106.12.48.78 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	$f2bV_matches	2020-06-02 17:32:41
attack	Jun 1 00:33:14 vpn01 sshd[27807]: Failed password for root from 106.12.48.78 port 45140 ssh2 ...	2020-06-01 06:57:17
attackspambots	May 29 06:08:19 srv-ubuntu-dev3 sshd[35402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.78 user=root May 29 06:08:22 srv-ubuntu-dev3 sshd[35402]: Failed password for root from 106.12.48.78 port 44472 ssh2 May 29 06:11:37 srv-ubuntu-dev3 sshd[35928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.78 user=root May 29 06:11:39 srv-ubuntu-dev3 sshd[35928]: Failed password for root from 106.12.48.78 port 59398 ssh2 May 29 06:15:02 srv-ubuntu-dev3 sshd[36482]: Invalid user apache from 106.12.48.78 May 29 06:15:02 srv-ubuntu-dev3 sshd[36482]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.78 May 29 06:15:02 srv-ubuntu-dev3 sshd[36482]: Invalid user apache from 106.12.48.78 May 29 06:15:04 srv-ubuntu-dev3 sshd[36482]: Failed password for invalid user apache from 106.12.48.78 port 46106 ssh2 May 29 06:18:10 srv-ubuntu-dev3 sshd[37075]: pa ...	2020-05-29 12:45:22
attackspambots	May 23 22:15:05 sso sshd[30657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.78 May 23 22:15:07 sso sshd[30657]: Failed password for invalid user npd from 106.12.48.78 port 33692 ssh2 ...	2020-05-24 05:24:35
attackspambots	prod8 ...	2020-04-09 17:09:27
attackbots	k+ssh-bruteforce	2020-04-01 13:25:14
attackspambots	Invalid user bruce from 106.12.48.78 port 41102	2020-03-28 02:37:45
attackspambots	Mar 16 23:07:42 haigwepa sshd[21482]: Failed password for root from 106.12.48.78 port 39142 ssh2 ...	2020-03-17 07:12:45

Comments on same subnet:

IP	Type	Details	Datetime
106.12.48.216	attack	Jun 20 22:15:57 zulu412 sshd\[32143\]: Invalid user monitor from 106.12.48.216 port 42510 Jun 20 22:15:57 zulu412 sshd\[32143\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.216 Jun 20 22:16:00 zulu412 sshd\[32143\]: Failed password for invalid user monitor from 106.12.48.216 port 42510 ssh2 ...	2020-06-21 04:37:43
106.12.48.216	attackbotsspam	Failed password for invalid user webster from 106.12.48.216 port 58952 ssh2	2020-06-16 18:47:04
106.12.48.216	attack	Jun 15 06:23:10 vps639187 sshd\[15653\]: Invalid user apache from 106.12.48.216 port 45924 Jun 15 06:23:10 vps639187 sshd\[15653\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.216 Jun 15 06:23:12 vps639187 sshd\[15653\]: Failed password for invalid user apache from 106.12.48.216 port 45924 ssh2 ...	2020-06-15 17:15:25
106.12.48.217	attackspam	2020-06-10T12:36:49.938655shield sshd\[14216\]: Invalid user bay from 106.12.48.217 port 39338 2020-06-10T12:36:49.941143shield sshd\[14216\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.217 2020-06-10T12:36:52.431442shield sshd\[14216\]: Failed password for invalid user bay from 106.12.48.217 port 39338 ssh2 2020-06-10T12:41:02.776575shield sshd\[16178\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.217 user=root 2020-06-10T12:41:04.664938shield sshd\[16178\]: Failed password for root from 106.12.48.217 port 57092 ssh2	2020-06-10 21:48:04
