City: unknown
Region: Beijing
Country: China
Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.
Hostname: unknown
Organization: Beijing Baidu Netcom Science and Technology Co., Ltd.
Usage Type: Search Engine Spider
| Type | Details | Datetime |
|---|---|---|
| attack | Nov 3 22:24:42 srv01 sshd[11132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 user=root Nov 3 22:24:44 srv01 sshd[11132]: Failed password for root from 106.13.68.27 port 43564 ssh2 Nov 3 22:29:00 srv01 sshd[11378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 user=root Nov 3 22:29:01 srv01 sshd[11378]: Failed password for root from 106.13.68.27 port 53916 ssh2 Nov 3 22:33:19 srv01 sshd[11843]: Invalid user site from 106.13.68.27 ... |
2019-11-04 06:04:09 |
| attack | 2019-10-31T04:28:34.618196abusebot-3.cloudsearch.cf sshd\[3428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 user=root |
2019-10-31 13:51:23 |
| attack | Oct 29 15:20:24 lnxded63 sshd[8477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 |
2019-10-30 03:31:21 |
| attack | Invalid user 8 from 106.13.68.27 port 38332 |
2019-08-23 21:12:32 |
| attack | 2019-08-21T23:02:20.522613abusebot.cloudsearch.cf sshd\[4698\]: Invalid user fluffy from 106.13.68.27 port 48952 |
2019-08-22 07:31:48 |
| attack | Aug 18 22:56:01 web1 sshd\[18532\]: Invalid user laurie from 106.13.68.27 Aug 18 22:56:01 web1 sshd\[18532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 Aug 18 22:56:03 web1 sshd\[18532\]: Failed password for invalid user laurie from 106.13.68.27 port 36268 ssh2 Aug 18 22:58:33 web1 sshd\[18777\]: Invalid user admin from 106.13.68.27 Aug 18 22:58:33 web1 sshd\[18777\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 |
2019-08-19 23:44:04 |
| attack | Jul 26 23:13:23 OPSO sshd\[11601\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 user=root Jul 26 23:13:25 OPSO sshd\[11601\]: Failed password for root from 106.13.68.27 port 33912 ssh2 Jul 26 23:15:54 OPSO sshd\[12103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 user=root Jul 26 23:15:56 OPSO sshd\[12103\]: Failed password for root from 106.13.68.27 port 57244 ssh2 Jul 26 23:18:31 OPSO sshd\[12487\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 user=root |
2019-07-27 05:24:25 |
| attackspambots | Jul 8 20:42:28 ns341937 sshd[22240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 Jul 8 20:42:30 ns341937 sshd[22240]: Failed password for invalid user ftp2 from 106.13.68.27 port 48906 ssh2 Jul 8 20:49:07 ns341937 sshd[23279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 ... |
2019-07-09 03:13:08 |
| attack | Jul 7 19:47:34 plusreed sshd[19485]: Invalid user anything from 106.13.68.27 Jul 7 19:47:34 plusreed sshd[19485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.27 Jul 7 19:47:34 plusreed sshd[19485]: Invalid user anything from 106.13.68.27 Jul 7 19:47:35 plusreed sshd[19485]: Failed password for invalid user anything from 106.13.68.27 port 38986 ssh2 Jul 7 19:50:17 plusreed sshd[20712]: Invalid user kay from 106.13.68.27 ... |
2019-07-08 10:00:20 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 106.13.68.190 | attack | 2020-10-05 12:31:14 server sshd[82072]: Failed password for invalid user root from 106.13.68.190 port 44152 ssh2 |
2020-10-06 08:20:41 |
| 106.13.68.190 | attackspambots | Oct 5 15:02:32 OPSO sshd\[6404\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.190 user=root Oct 5 15:02:35 OPSO sshd\[6404\]: Failed password for root from 106.13.68.190 port 58054 ssh2 Oct 5 15:06:48 OPSO sshd\[7208\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.190 user=root Oct 5 15:06:50 OPSO sshd\[7208\]: Failed password for root from 106.13.68.190 port 47736 ssh2 Oct 5 15:11:07 OPSO sshd\[7913\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.190 user=root |
2020-10-06 00:47:30 |
| 106.13.68.190 | attackspam | SSH login attempts. |
2020-10-05 16:46:38 |
| 106.13.68.145 | attackbots | Jul 19 21:42:27 ms-srv sshd[20684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.145 Jul 19 21:42:30 ms-srv sshd[20684]: Failed password for invalid user master from 106.13.68.145 port 41324 ssh2 |
2020-09-02 22:26:20 |
| 106.13.68.145 | attackspambots | Port scan denied |
2020-09-02 14:15:15 |
| 106.13.68.145 | attackspambots | prod8 ... |
2020-09-02 07:15:43 |
| 106.13.68.190 | attackbots | Invalid user chen from 106.13.68.190 port 38372 |
2020-08-21 17:10:28 |
| 106.13.68.145 | attackbots | Bruteforce detected by fail2ban |
2020-08-13 12:05:34 |
