106.13.103.132

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	2019-12-07T11:22:31.975779shield sshd\[22797\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.132 user=root 2019-12-07T11:22:34.098138shield sshd\[22797\]: Failed password for root from 106.13.103.132 port 38354 ssh2 2019-12-07T11:29:32.537175shield sshd\[25208\]: Invalid user test from 106.13.103.132 port 36970 2019-12-07T11:29:32.543108shield sshd\[25208\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.132 2019-12-07T11:29:34.128334shield sshd\[25208\]: Failed password for invalid user test from 106.13.103.132 port 36970 ssh2	2019-12-07 19:30:15
attackspambots	Dec 2 03:23:22 php1 sshd\[7790\]: Invalid user jeffchen from 106.13.103.132 Dec 2 03:23:22 php1 sshd\[7790\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.132 Dec 2 03:23:24 php1 sshd\[7790\]: Failed password for invalid user jeffchen from 106.13.103.132 port 56630 ssh2 Dec 2 03:32:09 php1 sshd\[9379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.132 user=root Dec 2 03:32:10 php1 sshd\[9379\]: Failed password for root from 106.13.103.132 port 54642 ssh2	2019-12-03 02:36:15
attackbotsspam	Dec 2 06:53:36 meumeu sshd[17360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.132 Dec 2 06:53:38 meumeu sshd[17360]: Failed password for invalid user adm1n12 from 106.13.103.132 port 48350 ssh2 Dec 2 07:01:24 meumeu sshd[18421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.132 ...	2019-12-02 14:03:30
attackbots	Nov 26 00:11:00 django sshd[109585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.132 user=r.r Nov 26 00:11:03 django sshd[109585]: Failed password for r.r from 106.13.103.132 port 44938 ssh2 Nov 26 00:11:03 django sshd[109586]: Received disconnect from 106.13.103.132: 11: Bye Bye Nov 26 00:16:46 django sshd[110161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.132 user=r.r Nov 26 00:16:48 django sshd[110161]: Failed password for r.r from 106.13.103.132 port 53288 ssh2 Nov 26 00:16:48 django sshd[110162]: Received disconnect from 106.13.103.132: 11: Bye Bye Nov 26 00:20:48 django sshd[110628]: Invalid user maupas from 106.13.103.132 Nov 26 00:20:48 django sshd[110628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.132 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.13.103.132	2019-11-27 15:40:42
attackbots	Nov 26 00:11:00 django sshd[109585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.132 user=r.r Nov 26 00:11:03 django sshd[109585]: Failed password for r.r from 106.13.103.132 port 44938 ssh2 Nov 26 00:11:03 django sshd[109586]: Received disconnect from 106.13.103.132: 11: Bye Bye Nov 26 00:16:46 django sshd[110161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.132 user=r.r Nov 26 00:16:48 django sshd[110161]: Failed password for r.r from 106.13.103.132 port 53288 ssh2 Nov 26 00:16:48 django sshd[110162]: Received disconnect from 106.13.103.132: 11: Bye Bye Nov 26 00:20:48 django sshd[110628]: Invalid user maupas from 106.13.103.132 Nov 26 00:20:48 django sshd[110628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.132 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.13.103.132	2019-11-26 07:59:40
attackspambots	Nov 20 14:44:17 localhost sshd\[122925\]: Invalid user avery from 106.13.103.132 port 37688 Nov 20 14:44:17 localhost sshd\[122925\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.132 Nov 20 14:44:19 localhost sshd\[122925\]: Failed password for invalid user avery from 106.13.103.132 port 37688 ssh2 Nov 20 14:49:38 localhost sshd\[123063\]: Invalid user maxin from 106.13.103.132 port 41082 Nov 20 14:49:38 localhost sshd\[123063\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.132 ...	2019-11-20 23:15:48
attackbotsspam	Nov 19 16:12:55 venus sshd\[13820\]: Invalid user erman from 106.13.103.132 port 42044 Nov 19 16:12:55 venus sshd\[13820\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.132 Nov 19 16:12:57 venus sshd\[13820\]: Failed password for invalid user erman from 106.13.103.132 port 42044 ssh2 ...	2019-11-20 01:05:47

