106.13.118.162

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Dec 21 23:52:45 sd-53420 sshd\[29803\]: Invalid user lol123 from 106.13.118.162 Dec 21 23:52:45 sd-53420 sshd\[29803\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.162 Dec 21 23:52:47 sd-53420 sshd\[29803\]: Failed password for invalid user lol123 from 106.13.118.162 port 45812 ssh2 Dec 21 23:58:38 sd-53420 sshd\[31883\]: Invalid user nokia6600 from 106.13.118.162 Dec 21 23:58:38 sd-53420 sshd\[31883\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.162 ...	2019-12-22 07:01:47
attackspam	Dec 17 09:00:50 php1 sshd\[31596\]: Invalid user mckeegan from 106.13.118.162 Dec 17 09:00:50 php1 sshd\[31596\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.162 Dec 17 09:00:52 php1 sshd\[31596\]: Failed password for invalid user mckeegan from 106.13.118.162 port 47780 ssh2 Dec 17 09:05:54 php1 sshd\[32304\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.162 user=root Dec 17 09:05:56 php1 sshd\[32304\]: Failed password for root from 106.13.118.162 port 46718 ssh2	2019-12-18 03:06:28
attack	Invalid user backup from 106.13.118.162 port 51438	2019-12-11 21:27:45
attack	Dec 8 16:30:27 markkoudstaal sshd[14301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.162 Dec 8 16:30:29 markkoudstaal sshd[14301]: Failed password for invalid user named from 106.13.118.162 port 40334 ssh2 Dec 8 16:37:23 markkoudstaal sshd[15134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.162	2019-12-08 23:54:43
attackbots	Dec 6 12:22:59 hpm sshd\[8842\]: Invalid user uqfex from 106.13.118.162 Dec 6 12:22:59 hpm sshd\[8842\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.162 Dec 6 12:23:01 hpm sshd\[8842\]: Failed password for invalid user uqfex from 106.13.118.162 port 40198 ssh2 Dec 6 12:29:47 hpm sshd\[9495\]: Invalid user rogler from 106.13.118.162 Dec 6 12:29:47 hpm sshd\[9495\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.162	2019-12-07 06:47:15
attackspambots	Dec 5 20:06:49 ny01 sshd[10930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.162 Dec 5 20:06:51 ny01 sshd[10930]: Failed password for invalid user hirayama from 106.13.118.162 port 35574 ssh2 Dec 5 20:13:53 ny01 sshd[11606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.162	2019-12-06 09:34:02

Comments on same subnet:

IP	Type	Details	Datetime
106.13.118.102	attack	Jul 26 05:12:20 gw1 sshd[5088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.102 Jul 26 05:12:21 gw1 sshd[5088]: Failed password for invalid user lager from 106.13.118.102 port 37452 ssh2 ...	2020-07-26 08:20:30
106.13.118.102	attack	Jul 23 22:33:05 vps sshd[273225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.102 Jul 23 22:33:07 vps sshd[273225]: Failed password for invalid user ftpuser from 106.13.118.102 port 43408 ssh2 Jul 23 22:39:16 vps sshd[300046]: Invalid user wayne from 106.13.118.102 port 51454 Jul 23 22:39:16 vps sshd[300046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.102 Jul 23 22:39:19 vps sshd[300046]: Failed password for invalid user wayne from 106.13.118.102 port 51454 ssh2 ...	2020-07-24 04:58:57
106.13.118.102	attackbotsspam	Jul 5 19:19:41 itv-usvr-02 sshd[16952]: Invalid user jjk from 106.13.118.102 port 50090 Jul 5 19:19:41 itv-usvr-02 sshd[16952]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.102 Jul 5 19:19:41 itv-usvr-02 sshd[16952]: Invalid user jjk from 106.13.118.102 port 50090 Jul 5 19:19:43 itv-usvr-02 sshd[16952]: Failed password for invalid user jjk from 106.13.118.102 port 50090 ssh2 Jul 5 19:24:32 itv-usvr-02 sshd[17193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.102 user=root Jul 5 19:24:34 itv-usvr-02 sshd[17193]: Failed password for root from 106.13.118.102 port 38666 ssh2	2020-07-05 23:30:43
106.13.118.102	attackbots	Jul 4 14:24:37 h2779839 sshd[12445]: Invalid user ruben from 106.13.118.102 port 52428 Jul 4 14:24:37 h2779839 sshd[12445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.102 Jul 4 14:24:37 h2779839 sshd[12445]: Invalid user ruben from 106.13.118.102 port 52428 Jul 4 14:24:39 h2779839 sshd[12445]: Failed password for invalid user ruben from 106.13.118.102 port 52428 ssh2 Jul 4 14:27:09 h2779839 sshd[12481]: Invalid user joe from 106.13.118.102 port 51800 Jul 4 14:27:09 h2779839 sshd[12481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.102 Jul 4 14:27:09 h2779839 sshd[12481]: Invalid user joe from 106.13.118.102 port 51800 Jul 4 14:27:11 h2779839 sshd[12481]: Failed password for invalid user joe from 106.13.118.102 port 51800 ssh2 Jul 4 14:29:40 h2779839 sshd[12492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.102 user ...	2020-07-04 20:30:01
106.13.118.102	attack	2020-06-21T13:05:54.123421vps773228.ovh.net sshd[7977]: Invalid user shared from 106.13.118.102 port 38596 2020-06-21T13:05:54.138337vps773228.ovh.net sshd[7977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.102 2020-06-21T13:05:54.123421vps773228.ovh.net sshd[7977]: Invalid user shared from 106.13.118.102 port 38596 2020-06-21T13:05:56.116944vps773228.ovh.net sshd[7977]: Failed password for invalid user shared from 106.13.118.102 port 38596 ssh2 2020-06-21T13:10:07.499531vps773228.ovh.net sshd[8028]: Invalid user inssserver from 106.13.118.102 port 57902 ...	2020-06-21 19:59:42
106.13.118.102	attackspambots	Invalid user nua from 106.13.118.102 port 60614	2020-05-23 07:32:06
106.13.118.102	attackspam	May 20 05:06:22 ny01 sshd[23272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.102 May 20 05:06:23 ny01 sshd[23272]: Failed password for invalid user mvb from 106.13.118.102 port 37996 ssh2 May 20 05:11:23 ny01 sshd[24013]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.102	2020-05-20 19:15:39
106.13.118.102	attackspambots	May 15 18:14:22 ip-172-31-62-245 sshd\[24435\]: Invalid user echo from 106.13.118.102\ May 15 18:14:24 ip-172-31-62-245 sshd\[24435\]: Failed password for invalid user echo from 106.13.118.102 port 44158 ssh2\ May 15 18:18:32 ip-172-31-62-245 sshd\[24470\]: Invalid user writing from 106.13.118.102\ May 15 18:18:33 ip-172-31-62-245 sshd\[24470\]: Failed password for invalid user writing from 106.13.118.102 port 60676 ssh2\ May 15 18:22:20 ip-172-31-62-245 sshd\[24500\]: Invalid user canada from 106.13.118.102\	2020-05-16 04:31:02
106.13.118.102	attackbots	Invalid user helpdesk from 106.13.118.102 port 44412	2020-05-14 16:05:22
106.13.118.102	attackbots	May 9 02:52:34 sshd\[24187\]: Invalid user server from 106.13.118.102May 9 02:52:36 sshd\[24187\]: Failed password for invalid user server from 106.13.118.102 port 39730 ssh2 ...	2020-05-09 12:05:02
106.13.118.102	attackbotsspam	May 4 14:15:23 tuxlinux sshd[12484]: Invalid user flow from 106.13.118.102 port 60488 May 4 14:15:23 tuxlinux sshd[12484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.102 May 4 14:15:23 tuxlinux sshd[12484]: Invalid user flow from 106.13.118.102 port 60488 May 4 14:15:23 tuxlinux sshd[12484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.102 May 4 14:15:23 tuxlinux sshd[12484]: Invalid user flow from 106.13.118.102 port 60488 May 4 14:15:23 tuxlinux sshd[12484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.102 May 4 14:15:25 tuxlinux sshd[12484]: Failed password for invalid user flow from 106.13.118.102 port 60488 ssh2 ...	2020-05-04 20:56:03
106.13.118.216	attack	Mar 21 05:17:36 XXX sshd[49340]: Invalid user adra from 106.13.118.216 port 44068	2020-03-21 14:52:59
106.13.118.216	attack	Mar 18 15:11:49 localhost sshd\[17829\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.216 user=root Mar 18 15:11:51 localhost sshd\[17829\]: Failed password for root from 106.13.118.216 port 59356 ssh2 Mar 18 15:14:30 localhost sshd\[18512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.216 user=root	2020-03-19 04:12:09
106.13.118.216	attack	Feb 25 02:29:12 hcbbdb sshd\[10259\]: Invalid user docker from 106.13.118.216 Feb 25 02:29:12 hcbbdb sshd\[10259\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.216 Feb 25 02:29:14 hcbbdb sshd\[10259\]: Failed password for invalid user docker from 106.13.118.216 port 58978 ssh2 Feb 25 02:35:37 hcbbdb sshd\[10976\]: Invalid user dark from 106.13.118.216 Feb 25 02:35:37 hcbbdb sshd\[10976\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.216	2020-02-25 10:36:01
106.13.118.216	attackspambots	Feb 15 07:44:21 silence02 sshd[15142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.216 Feb 15 07:44:23 silence02 sshd[15142]: Failed password for invalid user user3 from 106.13.118.216 port 43360 ssh2 Feb 15 07:48:37 silence02 sshd[15406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.216	2020-02-15 15:18:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.118.162
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44372
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.118.162.			IN	A

