106.12.102.160

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Invalid user md from 106.12.102.160 port 34640	2020-04-21 00:33:02
attackspam	Apr 18 09:56:14 sso sshd[12060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.102.160 Apr 18 09:56:16 sso sshd[12060]: Failed password for invalid user linux001 from 106.12.102.160 port 34598 ssh2 ...	2020-04-18 17:35:50
attackbots	Apr 15 06:58:00 santamaria sshd\[15921\]: Invalid user Bocloud@suzhou from 106.12.102.160 Apr 15 06:58:00 santamaria sshd\[15921\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.102.160 Apr 15 06:58:02 santamaria sshd\[15921\]: Failed password for invalid user Bocloud@suzhou from 106.12.102.160 port 60822 ssh2 ...	2020-04-15 18:43:11
attackspam	Invalid user yousnow from 106.12.102.160 port 51912	2020-03-08 08:37:51
attackspam	Invalid user aaron from 106.12.102.160 port 39066	2020-02-29 08:31:29
attackbotsspam	Unauthorized connection attempt detected from IP address 106.12.102.160 to port 2220 [J]	2020-02-02 20:43:15
attack	$f2bV_matches	2020-01-03 07:35:17
attackspam	Dec 31 07:15:19 pi sshd\[19378\]: Invalid user user1 from 106.12.102.160 port 40444 Dec 31 07:15:19 pi sshd\[19378\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.102.160 Dec 31 07:15:21 pi sshd\[19378\]: Failed password for invalid user user1 from 106.12.102.160 port 40444 ssh2 Dec 31 07:18:09 pi sshd\[19446\]: Invalid user home from 106.12.102.160 port 35642 Dec 31 07:18:09 pi sshd\[19446\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.102.160 ...	2019-12-31 20:11:24
attackspam	Invalid user danol from 106.12.102.160 port 55022	2019-12-24 23:00:48
attack	Dec 17 19:22:13 gw1 sshd[23925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.102.160 Dec 17 19:22:15 gw1 sshd[23925]: Failed password for invalid user masefield from 106.12.102.160 port 49856 ssh2 ...	2019-12-18 03:17:31
attackspam	Dec 11 16:06:36 kapalua sshd\[25198\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.102.160 user=mysql Dec 11 16:06:37 kapalua sshd\[25198\]: Failed password for mysql from 106.12.102.160 port 59926 ssh2 Dec 11 16:13:36 kapalua sshd\[26034\]: Invalid user steam from 106.12.102.160 Dec 11 16:13:36 kapalua sshd\[26034\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.102.160 Dec 11 16:13:37 kapalua sshd\[26034\]: Failed password for invalid user steam from 106.12.102.160 port 36748 ssh2	2019-12-12 10:21:35
attack	detected by Fail2Ban	2019-12-09 18:51:15
attack	Dec 1 04:56:12 v22018086721571380 sshd[31049]: Failed password for invalid user ervisor from 106.12.102.160 port 43034 ssh2 Dec 1 05:57:34 v22018086721571380 sshd[2202]: Failed password for invalid user quickbooks from 106.12.102.160 port 50976 ssh2	2019-12-01 13:53:28
attackbotsspam	Automatic report - Banned IP Access	2019-11-17 07:00:20
attackbots	Oct 25 18:48:12 vmanager6029 sshd\[7634\]: Invalid user stanchion123 from 106.12.102.160 port 40534 Oct 25 18:48:12 vmanager6029 sshd\[7634\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.102.160 Oct 25 18:48:14 vmanager6029 sshd\[7634\]: Failed password for invalid user stanchion123 from 106.12.102.160 port 40534 ssh2	2019-10-26 01:32:22
attackspam	Oct 23 09:42:13 v22019058497090703 sshd[3618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.102.160 Oct 23 09:42:15 v22019058497090703 sshd[3618]: Failed password for invalid user Reefer from 106.12.102.160 port 51116 ssh2 Oct 23 09:46:16 v22019058497090703 sshd[3912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.102.160 ...	2019-10-23 15:58:55
attackspambots	Sep 20 15:13:27 mail1 sshd\[6933\]: Invalid user oracle from 106.12.102.160 port 35802 Sep 20 15:13:27 mail1 sshd\[6933\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.102.160 Sep 20 15:13:29 mail1 sshd\[6933\]: Failed password for invalid user oracle from 106.12.102.160 port 35802 ssh2 Sep 20 15:28:56 mail1 sshd\[13961\]: Invalid user pogo_user from 106.12.102.160 port 33292 Sep 20 15:28:56 mail1 sshd\[13961\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.102.160 ...	2019-09-21 02:11:51

