106.13.226.34 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	malicious Brute-Force reported by https://www.patrick-binder.de ...	2020-09-13 23:26:49
attackspam	Sep 13 07:30:14 itv-usvr-02 sshd[13989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 user=root Sep 13 07:33:46 itv-usvr-02 sshd[14197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 user=root Sep 13 07:38:16 itv-usvr-02 sshd[14343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 user=root	2020-09-13 15:20:16
attack	2020-09-12T19:46:09.107669abusebot.cloudsearch.cf sshd[28180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 user=root 2020-09-12T19:46:11.222416abusebot.cloudsearch.cf sshd[28180]: Failed password for root from 106.13.226.34 port 45048 ssh2 2020-09-12T19:51:04.075954abusebot.cloudsearch.cf sshd[28280]: Invalid user customer from 106.13.226.34 port 53612 2020-09-12T19:51:04.081705abusebot.cloudsearch.cf sshd[28280]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 2020-09-12T19:51:04.075954abusebot.cloudsearch.cf sshd[28280]: Invalid user customer from 106.13.226.34 port 53612 2020-09-12T19:51:05.694550abusebot.cloudsearch.cf sshd[28280]: Failed password for invalid user customer from 106.13.226.34 port 53612 ssh2 2020-09-12T19:55:47.816595abusebot.cloudsearch.cf sshd[28371]: Invalid user amerino from 106.13.226.34 port 33912 ...	2020-09-13 07:03:38
attack	Sep 12 12:37:28 srv-ubuntu-dev3 sshd[62146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 user=root Sep 12 12:37:30 srv-ubuntu-dev3 sshd[62146]: Failed password for root from 106.13.226.34 port 50242 ssh2 Sep 12 12:37:50 srv-ubuntu-dev3 sshd[62183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 user=root Sep 12 12:37:52 srv-ubuntu-dev3 sshd[62183]: Failed password for root from 106.13.226.34 port 53604 ssh2 Sep 12 12:38:23 srv-ubuntu-dev3 sshd[62253]: Invalid user contador from 106.13.226.34 Sep 12 12:38:23 srv-ubuntu-dev3 sshd[62253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 Sep 12 12:38:23 srv-ubuntu-dev3 sshd[62253]: Invalid user contador from 106.13.226.34 Sep 12 12:38:26 srv-ubuntu-dev3 sshd[62253]: Failed password for invalid user contador from 106.13.226.34 port 56978 ssh2 Sep 12 12:38:49 srv-ubuntu-dev3 s ...	2020-09-12 22:22:51
attack	Sep 12 02:54:39 ip106 sshd[32692]: Failed password for root from 106.13.226.34 port 43526 ssh2 ...	2020-09-12 14:26:05
attackbots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-09-12 06:14:45
attackspam	Sep 8 23:08:19 dignus sshd[16451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 user=root Sep 8 23:08:21 dignus sshd[16451]: Failed password for root from 106.13.226.34 port 56404 ssh2 Sep 8 23:12:20 dignus sshd[16766]: Invalid user mother from 106.13.226.34 port 48038 Sep 8 23:12:20 dignus sshd[16766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 Sep 8 23:12:22 dignus sshd[16766]: Failed password for invalid user mother from 106.13.226.34 port 48038 ssh2 ...	2020-09-09 18:35:59
attackspam	(sshd) Failed SSH login from 106.13.226.34 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 9 00:00:40 server2 sshd[2563]: Invalid user administrator from 106.13.226.34 Sep 9 00:00:40 server2 sshd[2563]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 Sep 9 00:00:41 server2 sshd[2563]: Failed password for invalid user administrator from 106.13.226.34 port 60094 ssh2 Sep 9 00:20:07 server2 sshd[18632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 user=root Sep 9 00:20:10 server2 sshd[18632]: Failed password for root from 106.13.226.34 port 60608 ssh2	2020-09-09 12:31:09
attackspam	Sep 8 20:26:21 * sshd[29238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 Sep 8 20:26:23 * sshd[29238]: Failed password for invalid user vsftp from 106.13.226.34 port 40908 ssh2	2020-09-09 04:48:55
