106.13.72.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.13.72.112	attackspam	Aug 26 12:33:27 ns3033917 sshd[25725]: Failed password for root from 106.13.72.112 port 57104 ssh2 Aug 26 12:35:46 ns3033917 sshd[25746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.72.112 user=root Aug 26 12:35:48 ns3033917 sshd[25746]: Failed password for root from 106.13.72.112 port 54038 ssh2 ...	2020-08-26 23:03:34
106.13.72.112	attack	fail2ban	2020-08-08 18:19:18
106.13.72.190	attackspambots	Scanned 3 times in the last 24 hours on port 22	2020-07-08 08:10:59
106.13.72.190	attackspam	Failed password for invalid user openlava from 106.13.72.190 port 39160 ssh2	2020-07-06 18:48:04
106.13.72.190	attack	(sshd) Failed SSH login from 106.13.72.190 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 26 13:56:20 srv sshd[24719]: Invalid user gitlab from 106.13.72.190 port 34108 Jun 26 13:56:22 srv sshd[24719]: Failed password for invalid user gitlab from 106.13.72.190 port 34108 ssh2 Jun 26 14:20:09 srv sshd[25186]: Invalid user hyperic from 106.13.72.190 port 51832 Jun 26 14:20:12 srv sshd[25186]: Failed password for invalid user hyperic from 106.13.72.190 port 51832 ssh2 Jun 26 14:23:54 srv sshd[25236]: Invalid user julio from 106.13.72.190 port 40778	2020-06-27 02:12:22
106.13.72.190	attackbots	Fail2Ban	2020-06-12 08:10:31
106.13.72.190	attackspambots	(sshd) Failed SSH login from 106.13.72.190 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 7 00:02:55 s1 sshd[25328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.72.190 user=root Jun 7 00:02:57 s1 sshd[25328]: Failed password for root from 106.13.72.190 port 51924 ssh2 Jun 7 00:06:56 s1 sshd[25563]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.72.190 user=root Jun 7 00:06:59 s1 sshd[25563]: Failed password for root from 106.13.72.190 port 48462 ssh2 Jun 7 00:10:49 s1 sshd[25854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.72.190 user=root	2020-06-07 07:29:16
106.13.72.190	attackspambots	[ssh] SSH attack	2020-04-26 21:00:01
106.13.72.190	attackbots	Apr 17 19:19:17 vlre-nyc-1 sshd\[29385\]: Invalid user mi from 106.13.72.190 Apr 17 19:19:17 vlre-nyc-1 sshd\[29385\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.72.190 Apr 17 19:19:19 vlre-nyc-1 sshd\[29385\]: Failed password for invalid user mi from 106.13.72.190 port 38704 ssh2 Apr 17 19:23:29 vlre-nyc-1 sshd\[29504\]: Invalid user dspace from 106.13.72.190 Apr 17 19:23:29 vlre-nyc-1 sshd\[29504\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.72.190 ...	2020-04-18 04:15:15
106.13.72.190	attackbotsspam	2020-04-16T03:50:25.674099homeassistant sshd[9357]: Invalid user weblogic from 106.13.72.190 port 53722 2020-04-16T03:50:25.685120homeassistant sshd[9357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.72.190 ...	2020-04-16 16:46:25
106.13.72.190	attack	Apr 14 10:26:54 ns3164893 sshd[6764]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.72.190 user=root Apr 14 10:26:56 ns3164893 sshd[6764]: Failed password for root from 106.13.72.190 port 38050 ssh2 ...	2020-04-14 16:43:45
106.13.72.190	attackbots	ssh intrusion attempt	2020-04-11 18:30:48
106.13.72.95	attack	IP blocked	2020-04-10 16:38:56
106.13.72.190	attackspam	Apr 5 14:35:52 vserver sshd\[14991\]: Failed password for root from 106.13.72.190 port 32888 ssh2Apr 5 14:38:56 vserver sshd\[15039\]: Failed password for root from 106.13.72.190 port 44002 ssh2Apr 5 14:41:58 vserver sshd\[15121\]: Failed password for root from 106.13.72.190 port 55138 ssh2Apr 5 14:45:00 vserver sshd\[15163\]: Failed password for root from 106.13.72.190 port 38016 ssh2 ...	2020-04-05 21:47:21
106.13.72.95	attackbots	Apr 2 16:12:18 ift sshd\[47499\]: Invalid user shiyu from 106.13.72.95Apr 2 16:12:20 ift sshd\[47499\]: Failed password for invalid user shiyu from 106.13.72.95 port 34592 ssh2Apr 2 16:15:36 ift sshd\[48230\]: Invalid user lijianling from 106.13.72.95Apr 2 16:15:38 ift sshd\[48230\]: Failed password for invalid user lijianling from 106.13.72.95 port 45020 ssh2Apr 2 16:18:52 ift sshd\[48564\]: Failed password for root from 106.13.72.95 port 55430 ssh2 ...	2020-04-02 23:57:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.72.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14791
