106.12.49.118 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jun 8 13:53:54 roki-contabo sshd\[7336\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root Jun 8 13:53:56 roki-contabo sshd\[7336\]: Failed password for root from 106.12.49.118 port 45396 ssh2 Jun 8 13:58:38 roki-contabo sshd\[7451\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root Jun 8 13:58:40 roki-contabo sshd\[7451\]: Failed password for root from 106.12.49.118 port 32852 ssh2 Jun 8 14:01:31 roki-contabo sshd\[7530\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root ...	2020-06-09 04:19:30
attackspambots	2020-06-04T15:58:23.5808851495-001 sshd[4202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2020-06-04T15:58:25.2741011495-001 sshd[4202]: Failed password for root from 106.12.49.118 port 33728 ssh2 2020-06-04T16:01:20.6117241495-001 sshd[4394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2020-06-04T16:01:22.6057411495-001 sshd[4394]: Failed password for root from 106.12.49.118 port 46298 ssh2 2020-06-04T16:04:12.5568491495-001 sshd[4507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2020-06-04T16:04:14.4958551495-001 sshd[4507]: Failed password for root from 106.12.49.118 port 58860 ssh2 ...	2020-06-05 05:53:41
attack	2020-05-31T06:15:49.2340911240 sshd\[27657\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2020-05-31T06:15:51.1874811240 sshd\[27657\]: Failed password for root from 106.12.49.118 port 39406 ssh2 2020-05-31T06:23:00.9397651240 sshd\[28021\]: Invalid user samantha from 106.12.49.118 port 53566 2020-05-31T06:23:00.9443561240 sshd\[28021\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 ...	2020-05-31 17:20:52
attackspam	$f2bV_matches	2020-05-25 07:58:27
attackbotsspam	SSH Brute Force	2020-04-29 13:08:42
attackspam	Invalid user play from 106.12.49.118 port 51248	2020-04-29 06:35:37
attack	Apr 19 10:00:52 ns382633 sshd\[9853\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root Apr 19 10:00:54 ns382633 sshd\[9853\]: Failed password for root from 106.12.49.118 port 40078 ssh2 Apr 19 10:09:14 ns382633 sshd\[11606\]: Invalid user gq from 106.12.49.118 port 39532 Apr 19 10:09:14 ns382633 sshd\[11606\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 Apr 19 10:09:16 ns382633 sshd\[11606\]: Failed password for invalid user gq from 106.12.49.118 port 39532 ssh2	2020-04-19 18:02:49
attackbots	Apr 3 22:43:27 webhost01 sshd[15642]: Failed password for root from 106.12.49.118 port 36008 ssh2 ...	2020-04-03 23:57:10
attack	Mar 6 15:21:42 vps58358 sshd\[7193\]: Invalid user msagent123 from 106.12.49.118Mar 6 15:21:45 vps58358 sshd\[7193\]: Failed password for invalid user msagent123 from 106.12.49.118 port 37914 ssh2Mar 6 15:25:14 vps58358 sshd\[7231\]: Invalid user asd@123 from 106.12.49.118Mar 6 15:25:16 vps58358 sshd\[7231\]: Failed password for invalid user asd@123 from 106.12.49.118 port 50166 ssh2Mar 6 15:29:11 vps58358 sshd\[7265\]: Invalid user Passw0rt321 from 106.12.49.118Mar 6 15:29:14 vps58358 sshd\[7265\]: Failed password for invalid user Passw0rt321 from 106.12.49.118 port 34178 ssh2 ...	2020-03-06 23:40:44
attack	$f2bV_matches	2020-03-06 09:53:04
attack	Invalid user bqo from 106.12.49.118 port 57500	2020-02-15 16:22:12
attackbots	Automatic report - Banned IP Access	2020-02-01 22:14:01
attackspambots	Jan 25 14:09:28 MainVPS sshd[31091]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root Jan 25 14:09:30 MainVPS sshd[31091]: Failed password for root from 106.12.49.118 port 49642 ssh2 Jan 25 14:15:14 MainVPS sshd[10072]: Invalid user username from 106.12.49.118 port 45530 Jan 25 14:15:14 MainVPS sshd[10072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 Jan 25 14:15:14 MainVPS sshd[10072]: Invalid user username from 106.12.49.118 port 45530 Jan 25 14:15:16 MainVPS sshd[10072]: Failed password for invalid user username from 106.12.49.118 port 45530 ssh2 ...	2020-01-25 22:22:25
