106.13.81.18 - IPInfo

Basic Info

City: unknown

Region: Beijing

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: Beijing Baidu Netcom Science and Technology Co., Ltd.

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt detected from IP address 106.13.81.18 to port 2220 [J]	2020-02-04 21:37:06
attack	Unauthorized connection attempt detected from IP address 106.13.81.18 to port 2220 [J]	2020-01-24 20:18:24
attack	Jan 14 14:05:12 vps647732 sshd[9504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.18 Jan 14 14:05:14 vps647732 sshd[9504]: Failed password for invalid user fourjs from 106.13.81.18 port 49616 ssh2 ...	2020-01-14 21:16:59
attack	Unauthorized connection attempt detected from IP address 106.13.81.18 to port 2220 [J]	2020-01-08 06:18:52
attack	Dec 26 08:14:23 ncomp sshd[17419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.18 user=root Dec 26 08:14:25 ncomp sshd[17419]: Failed password for root from 106.13.81.18 port 38868 ssh2 Dec 26 08:28:15 ncomp sshd[17617]: Invalid user tona from 106.13.81.18	2019-12-26 16:06:50
attack	Dec 25 10:56:39 lnxweb61 sshd[18043]: Failed password for root from 106.13.81.18 port 53734 ssh2 Dec 25 10:58:38 lnxweb61 sshd[19502]: Failed password for root from 106.13.81.18 port 41426 ssh2 Dec 25 11:00:33 lnxweb61 sshd[22740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.18	2019-12-25 18:26:19
attackbots	Dec 14 05:27:18 hcbbdb sshd\[13438\]: Invalid user vicherd from 106.13.81.18 Dec 14 05:27:18 hcbbdb sshd\[13438\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.18 Dec 14 05:27:19 hcbbdb sshd\[13438\]: Failed password for invalid user vicherd from 106.13.81.18 port 34248 ssh2 Dec 14 05:34:04 hcbbdb sshd\[14198\]: Invalid user ro0t from 106.13.81.18 Dec 14 05:34:04 hcbbdb sshd\[14198\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.18	2019-12-14 13:38:04
attack	Dec 6 17:47:14 OPSO sshd\[3074\]: Invalid user sysdba from 106.13.81.18 port 42468 Dec 6 17:47:14 OPSO sshd\[3074\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.18 Dec 6 17:47:16 OPSO sshd\[3074\]: Failed password for invalid user sysdba from 106.13.81.18 port 42468 ssh2 Dec 6 17:53:45 OPSO sshd\[4522\]: Invalid user gellereau from 106.13.81.18 port 36580 Dec 6 17:53:45 OPSO sshd\[4522\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.18	2019-12-07 04:44:10
attack	Dec 5 07:38:54 vmanager6029 sshd\[7635\]: Invalid user server from 106.13.81.18 port 54564 Dec 5 07:38:54 vmanager6029 sshd\[7635\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.18 Dec 5 07:38:56 vmanager6029 sshd\[7635\]: Failed password for invalid user server from 106.13.81.18 port 54564 ssh2	2019-12-05 14:41:57
attackspam	Nov 11 23:18:36 server sshd\[5615\]: Invalid user tsopelas from 106.13.81.18 Nov 11 23:18:36 server sshd\[5615\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.18 Nov 11 23:18:38 server sshd\[5615\]: Failed password for invalid user tsopelas from 106.13.81.18 port 47072 ssh2 Nov 11 23:37:36 server sshd\[10583\]: Invalid user granny from 106.13.81.18 Nov 11 23:37:36 server sshd\[10583\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.18 ...	2019-11-12 06:22:29
attackspam	2019-11-06T10:31:58.682650scmdmz1 sshd\[11832\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.18 user=root 2019-11-06T10:32:01.202496scmdmz1 sshd\[11832\]: Failed password for root from 106.13.81.18 port 57302 ssh2 2019-11-06T10:36:24.664956scmdmz1 sshd\[12187\]: Invalid user rmdbuser from 106.13.81.18 port 35860 ...	2019-11-06 17:41:33
attack	Oct 26 14:32:18 eventyay sshd[4174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.18 Oct 26 14:32:20 eventyay sshd[4174]: Failed password for invalid user newuser from 106.13.81.18 port 47764 ssh2 Oct 26 14:38:16 eventyay sshd[4244]: Failed password for root from 106.13.81.18 port 56210 ssh2 ...	2019-10-26 21:11:26
attackbotsspam	Oct 24 06:14:35 dedicated sshd[10444]: Invalid user blake from 106.13.81.18 port 33454	2019-10-24 18:40:20
attackbots	SSH brutforce	2019-10-19 17:12:10
attackbots	Oct 16 05:37:19 sshgateway sshd\[31588\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.18 user=root Oct 16 05:37:21 sshgateway sshd\[31588\]: Failed password for root from 106.13.81.18 port 43750 ssh2 Oct 16 05:42:53 sshgateway sshd\[31609\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.18 user=root	2019-10-16 14:06:30
attack	Oct 7 10:01:41 h2177944 sshd\[24531\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.18 user=root Oct 7 10:01:43 h2177944 sshd\[24531\]: Failed password for root from 106.13.81.18 port 40000 ssh2 Oct 7 10:06:20 h2177944 sshd\[24646\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.18 user=root Oct 7 10:06:21 h2177944 sshd\[24646\]: Failed password for root from 106.13.81.18 port 42960 ssh2 ...	2019-10-07 17:12:34
attackspam	Oct 6 05:40:06 meumeu sshd[28781]: Failed password for root from 106.13.81.18 port 56170 ssh2 Oct 6 05:44:53 meumeu sshd[29483]: Failed password for root from 106.13.81.18 port 33438 ssh2 ...	2019-10-06 16:02:07
attack	Aug 30 19:20:34 eventyay sshd[22657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.18 Aug 30 19:20:36 eventyay sshd[22657]: Failed password for invalid user sonos from 106.13.81.18 port 60160 ssh2 Aug 30 19:26:51 eventyay sshd[24146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.18 ...	2019-08-31 01:44:14

