106.12.166.105

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 106.12.166.105 to port 2220 [J]	2020-01-26 15:01:05

Comments on same subnet:

IP	Type	Details	Datetime
106.12.166.167	attackbots	(sshd) Failed SSH login from 106.12.166.167 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 10 09:06:14 server5 sshd[13612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167 user=root Sep 10 09:06:16 server5 sshd[13612]: Failed password for root from 106.12.166.167 port 28239 ssh2 Sep 10 09:08:13 server5 sshd[14652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167 user=root Sep 10 09:08:15 server5 sshd[14652]: Failed password for root from 106.12.166.167 port 47445 ssh2 Sep 10 09:09:49 server5 sshd[15440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167 user=root	2020-09-10 21:14:50
106.12.166.167	attackspam	2020-09-09T16:49:02.423739abusebot.cloudsearch.cf sshd[21557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167 user=root 2020-09-09T16:49:03.993938abusebot.cloudsearch.cf sshd[21557]: Failed password for root from 106.12.166.167 port 49962 ssh2 2020-09-09T16:53:26.434033abusebot.cloudsearch.cf sshd[21658]: Invalid user db from 106.12.166.167 port 38951 2020-09-09T16:53:26.438493abusebot.cloudsearch.cf sshd[21658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167 2020-09-09T16:53:26.434033abusebot.cloudsearch.cf sshd[21658]: Invalid user db from 106.12.166.167 port 38951 2020-09-09T16:53:28.249717abusebot.cloudsearch.cf sshd[21658]: Failed password for invalid user db from 106.12.166.167 port 38951 ssh2 2020-09-09T16:57:42.255786abusebot.cloudsearch.cf sshd[21725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167 user=root 2 ...	2020-09-10 12:59:57
106.12.166.167	attackbotsspam	2020-09-09T16:49:02.423739abusebot.cloudsearch.cf sshd[21557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167 user=root 2020-09-09T16:49:03.993938abusebot.cloudsearch.cf sshd[21557]: Failed password for root from 106.12.166.167 port 49962 ssh2 2020-09-09T16:53:26.434033abusebot.cloudsearch.cf sshd[21658]: Invalid user db from 106.12.166.167 port 38951 2020-09-09T16:53:26.438493abusebot.cloudsearch.cf sshd[21658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167 2020-09-09T16:53:26.434033abusebot.cloudsearch.cf sshd[21658]: Invalid user db from 106.12.166.167 port 38951 2020-09-09T16:53:28.249717abusebot.cloudsearch.cf sshd[21658]: Failed password for invalid user db from 106.12.166.167 port 38951 ssh2 2020-09-09T16:57:42.255786abusebot.cloudsearch.cf sshd[21725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167 user=root 2 ...	2020-09-10 03:45:41
106.12.166.167	attackspam	Aug 28 14:05:46 root sshd[15349]: Failed password for root from 106.12.166.167 port 25023 ssh2 Aug 28 14:07:29 root sshd[15565]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167 Aug 28 14:07:31 root sshd[15565]: Failed password for invalid user portal from 106.12.166.167 port 41863 ssh2 ...	2020-08-28 22:52:29
106.12.166.167	attackspam	Aug 15 01:12:23 buvik sshd[20909]: Failed password for root from 106.12.166.167 port 36328 ssh2 Aug 15 01:14:52 buvik sshd[21214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167 user=root Aug 15 01:14:55 buvik sshd[21214]: Failed password for root from 106.12.166.167 port 13331 ssh2 ...	2020-08-15 07:59:56
106.12.166.167	attackspambots	Invalid user hosts from 106.12.166.167 port 27895	2020-07-27 17:25:41
106.12.166.167	attackspambots	Jul 25 23:41:38 game-panel sshd[2456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167 Jul 25 23:41:40 game-panel sshd[2456]: Failed password for invalid user tim from 106.12.166.167 port 62452 ssh2 Jul 25 23:46:15 game-panel sshd[2761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167	2020-07-26 08:02:48
