106.12.47.169 - IPInfo

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Dec 25 07:28:16 server sshd\[21739\]: Invalid user guest from 106.12.47.169 Dec 25 07:28:16 server sshd\[21739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.169 Dec 25 07:28:17 server sshd\[21739\]: Failed password for invalid user guest from 106.12.47.169 port 41620 ssh2 Dec 26 01:54:33 server sshd\[28827\]: Invalid user castellarin from 106.12.47.169 Dec 26 01:54:33 server sshd\[28827\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.169 ...	2019-12-26 07:16:30

类型

评论内容

时间

attackspam

Dec 25 07:28:16 server sshd\[21739\]: Invalid user guest from 106.12.47.169
Dec 25 07:28:16 server sshd\[21739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.169 
Dec 25 07:28:17 server sshd\[21739\]: Failed password for invalid user guest from 106.12.47.169 port 41620 ssh2
Dec 26 01:54:33 server sshd\[28827\]: Invalid user castellarin from 106.12.47.169
Dec 26 01:54:33 server sshd\[28827\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.169 
...

2019-12-26 07:16:30

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.47.229	attack	Oct 8 20:36:17 cdc sshd[4755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 user=sync Oct 8 20:36:19 cdc sshd[4755]: Failed password for invalid user sync from 106.12.47.229 port 51146 ssh2	2020-10-09 05:31:14
106.12.47.229	attackbots	Oct 8 12:44:33 prox sshd[1781]: Failed password for root from 106.12.47.229 port 35300 ssh2	2020-10-08 21:45:49
106.12.47.229	attackbotsspam	2020-10-08T04:23:33.378242mail.broermann.family sshd[12096]: Failed password for root from 106.12.47.229 port 49054 ssh2 2020-10-08T04:25:29.690409mail.broermann.family sshd[12279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 user=root 2020-10-08T04:25:31.477129mail.broermann.family sshd[12279]: Failed password for root from 106.12.47.229 port 40646 ssh2 2020-10-08T04:27:14.853148mail.broermann.family sshd[12426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 user=root 2020-10-08T04:27:17.056117mail.broermann.family sshd[12426]: Failed password for root from 106.12.47.229 port 60462 ssh2 ...	2020-10-08 13:39:56
106.12.47.229	attack	Oct 3 21:35:56 marvibiene sshd[11277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 Oct 3 21:35:58 marvibiene sshd[11277]: Failed password for invalid user dc from 106.12.47.229 port 57442 ssh2	2020-10-04 05:29:25
106.12.47.229	attack	(sshd) Failed SSH login from 106.12.47.229 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 3 06:08:54 server sshd[3611]: Invalid user user5 from 106.12.47.229 Oct 3 06:08:54 server sshd[3611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 Oct 3 06:08:56 server sshd[3611]: Failed password for invalid user user5 from 106.12.47.229 port 50008 ssh2 Oct 3 06:15:37 server sshd[4667]: Invalid user wkiconsole from 106.12.47.229 Oct 3 06:15:37 server sshd[4667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229	2020-10-03 13:06:21
106.12.47.108	attackbots	Sep 30 23:35:03 ajax sshd[5579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.108 Sep 30 23:35:05 ajax sshd[5579]: Failed password for invalid user ts3 from 106.12.47.108 port 34062 ssh2	2020-10-01 08:32:43
106.12.47.108	attack	Sep 30 18:26:27 xeon sshd[63131]: Failed password for invalid user dbadmin from 106.12.47.108 port 45866 ssh2	2020-10-01 01:05:53
106.12.47.229	attackspam	Sep 25 18:01:11 firewall sshd[22218]: Invalid user jerry from 106.12.47.229 Sep 25 18:01:13 firewall sshd[22218]: Failed password for invalid user jerry from 106.12.47.229 port 56130 ssh2 Sep 25 18:04:19 firewall sshd[22436]: Invalid user kali from 106.12.47.229 ...	2020-09-26 05:43:19
