94.191.30.13 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH brute-force attempt	2020-07-29 16:29:14

相同子网IP讨论:

IP	类型	评论内容	时间
94.191.30.193	attack	Oct 28 05:54:34 www5 sshd\[24386\]: Invalid user hkmjj from 94.191.30.193 Oct 28 05:54:34 www5 sshd\[24386\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.30.193 Oct 28 05:54:36 www5 sshd\[24386\]: Failed password for invalid user hkmjj from 94.191.30.193 port 46164 ssh2 ...	2019-10-28 13:25:03
94.191.30.193	attackbotsspam	Oct 20 15:24:44 server sshd\[2771\]: Failed password for invalid user informix from 94.191.30.193 port 38054 ssh2 Oct 21 14:24:56 server sshd\[24952\]: Invalid user oraprod from 94.191.30.193 Oct 21 14:24:56 server sshd\[24952\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.30.193 Oct 21 14:24:58 server sshd\[24952\]: Failed password for invalid user oraprod from 94.191.30.193 port 42048 ssh2 Oct 21 14:42:47 server sshd\[31208\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.30.193 user=root ...	2019-10-21 22:42:26
94.191.30.193	attack	Oct 20 07:38:17 localhost sshd\[69736\]: Invalid user teacher from 94.191.30.193 port 33564 Oct 20 07:38:17 localhost sshd\[69736\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.30.193 Oct 20 07:38:19 localhost sshd\[69736\]: Failed password for invalid user teacher from 94.191.30.193 port 33564 ssh2 Oct 20 07:43:49 localhost sshd\[69924\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.30.193 user=root Oct 20 07:43:50 localhost sshd\[69924\]: Failed password for root from 94.191.30.193 port 43526 ssh2 ...	2019-10-20 16:05:39
94.191.30.193	attack	Oct 8 12:00:45 v22018076622670303 sshd\[14187\]: Invalid user Qwer@12345 from 94.191.30.193 port 47758 Oct 8 12:00:45 v22018076622670303 sshd\[14187\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.30.193 Oct 8 12:00:47 v22018076622670303 sshd\[14187\]: Failed password for invalid user Qwer@12345 from 94.191.30.193 port 47758 ssh2 ...	2019-10-08 19:48:45
94.191.30.193	attackbotsspam	Oct 6 22:54:49 minden010 sshd[22309]: Failed password for root from 94.191.30.193 port 55602 ssh2 Oct 6 22:58:13 minden010 sshd[23555]: Failed password for root from 94.191.30.193 port 55722 ssh2 ...	2019-10-07 05:11:25

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.191.30.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6802
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.191.30.13.			IN	A