attack	Aug 28 13:22:37 mockhub sshd[32680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 Aug 28 13:22:39 mockhub sshd[32680]: Failed password for invalid user juanita from 106.13.226.34 port 55276 ssh2 ...	2020-08-29 06:52:49
attack	Aug 20 09:24:37 lunarastro sshd[3149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 Aug 20 09:24:39 lunarastro sshd[3149]: Failed password for invalid user ftptest from 106.13.226.34 port 39906 ssh2	2020-08-20 13:25:28
attackbotsspam	Aug 14 06:05:08 rotator sshd\[28382\]: Failed password for root from 106.13.226.34 port 55428 ssh2Aug 14 06:06:35 rotator sshd\[29031\]: Failed password for root from 106.13.226.34 port 43860 ssh2Aug 14 06:07:54 rotator sshd\[29052\]: Failed password for root from 106.13.226.34 port 60520 ssh2Aug 14 06:09:17 rotator sshd\[29091\]: Failed password for root from 106.13.226.34 port 48950 ssh2Aug 14 06:10:40 rotator sshd\[29855\]: Failed password for root from 106.13.226.34 port 37378 ssh2Aug 14 06:12:06 rotator sshd\[29875\]: Failed password for root from 106.13.226.34 port 54042 ssh2 ...	2020-08-14 12:27:56
attackspambots	Aug 4 13:38:14 ovpn sshd\[2511\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 user=root Aug 4 13:38:16 ovpn sshd\[2511\]: Failed password for root from 106.13.226.34 port 56424 ssh2 Aug 4 13:44:35 ovpn sshd\[4046\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 user=root Aug 4 13:44:37 ovpn sshd\[4046\]: Failed password for root from 106.13.226.34 port 33638 ssh2 Aug 4 13:47:41 ovpn sshd\[4850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 user=root	2020-08-05 01:54:53
attack	Jul 20 13:32:06 ip-172-31-62-245 sshd\[30337\]: Invalid user wuqianhan from 106.13.226.34\ Jul 20 13:32:07 ip-172-31-62-245 sshd\[30337\]: Failed password for invalid user wuqianhan from 106.13.226.34 port 38712 ssh2\ Jul 20 13:36:41 ip-172-31-62-245 sshd\[30406\]: Invalid user bram from 106.13.226.34\ Jul 20 13:36:43 ip-172-31-62-245 sshd\[30406\]: Failed password for invalid user bram from 106.13.226.34 port 32856 ssh2\ Jul 20 13:41:23 ip-172-31-62-245 sshd\[30512\]: Invalid user www from 106.13.226.34\	2020-07-21 01:24:25
attackbotsspam	Jul 19 15:42:36 dhoomketu sshd[1654523]: Invalid user admin from 106.13.226.34 port 33462 Jul 19 15:42:36 dhoomketu sshd[1654523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 Jul 19 15:42:36 dhoomketu sshd[1654523]: Invalid user admin from 106.13.226.34 port 33462 Jul 19 15:42:38 dhoomketu sshd[1654523]: Failed password for invalid user admin from 106.13.226.34 port 33462 ssh2 Jul 19 15:46:55 dhoomketu sshd[1654589]: Invalid user bata from 106.13.226.34 port 60394 ...	2020-07-19 18:22:49
attackspambots	SSH authentication failure x 6 reported by Fail2Ban ...	2020-06-19 15:04:51
attack	Invalid user hacker from 106.13.226.34 port 51278	2020-06-18 18:48:39
attackbots	Jun 17 13:25:30 ns381471 sshd[21768]: Failed password for root from 106.13.226.34 port 51342 ssh2 Jun 17 13:30:45 ns381471 sshd[22025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34	2020-06-17 19:48:33
attackspam	IP blocked	2020-06-06 20:04:12
attackspam	Invalid user xmx from 106.13.226.34 port 45394	2020-05-23 06:07:29
attackspambots	May 11 15:06:25 ns381471 sshd[16836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.34 May 11 15:06:27 ns381471 sshd[16836]: Failed password for invalid user deploy from 106.13.226.34 port 60942 ssh2	2020-05-12 01:15:25
attack	Apr 22 05:57:42 mail sshd[31326]: Invalid user jt from 106.13.226.34 ...	2020-04-22 12:14:07
attackspambots	Mar 30 06:52:36 ift sshd\[13216\]: Invalid user ltq from 106.13.226.34Mar 30 06:52:37 ift sshd\[13216\]: Failed password for invalid user ltq from 106.13.226.34 port 39022 ssh2Mar 30 06:54:21 ift sshd\[13284\]: Invalid user rfn from 106.13.226.34Mar 30 06:54:24 ift sshd\[13284\]: Failed password for invalid user rfn from 106.13.226.34 port 59040 ssh2Mar 30 06:56:00 ift sshd\[13775\]: Invalid user gcx from 106.13.226.34 ...	2020-03-30 13:08:54

