106.13.57.123 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.13.57.178	attackspam	1596976400 - 08/09/2020 14:33:20 Host: 106.13.57.178/106.13.57.178 Port: 493 TCP Blocked ...	2020-08-09 21:01:07
106.13.57.178	attackspam	Jun 11 14:48:57 lnxmysql61 sshd[31356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.57.178 Jun 11 14:48:57 lnxmysql61 sshd[31356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.57.178	2020-06-12 01:35:28
106.13.57.178	attackspambots	Brute-Force,SSH	2020-06-03 02:20:15
106.13.57.178	attackbotsspam	2020-05-26T17:41:59.854818 sshd[24582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.57.178 2020-05-26T17:41:59.839931 sshd[24582]: Invalid user test4 from 106.13.57.178 port 38454 2020-05-26T17:42:01.991608 sshd[24582]: Failed password for invalid user test4 from 106.13.57.178 port 38454 ssh2 2020-05-26T19:43:38.438074 sshd[27588]: Invalid user guimond from 106.13.57.178 port 33032 ...	2020-05-27 03:01:57
106.13.57.117	attackbotsspam	2020-05-26T07:26:20.053841abusebot.cloudsearch.cf sshd[15692]: Invalid user guest from 106.13.57.117 port 41798 2020-05-26T07:26:20.058064abusebot.cloudsearch.cf sshd[15692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.57.117 2020-05-26T07:26:20.053841abusebot.cloudsearch.cf sshd[15692]: Invalid user guest from 106.13.57.117 port 41798 2020-05-26T07:26:22.213200abusebot.cloudsearch.cf sshd[15692]: Failed password for invalid user guest from 106.13.57.117 port 41798 ssh2 2020-05-26T07:28:33.230466abusebot.cloudsearch.cf sshd[15810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.57.117 user=root 2020-05-26T07:28:35.977864abusebot.cloudsearch.cf sshd[15810]: Failed password for root from 106.13.57.117 port 42450 ssh2 2020-05-26T07:30:50.080164abusebot.cloudsearch.cf sshd[15936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.57.117 user=root ...	2020-05-26 19:12:46
106.13.57.117	attack	$f2bV_matches	2020-05-14 16:56:23
106.13.57.178	attackbots	odoo8 ...	2020-05-11 06:35:02
106.13.57.117	attack	2020-04-16T07:03:08.161647-07:00 suse-nuc sshd[24772]: Invalid user postgres from 106.13.57.117 port 52102 ...	2020-04-17 02:01:07
106.13.57.117	attackbotsspam	Apr 8 22:34:29 pixelmemory sshd[31345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.57.117 Apr 8 22:34:30 pixelmemory sshd[31345]: Failed password for invalid user postgres from 106.13.57.117 port 49406 ssh2 Apr 8 22:41:40 pixelmemory sshd[435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.57.117 ...	2020-04-09 15:17:38
106.13.57.55	attackbotsspam	Feb 17 19:05:46 odroid64 sshd\[18640\]: Invalid user test3 from 106.13.57.55 Feb 17 19:05:46 odroid64 sshd\[18640\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.57.55 ...	2020-02-18 04:16:33
106.13.57.55	attackspambots	5x Failed Password	2020-02-15 20:32:08
106.13.57.55	attack	Lines containing failures of 106.13.57.55 Feb 5 06:28:36 shared01 sshd[7604]: Invalid user ericmar from 106.13.57.55 port 41862 Feb 5 06:28:36 shared01 sshd[7604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.57.55 Feb 5 06:28:38 shared01 sshd[7604]: Failed password for invalid user ericmar from 106.13.57.55 port 41862 ssh2 Feb 5 06:28:38 shared01 sshd[7604]: Received disconnect from 106.13.57.55 port 41862:11: Bye Bye [preauth] Feb 5 06:28:38 shared01 sshd[7604]: Disconnected from invalid user ericmar 106.13.57.55 port 41862 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.13.57.55	2020-02-07 09:54:47
106.13.57.239	attack	Unauthorized connection attempt detected from IP address 106.13.57.239 to port 2220 [J]	2020-01-07 16:07:43
106.13.57.239	attackspambots	2019-12-20T01:21:56.731078ns547587 sshd\[7233\]: Invalid user versace from 106.13.57.239 port 38360 2019-12-20T01:21:56.736615ns547587 sshd\[7233\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.57.239 2019-12-20T01:21:58.762027ns547587 sshd\[7233\]: Failed password for invalid user versace from 106.13.57.239 port 38360 ssh2 2019-12-20T01:29:31.305687ns547587 sshd\[18810\]: Invalid user helen from 106.13.57.239 port 58390 ...	2019-12-20 15:44:15
106.13.57.216	attack	2019-12-11T08:30:07.126703abusebot-2.cloudsearch.cf sshd\[18727\]: Invalid user ignagni from 106.13.57.216 port 45680	2019-12-11 20:10:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.57.123
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12625
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.13.57.123.			IN	A

;; AUTHORITY SECTION:
.			209	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022052400 1800 900 604800 86400

