106.12.196.48 - IPInfo

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): Beijing Baidu Netcom Science and Technology Co., Ltd.

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.196.118	attackbotsspam	Oct 12 14:10:41 host sshd[17786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.118 user=root Oct 12 14:10:43 host sshd[17786]: Failed password for root from 106.12.196.118 port 38322 ssh2 ...	2020-10-13 00:29:44
106.12.196.118	attack	Invalid user informix from 106.12.196.118 port 41438	2020-10-12 15:51:32
106.12.196.118	attack	2020-10-11T15:47:05.520064kitsunetech sshd[17599]: Invalid user admin from 106.12.196.118 port 37394	2020-10-12 07:43:20
106.12.196.118	attackbotsspam	(sshd) Failed SSH login from 106.12.196.118 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 01:35:39 server5 sshd[21225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.118 user=root Oct 11 01:35:41 server5 sshd[21225]: Failed password for root from 106.12.196.118 port 56116 ssh2 Oct 11 01:36:12 server5 sshd[21554]: Invalid user openvpn from 106.12.196.118 Oct 11 01:36:12 server5 sshd[21554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.118 Oct 11 01:36:14 server5 sshd[21554]: Failed password for invalid user openvpn from 106.12.196.118 port 59952 ssh2	2020-10-12 00:00:17
106.12.196.118	attackbotsspam	(sshd) Failed SSH login from 106.12.196.118 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 01:35:39 server5 sshd[21225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.118 user=root Oct 11 01:35:41 server5 sshd[21225]: Failed password for root from 106.12.196.118 port 56116 ssh2 Oct 11 01:36:12 server5 sshd[21554]: Invalid user openvpn from 106.12.196.118 Oct 11 01:36:12 server5 sshd[21554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.118 Oct 11 01:36:14 server5 sshd[21554]: Failed password for invalid user openvpn from 106.12.196.118 port 59952 ssh2	2020-10-11 15:59:14
106.12.196.118	attack	Oct 11 02:23:19 h2829583 sshd[29641]: Failed password for root from 106.12.196.118 port 49538 ssh2	2020-10-11 09:16:37
106.12.196.118	attack	Bruteforce detected by fail2ban	2020-10-06 06:35:13
106.12.196.118	attack	Bruteforce detected by fail2ban	2020-10-05 22:42:14
106.12.196.118	attackspambots	SSH / Telnet Brute Force Attempts on Honeypot	2020-10-05 14:37:23
106.12.196.38	attackspambots	Sep 27 17:42:13 serwer sshd\[7008\]: Invalid user brian from 106.12.196.38 port 41874 Sep 27 17:42:13 serwer sshd\[7008\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.38 Sep 27 17:42:15 serwer sshd\[7008\]: Failed password for invalid user brian from 106.12.196.38 port 41874 ssh2 Sep 27 17:58:18 serwer sshd\[8557\]: Invalid user mongodb from 106.12.196.38 port 60976 Sep 27 17:58:18 serwer sshd\[8557\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.38 Sep 27 17:58:20 serwer sshd\[8557\]: Failed password for invalid user mongodb from 106.12.196.38 port 60976 ssh2 ...	2020-09-29 03:01:11
106.12.196.38	attack	fail2ban	2020-09-28 19:10:01
106.12.196.118	attackspambots	106.12.196.118 (CN/China/-), 6 distributed sshd attacks on account [test] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 27 12:28:35 server5 sshd[18033]: Failed password for invalid user test from 106.54.205.236 port 51262 ssh2 Sep 27 12:53:04 server5 sshd[30548]: Invalid user test from 138.204.100.70 Sep 27 12:53:06 server5 sshd[30548]: Failed password for invalid user test from 138.204.100.70 port 36118 ssh2 Sep 27 13:08:18 server5 sshd[4951]: Invalid user test from 106.12.196.118 Sep 27 12:35:15 server5 sshd[21107]: Invalid user test from 115.223.34.141 Sep 27 12:28:33 server5 sshd[18033]: Invalid user test from 106.54.205.236 IP Addresses Blocked: 106.54.205.236 (CN/China/-) 138.204.100.70 (BR/Brazil/-)	2020-09-28 01:58:33
106.12.196.118	attack	Invalid user laravel from 106.12.196.118 port 34382	2020-09-27 18:02:28
106.12.196.118	attackspam	SSH / Telnet Brute Force Attempts on Honeypot	2020-09-25 08:31:28
106.12.196.118	attackbots	2020-08-17T21:30:45.064290abusebot-4.cloudsearch.cf sshd[20905]: Invalid user drop from 106.12.196.118 port 37874 2020-08-17T21:30:45.071874abusebot-4.cloudsearch.cf sshd[20905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.118 2020-08-17T21:30:45.064290abusebot-4.cloudsearch.cf sshd[20905]: Invalid user drop from 106.12.196.118 port 37874 2020-08-17T21:30:47.511155abusebot-4.cloudsearch.cf sshd[20905]: Failed password for invalid user drop from 106.12.196.118 port 37874 ssh2 2020-08-17T21:36:48.845494abusebot-4.cloudsearch.cf sshd[21109]: Invalid user maria from 106.12.196.118 port 53938 2020-08-17T21:36:48.852272abusebot-4.cloudsearch.cf sshd[21109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.118 2020-08-17T21:36:48.845494abusebot-4.cloudsearch.cf sshd[21109]: Invalid user maria from 106.12.196.118 port 53938 2020-08-17T21:36:50.789957abusebot-4.cloudsearch.cf sshd[21109]: Fa ...	2020-08-18 06:05:36

