106.12.160.103

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	(sshd) Failed SSH login from 106.12.160.103 (CN/China/-): 5 in the last 3600 secs	2020-06-18 17:00:26
attack	2020-06-15T00:42:55.389256lavrinenko.info sshd[4735]: Failed password for invalid user alfresco from 106.12.160.103 port 49444 ssh2 2020-06-15T00:45:32.161613lavrinenko.info sshd[4998]: Invalid user ultra from 106.12.160.103 port 58560 2020-06-15T00:45:32.168169lavrinenko.info sshd[4998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.160.103 2020-06-15T00:45:32.161613lavrinenko.info sshd[4998]: Invalid user ultra from 106.12.160.103 port 58560 2020-06-15T00:45:34.271306lavrinenko.info sshd[4998]: Failed password for invalid user ultra from 106.12.160.103 port 58560 ssh2 ...	2020-06-15 06:27:41
attackbotsspam	Jun 12 18:32:58 ovpn sshd\[6122\]: Invalid user csgo from 106.12.160.103 Jun 12 18:32:58 ovpn sshd\[6122\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.160.103 Jun 12 18:33:01 ovpn sshd\[6122\]: Failed password for invalid user csgo from 106.12.160.103 port 60914 ssh2 Jun 12 18:45:03 ovpn sshd\[9369\]: Invalid user mpool from 106.12.160.103 Jun 12 18:45:03 ovpn sshd\[9369\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.160.103	2020-06-13 04:33:23
attack	May 29 08:52:44 gw1 sshd[16925]: Failed password for root from 106.12.160.103 port 36336 ssh2 ...	2020-05-29 12:09:07

Comments on same subnet:

IP	Type	Details	Datetime
106.12.160.6	attack	2020-09-30T10:45:43+0200 Failed SSH Authentication/Brute Force Attack.(Server 2)	2020-10-01 02:34:58
106.12.160.6	attack	2020-09-30T10:45:43+0200 Failed SSH Authentication/Brute Force Attack.(Server 2)	2020-09-30 18:44:44
106.12.160.220	attackbotsspam	2020-06-29T14:10:22.582691lavrinenko.info sshd[6538]: Invalid user bca from 106.12.160.220 port 51507 2020-06-29T14:10:22.588370lavrinenko.info sshd[6538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.160.220 2020-06-29T14:10:22.582691lavrinenko.info sshd[6538]: Invalid user bca from 106.12.160.220 port 51507 2020-06-29T14:10:24.747826lavrinenko.info sshd[6538]: Failed password for invalid user bca from 106.12.160.220 port 51507 ssh2 2020-06-29T14:14:01.371732lavrinenko.info sshd[6663]: Invalid user leonardo from 106.12.160.220 port 40342 ...	2020-06-29 19:54:16
106.12.160.220	attackspambots	Jun 17 06:34:14 buvik sshd[9967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.160.220 Jun 17 06:34:17 buvik sshd[9967]: Failed password for invalid user vinod from 106.12.160.220 port 49000 ssh2 Jun 17 06:38:10 buvik sshd[10570]: Invalid user dspace from 106.12.160.220 ...	2020-06-17 17:03:12
106.12.160.31	attackspambots	Unauthorized connection attempt detected from IP address 106.12.160.31 to port 80	2020-06-13 07:54:55
106.12.160.220	attackbots	Jun 11 06:08:10 localhost sshd\[13296\]: Invalid user ubuntu from 106.12.160.220 Jun 11 06:08:10 localhost sshd\[13296\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.160.220 Jun 11 06:08:12 localhost sshd\[13296\]: Failed password for invalid user ubuntu from 106.12.160.220 port 33312 ssh2 Jun 11 06:13:34 localhost sshd\[13571\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.160.220 user=root Jun 11 06:13:36 localhost sshd\[13571\]: Failed password for root from 106.12.160.220 port 53667 ssh2 ...	2020-06-11 15:42:02
106.12.160.220	attack	2020-06-04 14:09:20,151 fail2ban.actions: WARNING [ssh] Ban 106.12.160.220	2020-06-04 20:58:29
106.12.160.220	attackspambots	Jun 1 05:56:39 cdc sshd[25267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.160.220 user=root Jun 1 05:56:41 cdc sshd[25267]: Failed password for invalid user root from 106.12.160.220 port 50550 ssh2	2020-06-01 13:46:36
106.12.160.220	attack	May 26 17:07:14 localhost sshd[51582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.160.220 user=root May 26 17:07:16 localhost sshd[51582]: Failed password for root from 106.12.160.220 port 49612 ssh2 May 26 17:11:22 localhost sshd[52211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.160.220 user=root May 26 17:11:24 localhost sshd[52211]: Failed password for root from 106.12.160.220 port 47891 ssh2 May 26 17:15:25 localhost sshd[52859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.160.220 user=root May 26 17:15:26 localhost sshd[52859]: Failed password for root from 106.12.160.220 port 46245 ssh2 ...	2020-05-27 01:17:11
106.12.160.220	attack	odoo8 ...	2020-04-28 02:07:47
106.12.160.17	attackspambots	Invalid user technology from 106.12.160.17 port 39852	2020-04-17 14:03:50
106.12.160.220	attackspam	$f2bV_matches	2020-04-14 08:24:32
106.12.160.17	attack	$f2bV_matches	2020-04-12 07:07:38
106.12.160.17	attackspam	SSH Brute-Force. Ports scanning.	2020-04-12 00:16:03
106.12.160.17	attack	Apr 3 06:55:43 jane sshd[8338]: Failed password for root from 106.12.160.17 port 57726 ssh2 ...	2020-04-03 14:35:54

