106.12.61.168 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Feb 17 18:40:52 vmanager6029 sshd\[13989\]: Invalid user rootalias from 106.12.61.168 port 60880 Feb 17 18:40:52 vmanager6029 sshd\[13989\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.168 Feb 17 18:40:53 vmanager6029 sshd\[13989\]: Failed password for invalid user rootalias from 106.12.61.168 port 60880 ssh2	2020-02-18 02:25:39
attackspambots	pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.168 Failed password for invalid user 123123 from 106.12.61.168 port 49610 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.168	2020-02-12 17:12:06
attack	...	2020-02-10 05:36:27
attack	Feb 4 18:59:27 vps58358 sshd\[6383\]: Invalid user 123456 from 106.12.61.168Feb 4 18:59:28 vps58358 sshd\[6383\]: Failed password for invalid user 123456 from 106.12.61.168 port 50396 ssh2Feb 4 19:04:09 vps58358 sshd\[6401\]: Invalid user taras from 106.12.61.168Feb 4 19:04:11 vps58358 sshd\[6401\]: Failed password for invalid user taras from 106.12.61.168 port 33114 ssh2Feb 4 19:08:31 vps58358 sshd\[6423\]: Invalid user sobols from 106.12.61.168Feb 4 19:08:33 vps58358 sshd\[6423\]: Failed password for invalid user sobols from 106.12.61.168 port 41160 ssh2 ...	2020-02-05 02:41:01
attackspambots	Jan 25 11:25:55 onepro2 sshd[32292]: Failed password for root from 106.12.61.168 port 50490 ssh2 Jan 25 12:15:11 onepro2 sshd[725]: Failed password for invalid user vision from 106.12.61.168 port 59798 ssh2 Jan 25 13:05:47 onepro2 sshd[1183]: Failed password for root from 106.12.61.168 port 42704 ssh2	2020-01-26 03:07:07
attackbotsspam	Jan 24 02:11:39 vps647732 sshd[30346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.168 Jan 24 02:11:42 vps647732 sshd[30346]: Failed password for invalid user postgres from 106.12.61.168 port 60034 ssh2 ...	2020-01-24 09:22:44
attack	2020-01-11T15:17:34.751656scmdmz1 sshd[13420]: Invalid user ypa from 106.12.61.168 port 57768 2020-01-11T15:17:34.754641scmdmz1 sshd[13420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.168 2020-01-11T15:17:34.751656scmdmz1 sshd[13420]: Invalid user ypa from 106.12.61.168 port 57768 2020-01-11T15:17:36.619513scmdmz1 sshd[13420]: Failed password for invalid user ypa from 106.12.61.168 port 57768 ssh2 2020-01-11T15:25:49.578562scmdmz1 sshd[14014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.168 user=root 2020-01-11T15:25:52.066494scmdmz1 sshd[14014]: Failed password for root from 106.12.61.168 port 39406 ssh2 ...	2020-01-11 22:39:12
attackspam	Nov 27 17:36:48 sauna sshd[48484]: Failed password for root from 106.12.61.168 port 48436 ssh2 Nov 27 17:46:16 sauna sshd[48768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.168 ...	2019-11-28 03:41:55
attack	Nov 21 09:04:15 server sshd\[16297\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.168 user=root Nov 21 09:04:17 server sshd\[16297\]: Failed password for root from 106.12.61.168 port 38254 ssh2 Nov 21 09:15:35 server sshd\[19231\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.168 user=root Nov 21 09:15:36 server sshd\[19231\]: Failed password for root from 106.12.61.168 port 45504 ssh2 Nov 21 09:26:05 server sshd\[21710\]: Invalid user rpm from 106.12.61.168 ...	2019-11-21 18:04:17
attackspambots	Nov 12 14:51:39 *** sshd[22943]: Invalid user ubuntu from 106.12.61.168	2019-11-12 23:22:32
attackspam	Oct 24 00:14:27 MK-Soft-VM4 sshd[12799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.168 Oct 24 00:14:30 MK-Soft-VM4 sshd[12799]: Failed password for invalid user abc!QAZWSX from 106.12.61.168 port 50578 ssh2 ...	2019-10-24 07:25:33
attackbotsspam	2019-10-01T10:25:26.9783551495-001 sshd\[19189\]: Invalid user os from 106.12.61.168 port 33812 2019-10-01T10:25:26.9819391495-001 sshd\[19189\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.168 2019-10-01T10:25:29.0292781495-001 sshd\[19189\]: Failed password for invalid user os from 106.12.61.168 port 33812 ssh2 2019-10-01T10:37:43.7424891495-001 sshd\[20149\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.168 user=root 2019-10-01T10:37:45.9658301495-001 sshd\[20149\]: Failed password for root from 106.12.61.168 port 43344 ssh2 2019-10-01T10:50:02.6279861495-001 sshd\[21074\]: Invalid user master from 106.12.61.168 port 52914 ...	2019-10-01 23:13:00