106.12.166.167	attackbotsspam	2020-07-24T21:55:33.417371dmca.cloudsearch.cf sshd[30439]: Invalid user vae from 106.12.166.167 port 15659 2020-07-24T21:55:33.422467dmca.cloudsearch.cf sshd[30439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167 2020-07-24T21:55:33.417371dmca.cloudsearch.cf sshd[30439]: Invalid user vae from 106.12.166.167 port 15659 2020-07-24T21:55:35.307569dmca.cloudsearch.cf sshd[30439]: Failed password for invalid user vae from 106.12.166.167 port 15659 ssh2 2020-07-24T22:01:00.095060dmca.cloudsearch.cf sshd[30532]: Invalid user jing from 106.12.166.167 port 25662 2020-07-24T22:01:00.100275dmca.cloudsearch.cf sshd[30532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167 2020-07-24T22:01:00.095060dmca.cloudsearch.cf sshd[30532]: Invalid user jing from 106.12.166.167 port 25662 2020-07-24T22:01:02.878395dmca.cloudsearch.cf sshd[30532]: Failed password for invalid user jing from 106.12.166.1 ...	2020-07-25 07:40:11
106.12.166.167	attackspam	web-1 [ssh] SSH Attack	2020-07-11 12:26:40
106.12.166.167	attack	Jun 30 17:53:34 lukav-desktop sshd\[9714\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167 user=root Jun 30 17:53:35 lukav-desktop sshd\[9714\]: Failed password for root from 106.12.166.167 port 58176 ssh2 Jun 30 17:57:56 lukav-desktop sshd\[9767\]: Invalid user demo from 106.12.166.167 Jun 30 17:57:56 lukav-desktop sshd\[9767\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167 Jun 30 17:57:58 lukav-desktop sshd\[9767\]: Failed password for invalid user demo from 106.12.166.167 port 47993 ssh2	2020-07-01 08:53:24
106.12.166.167	attackbotsspam	Jun 30 08:43:29 roki-contabo sshd\[14082\]: Invalid user ubuntu from 106.12.166.167 Jun 30 08:43:29 roki-contabo sshd\[14082\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167 Jun 30 08:43:31 roki-contabo sshd\[14082\]: Failed password for invalid user ubuntu from 106.12.166.167 port 18181 ssh2 Jun 30 08:50:12 roki-contabo sshd\[14227\]: Invalid user virtual from 106.12.166.167 Jun 30 08:50:12 roki-contabo sshd\[14227\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167 ...	2020-06-30 20:21:38
106.12.166.167	attack	Jun 2 16:59:41 ny01 sshd[27294]: Failed password for root from 106.12.166.167 port 47942 ssh2 Jun 2 17:03:29 ny01 sshd[27901]: Failed password for root from 106.12.166.167 port 46027 ssh2	2020-06-03 05:23:55
106.12.166.166	attackspam	2020-06-01T12:31:29.116719abusebot-2.cloudsearch.cf sshd[31909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.166 user=root 2020-06-01T12:31:31.070617abusebot-2.cloudsearch.cf sshd[31909]: Failed password for root from 106.12.166.166 port 47490 ssh2 2020-06-01T12:35:39.059360abusebot-2.cloudsearch.cf sshd[31938]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.166 user=root 2020-06-01T12:35:40.998436abusebot-2.cloudsearch.cf sshd[31938]: Failed password for root from 106.12.166.166 port 59140 ssh2 2020-06-01T12:37:35.509165abusebot-2.cloudsearch.cf sshd[31996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.166 user=root 2020-06-01T12:37:37.708848abusebot-2.cloudsearch.cf sshd[31996]: Failed password for root from 106.12.166.166 port 53064 ssh2 2020-06-01T12:39:13.199731abusebot-2.cloudsearch.cf sshd[32044]: pam_unix(sshd:auth): ...	2020-06-01 23:06:36
106.12.166.166	attackspambots	May 31 06:58:55 jane sshd[5158]: Failed password for backup from 106.12.166.166 port 49286 ssh2 May 31 07:02:54 jane sshd[9172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.166 ...	2020-05-31 13:29:31
106.12.166.166	attackbotsspam	2020-05-29T10:54:52.679092billing sshd[29711]: Failed password for root from 106.12.166.166 port 60388 ssh2 2020-05-29T10:58:42.687280billing sshd[6007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.166 user=root 2020-05-29T10:58:44.887690billing sshd[6007]: Failed password for root from 106.12.166.166 port 59312 ssh2 ...	2020-05-29 15:36:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.166.105
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33117
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.166.105.			IN	A

