106.12.48.44 - IPInfo

Basic Info

City: unknown

Region: Beijing

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Feb 22 01:44:13 ArkNodeAT sshd\[27805\]: Invalid user testing from 106.12.48.44 Feb 22 01:44:13 ArkNodeAT sshd\[27805\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.44 Feb 22 01:44:15 ArkNodeAT sshd\[27805\]: Failed password for invalid user testing from 106.12.48.44 port 57907 ssh2	2020-02-22 09:09:07
attackspam	21 attempts against mh-ssh on cloud	2020-02-17 08:35:39
attack	Feb 13 19:30:06 php1 sshd\[11379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.44 user=root Feb 13 19:30:08 php1 sshd\[11379\]: Failed password for root from 106.12.48.44 port 37217 ssh2 Feb 13 19:33:30 php1 sshd\[11646\]: Invalid user verity from 106.12.48.44 Feb 13 19:33:30 php1 sshd\[11646\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.44 Feb 13 19:33:32 php1 sshd\[11646\]: Failed password for invalid user verity from 106.12.48.44 port 44728 ssh2	2020-02-14 16:08:33
attack	5x Failed Password	2020-02-11 07:23:58
attackbotsspam	Jan 27 18:32:53 vmanager6029 sshd\[16213\]: Invalid user prueba from 106.12.48.44 port 34733 Jan 27 18:32:53 vmanager6029 sshd\[16213\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.44 Jan 27 18:32:55 vmanager6029 sshd\[16213\]: Failed password for invalid user prueba from 106.12.48.44 port 34733 ssh2	2020-01-28 01:57:06
attack	Invalid user diaco from 106.12.48.44 port 33150 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.44 Failed password for invalid user diaco from 106.12.48.44 port 33150 ssh2 Invalid user edgar from 106.12.48.44 port 58756 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.44	2020-01-22 06:43:27

Comments on same subnet:

IP	Type	Details	Datetime
106.12.48.216	attack	Jun 20 22:15:57 zulu412 sshd\[32143\]: Invalid user monitor from 106.12.48.216 port 42510 Jun 20 22:15:57 zulu412 sshd\[32143\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.216 Jun 20 22:16:00 zulu412 sshd\[32143\]: Failed password for invalid user monitor from 106.12.48.216 port 42510 ssh2 ...	2020-06-21 04:37:43
106.12.48.216	attackbotsspam	Failed password for invalid user webster from 106.12.48.216 port 58952 ssh2	2020-06-16 18:47:04
106.12.48.216	attack	Jun 15 06:23:10 vps639187 sshd\[15653\]: Invalid user apache from 106.12.48.216 port 45924 Jun 15 06:23:10 vps639187 sshd\[15653\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.216 Jun 15 06:23:12 vps639187 sshd\[15653\]: Failed password for invalid user apache from 106.12.48.216 port 45924 ssh2 ...	2020-06-15 17:15:25
106.12.48.217	attackspam	2020-06-10T12:36:49.938655shield sshd\[14216\]: Invalid user bay from 106.12.48.217 port 39338 2020-06-10T12:36:49.941143shield sshd\[14216\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.217 2020-06-10T12:36:52.431442shield sshd\[14216\]: Failed password for invalid user bay from 106.12.48.217 port 39338 ssh2 2020-06-10T12:41:02.776575shield sshd\[16178\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.217 user=root 2020-06-10T12:41:04.664938shield sshd\[16178\]: Failed password for root from 106.12.48.217 port 57092 ssh2	2020-06-10 21:48:04
106.12.48.216	attackspam	2020-06-09T19:29:04+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-06-10 04:14:35
106.12.48.217	attackbots	Jun 6 12:46:16 game-panel sshd[11281]: Failed password for root from 106.12.48.217 port 36852 ssh2 Jun 6 12:49:05 game-panel sshd[11419]: Failed password for root from 106.12.48.217 port 45144 ssh2	2020-06-06 21:04:01
106.12.48.216	attackspam	Brute-force attempt banned	2020-06-06 07:06:17
106.12.48.78	attackspambots	$f2bV_matches	2020-06-02 17:32:41
106.12.48.78	attack	Jun 1 00:33:14 vpn01 sshd[27807]: Failed password for root from 106.12.48.78 port 45140 ssh2 ...	2020-06-01 06:57:17
106.12.48.217	attackbots	SSH Brute-Force reported by Fail2Ban	2020-06-01 01:55:35
106.12.48.217	attackspambots	May 30 06:39:40 web1 sshd[26874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.217 user=root May 30 06:39:41 web1 sshd[26874]: Failed password for root from 106.12.48.217 port 38248 ssh2 May 30 06:44:51 web1 sshd[28127]: Invalid user gogs from 106.12.48.217 port 40886 May 30 06:44:51 web1 sshd[28127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.217 May 30 06:44:51 web1 sshd[28127]: Invalid user gogs from 106.12.48.217 port 40886 May 30 06:44:54 web1 sshd[28127]: Failed password for invalid user gogs from 106.12.48.217 port 40886 ssh2 May 30 06:48:15 web1 sshd[28959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.217 user=root May 30 06:48:17 web1 sshd[28959]: Failed password for root from 106.12.48.217 port 54772 ssh2 May 30 06:51:12 web1 sshd[29745]: Invalid user eriksmoen from 106.12.48.217 port 40432 ...	2020-05-30 04:56:54
106.12.48.78	attackspambots	May 29 06:08:19 srv-ubuntu-dev3 sshd[35402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.78 user=root May 29 06:08:22 srv-ubuntu-dev3 sshd[35402]: Failed password for root from 106.12.48.78 port 44472 ssh2 May 29 06:11:37 srv-ubuntu-dev3 sshd[35928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.78 user=root May 29 06:11:39 srv-ubuntu-dev3 sshd[35928]: Failed password for root from 106.12.48.78 port 59398 ssh2 May 29 06:15:02 srv-ubuntu-dev3 sshd[36482]: Invalid user apache from 106.12.48.78 May 29 06:15:02 srv-ubuntu-dev3 sshd[36482]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.78 May 29 06:15:02 srv-ubuntu-dev3 sshd[36482]: Invalid user apache from 106.12.48.78 May 29 06:15:04 srv-ubuntu-dev3 sshd[36482]: Failed password for invalid user apache from 106.12.48.78 port 46106 ssh2 May 29 06:18:10 srv-ubuntu-dev3 sshd[37075]: pa ...	2020-05-29 12:45:22
106.12.48.216	attackbotsspam	2020-05-27 14:41:50 server sshd[61577]: Failed password for invalid user root from 106.12.48.216 port 45738 ssh2	2020-05-29 02:13:59
106.12.48.216	attack	$f2bV_matches	2020-05-26 14:47:56
106.12.48.78	attackspambots	May 23 22:15:05 sso sshd[30657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.78 May 23 22:15:07 sso sshd[30657]: Failed password for invalid user npd from 106.12.48.78 port 33692 ssh2 ...	2020-05-24 05:24:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.48.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28852
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.48.44.			IN	A

;; AUTHORITY SECTION:
.			475	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012101 1800 900 604800 86400

