106.12.139.138

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Invalid user admin from 106.12.139.138 port 43886	2020-04-18 07:50:28
attack	k+ssh-bruteforce	2020-04-07 06:38:19
attackspambots	SSH bruteforce (Triggered fail2ban)	2020-04-05 19:27:44

Comments on same subnet:

IP	Type	Details	Datetime
106.12.139.137	attackspambots	May 22 08:07:45 vps687878 sshd\[26039\]: Failed password for invalid user bjr from 106.12.139.137 port 46258 ssh2 May 22 08:09:38 vps687878 sshd\[26255\]: Invalid user vwc from 106.12.139.137 port 42516 May 22 08:09:38 vps687878 sshd\[26255\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.137 May 22 08:09:40 vps687878 sshd\[26255\]: Failed password for invalid user vwc from 106.12.139.137 port 42516 ssh2 May 22 08:11:35 vps687878 sshd\[26623\]: Invalid user lijingping from 106.12.139.137 port 38784 May 22 08:11:35 vps687878 sshd\[26623\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.137 ...	2020-05-22 17:12:36
106.12.139.149	attack	$f2bV_matches	2020-05-15 00:58:13
106.12.139.149	attack	2020-05-14T07:11:13.569671 sshd[4146]: Invalid user user2 from 106.12.139.149 port 35314 2020-05-14T07:11:13.585700 sshd[4146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.149 2020-05-14T07:11:13.569671 sshd[4146]: Invalid user user2 from 106.12.139.149 port 35314 2020-05-14T07:11:15.541463 sshd[4146]: Failed password for invalid user user2 from 106.12.139.149 port 35314 ssh2 ...	2020-05-14 14:24:41
106.12.139.149	attackspambots	$f2bV_matches	2020-05-11 17:35:45
106.12.139.137	attackspam	May 10 00:45:44 firewall sshd[13763]: Failed password for invalid user userftp from 106.12.139.137 port 42066 ssh2 May 10 00:47:16 firewall sshd[13800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.137 user=root May 10 00:47:18 firewall sshd[13800]: Failed password for root from 106.12.139.137 port 34058 ssh2 ...	2020-05-10 19:15:06
106.12.139.137	attackbotsspam	May 6 06:54:03 server sshd[27768]: Failed password for invalid user fgs from 106.12.139.137 port 58358 ssh2 May 6 06:57:01 server sshd[27935]: Failed password for invalid user root1 from 106.12.139.137 port 39836 ssh2 May 6 06:59:56 server sshd[28070]: Failed password for invalid user nagios from 106.12.139.137 port 49560 ssh2	2020-05-06 15:05:33
106.12.139.149	attack	Apr 28 05:38:59 v22018086721571380 sshd[12824]: Failed password for invalid user sridhar from 106.12.139.149 port 52636 ssh2	2020-04-28 12:03:00
106.12.139.137	attackspambots	Apr 21 15:11:37 pve1 sshd[12234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.137 Apr 21 15:11:39 pve1 sshd[12234]: Failed password for invalid user mysql from 106.12.139.137 port 34914 ssh2 ...	2020-04-21 22:24:46
106.12.139.149	attackbotsspam	Invalid user admin from 106.12.139.149 port 55384	2020-04-15 12:05:14
106.12.139.149	attack	Apr 10 16:23:40 webhost01 sshd[16562]: Failed password for root from 106.12.139.149 port 35014 ssh2 ...	2020-04-10 17:28:13
106.12.139.149	attack	$f2bV_matches	2020-04-08 08:41:58
106.12.139.137	attackspambots	Automatic report - SSH Brute-Force Attack	2020-04-03 16:35:24
106.12.139.137	attack	Invalid user liangbin from 106.12.139.137 port 33872	2020-04-03 06:25:00
106.12.139.149	attack	Apr 2 07:49:52 lukav-desktop sshd\[29814\]: Invalid user sc from 106.12.139.149 Apr 2 07:49:52 lukav-desktop sshd\[29814\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.149 Apr 2 07:49:54 lukav-desktop sshd\[29814\]: Failed password for invalid user sc from 106.12.139.149 port 43744 ssh2 Apr 2 07:53:23 lukav-desktop sshd\[30014\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.139.149 user=root Apr 2 07:53:25 lukav-desktop sshd\[30014\]: Failed password for root from 106.12.139.149 port 54526 ssh2	2020-04-02 18:54:35
106.12.139.149	attack	SSH bruteforce (Triggered fail2ban)	2020-03-28 03:43:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.139.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 526
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.139.138.			IN	A

