106.12.137.1 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	May 20 20:20:09 web1 sshd\[2468\]: Invalid user wgo from 106.12.137.1 May 20 20:20:09 web1 sshd\[2468\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.1 May 20 20:20:11 web1 sshd\[2468\]: Failed password for invalid user wgo from 106.12.137.1 port 35692 ssh2 May 20 20:24:43 web1 sshd\[2844\]: Invalid user oba from 106.12.137.1 May 20 20:24:43 web1 sshd\[2844\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.1	2020-05-21 14:27:21
attack	invalid login attempt (it)	2020-04-22 06:36:07
attackbots	Apr 20 21:56:13 ncomp sshd[31110]: Invalid user v from 106.12.137.1 Apr 20 21:56:13 ncomp sshd[31110]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.1 Apr 20 21:56:13 ncomp sshd[31110]: Invalid user v from 106.12.137.1 Apr 20 21:56:14 ncomp sshd[31110]: Failed password for invalid user v from 106.12.137.1 port 38980 ssh2	2020-04-21 05:33:32
attack	2020-04-06T04:18:19.496754shield sshd\[21493\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.1 user=root 2020-04-06T04:18:21.539837shield sshd\[21493\]: Failed password for root from 106.12.137.1 port 43448 ssh2 2020-04-06T04:20:30.338104shield sshd\[21927\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.1 user=root 2020-04-06T04:20:32.366529shield sshd\[21927\]: Failed password for root from 106.12.137.1 port 44942 ssh2 2020-04-06T04:22:40.834119shield sshd\[22445\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.1 user=root	2020-04-06 16:52:54
attack	2020-04-02T15:51:59.429356linuxbox-skyline sshd[7052]: Invalid user jayheo from 106.12.137.1 port 52188 ...	2020-04-03 06:51:59
attackspambots	[MK-VM2] Blocked by UFW	2020-03-17 02:47:24
attackspambots	Mar 13 07:08:21 santamaria sshd\[32291\]: Invalid user plexuser from 106.12.137.1 Mar 13 07:08:21 santamaria sshd\[32291\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.1 Mar 13 07:08:22 santamaria sshd\[32291\]: Failed password for invalid user plexuser from 106.12.137.1 port 50482 ssh2 ...	2020-03-13 15:00:43

Comments on same subnet:

IP	Type	Details	Datetime
106.12.137.46	attackbots	Invalid user iww from 106.12.137.46 port 47568	2020-05-23 12:24:41
106.12.137.46	attack	May 21 23:29:57 santamaria sshd\[21696\]: Invalid user fin from 106.12.137.46 May 21 23:29:57 santamaria sshd\[21696\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.46 May 21 23:29:59 santamaria sshd\[21696\]: Failed password for invalid user fin from 106.12.137.46 port 50278 ssh2 ...	2020-05-22 06:17:12
106.12.137.46	attackspambots	2020-04-29T04:38:35.221791abusebot-5.cloudsearch.cf sshd[13642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.46 user=root 2020-04-29T04:38:36.816331abusebot-5.cloudsearch.cf sshd[13642]: Failed password for root from 106.12.137.46 port 44302 ssh2 2020-04-29T04:42:08.647851abusebot-5.cloudsearch.cf sshd[13691]: Invalid user Justin from 106.12.137.46 port 58962 2020-04-29T04:42:08.654313abusebot-5.cloudsearch.cf sshd[13691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.46 2020-04-29T04:42:08.647851abusebot-5.cloudsearch.cf sshd[13691]: Invalid user Justin from 106.12.137.46 port 58962 2020-04-29T04:42:10.158161abusebot-5.cloudsearch.cf sshd[13691]: Failed password for invalid user Justin from 106.12.137.46 port 58962 ssh2 2020-04-29T04:45:49.859745abusebot-5.cloudsearch.cf sshd[13695]: Invalid user kwinfo from 106.12.137.46 port 45390 ...	2020-04-29 13:19:22
106.12.137.226	attack	Apr 21 20:43:27 server4-pi sshd[28636]: Failed password for root from 106.12.137.226 port 37650 ssh2 Apr 21 20:47:14 server4-pi sshd[29826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.226	2020-04-22 07:27:03
106.12.137.226	attackbots	distributed sshd attacks	2020-04-17 14:45:26
106.12.137.46	attackspambots	Apr 15 01:04:13 ns381471 sshd[1816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.46 Apr 15 01:04:16 ns381471 sshd[1816]: Failed password for invalid user astr from 106.12.137.46 port 48418 ssh2	2020-04-15 07:45:21
106.12.137.46	attackbots	2020-03-20T22:30:52.230451shield sshd\[30053\]: Invalid user zo from 106.12.137.46 port 50884 2020-03-20T22:30:52.237766shield sshd\[30053\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.46 2020-03-20T22:30:54.909915shield sshd\[30053\]: Failed password for invalid user zo from 106.12.137.46 port 50884 ssh2 2020-03-20T22:32:20.973568shield sshd\[30462\]: Invalid user 01 from 106.12.137.46 port 45592 2020-03-20T22:32:20.982035shield sshd\[30462\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.46	2020-03-21 08:53:01
106.12.137.226	attackspambots	Unauthorized connection attempt detected from IP address 106.12.137.226 to port 2220 [J]	2020-01-29 05:17:20
106.12.137.226	attack	Invalid user reporting from 106.12.137.226 port 50322	2020-01-18 23:43:00
106.12.137.226	attackspam	Unauthorized connection attempt detected from IP address 106.12.137.226 to port 2220 [J]	2020-01-18 02:42:38
106.12.137.226	attackspambots	Jan 3 05:52:49 MK-Soft-Root1 sshd[30569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.226 Jan 3 05:52:51 MK-Soft-Root1 sshd[30569]: Failed password for invalid user bws from 106.12.137.226 port 57906 ssh2 ...	2020-01-03 14:20:35
106.12.137.46	attack	Dec 28 06:45:09 localhost sshd\[128052\]: Invalid user kriton from 106.12.137.46 port 33868 Dec 28 06:45:09 localhost sshd\[128052\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.46 Dec 28 06:45:11 localhost sshd\[128052\]: Failed password for invalid user kriton from 106.12.137.46 port 33868 ssh2 Dec 28 06:48:51 localhost sshd\[128163\]: Invalid user admin from 106.12.137.46 port 55474 Dec 28 06:48:51 localhost sshd\[128163\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.46 ...	2019-12-28 18:43:01
106.12.137.55	attackbots	Dec 25 23:49:20 vpn01 sshd[20541]: Failed password for root from 106.12.137.55 port 40710 ssh2 ...	2019-12-26 08:38:38
106.12.137.226	attack	Dec 25 19:53:32 server sshd\[17267\]: Invalid user home from 106.12.137.226 Dec 25 19:53:32 server sshd\[17267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.226 Dec 25 19:53:34 server sshd\[17267\]: Failed password for invalid user home from 106.12.137.226 port 42118 ssh2 Dec 25 20:11:33 server sshd\[21268\]: Invalid user admin from 106.12.137.226 Dec 25 20:11:33 server sshd\[21268\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.226 ...	2019-12-26 01:55:21
106.12.137.46	attackbots	20 attempts against mh-ssh on echoip.magehost.pro	2019-12-23 16:28:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.137.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42495
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.137.1.			IN	A

