Active Threat • HIGH
106.12.161.149
Country of Origin🇨🇳 China
First Detection1/17/2026
Last Activity4/6/2026
ISPBeijing Baidu Netcom Science and Technology Co., Ltd.
🎯
242
Total Attacks
🔌
1
Ports
📡
1
Attack Types
🦠
18
Malware
Geolocation
- Country
- 🇨🇳 China
- City
- Unknown
- ASN
- AS38365
- ISP
- Beijing Baidu Netcom Science and Technology Co., Ltd.
Attack Types
ssh_telnet_honeypot
Attacked Ports
22
Associated Malware
Attempted Credentials
🔐teste1/123
1x🔐root/hello2025
1x🔐root/qwer1234
1x🔐catuser/catuser
1x🔐root/Q1W2E3R4T5Y6
1x🔐root/123@Root
1x🔐root/qazwsx123456@@
1x🔐root/root0#
1x🔐alice/alice123
1x🔐root/qazwsx2023..
1x🔐deploy/deploy21
1x🔐user/Admin@9000
1x🔐bot/bot04
1x🔐vpn/vpn#
1x🔐itmuser/itmuser
1xExecuted Commands
$
lscpu | grep Model1x$
echo "root:pY7P8ynEw31K"|chpasswd|bash1x$
ls -lh $(which ls)1x$
cat /proc/cpuinfo | grep name | head -n 1 | awk '{print $4,$5,$6,$7,$8,$9;}'1x$
uname -a1x$
w1x$
cat /proc/cpuinfo | grep name | wc -l1x$
crontab -l1x$
cat /proc/cpuinfo | grep model | grep name | wc -l1x$
which ls1xShodan InternetDB ExposureShodan
InternetDB data, not real-time
Ports
22
CPEs
cpe:/a:openbsd:openssh:8.9p1cpe:/o:canonical:ubuntu_linux
Risk Assessment
65
/100
LowMediumHighCritical