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.226.170	attack	Oct 12 07:08:28 pve1 sshd[21942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.170 Oct 12 07:08:30 pve1 sshd[21942]: Failed password for invalid user lukasz from 106.13.226.170 port 54428 ssh2 ...	2020-10-12 23:32:07
106.13.226.170	attackspambots	Oct 12 07:08:28 pve1 sshd[21942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.170 Oct 12 07:08:30 pve1 sshd[21942]: Failed password for invalid user lukasz from 106.13.226.170 port 54428 ssh2 ...	2020-10-12 14:56:09
106.13.226.170	attack	Oct 9 00:53:54 mockhub sshd[885479]: Failed password for invalid user PlcmSpIp from 106.13.226.170 port 39578 ssh2 Oct 9 00:55:40 mockhub sshd[885543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.170 user=root Oct 9 00:55:42 mockhub sshd[885543]: Failed password for root from 106.13.226.170 port 33828 ssh2 ...	2020-10-09 18:37:26
106.13.226.152	attackspambots	TCP (SYN) 106.13.226.152:48657 -> port 7326, len 44	2020-09-12 23:49:16
106.13.226.152	attackspam	TCP (SYN) 106.13.226.152:48657 -> port 7326, len 44	2020-09-12 15:51:55
106.13.226.152	attackspam	Port scan: Attack repeated for 24 hours	2020-09-12 07:38:05
106.13.226.112	attack	Sep 4 09:39:44 h2646465 sshd[28981]: Invalid user 01 from 106.13.226.112 Sep 4 09:39:44 h2646465 sshd[28981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.112 Sep 4 09:39:44 h2646465 sshd[28981]: Invalid user 01 from 106.13.226.112 Sep 4 09:39:45 h2646465 sshd[28981]: Failed password for invalid user 01 from 106.13.226.112 port 40028 ssh2 Sep 4 09:45:29 h2646465 sshd[30266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.112 user=root Sep 4 09:45:32 h2646465 sshd[30266]: Failed password for root from 106.13.226.112 port 57834 ssh2 Sep 4 09:46:23 h2646465 sshd[30320]: Invalid user administrator from 106.13.226.112 Sep 4 09:46:23 h2646465 sshd[30320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.112 Sep 4 09:46:23 h2646465 sshd[30320]: Invalid user administrator from 106.13.226.112 Sep 4 09:46:24 h2646465 sshd[30320]: Failed password for inval	2020-09-05 00:20:12
106.13.226.112	attackspambots	Sep 4 09:07:06 pornomens sshd\[29624\]: Invalid user mcq from 106.13.226.112 port 54184 Sep 4 09:07:06 pornomens sshd\[29624\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.112 Sep 4 09:07:08 pornomens sshd\[29624\]: Failed password for invalid user mcq from 106.13.226.112 port 54184 ssh2 ...	2020-09-04 15:46:21
106.13.226.112	attackbots	Total attacks: 2	2020-09-04 08:07:03
106.13.226.170	attackspambots	Aug 27 23:06:38 ns37 sshd[30449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.170 Aug 27 23:06:40 ns37 sshd[30449]: Failed password for invalid user dekait from 106.13.226.170 port 53832 ssh2 Aug 27 23:08:51 ns37 sshd[30553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.170	2020-08-28 05:34:46
106.13.226.112	attackbotsspam	Aug 21 13:58:31 server sshd[14553]: Failed password for invalid user siteadmin from 106.13.226.112 port 40794 ssh2 Aug 21 14:03:20 server sshd[17187]: Failed password for invalid user aneta from 106.13.226.112 port 42576 ssh2 Aug 21 14:08:19 server sshd[19499]: Failed password for root from 106.13.226.112 port 44352 ssh2	2020-08-21 20:21:14
106.13.226.112	attack	Aug 14 06:13:22 electroncash sshd[62356]: Failed password for root from 106.13.226.112 port 39788 ssh2 Aug 14 06:15:44 electroncash sshd[62979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.112 user=root Aug 14 06:15:46 electroncash sshd[62979]: Failed password for root from 106.13.226.112 port 40736 ssh2 Aug 14 06:18:10 electroncash sshd[63638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.112 user=root Aug 14 06:18:12 electroncash sshd[63638]: Failed password for root from 106.13.226.112 port 41696 ssh2 ...	2020-08-14 12:39:44
