106.13.180.245

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Sep 29 12:39:13 ns3164893 sshd[16701]: Failed password for root from 106.13.180.245 port 43330 ssh2 Sep 29 12:50:57 ns3164893 sshd[17288]: Invalid user deploy from 106.13.180.245 port 50262 ...	2020-09-30 01:25:56
attack	2020-09-28T22:51:41.780417shield sshd\[28726\]: Invalid user oracle from 106.13.180.245 port 37558 2020-09-28T22:51:41.788449shield sshd\[28726\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.245 2020-09-28T22:51:43.579976shield sshd\[28726\]: Failed password for invalid user oracle from 106.13.180.245 port 37558 ssh2 2020-09-28T22:56:17.552419shield sshd\[29465\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.245 user=root 2020-09-28T22:56:18.899167shield sshd\[29465\]: Failed password for root from 106.13.180.245 port 48474 ssh2	2020-09-29 17:25:04
attack	Failed password for invalid user normanov from 106.13.180.245 port 40428 ssh2	2020-07-10 12:07:23
attackbotsspam	Jun 23 06:20:15 h2779839 sshd[32335]: Invalid user spark from 106.13.180.245 port 54562 Jun 23 06:20:15 h2779839 sshd[32335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.245 Jun 23 06:20:15 h2779839 sshd[32335]: Invalid user spark from 106.13.180.245 port 54562 Jun 23 06:20:16 h2779839 sshd[32335]: Failed password for invalid user spark from 106.13.180.245 port 54562 ssh2 Jun 23 06:21:47 h2779839 sshd[32366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.245 user=root Jun 23 06:21:49 h2779839 sshd[32366]: Failed password for root from 106.13.180.245 port 38746 ssh2 Jun 23 06:23:29 h2779839 sshd[32419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.245 user=root Jun 23 06:23:31 h2779839 sshd[32419]: Failed password for root from 106.13.180.245 port 51182 ssh2 Jun 23 06:25:15 h2779839 sshd[32486]: pam_unix(sshd:auth): authentic ...	2020-06-23 14:12:02
attack	$f2bV_matches	2020-05-25 12:43:16
attackspam	Invalid user chong from 106.13.180.245 port 53954	2020-05-01 18:19:06
attackspambots	Invalid user ubuntu from 106.13.180.245 port 46342	2020-04-19 02:10:28
attack	Apr 7 01:40:43 vserver sshd\[27527\]: Invalid user struts2 from 106.13.180.245Apr 7 01:40:45 vserver sshd\[27527\]: Failed password for invalid user struts2 from 106.13.180.245 port 54472 ssh2Apr 7 01:47:12 vserver sshd\[27577\]: Invalid user jhesrhel from 106.13.180.245Apr 7 01:47:13 vserver sshd\[27577\]: Failed password for invalid user jhesrhel from 106.13.180.245 port 37998 ssh2 ...	2020-04-07 09:10:40
attackspam	$f2bV_matches	2020-03-09 13:56:47
attackbotsspam	Feb 16 23:53:46 legacy sshd[12307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.245 Feb 16 23:53:48 legacy sshd[12307]: Failed password for invalid user oracle from 106.13.180.245 port 49938 ssh2 Feb 16 23:57:49 legacy sshd[12570]: Failed password for root from 106.13.180.245 port 46812 ssh2 ...	2020-02-17 07:04:01
attackspam	SASL PLAIN auth failed: ruser=...	2020-01-08 07:42:16
attackspambots	Unauthorized connection attempt detected from IP address 106.13.180.245 to port 2220 [J]	2020-01-06 09:49:52
attack	Dec 31 23:04:10 zeus sshd[30785]: Failed password for backup from 106.13.180.245 port 58634 ssh2 Dec 31 23:07:07 zeus sshd[30877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.245 Dec 31 23:07:10 zeus sshd[30877]: Failed password for invalid user saksvik from 106.13.180.245 port 59320 ssh2 Dec 31 23:10:06 zeus sshd[31082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.245	2020-01-01 07:47:24
attackspambots	Dec 26 08:09:40 pi sshd\[26733\]: Invalid user ts3sleep from 106.13.180.245 port 38774 Dec 26 08:09:40 pi sshd\[26733\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.245 Dec 26 08:09:42 pi sshd\[26733\]: Failed password for invalid user ts3sleep from 106.13.180.245 port 38774 ssh2 Dec 26 08:12:13 pi sshd\[26771\]: Invalid user hunsucker from 106.13.180.245 port 56356 Dec 26 08:12:13 pi sshd\[26771\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.245 ...	2019-12-26 17:49:02

Comments on same subnet:

IP	Type	Details	Datetime
106.13.180.44	attackspam	Jun 10 22:29:37 vps639187 sshd\[13247\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.44 user=root Jun 10 22:29:39 vps639187 sshd\[13247\]: Failed password for root from 106.13.180.44 port 40600 ssh2 Jun 10 22:33:02 vps639187 sshd\[13252\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.44 user=root ...	2020-06-11 04:45:51
106.13.180.44	attackbotsspam	Jun 5 12:43:59 itv-usvr-01 sshd[15667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.44 user=root Jun 5 12:44:01 itv-usvr-01 sshd[15667]: Failed password for root from 106.13.180.44 port 38212 ssh2 Jun 5 12:47:35 itv-usvr-01 sshd[15781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.44 user=root Jun 5 12:47:37 itv-usvr-01 sshd[15781]: Failed password for root from 106.13.180.44 port 56914 ssh2	2020-06-05 17:26:50
106.13.180.44	attackspam	May 26 07:23:56 marvibiene sshd[51870]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.44 user=root May 26 07:23:59 marvibiene sshd[51870]: Failed password for root from 106.13.180.44 port 59694 ssh2 May 26 07:33:28 marvibiene sshd[51979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.44 user=root May 26 07:33:30 marvibiene sshd[51979]: Failed password for root from 106.13.180.44 port 49506 ssh2 ...	2020-05-26 15:40:20
106.13.180.44	attackbotsspam	$f2bV_matches	2020-05-15 04:23:40
106.13.180.225	attackspam	Automatic report BANNED IP	2020-03-18 04:59:40
106.13.180.225	attackbotsspam	3x Failed Password	2020-03-09 06:44:20
106.13.180.113	attackbotsspam	Feb 16 13:23:29 sso sshd[18343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.113 Feb 16 13:23:30 sso sshd[18343]: Failed password for invalid user daedalus from 106.13.180.113 port 49664 ssh2 ...	2020-02-16 20:40:46
106.13.180.113	attack	Jan 29 09:01:43 sd-53420 sshd\[32465\]: Invalid user r from 106.13.180.113 Jan 29 09:01:43 sd-53420 sshd\[32465\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.113 Jan 29 09:01:45 sd-53420 sshd\[32465\]: Failed password for invalid user r from 106.13.180.113 port 56782 ssh2 Jan 29 09:04:44 sd-53420 sshd\[350\]: Invalid user rootalias from 106.13.180.113 Jan 29 09:04:44 sd-53420 sshd\[350\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.113 ...	2020-01-29 16:47:52
106.13.180.225	attackspam	Invalid user kiran from 106.13.180.225 port 55718	2020-01-26 06:53:44
106.13.180.113	attackspambots	Unauthorized connection attempt detected from IP address 106.13.180.113 to port 2220 [J]	2020-01-25 03:19:15
106.13.180.225	attack	Unauthorized connection attempt detected from IP address 106.13.180.225 to port 2220 [J]	2020-01-23 15:30:26
106.13.180.113	attackspam	Dec 29 22:28:04 hell sshd[27050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.113 Dec 29 22:28:06 hell sshd[27050]: Failed password for invalid user hofmeister from 106.13.180.113 port 52466 ssh2 ...	2019-12-30 05:40:29
106.13.180.113	attack	Tried sshing with brute force.	2019-12-24 01:42:33
106.13.180.113	attack	2019-12-22T11:53:49.723938 sshd[13642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.113 user=mysql 2019-12-22T11:53:51.341445 sshd[13642]: Failed password for mysql from 106.13.180.113 port 58180 ssh2 2019-12-22T12:01:26.741814 sshd[13903]: Invalid user server from 106.13.180.113 port 48998 2019-12-22T12:01:26.756512 sshd[13903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.180.113 2019-12-22T12:01:26.741814 sshd[13903]: Invalid user server from 106.13.180.113 port 48998 2019-12-22T12:01:28.444406 sshd[13903]: Failed password for invalid user server from 106.13.180.113 port 48998 ssh2 ...	2019-12-22 19:14:37

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.180.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64901
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.180.245.			IN	A

