106.12.216.107

Basic Info

City: unknown

Region: Beijing

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: Beijing Baidu Netcom Science and Technology Co., Ltd.

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.12.216.155	attackspam	Hacking	2020-10-13 03:37:18
106.12.216.155	attackspambots	Hacking	2020-10-12 19:09:34
106.12.216.91	attackbotsspam	$f2bV_matches	2020-08-24 16:53:38
106.12.216.91	attackbotsspam	Aug 23 12:22:13 scw-tender-jepsen sshd[14691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.216.91 Aug 23 12:22:15 scw-tender-jepsen sshd[14691]: Failed password for invalid user client from 106.12.216.91 port 53198 ssh2	2020-08-23 23:40:35
106.12.216.155	attackbots	generic web scan	2020-07-04 09:50:57
106.12.216.237	attackbotsspam	Invalid user qxb from 106.12.216.237 port 56432	2020-03-28 02:57:18
106.12.216.15	attackbotsspam	fail2ban	2020-03-26 22:38:22
106.12.216.237	attack	Mar 22 03:16:43 itv-usvr-01 sshd[15297]: Invalid user nexus from 106.12.216.237 Mar 22 03:16:43 itv-usvr-01 sshd[15297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.216.237 Mar 22 03:16:43 itv-usvr-01 sshd[15297]: Invalid user nexus from 106.12.216.237 Mar 22 03:16:45 itv-usvr-01 sshd[15297]: Failed password for invalid user nexus from 106.12.216.237 port 55160 ssh2 Mar 22 03:20:10 itv-usvr-01 sshd[15422]: Invalid user admin1 from 106.12.216.237	2020-03-22 04:44:39
106.12.216.15	attackbotsspam	SSH Brute-Force attacks	2019-11-16 18:43:00
106.12.216.15	attack	Nov 15 15:25:01 ns382633 sshd\[28409\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.216.15 user=root Nov 15 15:25:03 ns382633 sshd\[28409\]: Failed password for root from 106.12.216.15 port 55578 ssh2 Nov 15 15:38:45 ns382633 sshd\[31148\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.216.15 user=root Nov 15 15:38:47 ns382633 sshd\[31148\]: Failed password for root from 106.12.216.15 port 39152 ssh2 Nov 15 15:44:26 ns382633 sshd\[32185\]: Invalid user geigad from 106.12.216.15 port 44274 Nov 15 15:44:26 ns382633 sshd\[32185\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.216.15	2019-11-16 00:24:14
106.12.216.15	attackspam	Nov 5 05:53:30 MK-Soft-VM5 sshd[2888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.216.15 Nov 5 05:53:32 MK-Soft-VM5 sshd[2888]: Failed password for invalid user user1 from 106.12.216.15 port 57210 ssh2 ...	2019-11-05 13:57:40
106.12.216.15	attackspam	Nov 3 17:34:50 server sshd\[2683\]: Invalid user ubnt from 106.12.216.15 Nov 3 17:34:50 server sshd\[2683\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.216.15 Nov 3 17:34:52 server sshd\[2683\]: Failed password for invalid user ubnt from 106.12.216.15 port 60538 ssh2 Nov 3 17:57:01 server sshd\[8687\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.216.15 user=root Nov 3 17:57:03 server sshd\[8687\]: Failed password for root from 106.12.216.15 port 51718 ssh2 ...	2019-11-04 01:45:16
106.12.216.15	attack	Nov 3 06:24:58 MK-Soft-VM3 sshd[9748]: Failed password for root from 106.12.216.15 port 57024 ssh2 Nov 3 06:29:59 MK-Soft-VM3 sshd[10031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.216.15 ...	2019-11-03 13:43:08
106.12.216.70	attackspambots	Sep 1 02:58:25 server sshd\[23836\]: Invalid user alex from 106.12.216.70 port 59962 Sep 1 02:58:25 server sshd\[23836\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.216.70 Sep 1 02:58:27 server sshd\[23836\]: Failed password for invalid user alex from 106.12.216.70 port 59962 ssh2 Sep 1 03:01:02 server sshd\[12786\]: Invalid user amanda from 106.12.216.70 port 55972 Sep 1 03:01:02 server sshd\[12786\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.216.70	2019-09-01 12:00:03
106.12.216.63	attackbots	Jul 13 07:37:19 [host] sshd[4026]: Invalid user ftp_test from 106.12.216.63 Jul 13 07:37:19 [host] sshd[4026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.216.63 Jul 13 07:37:21 [host] sshd[4026]: Failed password for invalid user ftp_test from 106.12.216.63 port 58682 ssh2	2019-07-13 15:34:32