;; AUTHORITY SECTION:
.			499	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012600 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 26 15:00:58 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 105.166.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 105.166.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.68.70.175	attackspambots	Jul 31 15:04:37 *** sshd[21504]: Invalid user cvsroot from 51.68.70.175	2019-08-01 02:19:53
159.65.198.48	attackspambots	Jul 9 20:47:26 dallas01 sshd[24704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.198.48 Jul 9 20:47:29 dallas01 sshd[24704]: Failed password for invalid user mei from 159.65.198.48 port 35400 ssh2 Jul 9 20:49:43 dallas01 sshd[24952]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.198.48 Jul 9 20:49:46 dallas01 sshd[24952]: Failed password for invalid user bk from 159.65.198.48 port 52614 ssh2	2019-08-01 01:41:05
104.248.255.118	attack	Invalid user usuario from 104.248.255.118 port 40920	2019-08-01 02:14:59
176.31.172.40	attackspambots	Jun 24 22:07:41 dallas01 sshd[667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.172.40 Jun 24 22:07:43 dallas01 sshd[667]: Failed password for invalid user succes from 176.31.172.40 port 49016 ssh2 Jun 24 22:09:13 dallas01 sshd[1145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.172.40 Jun 24 22:09:15 dallas01 sshd[1145]: Failed password for invalid user cmschine from 176.31.172.40 port 37808 ssh2	2019-08-01 02:09:48
5.189.162.208	attack	Invalid user tester from 5.189.162.208 port 37706	2019-08-01 02:06:44
79.137.35.70	attackspam	Invalid user maxwell from 79.137.35.70 port 39096	2019-08-01 01:45:10
27.206.114.94	attackspam	Telnet/23 MH Probe, BF, Hack -	2019-08-01 01:49:14
122.114.253.197	attackbotsspam	Tried sshing with brute force.	2019-08-01 02:12:57
121.160.198.198	attackbotsspam	Jul 31 17:45:08 vps647732 sshd[2176]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.160.198.198 Jul 31 17:45:10 vps647732 sshd[2176]: Failed password for invalid user mauricio from 121.160.198.198 port 54888 ssh2 ...	2019-08-01 02:13:30
54.38.156.181	attackbots	Automatic report - Banned IP Access	2019-08-01 01:34:23
62.141.46.160	attackbots	Invalid user icosftp from 62.141.46.160 port 39238	2019-08-01 01:33:43
94.23.204.136	attackspam	Automatic report - Banned IP Access	2019-08-01 02:17:01
103.199.2.200	attackspam	Automatic report - Banned IP Access	2019-08-01 02:16:15
61.19.38.146	attackbotsspam	Invalid user pi from 61.19.38.146 port 49636	2019-08-01 02:18:42
51.255.83.178	attack	Invalid user xxxxx from 51.255.83.178 port 48618	2019-08-01 02:03:53

Recently Reported IPs

95.141.27.202	138.185.193.93	190.62.210.233	5.251.31.178
167.114.36.165	171.35.167.186	59.102.252.31	36.72.212.28
93.190.142.157	172.74.103.26	47.110.58.14	147.159.231.196
90.103.18.119	95.37.246.115	168.11.129.206	213.61.168.43
197.248.102.161	109.94.116.251	40.117.153.174	91.162.248.249