.200.34	182.92.85.121	38.157.187.4	246.58.194.201
105.164.51.155	201.103.237.45	197.34.46.98	119.12.195.95
101.83.96.197	195.48.81.224	5.203.141.120	146.141.230.125
45.26.54.155	52.144.51.18	195.190.233.236	202.36.235.178