106.12.70.107 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Nov 23 10:36:00 vpn01 sshd[25527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.70.107 Nov 23 10:36:02 vpn01 sshd[25527]: Failed password for invalid user abcdefghijklmnopqrst from 106.12.70.107 port 33760 ssh2 ...	2019-11-23 18:33:03
attackspam	Nov 21 16:38:54 legacy sshd[32507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.70.107 Nov 21 16:38:56 legacy sshd[32507]: Failed password for invalid user server from 106.12.70.107 port 45728 ssh2 Nov 21 16:44:11 legacy sshd[32581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.70.107 ...	2019-11-21 23:57:40

Type

Details

Datetime

attackbots

Nov 23 10:36:00 vpn01 sshd[25527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.70.107
Nov 23 10:36:02 vpn01 sshd[25527]: Failed password for invalid user abcdefghijklmnopqrst from 106.12.70.107 port 33760 ssh2
...

2019-11-23 18:33:03

attackspam

Nov 21 16:38:54 legacy sshd[32507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.70.107
Nov 21 16:38:56 legacy sshd[32507]: Failed password for invalid user server from 106.12.70.107 port 45728 ssh2
Nov 21 16:44:11 legacy sshd[32581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.70.107
...

2019-11-21 23:57:40

Comments on same subnet:

IP	Type	Details	Datetime
106.12.70.118	attackspambots	"Unauthorized connection attempt on SSHD detected"	2020-10-13 01:42:33
106.12.70.118	attackbots	ssh brute force	2020-10-12 17:05:07
106.12.70.112	attackbots	firewall-block, port(s): 12834/tcp	2020-10-03 04:27:59
106.12.70.112	attackspambots	firewall-block, port(s): 12834/tcp	2020-10-03 03:15:19
106.12.70.112	attackspam	firewall-block, port(s): 12834/tcp	2020-10-02 23:48:35
106.12.70.112	attackbots	firewall-block, port(s): 12834/tcp	2020-10-02 20:19:51
106.12.70.112	attackbots	firewall-block, port(s): 12834/tcp	2020-10-02 16:52:24
106.12.70.112	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-10-02 13:12:49
106.12.70.118	attackspambots	SSH login attempts.	2020-09-07 21:57:04
106.12.70.118	attackspambots	Sep 6 16:53:16 scw-6657dc sshd[23846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.70.118 Sep 6 16:53:16 scw-6657dc sshd[23846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.70.118 Sep 6 16:53:18 scw-6657dc sshd[23846]: Failed password for invalid user zhangy from 106.12.70.118 port 56572 ssh2 ...	2020-09-07 06:17:06
106.12.70.99	attack	Aug 19 17:24:57 NPSTNNYC01T sshd[2717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.70.99 Aug 19 17:24:59 NPSTNNYC01T sshd[2717]: Failed password for invalid user admin from 106.12.70.99 port 54888 ssh2 Aug 19 17:29:33 NPSTNNYC01T sshd[3231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.70.99 ...	2020-08-20 05:34:23
106.12.70.112	attackspam	2020-08-18T15:30:44.971837snf-827550 sshd[29610]: Invalid user oracle from 106.12.70.112 port 60566 2020-08-18T15:30:47.214089snf-827550 sshd[29610]: Failed password for invalid user oracle from 106.12.70.112 port 60566 ssh2 2020-08-18T15:35:04.939072snf-827550 sshd[31203]: Invalid user git from 106.12.70.112 port 37132 ...	2020-08-18 21:31:05
106.12.70.118	attackbots	Bruteforce detected by fail2ban	2020-08-10 12:05:50
106.12.70.99	attackbotsspam	Aug 6 10:16:24 hell sshd[8120]: Failed password for root from 106.12.70.99 port 41300 ssh2 ...	2020-08-06 16:34:46
106.12.70.99	attackbotsspam	Aug 4 05:42:16 dev0-dcde-rnet sshd[4814]: Failed password for root from 106.12.70.99 port 40314 ssh2 Aug 4 05:47:33 dev0-dcde-rnet sshd[4905]: Failed password for root from 106.12.70.99 port 45528 ssh2	2020-08-04 16:50:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.70.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17598
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.70.107.			IN	A

