106.12.57.165 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	24852/tcp 16010/tcp 25739/tcp... [2020-08-04/10-03]25pkt,25pt.(tcp)	2020-10-04 05:59:22
attackspam	24852/tcp 16010/tcp 25739/tcp... [2020-08-04/10-03]25pkt,25pt.(tcp)	2020-10-03 21:59:01
attack	" "	2020-10-03 13:43:29
attackspam	Failed password for root from 106.12.57.165 port 57810 ssh2	2020-09-14 15:38:28
attackspambots	Sep 13 23:58:02 vmd17057 sshd[30321]: Failed password for root from 106.12.57.165 port 60676 ssh2 ...	2020-09-14 07:33:03
attackbotsspam	Invalid user arun from 106.12.57.165 port 54714	2020-08-21 14:05:58
attackspambots	Aug 18 04:51:45 game-panel sshd[9205]: Failed password for root from 106.12.57.165 port 36516 ssh2 Aug 18 04:57:35 game-panel sshd[9471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.165 Aug 18 04:57:37 game-panel sshd[9471]: Failed password for invalid user teste from 106.12.57.165 port 51886 ssh2	2020-08-18 17:02:29
attackspam	TCP (SYN) 106.12.57.165:57762 -> port 16935, len 44	2020-06-01 19:27:55
attack	May 15 23:55:22 sip sshd[279108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.165 May 15 23:55:22 sip sshd[279108]: Invalid user admin from 106.12.57.165 port 53522 May 15 23:55:24 sip sshd[279108]: Failed password for invalid user admin from 106.12.57.165 port 53522 ssh2 ...	2020-05-16 05:56:40
attackbotsspam	2020-04-29T14:59:16.786870abusebot-4.cloudsearch.cf sshd[2548]: Invalid user tom from 106.12.57.165 port 35916 2020-04-29T14:59:16.793952abusebot-4.cloudsearch.cf sshd[2548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.165 2020-04-29T14:59:16.786870abusebot-4.cloudsearch.cf sshd[2548]: Invalid user tom from 106.12.57.165 port 35916 2020-04-29T14:59:18.930542abusebot-4.cloudsearch.cf sshd[2548]: Failed password for invalid user tom from 106.12.57.165 port 35916 ssh2 2020-04-29T15:04:14.099586abusebot-4.cloudsearch.cf sshd[2897]: Invalid user hyang from 106.12.57.165 port 58458 2020-04-29T15:04:14.106750abusebot-4.cloudsearch.cf sshd[2897]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.165 2020-04-29T15:04:14.099586abusebot-4.cloudsearch.cf sshd[2897]: Invalid user hyang from 106.12.57.165 port 58458 2020-04-29T15:04:16.152975abusebot-4.cloudsearch.cf sshd[2897]: Failed password for ...	2020-04-30 00:21:01
attack	Apr 18 07:22:36 *** sshd[18160]: Invalid user vj from 106.12.57.165	2020-04-18 17:12:34
attack	Apr 15 15:10:31 sso sshd[11364]: Failed password for proxy from 106.12.57.165 port 34216 ssh2 ...	2020-04-15 23:56:56
attackbotsspam	(sshd) Failed SSH login from 106.12.57.165 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 28 01:20:20 srv sshd[25079]: Invalid user wmu from 106.12.57.165 port 42446 Mar 28 01:20:22 srv sshd[25079]: Failed password for invalid user wmu from 106.12.57.165 port 42446 ssh2 Mar 28 01:30:44 srv sshd[25649]: Invalid user cgr from 106.12.57.165 port 60762 Mar 28 01:30:46 srv sshd[25649]: Failed password for invalid user cgr from 106.12.57.165 port 60762 ssh2 Mar 28 01:34:37 srv sshd[25809]: Invalid user apz from 106.12.57.165 port 33254	2020-03-28 07:42:21
attackbots	Invalid user fangce from 106.12.57.165 port 43708	2020-02-28 10:00:27
attack	Feb 23 03:39:58 server sshd\[26472\]: Invalid user webuser from 106.12.57.165 Feb 23 03:39:58 server sshd\[26472\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.165 Feb 23 03:40:01 server sshd\[26472\]: Failed password for invalid user webuser from 106.12.57.165 port 57048 ssh2 Feb 23 03:48:05 server sshd\[28353\]: Invalid user couchdb from 106.12.57.165 Feb 23 03:48:05 server sshd\[28353\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.165 ...	2020-02-23 09:42:41
attack	Feb 22 03:10:37 hanapaa sshd\[21997\]: Invalid user csgoserver from 106.12.57.165 Feb 22 03:10:37 hanapaa sshd\[21997\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.165 Feb 22 03:10:40 hanapaa sshd\[21997\]: Failed password for invalid user csgoserver from 106.12.57.165 port 38244 ssh2 Feb 22 03:14:09 hanapaa sshd\[22300\]: Invalid user oracle from 106.12.57.165 Feb 22 03:14:09 hanapaa sshd\[22300\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.165	2020-02-22 21:18:50