attack	Invalid user meneses from 106.12.49.118 port 49916	2020-01-22 00:52:45
attackbotsspam	Invalid user meneses from 106.12.49.118 port 49916	2020-01-19 21:38:41
attackbotsspam	Invalid user asterisk from 106.12.49.118 port 59476	2020-01-03 16:24:29
attack	Automatic report - Banned IP Access	2020-01-01 07:26:29
attackbotsspam	2019-12-19T14:30:48.138991shield sshd\[27486\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2019-12-19T14:30:50.057713shield sshd\[27486\]: Failed password for root from 106.12.49.118 port 57662 ssh2 2019-12-19T14:39:38.509039shield sshd\[31314\]: Invalid user heidrich from 106.12.49.118 port 51156 2019-12-19T14:39:38.513186shield sshd\[31314\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 2019-12-19T14:39:40.858319shield sshd\[31314\]: Failed password for invalid user heidrich from 106.12.49.118 port 51156 ssh2	2019-12-19 22:49:47
attackspambots	$f2bV_matches	2019-12-14 05:22:55
attackspambots	Nov 27 23:51:50 vps666546 sshd\[22025\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root Nov 27 23:51:52 vps666546 sshd\[22025\]: Failed password for root from 106.12.49.118 port 50120 ssh2 Nov 27 23:58:57 vps666546 sshd\[22298\]: Invalid user lehner from 106.12.49.118 port 54716 Nov 27 23:58:57 vps666546 sshd\[22298\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 Nov 27 23:59:00 vps666546 sshd\[22298\]: Failed password for invalid user lehner from 106.12.49.118 port 54716 ssh2 ...	2019-11-28 07:43:51
attackbots	Nov 21 00:37:47 MK-Soft-VM7 sshd[27566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 Nov 21 00:37:49 MK-Soft-VM7 sshd[27566]: Failed password for invalid user caria from 106.12.49.118 port 32964 ssh2 ...	2019-11-21 07:39:59
attackbotsspam	Nov 17 14:48:09 work-partkepr sshd\[2288\]: Invalid user pcap from 106.12.49.118 port 57998 Nov 17 14:48:09 work-partkepr sshd\[2288\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 ...	2019-11-18 00:11:38
attackbotsspam	79 failed attempt(s) in the last 24h	2019-11-15 08:25:51
attackspam	2019-11-12T06:33:52.249230hub.schaetter.us sshd\[7863\]: Invalid user gregf from 106.12.49.118 port 48392 2019-11-12T06:33:52.257345hub.schaetter.us sshd\[7863\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 2019-11-12T06:33:54.069521hub.schaetter.us sshd\[7863\]: Failed password for invalid user gregf from 106.12.49.118 port 48392 ssh2 2019-11-12T06:40:09.180063hub.schaetter.us sshd\[7916\]: Invalid user admin from 106.12.49.118 port 56736 2019-11-12T06:40:09.202555hub.schaetter.us sshd\[7916\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 ...	2019-11-12 15:13:42
attackbotsspam	2019-11-05T06:02:49.604326abusebot-3.cloudsearch.cf sshd\[26808\]: Invalid user ubuntu from 106.12.49.118 port 36442	2019-11-05 14:12:46
attackbots	Automatic report - Banned IP Access	2019-10-25 23:57:53
attackspam	2019-10-23T20:12:46.809358shield sshd\[17163\]: Invalid user risparmi from 106.12.49.118 port 56018 2019-10-23T20:12:46.816546shield sshd\[17163\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 2019-10-23T20:12:48.568166shield sshd\[17163\]: Failed password for invalid user risparmi from 106.12.49.118 port 56018 ssh2 2019-10-23T20:17:13.807178shield sshd\[17683\]: Invalid user fffff from 106.12.49.118 port 36380 2019-10-23T20:17:13.812904shield sshd\[17683\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118	2019-10-24 04:46:57
