106.12.134.133

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	SSH Brute-Force attacks	2019-11-01 03:08:50
attackspambots	Oct 14 07:48:43 MainVPS sshd[1061]: Invalid user !q@w#e$r%t^y from 106.12.134.133 port 51076 Oct 14 07:48:43 MainVPS sshd[1061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.133 Oct 14 07:48:43 MainVPS sshd[1061]: Invalid user !q@w#e$r%t^y from 106.12.134.133 port 51076 Oct 14 07:48:46 MainVPS sshd[1061]: Failed password for invalid user !q@w#e$r%t^y from 106.12.134.133 port 51076 ssh2 Oct 14 07:53:51 MainVPS sshd[1539]: Invalid user Design@123 from 106.12.134.133 port 60260 ...	2019-10-14 18:26:06
attackspambots	2019-10-03T01:34:08.425980 sshd[3455]: Invalid user user from 106.12.134.133 port 35192 2019-10-03T01:34:08.438921 sshd[3455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.133 2019-10-03T01:34:08.425980 sshd[3455]: Invalid user user from 106.12.134.133 port 35192 2019-10-03T01:34:10.316847 sshd[3455]: Failed password for invalid user user from 106.12.134.133 port 35192 ssh2 2019-10-03T01:38:09.567203 sshd[3497]: Invalid user volker from 106.12.134.133 port 38046 ...	2019-10-03 07:49:53
attackspam	Sep 29 06:41:33 server sshd\[12775\]: Invalid user virtual from 106.12.134.133 port 42780 Sep 29 06:41:33 server sshd\[12775\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.133 Sep 29 06:41:36 server sshd\[12775\]: Failed password for invalid user virtual from 106.12.134.133 port 42780 ssh2 Sep 29 06:46:32 server sshd\[5883\]: Invalid user lfc from 106.12.134.133 port 54330 Sep 29 06:46:32 server sshd\[5883\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.133	2019-09-29 19:19:03
attack	Sep 28 06:55:16 MK-Soft-VM7 sshd[30447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.133 Sep 28 06:55:18 MK-Soft-VM7 sshd[30447]: Failed password for invalid user apache from 106.12.134.133 port 37552 ssh2 ...	2019-09-28 15:01:49
attack	Sep 4 05:20:38 kapalua sshd\[2125\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.133 user=root Sep 4 05:20:40 kapalua sshd\[2125\]: Failed password for root from 106.12.134.133 port 38984 ssh2 Sep 4 05:26:40 kapalua sshd\[2720\]: Invalid user wayne from 106.12.134.133 Sep 4 05:26:40 kapalua sshd\[2720\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.133 Sep 4 05:26:42 kapalua sshd\[2720\]: Failed password for invalid user wayne from 106.12.134.133 port 55196 ssh2	2019-09-05 04:17:02

Comments on same subnet:

IP	Type	Details	Datetime
106.12.134.168	attackspam	SSH login attempts.	2020-03-31 20:41:38
106.12.134.168	attackspambots	Invalid user hv from 106.12.134.168 port 55212	2020-03-29 14:32:57
106.12.134.165	attack	2020-02-20T14:07:57.849034wiz-ks3 sshd[3292]: Invalid user HTTP from 106.12.134.165 port 33418 2020-02-20T14:07:57.851676wiz-ks3 sshd[3292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.165 2020-02-20T14:07:57.849034wiz-ks3 sshd[3292]: Invalid user HTTP from 106.12.134.165 port 33418 2020-02-20T14:07:59.227983wiz-ks3 sshd[3292]: Failed password for invalid user HTTP from 106.12.134.165 port 33418 ssh2 2020-02-20T14:21:54.542051wiz-ks3 sshd[3326]: Invalid user zanron from 106.12.134.165 port 37856 2020-02-20T14:21:54.544684wiz-ks3 sshd[3326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.165 2020-02-20T14:21:54.542051wiz-ks3 sshd[3326]: Invalid user zanron from 106.12.134.165 port 37856 2020-02-20T14:21:56.494326wiz-ks3 sshd[3326]: Failed password for invalid user zanron from 106.12.134.165 port 37856 ssh2 2020-02-20T14:24:35.821755wiz-ks3 sshd[3334]: Invalid user irc from 106.12.134.165 port 53104 ...	2020-02-21 02:35:02
106.12.134.165	attackspam	Feb 10 04:32:03 ws22vmsma01 sshd[223063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.165 Feb 10 04:32:05 ws22vmsma01 sshd[223063]: Failed password for invalid user byz from 106.12.134.165 port 39102 ssh2 ...	2020-02-10 16:32:14
106.12.134.165	attackspambots	Feb 9 23:06:14 vmd26974 sshd[28625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.165 Feb 9 23:06:16 vmd26974 sshd[28625]: Failed password for invalid user jbh from 106.12.134.165 port 45892 ssh2 ...	2020-02-10 09:11:51
106.12.134.23	attackbots	Nov 7 14:10:15 plusreed sshd[3350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.23 user=root Nov 7 14:10:16 plusreed sshd[3350]: Failed password for root from 106.12.134.23 port 36082 ssh2 Nov 7 14:14:20 plusreed sshd[4230]: Invalid user edineide from 106.12.134.23 Nov 7 14:14:20 plusreed sshd[4230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.23 Nov 7 14:14:20 plusreed sshd[4230]: Invalid user edineide from 106.12.134.23 Nov 7 14:14:23 plusreed sshd[4230]: Failed password for invalid user edineide from 106.12.134.23 port 16265 ssh2 ...	2019-11-08 03:29:36
106.12.134.23	attackspam	Nov 5 14:35:09 server sshd\[27568\]: Failed password for invalid user sonalig from 106.12.134.23 port 45469 ssh2 Nov 6 09:20:32 server sshd\[22439\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.23 user=root Nov 6 09:20:34 server sshd\[22439\]: Failed password for root from 106.12.134.23 port 30580 ssh2 Nov 6 09:30:03 server sshd\[24550\]: Invalid user manish from 106.12.134.23 Nov 6 09:30:03 server sshd\[24550\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.23 ...	2019-11-06 15:01:18
106.12.134.58	attackspambots	frenzy	2019-11-04 07:35:24
106.12.134.58	attackspam	Invalid user james from 106.12.134.58 port 52820	2019-10-29 06:06:12