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.13.72.2.			IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 16:23:24 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 2.72.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.72.13.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.76.137.254	attack	Feb 6 22:06:44 mout sshd[6022]: Invalid user fwd from 180.76.137.254 port 44408	2020-02-07 05:07:40
114.32.89.139	attackbots	Feb 6 20:57:13 debian-2gb-nbg1-2 kernel: \[3278277.341262\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=114.32.89.139 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=18168 PROTO=TCP SPT=3607 DPT=23 WINDOW=54650 RES=0x00 SYN URGP=0	2020-02-07 04:41:45
113.206.165.224	attack	Brute force blocker - service: proftpd1, proftpd2 - aantal: 44 - Tue Jan 8 08:00:09 2019	2020-02-07 04:48:00
222.186.175.150	attack	Feb 6 21:26:13 serwer sshd\[13397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root Feb 6 21:26:13 serwer sshd\[13403\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root Feb 6 21:26:15 serwer sshd\[13397\]: Failed password for root from 222.186.175.150 port 60800 ssh2 Feb 6 21:26:15 serwer sshd\[13403\]: Failed password for root from 222.186.175.150 port 59872 ssh2 ...	2020-02-07 04:27:51
89.41.43.192	attack	Automatic report - Port Scan Attack	2020-02-07 04:29:51
104.154.155.227	attack	Feb 6 20:58:08 web8 sshd\[25773\]: Invalid user jbj from 104.154.155.227 Feb 6 20:58:08 web8 sshd\[25773\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.154.155.227 Feb 6 20:58:10 web8 sshd\[25773\]: Failed password for invalid user jbj from 104.154.155.227 port 43906 ssh2 Feb 6 21:05:58 web8 sshd\[29582\]: Invalid user nmh from 104.154.155.227 Feb 6 21:05:58 web8 sshd\[29582\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.154.155.227	2020-02-07 05:09:43
1.58.138.26	attack	Brute force blocker - service: proftpd1 - aantal: 26 - Tue Jan 8 21:55:08 2019	2020-02-07 04:48:23
3.113.64.117	attackbots	Automatic report - SSH Brute-Force Attack	2020-02-07 04:43:32
36.81.247.152	attack	36.81.247.152 - - [06/Feb/2020:20:57:15 +0100] "GET /awstats.pl?lang=en&output=main HTTP/1.0" 404 280 "https://oraux.pnzone.net/" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.87 Safari/537.36,gzip(gfe)"	2020-02-07 04:42:14
58.125.171.61	attackspam	lfd: (smtpauth) Failed SMTP AUTH login from 58.125.171.61 (KR/Republic of Korea/-): 5 in the last 3600 secs - Fri Dec 7 12:28:50 2018	2020-02-07 05:04:41
51.75.17.122	attack	Feb 6 21:38:13 server sshd[48314]: Failed password for invalid user zrw from 51.75.17.122 port 55458 ssh2 Feb 6 21:41:00 server sshd[48466]: Failed password for invalid user sue from 51.75.17.122 port 57854 ssh2 Feb 6 21:43:36 server sshd[48505]: Failed password for invalid user adu from 51.75.17.122 port 59584 ssh2	2020-02-07 05:12:15
95.85.12.25	attackbots	Feb 6 20:28:32 web8 sshd\[10516\]: Invalid user gbi from 95.85.12.25 Feb 6 20:28:32 web8 sshd\[10516\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.85.12.25 Feb 6 20:28:34 web8 sshd\[10516\]: Failed password for invalid user gbi from 95.85.12.25 port 47074 ssh2 Feb 6 20:31:34 web8 sshd\[12120\]: Invalid user tzf from 95.85.12.25 Feb 6 20:31:34 web8 sshd\[12120\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.85.12.25	2020-02-07 04:34:18
1.9.46.177	attack	Automatic report - Banned IP Access	2020-02-07 04:26:21
77.243.181.54	attackbots	02/06/2020-20:57:12.039184 77.243.181.54 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 74	2020-02-07 04:45:21
187.32.178.33	attackbotsspam	Feb 6 19:57:13 *** sshd[24653]: Invalid user cje from 187.32.178.33	2020-02-07 04:42:39

Recently Reported IPs

106.13.37.99	106.14.136.225	106.14.148.1	106.14.148.5
106.14.15.128	106.14.15.12	106.14.15.147	106.14.15.159
106.14.15.136	106.14.148.245	106.14.149.78	106.14.15.118
106.14.149.61	106.14.15.16	106.14.15.18	106.14.15.187
106.14.15.191	106.14.15.189	106.14.15.89	106.14.15.92