106.12.49.118 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jun 8 13:53:54 roki-contabo sshd\[7336\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root Jun 8 13:53:56 roki-contabo sshd\[7336\]: Failed password for root from 106.12.49.118 port 45396 ssh2 Jun 8 13:58:38 roki-contabo sshd\[7451\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root Jun 8 13:58:40 roki-contabo sshd\[7451\]: Failed password for root from 106.12.49.118 port 32852 ssh2 Jun 8 14:01:31 roki-contabo sshd\[7530\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root ...	2020-06-09 04:19:30
attackspambots	2020-06-04T15:58:23.5808851495-001 sshd[4202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2020-06-04T15:58:25.2741011495-001 sshd[4202]: Failed password for root from 106.12.49.118 port 33728 ssh2 2020-06-04T16:01:20.6117241495-001 sshd[4394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2020-06-04T16:01:22.6057411495-001 sshd[4394]: Failed password for root from 106.12.49.118 port 46298 ssh2 2020-06-04T16:04:12.5568491495-001 sshd[4507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2020-06-04T16:04:14.4958551495-001 sshd[4507]: Failed password for root from 106.12.49.118 port 58860 ssh2 ...	2020-06-05 05:53:41
attack	2020-05-31T06:15:49.2340911240 sshd\[27657\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2020-05-31T06:15:51.1874811240 sshd\[27657\]: Failed password for root from 106.12.49.118 port 39406 ssh2 2020-05-31T06:23:00.9397651240 sshd\[28021\]: Invalid user samantha from 106.12.49.118 port 53566 2020-05-31T06:23:00.9443561240 sshd\[28021\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 ...	2020-05-31 17:20:52
attackspam	$f2bV_matches	2020-05-25 07:58:27
attackbotsspam	SSH Brute Force	2020-04-29 13:08:42
attackspam	Invalid user play from 106.12.49.118 port 51248	2020-04-29 06:35:37
attack	Apr 19 10:00:52 ns382633 sshd\[9853\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root Apr 19 10:00:54 ns382633 sshd\[9853\]: Failed password for root from 106.12.49.118 port 40078 ssh2 Apr 19 10:09:14 ns382633 sshd\[11606\]: Invalid user gq from 106.12.49.118 port 39532 Apr 19 10:09:14 ns382633 sshd\[11606\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 Apr 19 10:09:16 ns382633 sshd\[11606\]: Failed password for invalid user gq from 106.12.49.118 port 39532 ssh2	2020-04-19 18:02:49
attackbots	Apr 3 22:43:27 webhost01 sshd[15642]: Failed password for root from 106.12.49.118 port 36008 ssh2 ...	2020-04-03 23:57:10
attack	Mar 6 15:21:42 vps58358 sshd\[7193\]: Invalid user msagent123 from 106.12.49.118Mar 6 15:21:45 vps58358 sshd\[7193\]: Failed password for invalid user msagent123 from 106.12.49.118 port 37914 ssh2Mar 6 15:25:14 vps58358 sshd\[7231\]: Invalid user asd@123 from 106.12.49.118Mar 6 15:25:16 vps58358 sshd\[7231\]: Failed password for invalid user asd@123 from 106.12.49.118 port 50166 ssh2Mar 6 15:29:11 vps58358 sshd\[7265\]: Invalid user Passw0rt321 from 106.12.49.118Mar 6 15:29:14 vps58358 sshd\[7265\]: Failed password for invalid user Passw0rt321 from 106.12.49.118 port 34178 ssh2 ...	2020-03-06 23:40:44
attack	$f2bV_matches	2020-03-06 09:53:04
attack	Invalid user bqo from 106.12.49.118 port 57500	2020-02-15 16:22:12
attackbots	Automatic report - Banned IP Access	2020-02-01 22:14:01
attackspambots	Jan 25 14:09:28 MainVPS sshd[31091]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root Jan 25 14:09:30 MainVPS sshd[31091]: Failed password for root from 106.12.49.118 port 49642 ssh2 Jan 25 14:15:14 MainVPS sshd[10072]: Invalid user username from 106.12.49.118 port 45530 Jan 25 14:15:14 MainVPS sshd[10072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 Jan 25 14:15:14 MainVPS sshd[10072]: Invalid user username from 106.12.49.118 port 45530 Jan 25 14:15:16 MainVPS sshd[10072]: Failed password for invalid user username from 106.12.49.118 port 45530 ssh2 ...	2020-01-25 22:22:25
attack	Invalid user meneses from 106.12.49.118 port 49916	2020-01-22 00:52:45