| 106.13.68.190 | attackbots | Aug 8 19:35:16 gw1 sshd[31615]: Failed password for root from 106.13.68.190 port 46660 ssh2 ... |
2020-08-09 01:20:01 |
| 106.13.68.145 | attackspam | SSH Brute-Force attacks |
2020-08-08 06:33:30 |
| 106.13.68.145 | attackspam | Aug 6 07:21:39 lnxmail61 sshd[28289]: Failed password for root from 106.13.68.145 port 46234 ssh2 Aug 6 07:21:39 lnxmail61 sshd[28289]: Failed password for root from 106.13.68.145 port 46234 ssh2 |
2020-08-06 13:43:52 |
| 106.13.68.190 | attackspambots | Failed password for root from 106.13.68.190 port 46818 ssh2 |
2020-08-03 18:57:27 |
| 106.13.68.145 | attackbots | Brute force attempt |
2020-07-30 07:36:31 |
| 106.13.68.145 | attackspambots | Jul 29 20:44:26 buvik sshd[16556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.145 Jul 29 20:44:28 buvik sshd[16556]: Failed password for invalid user jingyu from 106.13.68.145 port 59814 ssh2 Jul 29 20:48:59 buvik sshd[17200]: Invalid user kzhang from 106.13.68.145 ... |
2020-07-30 02:50:24 |
| 106.13.68.190 | attackbots | Invalid user azure from 106.13.68.190 port 51244 |
2020-07-19 03:34:23 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.68.27
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30059
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.68.27. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019050400 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat May 04 22:45:37 +08 2019
;; MSG SIZE rcvd: 116
Host 27.68.13.106.in-addr.arpa not found: 2(SERVFAIL)
;; Got SERVFAIL reply from 67.207.67.3, trying next server
Server: 67.207.67.2
Address: 67.207.67.2#53
** server can't find 27.68.13.106.in-addr.arpa: SERVFAIL
| IP | Type | Details | Datetime |
|---|---|---|---|
| 14.162.215.112 | attack | 445/tcp [2019-07-30]1pkt |
2019-07-31 02:43:27 |
| 112.85.42.72 | attackbots | SSH invalid-user multiple login attempts |
2019-07-31 02:40:59 |
| 139.99.182.80 | attack | Automatic report - Banned IP Access |
2019-07-31 02:21:20 |
| 180.125.174.221 | attackbotsspam | 52869/tcp [2019-07-30]1pkt |
2019-07-31 03:02:26 |
| 218.92.0.170 | attack | Jul 30 20:31:50 vps691689 sshd[6411]: Failed password for root from 218.92.0.170 port 7995 ssh2 Jul 30 20:32:04 vps691689 sshd[6411]: error: maximum authentication attempts exceeded for root from 218.92.0.170 port 7995 ssh2 [preauth] ... |
2019-07-31 02:57:59 |
| 14.245.71.23 | attackbotsspam | 445/tcp 445/tcp 445/tcp [2019-07-30]3pkt |
2019-07-31 02:47:20 |
| 51.38.99.73 | attackspambots | Jul 30 21:00:41 intra sshd\[64569\]: Invalid user guest5 from 51.38.99.73Jul 30 21:00:44 intra sshd\[64569\]: Failed password for invalid user guest5 from 51.38.99.73 port 41686 ssh2Jul 30 21:04:59 intra sshd\[64631\]: Invalid user HDP from 51.38.99.73Jul 30 21:05:01 intra sshd\[64631\]: Failed password for invalid user HDP from 51.38.99.73 port 37968 ssh2Jul 30 21:09:27 intra sshd\[64730\]: Invalid user demo from 51.38.99.73Jul 30 21:09:28 intra sshd\[64730\]: Failed password for invalid user demo from 51.38.99.73 port 34120 ssh2 ... |
2019-07-31 02:21:48 |
| 117.121.214.50 | attack | Jul 30 20:52:10 pkdns2 sshd\[42032\]: Invalid user prueba from 117.121.214.50Jul 30 20:52:13 pkdns2 sshd\[42032\]: Failed password for invalid user prueba from 117.121.214.50 port 39854 ssh2Jul 30 20:56:58 pkdns2 sshd\[42209\]: Invalid user victor from 117.121.214.50Jul 30 20:57:00 pkdns2 sshd\[42209\]: Failed password for invalid user victor from 117.121.214.50 port 33828 ssh2Jul 30 21:01:53 pkdns2 sshd\[42407\]: Invalid user webuser from 117.121.214.50Jul 30 21:01:56 pkdns2 sshd\[42407\]: Failed password for invalid user webuser from 117.121.214.50 port 55802 ssh2 ... |
2019-07-31 02:34:53 |
| 216.177.228.31 | attackspambots | 5431/tcp [2019-07-30]1pkt |
2019-07-31 02:50:51 |
| 94.191.17.22 | attack | Jul 30 13:47:24 TORMINT sshd\[20115\]: Invalid user download from 94.191.17.22 Jul 30 13:47:24 TORMINT sshd\[20115\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.17.22 Jul 30 13:47:26 TORMINT sshd\[20115\]: Failed password for invalid user download from 94.191.17.22 port 50658 ssh2 ... |
2019-07-31 02:52:39 |
| 42.231.48.96 | attackspambots | 23/tcp [2019-07-30]1pkt |
2019-07-31 02:34:37 |
| 218.166.46.35 | attackbotsspam | 23/tcp [2019-07-30]1pkt |
2019-07-31 03:11:49 |
| 104.155.52.215 | attackspam | 5900/tcp [2019-07-30]1pkt |
2019-07-31 02:28:03 |
| 176.193.104.251 | attack | Honeypot attack, port: 23, PTR: ip-176-193-104-251.bb.netbynet.ru. |
2019-07-31 02:51:40 |
| 118.70.128.93 | attack | 445/tcp [2019-07-30]1pkt |
2019-07-31 02:56:03 |