;; AUTHORITY SECTION:
.			206	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031300 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 13 15:00:38 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 1.137.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 1.137.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.253.71.235	attackspambots	Unauthorized connection attempt from IP address 180.253.71.235 on Port 445(SMB)	2019-10-30 19:14:00
59.108.143.83	attackbotsspam	2019-10-30T10:03:07.527473abusebot-8.cloudsearch.cf sshd\[23815\]: Invalid user 123g from 59.108.143.83 port 54667	2019-10-30 19:17:33
157.230.31.236	attack	Oct 30 09:42:20 hcbbdb sshd\[7125\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.31.236 user=root Oct 30 09:42:22 hcbbdb sshd\[7125\]: Failed password for root from 157.230.31.236 port 48630 ssh2 Oct 30 09:46:15 hcbbdb sshd\[7497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.31.236 user=root Oct 30 09:46:17 hcbbdb sshd\[7497\]: Failed password for root from 157.230.31.236 port 58454 ssh2 Oct 30 09:50:10 hcbbdb sshd\[7877\]: Invalid user fc from 157.230.31.236	2019-10-30 19:03:08
185.231.155.104	attack	Automatic report - XMLRPC Attack	2019-10-30 19:06:36
180.172.106.253	attackspam	19/10/29@23:58:05: FAIL: IoT-Telnet address from=180.172.106.253 ...	2019-10-30 19:15:40
65.124.94.138	attackspam	Oct 30 11:52:54 vps691689 sshd[10284]: Failed password for root from 65.124.94.138 port 45984 ssh2 Oct 30 11:57:38 vps691689 sshd[10361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.124.94.138 ...	2019-10-30 19:01:44
222.186.180.8	attackspam	Oct 30 11:59:01 SilenceServices sshd[14179]: Failed password for root from 222.186.180.8 port 30398 ssh2 Oct 30 11:59:14 SilenceServices sshd[14179]: Failed password for root from 222.186.180.8 port 30398 ssh2 Oct 30 11:59:25 SilenceServices sshd[14336]: Failed password for root from 222.186.180.8 port 50966 ssh2	2019-10-30 19:00:23
36.92.95.10	attackbotsspam	Oct 30 12:51:30 server sshd\[31885\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.92.95.10 user=root Oct 30 12:51:31 server sshd\[31885\]: Failed password for root from 36.92.95.10 port 12050 ssh2 Oct 30 13:01:17 server sshd\[1849\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.92.95.10 user=dbus Oct 30 13:01:19 server sshd\[1849\]: Failed password for dbus from 36.92.95.10 port 11673 ssh2 Oct 30 13:06:55 server sshd\[3117\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.92.95.10 user=root ...	2019-10-30 19:23:00
159.65.62.216	attackbots	Oct 30 04:47:40 cp sshd[2672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.62.216	2019-10-30 18:56:43
81.198.116.14	attackspam	port scan and connect, tcp 23 (telnet)	2019-10-30 18:49:14
106.12.33.57	attackspam	Oct 29 23:58:35 web9 sshd\[25876\]: Invalid user arpy from 106.12.33.57 Oct 29 23:58:35 web9 sshd\[25876\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.33.57 Oct 29 23:58:37 web9 sshd\[25876\]: Failed password for invalid user arpy from 106.12.33.57 port 37700 ssh2 Oct 30 00:02:53 web9 sshd\[26416\]: Invalid user P@ssw0rds from 106.12.33.57 Oct 30 00:02:53 web9 sshd\[26416\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.33.57	2019-10-30 18:46:39
115.75.219.90	attackspam	Unauthorized connection attempt from IP address 115.75.219.90 on Port 445(SMB)	2019-10-30 19:11:19
80.82.77.227	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-30 19:09:46
190.175.174.134	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/190.175.174.134/ AR - 1H : (36) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : AR NAME ASN : ASN22927 IP : 190.175.174.134 CIDR : 190.174.0.0/15 PREFIX COUNT : 244 UNIQUE IP COUNT : 4001024 ATTACKS DETECTED ASN22927 : 1H - 1 3H - 2 6H - 5 12H - 9 24H - 17 DateTime : 2019-10-30 04:47:42 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-30 18:53:48
157.245.251.97	attackspambots	Oct 29 20:15:35 h2022099 sshd[25368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.251.97 user=r.r Oct 29 20:15:37 h2022099 sshd[25368]: Failed password for r.r from 157.245.251.97 port 41508 ssh2 Oct 29 20:15:37 h2022099 sshd[25368]: Received disconnect from 157.245.251.97: 11: Bye Bye [preauth] Oct 29 20:25:34 h2022099 sshd[26576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.251.97 user=r.r Oct 29 20:25:37 h2022099 sshd[26576]: Failed password for r.r from 157.245.251.97 port 58620 ssh2 Oct 29 20:25:37 h2022099 sshd[26576]: Received disconnect from 157.245.251.97: 11: Bye Bye [preauth] Oct 29 20:29:06 h2022099 sshd[26816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.251.97 user=r.r Oct 29 20:29:08 h2022099 sshd[26816]: Failed password for r.r from 157.245.251.97 port 41014 ssh2 Oct 29 20:29:08 h2022099 sshd[26816........ -------------------------------	2019-10-30 18:59:15

Recently Reported IPs

14.186.226.226	104.207.151.55	113.172.223.107	14.207.46.177
5.188.216.34	114.102.0.87	14.177.122.51	179.210.153.201
92.209.199.70	112.212.143.224	67.215.228.18	185.150.189.23
82.223.68.107	132.232.67.247	149.63.251.99	61.94.36.45
98.152.155.210	228.252.151.204	112.64.52.21	185.164.72.36