JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 170.106.65.131

170.106.65.131 was found in our database!

This IP was reported 409 times. Confidence of Abuse is 100%: ?

100%

ISP	Tencent Building, Kejizhongyi Avenue
Usage Type	Data Center/Web Hosting/Transit
ASN	AS132203
Domain Name	tencent.com
Country	🇺🇸 United States of America
City	Santa Clara, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 170.106.65.131

Whois 170.106.65.131

IP Abuse Reports for 170.106.65.131:

This IP address has been reported a total of 409 times from 261 distinct sources. 170.106.65.131 was first reported on May 16th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Fasetech	2026-06-09 00:07:14 (2 days ago)	SecLedge detected suspicious activity. Score: 101.64. Sensor: T-Pot.	Brute-Force Web App Attack
🇧🇷 helix	2026-05-29 06:36:19 (1 week ago)	Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login atte ... show more Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login attempts (3 attempts). show less	Brute-Force SSH
🇫🇷 Fasetech	2026-05-26 05:30:07 (2 weeks ago)	SecLedge detected suspicious activity. Score: 101.64. Sensor: T-Pot.	Brute-Force Web App Attack
🇮🇱 spd.co.il	2026-05-22 01:04:54 (2 weeks ago)	Unauthorized access attempts on ports: 22	Brute-Force SSH
🇮🇳 Parth Maniar	2026-05-21 04:02:56 (3 weeks ago)	This IP address carried out 112 port scanning attempts on 20-05-2026. For more information or to rep ... show more This IP address carried out 112 port scanning attempts on 20-05-2026. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
🇮🇳 Parth Maniar	2026-05-21 03:43:53 (3 weeks ago)	This IP address carried out 23 SSH credential attack (attempts) on 20-05-2026. For more information ... show more This IP address carried out 23 SSH credential attack (attempts) on 20-05-2026. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Brute-Force SSH
🇫🇷 Fasetech	2026-05-20 12:48:49 (3 weeks ago)	SecLedge detected suspicious activity. Score: 101.64. Sensor: T-Pot.	Brute-Force Web App Attack
🇧🇬 geddo.in	2026-05-20 06:32:55 (3 weeks ago)	May 20 00:30:22 mortgagebase sshd[22819]: Disconnected from authenticating user root 170.106.65.131 ... show more May 20 00:30:22 mortgagebase sshd[22819]: Disconnected from authenticating user root 170.106.65.131 port 34454 [preauth] May 20 00:32:51 mortgagebase sshd[22845]: Invalid user claude from 170.106.65.131 port 40128 May 20 00:32:51 mortgagebase sshd[22845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.106.65.131 May 20 00:32:52 mortgagebase sshd[22845]: Failed password for invalid user claude from 170.106.65.131 port 40128 ssh2 May 20 00:32:54 mortgagebase sshd[22845]: Disconnected from invalid user claude 170.106.65.131 port 40128 [preauth] ... show less	Brute-Force SSH
🇩🇪 markawes	2026-05-20 06:32:05 (3 weeks ago)	[EmExpress] Auto banned by Fail2Ban. Reason: SSH brute force / repeated failed login attempts. Evide ... show more [EmExpress] Auto banned by Fail2Ban. Reason: SSH brute force / repeated failed login attempts. Evidence: May 20 07:32:01 emexpress sshd[283174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.106.65.131 May 20 07:32:01 emexpress sshd[283174]: Invalid user claude from 170.106.65.131 port 60562 May 20 07:32:03 emexpress sshd[283174]: Failed password for invalid user claude from 170.106.65.131 port 60562 ssh2 show less	Brute-Force SSH
