106.13.39.59 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.13.39.56	attack	Sep 30 02:10:25 ajax sshd[978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.39.56 Sep 30 02:10:26 ajax sshd[978]: Failed password for invalid user job from 106.13.39.56 port 43144 ssh2	2020-09-30 09:56:41
106.13.39.56	attackbots	Invalid user test from 106.13.39.56 port 43108	2020-09-30 02:49:40
106.13.39.56	attackbots	Sep 29 10:31:13 ip-172-31-42-142 sshd\[1572\]: Invalid user magic from 106.13.39.56\ Sep 29 10:31:15 ip-172-31-42-142 sshd\[1572\]: Failed password for invalid user magic from 106.13.39.56 port 51132 ssh2\ Sep 29 10:34:21 ip-172-31-42-142 sshd\[1591\]: Invalid user demo2 from 106.13.39.56\ Sep 29 10:34:24 ip-172-31-42-142 sshd\[1591\]: Failed password for invalid user demo2 from 106.13.39.56 port 35768 ssh2\ Sep 29 10:37:41 ip-172-31-42-142 sshd\[1615\]: Failed password for root from 106.13.39.56 port 48630 ssh2\	2020-09-29 18:52:17
106.13.39.56	attack	Sep 26 15:07:45 firewall sshd[32580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.39.56 Sep 26 15:07:45 firewall sshd[32580]: Invalid user sami from 106.13.39.56 Sep 26 15:07:46 firewall sshd[32580]: Failed password for invalid user sami from 106.13.39.56 port 52074 ssh2 ...	2020-09-27 03:59:00
106.13.39.56	attack	Invalid user leandro from 106.13.39.56 port 44138	2020-09-26 20:02:35
106.13.39.56	attack	2020-09-24T21:15:01.0452211495-001 sshd[57159]: Invalid user gogs from 106.13.39.56 port 39018 2020-09-24T21:15:01.0483161495-001 sshd[57159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.39.56 2020-09-24T21:15:01.0452211495-001 sshd[57159]: Invalid user gogs from 106.13.39.56 port 39018 2020-09-24T21:15:03.2740591495-001 sshd[57159]: Failed password for invalid user gogs from 106.13.39.56 port 39018 ssh2 2020-09-24T21:17:55.6998301495-001 sshd[57354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.39.56 user=root 2020-09-24T21:17:57.4790901495-001 sshd[57354]: Failed password for root from 106.13.39.56 port 57938 ssh2 ...	2020-09-25 10:37:59
106.13.39.56	attackspambots	(sshd) Failed SSH login from 106.13.39.56 (CN/China/-): 5 in the last 3600 secs	2020-08-25 22:44:30
106.13.39.56	attackspambots	2020-08-19T23:51:57.815052linuxbox-skyline sshd[6746]: Invalid user le from 106.13.39.56 port 49744 ...	2020-08-20 15:35:20
106.13.39.56	attackspam	Aug 6 07:11:34 sshgateway sshd\[23780\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.39.56 user=root Aug 6 07:11:36 sshgateway sshd\[23780\]: Failed password for root from 106.13.39.56 port 44874 ssh2 Aug 6 07:18:02 sshgateway sshd\[23835\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.39.56 user=root	2020-08-06 20:15:18
106.13.39.56	attackbotsspam	Aug 5 01:38:16 srv-ubuntu-dev3 sshd[67629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.39.56 user=root Aug 5 01:38:18 srv-ubuntu-dev3 sshd[67629]: Failed password for root from 106.13.39.56 port 38424 ssh2 Aug 5 01:40:21 srv-ubuntu-dev3 sshd[67870]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.39.56 user=root Aug 5 01:40:23 srv-ubuntu-dev3 sshd[67870]: Failed password for root from 106.13.39.56 port 43894 ssh2 Aug 5 01:42:28 srv-ubuntu-dev3 sshd[68086]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.39.56 user=root Aug 5 01:42:31 srv-ubuntu-dev3 sshd[68086]: Failed password for root from 106.13.39.56 port 49360 ssh2 Aug 5 01:44:37 srv-ubuntu-dev3 sshd[68334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.39.56 user=root Aug 5 01:44:40 srv-ubuntu-dev3 sshd[68334]: Failed password ...	2020-08-05 07:48:19
106.13.39.56	attackspambots	Aug 3 19:26:31 eventyay sshd[20481]: Failed password for root from 106.13.39.56 port 39160 ssh2 Aug 3 19:31:23 eventyay sshd[20620]: Failed password for root from 106.13.39.56 port 43382 ssh2 ...	2020-08-04 03:23:18
106.13.39.56	attackspambots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-31T07:31:18Z and 2020-07-31T07:38:18Z	2020-07-31 16:40:39
106.13.39.56	attack	Invalid user iot from 106.13.39.56 port 38210	2020-07-28 18:16:46
106.13.39.56	attackspambots	Jul 21 14:32:44 mockhub sshd[26456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.39.56 Jul 21 14:32:45 mockhub sshd[26456]: Failed password for invalid user celeste from 106.13.39.56 port 45714 ssh2 ...	2020-07-22 07:22:54
106.13.39.56	attack	Jul 5 20:33:24 sshgateway sshd\[13256\]: Invalid user erika from 106.13.39.56 Jul 5 20:33:24 sshgateway sshd\[13256\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.39.56 Jul 5 20:33:27 sshgateway sshd\[13256\]: Failed password for invalid user erika from 106.13.39.56 port 50826 ssh2	2020-07-06 06:31:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.39.59
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25511
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.13.39.59.			IN	A

