106.124.132.105

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Guangdong Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Oct 11 20:24:35 * sshd[27216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.132.105 Oct 11 20:24:38 * sshd[27216]: Failed password for invalid user rob from 106.124.132.105 port 59542 ssh2	2020-10-12 04:25:49
attack	(sshd) Failed SSH login from 106.124.132.105 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 06:25:31 optimus sshd[21581]: Invalid user admin2003 from 106.124.132.105 Oct 11 06:25:31 optimus sshd[21581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.132.105 Oct 11 06:25:33 optimus sshd[21581]: Failed password for invalid user admin2003 from 106.124.132.105 port 48666 ssh2 Oct 11 06:30:17 optimus sshd[23793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.132.105 user=root Oct 11 06:30:18 optimus sshd[23793]: Failed password for root from 106.124.132.105 port 48294 ssh2	2020-10-11 20:28:15
attack	Oct 11 04:18:36 buvik sshd[28471]: Invalid user shannon from 106.124.132.105 Oct 11 04:18:36 buvik sshd[28471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.132.105 Oct 11 04:18:38 buvik sshd[28471]: Failed password for invalid user shannon from 106.124.132.105 port 49086 ssh2 ...	2020-10-11 12:26:15
attackbotsspam	Failed password for root from 106.124.132.105 port 46550 ssh2 Failed password for root from 106.124.132.105 port 48184 ssh2	2020-10-11 05:49:33
attackbotsspam	Aug 13 12:00:18 webhost01 sshd[31875]: Failed password for root from 106.124.132.105 port 48267 ssh2 ...	2020-08-13 13:15:14
attack	Aug 2 10:37:57 gw1 sshd[1399]: Failed password for root from 106.124.132.105 port 55220 ssh2 ...	2020-08-02 13:50:03
attackspam	Jul 21 05:54:44 ns3164893 sshd[26636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.132.105 Jul 21 05:54:47 ns3164893 sshd[26636]: Failed password for invalid user nizar from 106.124.132.105 port 56756 ssh2 ...	2020-07-21 15:41:21
attackbots	Jun 16 17:18:16 ns382633 sshd\[32065\]: Invalid user octopus from 106.124.132.105 port 58162 Jun 16 17:18:16 ns382633 sshd\[32065\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.132.105 Jun 16 17:18:19 ns382633 sshd\[32065\]: Failed password for invalid user octopus from 106.124.132.105 port 58162 ssh2 Jun 16 17:25:37 ns382633 sshd\[1200\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.132.105 user=root Jun 16 17:25:39 ns382633 sshd\[1200\]: Failed password for root from 106.124.132.105 port 59177 ssh2	2020-06-17 00:47:13
attackspam	2020-06-16T05:40:30.069629shield sshd\[13413\]: Invalid user cactiuser from 106.124.132.105 port 45290 2020-06-16T05:40:30.073325shield sshd\[13413\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.132.105 2020-06-16T05:40:32.337862shield sshd\[13413\]: Failed password for invalid user cactiuser from 106.124.132.105 port 45290 ssh2 2020-06-16T05:44:22.116711shield sshd\[14470\]: Invalid user kj from 106.124.132.105 port 38054 2020-06-16T05:44:22.120908shield sshd\[14470\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.132.105	2020-06-16 15:12:27
attackspam	Invalid user larry from 106.124.132.105 port 58996	2020-06-06 02:23:38
attack	5x Failed Password	2020-05-24 18:44:54
attackbots	May 19 06:55:34 auw2 sshd\[26280\]: Invalid user ayt from 106.124.132.105 May 19 06:55:34 auw2 sshd\[26280\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.132.105 May 19 06:55:36 auw2 sshd\[26280\]: Failed password for invalid user ayt from 106.124.132.105 port 54738 ssh2 May 19 07:00:44 auw2 sshd\[26728\]: Invalid user bfq from 106.124.132.105 May 19 07:00:44 auw2 sshd\[26728\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.132.105	2020-05-20 03:58:02
attackspam	May 11 15:54:21 firewall sshd[18297]: Invalid user andrey from 106.124.132.105 May 11 15:54:23 firewall sshd[18297]: Failed password for invalid user andrey from 106.124.132.105 port 34058 ssh2 May 11 15:56:36 firewall sshd[18340]: Invalid user test from 106.124.132.105 ...	2020-05-12 02:59:11
attack	Invalid user camera from 106.124.132.105 port 57978	2020-05-03 19:04:11
attackbotsspam	Apr 10 00:12:58 haigwepa sshd[20320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.132.105 Apr 10 00:13:00 haigwepa sshd[20320]: Failed password for invalid user n0cdaemon from 106.124.132.105 port 48020 ssh2 ...	2020-04-10 06:28:24
attack	5x Failed Password	2020-04-08 02:54:54
attackspam	Mar 16 10:04:21 web1 sshd\[25569\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.132.105 user=root Mar 16 10:04:24 web1 sshd\[25569\]: Failed password for root from 106.124.132.105 port 58468 ssh2 Mar 16 10:08:52 web1 sshd\[25936\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.132.105 user=root Mar 16 10:08:54 web1 sshd\[25936\]: Failed password for root from 106.124.132.105 port 33504 ssh2 Mar 16 10:13:20 web1 sshd\[26355\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.132.105 user=root	2020-03-17 04:30:46
attackbots	Mar 10 20:48:17 lnxmysql61 sshd[18667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.132.105 Mar 10 20:48:17 lnxmysql61 sshd[18667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.132.105	2020-03-11 03:50:22