106.12.48.216	attackspam	2020-06-09T19:29:04+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-06-10 04:14:35
106.12.48.217	attackbots	Jun 6 12:46:16 game-panel sshd[11281]: Failed password for root from 106.12.48.217 port 36852 ssh2 Jun 6 12:49:05 game-panel sshd[11419]: Failed password for root from 106.12.48.217 port 45144 ssh2	2020-06-06 21:04:01
106.12.48.216	attackspam	Brute-force attempt banned	2020-06-06 07:06:17
106.12.48.217	attackbots	SSH Brute-Force reported by Fail2Ban	2020-06-01 01:55:35
106.12.48.217	attackspambots	May 30 06:39:40 web1 sshd[26874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.217 user=root May 30 06:39:41 web1 sshd[26874]: Failed password for root from 106.12.48.217 port 38248 ssh2 May 30 06:44:51 web1 sshd[28127]: Invalid user gogs from 106.12.48.217 port 40886 May 30 06:44:51 web1 sshd[28127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.217 May 30 06:44:51 web1 sshd[28127]: Invalid user gogs from 106.12.48.217 port 40886 May 30 06:44:54 web1 sshd[28127]: Failed password for invalid user gogs from 106.12.48.217 port 40886 ssh2 May 30 06:48:15 web1 sshd[28959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.217 user=root May 30 06:48:17 web1 sshd[28959]: Failed password for root from 106.12.48.217 port 54772 ssh2 May 30 06:51:12 web1 sshd[29745]: Invalid user eriksmoen from 106.12.48.217 port 40432 ...	2020-05-30 04:56:54
106.12.48.216	attackbotsspam	2020-05-27 14:41:50 server sshd[61577]: Failed password for invalid user root from 106.12.48.216 port 45738 ssh2	2020-05-29 02:13:59
106.12.48.216	attack	$f2bV_matches	2020-05-26 14:47:56
106.12.48.216	attack	Failed password for invalid user zpw from 106.12.48.216 port 33278 ssh2	2020-05-24 01:28:16
106.12.48.217	attack	Invalid user testuser from 106.12.48.217 port 39648	2020-05-17 08:40:32
106.12.48.217	attackspam	May 10 10:30:09 piServer sshd[29651]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.217 May 10 10:30:11 piServer sshd[29651]: Failed password for invalid user yannick from 106.12.48.217 port 42458 ssh2 May 10 10:39:46 piServer sshd[30436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.217 ...	2020-05-10 16:51:32
106.12.48.217	attackbots	May 5 10:58:02 ns382633 sshd\[26690\]: Invalid user ftpuser from 106.12.48.217 port 36582 May 5 10:58:02 ns382633 sshd\[26690\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.217 May 5 10:58:04 ns382633 sshd\[26690\]: Failed password for invalid user ftpuser from 106.12.48.217 port 36582 ssh2 May 5 11:15:41 ns382633 sshd\[30210\]: Invalid user niu from 106.12.48.217 port 56850 May 5 11:15:41 ns382633 sshd\[30210\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.217	2020-05-06 00:04:49