106.12.134.58	attackbots	Oct 24 16:38:20 apollo sshd\[1705\]: Failed password for root from 106.12.134.58 port 37096 ssh2Oct 24 17:01:42 apollo sshd\[1732\]: Failed password for root from 106.12.134.58 port 33998 ssh2Oct 24 17:06:50 apollo sshd\[1745\]: Invalid user Tarmo from 106.12.134.58 ...	2019-10-25 01:22:23
106.12.134.58	attackbotsspam	Oct 18 05:49:04 host sshd[14124]: Invalid user testftp from 106.12.134.58 port 52906 Oct 18 05:49:04 host sshd[14124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.58 Oct 18 05:49:04 host sshd[14124]: Invalid user testftp from 106.12.134.58 port 52906 Oct 18 05:49:06 host sshd[14124]: Failed password for invalid user testftp from 106.12.134.58 port 52906 ssh2 ...	2019-10-18 16:45:58
106.12.134.58	attackspambots	Oct 4 18:34:41 auw2 sshd\[10997\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.58 user=root Oct 4 18:34:43 auw2 sshd\[10997\]: Failed password for root from 106.12.134.58 port 35156 ssh2 Oct 4 18:38:41 auw2 sshd\[11369\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.58 user=root Oct 4 18:38:43 auw2 sshd\[11369\]: Failed password for root from 106.12.134.58 port 39040 ssh2 Oct 4 18:42:51 auw2 sshd\[11889\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.58 user=root	2019-10-05 18:49:25
106.12.134.23	attackbotsspam	Aug 11 00:55:48 vtv3 sshd\[9056\]: Invalid user sit from 106.12.134.23 port 10721 Aug 11 00:55:48 vtv3 sshd\[9056\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.23 Aug 11 00:55:50 vtv3 sshd\[9056\]: Failed password for invalid user sit from 106.12.134.23 port 10721 ssh2 Aug 11 00:56:43 vtv3 sshd\[9414\]: Invalid user product from 106.12.134.23 port 20321 Aug 11 00:56:43 vtv3 sshd\[9414\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.23 Aug 11 01:07:37 vtv3 sshd\[14778\]: Invalid user maximus from 106.12.134.23 port 23137 Aug 11 01:07:37 vtv3 sshd\[14778\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.23 Aug 11 01:07:39 vtv3 sshd\[14778\]: Failed password for invalid user maximus from 106.12.134.23 port 23137 ssh2 Aug 11 01:08:33 vtv3 sshd\[15165\]: Invalid user leah from 106.12.134.23 port 32743 Aug 11 01:08:33 vtv3 sshd\[15165\]: pam_unix\	2019-10-03 21:58:16
106.12.134.58	attack	Oct 2 17:33:19 dev0-dcde-rnet sshd[27900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.58 Oct 2 17:33:21 dev0-dcde-rnet sshd[27900]: Failed password for invalid user duckie from 106.12.134.58 port 47966 ssh2 Oct 2 18:01:14 dev0-dcde-rnet sshd[27985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.58	2019-10-03 00:32:26
106.12.134.58	attackbotsspam	Sep 29 23:02:03 OPSO sshd\[8974\]: Invalid user nikhil from 106.12.134.58 port 60284 Sep 29 23:02:03 OPSO sshd\[8974\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.58 Sep 29 23:02:05 OPSO sshd\[8974\]: Failed password for invalid user nikhil from 106.12.134.58 port 60284 ssh2 Sep 29 23:06:36 OPSO sshd\[10119\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.58 user=root Sep 29 23:06:37 OPSO sshd\[10119\]: Failed password for root from 106.12.134.58 port 42224 ssh2	2019-09-30 08:07:36

