106.12.196.48 - IPInfo

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): Beijing Baidu Netcom Science and Technology Co., Ltd.

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.196.118	attackbotsspam	Oct 12 14:10:41 host sshd[17786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.118 user=root Oct 12 14:10:43 host sshd[17786]: Failed password for root from 106.12.196.118 port 38322 ssh2 ...	2020-10-13 00:29:44
106.12.196.118	attack	Invalid user informix from 106.12.196.118 port 41438	2020-10-12 15:51:32
106.12.196.118	attack	2020-10-11T15:47:05.520064kitsunetech sshd[17599]: Invalid user admin from 106.12.196.118 port 37394	2020-10-12 07:43:20
106.12.196.118	attackbotsspam	(sshd) Failed SSH login from 106.12.196.118 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 01:35:39 server5 sshd[21225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.118 user=root Oct 11 01:35:41 server5 sshd[21225]: Failed password for root from 106.12.196.118 port 56116 ssh2 Oct 11 01:36:12 server5 sshd[21554]: Invalid user openvpn from 106.12.196.118 Oct 11 01:36:12 server5 sshd[21554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.118 Oct 11 01:36:14 server5 sshd[21554]: Failed password for invalid user openvpn from 106.12.196.118 port 59952 ssh2	2020-10-12 00:00:17
106.12.196.118	attackbotsspam	(sshd) Failed SSH login from 106.12.196.118 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 01:35:39 server5 sshd[21225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.118 user=root Oct 11 01:35:41 server5 sshd[21225]: Failed password for root from 106.12.196.118 port 56116 ssh2 Oct 11 01:36:12 server5 sshd[21554]: Invalid user openvpn from 106.12.196.118 Oct 11 01:36:12 server5 sshd[21554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.118 Oct 11 01:36:14 server5 sshd[21554]: Failed password for invalid user openvpn from 106.12.196.118 port 59952 ssh2	2020-10-11 15:59:14
106.12.196.118	attack	Oct 11 02:23:19 h2829583 sshd[29641]: Failed password for root from 106.12.196.118 port 49538 ssh2	2020-10-11 09:16:37
106.12.196.118	attack	Bruteforce detected by fail2ban	2020-10-06 06:35:13
106.12.196.118	attack	Bruteforce detected by fail2ban	2020-10-05 22:42:14
106.12.196.118	attackspambots	SSH / Telnet Brute Force Attempts on Honeypot	2020-10-05 14:37:23
106.12.196.38	attackspambots	Sep 27 17:42:13 serwer sshd\[7008\]: Invalid user brian from 106.12.196.38 port 41874 Sep 27 17:42:13 serwer sshd\[7008\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.38 Sep 27 17:42:15 serwer sshd\[7008\]: Failed password for invalid user brian from 106.12.196.38 port 41874 ssh2 Sep 27 17:58:18 serwer sshd\[8557\]: Invalid user mongodb from 106.12.196.38 port 60976 Sep 27 17:58:18 serwer sshd\[8557\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.38 Sep 27 17:58:20 serwer sshd\[8557\]: Failed password for invalid user mongodb from 106.12.196.38 port 60976 ssh2 ...	2020-09-29 03:01:11
106.12.196.38	attack	fail2ban	2020-09-28 19:10:01
106.12.196.118	attackspambots	106.12.196.118 (CN/China/-), 6 distributed sshd attacks on account [test] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 27 12:28:35 server5 sshd[18033]: Failed password for invalid user test from 106.54.205.236 port 51262 ssh2 Sep 27 12:53:04 server5 sshd[30548]: Invalid user test from 138.204.100.70 Sep 27 12:53:06 server5 sshd[30548]: Failed password for invalid user test from 138.204.100.70 port 36118 ssh2 Sep 27 13:08:18 server5 sshd[4951]: Invalid user test from 106.12.196.118 Sep 27 12:35:15 server5 sshd[21107]: Invalid user test from 115.223.34.141 Sep 27 12:28:33 server5 sshd[18033]: Invalid user test from 106.54.205.236 IP Addresses Blocked: 106.54.205.236 (CN/China/-) 138.204.100.70 (BR/Brazil/-)	2020-09-28 01:58:33
106.12.196.118	attack	Invalid user laravel from 106.12.196.118 port 34382	2020-09-27 18:02:28
106.12.196.118	attackspam	SSH / Telnet Brute Force Attempts on Honeypot	2020-09-25 08:31:28
106.12.196.118	attackbots	2020-08-17T21:30:45.064290abusebot-4.cloudsearch.cf sshd[20905]: Invalid user drop from 106.12.196.118 port 37874 2020-08-17T21:30:45.071874abusebot-4.cloudsearch.cf sshd[20905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.118 2020-08-17T21:30:45.064290abusebot-4.cloudsearch.cf sshd[20905]: Invalid user drop from 106.12.196.118 port 37874 2020-08-17T21:30:47.511155abusebot-4.cloudsearch.cf sshd[20905]: Failed password for invalid user drop from 106.12.196.118 port 37874 ssh2 2020-08-17T21:36:48.845494abusebot-4.cloudsearch.cf sshd[21109]: Invalid user maria from 106.12.196.118 port 53938 2020-08-17T21:36:48.852272abusebot-4.cloudsearch.cf sshd[21109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.118 2020-08-17T21:36:48.845494abusebot-4.cloudsearch.cf sshd[21109]: Invalid user maria from 106.12.196.118 port 53938 2020-08-17T21:36:50.789957abusebot-4.cloudsearch.cf sshd[21109]: Fa ...	2020-08-18 06:05:36

