106.13.30.99 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	fail2ban	2020-08-11 01:27:11
attackbotsspam	2020-08-07T14:03:04.532300amanda2.illicoweb.com sshd\[43453\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.30.99 user=root 2020-08-07T14:03:06.503975amanda2.illicoweb.com sshd\[43453\]: Failed password for root from 106.13.30.99 port 59930 ssh2 2020-08-07T14:05:27.781028amanda2.illicoweb.com sshd\[43867\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.30.99 user=root 2020-08-07T14:05:29.049938amanda2.illicoweb.com sshd\[43867\]: Failed password for root from 106.13.30.99 port 39308 ssh2 2020-08-07T14:07:41.497539amanda2.illicoweb.com sshd\[44189\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.30.99 user=root ...	2020-08-07 21:33:15
attack	Jul 30 09:07:14 plex-server sshd[2407821]: Invalid user zhangjunzhe from 106.13.30.99 port 48186 Jul 30 09:07:14 plex-server sshd[2407821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.30.99 Jul 30 09:07:14 plex-server sshd[2407821]: Invalid user zhangjunzhe from 106.13.30.99 port 48186 Jul 30 09:07:16 plex-server sshd[2407821]: Failed password for invalid user zhangjunzhe from 106.13.30.99 port 48186 ssh2 Jul 30 09:10:17 plex-server sshd[2409402]: Invalid user huyi from 106.13.30.99 port 57990 ...	2020-07-30 17:17:09
attackbotsspam	SSH BruteForce Attack	2020-07-19 12:11:59
attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-11T11:56:38Z and 2020-07-11T12:01:39Z	2020-07-11 20:44:40
attack	$f2bV_matches	2020-07-09 18:10:38
attack	Jul 7 00:40:53 vps647732 sshd[10432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.30.99 Jul 7 00:40:55 vps647732 sshd[10432]: Failed password for invalid user tanghua from 106.13.30.99 port 45332 ssh2 ...	2020-07-07 06:59:50
attack	2020-06-29T04:39:32 t 22d[54496]: pam_unix(22d:auth): authentication failure, logname= uid=0 euid=0 tty=22 ruser= rhost=106.13.30.99 ", "Jun 29 04:39:35 t 22d[54496]: Failed password for invalid user jenkins from 106.13.30.99 port 35344 222"], "failures": 3, "mlfid": " t 22d[54496]: ", "user": "jenkins", "ip4": "106.13.30.99"}	2020-06-29 22:51:33

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.30.80	attack	Invalid user tsf from 106.13.30.80 port 57910	2020-02-15 08:43:40
106.13.30.80	attackbots	Unauthorized connection attempt detected from IP address 106.13.30.80 to port 2220 [J]	2020-01-22 20:53:34
106.13.30.80	attackbotsspam	Invalid user bandel from 106.13.30.80 port 35940 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.30.80 Failed password for invalid user bandel from 106.13.30.80 port 35940 ssh2 Invalid user el from 106.13.30.80 port 57032 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.30.80	2019-12-25 01:42:33
106.13.30.80	attackbots	Nov 26 20:56:55 game-panel sshd[16997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.30.80 Nov 26 20:56:57 game-panel sshd[16997]: Failed password for invalid user meineke from 106.13.30.80 port 51780 ssh2 Nov 26 21:04:09 game-panel sshd[17216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.30.80	2019-11-27 05:20:24
106.13.30.80	attack	Oct 21 12:41:38 penfold sshd[18648]: Invalid user Adminixxxr from 106.13.30.80 port 40146 Oct 21 12:41:38 penfold sshd[18648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.30.80 Oct 21 12:41:40 penfold sshd[18648]: Failed password for invalid user Adminixxxr from 106.13.30.80 port 40146 ssh2 Oct 21 12:41:42 penfold sshd[18648]: Received disconnect from 106.13.30.80 port 40146:11: Bye Bye [preauth] Oct 21 12:41:42 penfold sshd[18648]: Disconnected from 106.13.30.80 port 40146 [preauth] Oct 21 13:06:44 penfold sshd[19601]: Invalid user dev from 106.13.30.80 port 54170 Oct 21 13:06:44 penfold sshd[19601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.30.80 Oct 21 13:06:46 penfold sshd[19601]: Failed password for invalid user dev from 106.13.30.80 port 54170 ssh2 Oct 21 13:06:47 penfold sshd[19601]: Received disconnect from 106.13.30.80 port 54170:11: Bye Bye [preauth] Oct 2........ -------------------------------	2019-10-26 16:24:20
106.13.30.80	attackspam	Automatic report - Banned IP Access	2019-10-24 15:57:51
106.13.30.80	attack	Oct 21 12:41:38 penfold sshd[18648]: Invalid user Adminixxxr from 106.13.30.80 port 40146 Oct 21 12:41:38 penfold sshd[18648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.30.80 Oct 21 12:41:40 penfold sshd[18648]: Failed password for invalid user Adminixxxr from 106.13.30.80 port 40146 ssh2 Oct 21 12:41:42 penfold sshd[18648]: Received disconnect from 106.13.30.80 port 40146:11: Bye Bye [preauth] Oct 21 12:41:42 penfold sshd[18648]: Disconnected from 106.13.30.80 port 40146 [preauth] Oct 21 13:06:44 penfold sshd[19601]: Invalid user dev from 106.13.30.80 port 54170 Oct 21 13:06:44 penfold sshd[19601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.30.80 Oct 21 13:06:46 penfold sshd[19601]: Failed password for invalid user dev from 106.13.30.80 port 54170 ssh2 Oct 21 13:06:47 penfold sshd[19601]: Received disconnect from 106.13.30.80 port 54170:11: Bye Bye [preauth] Oct 2........ -------------------------------	2019-10-24 00:31:26
106.13.30.143	attackbots	2019-08-07T00:08:49.648892abusebot-2.cloudsearch.cf sshd\[10594\]: Invalid user lines from 106.13.30.143 port 39444	2019-08-07 08:38:48
106.13.30.143	attackbotsspam	Automatic report - Banned IP Access	2019-07-29 15:53:07

