106.13.134.161

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Mar 25 18:35:51 itv-usvr-01 sshd[14660]: Invalid user marissa from 106.13.134.161 Mar 25 18:35:51 itv-usvr-01 sshd[14660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.161 Mar 25 18:35:51 itv-usvr-01 sshd[14660]: Invalid user marissa from 106.13.134.161 Mar 25 18:35:52 itv-usvr-01 sshd[14660]: Failed password for invalid user marissa from 106.13.134.161 port 43756 ssh2	2020-03-28 01:29:13
attackbotsspam	fail2ban	2020-03-27 00:39:15
attack	Invalid user dan from 106.13.134.161 port 33386	2020-03-21 10:02:34
attackbotsspam	Jan 10 13:12:28 pi sshd[21928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.161 Jan 10 13:12:30 pi sshd[21928]: Failed password for invalid user nexus from 106.13.134.161 port 57548 ssh2	2020-03-18 20:37:39
attackspambots	$f2bV_matches	2020-03-11 09:13:30
attackbotsspam	Mar 7 10:32:11 vps46666688 sshd[17056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.161 Mar 7 10:32:13 vps46666688 sshd[17056]: Failed password for invalid user 123456 from 106.13.134.161 port 40198 ssh2 ...	2020-03-08 00:28:01
attackbots	Feb 29 23:50:01 sso sshd[3303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.161 Feb 29 23:50:02 sso sshd[3303]: Failed password for invalid user admin1 from 106.13.134.161 port 40900 ssh2 ...	2020-03-01 07:45:01
attackspam	Feb 21 22:40:03 sachi sshd\[20259\]: Invalid user hadoop from 106.13.134.161 Feb 21 22:40:03 sachi sshd\[20259\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.161 Feb 21 22:40:05 sachi sshd\[20259\]: Failed password for invalid user hadoop from 106.13.134.161 port 53270 ssh2 Feb 21 22:46:23 sachi sshd\[20788\]: Invalid user cpanelphpmyadmin from 106.13.134.161 Feb 21 22:46:23 sachi sshd\[20788\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.161	2020-02-22 19:22:34
attack	Feb 21 07:52:14 vps647732 sshd[8073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.161 Feb 21 07:52:15 vps647732 sshd[8073]: Failed password for invalid user ela from 106.13.134.161 port 51428 ssh2 ...	2020-02-21 15:51:02
attack	Automatic report - Banned IP Access	2020-01-15 05:20:27
attackspam	Dec 30 00:37:35 mout sshd[29529]: Invalid user dohse from 106.13.134.161 port 57672	2019-12-30 07:55:49
attackbotsspam	Automatic report: Failed SSH login attempt	2019-12-03 22:32:04
attack	k+ssh-bruteforce	2019-11-27 04:17:30
attackspambots	Oct 21 13:26:07 areeb-Workstation sshd[13876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.161 Oct 21 13:26:09 areeb-Workstation sshd[13876]: Failed password for invalid user haxor from 106.13.134.161 port 50652 ssh2 ...	2019-10-21 16:18:30