;; AUTHORITY SECTION:
.			363	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120502 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 06 09:33:59 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 162.118.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 162.118.13.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
221.195.189.145	attackspambots	Sep 11 05:39:31 eventyay sshd[19537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.195.189.145 Sep 11 05:39:33 eventyay sshd[19537]: Failed password for invalid user ts3serv from 221.195.189.145 port 38126 ssh2 Sep 11 05:45:08 eventyay sshd[19700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.195.189.145 ...	2019-09-11 13:28:28
177.130.137.34	attackspambots	Unauthorized SMTP/IMAP/POP3 connection attempt	2019-09-11 13:07:46
179.108.245.181	attack	Unauthorized SMTP/IMAP/POP3 connection attempt	2019-09-11 12:56:20
189.89.213.52	attackbots	Unauthorized SMTP/IMAP/POP3 connection attempt	2019-09-11 12:53:32
125.18.118.208	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-11 01:21:42,925 INFO [amun_request_handler] PortScan Detected on Port: 445 (125.18.118.208)	2019-09-11 13:24:22
177.155.206.225	attackbots	Unauthorized SMTP/IMAP/POP3 connection attempt	2019-09-11 12:57:36
131.0.166.78	attackbotsspam	Unauthorized SMTP/IMAP/POP3 connection attempt	2019-09-11 13:11:23
37.110.68.98	attackbotsspam	Unauthorized SSH connection attempt	2019-09-11 13:39:17
60.25.216.238	attackbotsspam	Sep 10 23:56:10 pl3server sshd[500284]: reveeclipse mapping checking getaddrinfo for no-data [60.25.216.238] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 10 23:56:10 pl3server sshd[500284]: Invalid user admin from 60.25.216.238 Sep 10 23:56:10 pl3server sshd[500284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.25.216.238 Sep 10 23:56:11 pl3server sshd[500284]: Failed password for invalid user admin from 60.25.216.238 port 47938 ssh2 Sep 10 23:56:12 pl3server sshd[500284]: Connection closed by 60.25.216.238 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=60.25.216.238	2019-09-11 12:49:15
67.219.150.82	attack	Port scan	2019-09-11 12:38:33
80.82.78.85	attack	UTC: 2019-09-10 port: 25/tcp	2019-09-11 13:02:37
123.207.74.24	attack	2019-09-11T05:26:40.312216lon01.zurich-datacenter.net sshd\[11571\]: Invalid user dev from 123.207.74.24 port 38560 2019-09-11T05:26:40.317330lon01.zurich-datacenter.net sshd\[11571\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.74.24 2019-09-11T05:26:42.496075lon01.zurich-datacenter.net sshd\[11571\]: Failed password for invalid user dev from 123.207.74.24 port 38560 ssh2 2019-09-11T05:31:45.170697lon01.zurich-datacenter.net sshd\[11711\]: Invalid user teamspeak3 from 123.207.74.24 port 54276 2019-09-11T05:31:45.177267lon01.zurich-datacenter.net sshd\[11711\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.74.24 ...	2019-09-11 13:26:37
111.79.105.87	attack	Sep 10 23:54:09 venus sshd[5794]: Invalid user pi from 111.79.105.87 Sep 10 23:54:09 venus sshd[5796]: Invalid user pi from 111.79.105.87 Sep 10 23:54:10 venus sshd[5794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.79.105.87 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=111.79.105.87	2019-09-11 12:46:46
80.82.78.104	attack	Scanning for open ports, vulnerability.	2019-09-11 12:38:01
139.59.170.23	attackbotsspam	Sep 11 00:12:38 sshgateway sshd\[17644\]: Invalid user azureuser from 139.59.170.23 Sep 11 00:12:38 sshgateway sshd\[17644\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.170.23 Sep 11 00:12:40 sshgateway sshd\[17644\]: Failed password for invalid user azureuser from 139.59.170.23 port 49102 ssh2	2019-09-11 12:45:43

Recently Reported IPs

123.148.208.103	112.245.251.193	219.84.236.108	122.232.201.42
64.225.39.2	116.202.115.84	191.31.77.51	116.109.61.159
71.6.232.9	232.2.249.47	11.24.171.182	90.100.242.77
166.139.142.29	96.211.190.107	42.149.40.191	165.55.200.69
100.231.167.151	111.59.241.35	111.11.103.198	40.212.140.43