Comments on same subnet:

IP	Type	Details	Datetime
106.13.103.1	attackspambots	leo_www	2020-08-18 07:46:54
106.13.103.1	attack	Aug 11 21:41:18 ajax sshd[6729]: Failed password for root from 106.13.103.1 port 36540 ssh2	2020-08-12 07:31:45
106.13.103.1	attackspam	Aug 11 21:12:19 haigwepa sshd[10571]: Failed password for root from 106.13.103.1 port 53562 ssh2 ...	2020-08-12 03:34:19
106.13.103.1	attackbots	Brute-force attempt banned	2020-08-07 08:13:20
106.13.103.1	attackbots	Jul 26 11:27:17 myvps sshd[6965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.1 Jul 26 11:27:19 myvps sshd[6965]: Failed password for invalid user crp from 106.13.103.1 port 43490 ssh2 Jul 26 11:36:40 myvps sshd[12655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.1 ...	2020-07-26 17:43:53
106.13.103.1	attackspam	Jul 25 20:44:08 dhoomketu sshd[1868820]: Failed password for invalid user postgres from 106.13.103.1 port 47876 ssh2 Jul 25 20:46:30 dhoomketu sshd[1868894]: Invalid user xp from 106.13.103.1 port 44876 Jul 25 20:46:30 dhoomketu sshd[1868894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.1 Jul 25 20:46:30 dhoomketu sshd[1868894]: Invalid user xp from 106.13.103.1 port 44876 Jul 25 20:46:32 dhoomketu sshd[1868894]: Failed password for invalid user xp from 106.13.103.1 port 44876 ssh2 ...	2020-07-25 23:17:12
106.13.103.1	attackbotsspam	Jul 21 04:09:24 plex-server sshd[183163]: Invalid user ts3user from 106.13.103.1 port 48894 Jul 21 04:09:24 plex-server sshd[183163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.1 Jul 21 04:09:24 plex-server sshd[183163]: Invalid user ts3user from 106.13.103.1 port 48894 Jul 21 04:09:25 plex-server sshd[183163]: Failed password for invalid user ts3user from 106.13.103.1 port 48894 ssh2 Jul 21 04:12:49 plex-server sshd[183477]: Invalid user dg from 106.13.103.1 port 36936 ...	2020-07-21 13:13:41
106.13.103.1	attackspam	SSH Attack	2020-07-12 19:49:00
106.13.103.1	attack	$f2bV_matches	2020-07-09 02:30:00
106.13.103.1	attackbots	Jul 5 05:52:04 raspberrypi sshd[17318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.1 user=root Jul 5 05:52:06 raspberrypi sshd[17318]: Failed password for invalid user root from 106.13.103.1 port 36766 ssh2 ...	2020-07-05 16:28:12
106.13.103.251	attackspam	Jun 29 12:52:17 mail sshd[21112]: Failed password for root from 106.13.103.251 port 37364 ssh2 Jun 29 13:06:50 mail sshd[23098]: Failed password for root from 106.13.103.251 port 35224 ssh2 ...	2020-06-29 23:50:40
106.13.103.1	attackbots	2020-06-20T06:09:01.623245shield sshd\[32655\]: Invalid user wilson from 106.13.103.1 port 58262 2020-06-20T06:09:01.627159shield sshd\[32655\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.1 2020-06-20T06:09:03.643321shield sshd\[32655\]: Failed password for invalid user wilson from 106.13.103.1 port 58262 ssh2 2020-06-20T06:12:46.386327shield sshd\[815\]: Invalid user chef from 106.13.103.1 port 47236 2020-06-20T06:12:46.390043shield sshd\[815\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.1	2020-06-20 15:07:25
106.13.103.1	attackbotsspam	Jun 18 16:37:01 vserver sshd\[25110\]: Invalid user apache from 106.13.103.1Jun 18 16:37:03 vserver sshd\[25110\]: Failed password for invalid user apache from 106.13.103.1 port 46814 ssh2Jun 18 16:43:10 vserver sshd\[25243\]: Failed password for root from 106.13.103.1 port 41304 ssh2Jun 18 16:44:16 vserver sshd\[25247\]: Invalid user tommy from 106.13.103.1 ...	2020-06-19 02:46:18
106.13.103.251	attack	Port scan: Attack repeated for 24 hours	2020-06-12 08:51:56
106.13.103.1	attackbots	Jun 11 07:09:39 lnxmysql61 sshd[25254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.1	2020-06-11 13:39:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.103.132
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27715
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.103.132.			IN	A

