必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:
类型 评论内容 时间
attack
2020-01-03T04:46:36.313045shield sshd\[1050\]: Invalid user rav from 106.12.49.244 port 42146
2020-01-03T04:46:36.317125shield sshd\[1050\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
2020-01-03T04:46:38.437158shield sshd\[1050\]: Failed password for invalid user rav from 106.12.49.244 port 42146 ssh2
2020-01-03T04:50:53.670738shield sshd\[2923\]: Invalid user spencer from 106.12.49.244 port 40468
2020-01-03T04:50:53.676934shield sshd\[2923\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
2020-01-03 15:32:16
attackspambots
SSH invalid-user multiple login attempts
2019-12-28 03:10:25
attackspam
Dec 19 20:40:53 MainVPS sshd[31984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244  user=sshd
Dec 19 20:40:55 MainVPS sshd[31984]: Failed password for sshd from 106.12.49.244 port 49868 ssh2
Dec 19 20:47:15 MainVPS sshd[11847]: Invalid user linni from 106.12.49.244 port 42966
Dec 19 20:47:15 MainVPS sshd[11847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
Dec 19 20:47:15 MainVPS sshd[11847]: Invalid user linni from 106.12.49.244 port 42966
Dec 19 20:47:17 MainVPS sshd[11847]: Failed password for invalid user linni from 106.12.49.244 port 42966 ssh2
...
2019-12-20 04:08:37
attackbotsspam
Dec  7 11:02:14 legacy sshd[3086]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
Dec  7 11:02:16 legacy sshd[3086]: Failed password for invalid user rukiah from 106.12.49.244 port 53516 ssh2
Dec  7 11:08:44 legacy sshd[3262]: Failed password for root from 106.12.49.244 port 54764 ssh2
...
2019-12-07 18:23:19
attackbotsspam
2019-12-04T12:15:59.970667shield sshd\[13394\]: Invalid user koay from 106.12.49.244 port 48734
2019-12-04T12:15:59.979421shield sshd\[13394\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
2019-12-04T12:16:01.857281shield sshd\[13394\]: Failed password for invalid user koay from 106.12.49.244 port 48734 ssh2
2019-12-04T12:23:07.290344shield sshd\[16144\]: Invalid user replace from 106.12.49.244 port 50384
2019-12-04T12:23:07.294650shield sshd\[16144\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
2019-12-04 20:42:59
attackspam
Nov 18 17:50:27 venus sshd\[26277\]: Invalid user oaoidc555 from 106.12.49.244 port 36218
Nov 18 17:50:27 venus sshd\[26277\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
Nov 18 17:50:29 venus sshd\[26277\]: Failed password for invalid user oaoidc555 from 106.12.49.244 port 36218 ssh2
...
2019-11-19 02:08:46
attackspambots
Nov 12 08:45:34 localhost sshd\[18084\]: Invalid user rpc from 106.12.49.244 port 54086
Nov 12 08:45:34 localhost sshd\[18084\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
Nov 12 08:45:36 localhost sshd\[18084\]: Failed password for invalid user rpc from 106.12.49.244 port 54086 ssh2
2019-11-12 16:05:11
attackbots
Nov  8 05:33:49 auw2 sshd\[7912\]: Invalid user hduser from 106.12.49.244
Nov  8 05:33:49 auw2 sshd\[7912\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
Nov  8 05:33:51 auw2 sshd\[7912\]: Failed password for invalid user hduser from 106.12.49.244 port 37714 ssh2
Nov  8 05:38:49 auw2 sshd\[8319\]: Invalid user maxwell from 106.12.49.244
Nov  8 05:38:49 auw2 sshd\[8319\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
2019-11-09 03:37:39
attack
Oct 21 07:05:45 ns37 sshd[14483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
2019-10-21 18:06:33
attack
Invalid user admin from 106.12.49.244 port 33678
2019-10-21 02:00:02
attackbotsspam
Unauthorized SSH login attempts
2019-10-12 15:09:28
attackbots
Oct  7 11:53:43 dev0-dcde-rnet sshd[28825]: Failed password for root from 106.12.49.244 port 35342 ssh2
Oct  7 11:58:07 dev0-dcde-rnet sshd[28841]: Failed password for root from 106.12.49.244 port 43882 ssh2
