106.13.70.29 - IPInfo

Basic Info

City: unknown

Region: Beijing

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: Beijing Baidu Netcom Science and Technology Co., Ltd.

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Invalid user difeo from 106.13.70.29 port 38390	2020-01-02 14:05:30
attackspambots	Jan 1 05:56:18 raspberrypi sshd\[15427\]: Invalid user interiors from 106.13.70.29Jan 1 05:56:20 raspberrypi sshd\[15427\]: Failed password for invalid user interiors from 106.13.70.29 port 51956 ssh2Jan 1 06:23:01 raspberrypi sshd\[16210\]: Failed password for root from 106.13.70.29 port 38624 ssh2 ...	2020-01-01 18:38:48
attackbots	Dec 24 08:15:30 dev0-dcde-rnet sshd[16577]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.29 Dec 24 08:15:33 dev0-dcde-rnet sshd[16577]: Failed password for invalid user sartirana from 106.13.70.29 port 38340 ssh2 Dec 24 08:19:09 dev0-dcde-rnet sshd[16616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.29	2019-12-24 17:01:20
attackspam	Dec 10 19:07:02 web1 sshd\[2891\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.29 user=daemon Dec 10 19:07:04 web1 sshd\[2891\]: Failed password for daemon from 106.13.70.29 port 59280 ssh2 Dec 10 19:13:55 web1 sshd\[3867\]: Invalid user ajay from 106.13.70.29 Dec 10 19:13:55 web1 sshd\[3867\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.29 Dec 10 19:13:57 web1 sshd\[3867\]: Failed password for invalid user ajay from 106.13.70.29 port 54722 ssh2	2019-12-11 14:23:53
attackspam	2019-12-06T00:09:02.149876shield sshd\[20188\]: Invalid user frick from 106.13.70.29 port 45656 2019-12-06T00:09:02.154758shield sshd\[20188\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.29 2019-12-06T00:09:04.277424shield sshd\[20188\]: Failed password for invalid user frick from 106.13.70.29 port 45656 ssh2 2019-12-06T00:15:56.402182shield sshd\[22167\]: Invalid user euaebio from 106.13.70.29 port 46790 2019-12-06T00:15:56.406629shield sshd\[22167\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.29	2019-12-06 10:09:48
attackbots	Dec 2 11:36:44 OPSO sshd\[19481\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.29 user=backup Dec 2 11:36:46 OPSO sshd\[19481\]: Failed password for backup from 106.13.70.29 port 53592 ssh2 Dec 2 11:44:10 OPSO sshd\[20762\]: Invalid user smmsp from 106.13.70.29 port 51792 Dec 2 11:44:10 OPSO sshd\[20762\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.29 Dec 2 11:44:12 OPSO sshd\[20762\]: Failed password for invalid user smmsp from 106.13.70.29 port 51792 ssh2	2019-12-02 19:01:22
attackbots	Nov 10 18:22:45 itv-usvr-02 sshd[20484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.29 user=root Nov 10 18:22:47 itv-usvr-02 sshd[20484]: Failed password for root from 106.13.70.29 port 58958 ssh2 Nov 10 18:28:01 itv-usvr-02 sshd[20489]: Invalid user gaowen from 106.13.70.29 port 37764 Nov 10 18:28:01 itv-usvr-02 sshd[20489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.29 Nov 10 18:28:01 itv-usvr-02 sshd[20489]: Invalid user gaowen from 106.13.70.29 port 37764 Nov 10 18:28:03 itv-usvr-02 sshd[20489]: Failed password for invalid user gaowen from 106.13.70.29 port 37764 ssh2	2019-11-10 21:27:22
attackspambots	Jul 27 00:48:01 debian sshd\[20933\]: Invalid user P@ssw0rd5 from 106.13.70.29 port 41400 Jul 27 00:48:01 debian sshd\[20933\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.29 ...	2019-07-27 09:21:35
attackspam	Jun 23 22:07:13 ncomp sshd[20169]: Invalid user jboss from 106.13.70.29 Jun 23 22:07:13 ncomp sshd[20169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.29 Jun 23 22:07:13 ncomp sshd[20169]: Invalid user jboss from 106.13.70.29 Jun 23 22:07:15 ncomp sshd[20169]: Failed password for invalid user jboss from 106.13.70.29 port 39184 ssh2	2019-06-24 06:18:02

