106.13.78.85 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	$f2bV_matches	2020-04-03 22:58:44
attackspam	Mar 10 08:44:43 php1 sshd\[9107\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85 user=root Mar 10 08:44:45 php1 sshd\[9107\]: Failed password for root from 106.13.78.85 port 52090 ssh2 Mar 10 08:48:06 php1 sshd\[9372\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85 user=root Mar 10 08:48:07 php1 sshd\[9372\]: Failed password for root from 106.13.78.85 port 47142 ssh2 Mar 10 08:51:30 php1 sshd\[9647\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85 user=root	2020-03-11 03:53:27
attackspam	Oct 29 12:48:23 ms-srv sshd[38287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85 user=root Oct 29 12:48:26 ms-srv sshd[38287]: Failed password for invalid user root from 106.13.78.85 port 55782 ssh2	2020-03-10 03:08:10
attackspam	Mar 5 04:50:42 eddieflores sshd\[11174\]: Invalid user zhusengbin from 106.13.78.85 Mar 5 04:50:42 eddieflores sshd\[11174\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85 Mar 5 04:50:44 eddieflores sshd\[11174\]: Failed password for invalid user zhusengbin from 106.13.78.85 port 46514 ssh2 Mar 5 04:57:59 eddieflores sshd\[11788\]: Invalid user grafana from 106.13.78.85 Mar 5 04:57:59 eddieflores sshd\[11788\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85	2020-03-05 23:08:56
attackbotsspam	Feb 13 05:53:18 serwer sshd\[16355\]: Invalid user cpsrvsid from 106.13.78.85 port 40172 Feb 13 05:53:18 serwer sshd\[16355\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85 Feb 13 05:53:20 serwer sshd\[16355\]: Failed password for invalid user cpsrvsid from 106.13.78.85 port 40172 ssh2 ...	2020-02-13 14:52:09
attack	Feb 8 15:21:30 host sshd[37568]: Invalid user mua from 106.13.78.85 port 43090 ...	2020-02-09 05:43:17
attack	$f2bV_matches	2020-01-10 01:31:32
attack	Jan 7 20:16:04 hanapaa sshd\[32068\]: Invalid user temp from 106.13.78.85 Jan 7 20:16:04 hanapaa sshd\[32068\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85 Jan 7 20:16:06 hanapaa sshd\[32068\]: Failed password for invalid user temp from 106.13.78.85 port 32956 ssh2 Jan 7 20:20:54 hanapaa sshd\[32510\]: Invalid user tibero2 from 106.13.78.85 Jan 7 20:20:54 hanapaa sshd\[32510\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85	2020-01-08 20:09:09
attackbotsspam	Jan 4 18:33:11 ws22vmsma01 sshd[54264]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85 Jan 4 18:33:13 ws22vmsma01 sshd[54264]: Failed password for invalid user cron from 106.13.78.85 port 51180 ssh2 ...	2020-01-05 05:34:35
attack	[Aegis] @ 2019-12-18 06:42:16 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-12-18 13:44:02
attack	Nov 5 08:34:32 dallas01 sshd[22169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85 Nov 5 08:34:34 dallas01 sshd[22169]: Failed password for invalid user dixita from 106.13.78.85 port 44404 ssh2 Nov 5 08:39:48 dallas01 sshd[23197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85	2019-11-06 00:25:41
attackbots	2019-11-04T16:42:34.719745abusebot-6.cloudsearch.cf sshd\[18405\]: Invalid user weijishashou from 106.13.78.85 port 46146	2019-11-05 00:48:47
attack	Nov 3 08:38:26 game-panel sshd[29607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85 Nov 3 08:38:29 game-panel sshd[29607]: Failed password for invalid user nN123456789 from 106.13.78.85 port 49496 ssh2 Nov 3 08:43:12 game-panel sshd[29969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85	2019-11-03 21:50:31
attackspambots	2019-10-23T23:29:46.718637abusebot-3.cloudsearch.cf sshd\[1308\]: Invalid user test from 106.13.78.85 port 44772	2019-10-24 07:30:03
attackspam	Oct 15 22:20:49 amit sshd\[31164\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85 user=root Oct 15 22:20:50 amit sshd\[31164\]: Failed password for root from 106.13.78.85 port 42956 ssh2 Oct 15 22:24:52 amit sshd\[31190\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85 user=root ...	2019-10-16 10:42:43
