13.68.158.99 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Sep 25 19:22:04 vpn01 sshd[8736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.68.158.99 Sep 25 19:22:06 vpn01 sshd[8736]: Failed password for invalid user it from 13.68.158.99 port 36958 ssh2 ...	2020-09-26 04:56:54
attackspambots	Invalid user ssl from 13.68.158.99 port 38152	2020-09-25 21:48:37
attackbots	2020-09-25T08:23:55.063090snf-827550 sshd[3624]: Invalid user wkiconsole from 13.68.158.99 port 50266 2020-09-25T08:23:57.485550snf-827550 sshd[3624]: Failed password for invalid user wkiconsole from 13.68.158.99 port 50266 ssh2 2020-09-25T08:26:21.078377snf-827550 sshd[4204]: Invalid user deploy from 13.68.158.99 port 33168 ...	2020-09-25 13:28:23
attackbotsspam	2020-09-18T00:43:01.288531Z 8fd3ed8cf1d1 New connection: 13.68.158.99:49514 (172.17.0.2:2222) [session: 8fd3ed8cf1d1] 2020-09-18T00:51:04.055878Z f75d971dddd4 New connection: 13.68.158.99:49832 (172.17.0.2:2222) [session: f75d971dddd4]	2020-09-18 19:44:27
attackspambots	2020-09-18T00:43:01.288531Z 8fd3ed8cf1d1 New connection: 13.68.158.99:49514 (172.17.0.2:2222) [session: 8fd3ed8cf1d1] 2020-09-18T00:51:04.055878Z f75d971dddd4 New connection: 13.68.158.99:49832 (172.17.0.2:2222) [session: f75d971dddd4]	2020-09-18 12:01:49
attack	Sep 17 19:12:13 host2 sshd[2130438]: Failed password for root from 13.68.158.99 port 40218 ssh2 Sep 17 19:16:20 host2 sshd[2130673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.68.158.99 user=root Sep 17 19:16:23 host2 sshd[2130673]: Failed password for root from 13.68.158.99 port 53750 ssh2 Sep 17 19:16:20 host2 sshd[2130673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.68.158.99 user=root Sep 17 19:16:23 host2 sshd[2130673]: Failed password for root from 13.68.158.99 port 53750 ssh2 ...	2020-09-18 02:15:02
attack	Aug 29 06:23:31 srv-ubuntu-dev3 sshd[31973]: Invalid user user from 13.68.158.99 Aug 29 06:23:31 srv-ubuntu-dev3 sshd[31973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.68.158.99 Aug 29 06:23:31 srv-ubuntu-dev3 sshd[31973]: Invalid user user from 13.68.158.99 Aug 29 06:23:33 srv-ubuntu-dev3 sshd[31973]: Failed password for invalid user user from 13.68.158.99 port 56704 ssh2 Aug 29 06:26:22 srv-ubuntu-dev3 sshd[38260]: Invalid user xq from 13.68.158.99 Aug 29 06:26:22 srv-ubuntu-dev3 sshd[38260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.68.158.99 Aug 29 06:26:22 srv-ubuntu-dev3 sshd[38260]: Invalid user xq from 13.68.158.99 Aug 29 06:26:24 srv-ubuntu-dev3 sshd[38260]: Failed password for invalid user xq from 13.68.158.99 port 40666 ssh2 Aug 29 06:29:03 srv-ubuntu-dev3 sshd[38594]: Invalid user wzt from 13.68.158.99 ...	2020-08-29 12:35:07
attack	Aug 28 16:27:08 vpn01 sshd[23420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.68.158.99 Aug 28 16:27:10 vpn01 sshd[23420]: Failed password for invalid user lxw from 13.68.158.99 port 45828 ssh2 ...	2020-08-28 22:37:37
attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-08-28 17:24:02
attack	failed root login	2020-08-24 09:22:42
attackbots	2020-08-18T09:51:28.565541afi-git.jinr.ru sshd[12282]: Invalid user temp1 from 13.68.158.99 port 49462 2020-08-18T09:51:28.568837afi-git.jinr.ru sshd[12282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.68.158.99 2020-08-18T09:51:28.565541afi-git.jinr.ru sshd[12282]: Invalid user temp1 from 13.68.158.99 port 49462 2020-08-18T09:51:30.607317afi-git.jinr.ru sshd[12282]: Failed password for invalid user temp1 from 13.68.158.99 port 49462 ssh2 2020-08-18T09:55:37.347197afi-git.jinr.ru sshd[13319]: Invalid user centos from 13.68.158.99 port 58772 ...	2020-08-18 15:25:53
