106.13.14.198 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Nov 25 07:30:11 django sshd[49156]: Invalid user backup from 106.13.14.198 Nov 25 07:30:11 django sshd[49156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 Nov 25 07:30:13 django sshd[49156]: Failed password for invalid user backup from 106.13.14.198 port 53170 ssh2 Nov 25 07:30:13 django sshd[49157]: Received disconnect from 106.13.14.198: 11: Bye Bye Nov 25 07:58:08 django sshd[50544]: Invalid user pease from 106.13.14.198 Nov 25 07:58:08 django sshd[50544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 Nov 25 07:58:10 django sshd[50544]: Failed password for invalid user pease from 106.13.14.198 port 45206 ssh2 Nov 25 07:58:10 django sshd[50545]: Received disconnect from 106.13.14.198: 11: Bye Bye Nov 25 08:05:42 django sshd[50867]: Invalid user phil from 106.13.14.198 Nov 25 08:05:42 django sshd[50867]: pam_unix(sshd:auth): authentication failure; lognam........ -------------------------------	2019-11-25 18:20:37
attackspambots	2019-11-24T15:40:56.307177shield sshd\[30160\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 user=root 2019-11-24T15:40:58.197578shield sshd\[30160\]: Failed password for root from 106.13.14.198 port 41418 ssh2 2019-11-24T15:50:05.416603shield sshd\[1158\]: Invalid user gq from 106.13.14.198 port 46674 2019-11-24T15:50:05.421077shield sshd\[1158\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 2019-11-24T15:50:07.679180shield sshd\[1158\]: Failed password for invalid user gq from 106.13.14.198 port 46674 ssh2	2019-11-24 23:51:07
attackspambots	Nov 23 07:25:48 legacy sshd[26983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 Nov 23 07:25:50 legacy sshd[26983]: Failed password for invalid user be from 106.13.14.198 port 44834 ssh2 Nov 23 07:30:33 legacy sshd[27080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 ...	2019-11-23 14:49:11
attackbots	Nov 23 06:27:50 legacy sshd[25340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 Nov 23 06:27:52 legacy sshd[25340]: Failed password for invalid user tripleX from 106.13.14.198 port 33514 ssh2 Nov 23 06:32:39 legacy sshd[25499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 ...	2019-11-23 13:47:24
attackspambots	Nov 12 14:26:52 webhost01 sshd[29347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 Nov 12 14:26:54 webhost01 sshd[29347]: Failed password for invalid user marketing123 from 106.13.14.198 port 33348 ssh2 ...	2019-11-12 19:45:49
attackspam	Nov 10 11:20:15 vps01 sshd[24122]: Failed password for root from 106.13.14.198 port 57284 ssh2	2019-11-10 18:41:11
attackspambots	Nov 10 00:28:02 vtv3 sshd\[26635\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 user=root Nov 10 00:28:04 vtv3 sshd\[26635\]: Failed password for root from 106.13.14.198 port 49654 ssh2 Nov 10 00:32:13 vtv3 sshd\[29218\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 user=root Nov 10 00:32:15 vtv3 sshd\[29218\]: Failed password for root from 106.13.14.198 port 58528 ssh2 Nov 10 00:36:29 vtv3 sshd\[32075\]: Invalid user aigneis from 106.13.14.198 port 39176 Nov 10 00:36:29 vtv3 sshd\[32075\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 Nov 10 00:49:03 vtv3 sshd\[7173\]: Invalid user sinusbot from 106.13.14.198 port 37568 Nov 10 00:49:03 vtv3 sshd\[7173\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.14.198 Nov 10 00:49:05 vtv3 sshd\[7173\]: Failed password for invalid user sinus	2019-11-10 07:38:28
attackbotsspam	Automatic report - Banned IP Access	2019-11-04 00:23:08

Comments on same subnet:

IP	Type	Details	Datetime
106.13.144.207	attack	Oct 11 17:56:59 firewall sshd[26023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.207 user=root Oct 11 17:57:01 firewall sshd[26023]: Failed password for root from 106.13.144.207 port 43918 ssh2 Oct 11 17:59:14 firewall sshd[26065]: Invalid user deployer from 106.13.144.207 ...	2020-10-12 05:58:47
106.13.144.207	attack	"fail2ban match"	2020-10-11 22:06:34
106.13.144.207	attackbotsspam	"fail2ban match"	2020-10-11 14:04:12
106.13.144.207	attackbots	detected by Fail2Ban	2020-10-11 07:26:02
106.13.147.89	attackspambots	sshd: Failed password for .... from 106.13.147.89 port 33094 ssh2	2020-10-08 00:24:45
106.13.147.89	attackspambots	ssh brute force	2020-10-07 16:32:24
106.13.141.110	attackspam	2 SSH login attempts.	2020-10-07 04:24:41
106.13.141.110	attack	Brute%20Force%20SSH	2020-10-06 20:28:50
106.13.141.110	attackspambots	Oct 6 04:21:19 ns382633 sshd\[2901\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.141.110 user=root Oct 6 04:21:21 ns382633 sshd\[2901\]: Failed password for root from 106.13.141.110 port 54932 ssh2 Oct 6 04:30:01 ns382633 sshd\[3929\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.141.110 user=root Oct 6 04:30:03 ns382633 sshd\[3929\]: Failed password for root from 106.13.141.110 port 57220 ssh2 Oct 6 04:34:07 ns382633 sshd\[4448\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.141.110 user=root	2020-10-06 12:08:48
106.13.142.93	attack	Oct 4 02:51:03 server sshd[11146]: Failed password for root from 106.13.142.93 port 32940 ssh2 Oct 4 02:53:52 server sshd[12520]: Failed password for root from 106.13.142.93 port 46996 ssh2 Oct 4 02:56:41 server sshd[14046]: Failed password for invalid user test from 106.13.142.93 port 32842 ssh2	2020-10-04 09:04:37
106.13.142.93	attack	3x Failed Password	2020-10-04 01:40:47
106.13.142.93	attack	Oct 2 23:03:18 OPSO sshd\[13574\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.142.93 user=root Oct 2 23:03:20 OPSO sshd\[13574\]: Failed password for root from 106.13.142.93 port 35102 ssh2 Oct 2 23:07:12 OPSO sshd\[14255\]: Invalid user oliver from 106.13.142.93 port 36792 Oct 2 23:07:12 OPSO sshd\[14255\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.142.93 Oct 2 23:07:14 OPSO sshd\[14255\]: Failed password for invalid user oliver from 106.13.142.93 port 36792 ssh2	2020-10-03 17:26:26
106.13.146.233	attack	SSH Invalid Login	2020-09-30 09:27:30
106.13.146.233	attackspam	frenzy	2020-09-29 18:20:53
106.13.147.89	attackspam	Sep 14 11:44:01 dev0-dcde-rnet sshd[11712]: Failed password for root from 106.13.147.89 port 34164 ssh2 Sep 14 11:44:29 dev0-dcde-rnet sshd[11718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.147.89 Sep 14 11:44:31 dev0-dcde-rnet sshd[11718]: Failed password for invalid user aclocal from 106.13.147.89 port 36372 ssh2	2020-09-14 19:21:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.14.198
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57290
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.14.198.			IN	A

