106.12.112.120

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Repeated brute force against a port	2020-10-08 00:05:44
attackspam	Repeated brute force against a port	2020-10-07 16:12:02
attackbotsspam	Aug 20 07:22:49 mail sshd\[43028\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.120 user=root ...	2020-08-20 19:27:14
attackspam	Aug 18 23:06:33 vps-51d81928 sshd[722562]: Invalid user odoo8 from 106.12.112.120 port 41384 Aug 18 23:06:33 vps-51d81928 sshd[722562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.120 Aug 18 23:06:33 vps-51d81928 sshd[722562]: Invalid user odoo8 from 106.12.112.120 port 41384 Aug 18 23:06:35 vps-51d81928 sshd[722562]: Failed password for invalid user odoo8 from 106.12.112.120 port 41384 ssh2 Aug 18 23:10:16 vps-51d81928 sshd[722688]: Invalid user testuser from 106.12.112.120 port 38634 ...	2020-08-19 07:13:54
attackbotsspam	2020-07-31T06:42[Censored Hostname] sshd[27312]: Failed password for root from 106.12.112.120 port 45968 ssh2 2020-07-31T06:47[Censored Hostname] sshd[30151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.120 user=root 2020-07-31T06:47[Censored Hostname] sshd[30151]: Failed password for root from 106.12.112.120 port 44120 ssh2[...]	2020-07-31 13:14:30
attackbots	Jul 29 14:28:21 ip106 sshd[2579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.120 Jul 29 14:28:23 ip106 sshd[2579]: Failed password for invalid user wanyao from 106.12.112.120 port 55544 ssh2 ...	2020-07-29 20:50:12
attackspam	Jul 3 23:41:23 lnxweb61 sshd[1979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.120 Jul 3 23:41:23 lnxweb61 sshd[1979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.120	2020-07-04 06:02:20
attack	Jun 27 13:42:14 mail sshd[31312]: Failed password for invalid user transfer from 106.12.112.120 port 47368 ssh2 ...	2020-06-29 04:46:43

Comments on same subnet:

