106.12.49.244 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2020-01-03T04:46:36.313045shield sshd\[1050\]: Invalid user rav from 106.12.49.244 port 42146 2020-01-03T04:46:36.317125shield sshd\[1050\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244 2020-01-03T04:46:38.437158shield sshd\[1050\]: Failed password for invalid user rav from 106.12.49.244 port 42146 ssh2 2020-01-03T04:50:53.670738shield sshd\[2923\]: Invalid user spencer from 106.12.49.244 port 40468 2020-01-03T04:50:53.676934shield sshd\[2923\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244	2020-01-03 15:32:16
attackspambots	SSH invalid-user multiple login attempts	2019-12-28 03:10:25
attackspam	Dec 19 20:40:53 MainVPS sshd[31984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244 user=sshd Dec 19 20:40:55 MainVPS sshd[31984]: Failed password for sshd from 106.12.49.244 port 49868 ssh2 Dec 19 20:47:15 MainVPS sshd[11847]: Invalid user linni from 106.12.49.244 port 42966 Dec 19 20:47:15 MainVPS sshd[11847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244 Dec 19 20:47:15 MainVPS sshd[11847]: Invalid user linni from 106.12.49.244 port 42966 Dec 19 20:47:17 MainVPS sshd[11847]: Failed password for invalid user linni from 106.12.49.244 port 42966 ssh2 ...	2019-12-20 04:08:37
attackbotsspam	Dec 7 11:02:14 legacy sshd[3086]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244 Dec 7 11:02:16 legacy sshd[3086]: Failed password for invalid user rukiah from 106.12.49.244 port 53516 ssh2 Dec 7 11:08:44 legacy sshd[3262]: Failed password for root from 106.12.49.244 port 54764 ssh2 ...	2019-12-07 18:23:19
attackbotsspam	2019-12-04T12:15:59.970667shield sshd\[13394\]: Invalid user koay from 106.12.49.244 port 48734 2019-12-04T12:15:59.979421shield sshd\[13394\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244 2019-12-04T12:16:01.857281shield sshd\[13394\]: Failed password for invalid user koay from 106.12.49.244 port 48734 ssh2 2019-12-04T12:23:07.290344shield sshd\[16144\]: Invalid user replace from 106.12.49.244 port 50384 2019-12-04T12:23:07.294650shield sshd\[16144\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244	2019-12-04 20:42:59
attackspam	Nov 18 17:50:27 venus sshd\[26277\]: Invalid user oaoidc555 from 106.12.49.244 port 36218 Nov 18 17:50:27 venus sshd\[26277\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244 Nov 18 17:50:29 venus sshd\[26277\]: Failed password for invalid user oaoidc555 from 106.12.49.244 port 36218 ssh2 ...	2019-11-19 02:08:46
attackspambots	Nov 12 08:45:34 localhost sshd\[18084\]: Invalid user rpc from 106.12.49.244 port 54086 Nov 12 08:45:34 localhost sshd\[18084\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244 Nov 12 08:45:36 localhost sshd\[18084\]: Failed password for invalid user rpc from 106.12.49.244 port 54086 ssh2	2019-11-12 16:05:11
attackbots	Nov 8 05:33:49 auw2 sshd\[7912\]: Invalid user hduser from 106.12.49.244 Nov 8 05:33:49 auw2 sshd\[7912\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244 Nov 8 05:33:51 auw2 sshd\[7912\]: Failed password for invalid user hduser from 106.12.49.244 port 37714 ssh2 Nov 8 05:38:49 auw2 sshd\[8319\]: Invalid user maxwell from 106.12.49.244 Nov 8 05:38:49 auw2 sshd\[8319\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244	2019-11-09 03:37:39
attack	Oct 21 07:05:45 ns37 sshd[14483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244	2019-10-21 18:06:33
attack	Invalid user admin from 106.12.49.244 port 33678	2019-10-21 02:00:02
attackbotsspam	Unauthorized SSH login attempts	2019-10-12 15:09:28
attackbots	Oct 7 11:53:43 dev0-dcde-rnet sshd[28825]: Failed password for root from 106.12.49.244 port 35342 ssh2 Oct 7 11:58:07 dev0-dcde-rnet sshd[28841]: Failed password for root from 106.12.49.244 port 43882 ssh2	2019-10-07 19:38:19
