106.12.114.117

Basic Info

City: unknown

Region: Beijing

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: Beijing Baidu Netcom Science and Technology Co., Ltd.

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Nov 5 01:54:07 MK-Soft-Root2 sshd[3015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.117 Nov 5 01:54:09 MK-Soft-Root2 sshd[3015]: Failed password for invalid user applmgr from 106.12.114.117 port 49480 ssh2 ...	2019-11-05 09:04:48
attack	2019-09-28T06:13:46.911496enmeeting.mahidol.ac.th sshd\[14574\]: User root from 106.12.114.117 not allowed because not listed in AllowUsers 2019-09-28T06:13:47.037999enmeeting.mahidol.ac.th sshd\[14574\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.117 user=root 2019-09-28T06:13:49.415706enmeeting.mahidol.ac.th sshd\[14574\]: Failed password for invalid user root from 106.12.114.117 port 47718 ssh2 ...	2019-09-28 07:38:58
attackspambots	Sep 19 17:02:28 ny01 sshd[1258]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.117 Sep 19 17:02:30 ny01 sshd[1258]: Failed password for invalid user admin from 106.12.114.117 port 38742 ssh2 Sep 19 17:06:04 ny01 sshd[1941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.117	2019-09-20 05:25:35
attackspambots	Aug 27 21:55:37 eventyay sshd[3408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.117 Aug 27 21:55:39 eventyay sshd[3408]: Failed password for invalid user admin from 106.12.114.117 port 53244 ssh2 Aug 27 22:00:27 eventyay sshd[3471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.117 ...	2019-08-28 04:09:23
attackspam	Aug 26 06:28:18 MK-Soft-VM7 sshd\[20318\]: Invalid user bunny from 106.12.114.117 port 34952 Aug 26 06:28:18 MK-Soft-VM7 sshd\[20318\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.117 Aug 26 06:28:20 MK-Soft-VM7 sshd\[20318\]: Failed password for invalid user bunny from 106.12.114.117 port 34952 ssh2 ...	2019-08-26 15:07:13
attackspam	Aug 10 04:33:08 debian sshd\[25349\]: Invalid user huai from 106.12.114.117 port 35230 Aug 10 04:33:08 debian sshd\[25349\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.117 ...	2019-08-10 11:36:51

Comments on same subnet:

IP	Type	Details	Datetime
106.12.114.101	attackspambots	SSHD brute force attack detected from [106.12.114.101]	2020-09-25 04:47:15
106.12.114.35	attackspambots	Jun 6 06:11:54 Host-KEWR-E sshd[1698]: Disconnected from invalid user root 106.12.114.35 port 60658 [preauth] ...	2020-06-06 20:36:28
106.12.114.35	attackbots	May 30 21:53:59 serwer sshd\[30153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35 user=root May 30 21:54:00 serwer sshd\[30153\]: Failed password for root from 106.12.114.35 port 40010 ssh2 May 30 21:58:56 serwer sshd\[30559\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35 user=root May 30 21:58:59 serwer sshd\[30559\]: Failed password for root from 106.12.114.35 port 43414 ssh2 May 30 22:01:19 serwer sshd\[30859\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35 user=root May 30 22:01:20 serwer sshd\[30859\]: Failed password for root from 106.12.114.35 port 46666 ssh2 May 30 22:03:36 serwer sshd\[31018\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35 user=root May 30 22:03:38 serwer sshd\[31018\]: Failed password for root from 106.12.114.35 port 498 ...	2020-06-01 21:51:38
106.12.114.35	attackspam	May 19 11:50:04 vps647732 sshd[8450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35 May 19 11:50:05 vps647732 sshd[8450]: Failed password for invalid user gnd from 106.12.114.35 port 41594 ssh2 ...	2020-05-20 01:09:34
106.12.114.35	attackbotsspam	Invalid user webmaster	2020-05-14 18:22:51
106.12.114.35	attack	May 11 03:53:22 *** sshd[17226]: Invalid user naveed from 106.12.114.35	2020-05-11 15:02:45
106.12.114.35	attackbots	May 5 07:25:23 lukav-desktop sshd\[20411\]: Invalid user software from 106.12.114.35 May 5 07:25:23 lukav-desktop sshd\[20411\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35 May 5 07:25:25 lukav-desktop sshd\[20411\]: Failed password for invalid user software from 106.12.114.35 port 47940 ssh2 May 5 07:28:14 lukav-desktop sshd\[22902\]: Invalid user admin from 106.12.114.35 May 5 07:28:14 lukav-desktop sshd\[22902\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35	2020-05-05 12:57:30
106.12.114.35	attackbots	Invalid user ramesh from 106.12.114.35 port 36760	2020-04-29 14:51:01
106.12.114.35	attackspam	20 attempts against mh-ssh on cloud	2020-04-19 06:27:01
106.12.114.35	attackspambots	Apr 17 21:33:17 eventyay sshd[30793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35 Apr 17 21:33:20 eventyay sshd[30793]: Failed password for invalid user firefart from 106.12.114.35 port 51132 ssh2 Apr 17 21:37:45 eventyay sshd[30887]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35 ...	2020-04-18 07:46:27
106.12.114.26	attackbots	Mar 12 13:20:52 meumeu sshd[27322]: Failed password for root from 106.12.114.26 port 44874 ssh2 Mar 12 13:23:34 meumeu sshd[27754]: Failed password for root from 106.12.114.26 port 50068 ssh2 ...	2020-03-13 05:06:33
106.12.114.26	attackspam	Mar 6 00:17:02 pkdns2 sshd\[62294\]: Invalid user git from 106.12.114.26Mar 6 00:17:04 pkdns2 sshd\[62294\]: Failed password for invalid user git from 106.12.114.26 port 60926 ssh2Mar 6 00:20:39 pkdns2 sshd\[62459\]: Invalid user ams from 106.12.114.26Mar 6 00:20:41 pkdns2 sshd\[62459\]: Failed password for invalid user ams from 106.12.114.26 port 58350 ssh2Mar 6 00:24:16 pkdns2 sshd\[62585\]: Invalid user tomcat from 106.12.114.26Mar 6 00:24:18 pkdns2 sshd\[62585\]: Failed password for invalid user tomcat from 106.12.114.26 port 55750 ssh2 ...	2020-03-06 06:48:16
106.12.114.26	attackspam	Feb 25 05:15:04 vps647732 sshd[31482]: Failed password for root from 106.12.114.26 port 60048 ssh2 ...	2020-02-25 12:41:36
106.12.114.26	attackbotsspam	Jan 3 03:34:33 hanapaa sshd\[30014\]: Invalid user test from 106.12.114.26 Jan 3 03:34:33 hanapaa sshd\[30014\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.26 Jan 3 03:34:35 hanapaa sshd\[30014\]: Failed password for invalid user test from 106.12.114.26 port 55916 ssh2 Jan 3 03:39:21 hanapaa sshd\[30654\]: Invalid user qzz from 106.12.114.26 Jan 3 03:39:21 hanapaa sshd\[30654\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.26	2020-01-03 21:43:59
106.12.114.26	attackspambots	Dec 15 23:30:18 localhost sshd\[125365\]: Invalid user elissa from 106.12.114.26 port 57586 Dec 15 23:30:18 localhost sshd\[125365\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.26 Dec 15 23:30:20 localhost sshd\[125365\]: Failed password for invalid user elissa from 106.12.114.26 port 57586 ssh2 Dec 15 23:35:04 localhost sshd\[125499\]: Invalid user test from 106.12.114.26 port 45206 Dec 15 23:35:04 localhost sshd\[125499\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.26 ...	2019-12-16 08:19:16

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.114.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47081
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.114.117.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 19 10:31:58 +08 2019
;; MSG SIZE  rcvd: 118

