City: unknown
Region: unknown
Country: China
Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.
Hostname: unknown
Organization: unknown
Usage Type: Search Engine Spider
| Type | Details | Datetime |
|---|---|---|
| attackspambots | May 23 20:45:19 sip sshd[377861]: Invalid user pxw from 106.12.142.52 port 42214 May 23 20:45:21 sip sshd[377861]: Failed password for invalid user pxw from 106.12.142.52 port 42214 ssh2 May 23 20:47:00 sip sshd[377881]: Invalid user uqw from 106.12.142.52 port 35308 ... |
2020-05-24 03:25:07 |
| attack | May 15 07:00:48 jane sshd[7047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 May 15 07:00:49 jane sshd[7047]: Failed password for invalid user anjana from 106.12.142.52 port 41018 ssh2 ... |
2020-05-15 15:16:24 |
| attack | SSH Bruteforce attack |
2020-04-15 21:28:48 |
| attackspam | SSH auth scanning - multiple failed logins |
2020-04-12 05:36:46 |
| attack | Mar 23 06:37:08 ks10 sshd[156555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 Mar 23 06:37:10 ks10 sshd[156555]: Failed password for invalid user ts5 from 106.12.142.52 port 52144 ssh2 ... |
2020-03-23 14:37:40 |
| attackbots | 2020-03-22T00:20:34.902210upcloud.m0sh1x2.com sshd[22424]: Invalid user rz from 106.12.142.52 port 59008 |
2020-03-22 09:49:56 |
| attackbots | Brute force attempt |
2020-03-12 03:33:07 |
| attack | Feb 25 06:42:46 askasleikir sshd[46468]: Failed password for invalid user work from 106.12.142.52 port 36132 ssh2 Feb 25 06:15:14 askasleikir sshd[45360]: Failed password for invalid user sirius from 106.12.142.52 port 58196 ssh2 Feb 25 06:39:56 askasleikir sshd[46343]: Failed password for invalid user gzx from 106.12.142.52 port 57414 ssh2 |
2020-02-25 21:44:26 |
| attackspam | Feb 9 05:54:35 srv206 sshd[30165]: Invalid user zuy from 106.12.142.52 Feb 9 05:54:35 srv206 sshd[30165]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 Feb 9 05:54:35 srv206 sshd[30165]: Invalid user zuy from 106.12.142.52 Feb 9 05:54:37 srv206 sshd[30165]: Failed password for invalid user zuy from 106.12.142.52 port 53390 ssh2 ... |
2020-02-09 16:10:22 |
| attack | Jan 23 00:40:59 hcbbdb sshd\[6129\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 user=root Jan 23 00:41:01 hcbbdb sshd\[6129\]: Failed password for root from 106.12.142.52 port 52710 ssh2 Jan 23 00:45:01 hcbbdb sshd\[6660\]: Invalid user vnc from 106.12.142.52 Jan 23 00:45:01 hcbbdb sshd\[6660\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 Jan 23 00:45:03 hcbbdb sshd\[6660\]: Failed password for invalid user vnc from 106.12.142.52 port 40304 ssh2 |
2020-01-23 09:57:29 |
| attack | Unauthorized connection attempt detected from IP address 106.12.142.52 to port 2220 [J] |
2020-01-15 03:34:42 |
| attack | Jan 7 14:27:52 plex sshd[28518]: Invalid user smboracle from 106.12.142.52 port 34364 |
2020-01-07 21:43:22 |
| attackbots | Jan 1 06:46:30 silence02 sshd[32508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 Jan 1 06:46:32 silence02 sshd[32508]: Failed password for invalid user zulkarnaen from 106.12.142.52 port 36272 ssh2 Jan 1 06:48:27 silence02 sshd[32576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 |
2020-01-01 14:24:36 |
| attackspambots | Dec 5 07:32:03 fr01 sshd[8410]: Invalid user redindy from 106.12.142.52 Dec 5 07:32:03 fr01 sshd[8410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 Dec 5 07:32:03 fr01 sshd[8410]: Invalid user redindy from 106.12.142.52 Dec 5 07:32:05 fr01 sshd[8410]: Failed password for invalid user redindy from 106.12.142.52 port 37786 ssh2 Dec 5 07:51:27 fr01 sshd[11959]: Invalid user radio from 106.12.142.52 ... |
2019-12-05 15:07:13 |
| attackbotsspam | Nov 29 05:58:30 MK-Soft-VM7 sshd[6531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 Nov 29 05:58:32 MK-Soft-VM7 sshd[6531]: Failed password for invalid user mukherjee from 106.12.142.52 port 59432 ssh2 ... |
2019-11-29 13:23:39 |
| attackspam | SSH Brute-Force attacks |
2019-11-28 19:07:36 |
