106.13.6.6 - IPInfo

Basic Info

City: unknown

Region: Beijing

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	email spam	2019-11-05 21:56:50

Comments on same subnet:

IP	Type	Details	Datetime
106.13.6.70	attack	2020-10-12T07:58:38+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-10-12 21:39:11
106.13.6.70	attackspambots	Bruteforce detected by fail2ban	2020-10-12 13:10:26
106.13.6.70	attackspambots	Oct 11 20:32:55 marvibiene sshd[28593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.6.70 Oct 11 20:32:56 marvibiene sshd[28593]: Failed password for invalid user mikita from 106.13.6.70 port 41196 ssh2 Oct 11 20:43:25 marvibiene sshd[29265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.6.70	2020-10-12 02:44:05
106.13.6.70	attackspambots	Brute-force attempt banned	2020-10-11 18:35:11
106.13.60.222	attack	Oct 9 06:29:17 lnxmysql61 sshd[14894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.60.222	2020-10-10 04:10:05
106.13.60.222	attackbots	Oct 9 06:29:17 lnxmysql61 sshd[14894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.60.222	2020-10-09 20:06:21
106.13.68.190	attack	2020-10-05 12:31:14 server sshd[82072]: Failed password for invalid user root from 106.13.68.190 port 44152 ssh2	2020-10-06 08:20:41
106.13.68.190	attackspambots	Oct 5 15:02:32 OPSO sshd\[6404\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.190 user=root Oct 5 15:02:35 OPSO sshd\[6404\]: Failed password for root from 106.13.68.190 port 58054 ssh2 Oct 5 15:06:48 OPSO sshd\[7208\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.190 user=root Oct 5 15:06:50 OPSO sshd\[7208\]: Failed password for root from 106.13.68.190 port 47736 ssh2 Oct 5 15:11:07 OPSO sshd\[7913\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.190 user=root	2020-10-06 00:47:30
106.13.68.190	attackspam	SSH login attempts.	2020-10-05 16:46:38
106.13.61.120	attackspam	Invalid user eva from 106.13.61.120 port 42178	2020-10-04 02:15:28
106.13.61.120	attack	2020-10-03T04:54:48.396393yoshi.linuxbox.ninja sshd[3004635]: Failed password for invalid user ping from 106.13.61.120 port 58002 ssh2 2020-10-03T04:57:55.580274yoshi.linuxbox.ninja sshd[3006454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.61.120 user=backup 2020-10-03T04:57:57.630428yoshi.linuxbox.ninja sshd[3006454]: Failed password for backup from 106.13.61.120 port 40414 ssh2 ...	2020-10-03 18:00:46
106.13.63.120	attack	Sep 21 23:20:49 ip-172-31-16-56 sshd\[16633\]: Invalid user test from 106.13.63.120\ Sep 21 23:20:51 ip-172-31-16-56 sshd\[16633\]: Failed password for invalid user test from 106.13.63.120 port 50312 ssh2\ Sep 21 23:25:04 ip-172-31-16-56 sshd\[16724\]: Invalid user stunnel from 106.13.63.120\ Sep 21 23:25:06 ip-172-31-16-56 sshd\[16724\]: Failed password for invalid user stunnel from 106.13.63.120 port 59322 ssh2\ Sep 21 23:29:23 ip-172-31-16-56 sshd\[16784\]: Failed password for root from 106.13.63.120 port 40066 ssh2\	2020-09-23 03:23:16
106.13.63.120	attackspam	Sep 21 23:20:49 ip-172-31-16-56 sshd\[16633\]: Invalid user test from 106.13.63.120\ Sep 21 23:20:51 ip-172-31-16-56 sshd\[16633\]: Failed password for invalid user test from 106.13.63.120 port 50312 ssh2\ Sep 21 23:25:04 ip-172-31-16-56 sshd\[16724\]: Invalid user stunnel from 106.13.63.120\ Sep 21 23:25:06 ip-172-31-16-56 sshd\[16724\]: Failed password for invalid user stunnel from 106.13.63.120 port 59322 ssh2\ Sep 21 23:29:23 ip-172-31-16-56 sshd\[16784\]: Failed password for root from 106.13.63.120 port 40066 ssh2\	2020-09-22 19:34:59
106.13.6.70	attack	Sep 14 08:21:27 ns381471 sshd[31532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.6.70 Sep 14 08:21:29 ns381471 sshd[31532]: Failed password for invalid user admin from 106.13.6.70 port 49026 ssh2	2020-09-14 20:24:14
106.13.6.70	attackspambots	"Unauthorized connection attempt on SSHD detected"	2020-09-14 12:16:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.6.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18261
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.6.6.			IN	A

;; AUTHORITY SECTION:
.			458	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110500 1800 900 604800 86400

;; Query time: 48 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 05 21:56:44 CST 2019
;; MSG SIZE  rcvd: 114

Host info

6.6.13.106.in-addr.arpa has no PTR record

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 6.6.13.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
177.8.155.24	attackbotsspam	21.06.2019 21:44:11 - Login Fail on hMailserver Detected by ELinOX-hMail-A2F	2019-06-22 06:15:21
101.128.72.254	attack	Request: "GET / HTTP/1.1"	2019-06-22 06:06:50
177.223.49.60	attackspam	Request: "GET //administrator//webconfig.txt.php HTTP/1.1"	2019-06-22 06:25:55
185.48.148.183	attack	445/tcp [2019-06-21]1pkt	2019-06-22 06:06:33
190.11.225.59	attack	Request: "GET / HTTP/1.1"	2019-06-22 06:04:23
111.231.71.157	attackbotsspam	$f2bV_matches	2019-06-22 05:55:54
104.168.64.89	attackbots	Request: "GET / HTTP/1.0"	2019-06-22 06:06:15
81.156.208.86	attackspambots	Bad Request: "GET / HTTP/1.1"	2019-06-22 05:58:07
218.64.57.12	attack	Brute force attempt	2019-06-22 06:12:53
206.108.51.194	attackspambots	SSH Brute-Force attacks	2019-06-22 05:57:05
110.172.170.142	attack	445/tcp [2019-06-21]1pkt	2019-06-22 06:00:47
103.90.205.41	attack	Request: "GET / HTTP/1.1"	2019-06-22 06:08:57
176.31.182.143	attackspambots	Host tried to access Magento backend without being authorized	2019-06-22 06:20:57
116.48.141.193	attackspambots	Bad Request: "GET / HTTP/1.0"	2019-06-22 06:05:50
39.72.12.109	attackspambots	22/tcp [2019-06-21]1pkt	2019-06-22 06:20:12

Recently Reported IPs

167.172.140.182	81.92.249.131	81.18.33.26	80.78.64.153
77.238.178.146	77.81.109.100	74.116.59.147	69.94.131.71
61.145.185.121	52.41.63.228	50.192.195.69	45.238.204.22
151.106.8.99	45.175.179.225	151.106.8.210	45.121.43.21
201.64.241.16	36.255.25.56	108.178.202.26	36.255.25.54