attackbots	Oct 9 19:13:27 friendsofhawaii sshd\[30298\]: Invalid user College2017 from 106.13.78.85 Oct 9 19:13:27 friendsofhawaii sshd\[30298\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85 Oct 9 19:13:29 friendsofhawaii sshd\[30298\]: Failed password for invalid user College2017 from 106.13.78.85 port 41314 ssh2 Oct 9 19:18:06 friendsofhawaii sshd\[30693\]: Invalid user qwerty12345 from 106.13.78.85 Oct 9 19:18:06 friendsofhawaii sshd\[30693\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85	2019-10-10 14:05:47
attackspam	Sep 23 23:51:47 web9 sshd\[18823\]: Invalid user scheduler from 106.13.78.85 Sep 23 23:51:47 web9 sshd\[18823\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85 Sep 23 23:51:50 web9 sshd\[18823\]: Failed password for invalid user scheduler from 106.13.78.85 port 40924 ssh2 Sep 23 23:56:23 web9 sshd\[19774\]: Invalid user admin from 106.13.78.85 Sep 23 23:56:23 web9 sshd\[19774\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85	2019-09-24 19:43:51

Comments on same subnet:

IP	Type	Details	Datetime
106.13.78.210	attackspam	Invalid user pozvizd from 106.13.78.210 port 39564	2020-10-13 13:59:43
106.13.78.210	attackbots	Oct 13 00:27:21 eventyay sshd[1551]: Failed password for root from 106.13.78.210 port 36368 ssh2 Oct 13 00:30:37 eventyay sshd[1680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.210 Oct 13 00:30:39 eventyay sshd[1680]: Failed password for invalid user zy from 106.13.78.210 port 33060 ssh2 ...	2020-10-13 06:44:08
106.13.78.210	attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-12 01:27:38
106.13.78.210	attackbotsspam	Oct 7 22:52:29 buvik sshd[984]: Failed password for root from 106.13.78.210 port 46792 ssh2 Oct 7 22:54:52 buvik sshd[1344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.210 user=root Oct 7 22:54:55 buvik sshd[1344]: Failed password for root from 106.13.78.210 port 56786 ssh2 ...	2020-10-08 06:11:04
106.13.78.210	attackbotsspam	Oct 7 13:41:58 Server sshd[688713]: Failed password for root from 106.13.78.210 port 37416 ssh2 Oct 7 13:44:01 Server sshd[689683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.210 user=root Oct 7 13:44:03 Server sshd[689683]: Failed password for root from 106.13.78.210 port 35462 ssh2 Oct 7 13:46:09 Server sshd[690587]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.210 user=root Oct 7 13:46:11 Server sshd[690587]: Failed password for root from 106.13.78.210 port 33514 ssh2 ...	2020-10-07 22:30:41
106.13.78.210	attack	prod8 ...	2020-10-07 14:31:43
106.13.78.210	attack	$f2bV_matches	2020-10-07 04:14:29
106.13.78.210	attackspambots	Invalid user user from 106.13.78.210 port 41994	2020-10-06 20:18:01
106.13.78.210	attack	Invalid user tortoisesvn from 106.13.78.210 port 45430	2020-09-15 19:59:28
106.13.78.210	attack	Sep 15 03:51:44 roki-contabo sshd\[13296\]: Invalid user ts from 106.13.78.210 Sep 15 03:51:44 roki-contabo sshd\[13296\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.210 Sep 15 03:51:46 roki-contabo sshd\[13296\]: Failed password for invalid user ts from 106.13.78.210 port 58110 ssh2 Sep 15 03:56:56 roki-contabo sshd\[13325\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.210 user=root Sep 15 03:56:57 roki-contabo sshd\[13325\]: Failed password for root from 106.13.78.210 port 53784 ssh2 ...	2020-09-15 12:03:57
106.13.78.210	attack	$f2bV_matches	2020-09-15 04:10:20
106.13.78.198	attack	Bruteforce detected by fail2ban	2020-08-23 02:05:22