106.12.47.229	attackspambots	Sep 25 14:02:06 ns382633 sshd\[28391\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 user=root Sep 25 14:02:08 ns382633 sshd\[28391\]: Failed password for root from 106.12.47.229 port 42676 ssh2 Sep 25 14:18:37 ns382633 sshd\[31399\]: Invalid user support from 106.12.47.229 port 45950 Sep 25 14:18:37 ns382633 sshd\[31399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 Sep 25 14:18:39 ns382633 sshd\[31399\]: Failed password for invalid user support from 106.12.47.229 port 45950 ssh2	2020-09-25 22:42:04
106.12.47.229	attackbotsspam	2020-09-25T05:23:21.802823abusebot-6.cloudsearch.cf sshd[6447]: Invalid user tmpuser from 106.12.47.229 port 50712 2020-09-25T05:23:21.808666abusebot-6.cloudsearch.cf sshd[6447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 2020-09-25T05:23:21.802823abusebot-6.cloudsearch.cf sshd[6447]: Invalid user tmpuser from 106.12.47.229 port 50712 2020-09-25T05:23:24.213121abusebot-6.cloudsearch.cf sshd[6447]: Failed password for invalid user tmpuser from 106.12.47.229 port 50712 ssh2 2020-09-25T05:26:46.655123abusebot-6.cloudsearch.cf sshd[6465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 user=root 2020-09-25T05:26:48.868945abusebot-6.cloudsearch.cf sshd[6465]: Failed password for root from 106.12.47.229 port 35658 ssh2 2020-09-25T05:29:54.781099abusebot-6.cloudsearch.cf sshd[6525]: Invalid user test from 106.12.47.229 port 48850 ...	2020-09-25 14:20:50
106.12.47.229	attackspam	Sep 24 22:22:32 Ubuntu-1404-trusty-64-minimal sshd\[6698\]: Invalid user openbravo from 106.12.47.229 Sep 24 22:22:32 Ubuntu-1404-trusty-64-minimal sshd\[6698\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229 Sep 24 22:22:34 Ubuntu-1404-trusty-64-minimal sshd\[6698\]: Failed password for invalid user openbravo from 106.12.47.229 port 49536 ssh2 Sep 24 22:39:04 Ubuntu-1404-trusty-64-minimal sshd\[26454\]: Invalid user gpadmin from 106.12.47.229 Sep 24 22:39:04 Ubuntu-1404-trusty-64-minimal sshd\[26454\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.229	2020-09-25 04:47:45
106.12.47.108	attackbots	(sshd) Failed SSH login from 106.12.47.108 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 31 04:13:26 server2 sshd[8065]: Invalid user admin from 106.12.47.108 Aug 31 04:13:26 server2 sshd[8065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.108 Aug 31 04:13:27 server2 sshd[8065]: Failed password for invalid user admin from 106.12.47.108 port 39114 ssh2 Aug 31 04:25:17 server2 sshd[19882]: Invalid user riana from 106.12.47.108 Aug 31 04:25:17 server2 sshd[19882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.108	2020-08-31 17:45:16
106.12.47.108	attack	Aug 15 05:41:01 xeon sshd[52433]: Failed password for root from 106.12.47.108 port 39240 ssh2	2020-08-15 18:49:10
106.12.47.108	attackspam	Jul 26 01:00:52 ns382633 sshd\[17062\]: Invalid user liwei from 106.12.47.108 port 60382 Jul 26 01:00:52 ns382633 sshd\[17062\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.108 Jul 26 01:00:54 ns382633 sshd\[17062\]: Failed password for invalid user liwei from 106.12.47.108 port 60382 ssh2 Jul 26 01:09:09 ns382633 sshd\[18465\]: Invalid user elena from 106.12.47.108 port 46024 Jul 26 01:09:09 ns382633 sshd\[18465\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.108	2020-07-26 07:27:56
106.12.47.27	attack	Jul 23 04:53:46 dignus sshd[10138]: Failed password for invalid user snow from 106.12.47.27 port 38500 ssh2 Jul 23 04:58:49 dignus sshd[10846]: Invalid user dcc from 106.12.47.27 port 41130 Jul 23 04:58:49 dignus sshd[10846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.27 Jul 23 04:58:51 dignus sshd[10846]: Failed password for invalid user dcc from 106.12.47.27 port 41130 ssh2 Jul 23 05:04:02 dignus sshd[11488]: Invalid user conti from 106.12.47.27 port 43780 ...	2020-07-23 20:23:24

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.47.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12700
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.47.169.			IN	A

;; AUTHORITY SECTION:
.			385	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122502 1800 900 604800 86400