| attack | Nov 15 02:47:57 server sshd\[25924\]: Invalid user dijkstra from 106.12.142.52 Nov 15 02:47:57 server sshd\[25924\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 Nov 15 02:47:58 server sshd\[25924\]: Failed password for invalid user dijkstra from 106.12.142.52 port 34464 ssh2 Nov 15 03:05:06 server sshd\[31927\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 user=root Nov 15 03:05:08 server sshd\[31927\]: Failed password for root from 106.12.142.52 port 47678 ssh2 ... |
2019-11-15 08:17:13 |
| attack | 2019-10-28T10:29:45.289190abusebot-4.cloudsearch.cf sshd\[20861\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 user=root |
2019-10-28 18:33:50 |
| attackspambots | $f2bV_matches |
2019-09-24 04:46:59 |
| attackbotsspam | Sep 15 03:31:43 friendsofhawaii sshd\[15278\]: Invalid user jet from 106.12.142.52 Sep 15 03:31:43 friendsofhawaii sshd\[15278\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 Sep 15 03:31:45 friendsofhawaii sshd\[15278\]: Failed password for invalid user jet from 106.12.142.52 port 47410 ssh2 Sep 15 03:36:11 friendsofhawaii sshd\[15622\]: Invalid user dietpi from 106.12.142.52 Sep 15 03:36:11 friendsofhawaii sshd\[15622\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 |
2019-09-16 03:07:32 |
| attackspambots | Aug 12 14:10:01 MK-Soft-VM4 sshd\[17804\]: Invalid user admin from 106.12.142.52 port 46034 Aug 12 14:10:01 MK-Soft-VM4 sshd\[17804\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 Aug 12 14:10:03 MK-Soft-VM4 sshd\[17804\]: Failed password for invalid user admin from 106.12.142.52 port 46034 ssh2 ... |
2019-08-13 00:37:19 |
| attackbotsspam | k+ssh-bruteforce |
2019-08-03 17:46:59 |
| attackbots | Jul 27 03:02:57 pl2server sshd[2129033]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 user=r.r Jul 27 03:02:59 pl2server sshd[2129033]: Failed password for r.r from 106.12.142.52 port 35226 ssh2 Jul 27 03:03:00 pl2server sshd[2129033]: Received disconnect from 106.12.142.52: 11: Bye Bye [preauth] Jul 27 03:21:40 pl2server sshd[2133010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 user=r.r Jul 27 03:21:41 pl2server sshd[2133010]: Failed password for r.r from 106.12.142.52 port 35808 ssh2 Jul 27 03:21:42 pl2server sshd[2133010]: Received disconnect from 106.12.142.52: 11: Bye Bye [preauth] Jul 27 03:26:21 pl2server sshd[2133959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.12.142.52 |
2019-07-29 08:51:28 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 106.12.142.137 | attackspam | Invalid user zxx from 106.12.142.137 port 48588 |
2020-09-06 03:43:48 |
| 106.12.142.137 | attackspam | Invalid user zxx from 106.12.142.137 port 48588 |
2020-09-05 19:23:14 |
| 106.12.142.59 | attackspam | Invalid user ada from 106.12.142.59 port 35696 |
2019-07-28 05:25:21 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.142.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56995
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.12.142.52. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019072801 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 29 08:51:22 CST 2019
;; MSG SIZE rcvd: 117Host 52.142.12.106.in-addr.arpa. not found: 3(NXDOMAIN)Server: 67.207.67.2
Address: 67.207.67.2#53
** server can't find 52.142.12.106.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 198.12.124.80 | attackbots | (sshd) Failed SSH login from 198.12.124.80 (US/United States/198-12-124-80-host.colocrossing.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 2 02:34:33 optimus sshd[11775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.12.124.80 user=root Oct 2 02:34:35 optimus sshd[11775]: Failed password for root from 198.12.124.80 port 55532 ssh2 Oct 2 02:40:38 optimus sshd[13551]: Invalid user celery from 198.12.124.80 Oct 2 02:40:38 optimus sshd[13551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.12.124.80 Oct 2 02:40:40 optimus sshd[13551]: Failed password for invalid user celery from 198.12.124.80 port 56217 ssh2 |
2020-10-02 15:52:34 |
| 222.186.30.35 | attack | Oct 2 12:45:39 gw1 sshd[32737]: Failed password for root from 222.186.30.35 port 22454 ssh2 ... |
2020-10-02 15:51:08 |
| 63.168.21.198 | attack | Icarus honeypot on github |
2020-10-02 15:55:31 |
