106.12.92.14 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Sep 17 05:41:34 rpi sshd[17056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.92.14 Sep 17 05:41:36 rpi sshd[17056]: Failed password for invalid user buildbot from 106.12.92.14 port 60099 ssh2	2019-09-17 12:00:13
attackspam	Sep 1 18:55:56 web9 sshd\[6733\]: Invalid user cs-go from 106.12.92.14 Sep 1 18:55:56 web9 sshd\[6733\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.92.14 Sep 1 18:55:58 web9 sshd\[6733\]: Failed password for invalid user cs-go from 106.12.92.14 port 34007 ssh2 Sep 1 19:01:04 web9 sshd\[7650\]: Invalid user ka from 106.12.92.14 Sep 1 19:01:04 web9 sshd\[7650\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.92.14	2019-09-02 13:08:18

类型

评论内容

时间

attack

Sep 17 05:41:34 rpi sshd[17056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.92.14 
Sep 17 05:41:36 rpi sshd[17056]: Failed password for invalid user buildbot from 106.12.92.14 port 60099 ssh2

2019-09-17 12:00:13

attackspam

Sep  1 18:55:56 web9 sshd\[6733\]: Invalid user cs-go from 106.12.92.14
Sep  1 18:55:56 web9 sshd\[6733\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.92.14
Sep  1 18:55:58 web9 sshd\[6733\]: Failed password for invalid user cs-go from 106.12.92.14 port 34007 ssh2
Sep  1 19:01:04 web9 sshd\[7650\]: Invalid user ka from 106.12.92.14
Sep  1 19:01:04 web9 sshd\[7650\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.92.14

2019-09-02 13:08:18

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.92.246	attackbotsspam	Aug 16 23:09:44 ns382633 sshd\[21466\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.92.246 user=root Aug 16 23:09:46 ns382633 sshd\[21466\]: Failed password for root from 106.12.92.246 port 44702 ssh2 Aug 16 23:17:25 ns382633 sshd\[23106\]: Invalid user ha from 106.12.92.246 port 49572 Aug 16 23:17:25 ns382633 sshd\[23106\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.92.246 Aug 16 23:17:26 ns382633 sshd\[23106\]: Failed password for invalid user ha from 106.12.92.246 port 49572 ssh2	2020-08-17 06:31:13
106.12.92.246	attack	Aug 10 03:23:52 vm0 sshd[14508]: Failed password for root from 106.12.92.246 port 54284 ssh2 Aug 10 09:02:48 vm0 sshd[27121]: Failed password for root from 106.12.92.246 port 48348 ssh2 ...	2020-08-10 16:31:58
106.12.92.246	attack	SSH Invalid Login	2020-07-24 06:11:00
106.12.92.246	attackbotsspam	Jun 8 06:04:23 piServer sshd[6630]: Failed password for root from 106.12.92.246 port 37786 ssh2 Jun 8 06:08:46 piServer sshd[7080]: Failed password for root from 106.12.92.246 port 34592 ssh2 ...	2020-06-08 19:22:47
106.12.92.246	attack	May 21 05:58:54 nextcloud sshd\[32081\]: Invalid user cdn from 106.12.92.246 May 21 05:58:54 nextcloud sshd\[32081\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.92.246 May 21 05:58:57 nextcloud sshd\[32081\]: Failed password for invalid user cdn from 106.12.92.246 port 60970 ssh2	2020-05-21 12:36:55
106.12.92.65	attack	May 15 14:17:05 ns382633 sshd\[20077\]: Invalid user ubuntu from 106.12.92.65 port 56210 May 15 14:17:05 ns382633 sshd\[20077\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.92.65 May 15 14:17:07 ns382633 sshd\[20077\]: Failed password for invalid user ubuntu from 106.12.92.65 port 56210 ssh2 May 15 14:23:23 ns382633 sshd\[21135\]: Invalid user webadmin from 106.12.92.65 port 33662 May 15 14:23:23 ns382633 sshd\[21135\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.92.65	2020-05-16 01:06:40
106.12.92.246	attackspam	...	2020-05-15 19:50:43
106.12.92.246	attackspam	SSH brute-force attempt	2020-05-14 02:07:30
106.12.92.246	attackspambots	SSH Brute Force	2020-04-29 13:05:17
106.12.92.246	attackspam	prod11 ...	2020-04-17 18:09:29
106.12.92.246	attackbotsspam	Apr 16 09:31:56 localhost sshd\[21203\]: Invalid user pool from 106.12.92.246 Apr 16 09:31:56 localhost sshd\[21203\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.92.246 Apr 16 09:31:59 localhost sshd\[21203\]: Failed password for invalid user pool from 106.12.92.246 port 52066 ssh2 Apr 16 09:34:59 localhost sshd\[21362\]: Invalid user share from 106.12.92.246 Apr 16 09:34:59 localhost sshd\[21362\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.92.246 ...	2020-04-16 19:32:59
106.12.92.65	attackbotsspam	Apr 16 00:29:09 vpn01 sshd[10618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.92.65 Apr 16 00:29:11 vpn01 sshd[10618]: Failed password for invalid user tena from 106.12.92.65 port 57546 ssh2 ...	2020-04-16 07:06:36
106.12.92.246	attackspambots	Invalid user test from 106.12.92.246 port 46348	2020-04-13 06:26:57
106.12.92.246	attackbotsspam	Invalid user UBNT from 106.12.92.246 port 53464	2020-04-11 07:23:32
106.12.92.70	attackspambots	Apr 5 05:47:50 minden010 sshd[26783]: Failed password for root from 106.12.92.70 port 59144 ssh2 Apr 5 05:52:22 minden010 sshd[28307]: Failed password for root from 106.12.92.70 port 36270 ssh2 ...	2020-04-05 13:34:53