attackbotsspam	Invalid user meneses from 106.12.49.118 port 49916	2020-01-19 21:38:41
attackbotsspam	Invalid user asterisk from 106.12.49.118 port 59476	2020-01-03 16:24:29
attack	Automatic report - Banned IP Access	2020-01-01 07:26:29
attackbotsspam	2019-12-19T14:30:48.138991shield sshd\[27486\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2019-12-19T14:30:50.057713shield sshd\[27486\]: Failed password for root from 106.12.49.118 port 57662 ssh2 2019-12-19T14:39:38.509039shield sshd\[31314\]: Invalid user heidrich from 106.12.49.118 port 51156 2019-12-19T14:39:38.513186shield sshd\[31314\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 2019-12-19T14:39:40.858319shield sshd\[31314\]: Failed password for invalid user heidrich from 106.12.49.118 port 51156 ssh2	2019-12-19 22:49:47
attackspambots	$f2bV_matches	2019-12-14 05:22:55
attackspambots	Nov 27 23:51:50 vps666546 sshd\[22025\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root Nov 27 23:51:52 vps666546 sshd\[22025\]: Failed password for root from 106.12.49.118 port 50120 ssh2 Nov 27 23:58:57 vps666546 sshd\[22298\]: Invalid user lehner from 106.12.49.118 port 54716 Nov 27 23:58:57 vps666546 sshd\[22298\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 Nov 27 23:59:00 vps666546 sshd\[22298\]: Failed password for invalid user lehner from 106.12.49.118 port 54716 ssh2 ...	2019-11-28 07:43:51
attackbots	Nov 21 00:37:47 MK-Soft-VM7 sshd[27566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 Nov 21 00:37:49 MK-Soft-VM7 sshd[27566]: Failed password for invalid user caria from 106.12.49.118 port 32964 ssh2 ...	2019-11-21 07:39:59
attackbotsspam	Nov 17 14:48:09 work-partkepr sshd\[2288\]: Invalid user pcap from 106.12.49.118 port 57998 Nov 17 14:48:09 work-partkepr sshd\[2288\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 ...	2019-11-18 00:11:38
attackbotsspam	79 failed attempt(s) in the last 24h	2019-11-15 08:25:51
attackspam	2019-11-12T06:33:52.249230hub.schaetter.us sshd\[7863\]: Invalid user gregf from 106.12.49.118 port 48392 2019-11-12T06:33:52.257345hub.schaetter.us sshd\[7863\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 2019-11-12T06:33:54.069521hub.schaetter.us sshd\[7863\]: Failed password for invalid user gregf from 106.12.49.118 port 48392 ssh2 2019-11-12T06:40:09.180063hub.schaetter.us sshd\[7916\]: Invalid user admin from 106.12.49.118 port 56736 2019-11-12T06:40:09.202555hub.schaetter.us sshd\[7916\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 ...	2019-11-12 15:13:42
attackbotsspam	2019-11-05T06:02:49.604326abusebot-3.cloudsearch.cf sshd\[26808\]: Invalid user ubuntu from 106.12.49.118 port 36442	2019-11-05 14:12:46
attackbots	Automatic report - Banned IP Access	2019-10-25 23:57:53
attackspam	2019-10-23T20:12:46.809358shield sshd\[17163\]: Invalid user risparmi from 106.12.49.118 port 56018 2019-10-23T20:12:46.816546shield sshd\[17163\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 2019-10-23T20:12:48.568166shield sshd\[17163\]: Failed password for invalid user risparmi from 106.12.49.118 port 56018 ssh2 2019-10-23T20:17:13.807178shield sshd\[17683\]: Invalid user fffff from 106.12.49.118 port 36380 2019-10-23T20:17:13.812904shield sshd\[17683\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118	2019-10-24 04:46:57
attack	Lines containing failures of 106.12.49.118 Oct 16 14:17:52 mx-in-02 sshd[21124]: Invalid user mysql from 106.12.49.118 port 43024 Oct 16 14:17:52 mx-in-02 sshd[21124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 Oct 16 14:17:53 mx-in-02 sshd[21124]: Failed password for invalid user mysql from 106.12.49.118 port 43024 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.12.49.118	2019-10-17 23:32:40

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.49.224	attackbots	2020-03-16T16:28:07.236692 sshd[15010]: Invalid user fangce from 106.12.49.224 port 56282 2020-03-16T16:28:07.250964 sshd[15010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.224 2020-03-16T16:28:07.236692 sshd[15010]: Invalid user fangce from 106.12.49.224 port 56282 2020-03-16T16:28:08.889982 sshd[15010]: Failed password for invalid user fangce from 106.12.49.224 port 56282 ssh2 ...	2020-03-17 01:13:02