;; AUTHORITY SECTION:
.			585	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110300 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 04 00:23:04 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 198.14.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 198.14.13.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
174.136.12.109	attack	xmlrpc attack	2020-03-12 07:18:40
93.84.78.193	attackspam	Mar 11 22:12:20 master sshd[3433]: Failed password for invalid user admin from 93.84.78.193 port 48743 ssh2 Mar 11 22:12:28 master sshd[3435]: Failed password for invalid user admin from 93.84.78.193 port 48745 ssh2	2020-03-12 07:44:32
175.140.138.9	attackspambots	suspicious action Wed, 11 Mar 2020 16:14:33 -0300	2020-03-12 07:18:07
106.54.112.173	attack	2020-03-11T22:58:21.094118vps773228.ovh.net sshd[23151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.112.173 user=root 2020-03-11T22:58:23.656483vps773228.ovh.net sshd[23151]: Failed password for root from 106.54.112.173 port 58136 ssh2 2020-03-11T23:01:42.758416vps773228.ovh.net sshd[23233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.112.173 user=root 2020-03-11T23:01:44.582953vps773228.ovh.net sshd[23233]: Failed password for root from 106.54.112.173 port 55228 ssh2 2020-03-11T23:05:11.293511vps773228.ovh.net sshd[23282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.112.173 user=root 2020-03-11T23:05:13.142997vps773228.ovh.net sshd[23282]: Failed password for root from 106.54.112.173 port 52322 ssh2 2020-03-11T23:08:30.149672vps773228.ovh.net sshd[23314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh r ...	2020-03-12 07:15:41
202.77.105.110	attackbotsspam	$f2bV_matches	2020-03-12 07:23:00
187.173.244.3	attack	suspicious action Wed, 11 Mar 2020 16:14:07 -0300	2020-03-12 07:43:53
101.91.119.132	attack	SASL PLAIN auth failed: ruser=...	2020-03-12 07:47:58
198.108.67.48	attackspambots	Icarus honeypot on github	2020-03-12 07:49:36
106.13.45.187	attack	Mar 12 01:54:17 hosting sshd[19896]: Invalid user david from 106.13.45.187 port 48372 Mar 12 01:54:17 hosting sshd[19896]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.45.187 Mar 12 01:54:17 hosting sshd[19896]: Invalid user david from 106.13.45.187 port 48372 Mar 12 01:54:20 hosting sshd[19896]: Failed password for invalid user david from 106.13.45.187 port 48372 ssh2 Mar 12 02:07:14 hosting sshd[22123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.45.187 user=root Mar 12 02:07:16 hosting sshd[22123]: Failed password for root from 106.13.45.187 port 54856 ssh2 ...	2020-03-12 07:19:42
82.195.17.25	attackbots	MIRAI HOST Wed Mar 11 13:14:50 2020 - Child process 34152 handling connection Wed Mar 11 13:14:50 2020 - New connection from: 82.195.17.25:56499 Wed Mar 11 13:14:50 2020 - Sending data to client: [Login: ] Wed Mar 11 13:14:50 2020 - Got data: root Wed Mar 11 13:14:51 2020 - Sending data to client: [Password: ] Wed Mar 11 13:14:51 2020 - Got data: user Wed Mar 11 13:14:53 2020 - Child 34156 granting shell Wed Mar 11 13:14:53 2020 - Child 34152 exiting Wed Mar 11 13:14:53 2020 - Sending data to client: [Logged in] Wed Mar 11 13:14:53 2020 - Sending data to client: [Welcome to MX990 Embedded Linux] Wed Mar 11 13:14:53 2020 - Sending data to client: [[root@dvrdvs /]# ] Wed Mar 11 13:14:53 2020 - Got data: enable system shell sh Wed Mar 11 13:14:53 2020 - Sending data to client: [Command not found] Wed Mar 11 13:14:54 2020 - Sending data to client: [[root@dvrdvs /]# ] Wed Mar 11 13:14:54 2020 - Got data: cat /proc/mounts; /bin/busybox KEESV Wed Mar 11 13:14:54 2020 - Sending data to client: [Bu	2020-03-12 07:21:04
193.56.28.34	attackspambots	Rude login attack (29 tries in 1d)	2020-03-12 07:40:21
45.80.65.1	attack	Mar 11 23:55:40 DAAP sshd[7681]: Invalid user vmail from 45.80.65.1 port 37274 Mar 11 23:55:40 DAAP sshd[7681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.1 Mar 11 23:55:40 DAAP sshd[7681]: Invalid user vmail from 45.80.65.1 port 37274 Mar 11 23:55:42 DAAP sshd[7681]: Failed password for invalid user vmail from 45.80.65.1 port 37274 ssh2 Mar 12 00:03:29 DAAP sshd[7761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.1 user=root Mar 12 00:03:31 DAAP sshd[7761]: Failed password for root from 45.80.65.1 port 42286 ssh2 ...	2020-03-12 07:20:06
115.236.170.78	attack	2020-03-11T23:26:16.834983abusebot-5.cloudsearch.cf sshd[8623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.236.170.78 user=root 2020-03-11T23:26:19.230760abusebot-5.cloudsearch.cf sshd[8623]: Failed password for root from 115.236.170.78 port 48542 ssh2 2020-03-11T23:28:40.484941abusebot-5.cloudsearch.cf sshd[8632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.236.170.78 user=root 2020-03-11T23:28:42.648684abusebot-5.cloudsearch.cf sshd[8632]: Failed password for root from 115.236.170.78 port 48722 ssh2 2020-03-11T23:29:53.211298abusebot-5.cloudsearch.cf sshd[8638]: Invalid user work from 115.236.170.78 port 38022 2020-03-11T23:29:53.216854abusebot-5.cloudsearch.cf sshd[8638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.236.170.78 2020-03-11T23:29:53.211298abusebot-5.cloudsearch.cf sshd[8638]: Invalid user work from 115.236.170.78 port 38022 2 ...	2020-03-12 07:39:31
182.76.74.78	attack	Mar 12 00:21:25 ns382633 sshd\[19890\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.76.74.78 user=root Mar 12 00:21:26 ns382633 sshd\[19890\]: Failed password for root from 182.76.74.78 port 21561 ssh2 Mar 12 00:23:56 ns382633 sshd\[20075\]: Invalid user upload from 182.76.74.78 port 43879 Mar 12 00:23:56 ns382633 sshd\[20075\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.76.74.78 Mar 12 00:23:58 ns382633 sshd\[20075\]: Failed password for invalid user upload from 182.76.74.78 port 43879 ssh2	2020-03-12 07:31:12
201.139.88.19	attack	suspicious action Wed, 11 Mar 2020 16:14:25 -0300	2020-03-12 07:26:10

Recently Reported IPs

207.196.178.91	180.241.247.21	71.52.236.39	34.12.101.74
122.50.129.90	131.74.17.210	173.211.210.241	2.26.132.114
155.69.183.4	32.24.243.239	181.47.85.25	50.154.50.112
8.182.200.223	167.14.99.89	51.62.58.201	48.108.159.72
32.20.12.233	192.112.59.216	88.159.172.184	191.116.5.192