Host info

Host 117.114.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 117.114.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
84.254.28.47	attackbots	Sep 22 00:17:36 lnxweb62 sshd[28206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.254.28.47 Sep 22 00:17:36 lnxweb62 sshd[28206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.254.28.47	2019-09-22 06:50:56
180.44.128.187	attackspambots	Unauthorised access (Sep 22) SRC=180.44.128.187 LEN=40 TOS=0x10 PREC=0x40 TTL=47 ID=7587 TCP DPT=8080 WINDOW=54442 SYN Unauthorised access (Sep 21) SRC=180.44.128.187 LEN=40 TOS=0x10 PREC=0x40 TTL=47 ID=39724 TCP DPT=8080 WINDOW=54442 SYN	2019-09-22 06:44:18
49.231.174.227	attackspambots	2019-09-21T22:36:01.630850abusebot-3.cloudsearch.cf sshd\[2752\]: Invalid user testtest from 49.231.174.227 port 33501	2019-09-22 06:43:53
158.69.113.76	attackspam	detected by Fail2Ban	2019-09-22 06:46:15
106.245.255.19	attackspambots	Sep 21 12:44:30 auw2 sshd\[18947\]: Invalid user lava2 from 106.245.255.19 Sep 21 12:44:30 auw2 sshd\[18947\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.245.255.19 Sep 21 12:44:32 auw2 sshd\[18947\]: Failed password for invalid user lava2 from 106.245.255.19 port 52239 ssh2 Sep 21 12:49:19 auw2 sshd\[19322\]: Invalid user test123321 from 106.245.255.19 Sep 21 12:49:19 auw2 sshd\[19322\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.245.255.19	2019-09-22 06:54:18
222.186.180.21	attack	2019-09-22T05:42:28.618981enmeeting.mahidol.ac.th sshd\[10430\]: User root from 222.186.180.21 not allowed because not listed in AllowUsers 2019-09-22T05:42:29.878553enmeeting.mahidol.ac.th sshd\[10430\]: Failed none for invalid user root from 222.186.180.21 port 59010 ssh2 2019-09-22T05:42:31.246323enmeeting.mahidol.ac.th sshd\[10430\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.21 user=root ...	2019-09-22 06:45:51
5.39.93.158	attack	Sep 22 03:04:00 areeb-Workstation sshd[18140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.93.158 Sep 22 03:04:02 areeb-Workstation sshd[18140]: Failed password for invalid user reddy from 5.39.93.158 port 48824 ssh2 ...	2019-09-22 07:01:08
42.87.120.179	attackbots	Chat Spam	2019-09-22 06:35:48
165.22.182.168	attackbotsspam	Sep 21 23:34:32 pornomens sshd\[20175\]: Invalid user user from 165.22.182.168 port 33712 Sep 21 23:34:32 pornomens sshd\[20175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.182.168 Sep 21 23:34:34 pornomens sshd\[20175\]: Failed password for invalid user user from 165.22.182.168 port 33712 ssh2 ...	2019-09-22 06:41:41
134.73.76.41	attackspam	Spam mails sent to address hacked/leaked from Nexus Mods in July 2013	2019-09-22 06:36:34
198.108.67.82	attack	09/21/2019-17:34:08.077348 198.108.67.82 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-09-22 06:58:02
220.95.125.187	attackbotsspam	DATE:2019-09-21 23:24:39, IP:220.95.125.187, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc-bis)	2019-09-22 07:10:54
178.32.215.89	attackspam	Sep 22 00:06:17 mail sshd[8589]: Invalid user jenkins from 178.32.215.89 Sep 22 00:06:17 mail sshd[8589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.32.215.89 Sep 22 00:06:17 mail sshd[8589]: Invalid user jenkins from 178.32.215.89 Sep 22 00:06:18 mail sshd[8589]: Failed password for invalid user jenkins from 178.32.215.89 port 60826 ssh2 Sep 22 00:21:43 mail sshd[10464]: Invalid user kevinf from 178.32.215.89 ...	2019-09-22 07:09:08
54.38.33.178	attackspam	$f2bV_matches	2019-09-22 06:35:18
121.137.106.165	attackbots	Sep 22 00:27:00 vps691689 sshd[29955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.137.106.165 Sep 22 00:27:03 vps691689 sshd[29955]: Failed password for invalid user oms from 121.137.106.165 port 38032 ssh2 ...	2019-09-22 06:45:25

Recently Reported IPs

178.128.247.3	124.158.107.8	211.210.32.165	188.166.188.97
183.166.87.87	150.95.111.53	54.233.153.208	190.100.17.168
177.13.123.197	113.240.251.3	188.17.110.45	162.243.135.226
103.56.69.14	115.55.71.31	124.193.176.186	113.161.25.30
51.38.133.245	193.107.247.2	125.161.92.224	186.103.138.178