106.13.196.46 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.13.196.51	attackspambots	Oct 13 06:59:41 host2 sshd[95972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.196.51 user=root Oct 13 06:59:42 host2 sshd[95972]: Failed password for root from 106.13.196.51 port 45412 ssh2 Oct 13 07:03:10 host2 sshd[96589]: Invalid user sorin from 106.13.196.51 port 58764 Oct 13 07:03:10 host2 sshd[96589]: Invalid user sorin from 106.13.196.51 port 58764 ...	2020-10-13 13:28:56
106.13.196.51	attackbots	Oct 13 02:53:59 gw1 sshd[5855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.196.51 Oct 13 02:54:01 gw1 sshd[5855]: Failed password for invalid user johanna from 106.13.196.51 port 53818 ssh2 ...	2020-10-13 06:13:38
106.13.196.190	attackbotsspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-09-25 04:46:11
106.13.196.51	attackbotsspam	Invalid user midgear from 106.13.196.51 port 41462	2020-08-20 15:17:42
106.13.196.51	attackspambots	Aug 16 08:21:27 lanister sshd[1316]: Failed password for invalid user jayrock from 106.13.196.51 port 48160 ssh2 Aug 16 08:21:24 lanister sshd[1316]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.196.51 Aug 16 08:21:24 lanister sshd[1316]: Invalid user jayrock from 106.13.196.51 Aug 16 08:21:27 lanister sshd[1316]: Failed password for invalid user jayrock from 106.13.196.51 port 48160 ssh2	2020-08-17 02:29:31
106.13.196.51	attackbots	2020-08-14 14:18:47,147 fail2ban.actions: WARNING [ssh] Ban 106.13.196.51	2020-08-15 04:13:52
106.13.196.51	attackbotsspam	Aug 2 08:06:13 * sshd[22262]: Failed password for root from 106.13.196.51 port 33918 ssh2	2020-08-02 14:42:20
106.13.196.51	attackbotsspam	Jul 28 07:18:11 ns392434 sshd[30945]: Invalid user wxg from 106.13.196.51 port 39224 Jul 28 07:18:11 ns392434 sshd[30945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.196.51 Jul 28 07:18:11 ns392434 sshd[30945]: Invalid user wxg from 106.13.196.51 port 39224 Jul 28 07:18:13 ns392434 sshd[30945]: Failed password for invalid user wxg from 106.13.196.51 port 39224 ssh2 Jul 28 07:19:20 ns392434 sshd[30972]: Invalid user sampson from 106.13.196.51 port 48598 Jul 28 07:19:20 ns392434 sshd[30972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.196.51 Jul 28 07:19:20 ns392434 sshd[30972]: Invalid user sampson from 106.13.196.51 port 48598 Jul 28 07:19:22 ns392434 sshd[30972]: Failed password for invalid user sampson from 106.13.196.51 port 48598 ssh2 Jul 28 07:19:54 ns392434 sshd[30982]: Invalid user v from 106.13.196.51 port 53806	2020-07-28 18:25:57
106.13.196.212	attack	Attempted connection to port 445.	2020-07-17 02:31:21
106.13.196.51	attackbots	Jul 6 07:11:48 server sshd[3367]: Failed password for root from 106.13.196.51 port 54024 ssh2 Jul 6 07:14:07 server sshd[6030]: Failed password for invalid user lpf from 106.13.196.51 port 52612 ssh2 Jul 6 07:16:25 server sshd[8258]: Failed password for invalid user testuser from 106.13.196.51 port 51186 ssh2	2020-07-06 16:17:29
106.13.196.51	attackbots	SSH invalid-user multiple login attempts	2020-06-07 12:37:46
106.13.196.51	attackspam	Jun 5 08:04:40 server sshd[31156]: Failed password for root from 106.13.196.51 port 49220 ssh2 Jun 5 08:08:02 server sshd[1871]: Failed password for root from 106.13.196.51 port 37718 ssh2 Jun 5 08:11:37 server sshd[5989]: Failed password for root from 106.13.196.51 port 54450 ssh2	2020-06-05 15:38:33