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.124.132.105
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20441
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.124.132.105.		IN	A

;; AUTHORITY SECTION:
.			575	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031001 1800 900 604800 86400

;; Query time: 98 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 11 03:50:19 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 105.132.124.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 105.132.124.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.231.121.20	attack	Dec 28 08:25:28 vps691689 sshd[31011]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.121.20 Dec 28 08:25:30 vps691689 sshd[31011]: Failed password for invalid user oa from 111.231.121.20 port 48632 ssh2 Dec 28 08:29:18 vps691689 sshd[31064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.121.20 ...	2019-12-28 15:31:30
79.137.86.43	attackbotsspam	Dec 28 07:53:18 markkoudstaal sshd[2645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.86.43 Dec 28 07:53:19 markkoudstaal sshd[2645]: Failed password for invalid user rohr from 79.137.86.43 port 57000 ssh2 Dec 28 07:55:37 markkoudstaal sshd[2853]: Failed password for backup from 79.137.86.43 port 52726 ssh2	2019-12-28 15:01:56
189.240.117.236	attackbots	$f2bV_matches	2019-12-28 14:58:49
117.211.167.48	attackbotsspam	Unauthorised access (Dec 28) SRC=117.211.167.48 LEN=52 TOS=0x08 TTL=109 ID=19886 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-28 15:20:17
134.17.94.229	attackbots	$f2bV_matches	2019-12-28 15:20:46
92.118.38.39	attackbotsspam	Dec 28 08:17:49 webserver postfix/smtpd\[6828\]: warning: unknown\[92.118.38.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 28 08:18:24 webserver postfix/smtpd\[6828\]: warning: unknown\[92.118.38.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 28 08:18:59 webserver postfix/smtpd\[6828\]: warning: unknown\[92.118.38.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 28 08:19:33 webserver postfix/smtpd\[6828\]: warning: unknown\[92.118.38.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 28 08:20:08 webserver postfix/smtpd\[7969\]: warning: unknown\[92.118.38.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-28 15:29:48
148.70.18.216	attack	Dec 28 08:17:27 dedicated sshd[30022]: Invalid user *Cu3rp0 from 148.70.18.216 port 56554	2019-12-28 15:24:19
125.227.20.89	attack	Honeypot attack, port: 23, PTR: 125-227-20-89.HINET-IP.hinet.net.	2019-12-28 15:23:22
106.13.135.156	attackbots	Dec 28 07:15:09 srv206 sshd[22191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.135.156 user=root Dec 28 07:15:11 srv206 sshd[22191]: Failed password for root from 106.13.135.156 port 45576 ssh2 Dec 28 07:29:41 srv206 sshd[22402]: Invalid user dbadmin from 106.13.135.156 ...	2019-12-28 15:05:42
103.44.18.68	attackbotsspam	Dec 28 08:18:32 legacy sshd[2912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.44.18.68 Dec 28 08:18:34 legacy sshd[2912]: Failed password for invalid user Hugo2017 from 103.44.18.68 port 49051 ssh2 Dec 28 08:20:41 legacy sshd[2955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.44.18.68 ...	2019-12-28 15:39:12
54.178.182.46	attackbotsspam	wp-login.php	2019-12-28 15:00:53
118.89.236.107	attackspam	Dec 28 07:29:27 vpn01 sshd[24824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.236.107 Dec 28 07:29:29 vpn01 sshd[24824]: Failed password for invalid user xuan from 118.89.236.107 port 51098 ssh2 ...	2019-12-28 15:15:24
103.24.21.52	attackbots	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-28 15:11:39
49.149.103.115	attack	1577514588 - 12/28/2019 07:29:48 Host: 49.149.103.115/49.149.103.115 Port: 445 TCP Blocked	2019-12-28 14:59:48
49.88.112.74	attack	Dec 28 09:12:36 pkdns2 sshd\[10459\]: Failed password for root from 49.88.112.74 port 36919 ssh2Dec 28 09:13:56 pkdns2 sshd\[10494\]: Failed password for root from 49.88.112.74 port 64394 ssh2Dec 28 09:13:59 pkdns2 sshd\[10494\]: Failed password for root from 49.88.112.74 port 64394 ssh2Dec 28 09:14:02 pkdns2 sshd\[10494\]: Failed password for root from 49.88.112.74 port 64394 ssh2Dec 28 09:15:13 pkdns2 sshd\[10587\]: Failed password for root from 49.88.112.74 port 35098 ssh2Dec 28 09:15:16 pkdns2 sshd\[10587\]: Failed password for root from 49.88.112.74 port 35098 ssh2 ...	2019-12-28 15:19:50

Recently Reported IPs

85.95.179.174	89.185.77.190	192.241.209.118	198.50.229.116
31.173.82.196	91.219.198.59	37.28.161.162	159.89.104.85
96.9.245.153	137.59.15.131	52.97.152.189	212.95.137.149
129.211.146.50	77.42.126.33	185.30.164.8	103.131.104.6
211.117.46.70	93.81.213.33	120.39.2.37	171.224.179.95