106.13.84.242 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	2020-09-28T22:39:56.083375ks3355764 sshd[19445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.242 user=root 2020-09-28T22:39:57.987202ks3355764 sshd[19445]: Failed password for root from 106.13.84.242 port 36756 ssh2 ...	2020-09-30 05:08:18
attack	2020-09-28T22:39:56.083375ks3355764 sshd[19445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.242 user=root 2020-09-28T22:39:57.987202ks3355764 sshd[19445]: Failed password for root from 106.13.84.242 port 36756 ssh2 ...	2020-09-29 21:17:49
attack	2020-09-28T22:39:56.083375ks3355764 sshd[19445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.242 user=root 2020-09-28T22:39:57.987202ks3355764 sshd[19445]: Failed password for root from 106.13.84.242 port 36756 ssh2 ...	2020-09-29 13:31:43
attackbots	Automatic report BANNED IP	2020-09-18 17:30:24
attackspam	Sep 18 01:23:32 PorscheCustomer sshd[14549]: Failed password for root from 106.13.84.242 port 47662 ssh2 Sep 18 01:27:53 PorscheCustomer sshd[14741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.242 Sep 18 01:27:56 PorscheCustomer sshd[14741]: Failed password for invalid user st4ck from 106.13.84.242 port 55010 ssh2 ...	2020-09-18 07:45:10
attack	SSH brute force attempt	2020-09-15 02:06:30
attackbots	Sep 14 11:31:04 mout sshd[24876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.242 user=root Sep 14 11:31:06 mout sshd[24876]: Failed password for root from 106.13.84.242 port 39532 ssh2	2020-09-14 17:52:49

Comments on same subnet:

IP	Type	Details	Datetime
106.13.84.151	attackbotsspam	Sep 30 22:07:23 ns382633 sshd\[20740\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.151 user=root Sep 30 22:07:26 ns382633 sshd\[20740\]: Failed password for root from 106.13.84.151 port 38834 ssh2 Sep 30 22:23:02 ns382633 sshd\[24194\]: Invalid user mikael from 106.13.84.151 port 37372 Sep 30 22:23:02 ns382633 sshd\[24194\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.151 Sep 30 22:23:04 ns382633 sshd\[24194\]: Failed password for invalid user mikael from 106.13.84.151 port 37372 ssh2	2020-10-01 08:10:01
106.13.84.151	attack	(sshd) Failed SSH login from 106.13.84.151 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 30 12:23:13 optimus sshd[2918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.151 user=root Sep 30 12:23:15 optimus sshd[2918]: Failed password for root from 106.13.84.151 port 36188 ssh2 Sep 30 12:23:35 optimus sshd[3046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.151 user=root Sep 30 12:23:37 optimus sshd[3046]: Failed password for root from 106.13.84.151 port 47430 ssh2 Sep 30 12:31:50 optimus sshd[5784]: Invalid user mo from 106.13.84.151	2020-10-01 00:42:15
106.13.84.151	attack	Aug 12 19:02:00 firewall sshd[2940]: Failed password for root from 106.13.84.151 port 56602 ssh2 Aug 12 19:03:39 firewall sshd[2991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.151 user=root Aug 12 19:03:41 firewall sshd[2991]: Failed password for root from 106.13.84.151 port 52992 ssh2 ...	2020-08-13 08:51:35
106.13.84.151	attack	2020-08-10T13:35:15.288734shield sshd\[30257\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.151 user=root 2020-08-10T13:35:16.551252shield sshd\[30257\]: Failed password for root from 106.13.84.151 port 48410 ssh2 2020-08-10T13:39:04.415061shield sshd\[30603\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.151 user=root 2020-08-10T13:39:06.114193shield sshd\[30603\]: Failed password for root from 106.13.84.151 port 59730 ssh2 2020-08-10T13:42:41.268600shield sshd\[30920\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.151 user=root	2020-08-10 22:15:14
106.13.84.151	attackspambots	Brute force attempt	2020-08-06 17:58:10
