106.12.49.118 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jun 8 13:53:54 roki-contabo sshd\[7336\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root Jun 8 13:53:56 roki-contabo sshd\[7336\]: Failed password for root from 106.12.49.118 port 45396 ssh2 Jun 8 13:58:38 roki-contabo sshd\[7451\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root Jun 8 13:58:40 roki-contabo sshd\[7451\]: Failed password for root from 106.12.49.118 port 32852 ssh2 Jun 8 14:01:31 roki-contabo sshd\[7530\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root ...	2020-06-09 04:19:30
attackspambots	2020-06-04T15:58:23.5808851495-001 sshd[4202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2020-06-04T15:58:25.2741011495-001 sshd[4202]: Failed password for root from 106.12.49.118 port 33728 ssh2 2020-06-04T16:01:20.6117241495-001 sshd[4394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2020-06-04T16:01:22.6057411495-001 sshd[4394]: Failed password for root from 106.12.49.118 port 46298 ssh2 2020-06-04T16:04:12.5568491495-001 sshd[4507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2020-06-04T16:04:14.4958551495-001 sshd[4507]: Failed password for root from 106.12.49.118 port 58860 ssh2 ...	2020-06-05 05:53:41
attack	2020-05-31T06:15:49.2340911240 sshd\[27657\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2020-05-31T06:15:51.1874811240 sshd\[27657\]: Failed password for root from 106.12.49.118 port 39406 ssh2 2020-05-31T06:23:00.9397651240 sshd\[28021\]: Invalid user samantha from 106.12.49.118 port 53566 2020-05-31T06:23:00.9443561240 sshd\[28021\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 ...	2020-05-31 17:20:52
attackspam	$f2bV_matches	2020-05-25 07:58:27
attackbotsspam	SSH Brute Force	2020-04-29 13:08:42
attackspam	Invalid user play from 106.12.49.118 port 51248	2020-04-29 06:35:37
attack	Apr 19 10:00:52 ns382633 sshd\[9853\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root Apr 19 10:00:54 ns382633 sshd\[9853\]: Failed password for root from 106.12.49.118 port 40078 ssh2 Apr 19 10:09:14 ns382633 sshd\[11606\]: Invalid user gq from 106.12.49.118 port 39532 Apr 19 10:09:14 ns382633 sshd\[11606\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 Apr 19 10:09:16 ns382633 sshd\[11606\]: Failed password for invalid user gq from 106.12.49.118 port 39532 ssh2	2020-04-19 18:02:49
attackbots	Apr 3 22:43:27 webhost01 sshd[15642]: Failed password for root from 106.12.49.118 port 36008 ssh2 ...	2020-04-03 23:57:10
attack	Mar 6 15:21:42 vps58358 sshd\[7193\]: Invalid user msagent123 from 106.12.49.118Mar 6 15:21:45 vps58358 sshd\[7193\]: Failed password for invalid user msagent123 from 106.12.49.118 port 37914 ssh2Mar 6 15:25:14 vps58358 sshd\[7231\]: Invalid user asd@123 from 106.12.49.118Mar 6 15:25:16 vps58358 sshd\[7231\]: Failed password for invalid user asd@123 from 106.12.49.118 port 50166 ssh2Mar 6 15:29:11 vps58358 sshd\[7265\]: Invalid user Passw0rt321 from 106.12.49.118Mar 6 15:29:14 vps58358 sshd\[7265\]: Failed password for invalid user Passw0rt321 from 106.12.49.118 port 34178 ssh2 ...	2020-03-06 23:40:44
attack	$f2bV_matches	2020-03-06 09:53:04
attack	Invalid user bqo from 106.12.49.118 port 57500	2020-02-15 16:22:12
attackbots	Automatic report - Banned IP Access	2020-02-01 22:14:01
attackspambots	Jan 25 14:09:28 MainVPS sshd[31091]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root Jan 25 14:09:30 MainVPS sshd[31091]: Failed password for root from 106.12.49.118 port 49642 ssh2 Jan 25 14:15:14 MainVPS sshd[10072]: Invalid user username from 106.12.49.118 port 45530 Jan 25 14:15:14 MainVPS sshd[10072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 Jan 25 14:15:14 MainVPS sshd[10072]: Invalid user username from 106.12.49.118 port 45530 Jan 25 14:15:16 MainVPS sshd[10072]: Failed password for invalid user username from 106.12.49.118 port 45530 ssh2 ...	2020-01-25 22:22:25
