106.13.66.103 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Aug 21 08:19:36 pixelmemory sshd[2516658]: Invalid user rosa from 106.13.66.103 port 57960 Aug 21 08:19:36 pixelmemory sshd[2516658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 Aug 21 08:19:36 pixelmemory sshd[2516658]: Invalid user rosa from 106.13.66.103 port 57960 Aug 21 08:19:38 pixelmemory sshd[2516658]: Failed password for invalid user rosa from 106.13.66.103 port 57960 ssh2 Aug 21 08:23:17 pixelmemory sshd[2523039]: Invalid user user2 from 106.13.66.103 port 36144 ...	2020-08-21 23:31:38
attackbotsspam	Aug 15 20:15:46 firewall sshd[23813]: Failed password for root from 106.13.66.103 port 34498 ssh2 Aug 15 20:19:58 firewall sshd[24035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 user=root Aug 15 20:19:59 firewall sshd[24035]: Failed password for root from 106.13.66.103 port 42484 ssh2 ...	2020-08-16 07:37:20
attackbots	Aug 13 02:14:30 journals sshd\[21031\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 user=root Aug 13 02:14:33 journals sshd\[21031\]: Failed password for root from 106.13.66.103 port 53440 ssh2 Aug 13 02:18:49 journals sshd\[21409\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 user=root Aug 13 02:18:51 journals sshd\[21409\]: Failed password for root from 106.13.66.103 port 59618 ssh2 Aug 13 02:23:18 journals sshd\[21840\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 user=root ...	2020-08-13 07:44:12
attack	Aug 9 10:00:52 ns381471 sshd[32353]: Failed password for root from 106.13.66.103 port 36034 ssh2	2020-08-09 17:14:09
attack	SSH bruteforce	2020-08-06 16:26:54
attackbots	Aug 4 07:51:16 ny01 sshd[14010]: Failed password for root from 106.13.66.103 port 47510 ssh2 Aug 4 07:54:01 ny01 sshd[14339]: Failed password for root from 106.13.66.103 port 50162 ssh2	2020-08-04 20:19:50
attackbotsspam	5x Failed Password	2020-07-12 23:56:54
attack	Jun 28 11:48:43 ws26vmsma01 sshd[32293]: Failed password for root from 106.13.66.103 port 53740 ssh2 Jun 28 12:10:45 ws26vmsma01 sshd[72434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 ...	2020-06-29 00:46:47
attackbotsspam	Jun 21 07:56:26 jane sshd[24774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 Jun 21 07:56:28 jane sshd[24774]: Failed password for invalid user j from 106.13.66.103 port 38220 ssh2 ...	2020-06-21 15:09:07
attack	Jun 17 08:27:10 server sshd[7781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 Jun 17 08:27:12 server sshd[7781]: Failed password for invalid user arun from 106.13.66.103 port 51574 ssh2 Jun 17 08:31:05 server sshd[8079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 ...	2020-06-17 16:36:13
attackbots	Jun 12 01:20:19 php1 sshd\[10798\]: Invalid user idcisp from 106.13.66.103 Jun 12 01:20:19 php1 sshd\[10798\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 Jun 12 01:20:21 php1 sshd\[10798\]: Failed password for invalid user idcisp from 106.13.66.103 port 41836 ssh2 Jun 12 01:24:31 php1 sshd\[11133\]: Invalid user admin from 106.13.66.103 Jun 12 01:24:31 php1 sshd\[11133\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103	2020-06-12 19:26:41