attackspambots	Failed password for invalid user cm from 13.68.158.99 port 46674 ssh2	2020-07-20 16:29:06
attackbots	2020-07-11T14:36:08.585082mail.broermann.family sshd[17241]: Invalid user trips from 13.68.158.99 port 51974 2020-07-11T14:36:08.591732mail.broermann.family sshd[17241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.68.158.99 2020-07-11T14:36:08.585082mail.broermann.family sshd[17241]: Invalid user trips from 13.68.158.99 port 51974 2020-07-11T14:36:10.122144mail.broermann.family sshd[17241]: Failed password for invalid user trips from 13.68.158.99 port 51974 ssh2 2020-07-11T14:38:56.627913mail.broermann.family sshd[17321]: Invalid user tianxin from 13.68.158.99 port 40594 ...	2020-07-11 23:52:06
attackbots	(sshd) Failed SSH login from 13.68.158.99 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 10 08:53:38 amsweb01 sshd[20886]: Invalid user dhar from 13.68.158.99 port 38252 Jul 10 08:53:41 amsweb01 sshd[20886]: Failed password for invalid user dhar from 13.68.158.99 port 38252 ssh2 Jul 10 09:02:09 amsweb01 sshd[22354]: Invalid user help from 13.68.158.99 port 57434 Jul 10 09:02:11 amsweb01 sshd[22354]: Failed password for invalid user help from 13.68.158.99 port 57434 ssh2 Jul 10 09:05:22 amsweb01 sshd[22808]: Invalid user klaus from 13.68.158.99 port 55212	2020-07-10 18:45:17
attackbotsspam	$f2bV_matches	2020-07-10 05:04:11
attackspambots	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-07-05 17:13:28
attack	Invalid user chaowei from 13.68.158.99 port 43374	2020-06-18 02:22:39
attack	Jun 16 15:27:06 vpn01 sshd[28948]: Failed password for root from 13.68.158.99 port 54424 ssh2 ...	2020-06-16 21:41:34
attackspambots	2020-06-14T14:49:33.5425271240 sshd\[13991\]: Invalid user nadjani from 13.68.158.99 port 41680 2020-06-14T14:49:33.5461661240 sshd\[13991\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.68.158.99 2020-06-14T14:49:35.1115701240 sshd\[13991\]: Failed password for invalid user nadjani from 13.68.158.99 port 41680 ssh2 ...	2020-06-14 22:20:17
attack	DATE:2020-06-04 22:24:23, IP:13.68.158.99, PORT:ssh SSH brute force auth (docker-dc)	2020-06-05 04:44:42
attackbotsspam	Jun 3 13:43:16 vlre-nyc-1 sshd\[12719\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.68.158.99 user=root Jun 3 13:43:18 vlre-nyc-1 sshd\[12719\]: Failed password for root from 13.68.158.99 port 47200 ssh2 Jun 3 13:47:03 vlre-nyc-1 sshd\[12800\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.68.158.99 user=root Jun 3 13:47:04 vlre-nyc-1 sshd\[12800\]: Failed password for root from 13.68.158.99 port 53046 ssh2 Jun 3 13:50:41 vlre-nyc-1 sshd\[12882\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.68.158.99 user=root ...	2020-06-03 23:10:14
attackspambots	May 29 07:50:14 home sshd[22996]: Failed password for root from 13.68.158.99 port 41946 ssh2 May 29 07:54:27 home sshd[23356]: Failed password for root from 13.68.158.99 port 50140 ssh2 ...	2020-05-29 14:24:32
attackspam	May 10 09:14:49 web1 sshd[31917]: Invalid user ventas from 13.68.158.99 port 56318 May 10 09:14:49 web1 sshd[31917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.68.158.99 May 10 09:14:49 web1 sshd[31917]: Invalid user ventas from 13.68.158.99 port 56318 May 10 09:14:51 web1 sshd[31917]: Failed password for invalid user ventas from 13.68.158.99 port 56318 ssh2 May 10 09:26:15 web1 sshd[2320]: Invalid user hadoop from 13.68.158.99 port 46330 May 10 09:26:15 web1 sshd[2320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.68.158.99 May 10 09:26:15 web1 sshd[2320]: Invalid user hadoop from 13.68.158.99 port 46330 May 10 09:26:17 web1 sshd[2320]: Failed password for invalid user hadoop from 13.68.158.99 port 46330 ssh2 May 10 09:30:15 web1 sshd[3340]: Invalid user postgres from 13.68.158.99 port 56402 ...	2020-05-10 08:26:23