attack	Sep 24 16:01:00 andromeda sshd\[14071\]: Invalid user qa from 106.12.61.168 port 58080 Sep 24 16:01:00 andromeda sshd\[14071\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.168 Sep 24 16:01:02 andromeda sshd\[14071\]: Failed password for invalid user qa from 106.12.61.168 port 58080 ssh2	2019-09-24 22:18:31
attack	Sep 9 00:02:20 ArkNodeAT sshd\[1810\]: Invalid user user02 from 106.12.61.168 Sep 9 00:02:20 ArkNodeAT sshd\[1810\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.168 Sep 9 00:02:22 ArkNodeAT sshd\[1810\]: Failed password for invalid user user02 from 106.12.61.168 port 38950 ssh2	2019-09-09 06:42:25

Comments on same subnet:

IP	Type	Details	Datetime
106.12.61.64	attackbotsspam	Jun 29 03:59:36 dhoomketu sshd[1116728]: Invalid user assist from 106.12.61.64 port 41570 Jun 29 03:59:36 dhoomketu sshd[1116728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.64 Jun 29 03:59:36 dhoomketu sshd[1116728]: Invalid user assist from 106.12.61.64 port 41570 Jun 29 03:59:38 dhoomketu sshd[1116728]: Failed password for invalid user assist from 106.12.61.64 port 41570 ssh2 Jun 29 04:02:48 dhoomketu sshd[1116790]: Invalid user ftp-user from 106.12.61.64 port 60664 ...	2020-06-29 07:27:44
106.12.61.64	attackbots	(sshd) Failed SSH login from 106.12.61.64 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 26 22:30:08 s1 sshd[9434]: Invalid user zhangjie from 106.12.61.64 port 59052 Jun 26 22:30:11 s1 sshd[9434]: Failed password for invalid user zhangjie from 106.12.61.64 port 59052 ssh2 Jun 26 22:51:23 s1 sshd[10937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.64 user=root Jun 26 22:51:25 s1 sshd[10937]: Failed password for root from 106.12.61.64 port 40284 ssh2 Jun 26 22:53:53 s1 sshd[11089]: Invalid user logic from 106.12.61.64 port 55470	2020-06-27 06:46:05
106.12.61.64	attack	bruteforce detected	2020-06-18 18:14:09
106.12.61.64	attack	$f2bV_matches	2020-06-03 15:24:25
106.12.61.64	attackbotsspam	IP blocked	2020-05-24 16:56:12
106.12.61.64	attack	May 22 07:01:33 plex sshd[31906]: Invalid user vtq from 106.12.61.64 port 42892	2020-05-22 15:25:31
106.12.61.64	attack	May 16 04:10:55 s158375 sshd[17556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.64	2020-05-17 01:11:25
106.12.61.64	attackspambots	May 15 12:35:31 webhost01 sshd[24757]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.64 May 15 12:35:34 webhost01 sshd[24757]: Failed password for invalid user amal from 106.12.61.64 port 56042 ssh2 ...	2020-05-15 13:43:42
106.12.61.64	attackbotsspam	Observed on multiple hosts.	2020-05-05 14:23:47
106.12.61.64	attackbotsspam	2020-03-31 UTC: (2x) - nproc,root	2020-04-01 18:44:38
106.12.61.64	attack	sshd jail - ssh hack attempt	2020-03-25 12:25:50
106.12.61.64	attackbotsspam	Mar 22 12:01:33 XXXXXX sshd[46097]: Invalid user rohit from 106.12.61.64 port 57196	2020-03-23 01:18:42
106.12.61.221	attack	Feb 16 23:04:33 ns382633 sshd\[28640\]: Invalid user xerox from 106.12.61.221 port 36160 Feb 16 23:04:33 ns382633 sshd\[28640\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.221 Feb 16 23:04:35 ns382633 sshd\[28640\]: Failed password for invalid user xerox from 106.12.61.221 port 36160 ssh2 Feb 16 23:24:54 ns382633 sshd\[32220\]: Invalid user artificial from 106.12.61.221 port 54868 Feb 16 23:24:54 ns382633 sshd\[32220\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.61.221	2020-02-17 09:23:25
106.12.61.221	attackbots	SASL PLAIN auth failed: ruser=...	2020-02-13 07:19:56
106.12.61.64	attack	$f2bV_matches	2020-02-07 20:53:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.61.168
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33772