attackbots	Feb 16 04:15:51 web9 sshd\[12014\]: Invalid user maria from 106.12.57.165 Feb 16 04:15:51 web9 sshd\[12014\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.165 Feb 16 04:15:52 web9 sshd\[12014\]: Failed password for invalid user maria from 106.12.57.165 port 50430 ssh2 Feb 16 04:19:22 web9 sshd\[12643\]: Invalid user amine from 106.12.57.165 Feb 16 04:19:22 web9 sshd\[12643\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.165	2020-02-16 22:20:58
attack	Jan 30 23:03:05 OPSO sshd\[20424\]: Invalid user rushil from 106.12.57.165 port 47956 Jan 30 23:03:05 OPSO sshd\[20424\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.165 Jan 30 23:03:07 OPSO sshd\[20424\]: Failed password for invalid user rushil from 106.12.57.165 port 47956 ssh2 Jan 30 23:05:42 OPSO sshd\[21197\]: Invalid user sivika from 106.12.57.165 port 36912 Jan 30 23:05:42 OPSO sshd\[21197\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.165	2020-01-31 06:10:57
attack	Unauthorized connection attempt detected from IP address 106.12.57.165 to port 2220 [J]	2020-01-25 02:49:04

Comments on same subnet:

IP	Type	Details	Datetime
106.12.57.149	attack	Invalid user vncuser from 106.12.57.149 port 47998	2020-08-30 13:31:52
106.12.57.149	attack	Invalid user oracle from 106.12.57.149 port 60870	2020-08-29 06:18:00
106.12.57.149	attackbots	Invalid user oracle from 106.12.57.149 port 60870	2020-08-27 09:50:41
106.12.57.149	attackbotsspam	$f2bV_matches	2020-08-27 03:14:12
106.12.57.47	attackbotsspam	[Mon Jul 06 01:28:54 2020] - DDoS Attack From IP: 106.12.57.47 Port: 42503	2020-07-13 01:30:20
106.12.57.149	attackspam	firewall-block, port(s): 30785/tcp	2020-07-10 05:59:25
106.12.57.149	attack	firewall-block, port(s): 7381/tcp	2020-07-09 08:11:51
106.12.57.47	attackbots	[Mon Jul 06 01:28:57 2020] - DDoS Attack From IP: 106.12.57.47 Port: 42503	2020-07-08 19:55:26
106.12.57.47	attack	Jun 28 20:38:17 *** sshd[23534]: User root from 106.12.57.47 not allowed because not listed in AllowUsers	2020-06-29 05:36:38
106.12.57.149	attack	Jun 21 05:55:44 OPSO sshd\[22149\]: Invalid user xjj from 106.12.57.149 port 46658 Jun 21 05:55:44 OPSO sshd\[22149\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.149 Jun 21 05:55:46 OPSO sshd\[22149\]: Failed password for invalid user xjj from 106.12.57.149 port 46658 ssh2 Jun 21 05:59:18 OPSO sshd\[22897\]: Invalid user lea from 106.12.57.149 port 37648 Jun 21 05:59:18 OPSO sshd\[22897\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.149	2020-06-21 12:28:34
106.12.57.47	attack	Jun 19 08:11:27 abendstille sshd\[7859\]: Invalid user akash from 106.12.57.47 Jun 19 08:11:27 abendstille sshd\[7859\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.47 Jun 19 08:11:29 abendstille sshd\[7859\]: Failed password for invalid user akash from 106.12.57.47 port 37474 ssh2 Jun 19 08:16:13 abendstille sshd\[12855\]: Invalid user testuser from 106.12.57.47 Jun 19 08:16:13 abendstille sshd\[12855\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.47 ...	2020-06-19 17:15:10
106.12.57.149	attackspam	Jun 13 09:53:32 ArkNodeAT sshd\[25037\]: Invalid user monitor from 106.12.57.149 Jun 13 09:53:32 ArkNodeAT sshd\[25037\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.149 Jun 13 09:53:34 ArkNodeAT sshd\[25037\]: Failed password for invalid user monitor from 106.12.57.149 port 50848 ssh2	2020-06-13 16:48:32
106.12.57.149	attackbots	Jun 12 08:23:49 hosting sshd[19569]: Invalid user test2 from 106.12.57.149 port 51816 ...	2020-06-12 14:44:13
106.12.57.149	attackspambots	Jun 4 17:05:28 ny01 sshd[13516]: Failed password for root from 106.12.57.149 port 35850 ssh2 Jun 4 17:08:05 ny01 sshd[13858]: Failed password for root from 106.12.57.149 port 46182 ssh2	2020-06-05 05:13:43