;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 22 06:43:24 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 44.48.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 44.48.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
181.171.156.103	attackbots	Automatic report - Banned IP Access	2019-10-28 06:29:11
41.238.46.8	attackbotsspam	Fail2Ban Ban Triggered	2019-10-28 05:53:50
45.82.153.76	attack	2019-10-27 23:24:22 dovecot_login authenticator failed for $\[45.82.153.76\]$ \[45.82.153.76\]: 535 Incorrect authentication data $set_id=remo.martinoli@opso.it$ 2019-10-27 23:24:31 dovecot_login authenticator failed for $\[45.82.153.76\]$ \[45.82.153.76\]: 535 Incorrect authentication data $set_id=remo.martinoli$ 2019-10-27 23:29:13 dovecot_login authenticator failed for $\[45.82.153.76\]$ \[45.82.153.76\]: 535 Incorrect authentication data $set_id=support@nopcommerce.it$ 2019-10-27 23:29:21 dovecot_login authenticator failed for $\[45.82.153.76\]$ \[45.82.153.76\]: 535 Incorrect authentication data $set_id=support$ 2019-10-27 23:29:29 dovecot_login authenticator failed for $\[45.82.153.76\]$ \[45.82.153.76\]: 535 Incorrect authentication data	2019-10-28 06:30:05
31.177.95.138	attackbots	Automatic report - Banned IP Access	2019-10-28 06:14:47
212.47.245.26	attackbotsspam	WordPress brute force	2019-10-28 06:18:23
27.72.102.190	attackspam	Oct 27 22:55:42 OPSO sshd\[10150\]: Invalid user b from 27.72.102.190 port 13414 Oct 27 22:55:42 OPSO sshd\[10150\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.72.102.190 Oct 27 22:55:44 OPSO sshd\[10150\]: Failed password for invalid user b from 27.72.102.190 port 13414 ssh2 Oct 27 23:00:27 OPSO sshd\[11223\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.72.102.190 user=root Oct 27 23:00:29 OPSO sshd\[11223\]: Failed password for root from 27.72.102.190 port 60764 ssh2	2019-10-28 06:26:10
81.22.45.17	attackspam	2019-10-27T21:27:38.465627+01:00 lumpi kernel: [2030453.880260] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.17 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=16286 PROTO=TCP SPT=44689 DPT=33891 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-28 06:16:54
54.36.150.22	attackbotsspam	Automatic report - Banned IP Access	2019-10-28 06:28:09
222.186.175.220	attackspam	Oct 27 22:56:00 meumeu sshd[19712]: Failed password for root from 222.186.175.220 port 58850 ssh2 Oct 27 22:56:05 meumeu sshd[19712]: Failed password for root from 222.186.175.220 port 58850 ssh2 Oct 27 22:56:10 meumeu sshd[19712]: Failed password for root from 222.186.175.220 port 58850 ssh2 Oct 27 22:56:20 meumeu sshd[19712]: error: maximum authentication attempts exceeded for root from 222.186.175.220 port 58850 ssh2 [preauth] ...	2019-10-28 06:02:05
182.23.36.131	attack	Automatic report - Banned IP Access	2019-10-28 05:59:58
211.159.153.82	attack	Oct 27 18:32:06 firewall sshd[489]: Invalid user test from 211.159.153.82 Oct 27 18:32:08 firewall sshd[489]: Failed password for invalid user test from 211.159.153.82 port 53038 ssh2 Oct 27 18:36:24 firewall sshd[608]: Invalid user goodtime from 211.159.153.82 ...	2019-10-28 06:06:49
110.35.173.103	attack	Oct 27 22:11:44 venus sshd\[23078\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.35.173.103 user=root Oct 27 22:11:45 venus sshd\[23078\]: Failed password for root from 110.35.173.103 port 38870 ssh2 Oct 27 22:16:10 venus sshd\[23178\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.35.173.103 user=root ...	2019-10-28 06:21:56
193.188.22.229	attackbotsspam	Oct 27 15:02:21 server1 sshd\[19538\]: Invalid user admin from 193.188.22.229 Oct 27 15:02:21 server1 sshd\[19538\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.188.22.229 Oct 27 15:02:24 server1 sshd\[19538\]: Failed password for invalid user admin from 193.188.22.229 port 18907 ssh2 Oct 27 15:02:25 server1 sshd\[19559\]: Invalid user admin from 193.188.22.229 Oct 27 15:02:25 server1 sshd\[19559\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.188.22.229 ...	2019-10-28 06:05:35
14.186.159.113	attackbotsspam	Oct 27 21:27:26 xeon postfix/smtpd[4749]: warning: unknown[14.186.159.113]: SASL LOGIN authentication failed: authentication failure	2019-10-28 05:59:28
212.129.53.177	attack	Oct 27 23:03:13 localhost sshd\[28658\]: Invalid user katya from 212.129.53.177 port 53888 Oct 27 23:03:13 localhost sshd\[28658\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.53.177 Oct 27 23:03:16 localhost sshd\[28658\]: Failed password for invalid user katya from 212.129.53.177 port 53888 ssh2	2019-10-28 06:18:06

Recently Reported IPs

52.17.201.6	198.189.45.156	185.164.41.255	177.191.158.20
12.174.81.136	186.225.37.226	185.222.164.196	176.225.237.167
141.200.176.62	176.15.34.89	20.67.0.206	33.102.206.52
168.187.143.171	169.9.236.8	70.132.22.154	125.196.133.103
40.142.41.31	78.170.63.36	218.90.167.187	154.208.106.57