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.92.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45005
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.92.14.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050401 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun May 05 09:09:01 +08 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 14.92.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 14.92.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
198.46.188.145	attackspambots	Aug 15 19:35:34 serwer sshd\[23544\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.46.188.145 user=root Aug 15 19:35:36 serwer sshd\[23544\]: Failed password for root from 198.46.188.145 port 54320 ssh2 Aug 15 19:39:44 serwer sshd\[24926\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.46.188.145 user=root ...	2020-08-17 04:51:38
89.243.13.77	attackbotsspam	20/8/16@08:19:29: FAIL: Alarm-Network address from=89.243.13.77 20/8/16@08:19:29: FAIL: Alarm-Network address from=89.243.13.77 ...	2020-08-17 04:25:30
140.143.19.237	attack	Aug 16 19:05:59 h1745522 sshd[29562]: Invalid user wq from 140.143.19.237 port 60644 Aug 16 19:05:59 h1745522 sshd[29562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.19.237 Aug 16 19:05:59 h1745522 sshd[29562]: Invalid user wq from 140.143.19.237 port 60644 Aug 16 19:06:01 h1745522 sshd[29562]: Failed password for invalid user wq from 140.143.19.237 port 60644 ssh2 Aug 16 19:09:50 h1745522 sshd[29836]: Invalid user id from 140.143.19.237 port 42358 Aug 16 19:09:50 h1745522 sshd[29836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.19.237 Aug 16 19:09:50 h1745522 sshd[29836]: Invalid user id from 140.143.19.237 port 42358 Aug 16 19:09:53 h1745522 sshd[29836]: Failed password for invalid user id from 140.143.19.237 port 42358 ssh2 Aug 16 19:13:41 h1745522 sshd[30135]: Invalid user oracle from 140.143.19.237 port 52304 ...	2020-08-17 04:22:58
50.246.133.188	attack	Aug 16 22:28:06 buvik sshd[20458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.246.133.188 user=root Aug 16 22:28:08 buvik sshd[20458]: Failed password for root from 50.246.133.188 port 41290 ssh2 Aug 16 22:34:17 buvik sshd[21321]: Invalid user jordan from 50.246.133.188 ...	2020-08-17 04:49:43
111.229.101.155	attack	Failed password for invalid user mhj from 111.229.101.155 port 53488 ssh2	2020-08-17 04:31:04
203.86.7.110	attack	Aug 16 22:34:28 lnxded63 sshd[8137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.86.7.110 Aug 16 22:34:28 lnxded63 sshd[8137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.86.7.110	2020-08-17 04:41:59
104.251.241.150	attackspambots	Automatic report - Port Scan Attack	2020-08-17 04:24:48
46.101.43.224	attackspambots	$f2bV_matches	2020-08-17 04:27:50
37.99.108.118	attackspambots	Port Scan ...	2020-08-17 04:46:58
106.12.110.157	attackspam	Aug 16 19:38:41 fhem-rasp sshd[8447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.110.157 user=root Aug 16 19:38:43 fhem-rasp sshd[8447]: Failed password for root from 106.12.110.157 port 64776 ssh2 ...	2020-08-17 04:22:02
212.47.229.4	attack	prod8 ...	2020-08-17 04:34:06
198.245.49.22	attack	198.245.49.22 - - [16/Aug/2020:18:50:37 +0100] "POST /wp-login.php HTTP/1.1" 200 2415 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.245.49.22 - - [16/Aug/2020:18:50:38 +0100] "POST /wp-login.php HTTP/1.1" 200 2364 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.245.49.22 - - [16/Aug/2020:18:50:39 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-17 04:34:52
201.97.97.174	attackspam	Automatic report - Port Scan Attack	2020-08-17 04:46:02
23.95.224.72	attackspambots	(From eric@talkwithwebvisitor.com) Hey there, I just found your site, quick question… My name’s Eric, I found lacostachiropractic.com after doing a quick search – you showed up near the top of the rankings, so whatever you’re doing for SEO, looks like it’s working well. So here’s my question – what happens AFTER someone lands on your site? Anything? Research tells us at least 70% of the people who find your site, after a quick once-over, they disappear… forever. That means that all the work and effort you put into getting them to show up, goes down the tubes. Why would you want all that good work – and the great site you’ve built – go to waste? Because the odds are they’ll just skip over calling or even grabbing their phone, leaving you high and dry. But here’s a thought… what if you could make it super-simple for someone to raise their hand, say, “okay, let’s talk” without requiring them to even pull their cell phone from their pocket? You can – thanks to revolutionary new software	2020-08-17 04:25:59
35.227.170.34	attackspambots	Automatically reported by fail2ban report script (mx1)	2020-08-17 04:48:31

最近上报的IP列表

202.71.13.79	185.76.81.3	69.30.243.244	129.204.133.193
114.35.105.141	165.227.67.64	34.238.139.179	188.166.3.42
118.24.196.77	49.128.174.248	187.218.194.202	185.2.5.40
103.57.121.22	154.127.88.155	104.248.155.165	80.62.117.226
218.161.75.200	54.50.166.253	209.199.209.238	182.254.36.204