106.12.114.173

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Dec 14 07:29:15 MK-Soft-VM5 sshd[10216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.173 Dec 14 07:29:17 MK-Soft-VM5 sshd[10216]: Failed password for invalid user aheston from 106.12.114.173 port 11612 ssh2 ...	2019-12-14 15:25:22
attack	Dec 11 20:22:49 php1 sshd\[12636\]: Invalid user all-telme from 106.12.114.173 Dec 11 20:22:49 php1 sshd\[12636\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.173 Dec 11 20:22:51 php1 sshd\[12636\]: Failed password for invalid user all-telme from 106.12.114.173 port 56597 ssh2 Dec 11 20:30:01 php1 sshd\[13425\]: Invalid user westad from 106.12.114.173 Dec 11 20:30:01 php1 sshd\[13425\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.173	2019-12-12 14:57:20
attack	Dec 11 05:52:57 firewall sshd[13795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.173 Dec 11 05:52:57 firewall sshd[13795]: Invalid user ftp from 106.12.114.173 Dec 11 05:53:00 firewall sshd[13795]: Failed password for invalid user ftp from 106.12.114.173 port 24594 ssh2 ...	2019-12-11 23:04:52
attackspam	F2B jail: sshd. Time: 2019-11-14 19:13:46, Reported by: VKReport	2019-11-15 02:18:46
attackspambots	Nov 5 15:41:47 bouncer sshd\[12199\]: Invalid user kriti from 106.12.114.173 port 51357 Nov 5 15:41:47 bouncer sshd\[12199\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.173 Nov 5 15:41:49 bouncer sshd\[12199\]: Failed password for invalid user kriti from 106.12.114.173 port 51357 ssh2 ...	2019-11-05 22:54:22
attackspambots	Oct 23 08:56:50 MK-Soft-VM7 sshd[5649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.173 Oct 23 08:56:52 MK-Soft-VM7 sshd[5649]: Failed password for invalid user tino from 106.12.114.173 port 60162 ssh2 ...	2019-10-23 17:44:04
attackspambots	2019-10-22T06:08:34.250602abusebot-3.cloudsearch.cf sshd\[26190\]: Invalid user txdtxd from 106.12.114.173 port 25798	2019-10-22 16:11:32
attackbotsspam	Oct 20 05:48:32 DAAP sshd[29540]: Invalid user mdmc from 106.12.114.173 port 10887 Oct 20 05:48:32 DAAP sshd[29540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.173 Oct 20 05:48:32 DAAP sshd[29540]: Invalid user mdmc from 106.12.114.173 port 10887 Oct 20 05:48:34 DAAP sshd[29540]: Failed password for invalid user mdmc from 106.12.114.173 port 10887 ssh2 ...	2019-10-20 17:42:54
attackspambots	Oct 7 00:22:43 vps01 sshd[4718]: Failed password for root from 106.12.114.173 port 47292 ssh2	2019-10-07 06:41:14
attackbotsspam	Oct 6 14:48:32 MK-Soft-VM7 sshd[25225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.173 Oct 6 14:48:34 MK-Soft-VM7 sshd[25225]: Failed password for invalid user Qwer!234 from 106.12.114.173 port 54232 ssh2 ...	2019-10-06 21:23:28
attackspam	ssh brute force	2019-09-30 15:20:21
attack	Sep 20 18:09:40 ny01 sshd[13898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.173 Sep 20 18:09:42 ny01 sshd[13898]: Failed password for invalid user goran from 106.12.114.173 port 42056 ssh2 Sep 20 18:14:32 ny01 sshd[14804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.173	2019-09-21 06:26:07
attackbotsspam	Sep 11 16:13:10 vps647732 sshd[31126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.173 Sep 11 16:13:12 vps647732 sshd[31126]: Failed password for invalid user qwerty from 106.12.114.173 port 57224 ssh2 ...	2019-09-11 22:14:26

Comments on same subnet:

IP	Type	Details	Datetime
106.12.114.101	attackspambots	SSHD brute force attack detected from [106.12.114.101]	2020-09-25 04:47:15
106.12.114.35	attackspambots	Jun 6 06:11:54 Host-KEWR-E sshd[1698]: Disconnected from invalid user root 106.12.114.35 port 60658 [preauth] ...	2020-06-06 20:36:28
106.12.114.35	attackbots	May 30 21:53:59 serwer sshd\[30153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35 user=root May 30 21:54:00 serwer sshd\[30153\]: Failed password for root from 106.12.114.35 port 40010 ssh2 May 30 21:58:56 serwer sshd\[30559\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35 user=root May 30 21:58:59 serwer sshd\[30559\]: Failed password for root from 106.12.114.35 port 43414 ssh2 May 30 22:01:19 serwer sshd\[30859\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35 user=root May 30 22:01:20 serwer sshd\[30859\]: Failed password for root from 106.12.114.35 port 46666 ssh2 May 30 22:03:36 serwer sshd\[31018\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35 user=root May 30 22:03:38 serwer sshd\[31018\]: Failed password for root from 106.12.114.35 port 498 ...	2020-06-01 21:51:38
106.12.114.35	attackspam	May 19 11:50:04 vps647732 sshd[8450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35 May 19 11:50:05 vps647732 sshd[8450]: Failed password for invalid user gnd from 106.12.114.35 port 41594 ssh2 ...	2020-05-20 01:09:34
106.12.114.35	attackbotsspam	Invalid user webmaster	2020-05-14 18:22:51
106.12.114.35	attack	May 11 03:53:22 *** sshd[17226]: Invalid user naveed from 106.12.114.35	2020-05-11 15:02:45
106.12.114.35	attackbots	May 5 07:25:23 lukav-desktop sshd\[20411\]: Invalid user software from 106.12.114.35 May 5 07:25:23 lukav-desktop sshd\[20411\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35 May 5 07:25:25 lukav-desktop sshd\[20411\]: Failed password for invalid user software from 106.12.114.35 port 47940 ssh2 May 5 07:28:14 lukav-desktop sshd\[22902\]: Invalid user admin from 106.12.114.35 May 5 07:28:14 lukav-desktop sshd\[22902\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35	2020-05-05 12:57:30
106.12.114.35	attackbots	Invalid user ramesh from 106.12.114.35 port 36760	2020-04-29 14:51:01
106.12.114.35	attackspam	20 attempts against mh-ssh on cloud	2020-04-19 06:27:01
106.12.114.35	attackspambots	Apr 17 21:33:17 eventyay sshd[30793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35 Apr 17 21:33:20 eventyay sshd[30793]: Failed password for invalid user firefart from 106.12.114.35 port 51132 ssh2 Apr 17 21:37:45 eventyay sshd[30887]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35 ...	2020-04-18 07:46:27
106.12.114.26	attackbots	Mar 12 13:20:52 meumeu sshd[27322]: Failed password for root from 106.12.114.26 port 44874 ssh2 Mar 12 13:23:34 meumeu sshd[27754]: Failed password for root from 106.12.114.26 port 50068 ssh2 ...	2020-03-13 05:06:33
106.12.114.26	attackspam	Mar 6 00:17:02 pkdns2 sshd\[62294\]: Invalid user git from 106.12.114.26Mar 6 00:17:04 pkdns2 sshd\[62294\]: Failed password for invalid user git from 106.12.114.26 port 60926 ssh2Mar 6 00:20:39 pkdns2 sshd\[62459\]: Invalid user ams from 106.12.114.26Mar 6 00:20:41 pkdns2 sshd\[62459\]: Failed password for invalid user ams from 106.12.114.26 port 58350 ssh2Mar 6 00:24:16 pkdns2 sshd\[62585\]: Invalid user tomcat from 106.12.114.26Mar 6 00:24:18 pkdns2 sshd\[62585\]: Failed password for invalid user tomcat from 106.12.114.26 port 55750 ssh2 ...	2020-03-06 06:48:16
106.12.114.26	attackspam	Feb 25 05:15:04 vps647732 sshd[31482]: Failed password for root from 106.12.114.26 port 60048 ssh2 ...	2020-02-25 12:41:36
106.12.114.26	attackbotsspam	Jan 3 03:34:33 hanapaa sshd\[30014\]: Invalid user test from 106.12.114.26 Jan 3 03:34:33 hanapaa sshd\[30014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.26 Jan 3 03:34:35 hanapaa sshd\[30014\]: Failed password for invalid user test from 106.12.114.26 port 55916 ssh2 Jan 3 03:39:21 hanapaa sshd\[30654\]: Invalid user qzz from 106.12.114.26 Jan 3 03:39:21 hanapaa sshd\[30654\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.26	2020-01-03 21:43:59
106.12.114.26	attackspambots	Dec 15 23:30:18 localhost sshd\[125365\]: Invalid user elissa from 106.12.114.26 port 57586 Dec 15 23:30:18 localhost sshd\[125365\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.26 Dec 15 23:30:20 localhost sshd\[125365\]: Failed password for invalid user elissa from 106.12.114.26 port 57586 ssh2 Dec 15 23:35:04 localhost sshd\[125499\]: Invalid user test from 106.12.114.26 port 45206 Dec 15 23:35:04 localhost sshd\[125499\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.26 ...	2019-12-16 08:19:16