2019-10-07 19:38:19
attackbotsspam
Oct  5 15:06:43 vps01 sshd[1996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
Oct  5 15:06:45 vps01 sshd[1996]: Failed password for invalid user zaq12345 from 106.12.49.244 port 58716 ssh2
2019-10-05 22:20:51
attackspam
$f2bV_matches
2019-10-03 20:22:34
attackspambots
Oct  1 04:33:41 php1 sshd\[26745\]: Invalid user unknown from 106.12.49.244
Oct  1 04:33:41 php1 sshd\[26745\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
Oct  1 04:33:42 php1 sshd\[26745\]: Failed password for invalid user unknown from 106.12.49.244 port 34506 ssh2
Oct  1 04:38:45 php1 sshd\[27193\]: Invalid user pos from 106.12.49.244
Oct  1 04:38:45 php1 sshd\[27193\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
2019-10-01 22:41:06
attackbotsspam
2019-09-26T18:52:26.770969abusebot-7.cloudsearch.cf sshd\[21557\]: Invalid user gestore from 106.12.49.244 port 41266
2019-09-27 03:00:08
attackspam
Sep 25 15:39:52 localhost sshd\[9469\]: Invalid user hadoop from 106.12.49.244 port 60276
Sep 25 15:39:52 localhost sshd\[9469\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
Sep 25 15:39:54 localhost sshd\[9469\]: Failed password for invalid user hadoop from 106.12.49.244 port 60276 ssh2
2019-09-26 02:36:36
attack
Automatic report - Banned IP Access
2019-09-24 18:38:36
attack
Sep  4 12:59:54 hanapaa sshd\[27045\]: Invalid user test from 106.12.49.244
Sep  4 12:59:54 hanapaa sshd\[27045\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
Sep  4 12:59:56 hanapaa sshd\[27045\]: Failed password for invalid user test from 106.12.49.244 port 52048 ssh2
Sep  4 13:04:01 hanapaa sshd\[27374\]: Invalid user teamspeak3 from 106.12.49.244
Sep  4 13:04:01 hanapaa sshd\[27374\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
2019-09-05 07:18:41
attack
Aug 30 22:23:29 mail sshd\[10624\]: Invalid user ftptest from 106.12.49.244 port 52972
Aug 30 22:23:29 mail sshd\[10624\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
Aug 30 22:23:31 mail sshd\[10624\]: Failed password for invalid user ftptest from 106.12.49.244 port 52972 ssh2
Aug 30 22:27:22 mail sshd\[11042\]: Invalid user raul from 106.12.49.244 port 55104
Aug 30 22:27:22 mail sshd\[11042\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
2019-08-31 07:45:16
attackbots
Aug 21 13:41:53 ArkNodeAT sshd\[9122\]: Invalid user 1234567 from 106.12.49.244
Aug 21 13:41:53 ArkNodeAT sshd\[9122\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
Aug 21 13:41:55 ArkNodeAT sshd\[9122\]: Failed password for invalid user 1234567 from 106.12.49.244 port 35448 ssh2
2019-08-21 23:07:20
attackspambots
Aug 15 12:52:47 friendsofhawaii sshd\[15686\]: Invalid user cod2 from 106.12.49.244
Aug 15 12:52:47 friendsofhawaii sshd\[15686\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
Aug 15 12:52:49 friendsofhawaii sshd\[15686\]: Failed password for invalid user cod2 from 106.12.49.244 port 46556 ssh2
Aug 15 12:58:14 friendsofhawaii sshd\[16132\]: Invalid user password from 106.12.49.244
Aug 15 12:58:14 friendsofhawaii sshd\[16132\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244
2019-08-16 07:03:34
相同子网IP讨论:
IP 类型 评论内容 时间
106.12.49.118 attack
Jun  8 13:53:54 roki-contabo sshd\[7336\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118  user=root
Jun  8 13:53:56 roki-contabo sshd\[7336\]: Failed password for root from 106.12.49.118 port 45396 ssh2
Jun  8 13:58:38 roki-contabo sshd\[7451\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118  user=root
Jun  8 13:58:40 roki-contabo sshd\[7451\]: Failed password for root from 106.12.49.118 port 32852 ssh2
Jun  8 14:01:31 roki-contabo sshd\[7530\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118  user=root
...
