106.13.52.83 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	B: Abusive ssh attack	2020-08-12 13:47:46
attack	Jul 24 07:17:41 debian-2gb-nbg1-2 kernel: \[17826382.914221\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=106.13.52.83 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=38581 PROTO=TCP SPT=51495 DPT=3752 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-24 17:25:31
attackspambots	Jul 9 22:28:18 scw-6657dc sshd[31104]: Failed password for mail from 106.13.52.83 port 49798 ssh2 Jul 9 22:28:18 scw-6657dc sshd[31104]: Failed password for mail from 106.13.52.83 port 49798 ssh2 Jul 9 22:34:05 scw-6657dc sshd[31307]: Invalid user xpp from 106.13.52.83 port 34766 ...	2020-07-10 07:18:21
attackspambots	May 26 00:19:01 santamaria sshd\[20269\]: Invalid user chaunte from 106.13.52.83 May 26 00:19:01 santamaria sshd\[20269\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.83 May 26 00:19:03 santamaria sshd\[20269\]: Failed password for invalid user chaunte from 106.13.52.83 port 42226 ssh2 ...	2020-05-26 07:02:50
attackbots	SSH Invalid Login	2020-05-23 06:34:35
attack	May 19 21:05:24 eventyay sshd[1302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.83 May 19 21:05:25 eventyay sshd[1302]: Failed password for invalid user epiconf from 106.13.52.83 port 55922 ssh2 May 19 21:07:06 eventyay sshd[1370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.83 ...	2020-05-20 03:14:59
attackspam	Apr 27 15:36:33 pkdns2 sshd\[27919\]: Invalid user oper from 106.13.52.83Apr 27 15:36:34 pkdns2 sshd\[27919\]: Failed password for invalid user oper from 106.13.52.83 port 37570 ssh2Apr 27 15:40:59 pkdns2 sshd\[28118\]: Invalid user uuu from 106.13.52.83Apr 27 15:41:01 pkdns2 sshd\[28118\]: Failed password for invalid user uuu from 106.13.52.83 port 37992 ssh2Apr 27 15:45:24 pkdns2 sshd\[28332\]: Invalid user pao from 106.13.52.83Apr 27 15:45:26 pkdns2 sshd\[28332\]: Failed password for invalid user pao from 106.13.52.83 port 38412 ssh2 ...	2020-04-28 00:10:53
attack	$lgm	2020-04-09 17:04:59
attack	Apr 3 03:33:11 gw1 sshd[10572]: Failed password for root from 106.13.52.83 port 48678 ssh2 ...	2020-04-03 07:14:20
attackbotsspam	Mar 20 08:51:01 gw1 sshd[18619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.83 Mar 20 08:51:03 gw1 sshd[18619]: Failed password for invalid user gopher from 106.13.52.83 port 56580 ssh2 ...	2020-03-20 19:45:57
attackbotsspam	Mar 7 23:07:44 vps691689 sshd[13059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.83 Mar 7 23:07:45 vps691689 sshd[13059]: Failed password for invalid user PASSW0RD@1234 from 106.13.52.83 port 53880 ssh2 Mar 7 23:08:41 vps691689 sshd[13083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.83 ...	2020-03-08 07:30:31

Comments on same subnet:

IP	Type	Details	Datetime
106.13.52.107	attackbots	20 attempts against mh-ssh on echoip	2020-08-26 20:28:49
106.13.52.107	attackspam	Aug 25 05:08:10 serwer sshd\[21470\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.107 user=root Aug 25 05:08:13 serwer sshd\[21470\]: Failed password for root from 106.13.52.107 port 40932 ssh2 Aug 25 05:15:21 serwer sshd\[28095\]: Invalid user mc from 106.13.52.107 port 34882 Aug 25 05:15:21 serwer sshd\[28095\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.107 ...	2020-08-25 21:13:36
106.13.52.107	attackspambots	sshd jail - ssh hack attempt	2020-08-19 18:25:45
106.13.52.234	attackspam	prod11 ...	2020-08-08 01:35:43
106.13.52.234	attackbots	Too many connections or unauthorized access detected from Arctic banned ip	2020-08-02 15:00:27
106.13.52.234	attack	Aug 1 05:48:59 root sshd[26761]: Failed password for root from 106.13.52.234 port 56080 ssh2 Aug 1 05:57:22 root sshd[27856]: Failed password for root from 106.13.52.234 port 34018 ssh2 ...	2020-08-01 18:59:39
106.13.52.234	attackbotsspam	Jul 31 16:31:28 plg sshd[8626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.234 user=root Jul 31 16:31:30 plg sshd[8626]: Failed password for invalid user root from 106.13.52.234 port 57108 ssh2 Jul 31 16:33:46 plg sshd[8660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.234 user=root Jul 31 16:33:48 plg sshd[8660]: Failed password for invalid user root from 106.13.52.234 port 57144 ssh2 Jul 31 16:36:10 plg sshd[8704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.234 user=root Jul 31 16:36:12 plg sshd[8704]: Failed password for invalid user root from 106.13.52.234 port 57172 ssh2 ...	2020-08-01 02:32:28
106.13.52.234	attackspambots	Jul 28 06:44:09 buvik sshd[1072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.234 Jul 28 06:44:11 buvik sshd[1072]: Failed password for invalid user xuzx from 106.13.52.234 port 57502 ssh2 Jul 28 06:46:59 buvik sshd[1572]: Invalid user uap from 106.13.52.234 ...	2020-07-28 17:09:16
106.13.52.234	attack	Invalid user guest from 106.13.52.234 port 42628	2020-07-28 06:10:35
106.13.52.234	attackbotsspam	Jul 23 23:09:22 OPSO sshd\[6221\]: Invalid user sistemas from 106.13.52.234 port 46484 Jul 23 23:09:22 OPSO sshd\[6221\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.234 Jul 23 23:09:25 OPSO sshd\[6221\]: Failed password for invalid user sistemas from 106.13.52.234 port 46484 ssh2 Jul 23 23:13:42 OPSO sshd\[7121\]: Invalid user adrian from 106.13.52.234 port 48820 Jul 23 23:13:42 OPSO sshd\[7121\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.234	2020-07-24 05:39:35
106.13.52.107	attack	Jul 23 09:06:28 l03 sshd[25736]: Invalid user jochen from 106.13.52.107 port 45506 ...	2020-07-23 17:06:36
106.13.52.107	attackbotsspam	Invalid user dva from 106.13.52.107 port 60112	2020-07-18 21:22:04
106.13.52.234	attack	Jul 11 20:42:34 tuxlinux sshd[10939]: Invalid user corine from 106.13.52.234 port 55690 Jul 11 20:42:34 tuxlinux sshd[10939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.234 Jul 11 20:42:34 tuxlinux sshd[10939]: Invalid user corine from 106.13.52.234 port 55690 Jul 11 20:42:34 tuxlinux sshd[10939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.234 Jul 11 20:42:34 tuxlinux sshd[10939]: Invalid user corine from 106.13.52.234 port 55690 Jul 11 20:42:34 tuxlinux sshd[10939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.234 Jul 11 20:42:35 tuxlinux sshd[10939]: Failed password for invalid user corine from 106.13.52.234 port 55690 ssh2 ...	2020-07-13 04:16:28
106.13.52.107	attackbots	Jul 10 15:16:46 lnxweb62 sshd[11400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.107	2020-07-10 23:10:16
106.13.52.234	attackspam	Jul 9 15:13:44 ajax sshd[21277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.234 Jul 9 15:13:46 ajax sshd[21277]: Failed password for invalid user user from 106.13.52.234 port 49682 ssh2	2020-07-09 23:10:20

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.52.83
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.52.83.			IN	A