attackbotsspam	Oct 5 15:06:43 vps01 sshd[1996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244 Oct 5 15:06:45 vps01 sshd[1996]: Failed password for invalid user zaq12345 from 106.12.49.244 port 58716 ssh2	2019-10-05 22:20:51
attackspam	$f2bV_matches	2019-10-03 20:22:34
attackspambots	Oct 1 04:33:41 php1 sshd\[26745\]: Invalid user unknown from 106.12.49.244 Oct 1 04:33:41 php1 sshd\[26745\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244 Oct 1 04:33:42 php1 sshd\[26745\]: Failed password for invalid user unknown from 106.12.49.244 port 34506 ssh2 Oct 1 04:38:45 php1 sshd\[27193\]: Invalid user pos from 106.12.49.244 Oct 1 04:38:45 php1 sshd\[27193\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244	2019-10-01 22:41:06
attackbotsspam	2019-09-26T18:52:26.770969abusebot-7.cloudsearch.cf sshd\[21557\]: Invalid user gestore from 106.12.49.244 port 41266	2019-09-27 03:00:08
attackspam	Sep 25 15:39:52 localhost sshd\[9469\]: Invalid user hadoop from 106.12.49.244 port 60276 Sep 25 15:39:52 localhost sshd\[9469\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244 Sep 25 15:39:54 localhost sshd\[9469\]: Failed password for invalid user hadoop from 106.12.49.244 port 60276 ssh2	2019-09-26 02:36:36
attack	Automatic report - Banned IP Access	2019-09-24 18:38:36
attack	Sep 4 12:59:54 hanapaa sshd\[27045\]: Invalid user test from 106.12.49.244 Sep 4 12:59:54 hanapaa sshd\[27045\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244 Sep 4 12:59:56 hanapaa sshd\[27045\]: Failed password for invalid user test from 106.12.49.244 port 52048 ssh2 Sep 4 13:04:01 hanapaa sshd\[27374\]: Invalid user teamspeak3 from 106.12.49.244 Sep 4 13:04:01 hanapaa sshd\[27374\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244	2019-09-05 07:18:41
attack	Aug 30 22:23:29 mail sshd\[10624\]: Invalid user ftptest from 106.12.49.244 port 52972 Aug 30 22:23:29 mail sshd\[10624\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244 Aug 30 22:23:31 mail sshd\[10624\]: Failed password for invalid user ftptest from 106.12.49.244 port 52972 ssh2 Aug 30 22:27:22 mail sshd\[11042\]: Invalid user raul from 106.12.49.244 port 55104 Aug 30 22:27:22 mail sshd\[11042\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244	2019-08-31 07:45:16
attackbots	Aug 21 13:41:53 ArkNodeAT sshd\[9122\]: Invalid user 1234567 from 106.12.49.244 Aug 21 13:41:53 ArkNodeAT sshd\[9122\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244 Aug 21 13:41:55 ArkNodeAT sshd\[9122\]: Failed password for invalid user 1234567 from 106.12.49.244 port 35448 ssh2	2019-08-21 23:07:20
attackspambots	Aug 15 12:52:47 friendsofhawaii sshd\[15686\]: Invalid user cod2 from 106.12.49.244 Aug 15 12:52:47 friendsofhawaii sshd\[15686\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244 Aug 15 12:52:49 friendsofhawaii sshd\[15686\]: Failed password for invalid user cod2 from 106.12.49.244 port 46556 ssh2 Aug 15 12:58:14 friendsofhawaii sshd\[16132\]: Invalid user password from 106.12.49.244 Aug 15 12:58:14 friendsofhawaii sshd\[16132\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244	2019-08-16 07:03:34

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.49.118	attack	Jun 8 13:53:54 roki-contabo sshd\[7336\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root Jun 8 13:53:56 roki-contabo sshd\[7336\]: Failed password for root from 106.12.49.118 port 45396 ssh2 Jun 8 13:58:38 roki-contabo sshd\[7451\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root Jun 8 13:58:40 roki-contabo sshd\[7451\]: Failed password for root from 106.12.49.118 port 32852 ssh2 Jun 8 14:01:31 roki-contabo sshd\[7530\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root ...	2020-06-09 04:19:30
