106.12.105.104

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 106.12.105.104 to port 6379	2019-12-20 18:05:06

Comments on same subnet:

IP	Type	Details	Datetime
106.12.105.130	attack	Oct 13 04:30:10 icinga sshd[23130]: Failed password for root from 106.12.105.130 port 37780 ssh2 Oct 13 04:36:25 icinga sshd[32721]: Failed password for root from 106.12.105.130 port 49692 ssh2 ...	2020-10-13 14:12:41
106.12.105.130	attackspam	Oct 13 04:08:30 mx sshd[1404596]: Failed password for root from 106.12.105.130 port 40144 ssh2 Oct 13 04:12:08 mx sshd[1404724]: Invalid user bind from 106.12.105.130 port 42846 Oct 13 04:12:08 mx sshd[1404724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.105.130 Oct 13 04:12:08 mx sshd[1404724]: Invalid user bind from 106.12.105.130 port 42846 Oct 13 04:12:10 mx sshd[1404724]: Failed password for invalid user bind from 106.12.105.130 port 42846 ssh2 ...	2020-10-13 06:55:25
106.12.105.130	attackbots	(sshd) Failed SSH login from 106.12.105.130 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 1 12:20:40 jbs1 sshd[32029]: Invalid user dayz from 106.12.105.130 Oct 1 12:20:40 jbs1 sshd[32029]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.105.130 Oct 1 12:20:41 jbs1 sshd[32029]: Failed password for invalid user dayz from 106.12.105.130 port 60440 ssh2 Oct 1 12:27:16 jbs1 sshd[2313]: Invalid user rajesh from 106.12.105.130 Oct 1 12:27:16 jbs1 sshd[2313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.105.130	2020-10-02 02:49:22
106.12.105.130	attack	Oct 1 09:45:28 ift sshd\[32413\]: Failed password for root from 106.12.105.130 port 40840 ssh2Oct 1 09:49:45 ift sshd\[32827\]: Invalid user oracle from 106.12.105.130Oct 1 09:49:48 ift sshd\[32827\]: Failed password for invalid user oracle from 106.12.105.130 port 36666 ssh2Oct 1 09:53:52 ift sshd\[33333\]: Invalid user jose from 106.12.105.130Oct 1 09:53:54 ift sshd\[33333\]: Failed password for invalid user jose from 106.12.105.130 port 60726 ssh2 ...	2020-10-01 19:01:06
106.12.105.130	attackspambots	Sep 29 13:03:21 sshgateway sshd\[31120\]: Invalid user odoo from 106.12.105.130 Sep 29 13:03:21 sshgateway sshd\[31120\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.105.130 Sep 29 13:03:22 sshgateway sshd\[31120\]: Failed password for invalid user odoo from 106.12.105.130 port 38082 ssh2	2020-09-30 06:22:37
106.12.105.130	attack	Sep 29 13:03:21 sshgateway sshd\[31120\]: Invalid user odoo from 106.12.105.130 Sep 29 13:03:21 sshgateway sshd\[31120\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.105.130 Sep 29 13:03:22 sshgateway sshd\[31120\]: Failed password for invalid user odoo from 106.12.105.130 port 38082 ssh2	2020-09-29 22:36:14
106.12.105.130	attackspam	Sep 29 02:50:54 mx sshd[1040388]: Failed password for root from 106.12.105.130 port 46978 ssh2 Sep 29 02:53:10 mx sshd[1040421]: Invalid user simon from 106.12.105.130 port 56364 Sep 29 02:53:10 mx sshd[1040421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.105.130 Sep 29 02:53:10 mx sshd[1040421]: Invalid user simon from 106.12.105.130 port 56364 Sep 29 02:53:12 mx sshd[1040421]: Failed password for invalid user simon from 106.12.105.130 port 56364 ssh2 ...	2020-09-29 14:53:51
106.12.105.130	attackspambots	Sep 13 15:28:10 piServer sshd[13569]: Failed password for root from 106.12.105.130 port 49696 ssh2 Sep 13 15:33:31 piServer sshd[14113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.105.130 Sep 13 15:33:33 piServer sshd[14113]: Failed password for invalid user ricardo from 106.12.105.130 port 56210 ssh2 ...	2020-09-13 23:40:21
106.12.105.130	attack	Sep 13 01:58:48 buvik sshd[3829]: Failed password for root from 106.12.105.130 port 48404 ssh2 Sep 13 02:01:26 buvik sshd[4644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.105.130 user=root Sep 13 02:01:28 buvik sshd[4644]: Failed password for root from 106.12.105.130 port 59096 ssh2 ...	2020-09-13 15:32:43
106.12.105.130	attackspambots	Sep 13 00:57:31 buvik sshd[27267]: Failed password for invalid user admin from 106.12.105.130 port 46690 ssh2 Sep 13 01:00:00 buvik sshd[27496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.105.130 user=root Sep 13 01:00:01 buvik sshd[27496]: Failed password for root from 106.12.105.130 port 57344 ssh2 ...	2020-09-13 07:17:02
106.12.105.130	attackspambots	Invalid user dines from 106.12.105.130 port 46296	2020-09-06 00:51:02
106.12.105.130	attackspam	Invalid user dines from 106.12.105.130 port 46296	2020-09-05 16:20:50
106.12.105.130	attackspam	Automatic report BANNED IP	2020-09-05 08:59:08
106.12.105.130	attackspambots	Invalid user ccm from 106.12.105.130 port 42624	2020-08-27 21:16:28
106.12.105.130	attack	Aug 16 22:29:49 abendstille sshd\[14397\]: Invalid user marek from 106.12.105.130 Aug 16 22:29:49 abendstille sshd\[14397\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.105.130 Aug 16 22:29:52 abendstille sshd\[14397\]: Failed password for invalid user marek from 106.12.105.130 port 48014 ssh2 Aug 16 22:34:01 abendstille sshd\[18223\]: Invalid user gustavo from 106.12.105.130 Aug 16 22:34:01 abendstille sshd\[18223\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.105.130 ...	2020-08-17 05:02:54

