106.12.47.169 - IPInfo

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Dec 25 07:28:16 server sshd\[21739\]: Invalid user guest from 106.12.47.169 Dec 25 07:28:16 server sshd\[21739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.169 Dec 25 07:28:17 server sshd\[21739\]: Failed password for invalid user guest from 106.12.47.169 port 41620 ssh2 Dec 26 01:54:33 server sshd\[28827\]: Invalid user castellarin from 106.12.47.169 Dec 26 01:54:33 server sshd\[28827\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.169 ...	2019-12-26 07:16:30

类型

评论内容

时间

attackspam

Dec 25 07:28:16 server sshd\[21739\]: Invalid user guest from 106.12.47.169
Dec 25 07:28:16 server sshd\[21739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.169 
Dec 25 07:28:17 server sshd\[21739\]: Failed password for invalid user guest from 106.12.47.169 port 41620 ssh2
Dec 26 01:54:33 server sshd\[28827\]: Invalid user castellarin from 106.12.47.169
Dec 26 01:54:33 server sshd\[28827\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.169 
...

2019-12-26 07:16:30

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.47.229	attack	Oct 8 20:36:17 cdc sshd[4755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 user=sync Oct 8 20:36:19 cdc sshd[4755]: Failed password for invalid user sync from 106.12.47.229 port 51146 ssh2	2020-10-09 05:31:14
106.12.47.229	attackbots	Oct 8 12:44:33 prox sshd[1781]: Failed password for root from 106.12.47.229 port 35300 ssh2	2020-10-08 21:45:49
106.12.47.229	attackbotsspam	2020-10-08T04:23:33.378242mail.broermann.family sshd[12096]: Failed password for root from 106.12.47.229 port 49054 ssh2 2020-10-08T04:25:29.690409mail.broermann.family sshd[12279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 user=root 2020-10-08T04:25:31.477129mail.broermann.family sshd[12279]: Failed password for root from 106.12.47.229 port 40646 ssh2 2020-10-08T04:27:14.853148mail.broermann.family sshd[12426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 user=root 2020-10-08T04:27:17.056117mail.broermann.family sshd[12426]: Failed password for root from 106.12.47.229 port 60462 ssh2 ...	2020-10-08 13:39:56
106.12.47.229	attack	Oct 3 21:35:56 marvibiene sshd[11277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 Oct 3 21:35:58 marvibiene sshd[11277]: Failed password for invalid user dc from 106.12.47.229 port 57442 ssh2	2020-10-04 05:29:25
106.12.47.229	attack	(sshd) Failed SSH login from 106.12.47.229 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 3 06:08:54 server sshd[3611]: Invalid user user5 from 106.12.47.229 Oct 3 06:08:54 server sshd[3611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 Oct 3 06:08:56 server sshd[3611]: Failed password for invalid user user5 from 106.12.47.229 port 50008 ssh2 Oct 3 06:15:37 server sshd[4667]: Invalid user wkiconsole from 106.12.47.229 Oct 3 06:15:37 server sshd[4667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229	2020-10-03 13:06:21
106.12.47.108	attackbots	Sep 30 23:35:03 ajax sshd[5579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.108 Sep 30 23:35:05 ajax sshd[5579]: Failed password for invalid user ts3 from 106.12.47.108 port 34062 ssh2	2020-10-01 08:32:43
106.12.47.108	attack	Sep 30 18:26:27 xeon sshd[63131]: Failed password for invalid user dbadmin from 106.12.47.108 port 45866 ssh2	2020-10-01 01:05:53
106.12.47.229	attackspam	Sep 25 18:01:11 firewall sshd[22218]: Invalid user jerry from 106.12.47.229 Sep 25 18:01:13 firewall sshd[22218]: Failed password for invalid user jerry from 106.12.47.229 port 56130 ssh2 Sep 25 18:04:19 firewall sshd[22436]: Invalid user kali from 106.12.47.229 ...	2020-09-26 05:43:19
