106.13.64.154 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.13.64.132	attack	Aug 30 13:54:26 root sshd[31080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.64.132 Aug 30 13:54:29 root sshd[31080]: Failed password for invalid user eng from 106.13.64.132 port 37378 ssh2 Aug 30 14:16:22 root sshd[1526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.64.132 ...	2020-08-30 20:34:51
106.13.64.132	attackbots	Aug 27 19:37:10 ns37 sshd[11604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.64.132	2020-08-28 02:39:25
106.13.64.132	attackspam	Automatic report BANNED IP	2020-08-21 04:56:29
106.13.64.132	attack	malicious Brute-Force reported by https://www.patrick-binder.de ...	2020-08-16 05:19:19
106.13.64.132	attackbots	2020-08-07T07:02:17.594927amanda2.illicoweb.com sshd\[17398\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.64.132 user=root 2020-08-07T07:02:19.925955amanda2.illicoweb.com sshd\[17398\]: Failed password for root from 106.13.64.132 port 49644 ssh2 2020-08-07T07:05:00.695465amanda2.illicoweb.com sshd\[17891\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.64.132 user=root 2020-08-07T07:05:02.404593amanda2.illicoweb.com sshd\[17891\]: Failed password for root from 106.13.64.132 port 35794 ssh2 2020-08-07T07:10:29.954185amanda2.illicoweb.com sshd\[18724\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.64.132 user=root ...	2020-08-07 17:34:47
106.13.64.132	attackspam	(sshd) Failed SSH login from 106.13.64.132 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 17 20:52:35 srv sshd[3756]: Invalid user b from 106.13.64.132 port 32996 Jul 17 20:52:37 srv sshd[3756]: Failed password for invalid user b from 106.13.64.132 port 32996 ssh2 Jul 17 21:01:01 srv sshd[3876]: Invalid user laureen from 106.13.64.132 port 60954 Jul 17 21:01:04 srv sshd[3876]: Failed password for invalid user laureen from 106.13.64.132 port 60954 ssh2 Jul 17 21:03:34 srv sshd[3921]: Invalid user giovanna from 106.13.64.132 port 33040	2020-07-18 02:59:07
106.13.64.132	attack	(sshd) Failed SSH login from 106.13.64.132 (CN/China/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD	2020-07-09 12:52:15
106.13.64.132	attackbots	Jun 25 17:03:30 vps639187 sshd\[4996\]: Invalid user test from 106.13.64.132 port 49528 Jun 25 17:03:30 vps639187 sshd\[4996\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.64.132 Jun 25 17:03:32 vps639187 sshd\[4996\]: Failed password for invalid user test from 106.13.64.132 port 49528 ssh2 ...	2020-06-26 04:03:49
106.13.64.192	attackspambots	2020-06-19T07:13:45.322146abusebot-8.cloudsearch.cf sshd[18503]: Invalid user oracle from 106.13.64.192 port 51134 2020-06-19T07:13:45.330165abusebot-8.cloudsearch.cf sshd[18503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.64.192 2020-06-19T07:13:45.322146abusebot-8.cloudsearch.cf sshd[18503]: Invalid user oracle from 106.13.64.192 port 51134 2020-06-19T07:13:47.336565abusebot-8.cloudsearch.cf sshd[18503]: Failed password for invalid user oracle from 106.13.64.192 port 51134 ssh2 2020-06-19T07:17:27.033011abusebot-8.cloudsearch.cf sshd[18733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.64.192 user=root 2020-06-19T07:17:29.516126abusebot-8.cloudsearch.cf sshd[18733]: Failed password for root from 106.13.64.192 port 41792 ssh2 2020-06-19T07:21:00.210415abusebot-8.cloudsearch.cf sshd[18919]: Invalid user rp from 106.13.64.192 port 60676 ...	2020-06-19 16:08:57
106.13.64.132	attackbotsspam	DATE:2020-06-18 15:33:32, IP:106.13.64.132, PORT:ssh SSH brute force auth (docker-dc)	2020-06-19 04:20:08
106.13.64.192	attackbots	Invalid user paras from 106.13.64.192 port 52408	2020-06-18 03:28:47
106.13.64.132	attackbotsspam	Jun 12 14:08:40 ns382633 sshd\[17794\]: Invalid user jeni from 106.13.64.132 port 59422 Jun 12 14:08:40 ns382633 sshd\[17794\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.64.132 Jun 12 14:08:42 ns382633 sshd\[17794\]: Failed password for invalid user jeni from 106.13.64.132 port 59422 ssh2 Jun 12 14:09:07 ns382633 sshd\[17899\]: Invalid user jeni from 106.13.64.132 port 38302 Jun 12 14:09:07 ns382633 sshd\[17899\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.64.132	2020-06-12 20:43:52