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.105.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21909
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.105.104.			IN	A

;; AUTHORITY SECTION:
.			273	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121902 1800 900 604800 86400

;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 20 18:05:00 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 104.105.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 104.105.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
77.40.3.121	attackspambots	$f2bV_matches	2019-08-04 19:37:58
185.165.123.165	attackspambots	04-Aug-2019 12:59:12.166 client 185.165.123.165#63596 (.): query (cache) './NS/IN' denied 04-Aug-2019 12:59:12.244 client 185.165.123.165#43244 (.): query (cache) './NS/IN' denied 04-Aug-2019 12:59:12.263 client 185.165.123.165#38359 (.): query (cache) './NS/IN' denied ...	2019-08-04 19:06:21
200.107.154.47	attackspambots	Aug 4 10:44:57 amit sshd\[12733\]: Invalid user ofsaa from 200.107.154.47 Aug 4 10:44:57 amit sshd\[12733\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.107.154.47 Aug 4 10:44:58 amit sshd\[12733\]: Failed password for invalid user ofsaa from 200.107.154.47 port 18675 ssh2 ...	2019-08-04 18:46:47
128.199.249.8	attack	WordPress XMLRPC scan :: 128.199.249.8 0.360 BYPASS [04/Aug/2019:20:59:38 1000] [censored_1] "POST /xmlrpc.php HTTP/1.1" 503 19381 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-08-04 19:07:21
104.246.113.80	attack	Aug 4 11:01:33 localhost sshd\[46387\]: Invalid user spar from 104.246.113.80 port 52286 Aug 4 11:01:33 localhost sshd\[46387\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.246.113.80 Aug 4 11:01:36 localhost sshd\[46387\]: Failed password for invalid user spar from 104.246.113.80 port 52286 ssh2 Aug 4 11:05:51 localhost sshd\[46513\]: Invalid user yang from 104.246.113.80 port 46514 Aug 4 11:05:51 localhost sshd\[46513\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.246.113.80 ...	2019-08-04 19:17:49
185.176.27.26	attackspam	firewall-block, port(s): 25188/tcp	2019-08-04 19:38:28
138.255.148.5	attackbots	scan r	2019-08-04 18:57:34
104.238.116.94	attack	Jul 21 13:00:46 vps65 sshd\[7933\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.238.116.94 user=www-data Jul 21 13:00:48 vps65 sshd\[7933\]: Failed password for www-data from 104.238.116.94 port 57300 ssh2 ...	2019-08-04 19:23:26
60.191.23.27	attackspam	2019-08-04T10:59:02.267316abusebot-3.cloudsearch.cf sshd\[4914\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.191.23.27 user=root	2019-08-04 19:14:12
104.236.244.98	attack	Aug 4 10:14:52 xeon sshd[53990]: Failed password for invalid user test2 from 104.236.244.98 port 56524 ssh2	2019-08-04 18:51:18
187.181.65.60	attackbotsspam	Feb 23 16:38:25 motanud sshd\[7654\]: Invalid user ftpuser from 187.181.65.60 port 55966 Feb 23 16:38:25 motanud sshd\[7654\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.181.65.60 Feb 23 16:38:27 motanud sshd\[7654\]: Failed password for invalid user ftpuser from 187.181.65.60 port 55966 ssh2	2019-08-04 19:06:01
123.207.74.24	attackspambots	SSH Brute Force	2019-08-04 19:07:49
59.1.48.98	attackbotsspam	Aug 4 10:08:24 MK-Soft-VM6 sshd\[5371\]: Invalid user utente from 59.1.48.98 port 12914 Aug 4 10:08:24 MK-Soft-VM6 sshd\[5371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.1.48.98 Aug 4 10:08:27 MK-Soft-VM6 sshd\[5371\]: Failed password for invalid user utente from 59.1.48.98 port 12914 ssh2 ...	2019-08-04 18:57:00
82.64.15.106	attackspam	Jul 21 04:59:04 vps65 sshd\[539\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.15.106 Jul 21 04:59:04 vps65 sshd\[541\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.15.106 ...	2019-08-04 19:27:04
58.87.100.49	attack	Aug 4 05:46:10 tux-35-217 sshd\[28503\]: Invalid user hadoop from 58.87.100.49 port 44608 Aug 4 05:46:10 tux-35-217 sshd\[28503\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.100.49 Aug 4 05:46:12 tux-35-217 sshd\[28503\]: Failed password for invalid user hadoop from 58.87.100.49 port 44608 ssh2 Aug 4 05:48:39 tux-35-217 sshd\[28552\]: Invalid user oper from 58.87.100.49 port 40046 Aug 4 05:48:39 tux-35-217 sshd\[28552\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.100.49 ...	2019-08-04 18:53:30

Recently Reported IPs

167.28.43.202	22.229.82.161	113.172.5.207	18.132.152.25
187.162.91.169	88.3.14.101	197.46.63.164	118.69.186.86
176.113.74.19	235.37.203.12	2.50.141.189	60.213.73.20
222.254.28.131	2408:8249:3882:328:eca7:d4a7:75db:4f8c	188.254.92.218	77.49.234.126
40.92.64.100	40.92.20.63	171.104.169.71	231.24.224.106