Comments on same subnet:

IP	Type	Details	Datetime
106.13.70.63	attackspam	Oct 4 23:48:53 pve1 sshd[12571]: Failed password for root from 106.13.70.63 port 50412 ssh2 ...	2020-10-05 06:53:12
106.13.70.63	attack	$f2bV_matches	2020-10-04 22:58:47
106.13.70.63	attackspam	$f2bV_matches	2020-10-04 14:43:51
106.13.70.63	attack	Aug 6 08:56:54 hosting sshd[15615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.63 user=root Aug 6 08:56:56 hosting sshd[15615]: Failed password for root from 106.13.70.63 port 34174 ssh2 ...	2020-08-06 14:52:23
106.13.70.233	attackbots	Aug 3 23:34:37 buvik sshd[9204]: Failed password for root from 106.13.70.233 port 50722 ssh2 Aug 3 23:39:57 buvik sshd[10053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.233 user=root Aug 3 23:39:59 buvik sshd[10053]: Failed password for root from 106.13.70.233 port 58694 ssh2 ...	2020-08-04 05:44:56
106.13.70.63	attackspambots	Jul 25 17:04:29 server1 sshd\[31647\]: Invalid user pawan from 106.13.70.63 Jul 25 17:04:29 server1 sshd\[31647\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.63 Jul 25 17:04:31 server1 sshd\[31647\]: Failed password for invalid user pawan from 106.13.70.63 port 51818 ssh2 Jul 25 17:09:24 server1 sshd\[602\]: Invalid user satou from 106.13.70.63 Jul 25 17:09:24 server1 sshd\[602\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.63 ...	2020-07-26 07:11:11
106.13.70.63	attackbots	Jul 24 13:02:44 server sshd[40460]: Failed password for invalid user dominik from 106.13.70.63 port 48624 ssh2 Jul 24 13:06:29 server sshd[41858]: Failed password for invalid user store from 106.13.70.63 port 60078 ssh2 Jul 24 13:07:55 server sshd[42285]: Failed password for invalid user vnc from 106.13.70.63 port 47172 ssh2	2020-07-24 19:55:11
106.13.70.60	attack	Jul 20 00:56:44 serwer sshd\[5731\]: User ftpuser from 106.13.70.60 not allowed because not listed in AllowUsers Jul 20 00:56:44 serwer sshd\[5731\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.60 user=ftpuser Jul 20 00:56:46 serwer sshd\[5731\]: Failed password for invalid user ftpuser from 106.13.70.60 port 37546 ssh2 ...	2020-07-20 07:25:44
106.13.70.63	attackspambots	2020-07-18T20:44:22.058018mail.csmailer.org sshd[8589]: Invalid user admin from 106.13.70.63 port 57292 2020-07-18T20:44:22.063260mail.csmailer.org sshd[8589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.63 2020-07-18T20:44:22.058018mail.csmailer.org sshd[8589]: Invalid user admin from 106.13.70.63 port 57292 2020-07-18T20:44:23.992175mail.csmailer.org sshd[8589]: Failed password for invalid user admin from 106.13.70.63 port 57292 ssh2 2020-07-18T20:48:21.042820mail.csmailer.org sshd[8911]: Invalid user ansible from 106.13.70.63 port 58268 ...	2020-07-19 05:03:30
106.13.70.233	attack	Invalid user stephane from 106.13.70.233 port 50952	2020-07-18 22:42:36
106.13.70.63	attack	Jul 18 03:54:18 onepixel sshd[3996731]: Invalid user eder from 106.13.70.63 port 40798 Jul 18 03:54:18 onepixel sshd[3996731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.70.63 Jul 18 03:54:18 onepixel sshd[3996731]: Invalid user eder from 106.13.70.63 port 40798 Jul 18 03:54:19 onepixel sshd[3996731]: Failed password for invalid user eder from 106.13.70.63 port 40798 ssh2 Jul 18 03:56:23 onepixel sshd[3997813]: Invalid user lois from 106.13.70.63 port 39898	2020-07-18 12:22:26
106.13.70.233	attack	2020-07-14T14:51:49.933497snf-827550 sshd[1912]: Invalid user avila from 106.13.70.233 port 53388 2020-07-14T14:51:52.089766snf-827550 sshd[1912]: Failed password for invalid user avila from 106.13.70.233 port 53388 ssh2 2020-07-14T14:59:44.447028snf-827550 sshd[2984]: Invalid user vmail from 106.13.70.233 port 44640 ...	2020-07-14 20:26:03
106.13.70.60	attack	TCP (SYN) 106.13.70.60:44556 -> port 3570, len 44	2020-07-12 18:09:37
106.13.70.63	attack	2020-07-11T22:11:19+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-07-12 04:57:17
106.13.70.63	attackspambots	Multiple SSH authentication failures from 106.13.70.63	2020-07-01 14:39:32