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.61.168.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Sep 09 06:42:20 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 168.61.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 168.61.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
78.186.177.80	attack	Automatic report - Port Scan Attack	2019-08-03 05:05:49
134.209.100.31	attackbots	Aug 3 02:29:41 itv-usvr-02 sshd[6862]: Invalid user administrator from 134.209.100.31 port 46996 Aug 3 02:29:41 itv-usvr-02 sshd[6862]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.100.31 Aug 3 02:29:41 itv-usvr-02 sshd[6862]: Invalid user administrator from 134.209.100.31 port 46996 Aug 3 02:29:43 itv-usvr-02 sshd[6862]: Failed password for invalid user administrator from 134.209.100.31 port 46996 ssh2 Aug 3 02:29:43 itv-usvr-02 sshd[6865]: Invalid user administrator from 134.209.100.31 port 47826	2019-08-03 04:44:12
122.137.241.234	attackbots	Telnet Server BruteForce Attack	2019-08-03 04:37:17
167.86.114.230	attack	5061/udp 5062/udp 5090/udp... [2019-06-04/08-02]14pkt,5pt.(udp)	2019-08-03 04:25:10
222.127.97.91	attack	Automatic report - Banned IP Access	2019-08-03 04:32:14
198.108.66.187	attackbotsspam	9200/tcp 6443/tcp 1521/tcp... [2019-06-03/08-02]15pkt,10pt.(tcp)	2019-08-03 04:49:56
120.52.152.15	attackspam	Honeypot attack, port: 5555, PTR: PTR record not found	2019-08-03 04:52:07
134.175.62.14	attack	2019-08-02T19:31:42.629942abusebot-3.cloudsearch.cf sshd\[31673\]: Invalid user ftpuser from 134.175.62.14 port 58054	2019-08-03 04:13:34
187.176.188.26	attackbots	Automatic report - Port Scan Attack	2019-08-03 04:55:33
138.99.7.120	attackbots	Aug 2 22:46:07 yabzik sshd[16068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.120 Aug 2 22:46:09 yabzik sshd[16068]: Failed password for invalid user ossama from 138.99.7.120 port 43532 ssh2 Aug 2 22:53:19 yabzik sshd[18227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.120	2019-08-03 04:13:03
191.53.104.190	attackspam	Brute force attempt	2019-08-03 04:18:45
165.22.118.101	attackbots	Aug 2 23:27:08 docs sshd\[6649\]: Invalid user admin from 165.22.118.101Aug 2 23:27:11 docs sshd\[6649\]: Failed password for invalid user admin from 165.22.118.101 port 48268 ssh2Aug 2 23:31:53 docs sshd\[6724\]: Invalid user psanborn from 165.22.118.101Aug 2 23:31:55 docs sshd\[6724\]: Failed password for invalid user psanborn from 165.22.118.101 port 44532 ssh2Aug 2 23:36:37 docs sshd\[6814\]: Invalid user support from 165.22.118.101Aug 2 23:36:38 docs sshd\[6814\]: Failed password for invalid user support from 165.22.118.101 port 41088 ssh2 ...	2019-08-03 04:51:45
153.149.36.41	attackspam	WordPress brute force	2019-08-03 04:57:50
37.143.160.18	attack	Aug 2 21:22:03 mail1 sshd\[13057\]: Invalid user vbox from 37.143.160.18 port 59982 Aug 2 21:22:03 mail1 sshd\[13057\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.143.160.18 Aug 2 21:22:06 mail1 sshd\[13057\]: Failed password for invalid user vbox from 37.143.160.18 port 59982 ssh2 Aug 2 21:31:38 mail1 sshd\[17410\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.143.160.18 user=root Aug 2 21:31:39 mail1 sshd\[17410\]: Failed password for root from 37.143.160.18 port 42330 ssh2 ...	2019-08-03 04:40:00
101.231.104.82	attackbots	Aug 2 22:20:42 vps691689 sshd[24695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.104.82 Aug 2 22:20:44 vps691689 sshd[24695]: Failed password for invalid user test2 from 101.231.104.82 port 46022 ssh2 Aug 2 22:25:34 vps691689 sshd[24713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.104.82 ...	2019-08-03 04:26:34

Recently Reported IPs

142.112.116.55	119.252.220.174	237.114.91.150	124.121.221.56
78.133.89.111	194.8.147.22	206.189.56.234	41.239.149.151
45.156.158.147	14.247.178.89	186.208.122.46	70.215.11.70
152.199.204.225	149.206.140.251	159.203.199.101	79.60.107.11
118.97.97.162	89.151.178.9	36.233.180.90	116.109.70.96