106.12.57.47	attackbotsspam	2020-05-31T03:51:24.419332abusebot-8.cloudsearch.cf sshd[5414]: Invalid user pfdracin from 106.12.57.47 port 35168 2020-05-31T03:51:24.431199abusebot-8.cloudsearch.cf sshd[5414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.47 2020-05-31T03:51:24.419332abusebot-8.cloudsearch.cf sshd[5414]: Invalid user pfdracin from 106.12.57.47 port 35168 2020-05-31T03:51:26.600220abusebot-8.cloudsearch.cf sshd[5414]: Failed password for invalid user pfdracin from 106.12.57.47 port 35168 ssh2 2020-05-31T03:57:01.301181abusebot-8.cloudsearch.cf sshd[5697]: Invalid user admin from 106.12.57.47 port 48008 2020-05-31T03:57:01.309058abusebot-8.cloudsearch.cf sshd[5697]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.47 2020-05-31T03:57:01.301181abusebot-8.cloudsearch.cf sshd[5697]: Invalid user admin from 106.12.57.47 port 48008 2020-05-31T03:57:03.076593abusebot-8.cloudsearch.cf sshd[5697]: Failed passw ...	2020-05-31 12:29:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.57.165
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60135
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.57.165.			IN	A

;; AUTHORITY SECTION:
.			530	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012400 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 25 02:49:02 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 165.57.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 165.57.12.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
157.230.113.218	attackspam	Aug 15 11:21:22 php2 sshd\[15247\]: Invalid user ddgrid from 157.230.113.218 Aug 15 11:21:22 php2 sshd\[15247\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.113.218 Aug 15 11:21:24 php2 sshd\[15247\]: Failed password for invalid user ddgrid from 157.230.113.218 port 52916 ssh2 Aug 15 11:25:24 php2 sshd\[15618\]: Invalid user zabbix from 157.230.113.218 Aug 15 11:25:24 php2 sshd\[15618\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.113.218	2019-08-16 05:28:23
31.14.135.117	attackbotsspam	2019-08-15T20:54:19.502490abusebot-2.cloudsearch.cf sshd\[27892\]: Invalid user villa from 31.14.135.117 port 37512	2019-08-16 05:03:54
185.85.36.34	attack	Aug 15 21:22:18 MK-Soft-VM5 sshd\[30128\]: Invalid user mxintadm from 185.85.36.34 port 42046 Aug 15 21:22:18 MK-Soft-VM5 sshd\[30128\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.85.36.34 Aug 15 21:22:20 MK-Soft-VM5 sshd\[30128\]: Failed password for invalid user mxintadm from 185.85.36.34 port 42046 ssh2 ...	2019-08-16 05:31:52
189.174.106.212	attackspam	445/tcp [2019-08-15]1pkt	2019-08-16 05:29:32
41.138.208.141	attackbots	Aug 16 00:00:05 tuotantolaitos sshd[13360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.138.208.141 Aug 16 00:00:07 tuotantolaitos sshd[13360]: Failed password for invalid user sampath from 41.138.208.141 port 36898 ssh2 ...	2019-08-16 05:19:00
186.109.217.212	attackbots	23/tcp [2019-08-15]1pkt	2019-08-16 05:11:17
54.37.64.101	attackspambots	Aug 16 00:00:40 microserver sshd[40812]: Invalid user home from 54.37.64.101 port 47420 Aug 16 00:00:40 microserver sshd[40812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.64.101 Aug 16 00:00:42 microserver sshd[40812]: Failed password for invalid user home from 54.37.64.101 port 47420 ssh2 Aug 16 00:04:47 microserver sshd[41043]: Invalid user jen from 54.37.64.101 port 39706 Aug 16 00:04:47 microserver sshd[41043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.64.101 Aug 16 00:16:51 microserver sshd[43905]: Invalid user philippe from 54.37.64.101 port 44800 Aug 16 00:16:51 microserver sshd[43905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.64.101 Aug 16 00:16:54 microserver sshd[43905]: Failed password for invalid user philippe from 54.37.64.101 port 44800 ssh2 Aug 16 00:21:01 microserver sshd[44548]: Invalid user lupoae from 54.37.64.101 port 37090 Aug 16 00:2	2019-08-16 04:59:10