attack	May 7 01:59:20 ncomp sshd[16939]: Invalid user testtest from 13.68.158.99 May 7 01:59:20 ncomp sshd[16939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.68.158.99 May 7 01:59:20 ncomp sshd[16939]: Invalid user testtest from 13.68.158.99 May 7 01:59:23 ncomp sshd[16939]: Failed password for invalid user testtest from 13.68.158.99 port 37070 ssh2	2020-05-07 08:29:26
attackbots	Lines containing failures of 13.68.158.99 (max 1000) May 4 01:50:37 localhost sshd[21305]: Invalid user cosmos from 13.68.158.99 port 40338 May 4 01:50:37 localhost sshd[21305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.68.158.99 May 4 01:50:38 localhost sshd[21305]: Failed password for invalid user cosmos from 13.68.158.99 port 40338 ssh2 May 4 01:50:40 localhost sshd[21305]: Received disconnect from 13.68.158.99 port 40338:11: Bye Bye [preauth] May 4 01:50:40 localhost sshd[21305]: Disconnected from invalid user cosmos 13.68.158.99 port 40338 [preauth] May 4 02:02:54 localhost sshd[26826]: Invalid user nal from 13.68.158.99 port 47146 May 4 02:02:54 localhost sshd[26826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.68.158.99 May 4 02:02:56 localhost sshd[26826]: Failed password for invalid user nal from 13.68.158.99 port 47146 ssh2 May 4 02:02:59 localhost sshd[26........ ------------------------------	2020-05-06 05:15:41

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.68.158.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19535
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;13.68.158.99.			IN	A

;; AUTHORITY SECTION:
.			561	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050501 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 06 05:15:38 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 99.158.68.13.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 99.158.68.13.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
104.40.132.152	attackspam	Aug 24 15:26:10 www2 sshd\[19370\]: Failed password for root from 104.40.132.152 port 41590 ssh2Aug 24 15:30:54 www2 sshd\[19884\]: Invalid user cj from 104.40.132.152Aug 24 15:30:56 www2 sshd\[19884\]: Failed password for invalid user cj from 104.40.132.152 port 32826 ssh2 ...	2019-08-25 05:24:41
213.91.181.117	attack	Unauthorized connection attempt from IP address 213.91.181.117 on Port 445(SMB)	2019-08-25 05:23:51
89.90.209.252	attackspambots	Aug 24 23:36:39 v22019058497090703 sshd[11930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.90.209.252 Aug 24 23:36:42 v22019058497090703 sshd[11930]: Failed password for invalid user admin from 89.90.209.252 port 42908 ssh2 Aug 24 23:40:35 v22019058497090703 sshd[12303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.90.209.252 ...	2019-08-25 05:47:56
178.128.87.245	attackspam	Aug 25 00:14:44 srv-4 sshd\[2315\]: Invalid user ftpuser from 178.128.87.245 Aug 25 00:14:44 srv-4 sshd\[2315\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.87.245 Aug 25 00:14:46 srv-4 sshd\[2315\]: Failed password for invalid user ftpuser from 178.128.87.245 port 34818 ssh2 ...	2019-08-25 05:26:00
187.199.85.6	attackbots	SMB Server BruteForce Attack	2019-08-25 05:35:28