attack	Sep 30 17:56:10 kapalua sshd\[17338\]: Invalid user hn from 106.13.134.161 Sep 30 17:56:10 kapalua sshd\[17338\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.161 Sep 30 17:56:12 kapalua sshd\[17338\]: Failed password for invalid user hn from 106.13.134.161 port 60574 ssh2 Sep 30 17:59:29 kapalua sshd\[17672\]: Invalid user rama from 106.13.134.161 Sep 30 17:59:29 kapalua sshd\[17672\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.161	2019-10-01 12:03:28
attackbotsspam	"Fail2Ban detected SSH brute force attempt"	2019-09-21 03:17:46
attackbots	Aug 30 06:39:15 game-panel sshd[28840]: Failed password for lxd from 106.13.134.161 port 53528 ssh2 Aug 30 06:42:38 game-panel sshd[28935]: Failed password for root from 106.13.134.161 port 49080 ssh2 Aug 30 06:45:59 game-panel sshd[29034]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.161	2019-08-31 00:29:16
attackspambots	Aug 30 01:47:19 game-panel sshd[14919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.161 Aug 30 01:47:21 game-panel sshd[14919]: Failed password for invalid user alex from 106.13.134.161 port 45872 ssh2 Aug 30 01:50:45 game-panel sshd[15043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.161	2019-08-30 10:15:27
attack	Aug 24 09:26:14 debian sshd\[21364\]: Invalid user postgres from 106.13.134.161 port 52646 Aug 24 09:26:14 debian sshd\[21364\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.161 Aug 24 09:26:17 debian sshd\[21364\]: Failed password for invalid user postgres from 106.13.134.161 port 52646 ssh2 ...	2019-08-24 21:27:26
attackbotsspam	Aug 9 22:42:19 xtremcommunity sshd\[13221\]: Invalid user trade from 106.13.134.161 port 43690 Aug 9 22:42:19 xtremcommunity sshd\[13221\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.161 Aug 9 22:42:20 xtremcommunity sshd\[13221\]: Failed password for invalid user trade from 106.13.134.161 port 43690 ssh2 Aug 9 22:47:35 xtremcommunity sshd\[13424\]: Invalid user ts3 from 106.13.134.161 port 59520 Aug 9 22:47:35 xtremcommunity sshd\[13424\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.161 ...	2019-08-10 11:03:04
attackspambots	Aug 1 19:14:56 aat-srv002 sshd[25927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.161 Aug 1 19:14:58 aat-srv002 sshd[25927]: Failed password for invalid user blake from 106.13.134.161 port 33540 ssh2 Aug 1 19:17:14 aat-srv002 sshd[25981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.161 Aug 1 19:17:16 aat-srv002 sshd[25981]: Failed password for invalid user tullio from 106.13.134.161 port 55326 ssh2 ...	2019-08-02 13:48:19
attackspam	Jun 30 10:13:21 nginx sshd[88609]: Invalid user castis from 106.13.134.161 Jun 30 10:13:21 nginx sshd[88609]: Received disconnect from 106.13.134.161 port 47896:11: Normal Shutdown, Thank you for playing [preauth]	2019-06-30 16:52:32