106.12.49.150	attack	5x Failed Password	2020-03-13 18:10:43
106.12.49.207	attackbotsspam	web-1 [ssh] SSH Attack	2020-03-12 15:07:57
106.12.49.158	attackbotsspam	Mar 10 13:33:24 lock-38 sshd[8936]: Failed password for invalid user oikawa from 106.12.49.158 port 35960 ssh2 Mar 10 13:58:08 lock-38 sshd[9118]: Failed password for invalid user developer from 106.12.49.158 port 55644 ssh2 ...	2020-03-12 01:58:04
106.12.49.150	attackspambots	invalid login attempt (mail)	2020-03-11 11:22:58
106.12.49.207	attack	Invalid user asterisk from 106.12.49.207 port 52274	2020-03-11 07:13:06
106.12.49.158	attackbots	Mar 9 23:21:01 mout sshd[12351]: Invalid user charles from 106.12.49.158 port 48346	2020-03-10 07:44:06
106.12.49.158	attackbots	$f2bV_matches	2020-03-10 03:11:12
106.12.49.158	attackbotsspam	$f2bV_matches	2020-03-07 17:54:09
106.12.49.150	attackspam	Mar 5 10:02:18 pornomens sshd\[19597\]: Invalid user daniel from 106.12.49.150 port 34450 Mar 5 10:02:18 pornomens sshd\[19597\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.150 Mar 5 10:02:20 pornomens sshd\[19597\]: Failed password for invalid user daniel from 106.12.49.150 port 34450 ssh2 ...	2020-03-05 17:21:48
106.12.49.150	attackspam	"SSH brute force auth login attempt."	2020-02-26 10:54:57
106.12.49.150	attack	2020-02-19T15:36:48.8545651495-001 sshd[49158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.150 2020-02-19T15:36:48.8468311495-001 sshd[49158]: Invalid user nagios from 106.12.49.150 port 48948 2020-02-19T15:36:50.1745311495-001 sshd[49158]: Failed password for invalid user nagios from 106.12.49.150 port 48948 ssh2 2020-02-19T16:39:02.0137291495-001 sshd[52566]: Invalid user jigang from 106.12.49.150 port 43088 2020-02-19T16:39:02.0219441495-001 sshd[52566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.150 2020-02-19T16:39:02.0137291495-001 sshd[52566]: Invalid user jigang from 106.12.49.150 port 43088 2020-02-19T16:39:03.9539761495-001 sshd[52566]: Failed password for invalid user jigang from 106.12.49.150 port 43088 ssh2 2020-02-19T16:42:00.9964151495-001 sshd[52698]: Invalid user speech-dispatcher from 106.12.49.150 port 35740 2020-02-19T16:42:01.0056901495-001 sshd[52698]: pam ...	2020-02-20 06:09:04
106.12.49.150	attack	Feb 18 16:32:21 [host] sshd[28472]: Invalid user l Feb 18 16:32:21 [host] sshd[28472]: pam_unix(sshd: Feb 18 16:32:23 [host] sshd[28472]: Failed passwor	2020-02-19 01:50:50
106.12.49.150	attack	21 attempts against mh-ssh on cloud	2020-02-17 19:57:11
106.12.49.150	attackbotsspam	Feb 9 04:58:44 hpm sshd\[24521\]: Invalid user hol from 106.12.49.150 Feb 9 04:58:44 hpm sshd\[24521\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.150 Feb 9 04:58:46 hpm sshd\[24521\]: Failed password for invalid user hol from 106.12.49.150 port 54468 ssh2 Feb 9 05:03:03 hpm sshd\[25013\]: Invalid user had from 106.12.49.150 Feb 9 05:03:03 hpm sshd\[25013\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.150	2020-02-10 01:56:23

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.49.118
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12562
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.49.118.			IN	A

;; AUTHORITY SECTION:
.			470	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101700 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 17 23:32:32 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 118.49.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 118.49.12.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
220.167.100.60	attackspam	Jun 30 01:46:23 debian sshd\[23049\]: Invalid user www from 220.167.100.60 port 37924 Jun 30 01:46:23 debian sshd\[23049\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.167.100.60 Jun 30 01:46:25 debian sshd\[23049\]: Failed password for invalid user www from 220.167.100.60 port 37924 ssh2 ...	2019-06-30 17:04:49