106.13.84.151	attack	2020-08-05T03:40:29.725172abusebot-8.cloudsearch.cf sshd[9190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.151 user=root 2020-08-05T03:40:31.175721abusebot-8.cloudsearch.cf sshd[9190]: Failed password for root from 106.13.84.151 port 54146 ssh2 2020-08-05T03:43:27.624331abusebot-8.cloudsearch.cf sshd[9227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.151 user=root 2020-08-05T03:43:29.179794abusebot-8.cloudsearch.cf sshd[9227]: Failed password for root from 106.13.84.151 port 33306 ssh2 2020-08-05T03:46:23.906949abusebot-8.cloudsearch.cf sshd[9255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.151 user=root 2020-08-05T03:46:25.959115abusebot-8.cloudsearch.cf sshd[9255]: Failed password for root from 106.13.84.151 port 40700 ssh2 2020-08-05T03:49:12.634006abusebot-8.cloudsearch.cf sshd[9335]: pam_unix(sshd:auth): authenticati ...	2020-08-05 18:25:45
106.13.84.151	attackbotsspam	2020-08-02 UTC: (70x) - root(70x)	2020-08-03 19:31:28
106.13.84.151	attackbotsspam	Jul 11 06:23:04 eventyay sshd[6513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.151 Jul 11 06:23:05 eventyay sshd[6513]: Failed password for invalid user tito from 106.13.84.151 port 46558 ssh2 Jul 11 06:25:30 eventyay sshd[6647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.151 ...	2020-07-11 12:52:23
106.13.84.192	attackspam	2020-07-06T04:48:22.171720shield sshd\[25109\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.192 user=root 2020-07-06T04:48:24.319859shield sshd\[25109\]: Failed password for root from 106.13.84.192 port 43090 ssh2 2020-07-06T04:52:12.597898shield sshd\[26859\]: Invalid user dpp from 106.13.84.192 port 35410 2020-07-06T04:52:12.601330shield sshd\[26859\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.192 2020-07-06T04:52:14.661738shield sshd\[26859\]: Failed password for invalid user dpp from 106.13.84.192 port 35410 ssh2	2020-07-06 16:23:20
106.13.84.151	attackbots	Invalid user juris from 106.13.84.151 port 33450	2020-07-01 14:44:59
106.13.84.151	attackbotsspam	Jun 19 06:37:41 web1 sshd[25605]: Invalid user rubens from 106.13.84.151 port 34920 Jun 19 06:37:41 web1 sshd[25605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.151 Jun 19 06:37:41 web1 sshd[25605]: Invalid user rubens from 106.13.84.151 port 34920 Jun 19 06:37:43 web1 sshd[25605]: Failed password for invalid user rubens from 106.13.84.151 port 34920 ssh2 Jun 19 06:42:03 web1 sshd[26664]: Invalid user rich from 106.13.84.151 port 34180 Jun 19 06:42:03 web1 sshd[26664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.151 Jun 19 06:42:03 web1 sshd[26664]: Invalid user rich from 106.13.84.151 port 34180 Jun 19 06:42:04 web1 sshd[26664]: Failed password for invalid user rich from 106.13.84.151 port 34180 ssh2 Jun 19 06:45:36 web1 sshd[27573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.151 user=root Jun 19 06:45:38 web1 sshd[27573]: ...	2020-06-19 06:44:14
106.13.84.192	attack	(sshd) Failed SSH login from 106.13.84.192 (CN/China/-): 5 in the last 3600 secs	2020-06-18 21:02:56
106.13.84.192	attackspam	sshd	2020-06-17 07:35:50
106.13.84.192	attackspam	k+ssh-bruteforce	2020-06-14 14:40:12
106.13.84.151	attackbotsspam	Jun 14 03:55:54 scw-6657dc sshd[30876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.151 Jun 14 03:55:54 scw-6657dc sshd[30876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.151 Jun 14 03:55:56 scw-6657dc sshd[30876]: Failed password for invalid user dockerroot from 106.13.84.151 port 55796 ssh2 ...	2020-06-14 12:36:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.84.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19257
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.84.242.			IN	A