attack	Invalid user meneses from 106.12.49.118 port 49916	2020-01-22 00:52:45
attackbotsspam	Invalid user meneses from 106.12.49.118 port 49916	2020-01-19 21:38:41
attackbotsspam	Invalid user asterisk from 106.12.49.118 port 59476	2020-01-03 16:24:29
attack	Automatic report - Banned IP Access	2020-01-01 07:26:29
attackbotsspam	2019-12-19T14:30:48.138991shield sshd\[27486\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2019-12-19T14:30:50.057713shield sshd\[27486\]: Failed password for root from 106.12.49.118 port 57662 ssh2 2019-12-19T14:39:38.509039shield sshd\[31314\]: Invalid user heidrich from 106.12.49.118 port 51156 2019-12-19T14:39:38.513186shield sshd\[31314\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 2019-12-19T14:39:40.858319shield sshd\[31314\]: Failed password for invalid user heidrich from 106.12.49.118 port 51156 ssh2	2019-12-19 22:49:47
attackspambots	$f2bV_matches	2019-12-14 05:22:55
attackspambots	Nov 27 23:51:50 vps666546 sshd\[22025\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root Nov 27 23:51:52 vps666546 sshd\[22025\]: Failed password for root from 106.12.49.118 port 50120 ssh2 Nov 27 23:58:57 vps666546 sshd\[22298\]: Invalid user lehner from 106.12.49.118 port 54716 Nov 27 23:58:57 vps666546 sshd\[22298\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 Nov 27 23:59:00 vps666546 sshd\[22298\]: Failed password for invalid user lehner from 106.12.49.118 port 54716 ssh2 ...	2019-11-28 07:43:51
attackbots	Nov 21 00:37:47 MK-Soft-VM7 sshd[27566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 Nov 21 00:37:49 MK-Soft-VM7 sshd[27566]: Failed password for invalid user caria from 106.12.49.118 port 32964 ssh2 ...	2019-11-21 07:39:59
attackbotsspam	Nov 17 14:48:09 work-partkepr sshd\[2288\]: Invalid user pcap from 106.12.49.118 port 57998 Nov 17 14:48:09 work-partkepr sshd\[2288\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 ...	2019-11-18 00:11:38
attackbotsspam	79 failed attempt(s) in the last 24h	2019-11-15 08:25:51
attackspam	2019-11-12T06:33:52.249230hub.schaetter.us sshd\[7863\]: Invalid user gregf from 106.12.49.118 port 48392 2019-11-12T06:33:52.257345hub.schaetter.us sshd\[7863\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 2019-11-12T06:33:54.069521hub.schaetter.us sshd\[7863\]: Failed password for invalid user gregf from 106.12.49.118 port 48392 ssh2 2019-11-12T06:40:09.180063hub.schaetter.us sshd\[7916\]: Invalid user admin from 106.12.49.118 port 56736 2019-11-12T06:40:09.202555hub.schaetter.us sshd\[7916\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 ...	2019-11-12 15:13:42
attackbotsspam	2019-11-05T06:02:49.604326abusebot-3.cloudsearch.cf sshd\[26808\]: Invalid user ubuntu from 106.12.49.118 port 36442	2019-11-05 14:12:46
attackbots	Automatic report - Banned IP Access	2019-10-25 23:57:53
attackspam	2019-10-23T20:12:46.809358shield sshd\[17163\]: Invalid user risparmi from 106.12.49.118 port 56018 2019-10-23T20:12:46.816546shield sshd\[17163\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 2019-10-23T20:12:48.568166shield sshd\[17163\]: Failed password for invalid user risparmi from 106.12.49.118 port 56018 ssh2 2019-10-23T20:17:13.807178shield sshd\[17683\]: Invalid user fffff from 106.12.49.118 port 36380 2019-10-23T20:17:13.812904shield sshd\[17683\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118	2019-10-24 04:46:57
attack	Lines containing failures of 106.12.49.118 Oct 16 14:17:52 mx-in-02 sshd[21124]: Invalid user mysql from 106.12.49.118 port 43024 Oct 16 14:17:52 mx-in-02 sshd[21124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 Oct 16 14:17:53 mx-in-02 sshd[21124]: Failed password for invalid user mysql from 106.12.49.118 port 43024 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.12.49.118	2019-10-17 23:32:40

