106.13.27.134 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Invalid user testftp from 106.13.27.134 port 47878	2020-03-21 07:22:57
attack	Lines containing failures of 106.13.27.134 Feb 3 05:33:07 nexus sshd[1407]: Invalid user jenkins from 106.13.27.134 port 51180 Feb 3 05:33:07 nexus sshd[1407]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.27.134 Feb 3 05:33:08 nexus sshd[1407]: Failed password for invalid user jenkins from 106.13.27.134 port 51180 ssh2 Feb 3 05:33:08 nexus sshd[1407]: Received disconnect from 106.13.27.134 port 51180:11: Bye Bye [preauth] Feb 3 05:33:08 nexus sshd[1407]: Disconnected from 106.13.27.134 port 51180 [preauth] Feb 3 05:36:51 nexus sshd[2286]: Connection closed by 106.13.27.134 port 34632 [preauth] Feb 3 05:40:31 nexus sshd[3194]: Connection closed by 106.13.27.134 port 53130 [preauth] Feb 3 05:43:42 nexus sshd[3711]: Connection closed by 106.13.27.134 port 35996 [preauth] Feb 3 05:44:46 nexus sshd[4074]: Connection closed by 106.13.27.134 port 43394 [preauth] Feb 3 05:45:13 nexus sshd[4205]: Invalid user mapr from 1........ ------------------------------	2020-02-03 22:06:00
attackbotsspam	(sshd) Failed SSH login from 106.13.27.134 (CN/China/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 2 07:00:03 ubnt-55d23 sshd[2055]: Invalid user vbox from 106.13.27.134 port 46392 Feb 2 07:00:05 ubnt-55d23 sshd[2055]: Failed password for invalid user vbox from 106.13.27.134 port 46392 ssh2	2020-02-02 15:49:56
attack	Unauthorized connection attempt detected from IP address 106.13.27.134 to port 2220 [J]	2020-02-02 06:45:17

Comments on same subnet:

IP	Type	Details	Datetime
106.13.27.156	attackspam	Jul 26 04:12:55 onepixel sshd[1768006]: Failed password for redis from 106.13.27.156 port 52974 ssh2 Jul 26 04:17:50 onepixel sshd[1770704]: Invalid user areyes from 106.13.27.156 port 58696 Jul 26 04:17:50 onepixel sshd[1770704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.27.156 Jul 26 04:17:50 onepixel sshd[1770704]: Invalid user areyes from 106.13.27.156 port 58696 Jul 26 04:17:53 onepixel sshd[1770704]: Failed password for invalid user areyes from 106.13.27.156 port 58696 ssh2	2020-07-26 17:23:12
106.13.27.156	attackspambots	Jul 18 20:05:06 game-panel sshd[7443]: Failed password for backup from 106.13.27.156 port 58002 ssh2 Jul 18 20:09:20 game-panel sshd[7905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.27.156 Jul 18 20:09:22 game-panel sshd[7905]: Failed password for invalid user na from 106.13.27.156 port 40108 ssh2	2020-07-19 04:25:27
106.13.27.156	attackbots	2020-07-17T09:06:52.394698morrigan.ad5gb.com sshd[642116]: Invalid user swt from 106.13.27.156 port 35108 2020-07-17T09:06:54.587904morrigan.ad5gb.com sshd[642116]: Failed password for invalid user swt from 106.13.27.156 port 35108 ssh2	2020-07-17 23:27:39
106.13.27.156	attackbots	20 attempts against mh-ssh on cloud	2020-06-23 15:36:36
106.13.27.137	attack	2020-06-12T16:03:32.145099lavrinenko.info sshd[7756]: Failed password for invalid user test from 106.13.27.137 port 43510 ssh2 2020-06-12T16:06:47.553172lavrinenko.info sshd[7923]: Invalid user agylis from 106.13.27.137 port 57626 2020-06-12T16:06:47.561654lavrinenko.info sshd[7923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.27.137 2020-06-12T16:06:47.553172lavrinenko.info sshd[7923]: Invalid user agylis from 106.13.27.137 port 57626 2020-06-12T16:06:49.644978lavrinenko.info sshd[7923]: Failed password for invalid user agylis from 106.13.27.137 port 57626 ssh2 ...	2020-06-13 00:29:36
106.13.27.156	attackspambots	prod6 ...	2020-06-09 14:26:19
106.13.27.156	attackbotsspam	Jun 4 14:22:08 ny01 sshd[20893]: Failed password for root from 106.13.27.156 port 43728 ssh2 Jun 4 14:25:36 ny01 sshd[21664]: Failed password for root from 106.13.27.156 port 37848 ssh2	2020-06-05 02:39:58
106.13.27.156	attackbotsspam	SSH brutforce	2020-06-04 04:12:42
106.13.27.156	attackspam	Fail2Ban Ban Triggered (2)	2020-06-01 14:36:00
106.13.27.137	attackbots	(sshd) Failed SSH login from 106.13.27.137 (CN/China/-): 5 in the last 3600 secs	2020-05-27 03:50:53
106.13.27.137	attackspam	May 23 06:03:53 OPSO sshd\[10798\]: Invalid user ofa from 106.13.27.137 port 49564 May 23 06:03:53 OPSO sshd\[10798\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.27.137 May 23 06:03:56 OPSO sshd\[10798\]: Failed password for invalid user ofa from 106.13.27.137 port 49564 ssh2 May 23 06:05:02 OPSO sshd\[10949\]: Invalid user goc from 106.13.27.137 port 35882 May 23 06:05:02 OPSO sshd\[10949\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.27.137	2020-05-23 12:23:57
106.13.27.31	attack	Invalid user rishil from 106.13.27.31 port 37278	2020-04-01 15:22:05
106.13.27.31	attack	$f2bV_matches	2020-03-24 16:35:50
106.13.27.31	attackspambots	port	2020-02-12 04:09:01
106.13.27.31	attackbots	Feb 6 20:55:11 legacy sshd[13311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.27.31 Feb 6 20:55:13 legacy sshd[13311]: Failed password for invalid user ekt from 106.13.27.31 port 48282 ssh2 Feb 6 20:59:54 legacy sshd[13608]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.27.31 ...	2020-02-07 04:32:26