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.48.78
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29047
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.48.78.			IN	A

;; AUTHORITY SECTION:
.			533	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031601 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 17 07:12:41 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 78.48.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 78.48.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
206.189.132.204	attackbotsspam	Jul 15 18:59:40 rpi sshd[14599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.132.204 Jul 15 18:59:42 rpi sshd[14599]: Failed password for invalid user ben from 206.189.132.204 port 40090 ssh2	2019-07-16 01:24:18
212.83.145.12	attackbotsspam	\[2019-07-15 13:11:53\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-15T13:11:53.946-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="708011972592277524",SessionID="0x7f06f8009f28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.145.12/64548",ACLName="no_extension_match" \[2019-07-15 13:15:51\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-15T13:15:51.847-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="709011972592277524",SessionID="0x7f06f8009f28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.145.12/61592",ACLName="no_extension_match" \[2019-07-15 13:19:48\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-15T13:19:48.944-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="710011972592277524",SessionID="0x7f06f80214c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.145.12/49183",ACL	2019-07-16 01:21:53
121.190.197.205	attackbots	SSH authentication failure x 6 reported by Fail2Ban ...	2019-07-16 01:31:08
142.93.208.158	attackspambots	2019-07-15T17:06:48.204572abusebot-7.cloudsearch.cf sshd\[5504\]: Invalid user bank from 142.93.208.158 port 43958	2019-07-16 01:41:09
132.255.29.228	attackspambots	2019-07-15T17:12:15.927049abusebot-3.cloudsearch.cf sshd\[32442\]: Invalid user mythtv from 132.255.29.228 port 37332	2019-07-16 01:53:44
178.236.140.2	attackspambots	[portscan] Port scan	2019-07-16 01:11:46
185.137.111.132	attackspam	Jul 15 19:00:40 mail postfix/smtpd\[7047\]: warning: unknown\[185.137.111.132\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 15 19:02:05 mail postfix/smtpd\[7050\]: warning: unknown\[185.137.111.132\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 15 19:03:30 mail postfix/smtpd\[7046\]: warning: unknown\[185.137.111.132\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-16 01:18:54
195.38.104.232	attack	2019-07-15T18:58:55.415384vfs-server-01 sshd\[12081\]: Invalid user pi from 195.38.104.232 port 38270 2019-07-15T18:59:01.619253vfs-server-01 sshd\[12087\]: Invalid user pi from 195.38.104.232 port 42170 2019-07-15T18:59:08.832330vfs-server-01 sshd\[12093\]: Invalid user pi from 195.38.104.232 port 45232	2019-07-16 01:42:06
104.248.211.180	attackbots	Jul 15 10:01:11 Ubuntu-1404-trusty-64-minimal sshd\[11398\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.211.180 user=root Jul 15 10:01:12 Ubuntu-1404-trusty-64-minimal sshd\[11398\]: Failed password for root from 104.248.211.180 port 60318 ssh2 Jul 15 18:59:23 Ubuntu-1404-trusty-64-minimal sshd\[6848\]: Invalid user www from 104.248.211.180 Jul 15 18:59:23 Ubuntu-1404-trusty-64-minimal sshd\[6848\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.211.180 Jul 15 18:59:25 Ubuntu-1404-trusty-64-minimal sshd\[6848\]: Failed password for invalid user www from 104.248.211.180 port 47822 ssh2	2019-07-16 01:31:32
188.68.37.197	attack	Jul 15 19:13:23 s64-1 sshd[28076]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.68.37.197 Jul 15 19:13:26 s64-1 sshd[28076]: Failed password for invalid user uftp from 188.68.37.197 port 44134 ssh2 Jul 15 19:18:07 s64-1 sshd[28243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.68.37.197 ...	2019-07-16 01:26:27
88.121.72.24	attackbotsspam	Jul 15 18:51:31 OPSO sshd\[4317\]: Invalid user d from 88.121.72.24 port 35536 Jul 15 18:51:31 OPSO sshd\[4317\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.121.72.24 Jul 15 18:51:33 OPSO sshd\[4317\]: Failed password for invalid user d from 88.121.72.24 port 35536 ssh2 Jul 15 18:59:53 OPSO sshd\[5156\]: Invalid user debian from 88.121.72.24 port 35006 Jul 15 18:59:53 OPSO sshd\[5156\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.121.72.24	2019-07-16 01:12:58
104.238.116.19	attackspambots	Jul 15 20:08:11 server01 sshd\[9533\]: Invalid user hadoop from 104.238.116.19 Jul 15 20:08:11 server01 sshd\[9533\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.238.116.19 Jul 15 20:08:14 server01 sshd\[9533\]: Failed password for invalid user hadoop from 104.238.116.19 port 46868 ssh2 ...	2019-07-16 01:09:32
118.27.29.93	attackbots	Jul 15 18:59:04 ubuntu-2gb-nbg1-dc3-1 sshd[8774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.27.29.93 Jul 15 18:59:06 ubuntu-2gb-nbg1-dc3-1 sshd[8774]: Failed password for invalid user pm from 118.27.29.93 port 47002 ssh2 ...	2019-07-16 01:44:28
5.135.182.84	attackspambots	Jul 15 22:42:52 vibhu-HP-Z238-Microtower-Workstation sshd\[2276\]: Invalid user jj from 5.135.182.84 Jul 15 22:42:52 vibhu-HP-Z238-Microtower-Workstation sshd\[2276\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.182.84 Jul 15 22:42:54 vibhu-HP-Z238-Microtower-Workstation sshd\[2276\]: Failed password for invalid user jj from 5.135.182.84 port 34762 ssh2 Jul 15 22:49:47 vibhu-HP-Z238-Microtower-Workstation sshd\[3916\]: Invalid user alumni from 5.135.182.84 Jul 15 22:49:47 vibhu-HP-Z238-Microtower-Workstation sshd\[3916\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.182.84 ...	2019-07-16 01:35:55
76.31.234.2	attackbotsspam	Automatic report - Port Scan Attack	2019-07-16 01:17:43

Recently Reported IPs

190.12.115.8	141.98.11.118	105.226.32.216	123.231.105.184
205.185.122.238	167.89.87.204	186.47.98.2	177.191.213.180
39.38.236.240	165.227.82.48	94.103.202.93	83.220.238.157
181.143.186.235	157.44.198.86	123.195.72.130	109.94.223.130
202.186.147.42	187.188.50.99	78.53.231.222	139.255.53.178