attack	Lines containing failures of 106.12.49.118 Oct 16 14:17:52 mx-in-02 sshd[21124]: Invalid user mysql from 106.12.49.118 port 43024 Oct 16 14:17:52 mx-in-02 sshd[21124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 Oct 16 14:17:53 mx-in-02 sshd[21124]: Failed password for invalid user mysql from 106.12.49.118 port 43024 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.12.49.118	2019-10-17 23:32:40

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.49.224	attackbots	2020-03-16T16:28:07.236692 sshd[15010]: Invalid user fangce from 106.12.49.224 port 56282 2020-03-16T16:28:07.250964 sshd[15010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.224 2020-03-16T16:28:07.236692 sshd[15010]: Invalid user fangce from 106.12.49.224 port 56282 2020-03-16T16:28:08.889982 sshd[15010]: Failed password for invalid user fangce from 106.12.49.224 port 56282 ssh2 ...	2020-03-17 01:13:02
106.12.49.150	attack	5x Failed Password	2020-03-13 18:10:43
106.12.49.207	attackbotsspam	web-1 [ssh] SSH Attack	2020-03-12 15:07:57
106.12.49.158	attackbotsspam	Mar 10 13:33:24 lock-38 sshd[8936]: Failed password for invalid user oikawa from 106.12.49.158 port 35960 ssh2 Mar 10 13:58:08 lock-38 sshd[9118]: Failed password for invalid user developer from 106.12.49.158 port 55644 ssh2 ...	2020-03-12 01:58:04
106.12.49.150	attackspambots	invalid login attempt (mail)	2020-03-11 11:22:58
106.12.49.207	attack	Invalid user asterisk from 106.12.49.207 port 52274	2020-03-11 07:13:06
106.12.49.158	attackbots	Mar 9 23:21:01 mout sshd[12351]: Invalid user charles from 106.12.49.158 port 48346	2020-03-10 07:44:06
106.12.49.158	attackbots	$f2bV_matches	2020-03-10 03:11:12
106.12.49.158	attackbotsspam	$f2bV_matches	2020-03-07 17:54:09
106.12.49.150	attackspam	Mar 5 10:02:18 pornomens sshd\[19597\]: Invalid user daniel from 106.12.49.150 port 34450 Mar 5 10:02:18 pornomens sshd\[19597\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.150 Mar 5 10:02:20 pornomens sshd\[19597\]: Failed password for invalid user daniel from 106.12.49.150 port 34450 ssh2 ...	2020-03-05 17:21:48
106.12.49.150	attackspam	"SSH brute force auth login attempt."	2020-02-26 10:54:57
106.12.49.150	attack	2020-02-19T15:36:48.8545651495-001 sshd[49158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.150 2020-02-19T15:36:48.8468311495-001 sshd[49158]: Invalid user nagios from 106.12.49.150 port 48948 2020-02-19T15:36:50.1745311495-001 sshd[49158]: Failed password for invalid user nagios from 106.12.49.150 port 48948 ssh2 2020-02-19T16:39:02.0137291495-001 sshd[52566]: Invalid user jigang from 106.12.49.150 port 43088 2020-02-19T16:39:02.0219441495-001 sshd[52566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.150 2020-02-19T16:39:02.0137291495-001 sshd[52566]: Invalid user jigang from 106.12.49.150 port 43088 2020-02-19T16:39:03.9539761495-001 sshd[52566]: Failed password for invalid user jigang from 106.12.49.150 port 43088 ssh2 2020-02-19T16:42:00.9964151495-001 sshd[52698]: Invalid user speech-dispatcher from 106.12.49.150 port 35740 2020-02-19T16:42:01.0056901495-001 sshd[52698]: pam ...	2020-02-20 06:09:04
106.12.49.150	attack	Feb 18 16:32:21 [host] sshd[28472]: Invalid user l Feb 18 16:32:21 [host] sshd[28472]: pam_unix(sshd: Feb 18 16:32:23 [host] sshd[28472]: Failed passwor	2020-02-19 01:50:50
106.12.49.150	attack	21 attempts against mh-ssh on cloud	2020-02-17 19:57:11
106.12.49.150	attackbotsspam	Feb 9 04:58:44 hpm sshd\[24521\]: Invalid user hol from 106.12.49.150 Feb 9 04:58:44 hpm sshd\[24521\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.150 Feb 9 04:58:46 hpm sshd\[24521\]: Failed password for invalid user hol from 106.12.49.150 port 54468 ssh2 Feb 9 05:03:03 hpm sshd\[25013\]: Invalid user had from 106.12.49.150 Feb 9 05:03:03 hpm sshd\[25013\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.150	2020-02-10 01:56:23