106.13.64.192	attackbotsspam	Jun 9 14:24:19 vps687878 sshd\[32531\]: Failed password for invalid user admin from 106.13.64.192 port 55532 ssh2 Jun 9 14:27:40 vps687878 sshd\[444\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.64.192 user=root Jun 9 14:27:42 vps687878 sshd\[444\]: Failed password for root from 106.13.64.192 port 48574 ssh2 Jun 9 14:31:09 vps687878 sshd\[825\]: Invalid user dongshihua from 106.13.64.192 port 41614 Jun 9 14:31:09 vps687878 sshd\[825\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.64.192 ...	2020-06-10 01:29:46
106.13.64.192	attackspambots	May 11 05:50:00 163-172-32-151 sshd[15196]: Invalid user admin from 106.13.64.192 port 59262 ...	2020-05-11 17:59:53
106.13.64.54	attack	Failed password for invalid user catherine from 106.13.64.54 port 49126 ssh2 Invalid user olegganj from 106.13.64.54 port 36222 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.64.54 Failed password for invalid user olegganj from 106.13.64.54 port 36222 ssh2 Invalid user rheal from 106.13.64.54 port 51528	2020-02-05 17:25:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.64.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27572
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.13.64.154.			IN	A

;; AUTHORITY SECTION:
.			163	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 14:57:19 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 154.64.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 154.64.13.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
91.160.151.223	attackspam	Invalid user ftpuser from 91.160.151.223 port 2159	2020-04-29 05:39:43
176.98.156.64	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/176.98.156.64/ RU - 1H : (11) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : RU NAME ASN : ASN57396 IP : 176.98.156.64 CIDR : 176.98.128.0/19 PREFIX COUNT : 1 UNIQUE IP COUNT : 8192 ATTACKS DETECTED ASN57396 : 1H - 2 3H - 2 6H - 2 12H - 2 24H - 2 DateTime : 2020-04-28 22:47:29 INFO : Looking for resource vulnerabilities 403 Detected and Blocked by ADMIN - data recovery	2020-04-29 05:21:54
222.186.173.142	attackspam	Apr 28 23:38:59 minden010 sshd[6528]: Failed password for root from 222.186.173.142 port 22590 ssh2 Apr 28 23:39:02 minden010 sshd[6528]: Failed password for root from 222.186.173.142 port 22590 ssh2 Apr 28 23:39:05 minden010 sshd[6528]: Failed password for root from 222.186.173.142 port 22590 ssh2 Apr 28 23:39:08 minden010 sshd[6528]: Failed password for root from 222.186.173.142 port 22590 ssh2 ...	2020-04-29 05:52:11
78.128.113.76	attackbots	2020-04-28 23:11:32 dovecot_plain authenticator failed for \(\[78.128.113.76\]\) \[78.128.113.76\]: 535 Incorrect authentication data \(set_id=info@nophost.com\) 2020-04-28 23:11:40 dovecot_plain authenticator failed for \(\[78.128.113.76\]\) \[78.128.113.76\]: 535 Incorrect authentication data 2020-04-28 23:11:50 dovecot_plain authenticator failed for \(\[78.128.113.76\]\) \[78.128.113.76\]: 535 Incorrect authentication data 2020-04-28 23:11:55 dovecot_plain authenticator failed for \(\[78.128.113.76\]\) \[78.128.113.76\]: 535 Incorrect authentication data 2020-04-28 23:12:08 dovecot_plain authenticator failed for \(\[78.128.113.76\]\) \[78.128.113.76\]: 535 Incorrect authentication data	2020-04-29 05:17:51
51.89.67.61	attackbots	04/28/2020-16:47:17.191072 51.89.67.61 Protocol: 17 ET SCAN Sipvicious Scan	2020-04-29 05:35:36
103.137.98.213	attackspambots	Icarus honeypot on github	2020-04-29 05:30:27
