106.12.47.169 - IPInfo

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Dec 25 07:28:16 server sshd\[21739\]: Invalid user guest from 106.12.47.169 Dec 25 07:28:16 server sshd\[21739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.169 Dec 25 07:28:17 server sshd\[21739\]: Failed password for invalid user guest from 106.12.47.169 port 41620 ssh2 Dec 26 01:54:33 server sshd\[28827\]: Invalid user castellarin from 106.12.47.169 Dec 26 01:54:33 server sshd\[28827\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.169 ...	2019-12-26 07:16:30

类型

评论内容

时间

attackspam

Dec 25 07:28:16 server sshd\[21739\]: Invalid user guest from 106.12.47.169
Dec 25 07:28:16 server sshd\[21739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.169 
Dec 25 07:28:17 server sshd\[21739\]: Failed password for invalid user guest from 106.12.47.169 port 41620 ssh2
Dec 26 01:54:33 server sshd\[28827\]: Invalid user castellarin from 106.12.47.169
Dec 26 01:54:33 server sshd\[28827\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.169 
...

2019-12-26 07:16:30

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.47.229	attack	Oct 8 20:36:17 cdc sshd[4755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 user=sync Oct 8 20:36:19 cdc sshd[4755]: Failed password for invalid user sync from 106.12.47.229 port 51146 ssh2	2020-10-09 05:31:14
106.12.47.229	attackbots	Oct 8 12:44:33 prox sshd[1781]: Failed password for root from 106.12.47.229 port 35300 ssh2	2020-10-08 21:45:49
106.12.47.229	attackbotsspam	2020-10-08T04:23:33.378242mail.broermann.family sshd[12096]: Failed password for root from 106.12.47.229 port 49054 ssh2 2020-10-08T04:25:29.690409mail.broermann.family sshd[12279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 user=root 2020-10-08T04:25:31.477129mail.broermann.family sshd[12279]: Failed password for root from 106.12.47.229 port 40646 ssh2 2020-10-08T04:27:14.853148mail.broermann.family sshd[12426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 user=root 2020-10-08T04:27:17.056117mail.broermann.family sshd[12426]: Failed password for root from 106.12.47.229 port 60462 ssh2 ...	2020-10-08 13:39:56
106.12.47.229	attack	Oct 3 21:35:56 marvibiene sshd[11277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 Oct 3 21:35:58 marvibiene sshd[11277]: Failed password for invalid user dc from 106.12.47.229 port 57442 ssh2	2020-10-04 05:29:25
106.12.47.229	attack	(sshd) Failed SSH login from 106.12.47.229 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 3 06:08:54 server sshd[3611]: Invalid user user5 from 106.12.47.229 Oct 3 06:08:54 server sshd[3611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 Oct 3 06:08:56 server sshd[3611]: Failed password for invalid user user5 from 106.12.47.229 port 50008 ssh2 Oct 3 06:15:37 server sshd[4667]: Invalid user wkiconsole from 106.12.47.229 Oct 3 06:15:37 server sshd[4667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229	2020-10-03 13:06:21
106.12.47.108	attackbots	Sep 30 23:35:03 ajax sshd[5579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.108 Sep 30 23:35:05 ajax sshd[5579]: Failed password for invalid user ts3 from 106.12.47.108 port 34062 ssh2	2020-10-01 08:32:43
106.12.47.108	attack	Sep 30 18:26:27 xeon sshd[63131]: Failed password for invalid user dbadmin from 106.12.47.108 port 45866 ssh2	2020-10-01 01:05:53
106.12.47.229	attackspam	Sep 25 18:01:11 firewall sshd[22218]: Invalid user jerry from 106.12.47.229 Sep 25 18:01:13 firewall sshd[22218]: Failed password for invalid user jerry from 106.12.47.229 port 56130 ssh2 Sep 25 18:04:19 firewall sshd[22436]: Invalid user kali from 106.12.47.229 ...	2020-09-26 05:43:19