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.49.118
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12562
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.49.118.			IN	A

;; AUTHORITY SECTION:
.			470	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101700 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 17 23:32:32 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 118.49.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 118.49.12.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
50.253.211.61	attackbots	proto=tcp . spt=42639 . dpt=25 . (Found on Dark List de Oct 09) (701)	2019-10-10 02:47:48
113.116.28.236	attack	Unauthorized connection attempt from IP address 113.116.28.236 on Port 445(SMB)	2019-10-10 02:44:30
46.225.240.122	attackspambots	proto=tcp . spt=40957 . dpt=25 . (Found on Blocklist de Oct 08) (702)	2019-10-10 02:45:42
178.24.245.233	attackbotsspam	Unauthorized connection attempt from IP address 178.24.245.233 on Port 445(SMB)	2019-10-10 02:23:28
125.227.255.79	attack	$f2bV_matches	2019-10-10 02:27:09
220.134.182.68	attack	Unauthorized connection attempt from IP address 220.134.182.68 on Port 445(SMB)	2019-10-10 02:54:56
115.43.63.12	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/115.43.63.12/ TW - 1H : (361) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN9416 IP : 115.43.63.12 CIDR : 115.43.0.0/16 PREFIX COUNT : 43 UNIQUE IP COUNT : 726016 WYKRYTE ATAKI Z ASN9416 : 1H - 1 3H - 1 6H - 1 12H - 3 24H - 3 DateTime : 2019-10-09 13:30:41 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-10 02:30:47
80.82.64.125	attackspam	Oct 9 20:35:21 eventyay sshd[5022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.82.64.125 Oct 9 20:35:23 eventyay sshd[5022]: Failed password for invalid user ubnt from 80.82.64.125 port 1486 ssh2 Oct 9 20:35:31 eventyay sshd[5024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.82.64.125 ...	2019-10-10 02:36:21
182.232.46.189	attackspambots	Time: Wed Oct 9 08:22:49 2019 -0300 IP: 182.232.46.189 (TH/Thailand/-) Failures: 5 (smtpauth) Interval: 3600 seconds Blocked: Permanent Block	2019-10-10 02:59:08
188.19.116.226	attackbots	Unauthorized connection attempt from IP address 188.19.116.226 on Port 445(SMB)	2019-10-10 03:01:30
118.25.100.77	attackbotsspam	php WP PHPmyadamin ABUSE blocked for 12h	2019-10-10 02:52:25
193.32.163.123	attackbots	Oct 9 17:09:18 thevastnessof sshd[27408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.32.163.123 ...	2019-10-10 02:44:58
158.140.165.8	attackbots	Unauthorized connection attempt from IP address 158.140.165.8 on Port 445(SMB)	2019-10-10 02:40:46
185.234.216.146	attack	Oct 9 17:31:57 vserver sshd\[1314\]: Invalid user admin from 185.234.216.146Oct 9 17:31:59 vserver sshd\[1314\]: Failed password for invalid user admin from 185.234.216.146 port 5309 ssh2Oct 9 17:32:01 vserver sshd\[1316\]: Invalid user administrator from 185.234.216.146Oct 9 17:32:03 vserver sshd\[1316\]: Failed password for invalid user administrator from 185.234.216.146 port 7230 ssh2 ...	2019-10-10 02:56:37
59.120.243.8	attackspambots	$f2bV_matches	2019-10-10 02:52:10

最近上报的IP列表

211.174.232.177	77.127.74.82	187.162.120.161	195.111.120.125
57.26.238.60	5.15.21.12	184.202.174.123	187.162.121.144
114.222.215.152	114.39.118.65	187.162.33.200	239.166.71.196
122.116.198.65	201.59.191.106	187.162.38.250	183.16.236.197
221.3.101.235	62.80.182.42	22.100.153.207	178.122.248.27