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.27.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33870
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.27.134.			IN	A

;; AUTHORITY SECTION:
.			356	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020101 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 02 06:45:11 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 134.27.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 134.27.13.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
206.189.208.157	attack	MagicSpam Rule: block_rbl_lists (b.barracudacentral.org); Spammer IP: 206.189.208.157	2019-07-20 11:47:36
211.159.152.252	attack	Jul 20 04:07:36 ns41 sshd[24019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.159.152.252 Jul 20 04:07:36 ns41 sshd[24019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.159.152.252 Jul 20 04:07:38 ns41 sshd[24019]: Failed password for invalid user pascal from 211.159.152.252 port 23751 ssh2	2019-07-20 11:23:11
138.59.218.158	attackspambots	Jul 19 22:07:23 aat-srv002 sshd[23742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.59.218.158 Jul 19 22:07:25 aat-srv002 sshd[23742]: Failed password for invalid user ax from 138.59.218.158 port 51836 ssh2 Jul 19 22:25:52 aat-srv002 sshd[23998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.59.218.158 Jul 19 22:25:55 aat-srv002 sshd[23998]: Failed password for invalid user test from 138.59.218.158 port 49268 ssh2 ...	2019-07-20 11:37:50
77.35.3.74	attack	1,00-03/03 [bc02/m11] concatform PostRequest-Spammer scoring: Durban01	2019-07-20 11:37:08
138.197.213.180	attack	WordPress XMLRPC scan :: 138.197.213.180 0.352 BYPASS [20/Jul/2019:13:29:03 1000] [censored_1] "POST /xmlrpc.php HTTP/1.1" 503 19381 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-07-20 11:36:11
46.21.198.180	attackbots	WordPress login Brute force / Web App Attack on client site.	2019-07-20 11:46:04
165.22.112.87	attack	Jul 20 02:59:09 animalibera sshd[10927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.112.87 user=root Jul 20 02:59:11 animalibera sshd[10927]: Failed password for root from 165.22.112.87 port 48458 ssh2 ...	2019-07-20 11:10:38
213.32.67.160	attackspambots	ssh failed login	2019-07-20 11:26:00
177.55.160.243	attackspambots	Jul 20 04:43:24 microserver sshd[16701]: Invalid user globus from 177.55.160.243 port 47130 Jul 20 04:43:24 microserver sshd[16701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.55.160.243 Jul 20 04:43:26 microserver sshd[16701]: Failed password for invalid user globus from 177.55.160.243 port 47130 ssh2 Jul 20 04:48:41 microserver sshd[17360]: Invalid user ftpadmin from 177.55.160.243 port 41028 Jul 20 04:48:41 microserver sshd[17360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.55.160.243 Jul 20 04:59:02 microserver sshd[18698]: Invalid user ts3 from 177.55.160.243 port 57044 Jul 20 04:59:02 microserver sshd[18698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.55.160.243 Jul 20 04:59:04 microserver sshd[18698]: Failed password for invalid user ts3 from 177.55.160.243 port 57044 ssh2 Jul 20 05:04:23 microserver sshd[19398]: Invalid user codeunbug from 177.55.160.243 po	2019-07-20 11:26:19
