106.13.53.161 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Mar 8 11:35:09 lukav-desktop sshd\[13622\]: Invalid user cpanelphppgadmin from 106.13.53.161 Mar 8 11:35:09 lukav-desktop sshd\[13622\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.53.161 Mar 8 11:35:11 lukav-desktop sshd\[13622\]: Failed password for invalid user cpanelphppgadmin from 106.13.53.161 port 49858 ssh2 Mar 8 11:38:40 lukav-desktop sshd\[13682\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.53.161 user=root Mar 8 11:38:42 lukav-desktop sshd\[13682\]: Failed password for root from 106.13.53.161 port 37556 ssh2	2020-03-08 17:46:49
attackspam	Unauthorized connection attempt detected from IP address 106.13.53.161 to port 2220 [J]	2020-01-08 03:02:16
attack	Invalid user sueling from 106.13.53.161 port 36348	2020-01-03 19:23:57
attack	Dec 31 10:57:34 mailrelay sshd[24901]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.53.161 user=r.r Dec 31 10:57:36 mailrelay sshd[24901]: Failed password for r.r from 106.13.53.161 port 42456 ssh2 Dec 31 10:57:37 mailrelay sshd[24901]: Received disconnect from 106.13.53.161 port 42456:11: Bye Bye [preauth] Dec 31 10:57:37 mailrelay sshd[24901]: Disconnected from 106.13.53.161 port 42456 [preauth] Dec 31 11:06:23 mailrelay sshd[25004]: Invalid user greuel from 106.13.53.161 port 55246 Dec 31 11:06:23 mailrelay sshd[25004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.53.161 Dec 31 11:06:25 mailrelay sshd[25004]: Failed password for invalid user greuel from 106.13.53.161 port 55246 ssh2 Dec 31 11:06:25 mailrelay sshd[25004]: Received disconnect from 106.13.53.161 port 55246:11: Bye Bye [preauth] Dec 31 11:06:25 mailrelay sshd[25004]: Disconnected from 106.13.53.161 port 5........ -------------------------------	2020-01-02 04:48:54
attack	Unauthorized connection attempt detected from IP address 106.13.53.161 to port 22	2020-01-01 18:45:09

Comments on same subnet:

IP	Type	Details	Datetime
106.13.53.173	attackbotsspam	Apr 11 05:55:50 h2829583 sshd[29689]: Failed password for root from 106.13.53.173 port 47630 ssh2	2020-04-11 12:40:24
106.13.53.70	attackbotsspam	Apr 10 15:44:43 prod4 sshd\[12523\]: Invalid user dreambox from 106.13.53.70 Apr 10 15:44:45 prod4 sshd\[12523\]: Failed password for invalid user dreambox from 106.13.53.70 port 40562 ssh2 Apr 10 15:48:05 prod4 sshd\[13842\]: Invalid user jaimito from 106.13.53.70 ...	2020-04-10 23:48:51
106.13.53.70	attackspam	5x Failed Password	2020-04-10 14:57:59
106.13.53.173	attackbots	$f2bV_matches	2020-04-08 09:16:09
106.13.53.70	attack	Tried sshing with brute force.	2020-04-06 17:51:25
106.13.53.70	attackspambots	Feb 22 14:27:18 gw1 sshd[26645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.53.70 Feb 22 14:27:19 gw1 sshd[26645]: Failed password for invalid user kevin from 106.13.53.70 port 57122 ssh2 ...	2020-02-22 20:46:00
106.13.53.173	attackspambots	Brute-force attempt banned	2020-02-09 09:50:06
106.13.53.173	attack	Aug 26 13:16:18 ms-srv sshd[24684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.53.173 Aug 26 13:16:20 ms-srv sshd[24684]: Failed password for invalid user r from 106.13.53.173 port 55872 ssh2	2020-02-02 20:48:10
106.13.53.70	attackspambots	Unauthorized connection attempt detected from IP address 106.13.53.70 to port 2220 [J]	2020-01-24 04:51:17
106.13.53.173	attackbots	Jan 2 07:32:41 sshd[18484]: Failed password for invalid user ashlyn from 106.13.53.173 port 56756 ssh2	2020-01-02 15:11:56
106.13.53.173	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2020-01-02 07:49:52
106.13.53.16	attackspambots	Dec 20 21:27:44 sd-53420 sshd\[30703\]: Invalid user dorrell from 106.13.53.16 Dec 20 21:27:44 sd-53420 sshd\[30703\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.53.16 Dec 20 21:27:46 sd-53420 sshd\[30703\]: Failed password for invalid user dorrell from 106.13.53.16 port 37372 ssh2 Dec 20 21:32:38 sd-53420 sshd\[32532\]: User root from 106.13.53.16 not allowed because none of user's groups are listed in AllowGroups Dec 20 21:32:38 sd-53420 sshd\[32532\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.53.16 user=root ...	2019-12-21 04:40:07
106.13.53.173	attack	Dec 16 06:45:22 eddieflores sshd\[25365\]: Invalid user test from 106.13.53.173 Dec 16 06:45:22 eddieflores sshd\[25365\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.53.173 Dec 16 06:45:23 eddieflores sshd\[25365\]: Failed password for invalid user test from 106.13.53.173 port 44974 ssh2 Dec 16 06:53:38 eddieflores sshd\[26715\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.53.173 user=root Dec 16 06:53:41 eddieflores sshd\[26715\]: Failed password for root from 106.13.53.173 port 47050 ssh2	2019-12-17 01:59:04
106.13.53.16	attack	leo_www	2019-12-13 08:38:51
106.13.53.173	attack	Dec 5 23:55:27 server sshd\[29570\]: Invalid user jimm from 106.13.53.173 Dec 5 23:55:27 server sshd\[29570\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.53.173 Dec 5 23:55:29 server sshd\[29570\]: Failed password for invalid user jimm from 106.13.53.173 port 58090 ssh2 Dec 6 00:03:48 server sshd\[31753\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.53.173 user=root Dec 6 00:03:50 server sshd\[31753\]: Failed password for root from 106.13.53.173 port 48650 ssh2 ...	2019-12-06 05:48:20