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.49.224	attackbots	2020-03-16T16:28:07.236692 sshd[15010]: Invalid user fangce from 106.12.49.224 port 56282 2020-03-16T16:28:07.250964 sshd[15010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.224 2020-03-16T16:28:07.236692 sshd[15010]: Invalid user fangce from 106.12.49.224 port 56282 2020-03-16T16:28:08.889982 sshd[15010]: Failed password for invalid user fangce from 106.12.49.224 port 56282 ssh2 ...	2020-03-17 01:13:02
106.12.49.150	attack	5x Failed Password	2020-03-13 18:10:43
106.12.49.207	attackbotsspam	web-1 [ssh] SSH Attack	2020-03-12 15:07:57
106.12.49.158	attackbotsspam	Mar 10 13:33:24 lock-38 sshd[8936]: Failed password for invalid user oikawa from 106.12.49.158 port 35960 ssh2 Mar 10 13:58:08 lock-38 sshd[9118]: Failed password for invalid user developer from 106.12.49.158 port 55644 ssh2 ...	2020-03-12 01:58:04
106.12.49.150	attackspambots	invalid login attempt (mail)	2020-03-11 11:22:58
106.12.49.207	attack	Invalid user asterisk from 106.12.49.207 port 52274	2020-03-11 07:13:06
106.12.49.158	attackbots	Mar 9 23:21:01 mout sshd[12351]: Invalid user charles from 106.12.49.158 port 48346	2020-03-10 07:44:06
106.12.49.158	attackbots	$f2bV_matches	2020-03-10 03:11:12
106.12.49.158	attackbotsspam	$f2bV_matches	2020-03-07 17:54:09
106.12.49.150	attackspam	Mar 5 10:02:18 pornomens sshd\[19597\]: Invalid user daniel from 106.12.49.150 port 34450 Mar 5 10:02:18 pornomens sshd\[19597\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.150 Mar 5 10:02:20 pornomens sshd\[19597\]: Failed password for invalid user daniel from 106.12.49.150 port 34450 ssh2 ...	2020-03-05 17:21:48
106.12.49.150	attackspam	"SSH brute force auth login attempt."	2020-02-26 10:54:57
106.12.49.150	attack	2020-02-19T15:36:48.8545651495-001 sshd[49158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.150 2020-02-19T15:36:48.8468311495-001 sshd[49158]: Invalid user nagios from 106.12.49.150 port 48948 2020-02-19T15:36:50.1745311495-001 sshd[49158]: Failed password for invalid user nagios from 106.12.49.150 port 48948 ssh2 2020-02-19T16:39:02.0137291495-001 sshd[52566]: Invalid user jigang from 106.12.49.150 port 43088 2020-02-19T16:39:02.0219441495-001 sshd[52566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.150 2020-02-19T16:39:02.0137291495-001 sshd[52566]: Invalid user jigang from 106.12.49.150 port 43088 2020-02-19T16:39:03.9539761495-001 sshd[52566]: Failed password for invalid user jigang from 106.12.49.150 port 43088 ssh2 2020-02-19T16:42:00.9964151495-001 sshd[52698]: Invalid user speech-dispatcher from 106.12.49.150 port 35740 2020-02-19T16:42:01.0056901495-001 sshd[52698]: pam ...	2020-02-20 06:09:04
106.12.49.150	attack	Feb 18 16:32:21 [host] sshd[28472]: Invalid user l Feb 18 16:32:21 [host] sshd[28472]: pam_unix(sshd: Feb 18 16:32:23 [host] sshd[28472]: Failed passwor	2020-02-19 01:50:50
106.12.49.150	attack	21 attempts against mh-ssh on cloud	2020-02-17 19:57:11
106.12.49.150	attackbotsspam	Feb 9 04:58:44 hpm sshd\[24521\]: Invalid user hol from 106.12.49.150 Feb 9 04:58:44 hpm sshd\[24521\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.150 Feb 9 04:58:46 hpm sshd\[24521\]: Failed password for invalid user hol from 106.12.49.150 port 54468 ssh2 Feb 9 05:03:03 hpm sshd\[25013\]: Invalid user had from 106.12.49.150 Feb 9 05:03:03 hpm sshd\[25013\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.150	2020-02-10 01:56:23

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.49.118