;; AUTHORITY SECTION:
.			347	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072900 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 29 16:29:08 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 13.30.191.94.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 13.30.191.94.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
103.54.217.221	attackbotsspam	1576650245 - 12/18/2019 07:24:05 Host: 103.54.217.221/103.54.217.221 Port: 445 TCP Blocked	2019-12-18 21:14:46
120.136.160.162	attack	$f2bV_matches	2019-12-18 21:12:36
77.247.110.166	attackspambots	\[2019-12-18 08:17:36\] NOTICE\[2839\] chan_sip.c: Registration from '"star" \' failed for '77.247.110.166:6366' - Wrong password \[2019-12-18 08:17:36\] NOTICE\[2839\] chan_sip.c: Registration from '"star" \' failed for '77.247.110.166:6366' - Wrong password \[2019-12-18 08:17:36\] NOTICE\[2839\] chan_sip.c: Registration from '"star" \' failed for '77.247.110.166:6366' - Wrong password \[2019-12-18 08:17:36\] NOTICE\[2839\] chan_sip.c: Registration from '"star" \' failed for '77.247.110.166:6366' - Wrong password \[2019-12-18 08:17:36\] NOTICE\[2839\] chan_sip.c: Registration from '"star" \' failed for '77.247.110.166:6366' - Wrong password \[2019-12-18 08:17:36\] NOTICE\[2839\] chan_sip.c: Registration from '"star" \' failed for '77.247.110.166:6366' - Wrong password \[2019-12-18 08:17:36\] NOTICE\[2839\] c	2019-12-18 21:23:23
103.121.173.170	attackspam	Honeypot attack, port: 23, PTR: 170.173.121.103.konnectnepal.com.np.	2019-12-18 21:21:06
183.54.209.171	attack	Dec 18 07:24:59 debian-2gb-nbg1-2 kernel: \[303074.528334\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=183.54.209.171 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=50 ID=46160 PROTO=TCP SPT=61481 DPT=23 WINDOW=10736 RES=0x00 SYN URGP=0	2019-12-18 21:17:32
69.55.49.194	attack	Invalid user pul from 69.55.49.194 port 57174	2019-12-18 21:05:31
83.205.172.184	attackspambots	Dec 17 20:24:46 php1 sshd\[16519\]: Invalid user pi from 83.205.172.184 Dec 17 20:24:46 php1 sshd\[16520\]: Invalid user pi from 83.205.172.184 Dec 17 20:24:46 php1 sshd\[16519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.205.172.184 Dec 17 20:24:46 php1 sshd\[16520\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.205.172.184 Dec 17 20:24:48 php1 sshd\[16519\]: Failed password for invalid user pi from 83.205.172.184 port 50076 ssh2	2019-12-18 21:31:38
134.209.152.176	attack	ssh failed login	2019-12-18 21:06:33
218.92.0.157	attackspam	Dec 18 03:23:23 php1 sshd\[27949\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.157 user=root Dec 18 03:23:25 php1 sshd\[27949\]: Failed password for root from 218.92.0.157 port 32379 ssh2 Dec 18 03:23:38 php1 sshd\[27949\]: Failed password for root from 218.92.0.157 port 32379 ssh2 Dec 18 03:23:42 php1 sshd\[27964\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.157 user=root Dec 18 03:23:44 php1 sshd\[27964\]: Failed password for root from 218.92.0.157 port 64491 ssh2	2019-12-18 21:26:07
171.15.16.116	attack	port scan and connect, tcp 1433 (ms-sql-s)	2019-12-18 20:52:16
87.246.7.34	attackspambots	Dec 18 13:50:08 webserver postfix/smtpd\[22433\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 18 13:50:14 webserver postfix/smtpd\[22435\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 18 13:50:41 webserver postfix/smtpd\[22433\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 18 13:51:13 webserver postfix/smtpd\[22435\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 18 13:51:44 webserver postfix/smtpd\[22433\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-18 21:04:38
49.234.201.90	attackspambots	Nov 21 21:13:07 microserver sshd[15807]: Invalid user ntps from 49.234.201.90 port 50162 Nov 21 21:13:07 microserver sshd[15807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.201.90 Nov 21 21:13:10 microserver sshd[15807]: Failed password for invalid user ntps from 49.234.201.90 port 50162 ssh2 Nov 21 21:21:33 microserver sshd[17031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.201.90 user=root Nov 21 21:21:35 microserver sshd[17031]: Failed password for root from 49.234.201.90 port 36920 ssh2 Dec 18 09:57:55 microserver sshd[37691]: Invalid user misc from 49.234.201.90 port 60158 Dec 18 09:57:55 microserver sshd[37691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.201.90 Dec 18 09:57:57 microserver sshd[37691]: Failed password for invalid user misc from 49.234.201.90 port 60158 ssh2 Dec 18 10:05:04 microserver sshd[38700]: pam_unix(sshd:auth): authentication	2019-12-18 21:15:39
132.232.113.102	attackspambots	Dec 18 12:20:57 eventyay sshd[31039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.113.102 Dec 18 12:20:59 eventyay sshd[31039]: Failed password for invalid user schradi from 132.232.113.102 port 60114 ssh2 Dec 18 12:28:47 eventyay sshd[31265]: Failed password for root from 132.232.113.102 port 36167 ssh2 ...	2019-12-18 20:59:17
103.56.205.232	attackbotsspam	SSH bruteforce	2019-12-18 21:19:27
106.13.9.153	attackspam	Dec 18 10:46:49 server sshd\[9259\]: Invalid user shuto from 106.13.9.153 Dec 18 10:46:49 server sshd\[9259\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.9.153 Dec 18 10:46:51 server sshd\[9259\]: Failed password for invalid user shuto from 106.13.9.153 port 42482 ssh2 Dec 18 10:54:55 server sshd\[11273\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.9.153 user=root Dec 18 10:54:57 server sshd\[11273\]: Failed password for root from 106.13.9.153 port 57844 ssh2 ...	2019-12-18 20:54:40

最近上报的IP列表

46.98.128.5	107.175.38.154	95.57.195.132	173.254.231.77
14.164.194.204	72.5.233.64	52.148.154.137	218.50.223.112
31.172.238.173	183.89.58.184	125.104.95.28	49.145.42.13
187.111.46.199	198.55.109.217	221.141.253.171	150.23.234.171
129.88.140.100	214.211.50.46	189.145.74.7	150.2.220.150