🇮🇹 dwmp	2026-05-20 06:02:32 (3 weeks ago)	2026-05-20T06:01:17.667451+00:00 news2.dwmp.it sshd[295923]: Failed password for root from 170.106.6 ... show more 2026-05-20T06:01:17.667451+00:00 news2.dwmp.it sshd[295923]: Failed password for root from 170.106.65.131 port 36828 ssh2 2026-05-20T06:02:28.308279+00:00 news2.dwmp.it sshd[296198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.106.65.131 user=root 2026-05-20T06:02:30.200168+00:00 news2.dwmp.it sshd[296198]: Failed password for root from 170.106.65.131 port 51716 ssh2 ... show less	Brute-Force SSH
Anonymous	2026-05-20 05:31:04 (3 weeks ago)	2026-05-20T01:25:54.228462 SPARTAN sshd[13724]: Failed password for root from 170.106.65.131 port 52 ... show more 2026-05-20T01:25:54.228462 SPARTAN sshd[13724]: Failed password for root from 170.106.65.131 port 52212 ssh2 2026-05-20T01:29:40.920326 SPARTAN sshd[14968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.106.65.131 user=root 2026-05-20T01:29:42.641436 SPARTAN sshd[14968]: Failed password for root from 170.106.65.131 port 55022 ssh2 2026-05-20T01:30:54.222340 SPARTAN sshd[15401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.106.65.131 user=root 2026-05-20T01:30:56.099479 SPARTAN sshd[15401]: Failed password for root from 170.106.65.131 port 60640 ssh2 ... show less	Brute-Force SSH
🇫🇷 [email protected]	2026-05-20 04:57:56 (3 weeks ago)	May 20 06:50:07 mail6 sshd-session[64203]: pam_unix(sshd:auth): authentication failure; logname= uid ... show more May 20 06:50:07 mail6 sshd-session[64203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.106.65.131 user=root May 20 06:50:09 mail6 sshd-session[64203]: Failed password for invalid user root from 170.106.65.131 port 52870 ssh2 May 20 06:50:07 mail6 sshd-session[64203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.106.65.131 user=root May 20 06:50:09 mail6 sshd-session[64203]: Failed password for invalid user root from 170.106.65.131 port 52870 ssh2 May 20 06:57:55 mail6 sshd-session[66012]: User root from 170.106.65.131 not allowed because not listed in AllowUsers ... show less	Brute-Force SSH
🇵🇱 Portuseco Biling	2026-05-20 04:27:44 (3 weeks ago)	--friendhosting-F2B blocked SSH BF--	Brute-Force SSH
🇺🇸 jennij	2026-05-20 03:56:30 (3 weeks ago)	Fail2Ban sshd ban on luckymc.gg ...	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-20 03:48:04 (3 weeks ago)	170.106.65.131 (US/United States/-), 6 distributed sshd attacks on account [root] in the last 3600 s ... show more 170.106.65.131 (US/United States/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 19 22:25:13 14815 sshd[30242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.106.158.48 user=root May 19 22:25:15 14815 sshd[30242]: Failed password for root from 170.106.158.48 port 45902 ssh2 May 19 22:47:46 14815 sshd[32434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.106.65.131 user=root May 19 22:23:13 14815 sshd[30049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.106.158.48 user=root May 19 22:23:14 14815 sshd[30049]: Failed password for root from 170.106.158.48 port 45004 ssh2 May 19 22:26:28 14815 sshd[30355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.106.158.48 user=root IP Addresses Blocked: 170.106.158.48 (US/United States/-) show less	Brute-Force SSH

Showing 1 to 15 of 409 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 213.89.139.70

🇲🇽 186.96.145.241

🇸🇪 185.246.128.133

🇷🇴 92.118.39.236

🇺🇸 2607:f8b0:4001:c0d::123

🇯🇵 222.10.76.188

🇺🇸 195.184.76.207

🇩🇪 157.90.31.2

🇭🇰 152.32.172.108

🇨🇳 101.96.220.35

🇭🇰 101.36.110.201

🇺🇸 91.230.168.13

🇵🇭 61.9.10.114

🇳🇱 45.148.10.147

🇹🇷 31.145.131.202

🇰🇷 222.239.251.12

🇬🇧 193.32.209.247

🇧🇷 177.128.243.61

🇺🇸 64.62.197.100

🇺🇸 18.210.153.250