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12562
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.49.118.			IN	A

;; AUTHORITY SECTION:
.			470	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101700 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 17 23:32:32 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 118.49.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 118.49.12.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
186.6.95.51	attack	Honeypot attack, port: 81, PTR: 51.95.6.186.f.dyn.codetel.net.do.	2020-02-15 09:49:36
218.92.0.178	attack	Feb 15 02:27:07 vpn01 sshd[2153]: Failed password for root from 218.92.0.178 port 7647 ssh2 Feb 15 02:27:19 vpn01 sshd[2153]: error: maximum authentication attempts exceeded for root from 218.92.0.178 port 7647 ssh2 [preauth] ...	2020-02-15 09:28:33
190.47.129.213	attackbotsspam	Feb 14 23:34:01 srv-ubuntu-dev3 sshd[29631]: Invalid user etherpad from 190.47.129.213 Feb 14 23:34:01 srv-ubuntu-dev3 sshd[29631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.47.129.213 Feb 14 23:34:01 srv-ubuntu-dev3 sshd[29631]: Invalid user etherpad from 190.47.129.213 Feb 14 23:34:03 srv-ubuntu-dev3 sshd[29631]: Failed password for invalid user etherpad from 190.47.129.213 port 34560 ssh2 Feb 14 23:37:53 srv-ubuntu-dev3 sshd[30015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.47.129.213 user=root Feb 14 23:37:55 srv-ubuntu-dev3 sshd[30015]: Failed password for root from 190.47.129.213 port 36452 ssh2 Feb 14 23:41:52 srv-ubuntu-dev3 sshd[30527]: Invalid user tech from 190.47.129.213 Feb 14 23:41:52 srv-ubuntu-dev3 sshd[30527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.47.129.213 Feb 14 23:41:52 srv-ubuntu-dev3 sshd[30527]: Invalid user t ...	2020-02-15 09:55:17
93.145.215.102	attack	Honeypot attack, port: 445, PTR: net-93-145-215-102.cust.vodafonedsl.it.	2020-02-15 09:15:57
1.222.165.63	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 09:30:17
157.230.128.195	attackbots	Feb 15 01:58:40 sd-53420 sshd\[29939\]: Invalid user abuse from 157.230.128.195 Feb 15 01:58:40 sd-53420 sshd\[29939\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.128.195 Feb 15 01:58:42 sd-53420 sshd\[29939\]: Failed password for invalid user abuse from 157.230.128.195 port 40884 ssh2 Feb 15 02:01:06 sd-53420 sshd\[30216\]: Invalid user hahn from 157.230.128.195 Feb 15 02:01:06 sd-53420 sshd\[30216\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.128.195 ...	2020-02-15 09:34:46
45.114.127.37	attackbotsspam	Feb 15 01:58:09 plex sshd[28167]: Invalid user inews from 45.114.127.37 port 50982	2020-02-15 09:15:08
125.91.126.205	attackspambots	Tried sshing with brute force.	2020-02-15 09:17:39
1.224.166.120	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 09:16:28
116.232.178.168	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-15 09:32:19
200.84.166.169	attack	Honeypot attack, port: 445, PTR: 200.84.166-169.dyn.dsl.cantv.net.	2020-02-15 09:48:15
91.137.233.10	attackbots	Fail2Ban Ban Triggered	2020-02-15 09:21:56
182.254.172.159	attackspambots	Feb 15 01:41:24 ks10 sshd[466289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.172.159 Feb 15 01:41:26 ks10 sshd[466289]: Failed password for invalid user goeng from 182.254.172.159 port 55064 ssh2 ...	2020-02-15 09:19:16
35.230.162.59	attackbotsspam	Automatic report - XMLRPC Attack	2020-02-15 09:27:13
1.222.188.163	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 09:21:19

最近上报的IP列表

211.174.232.177	77.127.74.82	187.162.120.161	195.111.120.125
57.26.238.60	5.15.21.12	184.202.174.123	187.162.121.144
114.222.215.152	114.39.118.65	187.162.33.200	239.166.71.196
122.116.198.65	201.59.191.106	187.162.38.250	183.16.236.197
221.3.101.235	62.80.182.42	22.100.153.207	178.122.248.27