106.12.47.229	attackspambots	Sep 25 14:02:06 ns382633 sshd\[28391\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 user=root Sep 25 14:02:08 ns382633 sshd\[28391\]: Failed password for root from 106.12.47.229 port 42676 ssh2 Sep 25 14:18:37 ns382633 sshd\[31399\]: Invalid user support from 106.12.47.229 port 45950 Sep 25 14:18:37 ns382633 sshd\[31399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 Sep 25 14:18:39 ns382633 sshd\[31399\]: Failed password for invalid user support from 106.12.47.229 port 45950 ssh2	2020-09-25 22:42:04
106.12.47.229	attackbotsspam	2020-09-25T05:23:21.802823abusebot-6.cloudsearch.cf sshd[6447]: Invalid user tmpuser from 106.12.47.229 port 50712 2020-09-25T05:23:21.808666abusebot-6.cloudsearch.cf sshd[6447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 2020-09-25T05:23:21.802823abusebot-6.cloudsearch.cf sshd[6447]: Invalid user tmpuser from 106.12.47.229 port 50712 2020-09-25T05:23:24.213121abusebot-6.cloudsearch.cf sshd[6447]: Failed password for invalid user tmpuser from 106.12.47.229 port 50712 ssh2 2020-09-25T05:26:46.655123abusebot-6.cloudsearch.cf sshd[6465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 user=root 2020-09-25T05:26:48.868945abusebot-6.cloudsearch.cf sshd[6465]: Failed password for root from 106.12.47.229 port 35658 ssh2 2020-09-25T05:29:54.781099abusebot-6.cloudsearch.cf sshd[6525]: Invalid user test from 106.12.47.229 port 48850 ...	2020-09-25 14:20:50
106.12.47.229	attackspam	Sep 24 22:22:32 Ubuntu-1404-trusty-64-minimal sshd\[6698\]: Invalid user openbravo from 106.12.47.229 Sep 24 22:22:32 Ubuntu-1404-trusty-64-minimal sshd\[6698\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 Sep 24 22:22:34 Ubuntu-1404-trusty-64-minimal sshd\[6698\]: Failed password for invalid user openbravo from 106.12.47.229 port 49536 ssh2 Sep 24 22:39:04 Ubuntu-1404-trusty-64-minimal sshd\[26454\]: Invalid user gpadmin from 106.12.47.229 Sep 24 22:39:04 Ubuntu-1404-trusty-64-minimal sshd\[26454\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229	2020-09-25 04:47:45
106.12.47.108	attackbots	(sshd) Failed SSH login from 106.12.47.108 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 31 04:13:26 server2 sshd[8065]: Invalid user admin from 106.12.47.108 Aug 31 04:13:26 server2 sshd[8065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.108 Aug 31 04:13:27 server2 sshd[8065]: Failed password for invalid user admin from 106.12.47.108 port 39114 ssh2 Aug 31 04:25:17 server2 sshd[19882]: Invalid user riana from 106.12.47.108 Aug 31 04:25:17 server2 sshd[19882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.108	2020-08-31 17:45:16
106.12.47.108	attack	Aug 15 05:41:01 xeon sshd[52433]: Failed password for root from 106.12.47.108 port 39240 ssh2	2020-08-15 18:49:10
106.12.47.108	attackspam	Jul 26 01:00:52 ns382633 sshd\[17062\]: Invalid user liwei from 106.12.47.108 port 60382 Jul 26 01:00:52 ns382633 sshd\[17062\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.108 Jul 26 01:00:54 ns382633 sshd\[17062\]: Failed password for invalid user liwei from 106.12.47.108 port 60382 ssh2 Jul 26 01:09:09 ns382633 sshd\[18465\]: Invalid user elena from 106.12.47.108 port 46024 Jul 26 01:09:09 ns382633 sshd\[18465\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.108	2020-07-26 07:27:56
106.12.47.27	attack	Jul 23 04:53:46 dignus sshd[10138]: Failed password for invalid user snow from 106.12.47.27 port 38500 ssh2 Jul 23 04:58:49 dignus sshd[10846]: Invalid user dcc from 106.12.47.27 port 41130 Jul 23 04:58:49 dignus sshd[10846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.27 Jul 23 04:58:51 dignus sshd[10846]: Failed password for invalid user dcc from 106.12.47.27 port 41130 ssh2 Jul 23 05:04:02 dignus sshd[11488]: Invalid user conti from 106.12.47.27 port 43780 ...	2020-07-23 20:23:24