Comments on same subnet:

IP	Type	Details	Datetime
106.12.102.54	attack	2020-10-11T21:51:51+0200 Failed SSH Authentication/Brute Force Attack. (Server 4)	2020-10-12 04:53:46
106.12.102.54	attackspambots	Oct 11 09:51:57 buvik sshd[14859]: Invalid user oracle from 106.12.102.54 Oct 11 09:51:57 buvik sshd[14859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.102.54 Oct 11 09:51:59 buvik sshd[14859]: Failed password for invalid user oracle from 106.12.102.54 port 37852 ssh2 ...	2020-10-11 20:58:15
106.12.102.54	attack	$f2bV_matches	2020-10-11 12:54:32
106.12.102.54	attackspambots	Invalid user mike from 106.12.102.54 port 49028	2020-10-11 06:17:28
106.12.102.54	attack	"Unauthorized connection attempt on SSHD detected"	2020-09-25 08:09:21
106.12.102.54	attackspambots	Failed password for root from 106.12.102.54 port 45136 ssh2	2020-09-10 00:37:02
106.12.102.54	attackspam	Aug 28 21:49:38 instance-2 sshd[11194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.102.54 Aug 28 21:49:41 instance-2 sshd[11194]: Failed password for invalid user log from 106.12.102.54 port 39664 ssh2 Aug 28 21:54:19 instance-2 sshd[11335]: Failed password for root from 106.12.102.54 port 42894 ssh2	2020-08-29 07:06:27
106.12.102.54	attack	Aug 28 11:50:11 NPSTNNYC01T sshd[28379]: Failed password for root from 106.12.102.54 port 39278 ssh2 Aug 28 11:53:16 NPSTNNYC01T sshd[28696]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.102.54 Aug 28 11:53:19 NPSTNNYC01T sshd[28696]: Failed password for invalid user ubuntu from 106.12.102.54 port 41900 ssh2 ...	2020-08-29 01:50:42
106.12.102.210	attackbotsspam	SSH invalid-user multiple login try	2020-07-31 07:49:10
106.12.102.210	attackspam	Jul 6 01:05:04 vmd46520 sshd[28885]: Invalid user web from 106.12.102.210 port 52504 Jul 6 01:05:05 vmd46520 sshd[28885]: Failed password for invalid user web from 106.12.102.210 port 52504 ssh2 Jul 6 01:10:56 vmd46520 sshd[29399]: Invalid user ubuntu from 106.12.102.210 port 57842 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.12.102.210	2020-07-06 14:28:02
106.12.102.210	attackbots	Jun 9 06:56:30 pkdns2 sshd\[56540\]: Invalid user nr from 106.12.102.210Jun 9 06:56:32 pkdns2 sshd\[56540\]: Failed password for invalid user nr from 106.12.102.210 port 57556 ssh2Jun 9 06:58:55 pkdns2 sshd\[56624\]: Invalid user totallogin from 106.12.102.210Jun 9 06:58:58 pkdns2 sshd\[56624\]: Failed password for invalid user totallogin from 106.12.102.210 port 58782 ssh2Jun 9 07:01:09 pkdns2 sshd\[56765\]: Failed password for root from 106.12.102.210 port 59996 ssh2Jun 9 07:03:13 pkdns2 sshd\[56833\]: Invalid user sounosuke from 106.12.102.210 ...	2020-06-09 12:18:37
106.12.102.210	attackspam	Apr 29 17:08:44 [host] sshd[1816]: Invalid user mc Apr 29 17:08:44 [host] sshd[1816]: pam_unix(sshd:a Apr 29 17:08:46 [host] sshd[1816]: Failed password	2020-04-29 23:20:13
106.12.102.91	attackbots	SSH Brute Force	2020-04-29 13:25:19
106.12.102.210	attackspam	Invalid user test from 106.12.102.210 port 51708	2020-04-18 06:35:23
106.12.102.210	attack	web-1 [ssh] SSH Attack	2020-03-27 17:21:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.102.160
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17047
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.102.160.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090101 1800 900 604800 86400