attackbots	Jun 11 19:32:40 ArkNodeAT sshd\[25423\]: Invalid user margarito from 106.13.66.103 Jun 11 19:32:40 ArkNodeAT sshd\[25423\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 Jun 11 19:32:43 ArkNodeAT sshd\[25423\]: Failed password for invalid user margarito from 106.13.66.103 port 45780 ssh2	2020-06-12 03:53:16
attackbots	Jun 6 23:54:35 home sshd[4318]: Failed password for root from 106.13.66.103 port 51654 ssh2 Jun 6 23:58:03 home sshd[4731]: Failed password for root from 106.13.66.103 port 50930 ssh2 ...	2020-06-07 07:16:45
attackspam	Jun 4 01:53:18 mout sshd[21623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 user=root Jun 4 01:53:20 mout sshd[21623]: Failed password for root from 106.13.66.103 port 48216 ssh2	2020-06-04 07:55:27
attack	May 30 14:20:28 ns392434 sshd[26504]: Invalid user ftpd from 106.13.66.103 port 40912 May 30 14:20:28 ns392434 sshd[26504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 May 30 14:20:28 ns392434 sshd[26504]: Invalid user ftpd from 106.13.66.103 port 40912 May 30 14:20:30 ns392434 sshd[26504]: Failed password for invalid user ftpd from 106.13.66.103 port 40912 ssh2 May 30 14:28:44 ns392434 sshd[26673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 user=root May 30 14:28:46 ns392434 sshd[26673]: Failed password for root from 106.13.66.103 port 44352 ssh2 May 30 14:33:01 ns392434 sshd[26734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 user=root May 30 14:33:03 ns392434 sshd[26734]: Failed password for root from 106.13.66.103 port 42708 ssh2 May 30 14:37:23 ns392434 sshd[26817]: Invalid user jean from 106.13.66.103 port 41058	2020-05-31 00:04:25
attackbotsspam	2020-05-28T14:23:05.527475billing sshd[19316]: Failed password for root from 106.13.66.103 port 60818 ssh2 2020-05-28T14:25:57.638479billing sshd[26060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 user=root 2020-05-28T14:25:59.732259billing sshd[26060]: Failed password for root from 106.13.66.103 port 37318 ssh2 ...	2020-05-28 19:52:57
attack	May 23 23:27:48 abendstille sshd\[22995\]: Invalid user doa from 106.13.66.103 May 23 23:27:48 abendstille sshd\[22995\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 May 23 23:27:50 abendstille sshd\[22995\]: Failed password for invalid user doa from 106.13.66.103 port 51292 ssh2 May 23 23:31:41 abendstille sshd\[26752\]: Invalid user xyh from 106.13.66.103 May 23 23:31:41 abendstille sshd\[26752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 ...	2020-05-24 05:41:58
attackbots	SSH Brute Force	2020-04-29 23:46:55
attackspambots	$f2bV_matches	2020-04-16 15:08:49
attackspam	Mar 31 12:33:14 powerpi2 sshd[32641]: Failed password for root from 106.13.66.103 port 60004 ssh2 Mar 31 12:34:55 powerpi2 sshd[32759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 user=root Mar 31 12:34:57 powerpi2 sshd[32759]: Failed password for root from 106.13.66.103 port 46954 ssh2 ...	2020-03-31 21:01:53
attackbots	Mar 29 08:43:29 ny01 sshd[31351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103 Mar 29 08:43:31 ny01 sshd[31351]: Failed password for invalid user raynard from 106.13.66.103 port 59436 ssh2 Mar 29 08:48:47 ny01 sshd[984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.66.103	2020-03-29 21:16:10
attack	k+ssh-bruteforce	2020-03-24 09:33:49
attackbots	20 attempts against mh-ssh on echoip	2020-03-22 06:12:35