;; AUTHORITY SECTION:
.			194	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111900 1800 900 604800 86400

;; Query time: 519 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Nov 20 01:05:44 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 132.103.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 132.103.13.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
200.66.118.193	attackspam	Attempt to login to email server on SMTP service on 07-09-2019 01:41:07.	2019-09-07 12:28:58
49.88.112.116	attack	Sep 6 17:59:28 php1 sshd\[14418\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.116 user=root Sep 6 17:59:30 php1 sshd\[14418\]: Failed password for root from 49.88.112.116 port 20356 ssh2 Sep 6 17:59:33 php1 sshd\[14418\]: Failed password for root from 49.88.112.116 port 20356 ssh2 Sep 6 17:59:36 php1 sshd\[14418\]: Failed password for root from 49.88.112.116 port 20356 ssh2 Sep 6 18:00:26 php1 sshd\[14509\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.116 user=root	2019-09-07 12:09:00
83.142.141.6	attackbots	Sep 7 05:37:16 MK-Soft-Root1 sshd\[28852\]: Invalid user test from 83.142.141.6 port 33742 Sep 7 05:37:16 MK-Soft-Root1 sshd\[28852\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.142.141.6 Sep 7 05:37:17 MK-Soft-Root1 sshd\[28852\]: Failed password for invalid user test from 83.142.141.6 port 33742 ssh2 ...	2019-09-07 11:55:08
212.87.9.141	attackspambots	Sep 7 06:13:34 MK-Soft-Root1 sshd\[1775\]: Invalid user dspace from 212.87.9.141 port 47644 Sep 7 06:13:34 MK-Soft-Root1 sshd\[1775\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.87.9.141 Sep 7 06:13:36 MK-Soft-Root1 sshd\[1775\]: Failed password for invalid user dspace from 212.87.9.141 port 47644 ssh2 ...	2019-09-07 12:19:18
218.98.40.145	attack	Sep 7 05:18:12 mail sshd\[13482\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.40.145 user=root Sep 7 05:18:14 mail sshd\[13482\]: Failed password for root from 218.98.40.145 port 35110 ssh2 Sep 7 05:18:17 mail sshd\[13482\]: Failed password for root from 218.98.40.145 port 35110 ssh2 Sep 7 05:18:19 mail sshd\[13482\]: Failed password for root from 218.98.40.145 port 35110 ssh2 Sep 7 05:18:26 mail sshd\[13485\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.40.145 user=root	2019-09-07 11:55:52
107.189.2.90	attack	marleenrecords.breidenba.ch 107.189.2.90 \[07/Sep/2019:02:41:02 +0200\] "POST /wp-login.php HTTP/1.1" 200 5808 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" marleenrecords.breidenba.ch 107.189.2.90 \[07/Sep/2019:02:41:02 +0200\] "POST /wp-login.php HTTP/1.1" 200 5807 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-09-07 12:32:04
182.61.26.36	attack	Sep 6 18:12:05 php1 sshd\[15659\]: Invalid user admin from 182.61.26.36 Sep 6 18:12:05 php1 sshd\[15659\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.26.36 Sep 6 18:12:07 php1 sshd\[15659\]: Failed password for invalid user admin from 182.61.26.36 port 53004 ssh2 Sep 6 18:15:06 php1 sshd\[15921\]: Invalid user gmodserver from 182.61.26.36 Sep 6 18:15:06 php1 sshd\[15921\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.26.36	2019-09-07 12:26:01