;; AUTHORITY SECTION:
.			306	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030701 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 08 07:30:28 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 83.52.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 83.52.13.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
61.178.159.233	attackspam	Sep 1 19:16:54 h2177944 kernel: \[234880.170357\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=61.178.159.233 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=112 ID=30936 DF PROTO=TCP SPT=55125 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0 Sep 1 19:16:57 h2177944 kernel: \[234883.178230\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=61.178.159.233 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=112 ID=1692 DF PROTO=TCP SPT=55125 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0 Sep 1 19:17:03 h2177944 kernel: \[234889.182750\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=61.178.159.233 DST=85.214.117.9 LEN=48 TOS=0x00 PREC=0x00 TTL=112 ID=9243 DF PROTO=TCP SPT=55125 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0 Sep 1 19:30:41 h2177944 kernel: \[235707.538116\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=61.178.159.233 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=112 ID=2890 DF PROTO=TCP SPT=62885 DPT=65529 WINDOW=8192 RES=0x00 SYN URGP=0 Sep 1 19:30:44 h2177944 kernel: \[235710.518154\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=61.178.159.233 DST=85	2019-09-02 07:02:05
218.98.26.163	attackspambots	Fail2Ban - SSH Bruteforce Attempt	2019-09-02 06:25:45
159.203.99.68	attackspam	fail2ban honeypot	2019-09-02 06:53:29
80.237.68.228	attackspam	Sep 2 03:25:49 areeb-Workstation sshd[29539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.237.68.228 Sep 2 03:25:51 areeb-Workstation sshd[29539]: Failed password for invalid user noob from 80.237.68.228 port 41092 ssh2 ...	2019-09-02 06:19:23
113.53.234.130	attackbots	Unauthorized connection attempt from IP address 113.53.234.130 on Port 445(SMB)	2019-09-02 06:40:40
202.65.140.66	attack	2019-09-01T15:26:42.524148mizuno.rwx.ovh sshd[23285]: Connection from 202.65.140.66 port 33028 on 78.46.61.178 port 22 2019-09-01T15:26:43.514372mizuno.rwx.ovh sshd[23285]: Invalid user fu from 202.65.140.66 port 33028 2019-09-01T15:26:43.524901mizuno.rwx.ovh sshd[23285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.65.140.66 2019-09-01T15:26:42.524148mizuno.rwx.ovh sshd[23285]: Connection from 202.65.140.66 port 33028 on 78.46.61.178 port 22 2019-09-01T15:26:43.514372mizuno.rwx.ovh sshd[23285]: Invalid user fu from 202.65.140.66 port 33028 2019-09-01T15:26:45.887417mizuno.rwx.ovh sshd[23285]: Failed password for invalid user fu from 202.65.140.66 port 33028 ssh2 ...	2019-09-02 06:09:20
95.189.107.108	attackbots	Automatic report - Port Scan Attack	2019-09-02 06:48:10
201.149.22.37	attackspam	Sep 1 20:33:46 localhost sshd\[24149\]: Invalid user administrator from 201.149.22.37 port 48492 Sep 1 20:33:46 localhost sshd\[24149\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.149.22.37 Sep 1 20:33:48 localhost sshd\[24149\]: Failed password for invalid user administrator from 201.149.22.37 port 48492 ssh2 ...	2019-09-02 06:37:55
117.252.10.252	attackbotsspam	$f2bV_matches	2019-09-02 06:33:53
5.218.49.197	attackbots	Unauthorized connection attempt from IP address 5.218.49.197 on Port 445(SMB)	2019-09-02 06:43:02
106.12.14.254	attack	2019-09-01T21:22:02.696214abusebot-6.cloudsearch.cf sshd\[27473\]: Invalid user school from 106.12.14.254 port 32896	2019-09-02 06:31:20
162.247.72.199	attack	2019-09-01T22:40:17.994215abusebot.cloudsearch.cf sshd\[7410\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.72.199 user=root	2019-09-02 06:56:24
41.33.119.67	attackbotsspam	Automatic report - Banned IP Access	2019-09-02 06:16:35
61.12.42.158	attackspambots	Unauthorized connection attempt from IP address 61.12.42.158 on Port 445(SMB)	2019-09-02 06:25:21
82.207.43.82	attackbots	Unauthorized connection attempt from IP address 82.207.43.82 on Port 445(SMB)	2019-09-02 06:54:29

Recently Reported IPs

197.211.61.145	103.242.118.183	106.12.88.95	14.233.32.54
111.236.244.109	61.247.86.121	178.33.148.10	86.206.56.208
49.234.91.122	106.13.39.127	172.106.3.200	156.96.148.73
197.44.186.226	51.159.0.133	84.60.146.130	193.34.69.224
116.102.93.135	92.118.234.234	139.162.192.166	113.140.80.174