185.21.41.49	attack	xmlrpc attack	2019-06-30 17:39:56
178.63.50.72	attackspam	Wordpress Admin Login attack	2019-06-30 17:20:01
117.1.94.216	attack	Honeypot attack, port: 23, PTR: localhost.	2019-06-30 17:44:01
115.186.156.164	attack	Jun 30 08:08:19 mail sshd[20531]: Invalid user rding from 115.186.156.164 Jun 30 08:08:19 mail sshd[20531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.186.156.164 Jun 30 08:08:19 mail sshd[20531]: Invalid user rding from 115.186.156.164 Jun 30 08:08:21 mail sshd[20531]: Failed password for invalid user rding from 115.186.156.164 port 41686 ssh2 Jun 30 08:12:28 mail sshd[26926]: Invalid user eric from 115.186.156.164 ...	2019-06-30 17:47:33
46.229.168.141	attackbotsspam	46.229.168.141 - - \[30/Jun/2019:05:30:44 +0200\] "GET /Probleme-eggdrop-package-http-resolu-t-356.html HTTP/1.1" 200 11227 "-" "Mozilla/5.0 \(compatible\; SemrushBot/3\~bl\; +http://www.semrush.com/bot.html\)" 46.229.168.141 - - \[30/Jun/2019:05:35:48 +0200\] "GET /index.php\?printable=yes\&returnto=Sp%C3%A9cial%3ASuivi%2Bdes%2Bliens\&returntoquery=days%3D7%26from%3D%26hideminor%3D1%26limit%3D500%26target%3DMod%25C3%25A8le%253APrev_Next\&title=Sp%C3%A9cial%3AConnexion HTTP/1.1" 200 4082 "-" "Mozilla/5.0 \(compatible\; SemrushBot/3\~bl\; +http://www.semrush.com/bot.html\)"	2019-06-30 17:31:51
193.169.252.143	attackbotsspam	Jun 30 09:19:48 mail postfix/smtpd\[4462\]: warning: unknown\[193.169.252.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 30 09:51:13 mail postfix/smtpd\[5384\]: warning: unknown\[193.169.252.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 30 10:06:58 mail postfix/smtpd\[5922\]: warning: unknown\[193.169.252.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 30 10:22:32 mail postfix/smtpd\[6197\]: warning: unknown\[193.169.252.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-06-30 17:29:05
165.227.10.163	attackspambots	$f2bV_matches	2019-06-30 17:26:41
122.171.92.170	attackspambots	Jun 30 04:06:51 db sshd\[30754\]: Invalid user teamspeak from 122.171.92.170 Jun 30 04:06:51 db sshd\[30754\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.171.92.170 Jun 30 04:06:53 db sshd\[30754\]: Failed password for invalid user teamspeak from 122.171.92.170 port 44990 ssh2 Jun 30 04:09:22 db sshd\[30798\]: Invalid user stacy from 122.171.92.170 Jun 30 04:09:22 db sshd\[30798\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.171.92.170 ...	2019-06-30 16:58:53
152.168.224.232	attackbotsspam	Attempted SSH login	2019-06-30 17:27:55
223.16.216.92	attackbots	Jun 30 10:54:48 mail sshd[24814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.16.216.92 user=root Jun 30 10:54:50 mail sshd[24814]: Failed password for root from 223.16.216.92 port 55832 ssh2 Jun 30 11:09:39 mail sshd[26788]: Invalid user contracts from 223.16.216.92 Jun 30 11:09:39 mail sshd[26788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.16.216.92 Jun 30 11:09:39 mail sshd[26788]: Invalid user contracts from 223.16.216.92 Jun 30 11:09:41 mail sshd[26788]: Failed password for invalid user contracts from 223.16.216.92 port 34114 ssh2 ...	2019-06-30 17:29:36
222.243.211.200	attackbots	Jun 29 22:38:39 mailman dovecot: imap-login: Disconnected (auth failed, 1 attempts): user=, method=PLAIN, rip=222.243.211.200, lip=[munged], TLS	2019-06-30 17:03:58
159.203.141.208	attackspambots	Invalid user su from 159.203.141.208 port 60722	2019-06-30 17:23:11
176.58.124.134	attack	port scan and connect, tcp 443 (https)	2019-06-30 17:11:44
177.92.240.206	attackspam	smtp auth brute force	2019-06-30 17:14:41

最近上报的IP列表

211.174.232.177	77.127.74.82	187.162.120.161	195.111.120.125
57.26.238.60	5.15.21.12	184.202.174.123	187.162.121.144
114.222.215.152	114.39.118.65	187.162.33.200	239.166.71.196
122.116.198.65	201.59.191.106	187.162.38.250	183.16.236.197
221.3.101.235	62.80.182.42	22.100.153.207	178.122.248.27