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.196.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10563
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.196.48.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041201 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Apr 13 10:20:35 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 48.196.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 48.196.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
159.148.4.235	attackspam	Sep 2 19:51:57 ip-172-31-1-72 sshd\[19466\]: Invalid user public from 159.148.4.235 Sep 2 19:51:57 ip-172-31-1-72 sshd\[19466\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.148.4.235 Sep 2 19:51:58 ip-172-31-1-72 sshd\[19466\]: Failed password for invalid user public from 159.148.4.235 port 51306 ssh2 Sep 2 19:55:49 ip-172-31-1-72 sshd\[19545\]: Invalid user kp from 159.148.4.235 Sep 2 19:55:49 ip-172-31-1-72 sshd\[19545\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.148.4.235	2019-09-03 03:58:41
212.92.123.75	attackbotsspam	RDP Bruteforce	2019-09-03 03:37:02
113.87.25.0	attackspam	Sep 2 15:06:43 mxgate1 postfix/postscreen[19452]: CONNECT from [113.87.25.0]:13715 to [176.31.12.44]:25 Sep 2 15:06:43 mxgate1 postfix/dnsblog[19457]: addr 113.87.25.0 listed by domain zen.spamhaus.org as 127.0.0.3 Sep 2 15:06:43 mxgate1 postfix/dnsblog[19457]: addr 113.87.25.0 listed by domain zen.spamhaus.org as 127.0.0.4 Sep 2 15:06:43 mxgate1 postfix/dnsblog[19457]: addr 113.87.25.0 listed by domain zen.spamhaus.org as 127.0.0.11 Sep 2 15:06:43 mxgate1 postfix/dnsblog[19455]: addr 113.87.25.0 listed by domain cbl.abuseat.org as 127.0.0.2 Sep 2 15:06:43 mxgate1 postfix/dnsblog[19456]: addr 113.87.25.0 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Sep 2 15:06:49 mxgate1 postfix/postscreen[19452]: DNSBL rank 4 for [113.87.25.0]:13715 Sep x@x Sep 2 15:06:51 mxgate1 postfix/postscreen[19452]: DISCONNECT [113.87.25.0]:13715 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=113.87.25.0	2019-09-03 04:17:21
200.60.60.84	attack	Sep 2 09:01:49 lcdev sshd\[20964\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.60.60.84 user=root Sep 2 09:01:51 lcdev sshd\[20964\]: Failed password for root from 200.60.60.84 port 53955 ssh2 Sep 2 09:09:06 lcdev sshd\[21680\]: Invalid user contact from 200.60.60.84 Sep 2 09:09:06 lcdev sshd\[21680\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.60.60.84 Sep 2 09:09:08 lcdev sshd\[21680\]: Failed password for invalid user contact from 200.60.60.84 port 47638 ssh2	2019-09-03 03:28:11
13.94.57.155	attack	Sep 2 21:43:40 mail sshd\[17460\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 user=root Sep 2 21:43:42 mail sshd\[17460\]: Failed password for root from 13.94.57.155 port 38840 ssh2 Sep 2 21:48:53 mail sshd\[18150\]: Invalid user rpcuser from 13.94.57.155 port 57674 Sep 2 21:48:53 mail sshd\[18150\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 Sep 2 21:48:55 mail sshd\[18150\]: Failed password for invalid user rpcuser from 13.94.57.155 port 57674 ssh2	2019-09-03 03:51:21
193.70.36.161	attack	Sep 02 08:12:09 askasleikir sshd[14441]: Failed password for invalid user test11 from 193.70.36.161 port 57205 ssh2	2019-09-03 03:31:00
80.52.199.93	attackbotsspam	Sep 2 20:40:42 debian sshd\[24752\]: Invalid user webster123 from 80.52.199.93 port 55604 Sep 2 20:40:42 debian sshd\[24752\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.52.199.93 ...	2019-09-03 03:52:53
188.173.62.236	attack	188.173.62.236 - - [02/Sep/2019:15:14:37 +0200] "GET /wp-login.php HTTP/1.1" 302 573 ...	2019-09-03 03:58:16
80.85.155.144	attackspam	TCP Port: 25 _ invalid blocked dnsbl-sorbs barracudacentral _ _ _ _ (848)	2019-09-03 04:00:22
200.150.87.131	attackbotsspam	2019-09-02T21:12:15.044614stark.klein-stark.info sshd\[10213\]: Invalid user guest from 200.150.87.131 port 38654 2019-09-02T21:12:15.049568stark.klein-stark.info sshd\[10213\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.150.87.131 2019-09-02T21:12:17.351943stark.klein-stark.info sshd\[10213\]: Failed password for invalid user guest from 200.150.87.131 port 38654 ssh2 ...	2019-09-03 03:27:37
62.76.5.157	attackspambots	xmlrpc attack	2019-09-03 04:09:46
50.205.206.182	attackbots	Port Scan: UDP/560	2019-09-03 03:25:04
58.249.123.38	attack	2019-08-30 17:46:48 server sshd[77407]: Failed password for invalid user kapaul from 58.249.123.38 port 37938 ssh2	2019-09-03 03:50:38
173.208.249.218	attackbots	Port Scan: UDP/53	2019-09-03 03:28:28
178.128.194.116	attackspambots	fail2ban	2019-09-03 03:45:30

最近上报的IP列表

185.38.3.138	162.243.163.136	94.74.188.137	83.3.245.132
73.53.95.248	58.59.2.26	183.81.75.89	107.170.192.122
104.189.118.224	72.9.100.190	36.89.31.98	198.58.116.243
193.227.20.171	91.206.14.193	61.175.121.76	197.165.162.214
91.206.14.190	198.108.67.48	66.175.223.153	190.9.132.202