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.30.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30807
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.30.99.			IN	A

;; AUTHORITY SECTION:
.			455	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062900 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 29 22:51:22 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 99.30.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 99.30.13.106.in-addr.arpa.: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
164.132.51.91	attackspam	Sep 4 16:51:47 MainVPS sshd[23223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.51.91 user=root Sep 4 16:51:49 MainVPS sshd[23223]: Failed password for root from 164.132.51.91 port 60514 ssh2 Sep 4 16:51:57 MainVPS sshd[23223]: Failed password for root from 164.132.51.91 port 60514 ssh2 Sep 4 16:51:47 MainVPS sshd[23223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.51.91 user=root Sep 4 16:51:49 MainVPS sshd[23223]: Failed password for root from 164.132.51.91 port 60514 ssh2 Sep 4 16:51:57 MainVPS sshd[23223]: Failed password for root from 164.132.51.91 port 60514 ssh2 Sep 4 16:51:47 MainVPS sshd[23223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.51.91 user=root Sep 4 16:51:49 MainVPS sshd[23223]: Failed password for root from 164.132.51.91 port 60514 ssh2 Sep 4 16:51:57 MainVPS sshd[23223]: Failed password for root from 164.132.51.91 port 605	2019-09-04 23:04:00
1.170.240.95	attack	23/tcp [2019-09-04]1pkt	2019-09-04 23:56:50
37.187.79.55	attackbots	Sep 4 05:00:18 web9 sshd\[15926\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.79.55 user=root Sep 4 05:00:20 web9 sshd\[15926\]: Failed password for root from 37.187.79.55 port 40492 ssh2 Sep 4 05:04:34 web9 sshd\[16859\]: Invalid user vt from 37.187.79.55 Sep 4 05:04:34 web9 sshd\[16859\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.79.55 Sep 4 05:04:36 web9 sshd\[16859\]: Failed password for invalid user vt from 37.187.79.55 port 34170 ssh2	2019-09-04 23:09:08
158.69.193.32	attack	Sep 4 16:47:44 cvbmail sshd\[1281\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.193.32 user=root Sep 4 16:47:47 cvbmail sshd\[1281\]: Failed password for root from 158.69.193.32 port 58976 ssh2 Sep 4 16:47:49 cvbmail sshd\[1281\]: Failed password for root from 158.69.193.32 port 58976 ssh2	2019-09-04 23:12:22
5.199.130.188	attackspam	2019-09-04T17:33:12.480544lon01.zurich-datacenter.net sshd\[15820\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tor.piratenpartei-nrw.de user=root 2019-09-04T17:33:14.579823lon01.zurich-datacenter.net sshd\[15820\]: Failed password for root from 5.199.130.188 port 38147 ssh2 2019-09-04T17:33:16.848900lon01.zurich-datacenter.net sshd\[15820\]: Failed password for root from 5.199.130.188 port 38147 ssh2 2019-09-04T17:33:20.575972lon01.zurich-datacenter.net sshd\[15820\]: Failed password for root from 5.199.130.188 port 38147 ssh2 2019-09-04T17:33:23.189729lon01.zurich-datacenter.net sshd\[15820\]: Failed password for root from 5.199.130.188 port 38147 ssh2 ...	2019-09-04 23:50:49