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.47.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12700
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.47.169.			IN	A

;; AUTHORITY SECTION:
.			385	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122502 1800 900 604800 86400

;; Query time: 134 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 26 07:16:27 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 169.47.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 169.47.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.42.7	attackspambots	Sep 4 06:06:31 abendstille sshd\[23717\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root Sep 4 06:06:33 abendstille sshd\[23717\]: Failed password for root from 222.186.42.7 port 43867 ssh2 Sep 4 06:06:45 abendstille sshd\[23717\]: Failed password for root from 222.186.42.7 port 43867 ssh2 Sep 4 06:06:48 abendstille sshd\[23717\]: Failed password for root from 222.186.42.7 port 43867 ssh2 Sep 4 06:06:50 abendstille sshd\[24067\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root ...	2020-09-04 12:09:58
59.127.251.94	attack	port scan and connect, tcp 23 (telnet)	2020-09-04 12:16:11
222.186.175.202	attack	Sep 4 06:29:27 vpn01 sshd[17394]: Failed password for root from 222.186.175.202 port 34174 ssh2 Sep 4 06:29:40 vpn01 sshd[17394]: error: maximum authentication attempts exceeded for root from 222.186.175.202 port 34174 ssh2 [preauth] ...	2020-09-04 12:30:39
222.186.175.183	attack	Sep 3 18:23:06 hanapaa sshd\[19962\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.183 user=root Sep 3 18:23:08 hanapaa sshd\[19962\]: Failed password for root from 222.186.175.183 port 52100 ssh2 Sep 3 18:23:11 hanapaa sshd\[19962\]: Failed password for root from 222.186.175.183 port 52100 ssh2 Sep 3 18:23:14 hanapaa sshd\[19962\]: Failed password for root from 222.186.175.183 port 52100 ssh2 Sep 3 18:23:23 hanapaa sshd\[19980\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.183 user=root	2020-09-04 12:25:36
92.63.194.104	attackbots	Icarus honeypot on github	2020-09-04 12:14:53
185.220.102.245	attack	Sep 3 20:24:33 dignus sshd[20244]: Failed password for root from 185.220.102.245 port 3750 ssh2 Sep 3 20:24:36 dignus sshd[20244]: Failed password for root from 185.220.102.245 port 3750 ssh2 Sep 3 20:24:38 dignus sshd[20244]: Failed password for root from 185.220.102.245 port 3750 ssh2 Sep 3 20:24:41 dignus sshd[20244]: Failed password for root from 185.220.102.245 port 3750 ssh2 Sep 3 20:24:44 dignus sshd[20244]: Failed password for root from 185.220.102.245 port 3750 ssh2 ...	2020-09-04 12:24:46
167.114.115.33	attackbotsspam	Sep 4 05:44:33 lnxded63 sshd[27624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.115.33 Sep 4 05:44:33 lnxded63 sshd[27624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.115.33	2020-09-04 12:11:06
36.80.170.29	attackbotsspam	Attempted connection to port 445.	2020-09-04 08:52:30
5.188.206.194	attack	Sep 4 06:01:21 relay postfix/smtpd\[14504\]: warning: unknown\[5.188.206.194\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 06:01:41 relay postfix/smtpd\[12846\]: warning: unknown\[5.188.206.194\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 06:08:37 relay postfix/smtpd\[12847\]: warning: unknown\[5.188.206.194\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 06:08:59 relay postfix/smtpd\[12846\]: warning: unknown\[5.188.206.194\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 06:10:39 relay postfix/smtpd\[14515\]: warning: unknown\[5.188.206.194\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-04 12:28:38
117.85.113.111	attack	/%23	2020-09-04 12:01:14
51.158.111.157	attackspam	Sep 3 20:41:05 dignus sshd[23191]: Failed password for root from 51.158.111.157 port 36914 ssh2 Sep 3 20:41:07 dignus sshd[23191]: Failed password for root from 51.158.111.157 port 36914 ssh2 Sep 3 20:41:10 dignus sshd[23191]: Failed password for root from 51.158.111.157 port 36914 ssh2 Sep 3 20:41:12 dignus sshd[23191]: Failed password for root from 51.158.111.157 port 36914 ssh2 Sep 3 20:41:16 dignus sshd[23191]: error: maximum authentication attempts exceeded for root from 51.158.111.157 port 36914 ssh2 [preauth] ...	2020-09-04 12:01:36
54.38.81.231	attackbots	Sep 3 20:53:47 dignus sshd[25416]: Failed password for root from 54.38.81.231 port 43652 ssh2 Sep 3 20:53:49 dignus sshd[25416]: Failed password for root from 54.38.81.231 port 43652 ssh2 Sep 3 20:53:51 dignus sshd[25416]: Failed password for root from 54.38.81.231 port 43652 ssh2 Sep 3 20:53:54 dignus sshd[25416]: Failed password for root from 54.38.81.231 port 43652 ssh2 Sep 3 20:53:56 dignus sshd[25416]: Failed password for root from 54.38.81.231 port 43652 ssh2 ...	2020-09-04 12:19:53
201.48.40.153	attackbotsspam	2020-09-03T13:37:17.2158031495-001 sshd[63369]: Failed password for root from 201.48.40.153 port 56064 ssh2 2020-09-03T13:41:43.6917091495-001 sshd[63552]: Invalid user zj from 201.48.40.153 port 58643 2020-09-03T13:41:43.6966131495-001 sshd[63552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.48.40.153 2020-09-03T13:41:43.6917091495-001 sshd[63552]: Invalid user zj from 201.48.40.153 port 58643 2020-09-03T13:41:46.2585241495-001 sshd[63552]: Failed password for invalid user zj from 201.48.40.153 port 58643 ssh2 2020-09-03T13:46:04.9252511495-001 sshd[63753]: Invalid user test from 201.48.40.153 port 32987 ...	2020-09-04 12:36:16
61.5.147.48	attack	Brute Force	2020-09-04 12:22:34
61.142.75.66	attackbotsspam	Attempted connection to port 1433.	2020-09-04 08:48:50

最近上报的IP列表

2.217.171.115	52.42.102.65	60.255.227.43	129.213.96.204
165.3.69.52	68.187.151.126	112.78.177.17	37.191.130.136
167.234.197.18	71.236.70.28	118.43.80.166	188.186.103.81
45.64.126.47	187.107.44.76	14.136.211.137	91.10.72.198
104.211.140.250	84.197.200.106	220.201.189.96	59.92.226.35