;; AUTHORITY SECTION:
.			327	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112100 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 21 23:57:37 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 107.70.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 107.70.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
193.112.23.81	attackspambots	Aug 2 21:12:09 vps sshd[2621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.23.81 Aug 2 21:12:11 vps sshd[2621]: Failed password for invalid user user3 from 193.112.23.81 port 38913 ssh2 Aug 2 21:23:22 vps sshd[2971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.23.81 ...	2019-08-03 08:50:51
58.49.13.254	attackbotsspam	Aug 2 22:43:20 microserver sshd[64061]: Invalid user ubuntu from 58.49.13.254 port 18582 Aug 2 22:43:20 microserver sshd[64061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.49.13.254 Aug 2 22:43:22 microserver sshd[64061]: Failed password for invalid user ubuntu from 58.49.13.254 port 18582 ssh2 Aug 2 22:47:14 microserver sshd[64770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.49.13.254 user=root Aug 2 22:47:16 microserver sshd[64770]: Failed password for root from 58.49.13.254 port 18583 ssh2 Aug 2 23:03:20 microserver sshd[2459]: Invalid user admin from 58.49.13.254 port 18588 Aug 2 23:03:20 microserver sshd[2459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.49.13.254 Aug 2 23:03:22 microserver sshd[2459]: Failed password for invalid user admin from 58.49.13.254 port 18588 ssh2 Aug 2 23:07:06 microserver sshd[3324]: Invalid user inx from 58.49.13.254 port 18	2019-08-03 09:04:31
193.70.8.163	attack	Aug 3 00:23:37 ms-srv sshd[37164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.8.163 Aug 3 00:23:39 ms-srv sshd[37164]: Failed password for invalid user secure from 193.70.8.163 port 49268 ssh2	2019-08-03 09:21:25
85.202.13.254	attackbots	[portscan] Port scan	2019-08-03 09:05:33
217.169.208.70	attackspam	445/tcp [2019-08-02]1pkt	2019-08-03 08:50:18
185.36.81.180	attack	2019-08-03T01:43:21.946962ns1.unifynetsol.net postfix/smtpd\[32742\]: warning: unknown\[185.36.81.180\]: SASL LOGIN authentication failed: authentication failure 2019-08-03T02:33:31.225754ns1.unifynetsol.net postfix/smtpd\[4720\]: warning: unknown\[185.36.81.180\]: SASL LOGIN authentication failed: authentication failure 2019-08-03T03:23:27.253695ns1.unifynetsol.net postfix/smtpd\[15142\]: warning: unknown\[185.36.81.180\]: SASL LOGIN authentication failed: authentication failure 2019-08-03T04:13:45.549415ns1.unifynetsol.net postfix/smtpd\[17343\]: warning: unknown\[185.36.81.180\]: SASL LOGIN authentication failed: authentication failure 2019-08-03T05:03:58.762759ns1.unifynetsol.net postfix/smtpd\[29602\]: warning: unknown\[185.36.81.180\]: SASL LOGIN authentication failed: authentication failure	2019-08-03 08:51:29
95.105.233.209	attackbotsspam	Automatic report - Banned IP Access	2019-08-03 09:13:47
139.199.95.55	attackspam	Aug 3 01:47:16 dedicated sshd[20801]: Invalid user sg from 139.199.95.55 port 43256	2019-08-03 09:12:33
150.254.222.97	attack	Aug 2 17:02:53 vps200512 sshd\[22002\]: Invalid user gast from 150.254.222.97 Aug 2 17:02:53 vps200512 sshd\[22002\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.254.222.97 Aug 2 17:02:55 vps200512 sshd\[22002\]: Failed password for invalid user gast from 150.254.222.97 port 48804 ssh2 Aug 2 17:07:21 vps200512 sshd\[22071\]: Invalid user yang from 150.254.222.97 Aug 2 17:07:21 vps200512 sshd\[22071\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.254.222.97	2019-08-03 08:40:09
54.36.108.162	attackbots	2019-08-02T21:39:37.881921mizuno.rwx.ovh sshd[19964]: Connection from 54.36.108.162 port 39365 on 78.46.61.178 port 22 2019-08-02T21:39:38.970333mizuno.rwx.ovh sshd[19964]: Invalid user NetLinx from 54.36.108.162 port 39365 2019-08-02T21:39:38.981408mizuno.rwx.ovh sshd[19964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.108.162 2019-08-02T21:39:37.881921mizuno.rwx.ovh sshd[19964]: Connection from 54.36.108.162 port 39365 on 78.46.61.178 port 22 2019-08-02T21:39:38.970333mizuno.rwx.ovh sshd[19964]: Invalid user NetLinx from 54.36.108.162 port 39365 2019-08-02T21:39:40.585981mizuno.rwx.ovh sshd[19964]: Failed password for invalid user NetLinx from 54.36.108.162 port 39365 ssh2 ...	2019-08-03 08:45:23
210.92.37.181	attackspambots	Aug 3 00:32:45 MK-Soft-VM7 sshd\[22426\]: Invalid user bmarcoon from 210.92.37.181 port 55500 Aug 3 00:32:45 MK-Soft-VM7 sshd\[22426\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.92.37.181 Aug 3 00:32:47 MK-Soft-VM7 sshd\[22426\]: Failed password for invalid user bmarcoon from 210.92.37.181 port 55500 ssh2 ...	2019-08-03 08:56:03
93.14.78.71	attackbotsspam	Aug 2 20:09:11 aat-srv002 sshd[27334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.14.78.71 Aug 2 20:09:14 aat-srv002 sshd[27334]: Failed password for invalid user 0987654321 from 93.14.78.71 port 59108 ssh2 Aug 2 20:15:03 aat-srv002 sshd[27442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.14.78.71 Aug 2 20:15:05 aat-srv002 sshd[27442]: Failed password for invalid user tmj from 93.14.78.71 port 54152 ssh2 ...	2019-08-03 09:15:46
183.146.228.28	attack	23/tcp [2019-08-02]1pkt	2019-08-03 08:47:15
185.220.101.21	attack	Aug 3 02:54:18 ns37 sshd[15726]: Failed password for root from 185.220.101.21 port 45531 ssh2 Aug 3 02:54:18 ns37 sshd[15726]: Failed password for root from 185.220.101.21 port 45531 ssh2 Aug 3 02:54:25 ns37 sshd[15732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.21	2019-08-03 09:10:33
42.118.8.67	attackbots	445/tcp [2019-08-02]1pkt	2019-08-03 09:10:57

Recently Reported IPs

115.220.139.83	85.105.36.66	232.146.44.194	241.233.211.205
46.45.71.143	253.254.16.188	157.230.242.122	181.206.206.202
94.68.92.86	97.135.46.38	202.23.62.246	138.148.138.2
106.66.104.38	201.205.137.173	136.252.237.242	92.247.39.149
137.218.64.31	210.211.84.17	123.235.3.189	61.149.238.131