106.12.203.12 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-04-04 20:55:41
attackspam	Invalid user zion from 106.12.203.12 port 42320	2020-03-28 03:09:40
attackbotsspam	Mar 23 21:39:07 sd-53420 sshd\[20600\]: Invalid user cdr from 106.12.203.12 Mar 23 21:39:07 sd-53420 sshd\[20600\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.203.12 Mar 23 21:39:09 sd-53420 sshd\[20600\]: Failed password for invalid user cdr from 106.12.203.12 port 54744 ssh2 Mar 23 21:43:15 sd-53420 sshd\[21932\]: Invalid user denise from 106.12.203.12 Mar 23 21:43:15 sd-53420 sshd\[21932\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.203.12 ...	2020-03-24 04:54:11

Type

Details

Datetime

attackbotsspam

SSH authentication failure x 6 reported by Fail2Ban
...

2020-04-04 20:55:41

attackspam

Invalid user zion from 106.12.203.12 port 42320

2020-03-28 03:09:40

attackbotsspam

Mar 23 21:39:07 sd-53420 sshd\[20600\]: Invalid user cdr from 106.12.203.12
Mar 23 21:39:07 sd-53420 sshd\[20600\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.203.12
Mar 23 21:39:09 sd-53420 sshd\[20600\]: Failed password for invalid user cdr from 106.12.203.12 port 54744 ssh2
Mar 23 21:43:15 sd-53420 sshd\[21932\]: Invalid user denise from 106.12.203.12
Mar 23 21:43:15 sd-53420 sshd\[21932\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.203.12
...

2020-03-24 04:54:11

Comments on same subnet:

IP	Type	Details	Datetime
106.12.203.177	attackspam	SSH Brute Force	2020-04-29 13:13:03
106.12.203.177	attackspam	Dec 3 15:28:10 zeus sshd[5492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.203.177 Dec 3 15:28:12 zeus sshd[5492]: Failed password for invalid user password from 106.12.203.177 port 59328 ssh2 Dec 3 15:37:17 zeus sshd[5739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.203.177 Dec 3 15:37:19 zeus sshd[5739]: Failed password for invalid user csssuser123 from 106.12.203.177 port 36044 ssh2	2019-12-04 00:28:44
106.12.203.177	attackspam	Dec 3 08:02:03 ns381471 sshd[9681]: Failed password for root from 106.12.203.177 port 56356 ssh2	2019-12-03 15:33:06
106.12.203.177	attackspambots	Nov 29 08:47:50 venus sshd\[16492\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.203.177 user=root Nov 29 08:47:52 venus sshd\[16492\]: Failed password for root from 106.12.203.177 port 41018 ssh2 Nov 29 08:51:42 venus sshd\[16575\]: Invalid user bundschuh from 106.12.203.177 port 47662 ...	2019-11-29 16:56:50
106.12.203.177	attackspambots	<6 unauthorized SSH connections	2019-11-16 17:06:40
106.12.203.177	attackbots	Oct 31 03:50:35 php1 sshd\[24720\]: Invalid user ubuntu from 106.12.203.177 Oct 31 03:50:35 php1 sshd\[24720\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.203.177 Oct 31 03:50:37 php1 sshd\[24720\]: Failed password for invalid user ubuntu from 106.12.203.177 port 35096 ssh2 Oct 31 03:57:24 php1 sshd\[25379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.203.177 user=root Oct 31 03:57:26 php1 sshd\[25379\]: Failed password for root from 106.12.203.177 port 47140 ssh2	2019-11-01 00:38:07
106.12.203.210	attackbotsspam	2019-10-29T22:06:40.522234abusebot-7.cloudsearch.cf sshd\[11586\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.203.210 user=root	2019-10-30 06:33:59
106.12.203.210	attackspambots	Tried sshing with brute force.	2019-10-12 10:02:48
106.12.203.210	attack	Oct 9 22:46:51 bouncer sshd\[12339\]: Invalid user Michelle@2017 from 106.12.203.210 port 34075 Oct 9 22:46:51 bouncer sshd\[12339\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.203.210 Oct 9 22:46:53 bouncer sshd\[12339\]: Failed password for invalid user Michelle@2017 from 106.12.203.210 port 34075 ssh2 ...	2019-10-10 04:51:14
106.12.203.210	attackbotsspam	Oct 6 20:22:50 wbs sshd\[30249\]: Invalid user Orange@2017 from 106.12.203.210 Oct 6 20:22:50 wbs sshd\[30249\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.203.210 Oct 6 20:22:53 wbs sshd\[30249\]: Failed password for invalid user Orange@2017 from 106.12.203.210 port 52044 ssh2 Oct 6 20:27:23 wbs sshd\[30641\]: Invalid user P@55W0RD1 from 106.12.203.210 Oct 6 20:27:23 wbs sshd\[30641\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.203.210	2019-10-07 15:34:14
106.12.203.177	attackspambots	Oct 6 06:35:07 www sshd\[34795\]: Failed password for root from 106.12.203.177 port 48344 ssh2Oct 6 06:39:57 www sshd\[34951\]: Failed password for root from 106.12.203.177 port 54460 ssh2Oct 6 06:44:51 www sshd\[35040\]: Failed password for root from 106.12.203.177 port 60578 ssh2 ...	2019-10-06 18:49:34
106.12.203.210	attack	2019-10-04T21:28:08.040753hub.schaetter.us sshd\[28681\]: Invalid user Dakota@2017 from 106.12.203.210 port 50898 2019-10-04T21:28:08.052791hub.schaetter.us sshd\[28681\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.203.210 2019-10-04T21:28:09.839511hub.schaetter.us sshd\[28681\]: Failed password for invalid user Dakota@2017 from 106.12.203.210 port 50898 ssh2 2019-10-04T21:31:46.493812hub.schaetter.us sshd\[28717\]: Invalid user Culture2017 from 106.12.203.210 port 38811 2019-10-04T21:31:46.503227hub.schaetter.us sshd\[28717\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.203.210 ...	2019-10-05 06:15:47
106.12.203.177	attackbotsspam	$f2bV_matches	2019-10-03 18:36:06
106.12.203.210	attack	Brute force attempt	2019-09-25 05:14:58
106.12.203.210	attack	Sep 16 22:58:45 eventyay sshd[3577]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.203.210 Sep 16 22:58:47 eventyay sshd[3577]: Failed password for invalid user ringo from 106.12.203.210 port 35195 ssh2 Sep 16 23:02:13 eventyay sshd[3680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.203.210 ...	2019-09-17 05:25:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.203.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36834
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.203.12.			IN	A

;; AUTHORITY SECTION:
.			491	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032301 1800 900 604800 86400