| 64.225.25.59 | attack | Oct 2 04:59:13 markkoudstaal sshd[16523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.25.59 Oct 2 04:59:14 markkoudstaal sshd[16523]: Failed password for invalid user ark from 64.225.25.59 port 37958 ssh2 Oct 2 05:02:37 markkoudstaal sshd[17635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.25.59 ... |
2020-10-02 16:11:11 |
| 209.97.138.179 | attack | Invalid user odoo from 209.97.138.179 port 46726 |
2020-10-02 15:46:45 |
| 139.59.32.156 | attack | Oct 2 09:23:51 * sshd[18880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.32.156 Oct 2 09:23:52 * sshd[18880]: Failed password for invalid user cloud from 139.59.32.156 port 48406 ssh2 |
2020-10-02 16:17:24 |
| 14.172.1.241 | attackspambots | Lines containing failures of 14.172.1.241 Oct 1 22:32:22 shared07 sshd[29173]: Did not receive identification string from 14.172.1.241 port 62845 Oct 1 22:32:26 shared07 sshd[29184]: Invalid user 888888 from 14.172.1.241 port 63317 Oct 1 22:32:27 shared07 sshd[29184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.172.1.241 Oct 1 22:32:29 shared07 sshd[29184]: Failed password for invalid user 888888 from 14.172.1.241 port 63317 ssh2 Oct 1 22:32:29 shared07 sshd[29184]: Connection closed by invalid user 888888 14.172.1.241 port 63317 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.172.1.241 |
2020-10-02 16:16:12 |
| 165.227.53.225 | attackspambots | Oct 2 07:12:55 roki sshd[15640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.53.225 user=root Oct 2 07:12:57 roki sshd[15640]: Failed password for root from 165.227.53.225 port 38862 ssh2 Oct 2 07:17:38 roki sshd[16003]: Invalid user zimbra from 165.227.53.225 Oct 2 07:17:38 roki sshd[16003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.53.225 Oct 2 07:17:40 roki sshd[16003]: Failed password for invalid user zimbra from 165.227.53.225 port 36038 ssh2 ... |
2020-10-02 15:52:58 |
| 128.199.81.160 | attackspam | [f2b] sshd bruteforce, retries: 1 |
2020-10-02 15:55:50 |
| 201.149.49.146 | attack | Invalid user ali from 201.149.49.146 port 49624 |
2020-10-02 16:07:44 |
| 106.52.137.134 | attackbots | 2020-10-02T07:52:59.465420abusebot-2.cloudsearch.cf sshd[25966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.137.134 user=root 2020-10-02T07:53:01.564069abusebot-2.cloudsearch.cf sshd[25966]: Failed password for root from 106.52.137.134 port 49896 ssh2 2020-10-02T07:57:17.848240abusebot-2.cloudsearch.cf sshd[26021]: Invalid user user3 from 106.52.137.134 port 37276 2020-10-02T07:57:17.854014abusebot-2.cloudsearch.cf sshd[26021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.137.134 2020-10-02T07:57:17.848240abusebot-2.cloudsearch.cf sshd[26021]: Invalid user user3 from 106.52.137.134 port 37276 2020-10-02T07:57:20.037882abusebot-2.cloudsearch.cf sshd[26021]: Failed password for invalid user user3 from 106.52.137.134 port 37276 ssh2 2020-10-02T08:01:29.046442abusebot-2.cloudsearch.cf sshd[26037]: Invalid user oracle from 106.52.137.134 port 52886 ... |
2020-10-02 16:09:02 |
| 91.121.91.82 | attackspam | Invalid user charles from 91.121.91.82 port 40444 |
2020-10-02 15:58:25 |
| 154.209.228.238 | attack | Oct 1 22:10:07 host sshd[11797]: Invalid user hostname from 154.209.228.238 port 31732 Oct 1 22:10:07 host sshd[11797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.209.228.238 Oct 1 22:10:09 host sshd[11797]: Failed password for invalid user hostname from 154.209.228.238 port 31732 ssh2 Oct 1 22:10:09 host sshd[11797]: Received disconnect from 154.209.228.238 port 31732:11: Bye Bye [preauth] Oct 1 22:10:09 host sshd[11797]: Disconnected from invalid user hostname 154.209.228.238 port 31732 [preauth] Oct 1 22:24:51 host sshd[12213]: Invalid user XXX from 154.209.228.238 port 19950 Oct 1 22:24:51 host sshd[12213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.209.228.238 Oct 1 22:24:53 host sshd[12213]: Failed password for invalid user XXX from 154.209.228.238 port 19950 ssh2 Oct 1 22:24:53 host sshd[12213]: Received disconnect from 154.209.228.238 port 19950:11: Bye Bye........ ------------------------------- |
2020-10-02 16:20:19 |
| 89.144.47.28 | attack | Invalid user ubnt from 89.144.47.28 port 31649 |
2020-10-02 16:06:13 |
| 46.146.240.185 | attackbotsspam | SSH login attempts. |
2020-10-02 15:59:46 |