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.216.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9742
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.216.107.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050200 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu May 02 21:01:14 +08 2019
;; MSG SIZE  rcvd: 118

Host info

Host 107.216.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 107.216.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.29.65.240	attackspambots	SSH Invalid Login	2020-07-05 07:21:56
177.134.189.78	attack	xmlrpc attack	2020-07-05 08:02:36
167.71.105.241	attackbotsspam	Fail2Ban Ban Triggered	2020-07-05 07:47:21
67.204.179.99	attackspambots	Lines containing failures of 67.204.179.99 Jul 2 01:13:57 kmh-wmh-001-nbg01 sshd[9396]: Invalid user bharat from 67.204.179.99 port 57220 Jul 2 01:13:57 kmh-wmh-001-nbg01 sshd[9396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.204.179.99 Jul 2 01:13:59 kmh-wmh-001-nbg01 sshd[9396]: Failed password for invalid user bharat from 67.204.179.99 port 57220 ssh2 Jul 2 01:14:01 kmh-wmh-001-nbg01 sshd[9396]: Received disconnect from 67.204.179.99 port 57220:11: Bye Bye [preauth] Jul 2 01:14:01 kmh-wmh-001-nbg01 sshd[9396]: Disconnected from invalid user bharat 67.204.179.99 port 57220 [preauth] Jul 2 01:24:58 kmh-wmh-001-nbg01 sshd[10925]: Invalid user cooper from 67.204.179.99 port 43526 Jul 2 01:24:58 kmh-wmh-001-nbg01 sshd[10925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.204.179.99 Jul 2 01:25:00 kmh-wmh-001-nbg01 sshd[10925]: Failed password for invalid user cooper from ........ ------------------------------	2020-07-05 08:02:11
49.233.208.45	attackspam	2020-07-04T21:54:50.732694abusebot-8.cloudsearch.cf sshd[22152]: Invalid user priyanka from 49.233.208.45 port 38516 2020-07-04T21:54:50.739043abusebot-8.cloudsearch.cf sshd[22152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.208.45 2020-07-04T21:54:50.732694abusebot-8.cloudsearch.cf sshd[22152]: Invalid user priyanka from 49.233.208.45 port 38516 2020-07-04T21:54:52.414753abusebot-8.cloudsearch.cf sshd[22152]: Failed password for invalid user priyanka from 49.233.208.45 port 38516 ssh2 2020-07-04T21:58:13.306514abusebot-8.cloudsearch.cf sshd[22161]: Invalid user esteban from 49.233.208.45 port 44534 2020-07-04T21:58:13.311707abusebot-8.cloudsearch.cf sshd[22161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.208.45 2020-07-04T21:58:13.306514abusebot-8.cloudsearch.cf sshd[22161]: Invalid user esteban from 49.233.208.45 port 44534 2020-07-04T21:58:15.524116abusebot-8.cloudsearch.cf sshd[2 ...	2020-07-05 07:52:02
190.205.59.6	attackspam	20 attempts against mh-ssh on echoip	2020-07-05 07:41:52
46.101.95.65	attackbots	pixelfritteuse.de 46.101.95.65 [04/Jul/2020:23:40:45 +0200] "POST /wp-login.php HTTP/1.1" 200 5979 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" pixelfritteuse.de 46.101.95.65 [04/Jul/2020:23:40:45 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4087 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-05 07:42:47
