106.12.70.126 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Oct 9 11:41:54 [host] sshd[7588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.70.126 user=root Oct 9 11:41:56 [host] sshd[7588]: Failed password for root from 106.12.70.126 port 33222 ssh2 Oct 9 11:47:47 [host] sshd[7921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.70.126 user=root	2019-10-09 18:15:26
attackbotsspam	Oct 8 19:03:26 dedicated sshd[907]: Invalid user P4$$2017 from 106.12.70.126 port 42632	2019-10-09 03:52:46
attack	Lines containing failures of 106.12.70.126 Sep 30 12:28:49 nxxxxxxx sshd[23824]: Invalid user test from 106.12.70.126 port 43786 Sep 30 12:28:49 nxxxxxxx sshd[23824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.70.126 Sep 30 12:28:51 nxxxxxxx sshd[23824]: Failed password for invalid user test from 106.12.70.126 port 43786 ssh2 Sep 30 12:28:51 nxxxxxxx sshd[23824]: Received disconnect from 106.12.70.126 port 43786:11: Bye Bye [preauth] Sep 30 12:28:51 nxxxxxxx sshd[23824]: Disconnected from invalid user test 106.12.70.126 port 43786 [preauth] Sep 30 12:46:58 nxxxxxxx sshd[26337]: Invalid user ellort from 106.12.70.126 port 55946 Sep 30 12:46:58 nxxxxxxx sshd[26337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.70.126 Sep 30 12:47:00 nxxxxxxx sshd[26337]: Failed password for invalid user ellort from 106.12.70.126 port 55946 ssh2 Sep 30 12:47:00 nxxxxxxx sshd[26337]: Receive........ ------------------------------	2019-10-03 07:10:05
attackspam	2019-10-02T11:56:55.771534mizuno.rwx.ovh sshd[3927649]: Connection from 106.12.70.126 port 56710 on 78.46.61.178 port 22 2019-10-02T11:57:01.981687mizuno.rwx.ovh sshd[3927649]: Invalid user bm from 106.12.70.126 port 56710 2019-10-02T11:57:02.270747mizuno.rwx.ovh sshd[3927649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.70.126 2019-10-02T11:56:55.771534mizuno.rwx.ovh sshd[3927649]: Connection from 106.12.70.126 port 56710 on 78.46.61.178 port 22 2019-10-02T11:57:01.981687mizuno.rwx.ovh sshd[3927649]: Invalid user bm from 106.12.70.126 port 56710 2019-10-02T11:57:04.487927mizuno.rwx.ovh sshd[3927649]: Failed password for invalid user bm from 106.12.70.126 port 56710 ssh2 ...	2019-10-02 23:04:10

Comments on same subnet:

IP	Type	Details	Datetime
106.12.70.118	attackspambots	"Unauthorized connection attempt on SSHD detected"	2020-10-13 01:42:33
106.12.70.118	attackbots	ssh brute force	2020-10-12 17:05:07
106.12.70.112	attackbots	firewall-block, port(s): 12834/tcp	2020-10-03 04:27:59
106.12.70.112	attackspambots	firewall-block, port(s): 12834/tcp	2020-10-03 03:15:19
106.12.70.112	attackspam	firewall-block, port(s): 12834/tcp	2020-10-02 23:48:35
106.12.70.112	attackbots	firewall-block, port(s): 12834/tcp	2020-10-02 20:19:51
106.12.70.112	attackbots	firewall-block, port(s): 12834/tcp	2020-10-02 16:52:24
106.12.70.112	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-10-02 13:12:49
106.12.70.118	attackspambots	SSH login attempts.	2020-09-07 21:57:04
106.12.70.118	attackspambots	Sep 6 16:53:16 scw-6657dc sshd[23846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.70.118 Sep 6 16:53:16 scw-6657dc sshd[23846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.70.118 Sep 6 16:53:18 scw-6657dc sshd[23846]: Failed password for invalid user zhangy from 106.12.70.118 port 56572 ssh2 ...	2020-09-07 06:17:06
106.12.70.99	attack	Aug 19 17:24:57 NPSTNNYC01T sshd[2717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.70.99 Aug 19 17:24:59 NPSTNNYC01T sshd[2717]: Failed password for invalid user admin from 106.12.70.99 port 54888 ssh2 Aug 19 17:29:33 NPSTNNYC01T sshd[3231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.70.99 ...	2020-08-20 05:34:23
106.12.70.112	attackspam	2020-08-18T15:30:44.971837snf-827550 sshd[29610]: Invalid user oracle from 106.12.70.112 port 60566 2020-08-18T15:30:47.214089snf-827550 sshd[29610]: Failed password for invalid user oracle from 106.12.70.112 port 60566 ssh2 2020-08-18T15:35:04.939072snf-827550 sshd[31203]: Invalid user git from 106.12.70.112 port 37132 ...	2020-08-18 21:31:05
106.12.70.118	attackbots	Bruteforce detected by fail2ban	2020-08-10 12:05:50
106.12.70.99	attackbotsspam	Aug 6 10:16:24 hell sshd[8120]: Failed password for root from 106.12.70.99 port 41300 ssh2 ...	2020-08-06 16:34:46
106.12.70.99	attackbotsspam	Aug 4 05:42:16 dev0-dcde-rnet sshd[4814]: Failed password for root from 106.12.70.99 port 40314 ssh2 Aug 4 05:47:33 dev0-dcde-rnet sshd[4905]: Failed password for root from 106.12.70.99 port 45528 ssh2	2020-08-04 16:50:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.70.126
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25556
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.70.126.			IN	A