2020-06-09 04:19:30
106.12.49.118 attackspambots
2020-06-04T15:58:23.5808851495-001 sshd[4202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118  user=root
2020-06-04T15:58:25.2741011495-001 sshd[4202]: Failed password for root from 106.12.49.118 port 33728 ssh2
2020-06-04T16:01:20.6117241495-001 sshd[4394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118  user=root
2020-06-04T16:01:22.6057411495-001 sshd[4394]: Failed password for root from 106.12.49.118 port 46298 ssh2
2020-06-04T16:04:12.5568491495-001 sshd[4507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118  user=root
2020-06-04T16:04:14.4958551495-001 sshd[4507]: Failed password for root from 106.12.49.118 port 58860 ssh2
...
2020-06-05 05:53:41
106.12.49.118 attack
2020-05-31T06:15:49.2340911240 sshd\[27657\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118  user=root
2020-05-31T06:15:51.1874811240 sshd\[27657\]: Failed password for root from 106.12.49.118 port 39406 ssh2
2020-05-31T06:23:00.9397651240 sshd\[28021\]: Invalid user samantha from 106.12.49.118 port 53566
2020-05-31T06:23:00.9443561240 sshd\[28021\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118
...
2020-05-31 17:20:52
106.12.49.118 attackspam
$f2bV_matches
2020-05-25 07:58:27
106.12.49.118 attackbotsspam
SSH Brute Force
2020-04-29 13:08:42
106.12.49.118 attackspam
Invalid user play from 106.12.49.118 port 51248
2020-04-29 06:35:37
106.12.49.118 attack
Apr 19 10:00:52 ns382633 sshd\[9853\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118  user=root
Apr 19 10:00:54 ns382633 sshd\[9853\]: Failed password for root from 106.12.49.118 port 40078 ssh2
Apr 19 10:09:14 ns382633 sshd\[11606\]: Invalid user gq from 106.12.49.118 port 39532
Apr 19 10:09:14 ns382633 sshd\[11606\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118
Apr 19 10:09:16 ns382633 sshd\[11606\]: Failed password for invalid user gq from 106.12.49.118 port 39532 ssh2
2020-04-19 18:02:49
106.12.49.118 attackbots
Apr  3 22:43:27 webhost01 sshd[15642]: Failed password for root from 106.12.49.118 port 36008 ssh2
...
2020-04-03 23:57:10
106.12.49.224 attackbots
2020-03-16T16:28:07.236692  sshd[15010]: Invalid user fangce from 106.12.49.224 port 56282
2020-03-16T16:28:07.250964  sshd[15010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.224
2020-03-16T16:28:07.236692  sshd[15010]: Invalid user fangce from 106.12.49.224 port 56282
2020-03-16T16:28:08.889982  sshd[15010]: Failed password for invalid user fangce from 106.12.49.224 port 56282 ssh2
...
2020-03-17 01:13:02
106.12.49.150 attack
5x Failed Password
2020-03-13 18:10:43
106.12.49.207 attackbotsspam
web-1 [ssh] SSH Attack
2020-03-12 15:07:57
106.12.49.158 attackbotsspam
Mar 10 13:33:24 lock-38 sshd[8936]: Failed password for invalid user oikawa from 106.12.49.158 port 35960 ssh2
Mar 10 13:58:08 lock-38 sshd[9118]: Failed password for invalid user developer from 106.12.49.158 port 55644 ssh2
...
2020-03-12 01:58:04
106.12.49.150 attackspambots
invalid login attempt (mail)
2020-03-11 11:22:58
106.12.49.207 attack
Invalid user asterisk from 106.12.49.207 port 52274
2020-03-11 07:13:06
106.12.49.158 attackbots
Mar  9 23:21:01 mout sshd[12351]: Invalid user charles from 106.12.49.158 port 48346
2020-03-10 07:44:06
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.49.244
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22956
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.49.244.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081503 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 16 07:03:29 CST 2019
;; MSG SIZE  rcvd: 117
HOST信息:
Host 244.49.12.106.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 244.49.12.106.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
94.102.56.181 attack
Mar 12 01:55:48 debian-2gb-nbg1-2 kernel: \[6233688.897429\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=94.102.56.181 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=58346 PROTO=TCP SPT=41046 DPT=5131 WINDOW=1024 RES=0x00 SYN URGP=0
2020-03-12 09:07:43
139.198.4.44 attackspambots
Mar 12 05:12:37 hosting180 sshd[3167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.4.44  user=root
Mar 12 05:12:39 hosting180 sshd[3167]: Failed password for root from 139.198.4.44 port 55350 ssh2
...