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.134.133
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33330
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.134.133.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090402 1800 900 604800 86400

;; Query time: 142 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Sep 05 04:16:57 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 133.134.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 133.134.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.134.179.57	attackspam	Aug 7 21:34:08 venus kernel: [16352.745651] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:66:8f:ed:d2:74:7f:6e:37:e3:08:00 SRC=45.134.179.57 DST=78.47.70.226 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=34596 PROTO=TCP SPT=58232 DPT=60702 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-08 02:54:01
170.81.152.70	attackspam	Unauthorized connection attempt from IP address 170.81.152.70 on Port 445(SMB)	2020-08-08 02:42:34
79.216.184.153	attackbots	Automatic report - Port Scan Attack	2020-08-08 02:59:53
94.25.170.198	attackbotsspam	Unauthorized connection attempt from IP address 94.25.170.198 on Port 445(SMB)	2020-08-08 03:18:39
178.214.255.237	attackspambots	Unauthorized connection attempt from IP address 178.214.255.237 on Port 445(SMB)	2020-08-08 03:09:11
62.210.14.241	attackbotsspam	From: "Apple" IP: 163.172.205.197 (toyal4.dorepi.com) IP: 62.210.14.241 (toyal3.dorepi.com) Message: This is the last time we are reminding you about your pending shipping cost. The pending delivery will be canceled if the amount is not paid within 48 hours List-Unsubscribe:	2020-08-08 02:40:21
150.136.5.221	attack	$f2bV_matches	2020-08-08 02:41:22
197.247.28.231	attackbotsspam	Unauthorized connection attempt from IP address 197.247.28.231 on Port 445(SMB)	2020-08-08 02:52:12
139.59.116.115	attack	Aug 7 20:15:20 sip sshd[1226514]: Failed password for root from 139.59.116.115 port 44400 ssh2 Aug 7 20:19:25 sip sshd[1226534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.116.115 user=root Aug 7 20:19:28 sip sshd[1226534]: Failed password for root from 139.59.116.115 port 56108 ssh2 ...	2020-08-08 02:53:29
188.131.138.4	attack	2020-08-07T19:50:36.878898amanda2.illicoweb.com sshd\[4066\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.138.4 user=root 2020-08-07T19:50:38.467026amanda2.illicoweb.com sshd\[4066\]: Failed password for root from 188.131.138.4 port 39484 ssh2 2020-08-07T19:52:50.670839amanda2.illicoweb.com sshd\[4562\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.138.4 user=root 2020-08-07T19:52:52.319498amanda2.illicoweb.com sshd\[4562\]: Failed password for root from 188.131.138.4 port 50144 ssh2 2020-08-07T19:55:07.685322amanda2.illicoweb.com sshd\[5033\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.138.4 user=root ...	2020-08-08 03:08:52
111.229.116.118	attackspambots	Aug 3 19:02:32 pl3server sshd[16871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.116.118 user=r.r Aug 3 19:02:34 pl3server sshd[16871]: Failed password for r.r from 111.229.116.118 port 39082 ssh2 Aug 3 19:02:34 pl3server sshd[16871]: Received disconnect from 111.229.116.118 port 39082:11: Bye Bye [preauth] Aug 3 19:02:34 pl3server sshd[16871]: Disconnected from 111.229.116.118 port 39082 [preauth] Aug 3 19:17:29 pl3server sshd[8607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.116.118 user=r.r Aug 3 19:17:31 pl3server sshd[8607]: Failed password for r.r from 111.229.116.118 port 34066 ssh2 Aug 3 19:17:32 pl3server sshd[8607]: Received disconnect from 111.229.116.118 port 34066:11: Bye Bye [preauth] Aug 3 19:17:32 pl3server sshd[8607]: Disconnected from 111.229.116.118 port 34066 [preauth] Aug 3 19:21:33 pl3server sshd[16148]: pam_unix(sshd:auth): authenti........ -------------------------------	2020-08-08 03:02:51
168.61.72.51	attackspam	Aug 7 15:45:15 ns382633 sshd\[8126\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.61.72.51 user=root Aug 7 15:45:17 ns382633 sshd\[8126\]: Failed password for root from 168.61.72.51 port 45650 ssh2 Aug 7 16:11:12 ns382633 sshd\[13364\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.61.72.51 user=root Aug 7 16:11:14 ns382633 sshd\[13364\]: Failed password for root from 168.61.72.51 port 53620 ssh2 Aug 7 16:38:05 ns382633 sshd\[17955\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.61.72.51 user=root	2020-08-08 02:48:28
80.51.70.48	attackspambots	(smtpauth) Failed SMTP AUTH login from 80.51.70.48 (PL/Poland/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-08-07 16:31:35 plain authenticator failed for ([80.51.70.48]) [80.51.70.48]: 535 Incorrect authentication data (set_id=info@biscuit777.com)	2020-08-08 02:46:33
178.217.172.204	attackbotsspam	Unauthorized connection attempt from IP address 178.217.172.204 on Port 445(SMB)	2020-08-08 03:13:38
107.170.91.121	attackspam	Too many connections or unauthorized access detected from Arctic banned ip	2020-08-08 02:41:45

Recently Reported IPs

43.226.36.46	157.119.215.249	85.244.156.190	191.173.29.143
113.118.45.199	37.115.185.176	137.59.17.226	1.57.205.240
165.22.99.225	51.77.214.180	149.202.97.154	132.90.23.166
72.108.169.109	104.131.219.65	146.242.56.23	129.204.52.199
1.2.143.176	185.93.1.163	218.98.40.149	185.93.1.162