;; AUTHORITY SECTION:
.			462	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 10:46:37 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 59.39.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 59.39.13.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
213.149.103.132	attack	WordPress wp-login brute force :: 213.149.103.132 0.140 BYPASS [29/Sep/2019:04:40:22 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-09-29 03:14:58
178.128.238.248	attackbotsspam	Sep 28 14:51:58 ny01 sshd[25780]: Failed password for root from 178.128.238.248 port 38320 ssh2 Sep 28 14:55:59 ny01 sshd[26896]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.238.248 Sep 28 14:56:01 ny01 sshd[26896]: Failed password for invalid user gmail from 178.128.238.248 port 51128 ssh2	2019-09-29 03:35:41
41.89.160.13	attack	Sep 28 08:37:44 hanapaa sshd\[15368\]: Invalid user petru from 41.89.160.13 Sep 28 08:37:44 hanapaa sshd\[15368\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.89.160.13 Sep 28 08:37:46 hanapaa sshd\[15368\]: Failed password for invalid user petru from 41.89.160.13 port 38622 ssh2 Sep 28 08:43:04 hanapaa sshd\[15958\]: Invalid user randall from 41.89.160.13 Sep 28 08:43:04 hanapaa sshd\[15958\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.89.160.13	2019-09-29 03:46:01
58.56.9.5	attackbotsspam	Sep 28 20:40:42 microserver sshd[62307]: Invalid user abelard from 58.56.9.5 port 60126 Sep 28 20:40:42 microserver sshd[62307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.56.9.5 Sep 28 20:40:44 microserver sshd[62307]: Failed password for invalid user abelard from 58.56.9.5 port 60126 ssh2 Sep 28 20:45:07 microserver sshd[62877]: Invalid user isabel from 58.56.9.5 port 36380 Sep 28 20:45:07 microserver sshd[62877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.56.9.5 Sep 28 20:57:53 microserver sshd[64607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.56.9.5 user=root Sep 28 20:57:56 microserver sshd[64607]: Failed password for root from 58.56.9.5 port 49868 ssh2 Sep 28 21:02:16 microserver sshd[65269]: Invalid user ev from 58.56.9.5 port 54398 Sep 28 21:02:16 microserver sshd[65269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost	2019-09-29 03:25:52
174.75.238.91	attackbots	Brute force attempt	2019-09-29 03:16:54
112.35.0.253	attackbots	2019-09-28T20:55:10.409522centos sshd\[16943\]: Invalid user temp from 112.35.0.253 port 56949 2019-09-28T20:55:10.414464centos sshd\[16943\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.35.0.253 2019-09-28T20:55:12.933213centos sshd\[16943\]: Failed password for invalid user temp from 112.35.0.253 port 56949 ssh2	2019-09-29 03:29:20
190.64.141.18	attack	$f2bV_matches	2019-09-29 03:31:34
42.200.106.20	attackspambots	[SatSep2814:27:37.6997652019][:error][pid4918:tid47123242419968][client42.200.106.20:40142][client42.200.106.20]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][severity"CRITICAL"][hostname"www.ilgiornaledelticino.ch"][uri"/xxx.sql"][unique_id"XY9RuTZZ@6h78vMmw87QvQAAAEo"][SatSep2814:27:38.7601872019][:error][pid4696:tid47123265533696][client42.200.106.20:40524][client42.200.106.20]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][severity	2019-09-29 03:30:44
162.243.58.222	attack	Sep 28 14:34:54 web8 sshd\[17926\]: Invalid user smmsp from 162.243.58.222 Sep 28 14:34:54 web8 sshd\[17926\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.58.222 Sep 28 14:34:56 web8 sshd\[17926\]: Failed password for invalid user smmsp from 162.243.58.222 port 49278 ssh2 Sep 28 14:39:08 web8 sshd\[19896\]: Invalid user hr from 162.243.58.222 Sep 28 14:39:08 web8 sshd\[19896\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.58.222	2019-09-29 03:35:02
170.245.112.162	attackspambots	SPF Fail sender not permitted to send mail for @fbnet.com.br / Sent mail to target address hacked/leaked from abandonia in 2016	2019-09-29 03:13:55
138.59.219.47	attack	Sep 28 15:31:57 ny01 sshd[1354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.59.219.47 Sep 28 15:31:59 ny01 sshd[1354]: Failed password for invalid user zn from 138.59.219.47 port 44557 ssh2 Sep 28 15:37:01 ny01 sshd[2248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.59.219.47	2019-09-29 03:38:30
106.12.198.21	attackbotsspam	Sep 28 09:21:23 auw2 sshd\[21828\]: Invalid user bart from 106.12.198.21 Sep 28 09:21:23 auw2 sshd\[21828\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.198.21 Sep 28 09:21:25 auw2 sshd\[21828\]: Failed password for invalid user bart from 106.12.198.21 port 50124 ssh2 Sep 28 09:25:56 auw2 sshd\[22231\]: Invalid user dsjoffice from 106.12.198.21 Sep 28 09:25:56 auw2 sshd\[22231\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.198.21	2019-09-29 03:31:22
182.50.135.32	attackbotsspam	xmlrpc attack	2019-09-29 03:51:18
220.225.126.55	attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2019-09-29 03:39:54
190.202.54.12	attackbotsspam	Automated report - ssh fail2ban: Sep 28 20:13:14 authentication failure Sep 28 20:13:16 wrong password, user=tracy, port=30341, ssh2 Sep 28 20:18:23 authentication failure	2019-09-29 03:20:56

Recently Reported IPs

106.13.223.200	106.13.28.184	106.14.120.37	106.14.169.102
106.14.201.243	106.14.247.124	106.14.93.229	106.45.8.132
106.44.7.137	106.45.8.15	106.4.161.153	106.45.8.143
106.45.8.144	106.45.3.215	106.45.8.134	106.45.8.184
106.45.8.162	106.42.252.79	106.45.8.236	106.45.8.57