141.98.81.111	attack	19/9/6@23:35:29: FAIL: Alarm-SSH address from=141.98.81.111 ...	2019-09-07 11:53:55
222.186.30.111	attackspambots	SSH Brute Force, server-1 sshd[17402]: Failed password for root from 222.186.30.111 port 23276 ssh2	2019-09-07 12:23:38
5.135.207.118	attackspambots	5.135.207.118 - - [07/Sep/2019:00:22:27 +0200] "POST /wp-login.php HTTP/1.1" 403 1613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" c65e322093ffe428ba8489016ee783eb France FR - - 5.135.207.118 - - [07/Sep/2019:02:41:29 +0200] "POST /wp-login.php HTTP/1.1" 403 1613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" e45d1826deee36f7413e00619adbf29b France FR - - 5.135.207.118 - - [07/Sep/2019:02:41:30 +0200] "POST /xmlrpc.php HTTP/1.1" 403 240 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 9091a2082ebaf4443823e8b61eb53245 France FR - -	2019-09-07 12:13:43
119.29.10.25	attackbots	Sep 7 05:34:00 core sshd[8567]: Invalid user 1 from 119.29.10.25 port 34717 Sep 7 05:34:03 core sshd[8567]: Failed password for invalid user 1 from 119.29.10.25 port 34717 ssh2 ...	2019-09-07 11:54:29
142.93.186.245	attackspam	Sep 7 06:27:21 site1 sshd\[34533\]: Invalid user password from 142.93.186.245Sep 7 06:27:23 site1 sshd\[34533\]: Failed password for invalid user password from 142.93.186.245 port 49684 ssh2Sep 7 06:31:25 site1 sshd\[34632\]: Invalid user tomcat1 from 142.93.186.245Sep 7 06:31:27 site1 sshd\[34632\]: Failed password for invalid user tomcat1 from 142.93.186.245 port 37210 ssh2Sep 7 06:35:28 site1 sshd\[34894\]: Invalid user 123456789 from 142.93.186.245Sep 7 06:35:29 site1 sshd\[34894\]: Failed password for invalid user 123456789 from 142.93.186.245 port 52980 ssh2 ...	2019-09-07 11:46:59
142.93.203.108	attackspam	Sep 7 05:19:59 xeon sshd[49331]: Invalid user web from 142.93.203.108	2019-09-07 12:33:29
167.71.251.2	attack	Sep 6 23:59:07 TORMINT sshd\[18997\]: Invalid user teamspeak from 167.71.251.2 Sep 6 23:59:07 TORMINT sshd\[18997\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.251.2 Sep 6 23:59:09 TORMINT sshd\[18997\]: Failed password for invalid user teamspeak from 167.71.251.2 port 59276 ssh2 ...	2019-09-07 12:07:36
118.24.9.152	attackspam	Sep 6 17:38:15 aiointranet sshd\[669\]: Invalid user test from 118.24.9.152 Sep 6 17:38:15 aiointranet sshd\[669\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.9.152 Sep 6 17:38:17 aiointranet sshd\[669\]: Failed password for invalid user test from 118.24.9.152 port 36746 ssh2 Sep 6 17:41:55 aiointranet sshd\[1066\]: Invalid user www-upload from 118.24.9.152 Sep 6 17:41:55 aiointranet sshd\[1066\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.9.152	2019-09-07 11:55:25

Recently Reported IPs

1.251.167.62	187.95.253.24	185.87.12.106	177.107.51.106
14.169.97.114	182.45.71.248	181.95.3.104	14.100.0.175
182.124.44.147	190.205.121.89	171.227.35.186	138.197.204.57
14.190.33.213	202.189.3.253	5.13.239.39	196.190.28.75
61.246.6.51	197.248.2.229	125.45.9.148	151.53.100.177