85.204.116.85	attackbots	Lines containing failures of 85.204.116.85 (max 1000) Jul 4 23:36:01 efa3 sshd[26996]: Address 85.204.116.85 maps to slot0.khgftsghbjg.cf, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jul 4 23:36:01 efa3 sshd[26996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.204.116.85 user=r.r Jul 4 23:36:03 efa3 sshd[26996]: Failed password for r.r from 85.204.116.85 port 39286 ssh2 Jul 4 23:36:03 efa3 sshd[26996]: Received disconnect from 85.204.116.85 port 39286:11: Bye Bye [preauth] Jul 4 23:36:03 efa3 sshd[26996]: Disconnected from 85.204.116.85 port 39286 [preauth] Jul 4 23:36:03 efa3 sshd[27126]: Address 85.204.116.85 maps to slot0.khgftsghbjg.cf, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jul 4 23:36:03 efa3 sshd[27126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.204.116.85 user=admin Jul 4 23:36:05 efa3 sshd[27126]: Fai........ ------------------------------	2020-07-05 07:26:41
83.167.87.198	attackbotsspam	Jul 5 01:52:46 piServer sshd[29876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.167.87.198 Jul 5 01:52:48 piServer sshd[29876]: Failed password for invalid user lzb from 83.167.87.198 port 46771 ssh2 Jul 5 01:56:29 piServer sshd[30258]: Failed password for root from 83.167.87.198 port 45240 ssh2 ...	2020-07-05 08:02:51
139.59.161.78	attackspam	SSH Invalid Login	2020-07-05 07:55:59
203.127.11.206	attackspambots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-07-05 07:55:08
14.169.255.42	attack	Jul 4 23:30:34 offspring postfix/smtpd[11628]: warning: hostname static.vnpt.vn does not resolve to address 14.169.255.42 Jul 4 23:30:34 offspring postfix/smtpd[11628]: connect from unknown[14.169.255.42] Jul 4 23:30:37 offspring postfix/smtpd[11628]: warning: unknown[14.169.255.42]: SASL PLAIN authentication failed: authentication failure Jul 4 23:30:38 offspring postfix/smtpd[11628]: warning: unknown[14.169.255.42]: SASL LOGIN authentication failed: authentication failure Jul 4 23:30:38 offspring postfix/smtpd[11628]: warning: unknown[14.169.255.42]: SASL CRAM-MD5 authentication failed: authentication failure Jul 4 23:30:39 offspring postfix/smtpd[11628]: disconnect from unknown[14.169.255.42] Jul 4 23:30:39 offspring postfix/smtpd[11628]: warning: hostname static.vnpt.vn does not resolve to address 14.169.255.42 Jul 4 23:30:39 offspring postfix/smtpd[11628]: connect from unknown[14.169.255.42] Jul 4 23:30:42 offspring postfix/smtpd[11628]: warning: unknown[1........ -------------------------------	2020-07-05 07:19:00
134.209.197.218	attackbots	110. On Jul 4 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 134.209.197.218.	2020-07-05 07:54:10
120.92.109.187	attack	frenzy	2020-07-05 07:27:20
120.88.46.170	attackbotsspam	1593898857 - 07/04/2020 23:40:57 Host: 120.88.46.170/120.88.46.170 Port: 22 TCP Blocked	2020-07-05 07:30:40

Recently Reported IPs

197.72.82.156	52.17.144.99	218.92.0.157	161.233.130.110
79.9.81.48	114.237.109.108	31.71.33.245	177.52.251.14
177.45.200.97	66.249.66.89	32.44.212.133	170.82.23.204
7.113.23.109	125.46.200.46	38.35.61.17	146.215.25.127
27.157.253.191	61.58.138.209	216.237.209.81	226.64.174.255