;; AUTHORITY SECTION:
.			377	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100200 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 02 23:04:04 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 126.70.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 126.70.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
216.189.52.161	attackspam	Jul 4 01:11:50 jane sshd[10615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.189.52.161 Jul 4 01:11:52 jane sshd[10615]: Failed password for invalid user hang from 216.189.52.161 port 45165 ssh2 ...	2020-07-04 13:59:47
78.81.245.153	attackbotsspam	VNC brute force attack detected by fail2ban	2020-07-04 14:35:25
180.76.102.226	attackbots	Jul 4 06:52:45 Ubuntu-1404-trusty-64-minimal sshd\[31238\]: Invalid user redis from 180.76.102.226 Jul 4 06:52:45 Ubuntu-1404-trusty-64-minimal sshd\[31238\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.102.226 Jul 4 06:52:47 Ubuntu-1404-trusty-64-minimal sshd\[31238\]: Failed password for invalid user redis from 180.76.102.226 port 58876 ssh2 Jul 4 06:57:12 Ubuntu-1404-trusty-64-minimal sshd\[609\]: Invalid user zenbot from 180.76.102.226 Jul 4 06:57:12 Ubuntu-1404-trusty-64-minimal sshd\[609\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.102.226	2020-07-04 14:35:03
81.147.115.131	attackspambots	2020-07-03T23:11:33.503779Z 2d42e6f9475e New connection: 81.147.115.131:52326 (172.17.0.2:2222) [session: 2d42e6f9475e] 2020-07-03T23:11:33.519484Z ca216176a997 New connection: 81.147.115.131:52328 (172.17.0.2:2222) [session: ca216176a997]	2020-07-04 14:15:20
92.118.160.41	attack	TCP (SYN) 92.118.160.41:61662 -> port 873, len 44	2020-07-04 14:14:20
144.172.73.39	attackspambots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-04T05:49:08Z and 2020-07-04T05:49:13Z	2020-07-04 14:04:29
196.52.43.129	attackbotsspam	TCP (SYN) 196.52.43.129:58537 -> port 118, len 44	2020-07-04 14:25:23
138.68.99.46	attack	2020-07-03T20:18:05.406903linuxbox-skyline sshd[540469]: Invalid user admin from 138.68.99.46 port 60394 ...	2020-07-04 14:09:54
139.59.140.44	attack	Automatic report - XMLRPC Attack	2020-07-04 14:32:11
49.235.35.133	attack	Jul 4 07:59:01 lnxweb62 sshd[19716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.35.133 Jul 4 07:59:01 lnxweb62 sshd[19716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.35.133	2020-07-04 14:26:16
129.144.8.28	attack	port scan and connect, tcp 80 (http)	2020-07-04 14:06:14
116.108.155.247	attackbots	Automatic report - Port Scan Attack	2020-07-04 14:10:43
54.254.222.170	attackspambots	SSH Bruteforce attack	2020-07-04 14:42:01
35.185.136.233	attackspam	Invalid user jader from 35.185.136.233 port 55098	2020-07-04 14:21:08
161.35.140.204	attack	Jul 4 00:48:23 s158375 sshd[4662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.140.204	2020-07-04 14:22:04

Recently Reported IPs

184.39.242.194	2.227.215.85	198.71.235.62	194.31.38.94
162.252.103.50	112.175.120.195	138.201.50.95	45.179.232.219
178.200.53.237	173.249.12.143	144.6.145.68	113.205.87.21
203.243.254.71	110.68.84.120	185.239.203.27	112.175.120.250
187.29.156.38	87.176.240.207	36.50.189.81	173.78.33.36