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.160.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35674
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.160.103.			IN	A

;; AUTHORITY SECTION:
.			425	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052802 1800 900 604800 86400

;; Query time: 91 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 29 12:09:04 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 103.160.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 103.160.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
79.173.90.153	attack	0,28-02/02 [bc01/m04] PostRequest-Spammer scoring: harare01_holz	2020-07-15 22:45:32
61.95.233.61	attackspambots	Jul 15 08:31:23 server1 sshd\[22010\]: Failed password for invalid user ofsaa from 61.95.233.61 port 52546 ssh2 Jul 15 08:35:09 server1 sshd\[22988\]: Invalid user testuser from 61.95.233.61 Jul 15 08:35:09 server1 sshd\[22988\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.95.233.61 Jul 15 08:35:10 server1 sshd\[22988\]: Failed password for invalid user testuser from 61.95.233.61 port 48314 ssh2 Jul 15 08:38:56 server1 sshd\[24111\]: Invalid user fel from 61.95.233.61 Jul 15 08:38:56 server1 sshd\[24111\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.95.233.61 ...	2020-07-15 22:54:29
178.32.163.201	attackbots	Jul 15 07:11:39 propaganda sshd[67657]: Connection from 178.32.163.201 port 60230 on 10.0.0.160 port 22 rdomain "" Jul 15 07:11:39 propaganda sshd[67657]: Connection closed by 178.32.163.201 port 60230 [preauth]	2020-07-15 22:19:27
103.124.250.22	attackspambots	Unauthorized IMAP connection attempt	2020-07-15 22:26:14
139.99.121.6	attack	(mod_security) mod_security (id:20000005) triggered by 139.99.121.6 (SG/Singapore/ns558710.ip-139-99-121.net): 5 in the last 300 secs	2020-07-15 22:24:29
52.171.231.8	attackbotsspam	$f2bV_matches	2020-07-15 22:49:52
40.122.70.169	attackbots	Jul 15 17:15:59 hosting sshd[26889]: Invalid user remuar from 40.122.70.169 port 17714 Jul 15 17:15:59 hosting sshd[26890]: Invalid user remuar.ru from 40.122.70.169 port 17715 Jul 15 17:15:59 hosting sshd[26889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.122.70.169 Jul 15 17:15:59 hosting sshd[26889]: Invalid user remuar from 40.122.70.169 port 17714 Jul 15 17:16:00 hosting sshd[26889]: Failed password for invalid user remuar from 40.122.70.169 port 17714 ssh2 Jul 15 17:15:59 hosting sshd[26890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.122.70.169 Jul 15 17:15:59 hosting sshd[26890]: Invalid user remuar.ru from 40.122.70.169 port 17715 Jul 15 17:16:00 hosting sshd[26890]: Failed password for invalid user remuar.ru from 40.122.70.169 port 17715 ssh2 ...	2020-07-15 22:20:44
46.38.150.94	attackspam	Rude login attack (1213 tries in 1d)	2020-07-15 22:26:42