IP	Type	Details	Datetime
106.12.112.49	attackspambots	TCP (SYN) 106.12.112.49:48405 -> port 32198, len 44	2020-06-07 17:34:39
106.12.112.49	attack	TCP (SYN) 106.12.112.49:56848 -> port 5453, len 44	2020-06-04 18:34:05
106.12.112.62	attackbots	2020-05-13T05:43:17.492647shield sshd\[19444\]: Invalid user postgres from 106.12.112.62 port 53398 2020-05-13T05:43:17.500866shield sshd\[19444\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.62 2020-05-13T05:43:19.708856shield sshd\[19444\]: Failed password for invalid user postgres from 106.12.112.62 port 53398 ssh2 2020-05-13T05:47:05.538654shield sshd\[20372\]: Invalid user zhuhy from 106.12.112.62 port 42592 2020-05-13T05:47:05.547132shield sshd\[20372\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.62	2020-05-13 13:52:52
106.12.112.49	attackspambots	2020-04-10T12:08:35.078540shield sshd\[28228\]: Invalid user sinusbot1 from 106.12.112.49 port 53486 2020-04-10T12:08:35.082218shield sshd\[28228\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.49 2020-04-10T12:08:37.220294shield sshd\[28228\]: Failed password for invalid user sinusbot1 from 106.12.112.49 port 53486 ssh2 2020-04-10T12:10:24.721972shield sshd\[28491\]: Invalid user admin from 106.12.112.49 port 48468 2020-04-10T12:10:24.724540shield sshd\[28491\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.49	2020-04-10 22:00:20
106.12.112.49	attackspam	Mar 30 06:25:18 haigwepa sshd[6433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.49 Mar 30 06:25:20 haigwepa sshd[6433]: Failed password for invalid user deborah from 106.12.112.49 port 54494 ssh2 ...	2020-03-30 14:35:20
106.12.112.49	attackbotsspam	(sshd) Failed SSH login from 106.12.112.49 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 28 13:02:29 elude sshd[2727]: Invalid user astral from 106.12.112.49 port 48896 Mar 28 13:02:31 elude sshd[2727]: Failed password for invalid user astral from 106.12.112.49 port 48896 ssh2 Mar 28 13:17:46 elude sshd[3690]: Invalid user opg from 106.12.112.49 port 39612 Mar 28 13:17:48 elude sshd[3690]: Failed password for invalid user opg from 106.12.112.49 port 39612 ssh2 Mar 28 13:20:26 elude sshd[3841]: Invalid user jqt from 106.12.112.49 port 41658	2020-03-28 20:24:53
106.12.112.49	attackbotsspam	Mar 25 05:31:46 XXX sshd[51087]: Invalid user cloudadmin from 106.12.112.49 port 47498	2020-03-26 09:05:38
106.12.112.49	attackspam	Mar 21 04:42:24 vps sshd[15225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.49 Mar 21 04:42:27 vps sshd[15225]: Failed password for invalid user jacey from 106.12.112.49 port 48774 ssh2 Mar 21 04:52:44 vps sshd[15739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.49 ...	2020-03-21 14:17:07
106.12.112.49	attackbots	2020-03-20T22:47:11.709929shield sshd\[1269\]: Invalid user tq from 106.12.112.49 port 53934 2020-03-20T22:47:11.714878shield sshd\[1269\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.49 2020-03-20T22:47:14.452325shield sshd\[1269\]: Failed password for invalid user tq from 106.12.112.49 port 53934 ssh2 2020-03-20T22:49:36.894385shield sshd\[1809\]: Invalid user email from 106.12.112.49 port 36362 2020-03-20T22:49:36.902206shield sshd\[1809\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.49	2020-03-21 09:52:44
106.12.112.49	attackspambots	Unauthorized connection attempt detected from IP address 106.12.112.49 to port 2220 [J]	2020-02-02 09:42:00
106.12.112.49	attackspam	Feb 1 14:43:31 vpn01 sshd[14309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.49 Feb 1 14:43:32 vpn01 sshd[14309]: Failed password for invalid user ftpuser from 106.12.112.49 port 41088 ssh2 ...	2020-02-02 02:24:08
106.12.112.49	attackbots	Jan 30 04:07:41 eddieflores sshd\[11212\]: Invalid user laranya from 106.12.112.49 Jan 30 04:07:41 eddieflores sshd\[11212\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.49 Jan 30 04:07:43 eddieflores sshd\[11212\]: Failed password for invalid user laranya from 106.12.112.49 port 46072 ssh2 Jan 30 04:11:54 eddieflores sshd\[11871\]: Invalid user radhika from 106.12.112.49 Jan 30 04:11:54 eddieflores sshd\[11871\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.49	2020-01-30 22:27:52
106.12.112.49	attack	(sshd) Failed SSH login from 106.12.112.49 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jan 7 19:34:57 blur sshd[30122]: Invalid user tomcat from 106.12.112.49 port 40614 Jan 7 19:34:59 blur sshd[30122]: Failed password for invalid user tomcat from 106.12.112.49 port 40614 ssh2 Jan 7 19:45:53 blur sshd[32189]: Invalid user fop2 from 106.12.112.49 port 45724 Jan 7 19:45:55 blur sshd[32189]: Failed password for invalid user fop2 from 106.12.112.49 port 45724 ssh2 Jan 7 19:48:42 blur sshd[32656]: Invalid user week from 106.12.112.49 port 42258	2020-01-08 03:14:31
106.12.112.49	attackbotsspam	Dec 28 07:00:38 ArkNodeAT sshd\[23107\]: Invalid user heier from 106.12.112.49 Dec 28 07:00:38 ArkNodeAT sshd\[23107\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.49 Dec 28 07:00:40 ArkNodeAT sshd\[23107\]: Failed password for invalid user heier from 106.12.112.49 port 57924 ssh2	2019-12-28 14:25:41
106.12.112.49	attack	Dec 18 19:31:09 linuxvps sshd\[33061\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.49 user=root Dec 18 19:31:12 linuxvps sshd\[33061\]: Failed password for root from 106.12.112.49 port 49332 ssh2 Dec 18 19:35:55 linuxvps sshd\[36356\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.49 user=root Dec 18 19:35:56 linuxvps sshd\[36356\]: Failed password for root from 106.12.112.49 port 41752 ssh2 Dec 18 19:40:31 linuxvps sshd\[39473\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.49 user=news	2019-12-19 08:42:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.112.120
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27787
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.112.120.			IN	A