106.75.5.120	attack	2019-07-17T14:10:48.050940wiz-ks3 sshd[16025]: Invalid user localhost from 106.75.5.120 port 50352 2019-07-17T14:10:48.052972wiz-ks3 sshd[16025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.5.120 2019-07-17T14:10:48.050940wiz-ks3 sshd[16025]: Invalid user localhost from 106.75.5.120 port 50352 2019-07-17T14:10:49.441119wiz-ks3 sshd[16025]: Failed password for invalid user localhost from 106.75.5.120 port 50352 ssh2 2019-07-17T14:14:10.228636wiz-ks3 sshd[16031]: Invalid user captain from 106.75.5.120 port 46618 2019-07-17T14:14:10.230669wiz-ks3 sshd[16031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.5.120 2019-07-17T14:14:10.228636wiz-ks3 sshd[16031]: Invalid user captain from 106.75.5.120 port 46618 2019-07-17T14:14:12.686810wiz-ks3 sshd[16031]: Failed password for invalid user captain from 106.75.5.120 port 46618 ssh2 2019-07-17T14:17:41.416859wiz-ks3 sshd[16174]: Invalid user teambluebuilder from 106.75.5.	2019-07-20 11:21:02
52.15.52.143	attack	52.15.52.143 - - [20/Jul/2019:03:34:27 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.15.52.143 - - [20/Jul/2019:03:34:40 +0200] "POST /wp-login.php HTTP/1.1" 200 1704 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.15.52.143 - - [20/Jul/2019:03:34:52 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.15.52.143 - - [20/Jul/2019:03:35:06 +0200] "POST /wp-login.php HTTP/1.1" 200 1710 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.15.52.143 - - [20/Jul/2019:03:35:14 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.15.52.143 - - [20/Jul/2019:03:35:25 +0200] "POST /wp-login.php HTTP/1.1" 200 1710 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-07-20 11:34:16
213.230.126.165	attack	Jul 20 04:55:10 s64-1 sshd[10634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.230.126.165 Jul 20 04:55:13 s64-1 sshd[10634]: Failed password for invalid user toor from 213.230.126.165 port 42568 ssh2 Jul 20 05:00:23 s64-1 sshd[10656]: Failed password for root from 213.230.126.165 port 41545 ssh2 ...	2019-07-20 11:03:07
49.144.106.117	attack	invalid login attempt	2019-07-20 11:18:32
124.127.98.230	attack	Automatic report - Banned IP Access	2019-07-20 11:25:20
138.197.180.29	attack	Jul 20 05:38:54 legacy sshd[2352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.180.29 Jul 20 05:38:56 legacy sshd[2352]: Failed password for invalid user misp from 138.197.180.29 port 43060 ssh2 Jul 20 05:43:33 legacy sshd[2472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.180.29 ...	2019-07-20 11:43:43

Recently Reported IPs

99.176.244.132	199.200.209.196	90.196.100.177	2.50.37.9
88.131.6.126	157.215.77.60	66.103.43.216	83.189.8.62
34.92.151.248	66.252.21.75	177.107.184.248	50.212.214.31
1.73.173.14	14.98.213.14	168.90.62.221	175.195.41.193
74.65.243.244	220.52.219.30	41.50.89.8	113.178.71.80