106.12.52.75 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Jul 16 06:11:49 piServer sshd[3994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.52.75 Jul 16 06:11:51 piServer sshd[3994]: Failed password for invalid user web from 106.12.52.75 port 41728 ssh2 Jul 16 06:15:10 piServer sshd[4263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.52.75 ...	2020-07-16 12:53:48
attackbotsspam	Jun 6 13:58:44 [host] sshd[9984]: pam_unix(sshd:a Jun 6 13:58:46 [host] sshd[9984]: Failed password Jun 6 14:04:06 [host] sshd[10145]: pam_unix(sshd:	2020-06-06 20:21:05
attackbots	2020-05-03T03:51:22.796055abusebot-6.cloudsearch.cf sshd[10122]: Invalid user xsj from 106.12.52.75 port 56400 2020-05-03T03:51:22.805451abusebot-6.cloudsearch.cf sshd[10122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.52.75 2020-05-03T03:51:22.796055abusebot-6.cloudsearch.cf sshd[10122]: Invalid user xsj from 106.12.52.75 port 56400 2020-05-03T03:51:24.342332abusebot-6.cloudsearch.cf sshd[10122]: Failed password for invalid user xsj from 106.12.52.75 port 56400 ssh2 2020-05-03T03:56:55.455043abusebot-6.cloudsearch.cf sshd[10678]: Invalid user sit from 106.12.52.75 port 54732 2020-05-03T03:56:55.463494abusebot-6.cloudsearch.cf sshd[10678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.52.75 2020-05-03T03:56:55.455043abusebot-6.cloudsearch.cf sshd[10678]: Invalid user sit from 106.12.52.75 port 54732 2020-05-03T03:56:57.381777abusebot-6.cloudsearch.cf sshd[10678]: Failed password for inv ...	2020-05-03 12:23:22
attackspambots	Apr 20 21:00:40 game-panel sshd[32255]: Failed password for root from 106.12.52.75 port 54834 ssh2 Apr 20 21:04:57 game-panel sshd[32415]: Failed password for root from 106.12.52.75 port 57042 ssh2	2020-04-21 05:51:56

Comments on same subnet:

IP	Type	Details	Datetime
106.12.52.154	attack	invalid login attempt (adelina)	2020-10-12 21:00:39
106.12.52.154	attack	2020-10-11T18:45:54.859781linuxbox-skyline sshd[36908]: Invalid user asdfgh from 106.12.52.154 port 52364 ...	2020-10-12 12:30:10
106.12.52.154	attack	(sshd) Failed SSH login from 106.12.52.154 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 24 07:48:57 optimus sshd[21005]: Invalid user postgres from 106.12.52.154 Sep 24 07:48:57 optimus sshd[21005]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.52.154 Sep 24 07:48:58 optimus sshd[21005]: Failed password for invalid user postgres from 106.12.52.154 port 36924 ssh2 Sep 24 08:02:40 optimus sshd[25226]: Invalid user mac from 106.12.52.154 Sep 24 08:02:40 optimus sshd[25226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.52.154	2020-09-24 21:17:23
106.12.52.154	attackbots	(sshd) Failed SSH login from 106.12.52.154 (US/United States/California/San Jose/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 24 00:41:34 atlas sshd[3041]: Invalid user sybase from 106.12.52.154 port 49594 Sep 24 00:41:36 atlas sshd[3041]: Failed password for invalid user sybase from 106.12.52.154 port 49594 ssh2 Sep 24 00:54:09 atlas sshd[6562]: Invalid user oracle from 106.12.52.154 port 49464 Sep 24 00:54:11 atlas sshd[6562]: Failed password for invalid user oracle from 106.12.52.154 port 49464 ssh2 Sep 24 00:57:44 atlas sshd[7513]: Invalid user ubuntu from 106.12.52.154 port 60974	2020-09-24 13:11:21
106.12.52.154	attackspam	2020-09-23T20:09:56.131405vps-d63064a2 sshd[48398]: User root from 106.12.52.154 not allowed because not listed in AllowUsers 2020-09-23T20:09:57.936382vps-d63064a2 sshd[48398]: Failed password for invalid user root from 106.12.52.154 port 48992 ssh2 2020-09-23T20:11:57.083915vps-d63064a2 sshd[48496]: Invalid user vp from 106.12.52.154 port 49782 2020-09-23T20:11:57.143877vps-d63064a2 sshd[48496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.52.154 2020-09-23T20:11:57.083915vps-d63064a2 sshd[48496]: Invalid user vp from 106.12.52.154 port 49782 2020-09-23T20:11:59.481140vps-d63064a2 sshd[48496]: Failed password for invalid user vp from 106.12.52.154 port 49782 ssh2 ...	2020-09-24 04:40:44
106.12.52.98	attack	Invalid user wrk from 106.12.52.98 port 39492	2020-09-22 22:38:28
106.12.52.98	attackbots	" "	2020-09-22 14:43:19
106.12.52.98	attack	5x Failed Password	2020-09-22 06:46:06
106.12.52.98	attack	TCP (SYN) 106.12.52.98:43961 -> port 17554, len 44	2020-09-14 17:36:34
106.12.52.98	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 96 - port: 25992 proto: tcp cat: Misc Attackbytes: 60	2020-09-13 21:12:57
106.12.52.98	attackspam	$lgm	2020-09-13 13:06:52
106.12.52.154	attack	Sep 7 04:55:15 Host-KEWR-E sshd[222553]: Disconnected from invalid user www-data 106.12.52.154 port 46276 [preauth] ...	2020-09-08 02:43:40
106.12.52.154	attackbots	Sep 7 04:55:15 Host-KEWR-E sshd[222553]: Disconnected from invalid user www-data 106.12.52.154 port 46276 [preauth] ...	2020-09-07 18:11:23
106.12.52.154	attack	Aug 30 15:49:18 srv-ubuntu-dev3 sshd[19495]: Invalid user administrador from 106.12.52.154 Aug 30 15:49:18 srv-ubuntu-dev3 sshd[19495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.52.154 Aug 30 15:49:18 srv-ubuntu-dev3 sshd[19495]: Invalid user administrador from 106.12.52.154 Aug 30 15:49:20 srv-ubuntu-dev3 sshd[19495]: Failed password for invalid user administrador from 106.12.52.154 port 42324 ssh2 Aug 30 15:52:47 srv-ubuntu-dev3 sshd[19903]: Invalid user bj from 106.12.52.154 Aug 30 15:52:47 srv-ubuntu-dev3 sshd[19903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.52.154 Aug 30 15:52:47 srv-ubuntu-dev3 sshd[19903]: Invalid user bj from 106.12.52.154 Aug 30 15:52:48 srv-ubuntu-dev3 sshd[19903]: Failed password for invalid user bj from 106.12.52.154 port 53456 ssh2 Aug 30 15:56:24 srv-ubuntu-dev3 sshd[20255]: Invalid user franklin from 106.12.52.154 ...	2020-08-30 22:48:34
106.12.52.98	attackspam	" "	2020-08-27 18:27:37