;; AUTHORITY SECTION:
.			325	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122600 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 26 17:48:58 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 245.180.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 245.180.13.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.69.108.35	attack	REQUESTED PAGE: /test/wp-login.php	2020-08-18 03:28:28
141.144.61.39	attack	Aug 17 19:36:39 124388 sshd[7027]: Failed password for invalid user justin from 141.144.61.39 port 63040 ssh2 Aug 17 19:40:18 124388 sshd[7364]: Invalid user naresh from 141.144.61.39 port 32924 Aug 17 19:40:18 124388 sshd[7364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.144.61.39 Aug 17 19:40:18 124388 sshd[7364]: Invalid user naresh from 141.144.61.39 port 32924 Aug 17 19:40:19 124388 sshd[7364]: Failed password for invalid user naresh from 141.144.61.39 port 32924 ssh2	2020-08-18 03:53:46
113.169.140.129	attack	Unauthorized connection attempt from IP address 113.169.140.129 on Port 445(SMB)	2020-08-18 03:54:58
103.48.192.48	attackspambots	Aug 17 19:08:06 localhost sshd[77529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.48.192.48 user=root Aug 17 19:08:08 localhost sshd[77529]: Failed password for root from 103.48.192.48 port 34270 ssh2 Aug 17 19:11:33 localhost sshd[77893]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.48.192.48 user=root Aug 17 19:11:35 localhost sshd[77893]: Failed password for root from 103.48.192.48 port 62579 ssh2 Aug 17 19:15:00 localhost sshd[78467]: Invalid user admin from 103.48.192.48 port 34387 ...	2020-08-18 03:55:12
213.6.8.38	attack	Aug 17 16:48:13 vmd17057 sshd[4217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.6.8.38 Aug 17 16:48:15 vmd17057 sshd[4217]: Failed password for invalid user jyu from 213.6.8.38 port 46935 ssh2 ...	2020-08-18 03:32:14
103.48.190.32	attackspam	Invalid user wjy from 103.48.190.32 port 46768	2020-08-18 03:27:06
117.18.12.134	attackspambots	HP Universal CMDB Default Credentials Security Bypass Vulnerability	2020-08-18 03:54:27
184.105.247.194	attackbots	TCP (SYN) 184.105.247.194:40227 -> port 8080, len 44	2020-08-18 03:51:21
159.203.35.141	attack	Aug 17 21:31:26 OPSO sshd\[19072\]: Invalid user guang from 159.203.35.141 port 58186 Aug 17 21:31:26 OPSO sshd\[19072\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.35.141 Aug 17 21:31:28 OPSO sshd\[19072\]: Failed password for invalid user guang from 159.203.35.141 port 58186 ssh2 Aug 17 21:36:55 OPSO sshd\[20744\]: Invalid user dominique from 159.203.35.141 port 37898 Aug 17 21:36:55 OPSO sshd\[20744\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.35.141	2020-08-18 03:39:33
78.128.113.116	attackbotsspam	2020-08-17 21:50:10 dovecot_login authenticator failed for $ip-113-116.4vendeta.com.$ \[78.128.113.116\]: 535 Incorrect authentication data $set_id=admin@orogest.it$ 2020-08-17 21:50:17 dovecot_login authenticator failed for $ip-113-116.4vendeta.com.$ \[78.128.113.116\]: 535 Incorrect authentication data 2020-08-17 21:50:26 dovecot_login authenticator failed for $ip-113-116.4vendeta.com.$ \[78.128.113.116\]: 535 Incorrect authentication data 2020-08-17 21:50:31 dovecot_login authenticator failed for $ip-113-116.4vendeta.com.$ \[78.128.113.116\]: 535 Incorrect authentication data 2020-08-17 21:50:43 dovecot_login authenticator failed for $ip-113-116.4vendeta.com.$ \[78.128.113.116\]: 535 Incorrect authentication data	2020-08-18 03:56:02
193.227.24.57	attackspam	1597665638 - 08/17/2020 14:00:38 Host: 193.227.24.57/193.227.24.57 Port: 445 TCP Blocked	2020-08-18 03:42:27
112.85.42.232	attack	Aug 17 21:38:04 abendstille sshd\[12944\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.232 user=root Aug 17 21:38:06 abendstille sshd\[12944\]: Failed password for root from 112.85.42.232 port 27528 ssh2 Aug 17 21:38:08 abendstille sshd\[13017\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.232 user=root Aug 17 21:38:09 abendstille sshd\[12944\]: Failed password for root from 112.85.42.232 port 27528 ssh2 Aug 17 21:38:10 abendstille sshd\[13017\]: Failed password for root from 112.85.42.232 port 20069 ssh2 ...	2020-08-18 03:40:06
193.33.240.91	attackbotsspam	Invalid user tphan from 193.33.240.91 port 43888	2020-08-18 03:50:51
213.135.85.197	attackspambots	2020-08-17T13:51:40.707965devel sshd[19479]: Invalid user eva from 213.135.85.197 port 47458 2020-08-17T13:51:42.573366devel sshd[19479]: Failed password for invalid user eva from 213.135.85.197 port 47458 ssh2 2020-08-17T14:02:31.236982devel sshd[21705]: Invalid user teamspeak from 213.135.85.197 port 49522	2020-08-18 03:35:38
140.143.210.92	attackbotsspam	Aug 17 14:00:43 jane sshd[2361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.210.92 Aug 17 14:00:44 jane sshd[2361]: Failed password for invalid user soporte from 140.143.210.92 port 43394 ssh2 ...	2020-08-18 03:36:00

Recently Reported IPs

14.165.84.206	106.193.10.225	192.168.22.33	123.18.171.18
93.234.223.70	59.95.129.74	117.222.166.102	215.96.151.78
112.211.237.209	81.19.215.174	171.221.170.100	211.222.70.39
186.225.10.244	177.191.22.14	180.244.234.240	79.117.195.100
173.236.168.101	49.235.42.39	40.213.117.30	107.150.29.180