62.210.149.30	attackspam	\[2019-08-15 17:25:08\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-15T17:25:08.170-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="682212342186069",SessionID="0x7ff4d0155c88",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.149.30/55391",ACLName="no_extension_match" \[2019-08-15 17:25:24\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-15T17:25:24.078-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="682312342186069",SessionID="0x7ff4d0045808",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.149.30/55716",ACLName="no_extension_match" \[2019-08-15 17:25:39\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-15T17:25:39.893-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="682412342186069",SessionID="0x7ff4d004fe18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.149.30/55498",ACLName="no_ext	2019-08-16 05:27:05
111.231.72.231	attackspam	Automatic report - Banned IP Access	2019-08-16 05:34:24
159.65.180.64	attackbots	Aug 15 23:12:51 OPSO sshd\[14434\]: Invalid user tsukamoto from 159.65.180.64 port 56844 Aug 15 23:12:51 OPSO sshd\[14434\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.180.64 Aug 15 23:12:53 OPSO sshd\[14434\]: Failed password for invalid user tsukamoto from 159.65.180.64 port 56844 ssh2 Aug 15 23:17:18 OPSO sshd\[15623\]: Invalid user postgres from 159.65.180.64 port 49838 Aug 15 23:17:18 OPSO sshd\[15623\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.180.64	2019-08-16 05:29:58
168.128.13.253	attack	Aug 15 11:03:44 hanapaa sshd\[20455\]: Invalid user yanko from 168.128.13.253 Aug 15 11:03:44 hanapaa sshd\[20455\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168-128-13-253-eu.mcp-services.net Aug 15 11:03:46 hanapaa sshd\[20455\]: Failed password for invalid user yanko from 168.128.13.253 port 55556 ssh2 Aug 15 11:09:02 hanapaa sshd\[20914\]: Invalid user wei from 168.128.13.253 Aug 15 11:09:02 hanapaa sshd\[20914\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168-128-13-253-eu.mcp-services.net	2019-08-16 05:16:36
37.187.23.116	attackbotsspam	Aug 15 22:36:09 OPSO sshd\[6236\]: Invalid user vftp from 37.187.23.116 port 48626 Aug 15 22:36:09 OPSO sshd\[6236\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.23.116 Aug 15 22:36:11 OPSO sshd\[6236\]: Failed password for invalid user vftp from 37.187.23.116 port 48626 ssh2 Aug 15 22:41:02 OPSO sshd\[7285\]: Invalid user vf from 37.187.23.116 port 41018 Aug 15 22:41:02 OPSO sshd\[7285\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.23.116	2019-08-16 04:52:13
77.40.58.143	attackbots	Aug 15 23:04:22 web1 postfix/smtpd\[3307\]: warning: unknown\[77.40.58.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 23:08:44 web1 postfix/smtpd\[3519\]: warning: unknown\[77.40.58.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 23:12:14 web1 postfix/smtpd\[3795\]: warning: unknown\[77.40.58.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-08-16 05:33:59
95.81.120.128	attack	Aug 15 16:11:39 newdogma sshd[16723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.81.120.128 user=r.r Aug 15 16:11:41 newdogma sshd[16723]: Failed password for r.r from 95.81.120.128 port 38300 ssh2 Aug 15 16:11:43 newdogma sshd[16723]: Failed password for r.r from 95.81.120.128 port 38300 ssh2 Aug 15 16:11:45 newdogma sshd[16723]: Failed password for r.r from 95.81.120.128 port 38300 ssh2 Aug 15 16:11:47 newdogma sshd[16723]: Failed password for r.r from 95.81.120.128 port 38300 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=95.81.120.128	2019-08-16 04:53:55
185.86.164.98	attack	Attempted WordPress login: "GET /wp-login.php"	2019-08-16 05:19:44

Recently Reported IPs

61.145.213.172	205.228.88.20	14.173.46.61	213.140.8.255
63.143.100.29	128.10.88.213	1.54.21.97	103.70.46.159
197.149.122.122	63.194.139.211	92.23.56.241	122.51.62.212
36.99.39.95	112.184.98.131	22.87.78.36	242.196.123.253
34.60.132.102	36.143.143.158	194.95.51.164	26.126.124.248