106.13.226.170	attack	Aug 6 23:41:35 localhost sshd[1117392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.170 user=root Aug 6 23:41:37 localhost sshd[1117392]: Failed password for root from 106.13.226.170 port 48324 ssh2 ...	2020-08-06 22:31:02
106.13.226.170	attack	Aug 5 07:42:39 ns381471 sshd[6060]: Failed password for root from 106.13.226.170 port 59692 ssh2	2020-08-05 15:32:45
106.13.226.170	attackbots	Jul 26 14:23:20 rush sshd[26644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.170 Jul 26 14:23:22 rush sshd[26644]: Failed password for invalid user benny from 106.13.226.170 port 33166 ssh2 Jul 26 14:29:01 rush sshd[26787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.170 ...	2020-07-26 23:45:24

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.226.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2160
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.226.34.			IN	A

;; AUTHORITY SECTION:
.			219	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032901 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 30 13:08:49 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 34.226.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 34.226.13.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
176.106.8.244	attackspam	Unauthorized connection attempt detected from IP address 176.106.8.244 to port 5555 [T]	2020-04-15 02:37:27
59.55.110.87	attackbots	Unauthorized connection attempt detected from IP address 59.55.110.87 to port 445 [T]	2020-04-15 02:17:33
223.221.240.54	attackbotsspam	Unauthorized connection attempt detected from IP address 223.221.240.54 to port 445 [T]	2020-04-15 02:23:31
185.202.0.78	attackbots	Unauthorized connection attempt detected from IP address 185.202.0.78 to port 3389 [T]	2020-04-15 02:30:05
103.137.185.70	attackbots	Unauthorized connection attempt detected from IP address 103.137.185.70 to port 4555 [T]	2020-04-15 02:11:44
185.34.180.168	attack	Unauthorized connection attempt detected from IP address 185.34.180.168 to port 4567 [T]	2020-04-15 02:30:37
180.141.76.136	attack	Unauthorized connection attempt detected from IP address 180.141.76.136 to port 23 [T]	2020-04-15 02:35:26
183.191.29.27	attackbots	Unauthorized connection attempt detected from IP address 183.191.29.27 to port 636 [T]	2020-04-15 02:31:33
58.209.162.138	attack	Unauthorized connection attempt detected from IP address 58.209.162.138 to port 22 [T]	2020-04-15 02:18:59
80.82.78.104	attackspambots	Scanning an empty webserver with deny all robots.txt	2020-04-15 02:13:53
123.206.103.166	attackbotsspam	Unauthorized connection attempt detected from IP address 123.206.103.166 to port 23 [T]	2020-04-15 02:39:36
95.189.78.53	attackbotsspam	Unauthorized connection attempt detected from IP address 95.189.78.53 to port 80 [T]	2020-04-15 02:12:10
182.148.8.198	attackspam	Unauthorized connection attempt detected from IP address 182.148.8.198 to port 23 [T]	2020-04-15 02:34:29
193.150.109.114	attackbotsspam	Unauthorized connection attempt detected from IP address 193.150.109.114 to port 9530 [T]	2020-04-15 02:29:15
171.111.153.240	attackspam	Unauthorized connection attempt detected from IP address 171.111.153.240 to port 8088 [T]	2020-04-15 02:38:04

最近上报的IP列表

61.162.25.230	123.24.117.222	114.33.109.159	59.153.254.2
59.153.252.2	52.66.81.12	191.193.62.161	178.128.224.143
203.195.186.176	118.24.85.135	14.254.241.159	113.21.96.190
187.189.225.138	231.52.142.49	57.151.112.13	212.154.3.184
189.125.34.230	98.58.183.19	106.255.2.107	142.255.48.28