;; Query time: 142 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Sep 02 10:10:06 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 160.102.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 160.102.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
161.35.224.57	attackbots	SSH/22 MH Probe, BF, Hack -	2020-06-01 18:18:29
162.62.29.207	attackspambots	Lines containing failures of 162.62.29.207 Jun 1 04:42:07 shared01 sshd[11493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.62.29.207 user=r.r Jun 1 04:42:09 shared01 sshd[11493]: Failed password for r.r from 162.62.29.207 port 43124 ssh2 Jun 1 04:42:09 shared01 sshd[11493]: Received disconnect from 162.62.29.207 port 43124:11: Bye Bye [preauth] Jun 1 04:42:09 shared01 sshd[11493]: Disconnected from authenticating user r.r 162.62.29.207 port 43124 [preauth] Jun 1 04:49:19 shared01 sshd[13545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.62.29.207 user=r.r Jun 1 04:49:21 shared01 sshd[13545]: Failed password for r.r from 162.62.29.207 port 38844 ssh2 Jun 1 04:49:21 shared01 sshd[13545]: Received disconnect from 162.62.29.207 port 38844:11: Bye Bye [preauth] Jun 1 04:49:21 shared01 sshd[13545]: Disconnected from authenticating user r.r 162.62.29.207 port 38844 [preauth........ ------------------------------	2020-06-01 18:44:41
162.243.141.245	attackbotsspam	123/udp 4840/tcp 1433/tcp... [2020-05-01/31]31pkt,25pt.(tcp),3pt.(udp)	2020-06-01 18:15:44
87.251.74.137	attackbotsspam	Jun 1 11:40:26 debian-2gb-nbg1-2 kernel: \[13263198.954615\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.137 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=44983 PROTO=TCP SPT=55536 DPT=4422 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-01 18:38:25
189.7.129.60	attackbots	Jun 1 10:51:48 Ubuntu-1404-trusty-64-minimal sshd\[21924\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.7.129.60 user=root Jun 1 10:51:50 Ubuntu-1404-trusty-64-minimal sshd\[21924\]: Failed password for root from 189.7.129.60 port 56995 ssh2 Jun 1 11:00:52 Ubuntu-1404-trusty-64-minimal sshd\[29142\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.7.129.60 user=root Jun 1 11:00:54 Ubuntu-1404-trusty-64-minimal sshd\[29142\]: Failed password for root from 189.7.129.60 port 39652 ssh2 Jun 1 11:03:40 Ubuntu-1404-trusty-64-minimal sshd\[30473\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.7.129.60 user=root	2020-06-01 18:40:29
111.229.33.187	attack	Jun 1 09:00:24 vpn01 sshd[4790]: Failed password for root from 111.229.33.187 port 46680 ssh2 ...	2020-06-01 18:33:09
79.127.44.14	attack	Unauthorized connection attempt from IP address 79.127.44.14 on Port 445(SMB)	2020-06-01 18:20:21
58.19.0.3	attack	CPHulk brute force detection (a)	2020-06-01 18:08:12
14.240.157.101	attack	Unauthorized connection attempt from IP address 14.240.157.101 on Port 445(SMB)	2020-06-01 18:45:20
52.73.169.169	attack	UDP 52.73.169.169:59344 -> port 19, len 57	2020-06-01 18:29:22
176.157.134.217	attack	ssh brute force	2020-06-01 18:37:19
101.206.211.222	attackbots	Jun 1 07:56:38 piServer sshd[3255]: Failed password for root from 101.206.211.222 port 54528 ssh2 Jun 1 07:59:29 piServer sshd[3486]: Failed password for root from 101.206.211.222 port 39822 ssh2 ...	2020-06-01 18:20:06
149.126.97.26	attackspam	Unauthorized connection attempt from IP address 149.126.97.26 on Port 445(SMB)	2020-06-01 18:32:51
90.150.188.154	attackspambots	Unauthorized connection attempt from IP address 90.150.188.154 on Port 445(SMB)	2020-06-01 18:43:55
203.210.244.178	attack	Unauthorized connection attempt from IP address 203.210.244.178 on Port 445(SMB)	2020-06-01 18:10:25

Recently Reported IPs

65.145.231.225	52.94.204.89	102.132.246.179	211.20.154.217
218.98.40.146	77.52.180.138	120.36.181.42	121.165.243.22
193.187.172.193	112.254.41.124	125.94.214.136	147.106.51.34
2.129.127.89	85.204.246.178	84.190.49.32	135.177.57.20
99.54.87.249	236.168.214.45	219.191.61.251	227.123.84.213