2020-03-12 12:30:30
51.68.123.192 attack
Mar 12 00:24:27 plusreed sshd[5338]: Invalid user 123456 from 51.68.123.192
...
2020-03-12 12:24:45
139.199.122.210 attackbots
$f2bV_matches
2020-03-12 09:05:58
202.79.168.154 attackbotsspam
fail2ban -- 202.79.168.154
...
2020-03-12 12:22:12
91.211.105.92 attack
Mar 12 01:55:50 debian-2gb-nbg1-2 kernel: \[6233691.060466\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=91.211.105.92 DST=195.201.40.59 LEN=52 TOS=0x00 PREC=0x00 TTL=117 ID=32173 DF PROTO=TCP SPT=62691 DPT=34567 WINDOW=8192 RES=0x00 SYN URGP=0
2020-03-12 09:06:10
111.229.32.165 attack
Mar 11 04:42:22 host sshd[46791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.32.165
Mar 11 04:42:22 host sshd[46791]: Invalid user mqm from 111.229.32.165 port 50548
Mar 11 04:42:25 host sshd[46791]: Failed password for invalid user mqm from 111.229.32.165 port 50548 ssh2
...
2020-03-12 12:10:15
103.108.87.187 attackbots
Mar 11 21:51:49 ws19vmsma01 sshd[130366]: Failed password for root from 103.108.87.187 port 58984 ssh2
Mar 11 21:55:53 ws19vmsma01 sshd[131702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.108.87.187
...
2020-03-12 09:04:54
184.105.139.68 attackspam
Unauthorized connection attempt detected from IP address 184.105.139.68
2020-03-12 09:03:11
173.249.25.170 attackbots
Brute force attempt
2020-03-12 12:32:52
51.77.203.192 attack
SSH-BruteForce
2020-03-12 09:08:15
110.49.142.46 attack
2020-03-12T04:19:01.535298shield sshd\[31196\]: Invalid user webmaster from 110.49.142.46 port 40244
2020-03-12T04:19:01.539881shield sshd\[31196\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.142.46
2020-03-12T04:19:03.637367shield sshd\[31196\]: Failed password for invalid user webmaster from 110.49.142.46 port 40244 ssh2
2020-03-12T04:24:07.395425shield sshd\[31952\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.142.46  user=root
2020-03-12T04:24:09.502028shield sshd\[31952\]: Failed password for root from 110.49.142.46 port 43306 ssh2
2020-03-12 12:32:34
106.13.181.170 attackspam
5x Failed Password
2020-03-12 09:03:33
83.234.18.24 attack
Mar 12 03:58:07 vlre-nyc-1 sshd\[29560\]: Invalid user oracle from 83.234.18.24
Mar 12 03:58:07 vlre-nyc-1 sshd\[29560\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.234.18.24
Mar 12 03:58:09 vlre-nyc-1 sshd\[29560\]: Failed password for invalid user oracle from 83.234.18.24 port 57618 ssh2
Mar 12 04:02:12 vlre-nyc-1 sshd\[29606\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.234.18.24  user=root
Mar 12 04:02:14 vlre-nyc-1 sshd\[29606\]: Failed password for root from 83.234.18.24 port 38187 ssh2
...
2020-03-12 12:29:17
89.248.174.3 attack
03/11/2020-20:55:54.498290 89.248.174.3 Protocol: 6 ET DROP Dshield Block Listed Source group 1
2020-03-12 09:05:09

最近上报的IP列表

171.244.9.27 190.88.212.34 113.160.100.201 140.255.46.109
210.55.121.117 196.251.197.27 187.32.125.210 104.169.95.140
187.193.19.53 178.213.172.82 144.255.203.137 175.56.96.153
119.75.238.1 107.175.92.132 14.18.154.189 189.144.170.58
106.12.85.92 192.169.216.124 177.21.198.140 174.87.187.161