106.12.122.118

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	CN China - Failures: 5 smtpauth	2020-02-20 23:20:42

Comments on same subnet:

IP	Type	Details	Datetime
106.12.122.92	attack	Invalid user myroot from 106.12.122.92 port 24528	2020-09-20 23:28:57
106.12.122.92	attackspam	SSH Invalid Login	2020-09-20 15:18:10
106.12.122.92	attack	SSH Invalid Login	2020-09-20 07:14:31
106.12.122.92	attackbots	Invalid user packet from 106.12.122.92 port 19280	2020-08-31 17:48:55
106.12.122.138	attack	Aug 27 23:45:06 ip106 sshd[709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.122.138 Aug 27 23:45:08 ip106 sshd[709]: Failed password for invalid user db2fenc1 from 106.12.122.138 port 49722 ssh2 ...	2020-08-28 06:39:35
106.12.122.138	attackspambots	Aug 6 07:39:45 sshgateway sshd\[24007\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.122.138 user=root Aug 6 07:39:47 sshgateway sshd\[24007\]: Failed password for root from 106.12.122.138 port 36562 ssh2 Aug 6 07:44:23 sshgateway sshd\[24026\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.122.138 user=root	2020-08-06 16:17:54
106.12.122.138	attackspam	Failed password for invalid user prometheus from 106.12.122.138 port 44150 ssh2	2020-07-09 17:32:39
106.12.122.138	attackspambots	Invalid user yangsong from 106.12.122.138 port 52076	2020-06-13 15:42:14
106.12.122.138	attackbotsspam	2020-06-08T12:00:44.663320dmca.cloudsearch.cf sshd[10282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.122.138 user=root 2020-06-08T12:00:46.171804dmca.cloudsearch.cf sshd[10282]: Failed password for root from 106.12.122.138 port 57638 ssh2 2020-06-08T12:04:24.421521dmca.cloudsearch.cf sshd[10618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.122.138 user=root 2020-06-08T12:04:26.798184dmca.cloudsearch.cf sshd[10618]: Failed password for root from 106.12.122.138 port 47928 ssh2 2020-06-08T12:06:04.143017dmca.cloudsearch.cf sshd[10781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.122.138 user=root 2020-06-08T12:06:05.581225dmca.cloudsearch.cf sshd[10781]: Failed password for root from 106.12.122.138 port 38108 ssh2 2020-06-08T12:07:37.640389dmca.cloudsearch.cf sshd[11057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eu ...	2020-06-08 22:20:24
106.12.122.138	attackspambots	Invalid user ctt from 106.12.122.138 port 59924	2020-05-20 04:05:16
106.12.122.138	attack	2020-05-16T05:08:34.794226afi-git.jinr.ru sshd[22793]: Invalid user man1 from 106.12.122.138 port 38000 2020-05-16T05:08:34.797398afi-git.jinr.ru sshd[22793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.122.138 2020-05-16T05:08:34.794226afi-git.jinr.ru sshd[22793]: Invalid user man1 from 106.12.122.138 port 38000 2020-05-16T05:08:37.039813afi-git.jinr.ru sshd[22793]: Failed password for invalid user man1 from 106.12.122.138 port 38000 ssh2 2020-05-16T05:13:16.091477afi-git.jinr.ru sshd[24564]: Invalid user dasusrl from 106.12.122.138 port 36954 ...	2020-05-16 17:53:45
106.12.122.138	attackbots	$f2bV_matches	2020-04-05 15:21:00
106.12.122.138	attackbots	Mar 26 04:35:21 itv-usvr-02 sshd[29767]: Invalid user scottm from 106.12.122.138 port 38124 Mar 26 04:35:21 itv-usvr-02 sshd[29767]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.122.138 Mar 26 04:35:21 itv-usvr-02 sshd[29767]: Invalid user scottm from 106.12.122.138 port 38124 Mar 26 04:35:23 itv-usvr-02 sshd[29767]: Failed password for invalid user scottm from 106.12.122.138 port 38124 ssh2 Mar 26 04:42:04 itv-usvr-02 sshd[30047]: Invalid user tecnici from 106.12.122.138 port 46588	2020-03-26 08:06:30
106.12.122.138	attackspambots	Tried sshing with brute force.	2020-03-23 03:02:17
106.12.122.138	attack	Jan 11 12:43:35 pi sshd[29277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.122.138 Jan 11 12:43:37 pi sshd[29277]: Failed password for invalid user buh from 106.12.122.138 port 48938 ssh2	2020-03-20 03:32:49

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.122.118
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3590
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.122.118.			IN	A