106.13.196.51	attackbots	2020-05-30T17:18:52.0816951495-001 sshd[18520]: Failed password for invalid user campbell from 106.13.196.51 port 47410 ssh2 2020-05-30T17:20:37.0595701495-001 sshd[18573]: Invalid user test_app from 106.13.196.51 port 40054 2020-05-30T17:20:37.0668851495-001 sshd[18573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.196.51 2020-05-30T17:20:37.0595701495-001 sshd[18573]: Invalid user test_app from 106.13.196.51 port 40054 2020-05-30T17:20:39.3740991495-001 sshd[18573]: Failed password for invalid user test_app from 106.13.196.51 port 40054 ssh2 2020-05-30T17:22:17.5714271495-001 sshd[18639]: Invalid user teamspeak from 106.13.196.51 port 60928 ...	2020-05-31 06:29:27
106.13.196.51	attackbotsspam	Bruteforce detected by fail2ban	2020-05-09 12:59:05
106.13.196.51	attack	May 2 13:07:16 vps58358 sshd\[28901\]: Invalid user administrator from 106.13.196.51May 2 13:07:17 vps58358 sshd\[28901\]: Failed password for invalid user administrator from 106.13.196.51 port 51308 ssh2May 2 13:09:28 vps58358 sshd\[29000\]: Invalid user noreply from 106.13.196.51May 2 13:09:30 vps58358 sshd\[29000\]: Failed password for invalid user noreply from 106.13.196.51 port 53070 ssh2May 2 13:11:36 vps58358 sshd\[29043\]: Failed password for root from 106.13.196.51 port 54820 ssh2May 2 13:13:46 vps58358 sshd\[29072\]: Invalid user user01 from 106.13.196.51 ...	2020-05-02 22:19:04

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.196.46
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32581
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.13.196.46.			IN	A

;; AUTHORITY SECTION:
.			133	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 18:42:49 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 46.196.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 46.196.13.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
36.88.15.207	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-05 04:02:23
185.220.102.250	attack	Sep 4 21:01:40 piServer sshd[9394]: Failed password for root from 185.220.102.250 port 31576 ssh2 Sep 4 21:01:44 piServer sshd[9394]: Failed password for root from 185.220.102.250 port 31576 ssh2 Sep 4 21:01:47 piServer sshd[9394]: Failed password for root from 185.220.102.250 port 31576 ssh2 Sep 4 21:01:50 piServer sshd[9394]: Failed password for root from 185.220.102.250 port 31576 ssh2 ...	2020-09-05 03:55:40
84.228.99.16	attackbots	Brute forcing RDP port 3389	2020-09-05 03:47:24
180.101.145.234	attackspambots	Sep 4 18:01:37 mail postfix/smtpd[129508]: warning: unknown[180.101.145.234]: SASL LOGIN authentication failed: generic failure Sep 4 18:01:38 mail postfix/smtpd[129508]: warning: unknown[180.101.145.234]: SASL LOGIN authentication failed: generic failure Sep 4 18:01:40 mail postfix/smtpd[129508]: warning: unknown[180.101.145.234]: SASL LOGIN authentication failed: generic failure ...	2020-09-05 04:04:23
186.116.81.104	attack	Unauthorised access (Sep 3) SRC=186.116.81.104 LEN=52 TOS=0x10 PREC=0x40 TTL=115 ID=11079 DF TCP DPT=445 WINDOW=8192 SYN	2020-09-05 04:14:38
119.29.121.229	attackbots	2020-09-03 15:25:06 server sshd[68398]: Failed password for invalid user root from 119.29.121.229 port 39896 ssh2	2020-09-05 03:52:41
207.58.170.145	attackspambots	Received: from netlemonger.com (207.58.170.145.nettlemonger.com. [207.58.170.145]) by mx.google.com with ESMTPS id e1si823792qka.206.2020.09.03.00.00.11 for <> (version=TLS1 cipher=ECDHE-ECDSA-AES128-SHA bits=128/128); Thu, 03 Sep 2020 00:00:11 -0700 (PDT) Received-SPF: neutral (google.com: 207.58.170.145 is neither permitted nor denied by best guess record for domain of return@restojob.lp) client-ip=207.58.170.145; Authentication-Results: mx.google.com; dkim=pass header.i=@nettlemonger.com header.s=key1 header.b=VfrF941Y; spf=neutral (google.com: 207.58.170.145 is neither permitted nor denied by best guess record for domain of return@restojob.lp) smtp.mailfrom=return@restojob.lp; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=nettlemonger.com	2020-09-05 04:07:09