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.196.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10563
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.196.48.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041201 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Apr 13 10:20:35 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 48.196.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 48.196.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
49.88.112.76	attackspambots	2019-10-20T06:29:19.126928abusebot-3.cloudsearch.cf sshd\[16464\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.76 user=root	2019-10-20 15:27:32
187.188.169.123	attackbots	Oct 20 05:53:05 ns37 sshd[25454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.188.169.123	2019-10-20 15:25:37
59.63.169.50	attack	Oct 20 09:13:13 MainVPS sshd[1968]: Invalid user teamspeak from 59.63.169.50 port 35896 Oct 20 09:13:13 MainVPS sshd[1968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.63.169.50 Oct 20 09:13:13 MainVPS sshd[1968]: Invalid user teamspeak from 59.63.169.50 port 35896 Oct 20 09:13:15 MainVPS sshd[1968]: Failed password for invalid user teamspeak from 59.63.169.50 port 35896 ssh2 Oct 20 09:18:02 MainVPS sshd[2337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.63.169.50 user=root Oct 20 09:18:05 MainVPS sshd[2337]: Failed password for root from 59.63.169.50 port 44604 ssh2 ...	2019-10-20 15:39:24
92.222.84.34	attackspam	Oct 20 07:16:33 SilenceServices sshd[13679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.84.34 Oct 20 07:16:36 SilenceServices sshd[13679]: Failed password for invalid user system from 92.222.84.34 port 56970 ssh2 Oct 20 07:20:01 SilenceServices sshd[14605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.84.34	2019-10-20 15:49:27
185.18.7.105	attack	Honeypot attack, port: 445, PTR: PTR record not found	2019-10-20 15:29:29
92.38.129.238	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/92.38.129.238/ US - 1H : (220) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN199524 IP : 92.38.129.238 CIDR : 92.38.129.0/24 PREFIX COUNT : 206 UNIQUE IP COUNT : 54272 ATTACKS DETECTED ASN199524 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-20 05:52:23 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-10-20 15:50:01
106.12.91.209	attack	Oct 20 12:54:49 areeb-Workstation sshd[31545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.91.209 Oct 20 12:54:52 areeb-Workstation sshd[31545]: Failed password for invalid user Marcela@123 from 106.12.91.209 port 35934 ssh2 ...	2019-10-20 15:33:47
81.22.45.115	attack	10/20/2019-03:44:47.978751 81.22.45.115 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-20 16:02:10
203.125.145.58	attackspam	SSH Bruteforce attack	2019-10-20 15:45:30
113.231.238.229	attackbotsspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-10-20 15:56:53
103.228.55.79	attackspam	Oct 20 09:11:51 vps01 sshd[10398]: Failed password for root from 103.228.55.79 port 55610 ssh2	2019-10-20 15:37:16
1.160.231.19	attack	Honeypot attack, port: 23, PTR: 1-160-231-19.dynamic-ip.hinet.net.	2019-10-20 15:41:01
192.186.0.178	attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2019-10-20 15:59:18
40.73.78.233	attackspambots	Invalid user amanda from 40.73.78.233 port 2624	2019-10-20 15:51:39
218.92.0.211	attack	Oct 20 09:19:02 eventyay sshd[22521]: Failed password for root from 218.92.0.211 port 48318 ssh2 Oct 20 09:19:45 eventyay sshd[22541]: Failed password for root from 218.92.0.211 port 53192 ssh2 ...	2019-10-20 15:25:05

最近上报的IP列表

185.38.3.138	162.243.163.136	94.74.188.137	83.3.245.132
73.53.95.248	58.59.2.26	183.81.75.89	107.170.192.122
104.189.118.224	72.9.100.190	36.89.31.98	198.58.116.243
193.227.20.171	91.206.14.193	61.175.121.76	197.165.162.214
91.206.14.190	198.108.67.48	66.175.223.153	190.9.132.202