106.12.49.118	attackspambots	2020-06-04T15:58:23.5808851495-001 sshd[4202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2020-06-04T15:58:25.2741011495-001 sshd[4202]: Failed password for root from 106.12.49.118 port 33728 ssh2 2020-06-04T16:01:20.6117241495-001 sshd[4394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2020-06-04T16:01:22.6057411495-001 sshd[4394]: Failed password for root from 106.12.49.118 port 46298 ssh2 2020-06-04T16:04:12.5568491495-001 sshd[4507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2020-06-04T16:04:14.4958551495-001 sshd[4507]: Failed password for root from 106.12.49.118 port 58860 ssh2 ...	2020-06-05 05:53:41
106.12.49.118	attack	2020-05-31T06:15:49.2340911240 sshd\[27657\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2020-05-31T06:15:51.1874811240 sshd\[27657\]: Failed password for root from 106.12.49.118 port 39406 ssh2 2020-05-31T06:23:00.9397651240 sshd\[28021\]: Invalid user samantha from 106.12.49.118 port 53566 2020-05-31T06:23:00.9443561240 sshd\[28021\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 ...	2020-05-31 17:20:52
106.12.49.118	attackspam	$f2bV_matches	2020-05-25 07:58:27
106.12.49.118	attackbotsspam	SSH Brute Force	2020-04-29 13:08:42
106.12.49.118	attackspam	Invalid user play from 106.12.49.118 port 51248	2020-04-29 06:35:37
106.12.49.118	attack	Apr 19 10:00:52 ns382633 sshd\[9853\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root Apr 19 10:00:54 ns382633 sshd\[9853\]: Failed password for root from 106.12.49.118 port 40078 ssh2 Apr 19 10:09:14 ns382633 sshd\[11606\]: Invalid user gq from 106.12.49.118 port 39532 Apr 19 10:09:14 ns382633 sshd\[11606\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 Apr 19 10:09:16 ns382633 sshd\[11606\]: Failed password for invalid user gq from 106.12.49.118 port 39532 ssh2	2020-04-19 18:02:49
106.12.49.118	attackbots	Apr 3 22:43:27 webhost01 sshd[15642]: Failed password for root from 106.12.49.118 port 36008 ssh2 ...	2020-04-03 23:57:10
106.12.49.224	attackbots	2020-03-16T16:28:07.236692 sshd[15010]: Invalid user fangce from 106.12.49.224 port 56282 2020-03-16T16:28:07.250964 sshd[15010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.224 2020-03-16T16:28:07.236692 sshd[15010]: Invalid user fangce from 106.12.49.224 port 56282 2020-03-16T16:28:08.889982 sshd[15010]: Failed password for invalid user fangce from 106.12.49.224 port 56282 ssh2 ...	2020-03-17 01:13:02
106.12.49.150	attack	5x Failed Password	2020-03-13 18:10:43
106.12.49.207	attackbotsspam	web-1 [ssh] SSH Attack	2020-03-12 15:07:57
106.12.49.158	attackbotsspam	Mar 10 13:33:24 lock-38 sshd[8936]: Failed password for invalid user oikawa from 106.12.49.158 port 35960 ssh2 Mar 10 13:58:08 lock-38 sshd[9118]: Failed password for invalid user developer from 106.12.49.158 port 55644 ssh2 ...	2020-03-12 01:58:04
106.12.49.150	attackspambots	invalid login attempt (mail)	2020-03-11 11:22:58
106.12.49.207	attack	Invalid user asterisk from 106.12.49.207 port 52274	2020-03-11 07:13:06
106.12.49.158	attackbots	Mar 9 23:21:01 mout sshd[12351]: Invalid user charles from 106.12.49.158 port 48346	2020-03-10 07:44:06

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.49.244
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22956
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.49.244.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081503 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 16 07:03:29 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 244.49.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 244.49.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.12.36.176	attackspam	Invalid user usuario from 106.12.36.176 port 39614	2019-10-24 06:31:15
140.143.19.50	attackbotsspam	ECShop Remote Code Execution Vulnerability	2019-10-24 05:59:19
112.175.127.186	attackbots	10/23/2019-17:57:22.665149 112.175.127.186 Protocol: 6 ET SCAN Potential SSH Scan	2019-10-24 05:57:32