123.180.60.235	attack	Sep 3 17:32:18 nirvana postfix/smtpd[31178]: connect from unknown[123.180.60.235] Sep 3 17:32:18 nirvana postfix/smtpd[31178]: lost connection after EHLO from unknown[123.180.60.235] Sep 3 17:32:18 nirvana postfix/smtpd[31178]: disconnect from unknown[123.180.60.235] Sep 3 17:35:46 nirvana postfix/smtpd[24554]: connect from unknown[123.180.60.235] Sep 3 17:35:46 nirvana postfix/smtpd[24554]: lost connection after CONNECT from unknown[123.180.60.235] Sep 3 17:35:46 nirvana postfix/smtpd[24554]: disconnect from unknown[123.180.60.235] Sep 3 17:39:15 nirvana postfix/smtpd[25407]: connect from unknown[123.180.60.235] Sep 3 17:39:15 nirvana postfix/smtpd[25407]: warning: unknown[123.180.60.235]: SASL LOGIN authentication failed: authentication failure Sep 3 17:39:17 nirvana postfix/smtpd[25407]: warning: unknown[123.180.60.235]: SASL LOGIN authentication failed: authentication failure Sep 3 17:39:19 nirvana postfix/smtpd[25407]: warning: unknown[123.180.60.235]: SA........ -------------------------------	2020-09-05 04:11:45
61.247.178.170	attack	2020-09-04T18:58:39.689138vps1033 sshd[24361]: Failed password for invalid user ork from 61.247.178.170 port 46892 ssh2 2020-09-04T19:02:43.616944vps1033 sshd[522]: Invalid user git from 61.247.178.170 port 49374 2020-09-04T19:02:43.622437vps1033 sshd[522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.247.178.170 2020-09-04T19:02:43.616944vps1033 sshd[522]: Invalid user git from 61.247.178.170 port 49374 2020-09-04T19:02:45.590502vps1033 sshd[522]: Failed password for invalid user git from 61.247.178.170 port 49374 ssh2 ...	2020-09-05 03:56:49
49.233.15.54	attackbots	Sep 4 21:08:40 ns382633 sshd\[3474\]: Invalid user bkup from 49.233.15.54 port 33056 Sep 4 21:08:40 ns382633 sshd\[3474\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.15.54 Sep 4 21:08:43 ns382633 sshd\[3474\]: Failed password for invalid user bkup from 49.233.15.54 port 33056 ssh2 Sep 4 21:34:34 ns382633 sshd\[7913\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.15.54 user=root Sep 4 21:34:36 ns382633 sshd\[7913\]: Failed password for root from 49.233.15.54 port 58806 ssh2	2020-09-05 04:06:42
185.110.242.209	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-05 04:10:14
182.122.13.198	attack	Sep 4 21:04:39 rancher-0 sshd[1439697]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.122.13.198 user=root Sep 4 21:04:42 rancher-0 sshd[1439697]: Failed password for root from 182.122.13.198 port 36324 ssh2 ...	2020-09-05 04:00:13
139.99.219.208	attackspam	SSH Brute-Forcing (server2)	2020-09-05 04:10:44
195.54.167.151	attackbots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-09-04T14:59:08Z and 2020-09-04T16:43:51Z	2020-09-05 03:44:28
222.98.173.216	attack	2020-09-03 14:04:23 server sshd[65913]: Failed password for invalid user tts from 222.98.173.216 port 47156 ssh2	2020-09-05 03:54:50

Recently Reported IPs

144.168.166.254	81.22.47.191	119.29.93.1	195.218.128.118
175.176.48.60	146.185.206.142	177.87.68.178	120.89.74.156
172.81.61.113	142.93.99.132	88.204.16.210	149.19.224.37
186.77.56.74	31.206.38.40	59.96.243.64	120.219.96.55
121.179.124.109	80.240.60.134	193.218.118.231	222.129.36.157