;; Query time: 134 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 26 07:16:27 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 169.47.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 169.47.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
185.51.201.115	attackbotsspam	Aug 8 14:08:09 vpn01 sshd[24571]: Failed password for root from 185.51.201.115 port 60670 ssh2 ...	2020-08-08 21:12:17
69.171.251.25	attackbots	Facebook proxy IP hacked, IP: 69.171.251.25 Hostname: fwdproxy-ash-025.fbsv.net facebookexternalhit/1.1 (+http://www.facebook.com/externalhit_uatext.php)	2020-08-08 21:31:29
183.109.79.253	attackbotsspam	Aug 8 14:47:10 home sshd[526071]: Failed password for root from 183.109.79.253 port 61807 ssh2 Aug 8 14:49:39 home sshd[526793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.109.79.253 user=root Aug 8 14:49:41 home sshd[526793]: Failed password for root from 183.109.79.253 port 63227 ssh2 Aug 8 14:52:07 home sshd[527784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.109.79.253 user=root Aug 8 14:52:10 home sshd[527784]: Failed password for root from 183.109.79.253 port 62897 ssh2 ...	2020-08-08 21:37:55
134.175.55.10	attackspam	SSH brutforce	2020-08-08 21:06:01
177.44.208.107	attack	Aug 8 14:35:53 buvik sshd[31007]: Failed password for root from 177.44.208.107 port 37450 ssh2 Aug 8 14:40:26 buvik sshd[31775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.44.208.107 user=root Aug 8 14:40:28 buvik sshd[31775]: Failed password for root from 177.44.208.107 port 57456 ssh2 ...	2020-08-08 21:01:30
123.114.208.126	attackspambots	Aug 8 13:08:03 django-0 sshd[29469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.114.208.126 user=root Aug 8 13:08:06 django-0 sshd[29469]: Failed password for root from 123.114.208.126 port 42800 ssh2 ...	2020-08-08 21:25:42
87.251.74.182	attackspambots	Aug 8 16:18:53 venus kernel: [83837.969323] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:66:8f:ed:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.182 DST=78.47.70.226 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=20555 PROTO=TCP SPT=48205 DPT=4861 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-08 21:26:13
93.190.58.4	attack	Dovecot Invalid User Login Attempt.	2020-08-08 21:22:39
218.4.164.86	attack	Aug 8 14:33:43 mout sshd[32215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.4.164.86 user=root Aug 8 14:33:45 mout sshd[32215]: Failed password for root from 218.4.164.86 port 30109 ssh2	2020-08-08 21:04:39
205.185.113.80	attackbots	Port scan on 1 port(s): 8088	2020-08-08 21:35:45
104.208.34.1	attackspam	Multiple SSH authentication failures from 104.208.34.1	2020-08-08 21:16:35
187.18.89.103	attack	Aug 8 13:57:54 ns382633 sshd\[29688\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.18.89.103 user=root Aug 8 13:57:56 ns382633 sshd\[29688\]: Failed password for root from 187.18.89.103 port 42350 ssh2 Aug 8 14:12:13 ns382633 sshd\[32458\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.18.89.103 user=root Aug 8 14:12:15 ns382633 sshd\[32458\]: Failed password for root from 187.18.89.103 port 42312 ssh2 Aug 8 14:16:57 ns382633 sshd\[796\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.18.89.103 user=root	2020-08-08 21:23:38
180.76.120.49	attackbots	"Unauthorized connection attempt on SSHD detected"	2020-08-08 21:20:59
220.168.206.6	attackbotsspam	Attempted Brute Force (dovecot)	2020-08-08 20:58:02
218.75.210.46	attackbotsspam	Aug 8 14:05:23 server sshd[27820]: Failed password for root from 218.75.210.46 port 8932 ssh2 Aug 8 14:13:42 server sshd[30426]: Failed password for root from 218.75.210.46 port 21288 ssh2 Aug 8 14:17:17 server sshd[31650]: Failed password for root from 218.75.210.46 port 58297 ssh2	2020-08-08 21:11:32

最近上报的IP列表

2.217.171.115	52.42.102.65	60.255.227.43	129.213.96.204
165.3.69.52	68.187.151.126	112.78.177.17	37.191.130.136
167.234.197.18	71.236.70.28	118.43.80.166	188.186.103.81
45.64.126.47	187.107.44.76	14.136.211.137	91.10.72.198
104.211.140.250	84.197.200.106	220.201.189.96	59.92.226.35