;; AUTHORITY SECTION:
.			321	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091400 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Sep 14 17:52:43 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 242.84.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 242.84.13.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
182.61.136.23	attackspam	Sep 14 02:26:18 s64-1 sshd[29058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.136.23 Sep 14 02:26:19 s64-1 sshd[29058]: Failed password for invalid user tomcat1 from 182.61.136.23 port 33870 ssh2 Sep 14 02:31:15 s64-1 sshd[29183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.136.23 ...	2019-09-14 08:48:11
5.189.207.160	attack	Ein möglicherweise gefährlicher Request.Form-Wert wurde vom Client (mp$ContentZone$TxtMessage="	2019-09-14 08:29:34
106.13.32.70	attackbots	Sep 13 12:53:41 php2 sshd\[1882\]: Invalid user sinus from 106.13.32.70 Sep 13 12:53:41 php2 sshd\[1882\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.32.70 Sep 13 12:53:43 php2 sshd\[1882\]: Failed password for invalid user sinus from 106.13.32.70 port 52116 ssh2 Sep 13 12:55:26 php2 sshd\[2042\]: Invalid user 1q2w3e4r from 106.13.32.70 Sep 13 12:55:26 php2 sshd\[2042\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.32.70	2019-09-14 08:41:13
167.71.64.9	attack	Sep 14 01:50:08 vps691689 sshd[26010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.64.9 Sep 14 01:50:10 vps691689 sshd[26010]: Failed password for invalid user user8 from 167.71.64.9 port 47664 ssh2 ...	2019-09-14 08:28:44
158.69.223.91	attackspam	Sep 14 00:38:04 hb sshd\[11462\]: Invalid user musikbot from 158.69.223.91 Sep 14 00:38:04 hb sshd\[11462\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.ip-158-69-223.net Sep 14 00:38:06 hb sshd\[11462\]: Failed password for invalid user musikbot from 158.69.223.91 port 49010 ssh2 Sep 14 00:42:21 hb sshd\[11812\]: Invalid user password from 158.69.223.91 Sep 14 00:42:21 hb sshd\[11812\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.ip-158-69-223.net	2019-09-14 08:47:41
2620:18c::185	attackspambots	ssh failed login	2019-09-14 08:16:37
156.155.9.169	attackbotsspam	2019-09-14T00:05:25.645044abusebot-2.cloudsearch.cf sshd\[9729\]: Invalid user peewee from 156.155.9.169 port 40834	2019-09-14 08:21:22
123.206.13.46	attackspam	Sep 14 00:44:59 www4 sshd\[12557\]: Invalid user tally from 123.206.13.46 Sep 14 00:44:59 www4 sshd\[12557\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.13.46 Sep 14 00:45:01 www4 sshd\[12557\]: Failed password for invalid user tally from 123.206.13.46 port 58994 ssh2 ...	2019-09-14 08:56:26
222.186.180.21	attackspam	$f2bV_matches	2019-09-14 08:22:49
222.186.52.78	attackspambots	Sep 14 07:53:47 webhost01 sshd[20999]: Failed password for root from 222.186.52.78 port 29011 ssh2 ...	2019-09-14 09:02:49
206.189.142.10	attackbots	Sep 13 14:27:38 eddieflores sshd\[26795\]: Invalid user mailnull from 206.189.142.10 Sep 13 14:27:38 eddieflores sshd\[26795\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.142.10 Sep 13 14:27:40 eddieflores sshd\[26795\]: Failed password for invalid user mailnull from 206.189.142.10 port 48980 ssh2 Sep 13 14:32:40 eddieflores sshd\[27246\]: Invalid user BOT from 206.189.142.10 Sep 13 14:32:40 eddieflores sshd\[27246\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.142.10	2019-09-14 08:34:55
111.230.53.144	attackbotsspam	Sep 13 20:11:56 xtremcommunity sshd\[53575\]: Invalid user vvv from 111.230.53.144 port 34600 Sep 13 20:11:56 xtremcommunity sshd\[53575\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.53.144 Sep 13 20:11:59 xtremcommunity sshd\[53575\]: Failed password for invalid user vvv from 111.230.53.144 port 34600 ssh2 Sep 13 20:15:40 xtremcommunity sshd\[53657\]: Invalid user shell from 111.230.53.144 port 37658 Sep 13 20:15:40 xtremcommunity sshd\[53657\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.53.144 ...	2019-09-14 08:18:08
104.248.154.14	attack	Sep 14 00:08:53 localhost sshd\[109059\]: Invalid user yong from 104.248.154.14 port 42262 Sep 14 00:08:53 localhost sshd\[109059\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.154.14 Sep 14 00:08:55 localhost sshd\[109059\]: Failed password for invalid user yong from 104.248.154.14 port 42262 ssh2 Sep 14 00:23:41 localhost sshd\[109518\]: Invalid user alex from 104.248.154.14 port 50628 Sep 14 00:23:41 localhost sshd\[109518\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.154.14 ...	2019-09-14 08:24:38
141.98.9.195	attackspam	Sep 14 02:21:30 relay postfix/smtpd\[26805\]: warning: unknown\[141.98.9.195\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 14 02:22:13 relay postfix/smtpd\[17829\]: warning: unknown\[141.98.9.195\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 14 02:22:24 relay postfix/smtpd\[23500\]: warning: unknown\[141.98.9.195\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 14 02:23:07 relay postfix/smtpd\[21955\]: warning: unknown\[141.98.9.195\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 14 02:23:18 relay postfix/smtpd\[28230\]: warning: unknown\[141.98.9.195\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-14 08:26:12
167.99.52.34	attackspambots	Sep 13 13:47:07 php1 sshd\[1716\]: Invalid user 123456 from 167.99.52.34 Sep 13 13:47:07 php1 sshd\[1716\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.52.34 Sep 13 13:47:09 php1 sshd\[1716\]: Failed password for invalid user 123456 from 167.99.52.34 port 57788 ssh2 Sep 13 13:51:25 php1 sshd\[2091\]: Invalid user minecraft12 from 167.99.52.34 Sep 13 13:51:25 php1 sshd\[2091\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.52.34	2019-09-14 09:03:11

Recently Reported IPs

67.21.160.100	61.147.57.203	40.86.182.18	127.111.161.153
114.235.248.60	3.88.152.17	24.67.23.70	59.63.20.144
45.65.196.7	189.27.180.164	36.6.57.82	27.73.187.196
218.28.83.106	197.5.145.69	198.98.59.95	115.96.186.197
84.18.120.28	81.23.7.239	139.180.146.233	185.167.185.97