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.52.75
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56445
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.52.75.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042001 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 21 05:51:52 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 75.52.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 75.52.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
149.56.100.237	attackspambots	$f2bV_matches	2019-12-15 08:52:17
51.159.53.116	attack	Dec 15 01:35:51 sticky sshd\[29748\]: Invalid user km from 51.159.53.116 port 39568 Dec 15 01:35:51 sticky sshd\[29748\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.159.53.116 Dec 15 01:35:53 sticky sshd\[29748\]: Failed password for invalid user km from 51.159.53.116 port 39568 ssh2 Dec 15 01:43:39 sticky sshd\[29877\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.159.53.116 user=root Dec 15 01:43:41 sticky sshd\[29877\]: Failed password for root from 51.159.53.116 port 49290 ssh2 ...	2019-12-15 08:44:50
159.89.169.137	attack	Dec 15 01:26:19 eventyay sshd[27768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.169.137 Dec 15 01:26:22 eventyay sshd[27768]: Failed password for invalid user Ensio from 159.89.169.137 port 57396 ssh2 Dec 15 01:32:36 eventyay sshd[27963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.169.137 ...	2019-12-15 08:42:33
68.183.190.34	attackspam	Dec 14 14:53:00 hanapaa sshd\[1110\]: Invalid user longe from 68.183.190.34 Dec 14 14:53:00 hanapaa sshd\[1110\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.190.34 Dec 14 14:53:02 hanapaa sshd\[1110\]: Failed password for invalid user longe from 68.183.190.34 port 32772 ssh2 Dec 14 14:59:21 hanapaa sshd\[1753\]: Invalid user delano from 68.183.190.34 Dec 14 14:59:21 hanapaa sshd\[1753\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.190.34	2019-12-15 09:11:03
182.147.84.57	attackbotsspam	23/tcp 60001/tcp 5500/tcp [2019-11-30/12-14]3pkt	2019-12-15 09:04:11
218.92.0.179	attackspambots	Dec 14 15:06:25 web9 sshd\[31991\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.179 user=root Dec 14 15:06:27 web9 sshd\[31991\]: Failed password for root from 218.92.0.179 port 28949 ssh2 Dec 14 15:06:40 web9 sshd\[31991\]: Failed password for root from 218.92.0.179 port 28949 ssh2 Dec 14 15:06:44 web9 sshd\[32020\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.179 user=root Dec 14 15:06:46 web9 sshd\[32020\]: Failed password for root from 218.92.0.179 port 63225 ssh2	2019-12-15 09:07:34
46.34.133.72	attack	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2019-12-15 13:03:51
185.230.161.168	attackbots	Dec 15 01:59:24 vmd17057 sshd\[24084\]: Invalid user misp from 185.230.161.168 port 53706 Dec 15 01:59:24 vmd17057 sshd\[24084\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.230.161.168 Dec 15 01:59:25 vmd17057 sshd\[24084\]: Failed password for invalid user misp from 185.230.161.168 port 53706 ssh2 ...	2019-12-15 09:03:54
165.169.241.28	attack	" "	2019-12-15 09:14:57
69.229.6.52	attackspam	Dec 14 19:59:21 TORMINT sshd\[7648\]: Invalid user mariuszsk from 69.229.6.52 Dec 14 19:59:21 TORMINT sshd\[7648\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.229.6.52 Dec 14 19:59:22 TORMINT sshd\[7648\]: Failed password for invalid user mariuszsk from 69.229.6.52 port 59602 ssh2 ...	2019-12-15 09:08:14
188.166.5.84	attackspambots	2019-12-15T01:51:56.975507struts4.enskede.local sshd\[19062\]: Invalid user wwwrun from 188.166.5.84 port 47768 2019-12-15T01:51:56.982454struts4.enskede.local sshd\[19062\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.5.84 2019-12-15T01:51:59.616765struts4.enskede.local sshd\[19062\]: Failed password for invalid user wwwrun from 188.166.5.84 port 47768 ssh2 2019-12-15T01:57:56.707798struts4.enskede.local sshd\[19075\]: Invalid user snickers from 188.166.5.84 port 36888 2019-12-15T01:57:56.717618struts4.enskede.local sshd\[19075\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.5.84 ...	2019-12-15 09:03:21
95.251.134.32	attackbots	Automatic report - Port Scan Attack	2019-12-15 09:06:41
109.87.115.220	attack	Dec 15 00:58:38 OPSO sshd\[27902\]: Invalid user rpc from 109.87.115.220 port 50234 Dec 15 00:58:38 OPSO sshd\[27902\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.87.115.220 Dec 15 00:58:40 OPSO sshd\[27902\]: Failed password for invalid user rpc from 109.87.115.220 port 50234 ssh2 Dec 15 01:06:59 OPSO sshd\[29776\]: Invalid user marjorie from 109.87.115.220 port 54336 Dec 15 01:06:59 OPSO sshd\[29776\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.87.115.220	2019-12-15 08:44:26
51.158.120.115	attackspambots	Dec 14 18:51:29 tdfoods sshd\[28178\]: Invalid user daijoel from 51.158.120.115 Dec 14 18:51:29 tdfoods sshd\[28178\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.120.115 Dec 14 18:51:31 tdfoods sshd\[28178\]: Failed password for invalid user daijoel from 51.158.120.115 port 50064 ssh2 Dec 14 18:59:09 tdfoods sshd\[28908\]: Invalid user marjory from 51.158.120.115 Dec 14 18:59:09 tdfoods sshd\[28908\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.120.115	2019-12-15 13:05:13
222.186.175.150	attackbots	SSH-BruteForce	2019-12-15 08:59:38

Recently Reported IPs

52.192.105.184	64.202.159.61	58.160.128.28	108.122.215.6
222.154.57.133	71.110.137.155	99.22.17.54	191.152.10.35
225.222.18.215	37.183.131.79	185.50.98.236	126.60.26.1
191.26.130.215	173.125.180.50	174.107.109.23	79.140.44.175
114.135.240.190	134.122.106.228	122.205.105.43	172.132.113.32