106.12.47.229	attackspambots	Sep 25 14:02:06 ns382633 sshd\[28391\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 user=root Sep 25 14:02:08 ns382633 sshd\[28391\]: Failed password for root from 106.12.47.229 port 42676 ssh2 Sep 25 14:18:37 ns382633 sshd\[31399\]: Invalid user support from 106.12.47.229 port 45950 Sep 25 14:18:37 ns382633 sshd\[31399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 Sep 25 14:18:39 ns382633 sshd\[31399\]: Failed password for invalid user support from 106.12.47.229 port 45950 ssh2	2020-09-25 22:42:04
106.12.47.229	attackbotsspam	2020-09-25T05:23:21.802823abusebot-6.cloudsearch.cf sshd[6447]: Invalid user tmpuser from 106.12.47.229 port 50712 2020-09-25T05:23:21.808666abusebot-6.cloudsearch.cf sshd[6447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 2020-09-25T05:23:21.802823abusebot-6.cloudsearch.cf sshd[6447]: Invalid user tmpuser from 106.12.47.229 port 50712 2020-09-25T05:23:24.213121abusebot-6.cloudsearch.cf sshd[6447]: Failed password for invalid user tmpuser from 106.12.47.229 port 50712 ssh2 2020-09-25T05:26:46.655123abusebot-6.cloudsearch.cf sshd[6465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 user=root 2020-09-25T05:26:48.868945abusebot-6.cloudsearch.cf sshd[6465]: Failed password for root from 106.12.47.229 port 35658 ssh2 2020-09-25T05:29:54.781099abusebot-6.cloudsearch.cf sshd[6525]: Invalid user test from 106.12.47.229 port 48850 ...	2020-09-25 14:20:50
106.12.47.229	attackspam	Sep 24 22:22:32 Ubuntu-1404-trusty-64-minimal sshd\[6698\]: Invalid user openbravo from 106.12.47.229 Sep 24 22:22:32 Ubuntu-1404-trusty-64-minimal sshd\[6698\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 Sep 24 22:22:34 Ubuntu-1404-trusty-64-minimal sshd\[6698\]: Failed password for invalid user openbravo from 106.12.47.229 port 49536 ssh2 Sep 24 22:39:04 Ubuntu-1404-trusty-64-minimal sshd\[26454\]: Invalid user gpadmin from 106.12.47.229 Sep 24 22:39:04 Ubuntu-1404-trusty-64-minimal sshd\[26454\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229	2020-09-25 04:47:45
106.12.47.108	attackbots	(sshd) Failed SSH login from 106.12.47.108 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 31 04:13:26 server2 sshd[8065]: Invalid user admin from 106.12.47.108 Aug 31 04:13:26 server2 sshd[8065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.108 Aug 31 04:13:27 server2 sshd[8065]: Failed password for invalid user admin from 106.12.47.108 port 39114 ssh2 Aug 31 04:25:17 server2 sshd[19882]: Invalid user riana from 106.12.47.108 Aug 31 04:25:17 server2 sshd[19882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.108	2020-08-31 17:45:16
106.12.47.108	attack	Aug 15 05:41:01 xeon sshd[52433]: Failed password for root from 106.12.47.108 port 39240 ssh2	2020-08-15 18:49:10
106.12.47.108	attackspam	Jul 26 01:00:52 ns382633 sshd\[17062\]: Invalid user liwei from 106.12.47.108 port 60382 Jul 26 01:00:52 ns382633 sshd\[17062\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.108 Jul 26 01:00:54 ns382633 sshd\[17062\]: Failed password for invalid user liwei from 106.12.47.108 port 60382 ssh2 Jul 26 01:09:09 ns382633 sshd\[18465\]: Invalid user elena from 106.12.47.108 port 46024 Jul 26 01:09:09 ns382633 sshd\[18465\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.108	2020-07-26 07:27:56
106.12.47.27	attack	Jul 23 04:53:46 dignus sshd[10138]: Failed password for invalid user snow from 106.12.47.27 port 38500 ssh2 Jul 23 04:58:49 dignus sshd[10846]: Invalid user dcc from 106.12.47.27 port 41130 Jul 23 04:58:49 dignus sshd[10846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.27 Jul 23 04:58:51 dignus sshd[10846]: Failed password for invalid user dcc from 106.12.47.27 port 41130 ssh2 Jul 23 05:04:02 dignus sshd[11488]: Invalid user conti from 106.12.47.27 port 43780 ...	2020-07-23 20:23:24

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.47.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12700
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.47.169.			IN	A

;; AUTHORITY SECTION:
.			385	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122502 1800 900 604800 86400