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.114.173
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6295
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.114.173.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Sep 11 22:14:16 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 173.114.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 173.114.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
138.59.146.251	attackspam	From send-edital-1618-oaltouruguai.com.br-8@vendastop10.com.br Mon Sep 07 13:47:53 2020 Received: from mm146-251.vendastop10.com.br ([138.59.146.251]:46139)	2020-09-08 18:31:58
185.142.239.49	attackspambots	sshd: Failed password for .... from 185.142.239.49 port 53466 ssh2 (4 attempts)	2020-09-08 18:34:53
139.99.148.4	attack	139.99.148.4 has been banned for [WebApp Attack] ...	2020-09-08 18:12:42
84.108.185.0	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-08 18:11:41
94.102.56.216	attackspambots	UDP ports : 9136 / 9216 / 9221 / 9251 / 9500 / 9527 / 9728 / 9993 / 10009 / 10285 / 10633 / 11211 / 16464 / 16889 / 16991 / 18011 / 21234 / 24265 / 24292 / 27016 / 28007 / 28008 / 28025 / 28070 / 34096 / 36748 / 37087 / 37917 / 40515 / 40663 / 40673 / 40692 / 40738 / 40741 / 40748 / 40751 / 40752 / 40779 / 40783 / 40801 / 40803 / 40807 / 40816 / 40817 / 40826 / 40830 / 40832 / 40833 / 40836 / 40849 / 40860 / 40867 / 40870 / 40873 / 40874 / 40890 / 40906 / 40914 / 40927 / 40931 / 40947 / 40954 / 41007 / 41046 / 41047 / 41057 / 41083 / 41086 / 41087 / 41111 / 41114 / 41117 / 41119 / 41123 / 41141 / 41143 / 41151 / 41156 / 41157 / 41180 / 41181 / 41190 / 41197 / 41217	2020-09-08 18:38:50
45.64.237.125	attackbotsspam	Sep 8 07:18:58 gamehost-one sshd[7745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.64.237.125 Sep 8 07:19:00 gamehost-one sshd[7745]: Failed password for invalid user teamspeak from 45.64.237.125 port 34536 ssh2 Sep 8 07:30:36 gamehost-one sshd[8624]: Failed password for root from 45.64.237.125 port 49086 ssh2 ...	2020-09-08 18:40:55
5.188.86.178	attackbotsspam	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-08T07:54:18Z	2020-09-08 18:30:29
14.99.81.218	attackspambots	sshd: Failed password for .... from 14.99.81.218 port 16165 ssh2 (10 attempts)	2020-09-08 18:20:53
185.57.152.70	attackbotsspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-08 18:27:21
49.233.111.193	attackbotsspam	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-08 18:35:12
42.2.175.57	attack	5555/tcp [2020-09-07]1pkt	2020-09-08 18:15:44
52.251.95.38	attackbotsspam	Brute forcing email accounts	2020-09-08 18:14:44
45.125.44.209	attack	DATE:2020-09-07 18:47:03, IP:45.125.44.209, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-09-08 18:15:16
107.172.211.78	attackspam	2020-09-07 11:42:03.296187-0500 localhost smtpd[72242]: NOQUEUE: reject: RCPT from unknown[107.172.211.78]: 554 5.7.1 Service unavailable; Client host [107.172.211.78] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<00fd8916.asainprodate.co>	2020-09-08 18:24:43
140.143.0.121	attack	Sep 8 04:04:31 sxvn sshd[152857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.0.121	2020-09-08 18:32:21

Recently Reported IPs

78.140.221.186	77.239.90.217	61.224.67.158	173.73.186.130
60.14.236.243	37.114.180.61	32.27.27.4	194.210.81.132
148.72.40.96	159.65.218.8	121.19.101.84	213.8.10.51
70.222.70.24	98.41.55.209	178.166.4.210	54.87.141.180
93.90.147.104	52.80.96.153	132.154.52.42	165.30.67.225