106.13.78.198	attack	Aug 20 08:33:26 h2646465 sshd[20166]: Invalid user oracle from 106.13.78.198 Aug 20 08:33:26 h2646465 sshd[20166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.198 Aug 20 08:33:26 h2646465 sshd[20166]: Invalid user oracle from 106.13.78.198 Aug 20 08:33:28 h2646465 sshd[20166]: Failed password for invalid user oracle from 106.13.78.198 port 48150 ssh2 Aug 20 08:45:20 h2646465 sshd[21979]: Invalid user admin from 106.13.78.198 Aug 20 08:45:20 h2646465 sshd[21979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.198 Aug 20 08:45:20 h2646465 sshd[21979]: Invalid user admin from 106.13.78.198 Aug 20 08:45:22 h2646465 sshd[21979]: Failed password for invalid user admin from 106.13.78.198 port 56706 ssh2 Aug 20 08:47:40 h2646465 sshd[22054]: Invalid user cwt from 106.13.78.198 ...	2020-08-20 15:14:59
106.13.78.198	attackbots	2020-08-02T22:12:59.071977shield sshd\[1723\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.198 user=root 2020-08-02T22:13:00.490726shield sshd\[1723\]: Failed password for root from 106.13.78.198 port 40342 ssh2 2020-08-02T22:17:01.766000shield sshd\[2367\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.198 user=root 2020-08-02T22:17:03.741725shield sshd\[2367\]: Failed password for root from 106.13.78.198 port 48466 ssh2 2020-08-02T22:21:08.216266shield sshd\[2757\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.198 user=root	2020-08-03 08:30:17
106.13.78.143	attack	Aug 2 02:39:36 php1 sshd\[23713\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.143 user=root Aug 2 02:39:38 php1 sshd\[23713\]: Failed password for root from 106.13.78.143 port 52326 ssh2 Aug 2 02:42:09 php1 sshd\[23882\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.143 user=root Aug 2 02:42:11 php1 sshd\[23882\]: Failed password for root from 106.13.78.143 port 55040 ssh2 Aug 2 02:44:50 php1 sshd\[24072\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.143 user=root	2020-08-02 20:57:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.78.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41427
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.78.85.			IN	A

;; AUTHORITY SECTION:
.			444	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092400 1800 900 604800 86400

;; Query time: 644 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Sep 24 19:43:45 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 85.78.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 85.78.13.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
52.117.22.136	attackbotsspam	Jul 25 19:29:39 OPSO sshd\[25555\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.117.22.136 user=admin Jul 25 19:29:42 OPSO sshd\[25555\]: Failed password for admin from 52.117.22.136 port 58698 ssh2 Jul 25 19:34:27 OPSO sshd\[26400\]: Invalid user neo from 52.117.22.136 port 54108 Jul 25 19:34:27 OPSO sshd\[26400\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.117.22.136 Jul 25 19:34:29 OPSO sshd\[26400\]: Failed password for invalid user neo from 52.117.22.136 port 54108 ssh2	2019-07-26 01:35:43
50.254.208.254	attackbotsspam	Invalid user applmgr from 50.254.208.254 port 52341	2019-07-26 01:23:31
185.143.221.56	attack	Port scan on 11 port(s): 4604 4640 4712 4760 4768 4785 4865 4920 4971 4977 4987	2019-07-26 01:05:06
58.229.253.139	attackspam	Jul 25 18:43:46 nextcloud sshd\[13092\]: Invalid user dana from 58.229.253.139 Jul 25 18:43:46 nextcloud sshd\[13092\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.229.253.139 Jul 25 18:43:48 nextcloud sshd\[13092\]: Failed password for invalid user dana from 58.229.253.139 port 39606 ssh2 ...	2019-07-26 01:40:55
212.49.66.235	attackbots	Jul 25 14:34:34 mail sshd\[28809\]: Invalid user ricky from 212.49.66.235 Jul 25 14:34:34 mail sshd\[28809\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.49.66.235 Jul 25 14:34:36 mail sshd\[28809\]: Failed password for invalid user ricky from 212.49.66.235 port 54220 ssh2	2019-07-26 01:54:30
218.154.59.41	attackspambots	" "	2019-07-26 01:43:46