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.70.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16343
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.70.29.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 02 03:25:10 +08 2019
;; MSG SIZE  rcvd: 116

Host info

Host 29.70.13.106.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.3, trying next server
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 29.70.13.106.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
120.71.145.189	attack	Dec 4 10:17:42 hpm sshd\[21300\]: Invalid user skate from 120.71.145.189 Dec 4 10:17:42 hpm sshd\[21300\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.71.145.189 Dec 4 10:17:44 hpm sshd\[21300\]: Failed password for invalid user skate from 120.71.145.189 port 48526 ssh2 Dec 4 10:23:33 hpm sshd\[21892\]: Invalid user Dallas123 from 120.71.145.189 Dec 4 10:23:33 hpm sshd\[21892\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.71.145.189	2019-12-05 04:30:11
79.137.28.81	attack	2019-12-04T20:29:43.545483abusebot-6.cloudsearch.cf sshd\[22255\]: Invalid user vnc from 79.137.28.81 port 42456	2019-12-05 04:47:38
121.142.111.242	attackbots	2019-12-04T20:48:39.212102abusebot-5.cloudsearch.cf sshd\[32423\]: Invalid user hp from 121.142.111.242 port 53366	2019-12-05 04:56:46
222.186.180.9	attack	Dec 4 21:35:41 minden010 sshd[13232]: Failed password for root from 222.186.180.9 port 32266 ssh2 Dec 4 21:35:44 minden010 sshd[13232]: Failed password for root from 222.186.180.9 port 32266 ssh2 Dec 4 21:35:53 minden010 sshd[13232]: Failed password for root from 222.186.180.9 port 32266 ssh2 Dec 4 21:35:53 minden010 sshd[13232]: error: maximum authentication attempts exceeded for root from 222.186.180.9 port 32266 ssh2 [preauth] ...	2019-12-05 04:36:51
123.206.47.228	attackbots	Lines containing failures of 123.206.47.228 Dec 3 09:41:57 nextcloud sshd[15897]: Invalid user serverhostnameez from 123.206.47.228 port 59368 Dec 3 09:41:57 nextcloud sshd[15897]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.47.228 Dec 3 09:42:00 nextcloud sshd[15897]: Failed password for invalid user serverhostnameez from 123.206.47.228 port 59368 ssh2 Dec 3 09:42:00 nextcloud sshd[15897]: Received disconnect from 123.206.47.228 port 59368:11: Bye Bye [preauth] Dec 3 09:42:00 nextcloud sshd[15897]: Disconnected from invalid user serverhostnameez 123.206.47.228 port 59368 [preauth] Dec 3 09:59:00 nextcloud sshd[19550]: Invalid user server from 123.206.47.228 port 44654 Dec 3 09:59:00 nextcloud sshd[19550]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.47.228 Dec 3 09:59:02 nextcloud sshd[19550]: Failed password for invalid user server from 123.206.47.228 port 446........ ------------------------------	2019-12-05 04:42:15
122.199.225.53	attack	Dec 4 09:20:10 wbs sshd\[6703\]: Invalid user gerente from 122.199.225.53 Dec 4 09:20:10 wbs sshd\[6703\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.225.53 Dec 4 09:20:12 wbs sshd\[6703\]: Failed password for invalid user gerente from 122.199.225.53 port 58500 ssh2 Dec 4 09:27:09 wbs sshd\[7340\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.225.53 user=root Dec 4 09:27:12 wbs sshd\[7340\]: Failed password for root from 122.199.225.53 port 41114 ssh2	2019-12-05 04:36:04