217.141.88.34	attackspambots	Aug 24 22:56:51 mail1 sshd\[30532\]: Invalid user jaiken from 217.141.88.34 port 50026 Aug 24 22:56:51 mail1 sshd\[30532\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.141.88.34 Aug 24 22:56:53 mail1 sshd\[30532\]: Failed password for invalid user jaiken from 217.141.88.34 port 50026 ssh2 Aug 24 23:01:56 mail1 sshd\[401\]: Invalid user wwwuser from 217.141.88.34 port 43572 Aug 24 23:01:56 mail1 sshd\[401\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.141.88.34 ...	2019-08-25 05:25:29
37.26.81.114	attackbotsspam	Aug 24 08:15:25 tdfoods sshd\[15604\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.26.81.114 user=root Aug 24 08:15:27 tdfoods sshd\[15604\]: Failed password for root from 37.26.81.114 port 49468 ssh2 Aug 24 08:20:14 tdfoods sshd\[16081\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.26.81.114 user=root Aug 24 08:20:16 tdfoods sshd\[16081\]: Failed password for root from 37.26.81.114 port 54502 ssh2 Aug 24 08:25:03 tdfoods sshd\[16478\]: Invalid user rashid from 37.26.81.114	2019-08-25 05:39:12
51.75.126.28	attackspambots	Aug 24 14:19:31 minden010 sshd[27935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.126.28 Aug 24 14:19:33 minden010 sshd[27935]: Failed password for invalid user azman from 51.75.126.28 port 52510 ssh2 Aug 24 14:23:30 minden010 sshd[29412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.126.28 ...	2019-08-25 05:43:59
146.185.175.132	attack	Aug 24 23:09:44 tux-35-217 sshd\[16132\]: Invalid user er from 146.185.175.132 port 57782 Aug 24 23:09:44 tux-35-217 sshd\[16132\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.185.175.132 Aug 24 23:09:46 tux-35-217 sshd\[16132\]: Failed password for invalid user er from 146.185.175.132 port 57782 ssh2 Aug 24 23:13:41 tux-35-217 sshd\[16175\]: Invalid user chou from 146.185.175.132 port 46478 Aug 24 23:13:41 tux-35-217 sshd\[16175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.185.175.132 ...	2019-08-25 05:46:53
85.93.20.38	attackspam	08/24/2019-16:20:13.293123 85.93.20.38 Protocol: 6 ET SCAN Suspicious inbound to mySQL port 3306	2019-08-25 05:12:26
223.130.100.157	attackspam	Aug 24 17:47:54 TORMINT sshd\[29295\]: Invalid user mb from 223.130.100.157 Aug 24 17:47:54 TORMINT sshd\[29295\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.130.100.157 Aug 24 17:47:56 TORMINT sshd\[29295\]: Failed password for invalid user mb from 223.130.100.157 port 42984 ssh2 ...	2019-08-25 05:59:05
58.72.155.170	attackspam	$f2bV_matches	2019-08-25 05:12:55
159.65.7.56	attackspam	Aug 24 23:46:13 lnxweb61 sshd[23527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.7.56 Aug 24 23:46:15 lnxweb61 sshd[23527]: Failed password for invalid user david from 159.65.7.56 port 39610 ssh2 Aug 24 23:52:42 lnxweb61 sshd[28625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.7.56	2019-08-25 05:53:53
134.209.110.62	attackbotsspam	Aug 24 17:43:10 game-panel sshd[601]: Failed password for root from 134.209.110.62 port 51046 ssh2 Aug 24 17:48:10 game-panel sshd[809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.110.62 Aug 24 17:48:12 game-panel sshd[809]: Failed password for invalid user sshuser from 134.209.110.62 port 40352 ssh2	2019-08-25 05:17:57
134.209.13.209	attack	Aug 24 21:40:25 raspberrypi sshd\[9732\]: Invalid user minecraft from 134.209.13.209Aug 24 21:40:27 raspberrypi sshd\[9732\]: Failed password for invalid user minecraft from 134.209.13.209 port 51000 ssh2Aug 24 21:48:02 raspberrypi sshd\[9853\]: Invalid user user from 134.209.13.209 ...	2019-08-25 05:51:50

Recently Reported IPs

51.15.220.241	49.232.9.198	112.133.219.236	1.162.145.143
159.65.4.147	90.63.235.122	69.195.234.8	203.115.107.227
192.180.88.122	175.139.194.125	202.90.199.206	4.16.36.18
157.245.1.189	212.1.76.83	177.28.166.124	212.156.82.102
111.150.90.90	78.26.143.31	117.87.2.121	218.210.62.96