Comments on same subnet:

IP	Type	Details	Datetime
106.13.81.181	attack	SIP/5060 Probe, BF, Hack -	2020-08-10 18:51:32
106.13.81.181	attackbots	Attempted to establish connection to non opened port 12579	2020-08-07 19:37:00
106.13.81.250	attackspam	B: Abusive ssh attack	2020-07-31 01:49:39
106.13.81.250	attackbotsspam	Jul 28 07:59:39 nextcloud sshd\[16555\]: Invalid user rawman from 106.13.81.250 Jul 28 07:59:39 nextcloud sshd\[16555\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.250 Jul 28 07:59:41 nextcloud sshd\[16555\]: Failed password for invalid user rawman from 106.13.81.250 port 55594 ssh2	2020-07-28 16:21:51
106.13.81.250	attackbots	Jul 23 12:21:19 ip-172-31-61-156 sshd[14202]: Invalid user mongod from 106.13.81.250 Jul 23 12:21:21 ip-172-31-61-156 sshd[14202]: Failed password for invalid user mongod from 106.13.81.250 port 54390 ssh2 Jul 23 12:21:19 ip-172-31-61-156 sshd[14202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.250 Jul 23 12:21:19 ip-172-31-61-156 sshd[14202]: Invalid user mongod from 106.13.81.250 Jul 23 12:21:21 ip-172-31-61-156 sshd[14202]: Failed password for invalid user mongod from 106.13.81.250 port 54390 ssh2 ...	2020-07-24 01:29:17
106.13.81.181	attackspam	" "	2020-07-15 12:42:07
106.13.81.250	attack	SSH auth scanning - multiple failed logins	2020-07-02 07:59:01
106.13.81.250	attackbots	Jun 30 07:33:08 home sshd[23654]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.250 Jun 30 07:33:10 home sshd[23654]: Failed password for invalid user oracle from 106.13.81.250 port 51598 ssh2 Jun 30 07:37:08 home sshd[24122]: Failed password for root from 106.13.81.250 port 43550 ssh2 ...	2020-06-30 17:22:42
106.13.81.250	attackspambots	Invalid user ts3 from 106.13.81.250 port 58506	2020-06-26 22:24:47
106.13.81.250	attack	Jun 24 16:00:11 pkdns2 sshd\[58970\]: Invalid user webmaster from 106.13.81.250Jun 24 16:00:12 pkdns2 sshd\[58970\]: Failed password for invalid user webmaster from 106.13.81.250 port 57968 ssh2Jun 24 16:02:01 pkdns2 sshd\[59030\]: Failed password for root from 106.13.81.250 port 51336 ssh2Jun 24 16:03:42 pkdns2 sshd\[59104\]: Invalid user ajay from 106.13.81.250Jun 24 16:03:44 pkdns2 sshd\[59104\]: Failed password for invalid user ajay from 106.13.81.250 port 44712 ssh2Jun 24 16:05:25 pkdns2 sshd\[59231\]: Invalid user lachlan from 106.13.81.250 ...	2020-06-25 02:44:24
106.13.81.250	attackspambots	Jun 19 07:42:27 hosting sshd[5297]: Invalid user rider from 106.13.81.250 port 33348 ...	2020-06-19 13:49:53
106.13.81.250	attackspam	Jun 14 17:02:32 vps46666688 sshd[26762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.250 Jun 14 17:02:35 vps46666688 sshd[26762]: Failed password for invalid user ysl from 106.13.81.250 port 38872 ssh2 ...	2020-06-15 04:24:28
106.13.81.250	attackspambots	Jun 10 13:02:16 sso sshd[9296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.250 Jun 10 13:02:17 sso sshd[9296]: Failed password for invalid user Plus!@#$ from 106.13.81.250 port 51028 ssh2 ...	2020-06-10 20:13:58
106.13.81.250	attack	fail2ban	2020-06-03 07:23:57
106.13.81.162	attackspam	May 29 22:43:36 vps sshd[404728]: Failed password for root from 106.13.81.162 port 37780 ssh2 May 29 22:46:51 vps sshd[420910]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.162 user=root May 29 22:46:54 vps sshd[420910]: Failed password for root from 106.13.81.162 port 58884 ssh2 May 29 22:50:06 vps sshd[436571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.162 user=root May 29 22:50:08 vps sshd[436571]: Failed password for root from 106.13.81.162 port 51746 ssh2 ...	2020-05-30 05:51:26