Comments on same subnet:

IP	Type	Details	Datetime
106.13.134.142	attackspam	(sshd) Failed SSH login from 106.13.134.142 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 8 10:48:46 optimus sshd[26065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.142 user=root Sep 8 10:48:48 optimus sshd[26065]: Failed password for root from 106.13.134.142 port 58966 ssh2 Sep 8 10:54:08 optimus sshd[28026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.142 user=root Sep 8 10:54:10 optimus sshd[28026]: Failed password for root from 106.13.134.142 port 57340 ssh2 Sep 8 10:59:37 optimus sshd[29889]: Did not receive identification string from 106.13.134.142	2020-09-09 00:13:09
106.13.134.142	attackspam	firewall-block, port(s): 7374/tcp	2020-09-08 15:44:46
106.13.134.142	attackspambots	k+ssh-bruteforce	2020-09-08 08:18:33
106.13.134.142	attackbotsspam	firewall-block, port(s): 29420/tcp	2020-09-03 03:43:07
106.13.134.142	attack	Invalid user zt from 106.13.134.142 port 38514	2020-09-02 19:21:55
106.13.134.142	attackbots	" "	2020-09-01 00:36:51
106.13.134.142	attackbots	Invalid user anon from 106.13.134.142 port 49572	2020-08-17 04:12:17
106.13.134.19	attackbots	May 19 20:50:46 vmd48417 sshd[18889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.19	2020-05-20 04:03:28
106.13.134.19	attackspambots	May 8 23:00:10 vps46666688 sshd[31277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.19 May 8 23:00:13 vps46666688 sshd[31277]: Failed password for invalid user anonymous from 106.13.134.19 port 41980 ssh2 ...	2020-05-10 01:38:55
106.13.134.19	attackspambots	May 1 13:38:17 ns392434 sshd[13174]: Invalid user pai from 106.13.134.19 port 34706 May 1 13:38:17 ns392434 sshd[13174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.19 May 1 13:38:17 ns392434 sshd[13174]: Invalid user pai from 106.13.134.19 port 34706 May 1 13:38:19 ns392434 sshd[13174]: Failed password for invalid user pai from 106.13.134.19 port 34706 ssh2 May 1 13:45:20 ns392434 sshd[13444]: Invalid user kalista from 106.13.134.19 port 45798 May 1 13:45:20 ns392434 sshd[13444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.19 May 1 13:45:20 ns392434 sshd[13444]: Invalid user kalista from 106.13.134.19 port 45798 May 1 13:45:22 ns392434 sshd[13444]: Failed password for invalid user kalista from 106.13.134.19 port 45798 ssh2 May 1 13:47:52 ns392434 sshd[13496]: Invalid user test_user from 106.13.134.19 port 43416	2020-05-02 00:47:01
106.13.134.19	attack	2020-04-21T12:55:14.597397homeassistant sshd[7451]: Invalid user admin from 106.13.134.19 port 57042 2020-04-21T12:55:14.609134homeassistant sshd[7451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.19 ...	2020-04-21 23:49:49
106.13.134.248	attack	Automatic report - SSH Brute-Force Attack	2020-04-12 21:16:58
106.13.134.19	attack	SSH Brute-Force reported by Fail2Ban	2020-04-11 05:38:52
106.13.134.19	attackbots	Apr 9 23:21:42 php1 sshd\[20825\]: Invalid user deploy from 106.13.134.19 Apr 9 23:21:42 php1 sshd\[20825\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.19 Apr 9 23:21:44 php1 sshd\[20825\]: Failed password for invalid user deploy from 106.13.134.19 port 45516 ssh2 Apr 9 23:25:43 php1 sshd\[21241\]: Invalid user deploy from 106.13.134.19 Apr 9 23:25:43 php1 sshd\[21241\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.19	2020-04-10 19:34:21
106.13.134.164	attackbots	Apr 6 00:47:38 vmd48417 sshd[14398]: Failed password for root from 106.13.134.164 port 50976 ssh2	2020-04-06 07:17:15

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.134.161
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39544
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.134.161.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052001 1800 900 604800 86400