Comments on same subnet:

IP	Type	Details	Datetime
106.13.66.172	attack	(sshd) Failed SSH login from 106.13.66.172 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Feb 20 23:53:51 host sshd[61436]: Invalid user www from 106.13.66.172 port 37418	2020-02-21 16:43:16
106.13.66.134	attack	Unauthorized connection attempt detected from IP address 106.13.66.134 to port 2004	2019-12-31 02:37:19

Type

Details

Datetime

106.13.66.172

attack

(sshd) Failed SSH login from 106.13.66.172 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Feb 20 23:53:51 host sshd[61436]: Invalid user www from 106.13.66.172 port 37418

2020-02-21 16:43:16

106.13.66.134

attack

Unauthorized connection attempt detected from IP address 106.13.66.134 to port 2004

2019-12-31 02:37:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.66.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5917
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.66.103.			IN	A

;; AUTHORITY SECTION:
.			320	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032102 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 22 06:12:32 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 103.66.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 103.66.13.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
212.91.77.226	attackspam	Triggered by Fail2Ban at Vostok web server	2020-01-01 08:26:38
64.95.98.37	attackbotsspam	Dec 31 23:54:59 debian-2gb-nbg1-2 kernel: \[92233.100319\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=64.95.98.37 DST=195.201.40.59 LEN=422 TOS=0x00 PREC=0x00 TTL=53 ID=1818 DF PROTO=UDP SPT=5284 DPT=5060 LEN=402	2020-01-01 08:26:11
88.247.108.120	attack	Dec 31 23:46:54 dev0-dcde-rnet sshd[32258]: Failed password for root from 88.247.108.120 port 45839 ssh2 Dec 31 23:49:39 dev0-dcde-rnet sshd[32301]: Failed password for root from 88.247.108.120 port 54575 ssh2	2020-01-01 08:35:14
86.57.217.241	attackspam	Jan 1 00:49:11 vps691689 sshd[29554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.57.217.241 Jan 1 00:49:12 vps691689 sshd[29554]: Failed password for invalid user cav from 86.57.217.241 port 39844 ssh2 ...	2020-01-01 08:39:13
162.17.252.5	attack	Dec 31 22:50:46 mercury wordpress(www.learnargentinianspanish.com)[9743]: XML-RPC authentication attempt for unknown user chris from 162.17.252.5 ...	2020-01-01 08:36:46
92.118.160.25	attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 95 - port: 2160 proto: TCP cat: Misc Attack	2020-01-01 08:20:54
180.76.141.221	attackspam	Dec 31 23:50:46 cavern sshd[15716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.141.221	2020-01-01 08:37:31
165.227.211.13	attack	Dec 31 23:27:20 marvibiene sshd[8103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.211.13 user=mysql Dec 31 23:27:22 marvibiene sshd[8103]: Failed password for mysql from 165.227.211.13 port 47644 ssh2 Dec 31 23:33:58 marvibiene sshd[8159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.211.13 user=root Dec 31 23:33:59 marvibiene sshd[8159]: Failed password for root from 165.227.211.13 port 41034 ssh2 ...	2020-01-01 08:40:06
106.13.105.77	attackbots	Automatic report - Banned IP Access	2020-01-01 08:22:14
106.13.29.223	attackspam	Dec 31 23:49:53 v22018076622670303 sshd\[5191\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.29.223 user=backup Dec 31 23:49:55 v22018076622670303 sshd\[5191\]: Failed password for backup from 106.13.29.223 port 53401 ssh2 Dec 31 23:51:14 v22018076622670303 sshd\[5200\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.29.223 user=root ...	2020-01-01 08:23:02
178.73.215.171	attackbotsspam	Jan 1 01:34:24 mout postfix/smtpd[2545]: lost connection after CONNECT from unknown[178.73.215.171]	2020-01-01 08:38:42
14.37.202.211	attack	" "	2020-01-01 08:24:21
188.226.167.212	attack	Jan 1 00:51:28 legacy sshd[3989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.226.167.212 Jan 1 00:51:30 legacy sshd[3989]: Failed password for invalid user klypp from 188.226.167.212 port 55028 ssh2 Jan 1 00:54:46 legacy sshd[4188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.226.167.212 ...	2020-01-01 08:39:43
222.186.175.217	attackspambots	Jan 1 00:18:44 unicornsoft sshd\[26414\]: User root from 222.186.175.217 not allowed because not listed in AllowUsers Jan 1 00:18:44 unicornsoft sshd\[26414\]: Failed none for invalid user root from 222.186.175.217 port 40122 ssh2 Jan 1 00:18:45 unicornsoft sshd\[26414\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root	2020-01-01 08:19:34
190.98.228.54	attackspambots	Dec 31 23:37:28 localhost sshd\[11563\]: Invalid user hoffelt from 190.98.228.54 port 60974 Dec 31 23:37:28 localhost sshd\[11563\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.98.228.54 Dec 31 23:37:30 localhost sshd\[11563\]: Failed password for invalid user hoffelt from 190.98.228.54 port 60974 ssh2 Dec 31 23:41:23 localhost sshd\[11769\]: Invalid user shelby from 190.98.228.54 port 36208 Dec 31 23:41:23 localhost sshd\[11769\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.98.228.54 ...	2020-01-01 08:34:29

Recently Reported IPs

130.97.168.12	79.63.228.37	179.17.211.119	35.8.181.19
19.247.103.239	135.172.249.150	77.53.16.171	45.95.168.212
188.40.79.100	66.71.179.237	174.74.222.247	85.231.152.64
128.111.96.82	179.128.19.59	92.33.14.137	209.181.238.1
39.68.38.234	72.35.122.99	126.44.145.7	131.215.78.232