;; AUTHORITY SECTION:
.			303	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062801 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 29 04:46:39 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 120.112.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 120.112.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
145.255.31.52	attack	2020-03-08T07:57:46.341339 sshd[23033]: Invalid user informix from 145.255.31.52 port 57643 2020-03-08T07:57:46.354303 sshd[23033]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.255.31.52 2020-03-08T07:57:46.341339 sshd[23033]: Invalid user informix from 145.255.31.52 port 57643 2020-03-08T07:57:48.207318 sshd[23033]: Failed password for invalid user informix from 145.255.31.52 port 57643 ssh2 ...	2020-03-08 15:19:03
157.230.244.13	attackbotsspam	Mar 7 22:50:10 dallas01 sshd[6305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.244.13 Mar 7 22:50:12 dallas01 sshd[6305]: Failed password for invalid user server from 157.230.244.13 port 50416 ssh2 Mar 7 22:56:48 dallas01 sshd[7119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.244.13	2020-03-08 14:53:21
125.214.48.21	attackspambots	Mar 8 04:57:00 marvibiene sshd[38198]: Invalid user admin from 125.214.48.21 port 22652 Mar 8 04:57:00 marvibiene sshd[38198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.214.48.21 Mar 8 04:57:00 marvibiene sshd[38198]: Invalid user admin from 125.214.48.21 port 22652 Mar 8 04:57:02 marvibiene sshd[38198]: Failed password for invalid user admin from 125.214.48.21 port 22652 ssh2 ...	2020-03-08 15:04:26
58.221.204.114	attackspam	W 5701,/var/log/auth.log,-,-	2020-03-08 15:00:16
106.140.166.86	attackbotsspam	scan z	2020-03-08 15:16:02
123.206.190.82	attack	Mar 8 06:49:26 lnxded63 sshd[12164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.190.82	2020-03-08 14:45:35
50.67.42.6	attackbotsspam	Honeypot attack, port: 81, PTR: S0106087e64010c5e.vs.shawcable.net.	2020-03-08 14:41:49
211.5.228.19	attackbotsspam	Mar 8 07:59:59 serwer sshd\[18464\]: Invalid user sdtd from 211.5.228.19 port 55333 Mar 8 07:59:59 serwer sshd\[18464\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.5.228.19 Mar 8 08:00:02 serwer sshd\[18464\]: Failed password for invalid user sdtd from 211.5.228.19 port 55333 ssh2 ...	2020-03-08 15:07:54
178.136.235.119	attack	Mar 7 23:32:03 lanister sshd[23573]: Failed password for invalid user usertest from 178.136.235.119 port 44264 ssh2 Mar 7 23:57:02 lanister sshd[23867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.136.235.119 user=root Mar 7 23:57:05 lanister sshd[23867]: Failed password for root from 178.136.235.119 port 42139 ssh2 Mar 8 00:04:38 lanister sshd[23928]: Invalid user tssrv from 178.136.235.119	2020-03-08 14:52:12
24.50.225.179	attackspam	Automatic report - Port Scan Attack	2020-03-08 15:15:06
119.28.73.77	attack	Mar 7 18:51:27 hpm sshd\[21683\]: Invalid user 123Qwerty!@\# from 119.28.73.77 Mar 7 18:51:27 hpm sshd\[21683\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.73.77 Mar 7 18:51:28 hpm sshd\[21683\]: Failed password for invalid user 123Qwerty!@\# from 119.28.73.77 port 34288 ssh2 Mar 7 18:57:05 hpm sshd\[22063\]: Invalid user P@123456 from 119.28.73.77 Mar 7 18:57:05 hpm sshd\[22063\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.73.77	2020-03-08 14:56:52
15.185.99.174	attackspam	Mar 8 00:16:30 NPSTNNYC01T sshd[25973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=15.185.99.174 Mar 8 00:16:32 NPSTNNYC01T sshd[25973]: Failed password for invalid user ask from 15.185.99.174 port 47962 ssh2 Mar 8 00:26:29 NPSTNNYC01T sshd[26639]: Failed password for speech-dispatcher from 15.185.99.174 port 56754 ssh2 ...	2020-03-08 15:02:17
142.44.251.207	attackspambots	Mar 8 01:56:53 NPSTNNYC01T sshd[32752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.251.207 Mar 8 01:56:55 NPSTNNYC01T sshd[32752]: Failed password for invalid user xiaorunqiu from 142.44.251.207 port 60418 ssh2 Mar 8 03:00:25 NPSTNNYC01T sshd[474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.251.207 ...	2020-03-08 15:08:10
181.49.153.74	attack	fail2ban	2020-03-08 14:51:48
95.9.248.2	attack	firewall-block, port(s): 23/tcp	2020-03-08 15:04:52

Recently Reported IPs

192.241.221.74	188.4.103.100	49.74.98.245	188.19.182.160
142.93.126.181	74.123.248.222	68.183.177.189	51.75.162.236
83.56.224.79	167.27.146.198	168.228.69.42	96.116.27.79
139.16.233.227	13.245.191.232	53.16.101.154	39.38.78.179
80.82.65.242	224.29.120.55	1.0.143.71	192.241.228.107