;; Query time: 8 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue May 21 01:48:08 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 161.134.13.106.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 161.134.13.106.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
212.33.204.56	attackspam	Sep 21 12:01:47 vps639187 sshd\[18899\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.33.204.56 user=root Sep 21 12:01:47 vps639187 sshd\[18897\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.33.204.56 user=root Sep 21 12:01:48 vps639187 sshd\[18901\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.33.204.56 user=root ...	2020-09-21 22:56:55
106.75.177.111	attackbots	SSH Bruteforce Attempt on Honeypot	2020-09-21 23:02:46
117.205.9.178	attack	Unauthorized connection attempt from IP address 117.205.9.178 on Port 445(SMB)	2020-09-21 23:02:21
124.156.245.194	attackspam	firewall-block, port(s): 5357/tcp	2020-09-21 23:08:59
193.169.253.48	attack	Sep 21 16:40:56 web01.agentur-b-2.de postfix/smtpd[444092]: warning: unknown[193.169.253.48]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 21 16:40:56 web01.agentur-b-2.de postfix/smtpd[444092]: lost connection after AUTH from unknown[193.169.253.48] Sep 21 16:41:19 web01.agentur-b-2.de postfix/smtpd[445961]: warning: unknown[193.169.253.48]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 21 16:41:19 web01.agentur-b-2.de postfix/smtpd[445961]: lost connection after AUTH from unknown[193.169.253.48] Sep 21 16:42:29 web01.agentur-b-2.de postfix/smtpd[444092]: warning: unknown[193.169.253.48]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-09-21 23:11:49
68.183.55.125	attackbots	2020-09-21T16:27:47.222669billing sshd[25186]: Invalid user testftp from 68.183.55.125 port 53502 2020-09-21T16:27:49.486109billing sshd[25186]: Failed password for invalid user testftp from 68.183.55.125 port 53502 ssh2 2020-09-21T16:31:36.753697billing sshd[970]: Invalid user www from 68.183.55.125 port 37788 ...	2020-09-21 23:30:35
157.230.28.13	attackspam	2020-09-21T14:18:33.159731abusebot-7.cloudsearch.cf sshd[13796]: Invalid user test from 157.230.28.13 port 55560 2020-09-21T14:18:33.166482abusebot-7.cloudsearch.cf sshd[13796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.28.13 2020-09-21T14:18:33.159731abusebot-7.cloudsearch.cf sshd[13796]: Invalid user test from 157.230.28.13 port 55560 2020-09-21T14:18:35.459061abusebot-7.cloudsearch.cf sshd[13796]: Failed password for invalid user test from 157.230.28.13 port 55560 ssh2 2020-09-21T14:22:21.456481abusebot-7.cloudsearch.cf sshd[13886]: Invalid user oracle from 157.230.28.13 port 39682 2020-09-21T14:22:21.461067abusebot-7.cloudsearch.cf sshd[13886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.28.13 2020-09-21T14:22:21.456481abusebot-7.cloudsearch.cf sshd[13886]: Invalid user oracle from 157.230.28.13 port 39682 2020-09-21T14:22:23.387328abusebot-7.cloudsearch.cf sshd[13886]: Failed ...	2020-09-21 23:06:19
114.248.163.89	attackspambots	Sep 21 16:19:52 hell sshd[15492]: Failed password for root from 114.248.163.89 port 51836 ssh2 ...	2020-09-21 23:30:04
176.74.9.202	attackspambots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-21 23:01:36
109.252.206.195	attackspambots	Unauthorized connection attempt from IP address 109.252.206.195 on Port 445(SMB)	2020-09-21 23:18:42
119.28.91.238	attack	invalid login attempt (administrador)	2020-09-21 23:09:12
197.90.184.250	attack	Telnet Honeypot -> Telnet Bruteforce / Login	2020-09-21 22:57:31
91.237.125.242	attackbots	Unauthorized connection attempt from IP address 91.237.125.242 on Port 445(SMB)	2020-09-21 23:07:18
43.249.68.131	attack	2020-09-21T05:05:51.1511911495-001 sshd[12274]: Failed password for root from 43.249.68.131 port 37198 ssh2 2020-09-21T05:10:03.5656301495-001 sshd[12492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.249.68.131 user=root 2020-09-21T05:10:05.4225941495-001 sshd[12492]: Failed password for root from 43.249.68.131 port 42730 ssh2 2020-09-21T05:15:33.6517411495-001 sshd[12799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.249.68.131 user=root 2020-09-21T05:15:36.1473091495-001 sshd[12799]: Failed password for root from 43.249.68.131 port 48274 ssh2 2020-09-21T05:19:48.0783921495-001 sshd[13008]: Invalid user oracle from 43.249.68.131 port 53772 ...	2020-09-21 22:56:33
186.249.192.66	attackbots	Unauthorized connection attempt from IP address 186.249.192.66 on Port 445(SMB)	2020-09-21 23:33:12

Recently Reported IPs

247.186.68.39	161.130.230.97	200.143.6.137	224.175.80.198
0.36.82.139	41.228.22.185	120.90.76.98	0.106.50.27
14.161.33.109	117.21.221.58	165.22.243.233	185.104.184.115
7.24.9.130	34.13.130.243	202.43.183.98	203.115.136.43
72.2.21.187	122.224.36.28	189.39.10.34	54.80.133.176