;; AUTHORITY SECTION:
.			524	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040500 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 05 19:27:40 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 138.139.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.139.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
203.206.172.68	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-17 03:28:40
51.15.87.74	attackbots	Automatic report - Banned IP Access	2019-10-17 03:41:29
91.222.19.225	attackbotsspam	Brute force SMTP login attempted. ...	2019-10-17 03:48:54
118.122.77.80	attackbots	Oct 16 21:24:58 h2177944 sshd\[27788\]: Invalid user ubuntu from 118.122.77.80 port 42514 Oct 16 21:24:58 h2177944 sshd\[27788\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.122.77.80 Oct 16 21:25:00 h2177944 sshd\[27788\]: Failed password for invalid user ubuntu from 118.122.77.80 port 42514 ssh2 Oct 16 21:29:29 h2177944 sshd\[27936\]: Invalid user eh from 118.122.77.80 port 49500 Oct 16 21:29:29 h2177944 sshd\[27936\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.122.77.80 ...	2019-10-17 03:52:04
222.186.169.192	attackbots	2019-10-16T19:46:34.909509abusebot.cloudsearch.cf sshd\[32266\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.192 user=root	2019-10-17 03:59:59
177.38.23.195	attackspam	SMB Server BruteForce Attack	2019-10-17 03:33:43
116.113.99.171	attack	Port Scan	2019-10-17 03:52:36
186.3.234.169	attackbots	[AUTOMATIC REPORT] - 22 tries in total - SSH BRUTE FORCE - IP banned	2019-10-17 03:32:17
5.196.64.109	attack	43 probes eg: /feed	2019-10-17 03:29:21
39.98.43.197	attackspambots	Port Scan	2019-10-17 03:50:21
31.211.86.13	attackspam	11 probes eg: /wp-includes/SimplePie/Cache/default.php	2019-10-17 03:29:10
167.114.210.86	attack	Oct 16 21:29:05 vmd17057 sshd\[2123\]: Invalid user dovecot from 167.114.210.86 port 49932 Oct 16 21:29:05 vmd17057 sshd\[2123\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.210.86 Oct 16 21:29:08 vmd17057 sshd\[2123\]: Failed password for invalid user dovecot from 167.114.210.86 port 49932 ssh2 ...	2019-10-17 04:02:36
45.224.105.76	attackbotsspam	(imapd) Failed IMAP login from 45.224.105.76 (AR/Argentina/-): 1 in the last 3600 secs	2019-10-17 04:00:26
196.251.238.216	attack	failed_logins	2019-10-17 03:48:23
88.214.26.8	attackbotsspam	Oct 16 21:29:36 vps01 sshd[4429]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.214.26.8 Oct 16 21:29:38 vps01 sshd[4429]: Failed password for invalid user admin from 88.214.26.8 port 59704 ssh2	2019-10-17 03:47:06

Recently Reported IPs

200.44.197.40	62.82.75.58	45.114.10.132	149.54.1.66
185.133.193.88	138.197.66.68	73.76.148.61	111.254.201.22
162.248.92.145	2a01:488:66:1000:5bfa:7184:0:1	27.78.105.228	177.185.93.89
110.44.124.141	122.51.194.23	219.146.73.5	172.69.68.220
45.249.92.62	87.195.244.111	192.144.230.158	185.238.160.30