;; Query time: 436 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 24 04:54:07 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 12.203.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 12.203.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
34.102.136.180	attackbots	spam	2020-09-30 19:14:45
106.12.172.207	attack	Sep 30 09:12:02 vpn01 sshd[11281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.172.207 Sep 30 09:12:04 vpn01 sshd[11281]: Failed password for invalid user alberto from 106.12.172.207 port 52448 ssh2 ...	2020-09-30 18:44:09
184.179.216.145	attackbots	[munged]::443 184.179.216.145 - - [30/Sep/2020:03:07:02 +0200] "POST /[munged]: HTTP/1.1" 200 6184 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 184.179.216.145 - - [30/Sep/2020:03:07:06 +0200] "POST /[munged]: HTTP/1.1" 200 6184 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 184.179.216.145 - - [30/Sep/2020:03:07:09 +0200] "POST /[munged]: HTTP/1.1" 200 6184 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 184.179.216.145 - - [30/Sep/2020:03:07:13 +0200] "POST /[munged]: HTTP/1.1" 200 6184 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 184.179.216.145 - - [30/Sep/2020:03:07:18 +0200] "POST /[munged]: HTTP/1.1" 200 6184 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 184.179.216.145 - - [30/Sep/20	2020-09-30 18:59:48
187.189.51.117	attack	ssh brute force	2020-09-30 18:45:11
151.254.156.221	attackspam	1601411608 - 09/29/2020 22:33:28 Host: 151.254.156.221/151.254.156.221 Port: 445 TCP Blocked	2020-09-30 18:46:22
69.229.6.31	attackbots	Sep 30 10:52:40 sip sshd[18813]: Invalid user amssys from 69.229.6.31 port 37066 Sep 30 10:52:42 sip sshd[18813]: Failed password for invalid user amssys from 69.229.6.31 port 37066 ssh2 Sep 30 10:58:57 sip sshd[20091]: Invalid user travel from 69.229.6.31 port 46436 ...	2020-09-30 19:14:13
1.197.130.133	attackspambots	1601411594 - 09/29/2020 22:33:14 Host: 1.197.130.133/1.197.130.133 Port: 445 TCP Blocked	2020-09-30 18:53:53
5.188.84.115	attackspam	0,30-01/02 [bc01/m14] PostRequest-Spammer scoring: Lusaka01	2020-09-30 18:56:41
111.229.129.64	attack	2020-09-30T05:54:05.2079781495-001 sshd[53102]: Invalid user admin from 111.229.129.64 port 51694 2020-09-30T05:54:07.0398881495-001 sshd[53102]: Failed password for invalid user admin from 111.229.129.64 port 51694 ssh2 2020-09-30T05:59:08.1008181495-001 sshd[53332]: Invalid user rich from 111.229.129.64 port 52512 2020-09-30T05:59:08.1037641495-001 sshd[53332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.129.64 2020-09-30T05:59:08.1008181495-001 sshd[53332]: Invalid user rich from 111.229.129.64 port 52512 2020-09-30T05:59:10.1972871495-001 sshd[53332]: Failed password for invalid user rich from 111.229.129.64 port 52512 ssh2 ...	2020-09-30 18:57:28
123.233.116.36	attackspam	Port Scan ...	2020-09-30 18:58:18
218.92.0.205	attackbots	Sep 30 12:48:58 santamaria sshd\[9222\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.205 user=root Sep 30 12:49:00 santamaria sshd\[9222\]: Failed password for root from 218.92.0.205 port 58767 ssh2 Sep 30 12:49:02 santamaria sshd\[9222\]: Failed password for root from 218.92.0.205 port 58767 ssh2 ...	2020-09-30 18:55:21
123.16.70.144	attack	Attempted Email Sync. Password Hacking/Probing.	2020-09-30 19:13:56
80.174.107.37	attackbotsspam	Automatic report - Port Scan Attack	2020-09-30 18:45:27
139.59.211.245	attack	Invalid user administrador from 139.59.211.245 port 40100	2020-09-30 19:13:32
189.240.117.236	attack	Sep 30 07:40:16 abendstille sshd\[20400\]: Invalid user admin from 189.240.117.236 Sep 30 07:40:16 abendstille sshd\[20400\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.240.117.236 Sep 30 07:40:18 abendstille sshd\[20400\]: Failed password for invalid user admin from 189.240.117.236 port 56488 ssh2 Sep 30 07:44:59 abendstille sshd\[24661\]: Invalid user lisa from 189.240.117.236 Sep 30 07:44:59 abendstille sshd\[24661\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.240.117.236 ...	2020-09-30 18:41:55

Recently Reported IPs

189.70.237.99	92.93.170.163	104.197.188.59	117.207.132.132
193.159.105.206	90.127.82.198	79.139.189.193	97.16.84.76
182.53.250.245	103.246.240.30	91.11.125.206	213.136.93.52
153.189.212.64	24.233.201.115	99.57.139.229	202.82.212.250
188.180.83.217	173.238.88.103	199.146.137.76	151.84.69.54