54.37.154.113	attack	Dec 4 20:18:01 herz-der-gamer sshd[24765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.154.113 user=mysql Dec 4 20:18:03 herz-der-gamer sshd[24765]: Failed password for mysql from 54.37.154.113 port 50830 ssh2 Dec 4 20:27:12 herz-der-gamer sshd[24890]: Invalid user samnirmal from 54.37.154.113 port 34132 ...	2019-12-05 04:37:07
178.62.117.106	attack	Dec 4 20:09:38 game-panel sshd[3138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.117.106 Dec 4 20:09:40 game-panel sshd[3138]: Failed password for invalid user adrian from 178.62.117.106 port 42596 ssh2 Dec 4 20:15:13 game-panel sshd[3378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.117.106	2019-12-05 04:31:44
49.88.112.115	attack	Dec 4 21:29:10 root sshd[12399]: Failed password for root from 49.88.112.115 port 37618 ssh2 Dec 4 21:29:13 root sshd[12399]: Failed password for root from 49.88.112.115 port 37618 ssh2 Dec 4 21:29:16 root sshd[12399]: Failed password for root from 49.88.112.115 port 37618 ssh2 ...	2019-12-05 04:32:39
89.38.148.88	attackbots	GET /administrator/components/com_xcloner-backupandrestore/index2.php	2019-12-05 04:30:37
62.234.109.155	attack	Dec 5 01:59:32 vibhu-HP-Z238-Microtower-Workstation sshd\[7937\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.109.155 user=root Dec 5 01:59:34 vibhu-HP-Z238-Microtower-Workstation sshd\[7937\]: Failed password for root from 62.234.109.155 port 55582 ssh2 Dec 5 02:06:45 vibhu-HP-Z238-Microtower-Workstation sshd\[8338\]: Invalid user aliases from 62.234.109.155 Dec 5 02:06:45 vibhu-HP-Z238-Microtower-Workstation sshd\[8338\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.109.155 Dec 5 02:06:47 vibhu-HP-Z238-Microtower-Workstation sshd\[8338\]: Failed password for invalid user aliases from 62.234.109.155 port 58086 ssh2 ...	2019-12-05 04:47:58
1.201.140.126	attackspam	Dec 4 21:43:19 vps647732 sshd[6921]: Failed password for root from 1.201.140.126 port 33694 ssh2 Dec 4 21:49:52 vps647732 sshd[7152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.201.140.126 ...	2019-12-05 04:59:20
3.135.195.28	attackspam	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	2019-12-05 04:37:36
101.83.157.194	attack	Dec 4 22:12:13 server sshd\[17441\]: Invalid user litt from 101.83.157.194 Dec 4 22:12:13 server sshd\[17441\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.83.157.194 Dec 4 22:12:14 server sshd\[17441\]: Failed password for invalid user litt from 101.83.157.194 port 39496 ssh2 Dec 4 22:27:07 server sshd\[21664\]: Invalid user admin from 101.83.157.194 Dec 4 22:27:07 server sshd\[21664\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.83.157.194 ...	2019-12-05 04:39:53
106.52.22.202	attack	Dec 4 21:10:34 eventyay sshd[28709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.22.202 Dec 4 21:10:36 eventyay sshd[28709]: Failed password for invalid user nancyp from 106.52.22.202 port 44848 ssh2 Dec 4 21:16:41 eventyay sshd[29005]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.22.202 ...	2019-12-05 04:32:19

Recently Reported IPs

124.65.176.118	101.111.227.45	46.197.89.133	45.62.231.172
2400:6180:100:d0::7c9:d001	221.215.130.162	216.58.196.132	203.150.196.34
200.104.186.133	196.52.43.125	193.194.89.116	185.207.232.232
180.113.142.103	172.217.25.142	142.93.52.185	111.230.21.80
106.13.52.247	95.57.216.86	94.247.244.210	46.101.77.58