139.170.150.253	attackspambots	Apr 28 23:11:36 OPSO sshd\[22438\]: Invalid user joana from 139.170.150.253 port 14037 Apr 28 23:11:36 OPSO sshd\[22438\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.170.150.253 Apr 28 23:11:38 OPSO sshd\[22438\]: Failed password for invalid user joana from 139.170.150.253 port 14037 ssh2 Apr 28 23:12:54 OPSO sshd\[22659\]: Invalid user weiguo from 139.170.150.253 port 37310 Apr 28 23:12:54 OPSO sshd\[22659\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.170.150.253	2020-04-29 05:13:23
51.38.37.89	attackspambots	fail2ban -- 51.38.37.89 ...	2020-04-29 05:43:38
185.153.199.201	attack	Portscan or hack attempt detected by psad/fwsnort	2020-04-29 05:28:27
139.199.27.174	attack	2020-04-28T17:07:10.7857961495-001 sshd[41766]: Invalid user chris from 139.199.27.174 port 48400 2020-04-28T17:07:10.7931521495-001 sshd[41766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.27.174 2020-04-28T17:07:10.7857961495-001 sshd[41766]: Invalid user chris from 139.199.27.174 port 48400 2020-04-28T17:07:13.0931711495-001 sshd[41766]: Failed password for invalid user chris from 139.199.27.174 port 48400 ssh2 2020-04-28T17:11:13.3544201495-001 sshd[41995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.27.174 user=root 2020-04-28T17:11:15.0118291495-001 sshd[41995]: Failed password for root from 139.199.27.174 port 49650 ssh2 ...	2020-04-29 05:32:42
103.123.65.35	attack	Apr 29 02:36:04 gw1 sshd[4512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.123.65.35 Apr 29 02:36:06 gw1 sshd[4512]: Failed password for invalid user test from 103.123.65.35 port 48728 ssh2 ...	2020-04-29 05:50:27
185.143.74.108	attack	Apr 28 16:10:35 xzibhostname postfix/smtpd[16352]: connect from unknown[185.143.74.108] Apr 28 16:10:36 xzibhostname postfix/smtpd[13960]: connect from unknown[185.143.74.108] Apr 28 16:10:39 xzibhostname postfix/smtpd[16352]: warning: unknown[185.143.74.108]: SASL LOGIN authentication failed: authentication failure Apr 28 16:10:39 xzibhostname postfix/smtpd[16352]: disconnect from unknown[185.143.74.108] Apr 28 16:10:41 xzibhostname postfix/smtpd[13960]: warning: unknown[185.143.74.108]: SASL LOGIN authentication failed: authentication failure Apr 28 16:10:42 xzibhostname postfix/smtpd[13960]: disconnect from unknown[185.143.74.108] Apr 28 16:11:00 xzibhostname postfix/smtpd[16352]: connect from unknown[185.143.74.108] Apr 28 16:11:05 xzibhostname postfix/smtpd[16352]: warning: unknown[185.143.74.108]: SASL LOGIN authentication failed: authentication failure Apr 28 16:11:06 xzibhostname postfix/smtpd[16352]: disconnect from unknown[185.143.74.108] Apr 28 16:11:08 xzibh........ -------------------------------	2020-04-29 05:48:31
183.89.212.239	attackspam	Disconnected \(auth failed, 1 attempts in 6 secs\):	2020-04-29 05:44:21
157.245.120.102	attack	Apr 27 23:50:28 liveconfig01 sshd[10689]: Invalid user wiktor from 157.245.120.102 Apr 27 23:50:28 liveconfig01 sshd[10689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.120.102 Apr 27 23:50:31 liveconfig01 sshd[10689]: Failed password for invalid user wiktor from 157.245.120.102 port 47422 ssh2 Apr 27 23:50:31 liveconfig01 sshd[10689]: Received disconnect from 157.245.120.102 port 47422:11: Bye Bye [preauth] Apr 27 23:50:31 liveconfig01 sshd[10689]: Disconnected from 157.245.120.102 port 47422 [preauth] Apr 27 23:55:18 liveconfig01 sshd[10973]: Invalid user sergio from 157.245.120.102 Apr 27 23:55:18 liveconfig01 sshd[10973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.120.102 Apr 27 23:55:21 liveconfig01 sshd[10973]: Failed password for invalid user sergio from 157.245.120.102 port 50574 ssh2 Apr 27 23:55:21 liveconfig01 sshd[10973]: Received disconnect from 157.245......... -------------------------------	2020-04-29 05:53:12
125.99.46.50	attack	3x Failed Password	2020-04-29 05:31:45

Recently Reported IPs

106.15.66.158	106.51.66.192	106.51.3.154	106.52.232.246
106.53.153.252	106.75.108.226	106.52.236.88	106.75.163.195
106.52.244.46	106.75.163.220	106.75.81.212	106.75.64.154
107.150.110.24	106.75.63.48	107.151.182.254	107.170.134.125
107.172.34.48	107.173.103.134	107.170.102.171	107.174.127.13