;; Query time: 91 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue May 24 20:26:35 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 123.57.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 123.57.13.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.16.145.10	attackbots	Sep 7 13:32:10 mail.srvfarm.net postfix/smtps/smtpd[1073013]: warning: unknown[103.16.145.10]: SASL PLAIN authentication failed: Sep 7 13:32:11 mail.srvfarm.net postfix/smtps/smtpd[1073013]: lost connection after AUTH from unknown[103.16.145.10] Sep 7 13:35:46 mail.srvfarm.net postfix/smtpd[1078720]: warning: unknown[103.16.145.10]: SASL PLAIN authentication failed: Sep 7 13:35:46 mail.srvfarm.net postfix/smtpd[1078720]: lost connection after AUTH from unknown[103.16.145.10] Sep 7 13:36:02 mail.srvfarm.net postfix/smtpd[1078718]: warning: unknown[103.16.145.10]: SASL PLAIN authentication failed:	2020-09-12 01:13:12
185.247.224.25	attackspambots	Automatic report - Banned IP Access	2020-09-12 00:54:38
94.102.53.112	attack	Fail2Ban Ban Triggered	2020-09-12 01:03:54
61.218.17.221	attackspam	Icarus honeypot on github	2020-09-12 01:03:25
125.142.85.137	attack	Sep 10 18:23:34 marvibiene sshd[60916]: Invalid user admin from 125.142.85.137 port 37398 Sep 10 18:23:35 marvibiene sshd[60916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.142.85.137 Sep 10 18:23:34 marvibiene sshd[60916]: Invalid user admin from 125.142.85.137 port 37398 Sep 10 18:23:37 marvibiene sshd[60916]: Failed password for invalid user admin from 125.142.85.137 port 37398 ssh2	2020-09-12 00:54:22
113.161.151.29	attackspambots	(imapd) Failed IMAP login from 113.161.151.29 (VN/Vietnam/static.vnpt.vn): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Sep 11 19:38:39 ir1 dovecot[3110802]: imap-login: Disconnected (auth failed, 1 attempts in 4 secs): user=, method=PLAIN, rip=113.161.151.29, lip=5.63.12.44, TLS: Connection closed, session=	2020-09-12 00:57:18
119.29.231.121	attackspam	IP blocked	2020-09-12 00:44:30
2.60.47.165	attack	20/9/10@12:53:41: FAIL: Alarm-Network address from=2.60.47.165 20/9/10@12:53:41: FAIL: Alarm-Network address from=2.60.47.165 ...	2020-09-12 00:50:05
80.227.119.114	attackbotsspam	Sep 10 18:53:13 * sshd[14361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.227.119.114 Sep 10 18:53:15 * sshd[14361]: Failed password for invalid user pi from 80.227.119.114 port 49386 ssh2	2020-09-12 01:09:03
78.96.93.178	attackbots	Sep 11 17:38:41 sshgateway sshd\[17757\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.96.93.178 user=root Sep 11 17:38:43 sshgateway sshd\[17757\]: Failed password for root from 78.96.93.178 port 50168 ssh2 Sep 11 17:45:46 sshgateway sshd\[18719\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.96.93.178 user=root	2020-09-12 00:46:51
141.85.216.231	attack	Sep 11 12:14:00 b-vps wordpress(gpfans.cz)[27527]: Authentication attempt for unknown user buchtic from 141.85.216.231 ...	2020-09-12 00:56:55
217.27.45.236	attackbotsspam	Lines containing failures of 217.27.45.236 Sep 10 14:42:30 neweola sshd[14168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.27.45.236 user=r.r Sep 10 14:42:32 neweola sshd[14168]: Failed password for r.r from 217.27.45.236 port 52076 ssh2 Sep 10 14:42:33 neweola sshd[14168]: Connection closed by authenticating user r.r 217.27.45.236 port 52076 [preauth] Sep 10 14:42:33 neweola sshd[14176]: Invalid user ubnt from 217.27.45.236 port 34571 Sep 10 14:42:33 neweola sshd[14176]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.27.45.236 Sep 10 14:42:36 neweola sshd[14176]: Failed password for invalid user ubnt from 217.27.45.236 port 34571 ssh2 Sep 10 14:42:37 neweola sshd[14176]: Connection closed by invalid user ubnt 217.27.45.236 port 34571 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=217.27.45.236	2020-09-12 01:01:58
172.82.230.3	attackbots	Sep 10 15:28:43 mail.srvfarm.net postfix/smtpd[3138890]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3] Sep 10 15:29:53 mail.srvfarm.net postfix/smtpd[3138891]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3] Sep 10 15:30:58 mail.srvfarm.net postfix/smtpd[3138895]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3] Sep 10 15:33:26 mail.srvfarm.net postfix/smtpd[3138895]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3] Sep 10 15:34:34 mail.srvfarm.net postfix/smtpd[3138895]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3]	2020-09-12 01:21:14
180.166.208.56	attackspam	SMTP brute force	2020-09-12 00:56:22
177.92.244.158	attackbots	Brute force attempt	2020-09-12 01:11:24

Recently Reported IPs

149.172.173.155	71.231.15.187	209.101.181.132	42.112.233.235
43.215.119.101	158.150.227.179	100.137.153.15	159.178.23.188
102.43.146.228	136.60.49.102	89.235.98.217	210.117.49.202
108.149.76.31	22.178.215.51	154.203.190.30	184.31.86.154
103.89.143.96	116.11.241.177	154.233.103.210	152.243.53.40