;; AUTHORITY SECTION:
.			399	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022001 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 23:20:38 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 118.122.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 118.122.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.76.100.33	attack	Invalid user uwp from 180.76.100.33 port 34724	2020-02-15 10:47:39
187.19.107.20	attackspam	Honeypot attack, port: 445, PTR: 187-19-107-20.users.certto.com.br.	2020-02-15 10:42:16
111.40.50.116	attackspam	Automatic report - Banned IP Access	2020-02-15 13:07:56
85.93.20.149	attackspam	200214 23:42:03 [Warning] Access denied for user 'root'@'85.93.20.149' (using password: YES) 200214 23:42:05 [Warning] Access denied for user 'root'@'85.93.20.149' (using password: YES) 200214 23:42:06 [Warning] Access denied for user 'root'@'85.93.20.149' (using password: YES) ...	2020-02-15 13:16:54
197.245.61.164	attackspam	Honeypot attack, port: 445, PTR: dsl-197-245-61-164.voxdsl.co.za.	2020-02-15 11:06:43
171.96.30.14	attack	Unauthorised access (Feb 15) SRC=171.96.30.14 LEN=44 PREC=0x20 TTL=49 ID=14524 TCP DPT=23 WINDOW=9563 SYN Unauthorised access (Feb 14) SRC=171.96.30.14 LEN=44 PREC=0x20 TTL=49 ID=34392 TCP DPT=23 WINDOW=57644 SYN	2020-02-15 10:54:39
213.136.72.221	attackspam	Feb 14 19:01:48 localhost postfix/smtpd[1923149]: disconnect from vmi314533.contaboserver.net[213.136.72.221] ehlo=1 quhostname=1 commands=2 Feb 14 19:01:49 localhost postfix/smtpd[1930334]: disconnect from vmi314533.contaboserver.net[213.136.72.221] ehlo=1 quhostname=1 commands=2 Feb 14 19:01:51 localhost postfix/smtpd[1930334]: disconnect from vmi314533.contaboserver.net[213.136.72.221] ehlo=1 quhostname=1 commands=2 Feb 14 19:01:52 localhost postfix/smtpd[1930334]: disconnect from vmi314533.contaboserver.net[213.136.72.221] ehlo=1 quhostname=1 commands=2 Feb 14 19:01:53 localhost postfix/smtpd[1930334]: disconnect from vmi314533.contaboserver.net[213.136.72.221] ehlo=1 quhostname=1 commands=2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=213.136.72.221	2020-02-15 10:47:00
91.212.150.151	attackspambots	fraudulent SSH attempt	2020-02-15 10:50:57
180.123.42.189	attack	Feb 15 05:56:04 grey postfix/smtpd\[19852\]: NOQUEUE: reject: RCPT from unknown\[180.123.42.189\]: 554 5.7.1 Service unavailable\; Client host \[180.123.42.189\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[180.123.42.189\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-15 13:17:53
222.186.175.216	attack	Feb 15 03:47:32 dedicated sshd[28626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.216 user=root Feb 15 03:47:34 dedicated sshd[28626]: Failed password for root from 222.186.175.216 port 59792 ssh2	2020-02-15 10:55:43
106.13.43.117	attackspam	Feb 15 07:39:24 server sshd\[23004\]: Invalid user aloko from 106.13.43.117 Feb 15 07:39:24 server sshd\[23004\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.43.117 Feb 15 07:39:26 server sshd\[23004\]: Failed password for invalid user aloko from 106.13.43.117 port 48812 ssh2 Feb 15 07:56:03 server sshd\[26387\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.43.117 user=root Feb 15 07:56:05 server sshd\[26387\]: Failed password for root from 106.13.43.117 port 40230 ssh2 ...	2020-02-15 13:15:04
94.180.122.99	attackspam	Feb 15 05:53:37 sd-53420 sshd\[20806\]: Invalid user zp from 94.180.122.99 Feb 15 05:53:37 sd-53420 sshd\[20806\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.180.122.99 Feb 15 05:53:38 sd-53420 sshd\[20806\]: Failed password for invalid user zp from 94.180.122.99 port 45672 ssh2 Feb 15 05:56:17 sd-53420 sshd\[20988\]: Invalid user mailtest from 94.180.122.99 Feb 15 05:56:17 sd-53420 sshd\[20988\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.180.122.99 ...	2020-02-15 13:04:54
104.40.183.140	attackspambots	IDS	2020-02-15 10:43:29
141.98.9.33	attackspambots	TCP port 3389: Scan and connection	2020-02-15 13:10:40
114.33.123.206	attackbotsspam	Feb 15 04:56:02 system,error,critical: login failure for user admin from 114.33.123.206 via telnet Feb 15 04:56:04 system,error,critical: login failure for user 666666 from 114.33.123.206 via telnet Feb 15 04:56:05 system,error,critical: login failure for user root from 114.33.123.206 via telnet Feb 15 04:56:08 system,error,critical: login failure for user supervisor from 114.33.123.206 via telnet Feb 15 04:56:10 system,error,critical: login failure for user admin from 114.33.123.206 via telnet Feb 15 04:56:11 system,error,critical: login failure for user root from 114.33.123.206 via telnet Feb 15 04:56:15 system,error,critical: login failure for user root from 114.33.123.206 via telnet Feb 15 04:56:16 system,error,critical: login failure for user ubnt from 114.33.123.206 via telnet Feb 15 04:56:17 system,error,critical: login failure for user user from 114.33.123.206 via telnet Feb 15 04:56:21 system,error,critical: login failure for user Administrator from 114.33.123.206 via telnet	2020-02-15 13:01:00

Recently Reported IPs

41.39.23.73	219.148.37.23	169.44.32.70	156.67.218.53
176.32.34.160	179.57.90.133	122.176.200.202	188.40.153.196
66.75.58.130	202.44.197.253	49.73.84.142	198.20.127.216
128.234.170.154	103.194.107.178	89.46.223.247	162.50.220.89
4.209.37.234	93.32.241.20	45.184.81.244	196.170.85.69