142.93.113.182	attack	WordPress brute force	2019-10-24 06:14:56
109.252.231.164	attack	Oct 23 18:15:21 TORMINT sshd\[16776\]: Invalid user ftpuser from 109.252.231.164 Oct 23 18:15:21 TORMINT sshd\[16776\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.252.231.164 Oct 23 18:15:24 TORMINT sshd\[16776\]: Failed password for invalid user ftpuser from 109.252.231.164 port 44136 ssh2 ...	2019-10-24 06:17:47
190.14.240.74	attackspambots	Invalid user bever from 190.14.240.74 port 54852	2019-10-24 06:21:54
104.37.169.192	attackbotsspam	Oct 23 17:09:02 xtremcommunity sshd\[38247\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.37.169.192 user=root Oct 23 17:09:04 xtremcommunity sshd\[38247\]: Failed password for root from 104.37.169.192 port 45891 ssh2 Oct 23 17:13:15 xtremcommunity sshd\[38378\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.37.169.192 user=root Oct 23 17:13:16 xtremcommunity sshd\[38378\]: Failed password for root from 104.37.169.192 port 38869 ssh2 Oct 23 17:17:34 xtremcommunity sshd\[38424\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.37.169.192 user=root ...	2019-10-24 06:02:28
176.53.84.27	attackspam	techno.ws 176.53.84.27 \[23/Oct/2019:23:11:07 +0200\] "POST /wp-login.php HTTP/1.1" 200 5604 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" techno.ws 176.53.84.27 \[23/Oct/2019:23:11:07 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4070 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-10-24 06:13:08
51.91.102.128	attack	techno.ws 51.91.102.128 \[23/Oct/2019:22:56:25 +0200\] "POST /wp-login.php HTTP/1.1" 200 5604 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" techno.ws 51.91.102.128 \[23/Oct/2019:22:56:25 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4070 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-10-24 06:05:22
220.179.68.246	attackbots	2019-10-23T22:00:25.695269shield sshd\[2938\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.179.68.246 user=root 2019-10-23T22:00:28.154008shield sshd\[2938\]: Failed password for root from 220.179.68.246 port 17194 ssh2 2019-10-23T22:04:37.936623shield sshd\[3851\]: Invalid user ronjones from 220.179.68.246 port 55548 2019-10-23T22:04:37.940624shield sshd\[3851\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.179.68.246 2019-10-23T22:04:39.661474shield sshd\[3851\]: Failed password for invalid user ronjones from 220.179.68.246 port 55548 ssh2	2019-10-24 06:18:38
41.97.191.49	attackbots	41.97.191.49 - admin2 \[23/Oct/2019:13:14:44 -0700\] "GET /rss/catalog/notifystock/ HTTP/1.1" 401 2541.97.191.49 - - \[23/Oct/2019:13:14:45 -0700\] "POST /index.php/admin/index/ HTTP/1.1" 404 2062341.97.191.49 - - \[23/Oct/2019:13:14:45 -0700\] "POST /index.php/admin/ HTTP/1.1" 404 20599 ...	2019-10-24 06:28:38
123.108.90.222	attackbots	Automatic report - Banned IP Access	2019-10-24 06:13:53
213.6.162.58	attack	19/10/23@16:15:11: FAIL: Alarm-Intrusion address from=213.6.162.58 19/10/23@16:15:11: FAIL: Alarm-Intrusion address from=213.6.162.58 ...	2019-10-24 06:07:41
117.50.95.121	attackspambots	Unauthorized SSH login attempts	2019-10-24 06:18:54
80.103.163.66	attack	Oct 23 23:52:08 markkoudstaal sshd[15118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.103.163.66 Oct 23 23:52:10 markkoudstaal sshd[15118]: Failed password for invalid user debian@123 from 80.103.163.66 port 35607 ssh2 Oct 23 23:56:38 markkoudstaal sshd[15498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.103.163.66	2019-10-24 06:06:09

最近上报的IP列表

171.244.9.27	190.88.212.34	113.160.100.201	140.255.46.109
210.55.121.117	196.251.197.27	187.32.125.210	104.169.95.140
187.193.19.53	178.213.172.82	144.255.203.137	175.56.96.153
119.75.238.1	107.175.92.132	14.18.154.189	189.144.170.58
106.12.85.92	192.169.216.124	177.21.198.140	174.87.187.161