City: unknown
Region: unknown
Country: China
Internet Service Provider: ChinaNet Ningxia Province Network
Hostname: unknown
Organization: unknown
Usage Type: unknown
| Type | Details | Datetime |
|---|---|---|
| attack | Unauthorized connection attempt detected from IP address 106.45.0.52 to port 443 [J] |
2020-02-05 09:42:09 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 106.45.0.198 | attack | Detected by ModSecurity. Host header is an IP address, Request URI: / |
2020-08-07 18:17:55 |
| 106.45.0.182 | attackspam | Unauthorized connection attempt detected from IP address 106.45.0.182 to port 443 |
2020-07-25 20:37:03 |
| 106.45.0.43 | attackspam | Unauthorized connection attempt detected from IP address 106.45.0.43 to port 8081 [J] |
2020-03-02 20:37:01 |
| 106.45.0.168 | attackbots | Unauthorized connection attempt detected from IP address 106.45.0.168 to port 8899 [J] |
2020-03-02 17:15:57 |
| 106.45.0.111 | attackbotsspam | Unauthorized connection attempt detected from IP address 106.45.0.111 to port 22 [J] |
2020-03-02 15:06:55 |
| 106.45.0.255 | attack | Unauthorized connection attempt detected from IP address 106.45.0.255 to port 22 [J] |
2020-03-02 15:06:35 |
| 106.45.0.64 | attackbots | Unauthorized connection attempt detected from IP address 106.45.0.64 to port 8089 [T] |
2020-01-29 17:45:51 |
| 106.45.0.208 | attack | Unauthorized connection attempt detected from IP address 106.45.0.208 to port 8081 [T] |
2020-01-29 17:45:22 |
| 106.45.0.171 | attack | Unauthorized connection attempt detected from IP address 106.45.0.171 to port 8888 [J] |
2020-01-29 10:31:04 |
| 106.45.0.45 | attackspam | Unauthorized connection attempt detected from IP address 106.45.0.45 to port 8000 [J] |
2020-01-27 17:38:30 |
| 106.45.0.112 | attackspam | Unauthorized connection attempt detected from IP address 106.45.0.112 to port 8000 [J] |
2020-01-27 14:48:50 |
| 106.45.0.56 | attackspam | Unauthorized connection attempt detected from IP address 106.45.0.56 to port 8081 [J] |
2020-01-27 00:51:09 |
| 106.45.0.77 | attackbots | Unauthorized connection attempt detected from IP address 106.45.0.77 to port 8081 [J] |
2020-01-27 00:19:12 |
| 106.45.0.97 | attackbots | Unauthorized connection attempt detected from IP address 106.45.0.97 to port 80 [J] |
2020-01-20 20:37:58 |
| 106.45.0.202 | attack | Unauthorized connection attempt detected from IP address 106.45.0.202 to port 80 [J] |
2020-01-19 14:48:25 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.45.0.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57158
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.45.0.52. IN A
;; AUTHORITY SECTION:
. 434 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020020401 1800 900 604800 86400
;; Query time: 271 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 09:42:06 CST 2020
;; MSG SIZE rcvd: 115Host 52.0.45.106.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 52.0.45.106.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 46.38.150.190 | attackspam | Jul 19 06:36:34 srv01 postfix/smtpd\[22430\]: warning: unknown\[46.38.150.190\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 19 06:36:57 srv01 postfix/smtpd\[22090\]: warning: unknown\[46.38.150.190\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 19 06:37:09 srv01 postfix/smtpd\[22419\]: warning: unknown\[46.38.150.190\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 19 06:37:09 srv01 postfix/smtpd\[8046\]: warning: unknown\[46.38.150.190\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 19 06:37:26 srv01 postfix/smtpd\[22090\]: warning: unknown\[46.38.150.190\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-07-19 12:41:53 |
| 84.168.253.88 | attackbotsspam | Automatic report - Banned IP Access |
2020-07-19 12:50:04 |
| 104.248.121.165 | attackspambots | Jul 19 06:37:57 vps sshd[1021942]: Failed password for invalid user test from 104.248.121.165 port 51568 ssh2 Jul 19 06:42:09 vps sshd[1043884]: Invalid user sida from 104.248.121.165 port 41148 Jul 19 06:42:09 vps sshd[1043884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.121.165 Jul 19 06:42:11 vps sshd[1043884]: Failed password for invalid user sida from 104.248.121.165 port 41148 ssh2 Jul 19 06:46:26 vps sshd[16673]: Invalid user heat from 104.248.121.165 port 58960 ... |
2020-07-19 12:55:04 |
| 187.189.162.110 | attackbotsspam | SSH authentication failure x 6 reported by Fail2Ban ... |
2020-07-19 12:58:59 |
| 45.55.128.109 | attackspambots | Invalid user shankar from 45.55.128.109 port 60612 |
2020-07-19 13:05:07 |
| 203.195.204.106 | attackspambots | Jul 19 04:36:55 rush sshd[25787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.204.106 Jul 19 04:36:57 rush sshd[25787]: Failed password for invalid user chengwei from 203.195.204.106 port 55502 ssh2 Jul 19 04:41:21 rush sshd[25878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.204.106 ... |
2020-07-19 13:06:58 |
| 103.146.202.160 | attackspam | Jul 19 06:30:20 fhem-rasp sshd[18752]: Invalid user ganesh from 103.146.202.160 port 37324 ... |
2020-07-19 13:13:48 |
| 51.178.78.153 | attackspam | firewall-block, port(s): 9444/tcp |
2020-07-19 12:46:44 |
| 27.155.83.174 | attackbotsspam | $f2bV_matches |
2020-07-19 12:51:26 |
| 196.240.109.227 | attackbots | Automatic report - Banned IP Access |
2020-07-19 13:11:34 |
| 159.65.157.221 | attack | Auto reported by IDS |
2020-07-19 13:01:09 |
| 122.51.34.199 | attackbots | $f2bV_matches |
2020-07-19 12:50:58 |
| 142.93.49.104 | attackspam | Automatic report - XMLRPC Attack |
2020-07-19 12:45:38 |
| 112.85.42.178 | attack | Jul 19 06:13:52 ajax sshd[576]: Failed password for root from 112.85.42.178 port 24671 ssh2 Jul 19 06:13:56 ajax sshd[576]: Failed password for root from 112.85.42.178 port 24671 ssh2 |
2020-07-19 13:17:32 |
| 199.255.99.166 | attackspambots | Lines containing failures of 199.255.99.166 Jul 19 02:33:09 nbi-636 sshd[13776]: Invalid user minecraft from 199.255.99.166 port 39746 Jul 19 02:33:09 nbi-636 sshd[13776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.255.99.166 Jul 19 02:33:11 nbi-636 sshd[13776]: Failed password for invalid user minecraft from 199.255.99.166 port 39746 ssh2 Jul 19 02:33:13 nbi-636 sshd[13776]: Received disconnect from 199.255.99.166 port 39746:11: Bye Bye [preauth] Jul 19 02:33:13 nbi-636 sshd[13776]: Disconnected from invalid user minecraft 199.255.99.166 port 39746 [preauth] Jul 19 02:42:04 nbi-636 sshd[15520]: Invalid user acct from 199.255.99.166 port 51502 Jul 19 02:42:05 nbi-636 sshd[15520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.255.99.166 Jul 19 02:42:07 nbi-636 sshd[15520]: Failed password for invalid user acct from 199.255.99.166 port 51502 ssh2 ........ ----------------------------------------------- https://www |
2020-07-19 13:06:14 |