106.12.130.171

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	8088/tcp 1433/tcp 9200/tcp... [2019-11-03]17pkt,9pt.(tcp)	2019-11-03 18:59:16

Comments on same subnet:

IP	Type	Details	Datetime
106.12.130.44	attackspambots	Oct 12 03:55:17 santamaria sshd\[6269\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.130.44 user=root Oct 12 03:55:19 santamaria sshd\[6269\]: Failed password for root from 106.12.130.44 port 59464 ssh2 Oct 12 03:59:04 santamaria sshd\[6322\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.130.44 user=root ...	2020-10-12 12:10:58
106.12.130.44	attackspambots	$f2bV_matches	2020-09-25 08:00:23
106.12.130.189	attack	Invalid user bep from 106.12.130.189 port 42742	2020-08-22 18:38:08
106.12.130.189	attackspam	2020-07-23 14:11:45,285 fail2ban.actions: WARNING [ssh] Ban 106.12.130.189	2020-07-23 20:30:05
106.12.130.189	attack	2020-07-16T06:50:21.111733afi-git.jinr.ru sshd[31685]: Invalid user tim from 106.12.130.189 port 52176 2020-07-16T06:50:21.114919afi-git.jinr.ru sshd[31685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.130.189 2020-07-16T06:50:21.111733afi-git.jinr.ru sshd[31685]: Invalid user tim from 106.12.130.189 port 52176 2020-07-16T06:50:22.535598afi-git.jinr.ru sshd[31685]: Failed password for invalid user tim from 106.12.130.189 port 52176 ssh2 2020-07-16T06:54:09.717083afi-git.jinr.ru sshd[729]: Invalid user webftp from 106.12.130.189 port 36698 ...	2020-07-16 13:58:15
106.12.130.189	attack	Jul 10 13:29:45 gw1 sshd[5035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.130.189 Jul 10 13:29:48 gw1 sshd[5035]: Failed password for invalid user hadoop from 106.12.130.189 port 60768 ssh2 ...	2020-07-10 18:20:49
106.12.130.189	attackbots	SSH Brute-Force reported by Fail2Ban	2020-07-05 15:46:49
106.12.130.189	attackbots	frenzy	2020-06-28 12:28:43
106.12.130.189	attackspam	May 28 14:41:20 firewall sshd[13964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.130.189 May 28 14:41:20 firewall sshd[13964]: Invalid user leehd from 106.12.130.189 May 28 14:41:22 firewall sshd[13964]: Failed password for invalid user leehd from 106.12.130.189 port 40582 ssh2 ...	2020-05-29 02:13:42
106.12.130.189	attackspam	May 25 14:03:24 prox sshd[14042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.130.189 May 25 14:03:26 prox sshd[14042]: Failed password for invalid user nagios from 106.12.130.189 port 39556 ssh2	2020-05-25 21:05:47
106.12.130.235	attackspambots	SSH Brute Force	2020-04-29 13:21:54
106.12.130.189	attack	2020-04-21 02:21:08 server sshd[84953]: Failed password for invalid user hw from 106.12.130.189 port 47358 ssh2	2020-04-26 08:14:08
106.12.130.235	attackspambots	Dec 13 01:19:22 ns381471 sshd[10293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.130.235 Dec 13 01:19:23 ns381471 sshd[10293]: Failed password for invalid user nfs from 106.12.130.235 port 56718 ssh2	2019-12-13 08:33:46
106.12.130.148	attack	Dec 11 13:59:56 web1 sshd\[27626\]: Invalid user hollins from 106.12.130.148 Dec 11 13:59:56 web1 sshd\[27626\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.130.148 Dec 11 13:59:58 web1 sshd\[27626\]: Failed password for invalid user hollins from 106.12.130.148 port 48052 ssh2 Dec 11 14:05:56 web1 sshd\[28240\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.130.148 user=root Dec 11 14:05:59 web1 sshd\[28240\]: Failed password for root from 106.12.130.148 port 50546 ssh2	2019-12-12 08:15:11
106.12.130.235	attackspam	Dec 3 06:47:03 wh01 sshd[22043]: Invalid user petrus from 106.12.130.235 port 37274 Dec 3 06:47:03 wh01 sshd[22043]: Failed password for invalid user petrus from 106.12.130.235 port 37274 ssh2 Dec 3 06:47:04 wh01 sshd[22043]: Received disconnect from 106.12.130.235 port 37274:11: Bye Bye [preauth] Dec 3 06:47:04 wh01 sshd[22043]: Disconnected from 106.12.130.235 port 37274 [preauth] Dec 3 07:01:47 wh01 sshd[23189]: Failed password for www-data from 106.12.130.235 port 60570 ssh2 Dec 3 07:01:47 wh01 sshd[23189]: Received disconnect from 106.12.130.235 port 60570:11: Bye Bye [preauth] Dec 3 07:01:47 wh01 sshd[23189]: Disconnected from 106.12.130.235 port 60570 [preauth] Dec 3 07:23:47 wh01 sshd[25012]: Invalid user dalt from 106.12.130.235 port 35608 Dec 3 07:23:47 wh01 sshd[25012]: Failed password for invalid user dalt from 106.12.130.235 port 35608 ssh2 Dec 3 07:23:48 wh01 sshd[25012]: Received disconnect from 106.12.130.235 port 35608:11: Bye Bye [preauth] Dec 3 07:23:48 wh	2019-12-03 16:53:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.130.171
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38723
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.130.171.			IN	A