46.38.145.254	attackspam	Jul 15 16:14:29 srv01 postfix/smtpd\[16579\]: warning: unknown\[46.38.145.254\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 15 16:15:06 srv01 postfix/smtpd\[17447\]: warning: unknown\[46.38.145.254\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 15 16:15:11 srv01 postfix/smtpd\[17453\]: warning: unknown\[46.38.145.254\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 15 16:15:14 srv01 postfix/smtpd\[16579\]: warning: unknown\[46.38.145.254\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 15 16:15:34 srv01 postfix/smtpd\[17447\]: warning: unknown\[46.38.145.254\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-15 22:18:47
213.219.39.5	attack	SSH break in attempt ...	2020-07-15 22:14:45
191.235.71.191	attack	Jul 15 17:17:32 hosting sshd[27114]: Invalid user remuar from 191.235.71.191 port 16409 Jul 15 17:17:32 hosting sshd[27115]: Invalid user remuar.ru from 191.235.71.191 port 16410 Jul 15 17:17:32 hosting sshd[27114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.235.71.191 Jul 15 17:17:32 hosting sshd[27114]: Invalid user remuar from 191.235.71.191 port 16409 Jul 15 17:17:34 hosting sshd[27114]: Failed password for invalid user remuar from 191.235.71.191 port 16409 ssh2 Jul 15 17:17:32 hosting sshd[27115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.235.71.191 Jul 15 17:17:32 hosting sshd[27115]: Invalid user remuar.ru from 191.235.71.191 port 16410 Jul 15 17:17:34 hosting sshd[27115]: Failed password for invalid user remuar.ru from 191.235.71.191 port 16410 ssh2 ...	2020-07-15 22:21:27
192.35.169.23	attackspambots	07/15/2020-10:11:32.103391 192.35.169.23 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-07-15 22:44:21
23.96.108.2	attack	Jul 15 16:20:16 eventyay sshd[19925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.96.108.2 Jul 15 16:20:16 eventyay sshd[19924]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.96.108.2 Jul 15 16:20:18 eventyay sshd[19925]: Failed password for invalid user eventyay.com from 23.96.108.2 port 58876 ssh2 Jul 15 16:20:18 eventyay sshd[19924]: Failed password for invalid user eventyay from 23.96.108.2 port 58875 ssh2 ...	2020-07-15 22:23:50
110.185.107.51	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-15 22:43:57
40.76.36.154	attackbots	Jul 15 16:29:39 localhost sshd\[14986\]: Invalid user tripcomail from 40.76.36.154 Jul 15 16:29:39 localhost sshd\[14987\]: Invalid user vm-tripcomail from 40.76.36.154 Jul 15 16:29:39 localhost sshd\[14986\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.76.36.154 Jul 15 16:29:39 localhost sshd\[14987\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.76.36.154 Jul 15 16:29:41 localhost sshd\[14986\]: Failed password for invalid user tripcomail from 40.76.36.154 port 45445 ssh2 Jul 15 16:29:41 localhost sshd\[14987\]: Failed password for invalid user vm-tripcomail from 40.76.36.154 port 45446 ssh2 ...	2020-07-15 22:37:28

Recently Reported IPs

168.197.226.235	144.91.106.71	52.247.115.98	125.161.129.130
46.99.139.76	61.91.57.134	45.140.174.86	70.36.114.239
213.142.27.139	106.52.187.48	45.143.223.187	60.219.171.134
83.26.105.135	186.190.183.2	106.53.102.196	46.4.74.194
31.13.191.72	140.249.30.188	212.56.198.38	45.89.197.110