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.81.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32381
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.81.18.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019083001 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 31 01:44:04 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 18.81.13.106.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 18.81.13.106.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.45.42.173	attackspam	2020-07-18T20:09:55.336588ionos.janbro.de sshd[12089]: Invalid user nodejs from 119.45.42.173 port 49750 2020-07-18T20:09:57.707683ionos.janbro.de sshd[12089]: Failed password for invalid user nodejs from 119.45.42.173 port 49750 ssh2 2020-07-18T20:10:24.689772ionos.janbro.de sshd[12095]: Invalid user bak from 119.45.42.173 port 51958 2020-07-18T20:10:24.939552ionos.janbro.de sshd[12095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.42.173 2020-07-18T20:10:24.689772ionos.janbro.de sshd[12095]: Invalid user bak from 119.45.42.173 port 51958 2020-07-18T20:10:27.578125ionos.janbro.de sshd[12095]: Failed password for invalid user bak from 119.45.42.173 port 51958 ssh2 2020-07-18T20:10:42.200326ionos.janbro.de sshd[12097]: Invalid user michele from 119.45.42.173 port 54158 2020-07-18T20:10:42.411004ionos.janbro.de sshd[12097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.42.173 2020-07-18T20: ...	2020-07-19 06:16:09
91.149.139.198	attackbotsspam	Unauthorized connection attempt detected from IP address 91.149.139.198 to port 22	2020-07-19 05:48:04
54.37.154.248	attackspam	Jul 18 23:16:54 meumeu sshd[970633]: Invalid user backend from 54.37.154.248 port 60496 Jul 18 23:16:54 meumeu sshd[970633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.154.248 Jul 18 23:16:54 meumeu sshd[970633]: Invalid user backend from 54.37.154.248 port 60496 Jul 18 23:16:56 meumeu sshd[970633]: Failed password for invalid user backend from 54.37.154.248 port 60496 ssh2 Jul 18 23:18:18 meumeu sshd[970710]: Invalid user niraj from 54.37.154.248 port 54692 Jul 18 23:18:18 meumeu sshd[970710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.154.248 Jul 18 23:18:18 meumeu sshd[970710]: Invalid user niraj from 54.37.154.248 port 54692 Jul 18 23:18:20 meumeu sshd[970710]: Failed password for invalid user niraj from 54.37.154.248 port 54692 ssh2 Jul 18 23:19:40 meumeu sshd[970951]: Invalid user esuser from 54.37.154.248 port 48886 ...	2020-07-19 05:44:59
167.172.178.216	attackbots	Jul 19 00:02:46 abendstille sshd\[26670\]: Invalid user water from 167.172.178.216 Jul 19 00:02:46 abendstille sshd\[26670\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.178.216 Jul 19 00:02:48 abendstille sshd\[26670\]: Failed password for invalid user water from 167.172.178.216 port 57834 ssh2 Jul 19 00:06:57 abendstille sshd\[31078\]: Invalid user snake from 167.172.178.216 Jul 19 00:06:57 abendstille sshd\[31078\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.178.216 ...	2020-07-19 06:21:32
121.34.32.172	attackspam	1595101822 - 07/18/2020 21:50:22 Host: 121.34.32.172/121.34.32.172 Port: 445 TCP Blocked	2020-07-19 05:45:53
60.248.19.9	attackspambots	firewall-block, port(s): 23/tcp	2020-07-19 06:10:19
195.189.108.116	attackspambots	firewall-block, port(s): 1433/tcp	2020-07-19 05:47:02
51.68.198.75	attack	Invalid user wen from 51.68.198.75 port 36818	2020-07-19 06:05:19
41.90.62.161	attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2020-07-19 06:13:47
115.213.233.102	attack	Email login attempts - too many failed mail login attempts (SMTP)	2020-07-19 06:11:35
27.199.32.118	attackspambots	Jul 18 21:50:03 prox sshd[17935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.199.32.118 Jul 18 21:50:05 prox sshd[17935]: Failed password for invalid user qa from 27.199.32.118 port 37290 ssh2	2020-07-19 06:07:21
91.204.199.73	attack	" "	2020-07-19 06:04:31
66.70.130.151	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-19 06:13:24
3.128.234.21	attackbotsspam	Invalid user bb from 3.128.234.21 port 42108	2020-07-19 05:55:53
107.214.242.155	attackspam	firewall-block, port(s): 2323/tcp	2020-07-19 06:01:34

Recently Reported IPs

124.28.42.99	176.188.107.36	200.90.173.185	234.200.115.74
38.184.20.58	90.37.224.253	215.5.38.116	116.237.67.62
6.4.83.56	55.104.244.43	199.144.27.172	113.26.110.167
142.184.1.6	221.164.196.63	207.165.44.229	5.127.12.172
191.91.27.186	171.87.85.178	211.189.160.44	70.158.198.255