27.208.133.58	attack	Sep 4 03:09:56 kapalua sshd\[21127\]: Invalid user admin from 27.208.133.58 Sep 4 03:09:56 kapalua sshd\[21127\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.208.133.58 Sep 4 03:09:58 kapalua sshd\[21127\]: Failed password for invalid user admin from 27.208.133.58 port 39090 ssh2 Sep 4 03:10:01 kapalua sshd\[21127\]: Failed password for invalid user admin from 27.208.133.58 port 39090 ssh2 Sep 4 03:10:03 kapalua sshd\[21127\]: Failed password for invalid user admin from 27.208.133.58 port 39090 ssh2	2019-09-05 00:00:53
218.98.40.140	attackspambots	Sep 4 16:58:04 SilenceServices sshd[14625]: Failed password for root from 218.98.40.140 port 38306 ssh2 Sep 4 16:58:14 SilenceServices sshd[14695]: Failed password for root from 218.98.40.140 port 58188 ssh2	2019-09-04 23:01:52
23.129.64.209	attack	Sep 4 10:50:29 debian sshd\[30891\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.209 user=root Sep 4 10:50:31 debian sshd\[30891\]: Failed password for root from 23.129.64.209 port 37051 ssh2 Sep 4 10:50:33 debian sshd\[30891\]: Failed password for root from 23.129.64.209 port 37051 ssh2 ...	2019-09-04 23:02:34
185.212.8.30	attackbots	xmlrpc attack	2019-09-05 00:11:27
158.69.217.87	attackspam	Sep 4 15:14:02 rpi sshd[3481]: Failed password for root from 158.69.217.87 port 57670 ssh2 Sep 4 15:14:06 rpi sshd[3481]: Failed password for root from 158.69.217.87 port 57670 ssh2	2019-09-04 23:21:47
192.99.10.122	attackbots	09/04/2019-09:10:41.782510 192.99.10.122 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-09-04 23:03:09
179.108.106.9	attackspam	Sep 4 17:54:17 www5 sshd\[31926\]: Invalid user marton from 179.108.106.9 Sep 4 17:54:17 www5 sshd\[31926\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.108.106.9 Sep 4 17:54:18 www5 sshd\[31926\]: Failed password for invalid user marton from 179.108.106.9 port 50984 ssh2 ...	2019-09-04 23:20:19
187.190.239.77	attack	Fail2Ban Ban Triggered	2019-09-04 23:58:42
92.222.47.41	attackspam	2019-09-04T15:30:27.640996abusebot.cloudsearch.cf sshd\[31010\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.ip-92-222-47.eu user=root	2019-09-04 23:41:20
220.121.58.55	attackbots	Sep 4 04:44:45 wbs sshd\[15401\]: Invalid user mpsingh from 220.121.58.55 Sep 4 04:44:45 wbs sshd\[15401\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.121.58.55 Sep 4 04:44:47 wbs sshd\[15401\]: Failed password for invalid user mpsingh from 220.121.58.55 port 52248 ssh2 Sep 4 04:50:00 wbs sshd\[15871\]: Invalid user gerard from 220.121.58.55 Sep 4 04:50:00 wbs sshd\[15871\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.121.58.55	2019-09-04 23:01:16

最近上报的IP列表

193.27.228.158	191.179.127.234	13.72.77.101	193.27.228.159
167.86.88.34	14.230.214.93	1.53.156.5	187.18.35.116
41.234.169.116	192.241.227.85	181.44.6.241	174.219.128.79
77.242.17.68	192.241.223.78	192.241.221.150	36.71.138.21
192.35.168.89	176.88.86.60	186.224.238.16	102.189.64.60