;; AUTHORITY SECTION:
.			551	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110300 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 03 18:59:13 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 171.130.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 171.130.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
31.222.13.177	attack	Autoban 31.222.13.177 AUTH/CONNECT	2020-08-19 17:59:49
3.7.127.234	attackbots	3.7.127.234 - - \[19/Aug/2020:10:08:16 +0200\] "POST /wp-login.php HTTP/1.0" 200 6718 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 3.7.127.234 - - \[19/Aug/2020:10:08:39 +0200\] "POST /wp-login.php HTTP/1.0" 200 6726 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 3.7.127.234 - - \[19/Aug/2020:10:08:57 +0200\] "POST /wp-login.php HTTP/1.0" 200 6714 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-08-19 18:01:35
181.49.154.26	attackspam	$f2bV_matches	2020-08-19 18:17:24
148.70.50.244	attackbotsspam	Aug 19 10:27:52 dhoomketu sshd[2474122]: Invalid user teamspeak from 148.70.50.244 port 40066 Aug 19 10:27:52 dhoomketu sshd[2474122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.50.244 Aug 19 10:27:52 dhoomketu sshd[2474122]: Invalid user teamspeak from 148.70.50.244 port 40066 Aug 19 10:27:55 dhoomketu sshd[2474122]: Failed password for invalid user teamspeak from 148.70.50.244 port 40066 ssh2 Aug 19 10:32:31 dhoomketu sshd[2474215]: Invalid user nan from 148.70.50.244 port 33910 ...	2020-08-19 18:06:07
192.95.30.59	attackbots	192.95.30.59 - - [19/Aug/2020:10:56:56 +0100] "POST /wp-login.php HTTP/1.1" 200 6123 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.95.30.59 - - [19/Aug/2020:10:58:33 +0100] "POST /wp-login.php HTTP/1.1" 200 6123 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.95.30.59 - - [19/Aug/2020:11:01:56 +0100] "POST /wp-login.php HTTP/1.1" 200 6123 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ...	2020-08-19 18:11:12
139.186.68.53	attackspambots	2020-08-19T13:01:48.426303mail.standpoint.com.ua sshd[18467]: Failed password for root from 139.186.68.53 port 56768 ssh2 2020-08-19T13:05:38.023613mail.standpoint.com.ua sshd[19050]: Invalid user peihongtao from 139.186.68.53 port 44940 2020-08-19T13:05:38.027914mail.standpoint.com.ua sshd[19050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.68.53 2020-08-19T13:05:38.023613mail.standpoint.com.ua sshd[19050]: Invalid user peihongtao from 139.186.68.53 port 44940 2020-08-19T13:05:39.952811mail.standpoint.com.ua sshd[19050]: Failed password for invalid user peihongtao from 139.186.68.53 port 44940 ssh2 ...	2020-08-19 18:25:18
218.92.0.219	attackspam	Aug 19 11:51:24 vmanager6029 sshd\[29832\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.219 user=root Aug 19 11:51:27 vmanager6029 sshd\[29830\]: error: PAM: Authentication failure for root from 218.92.0.219 Aug 19 11:51:27 vmanager6029 sshd\[29838\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.219 user=root	2020-08-19 17:52:16
14.192.5.84	attackspambots	Port Scan ...	2020-08-19 18:27:27
123.207.142.31	attackspambots	2020-08-18T21:59:33.218305linuxbox-skyline sshd[165650]: Invalid user sungki from 123.207.142.31 port 33255 ...	2020-08-19 18:05:25
222.186.42.57	attackspambots	Aug 19 02:43:54 dignus sshd[32363]: Failed password for root from 222.186.42.57 port 11349 ssh2 Aug 19 02:43:55 dignus sshd[32363]: Failed password for root from 222.186.42.57 port 11349 ssh2 Aug 19 02:44:00 dignus sshd[32378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.57 user=root Aug 19 02:44:02 dignus sshd[32378]: Failed password for root from 222.186.42.57 port 49453 ssh2 Aug 19 02:44:04 dignus sshd[32378]: Failed password for root from 222.186.42.57 port 49453 ssh2 ...	2020-08-19 17:48:51
80.139.85.185	attackbots	SSH Login Bruteforce	2020-08-19 18:09:45
120.192.21.84	attackspam	2020-08-18T21:48:28.704006linuxbox-skyline sshd[165453]: Invalid user pi from 120.192.21.84 port 34528 2020-08-18T21:48:28.719632linuxbox-skyline sshd[165454]: Invalid user pi from 120.192.21.84 port 34530 ...	2020-08-19 18:13:22
132.232.1.8	attack	Aug 19 09:40:34 ajax sshd[31160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.1.8 Aug 19 09:40:37 ajax sshd[31160]: Failed password for invalid user sas from 132.232.1.8 port 57024 ssh2	2020-08-19 18:06:36
91.134.242.199	attack	Aug 19 09:26:35 sip sshd[12575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.242.199 Aug 19 09:26:36 sip sshd[12575]: Failed password for invalid user prd from 91.134.242.199 port 38188 ssh2 Aug 19 09:33:59 sip sshd[14668]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.242.199	2020-08-19 17:48:04
144.217.12.194	attackspambots	Aug 19 12:01:13 gw1 sshd[13393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.12.194 Aug 19 12:01:15 gw1 sshd[13393]: Failed password for invalid user admin from 144.217.12.194 port 53528 ssh2 ...	2020-08-19 18:03:44

Recently Reported IPs

231.68.170.247	221.124.187.47	25.154.43.146	138.8.200.147
184.236.203.48	209.45.22.175	244.94.198.47	2.225.150.90
103.240.92.76	102.245.78.44	184.76.110.140	33.49.205.87
5.53.252.46	147.5.126.187	46.192.202.234	226.210.168.223
19.23.83.9	235.20.210.86	20.165.25.118	188.162.199.255