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.53.161
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50148
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.53.161.			IN	A

;; AUTHORITY SECTION:
.			403	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019123101 1800 900 604800 86400

;; Query time: 503 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 01 18:45:05 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 161.53.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 161.53.13.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.177.151.90	attackbots	Unauthorized connection attempt detected from IP address 46.177.151.90 to port 8080 [J]	2020-01-25 20:34:11
51.75.23.232	attackbots	Jan 25 13:04:04 lnxded64 sshd[13426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.23.232 Jan 25 13:04:04 lnxded64 sshd[13426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.23.232	2020-01-25 20:05:44
103.79.112.234	attack	Unauthorized connection attempt detected from IP address 103.79.112.234 to port 80 [J]	2020-01-25 20:27:52
78.38.91.105	attackspam	Unauthorized connection attempt detected from IP address 78.38.91.105 to port 23 [J]	2020-01-25 20:30:52
192.140.60.115	attack	Unauthorized connection attempt detected from IP address 192.140.60.115 to port 80 [J]	2020-01-25 20:15:10
84.195.18.4	attackbots	Unauthorized connection attempt detected from IP address 84.195.18.4 to port 81 [J]	2020-01-25 20:29:53
49.234.96.24	attackspam	2020-1-25 11:38:35 AM: ssh bruteforce [3 failed attempts]	2020-01-25 20:06:14
59.188.15.196	attackbotsspam	Unauthorized connection attempt detected from IP address 59.188.15.196 to port 1433 [J]	2020-01-25 20:04:51
168.90.209.37	attackbotsspam	Unauthorized connection attempt detected from IP address 168.90.209.37 to port 80 [J]	2020-01-25 20:47:47
170.106.81.53	attackspambots	Unauthorized connection attempt detected from IP address 170.106.81.53 to port 7777 [J]	2020-01-25 20:47:02
121.165.73.64	attack	Unauthorized connection attempt detected from IP address 121.165.73.64 to port 2220 [J]	2020-01-25 20:24:18
111.229.177.240	attackbots	Unauthorized connection attempt detected from IP address 111.229.177.240 to port 7002 [J]	2020-01-25 20:26:13
179.232.90.143	attackbotsspam	Unauthorized connection attempt detected from IP address 179.232.90.143 to port 5358 [J]	2020-01-25 20:19:19
124.158.168.178	attackspam	Unauthorized connection attempt detected from IP address 124.158.168.178 to port 8080 [J]	2020-01-25 20:21:37
118.99.113.144	attackbots	1579927776 - 01/25/2020 05:49:36 Host: 118.99.113.144/118.99.113.144 Port: 445 TCP Blocked	2020-01-25 20:25:06

Recently Reported IPs

222.79.46.242	210.206.84.41	178.32.149.171	118.1.81.184
126.224.166.139	221.210.211.23	55.90.199.24	170.6.113.91
67.15.248.73	220.200.165.153	147.217.178.230	67.38.179.26
14.126.68.157	3.170.83.237	220.173.122.225	44.21.91.226
64.151.253.194	95.146.216.208	161.58.152.44	204.33.211.185