;; Query time: 134 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 26 07:16:27 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 169.47.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 169.47.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
23.97.180.45	attack	Aug 17 14:16:18 mail sshd\[24775\]: Invalid user pork from 23.97.180.45 Aug 17 14:16:18 mail sshd\[24775\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.97.180.45 Aug 17 14:16:20 mail sshd\[24775\]: Failed password for invalid user pork from 23.97.180.45 port 40364 ssh2 ...	2019-08-18 00:02:40
32.220.54.46	attackspam	Port Scan detected from 32.220.54.46 (US/United States/-). 4 hits in the last 60 seconds	2019-08-17 23:53:13
124.156.164.41	attackbotsspam	Invalid user ben from 124.156.164.41 port 35896	2019-08-18 00:42:56
185.23.24.144	attack	Aug 16 21:45:39 lcdev sshd\[20702\]: Invalid user steam from 185.23.24.144 Aug 16 21:45:39 lcdev sshd\[20702\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dev.100.customer.cloud.nl Aug 16 21:45:41 lcdev sshd\[20702\]: Failed password for invalid user steam from 185.23.24.144 port 53779 ssh2 Aug 16 21:50:02 lcdev sshd\[21106\]: Invalid user supervisores from 185.23.24.144 Aug 16 21:50:02 lcdev sshd\[21106\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dev.100.customer.cloud.nl	2019-08-18 00:00:01
196.188.28.217	attack	Invalid user jboss from 196.188.28.217 port 53256	2019-08-18 00:37:31
221.195.135.241	attackbots	Automatic report - Port Scan Attack	2019-08-18 00:33:25
207.154.192.152	attack	Aug 17 18:09:12 rpi sshd[30985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.192.152 Aug 17 18:09:14 rpi sshd[30985]: Failed password for invalid user admin from 207.154.192.152 port 35812 ssh2	2019-08-18 00:27:57
188.166.101.236	attackspam	SpamReport	2019-08-18 00:42:30
18.85.192.253	attack	Aug 17 18:40:36 srv-4 sshd\[11064\]: Invalid user 1234 from 18.85.192.253 Aug 17 18:40:36 srv-4 sshd\[11064\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.85.192.253 Aug 17 18:40:39 srv-4 sshd\[11064\]: Failed password for invalid user 1234 from 18.85.192.253 port 58816 ssh2 ...	2019-08-17 23:51:21
129.204.65.101	attack	Aug 17 05:40:24 aiointranet sshd\[17155\]: Invalid user danc from 129.204.65.101 Aug 17 05:40:24 aiointranet sshd\[17155\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.65.101 Aug 17 05:40:26 aiointranet sshd\[17155\]: Failed password for invalid user danc from 129.204.65.101 port 35720 ssh2 Aug 17 05:46:24 aiointranet sshd\[17727\]: Invalid user server from 129.204.65.101 Aug 17 05:46:24 aiointranet sshd\[17727\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.65.101	2019-08-18 00:01:36
173.245.239.196	attack	IMAP brute force ...	2019-08-18 00:39:22
162.144.93.159	attackbots	Fail2Ban Ban Triggered	2019-08-18 00:53:43
175.171.240.73	attack	SSH/22 MH Probe, BF, Hack -	2019-08-17 23:47:45
68.183.181.7	attack	Aug 17 18:36:17 lnxmail61 sshd[11276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.181.7	2019-08-18 00:50:31
112.85.42.186	attackbots	Aug 17 12:16:04 marvibiene sshd[52267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.186 user=root Aug 17 12:16:06 marvibiene sshd[52267]: Failed password for root from 112.85.42.186 port 22548 ssh2 Aug 17 12:16:09 marvibiene sshd[52267]: Failed password for root from 112.85.42.186 port 22548 ssh2 Aug 17 12:16:04 marvibiene sshd[52267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.186 user=root Aug 17 12:16:06 marvibiene sshd[52267]: Failed password for root from 112.85.42.186 port 22548 ssh2 Aug 17 12:16:09 marvibiene sshd[52267]: Failed password for root from 112.85.42.186 port 22548 ssh2 ...	2019-08-18 00:16:52

最近上报的IP列表

2.217.171.115	52.42.102.65	60.255.227.43	129.213.96.204
165.3.69.52	68.187.151.126	112.78.177.17	37.191.130.136
167.234.197.18	71.236.70.28	118.43.80.166	188.186.103.81
45.64.126.47	187.107.44.76	14.136.211.137	91.10.72.198
104.211.140.250	84.197.200.106	220.201.189.96	59.92.226.35