148.204.111.22	attackspambots	Jul 25 18:49:41 tux-35-217 sshd\[4927\]: Invalid user test1 from 148.204.111.22 port 42548 Jul 25 18:49:41 tux-35-217 sshd\[4927\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.204.111.22 Jul 25 18:49:43 tux-35-217 sshd\[4927\]: Failed password for invalid user test1 from 148.204.111.22 port 42548 ssh2 Jul 25 18:55:02 tux-35-217 sshd\[4940\]: Invalid user test from 148.204.111.22 port 48300 Jul 25 18:55:02 tux-35-217 sshd\[4940\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.204.111.22 ...	2019-07-26 01:43:14
106.75.126.42	attack	Jul 25 19:15:18 meumeu sshd[27235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.126.42 Jul 25 19:15:20 meumeu sshd[27235]: Failed password for invalid user admin from 106.75.126.42 port 47004 ssh2 Jul 25 19:19:30 meumeu sshd[9426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.126.42 ...	2019-07-26 01:34:16
191.232.198.212	attackbotsspam	2019-07-25T15:44:39.183168abusebot-2.cloudsearch.cf sshd\[9778\]: Invalid user nagios from 191.232.198.212 port 47596	2019-07-26 01:24:07
82.80.70.81	attackbotsspam	Jul 25 20:37:56 server sshd\[1562\]: Invalid user kkk from 82.80.70.81 port 49900 Jul 25 20:37:56 server sshd\[1562\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.80.70.81 Jul 25 20:37:59 server sshd\[1562\]: Failed password for invalid user kkk from 82.80.70.81 port 49900 ssh2 Jul 25 20:42:49 server sshd\[30944\]: Invalid user mms from 82.80.70.81 port 47964 Jul 25 20:42:49 server sshd\[30944\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.80.70.81	2019-07-26 01:49:39
106.12.72.172	attack	Jul 25 11:40:49 vps200512 sshd\[4287\]: Invalid user tele from 106.12.72.172 Jul 25 11:40:49 vps200512 sshd\[4287\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.72.172 Jul 25 11:40:52 vps200512 sshd\[4287\]: Failed password for invalid user tele from 106.12.72.172 port 50926 ssh2 Jul 25 11:45:05 vps200512 sshd\[4416\]: Invalid user user4 from 106.12.72.172 Jul 25 11:45:05 vps200512 sshd\[4416\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.72.172	2019-07-26 01:48:07
109.251.68.112	attackbotsspam	Jul 25 12:52:08 vps200512 sshd\[6329\]: Invalid user bala from 109.251.68.112 Jul 25 12:52:08 vps200512 sshd\[6329\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.251.68.112 Jul 25 12:52:10 vps200512 sshd\[6329\]: Failed password for invalid user bala from 109.251.68.112 port 50122 ssh2 Jul 25 12:57:42 vps200512 sshd\[6424\]: Invalid user support from 109.251.68.112 Jul 25 12:57:42 vps200512 sshd\[6424\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.251.68.112	2019-07-26 01:16:26
220.128.241.33	attack	Jul 25 16:36:22 marvibiene sshd[16325]: Invalid user rajan from 220.128.241.33 port 31164 Jul 25 16:36:22 marvibiene sshd[16325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.128.241.33 Jul 25 16:36:22 marvibiene sshd[16325]: Invalid user rajan from 220.128.241.33 port 31164 Jul 25 16:36:24 marvibiene sshd[16325]: Failed password for invalid user rajan from 220.128.241.33 port 31164 ssh2 ...	2019-07-26 01:03:09
95.15.183.193	attack	20 attempts against mh-ssh on pluto.magehost.pro	2019-07-26 01:09:35
195.140.215.131	attack	Jul 25 14:29:42 mail sshd\[23626\]: Invalid user pan from 195.140.215.131 port 34728 Jul 25 14:29:42 mail sshd\[23626\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.140.215.131 Jul 25 14:29:45 mail sshd\[23626\]: Failed password for invalid user pan from 195.140.215.131 port 34728 ssh2 Jul 25 14:35:06 mail sshd\[24568\]: Invalid user francesco from 195.140.215.131 port 32864 Jul 25 14:35:06 mail sshd\[24568\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.140.215.131	2019-07-26 01:19:37

Recently Reported IPs

49.69.216.84	187.35.129.125	116.178.69.216	222.134.162.138
54.214.177.207	45.95.32.214	148.70.212.47	41.39.183.239
175.23.206.168	175.145.234.225	187.57.42.95	193.93.238.172
85.253.73.246	118.24.7.98	106.13.170.71	106.52.28.217
31.13.129.204	192.227.252.26	132.232.71.124	185.137.233.123