106.13.130.80 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Invalid user ark from 106.13.130.80 port 47172	2020-03-20 18:18:53

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.130.166	attack	Automatic report - Banned IP Access	2020-10-04 08:51:20
106.13.130.166	attackspambots	Automatic report - Banned IP Access	2020-10-04 01:24:56
106.13.130.208	attackspam	May 14 12:23:16 vlre-nyc-1 sshd\[12889\]: Invalid user deploy from 106.13.130.208 May 14 12:23:16 vlre-nyc-1 sshd\[12889\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.208 May 14 12:23:18 vlre-nyc-1 sshd\[12889\]: Failed password for invalid user deploy from 106.13.130.208 port 53648 ssh2 May 14 12:26:54 vlre-nyc-1 sshd\[13014\]: Invalid user test3 from 106.13.130.208 May 14 12:26:54 vlre-nyc-1 sshd\[13014\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.208 ...	2020-05-14 22:35:19
106.13.130.208	attackspambots	2020-05-11T10:00:40.124954randservbullet-proofcloud-66.localdomain sshd[28565]: Invalid user yh from 106.13.130.208 port 56350 2020-05-11T10:00:40.130484randservbullet-proofcloud-66.localdomain sshd[28565]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.208 2020-05-11T10:00:40.124954randservbullet-proofcloud-66.localdomain sshd[28565]: Invalid user yh from 106.13.130.208 port 56350 2020-05-11T10:00:42.297407randservbullet-proofcloud-66.localdomain sshd[28565]: Failed password for invalid user yh from 106.13.130.208 port 56350 ssh2 ...	2020-05-11 18:21:20
106.13.130.66	attackspambots	Apr 3 21:04:33 php1 sshd\[4529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66 user=root Apr 3 21:04:35 php1 sshd\[4529\]: Failed password for root from 106.13.130.66 port 40622 ssh2 Apr 3 21:09:37 php1 sshd\[5101\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66 user=root Apr 3 21:09:39 php1 sshd\[5101\]: Failed password for root from 106.13.130.66 port 37576 ssh2 Apr 3 21:14:25 php1 sshd\[5483\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66 user=root	2020-04-04 17:57:00
106.13.130.66	attack	Invalid user ws from 106.13.130.66 port 48216	2020-04-03 23:21:50
106.13.130.208	attack	SSH login attempts.	2020-03-30 13:58:54
106.13.130.208	attackbotsspam	Mar 27 06:49:06 mockhub sshd[22872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.208 Mar 27 06:49:08 mockhub sshd[22872]: Failed password for invalid user jkl from 106.13.130.208 port 33824 ssh2 ...	2020-03-28 01:29:28
106.13.130.66	attackbots	Mar 26 12:12:34 legacy sshd[6736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66 Mar 26 12:12:37 legacy sshd[6736]: Failed password for invalid user jboss from 106.13.130.66 port 46144 ssh2 Mar 26 12:14:08 legacy sshd[6755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66 ...	2020-03-26 20:18:09
106.13.130.66	attackbots	SSH Authentication Attempts Exceeded	2020-03-24 16:21:44
106.13.130.208	attackbotsspam	Mar 24 01:03:22 silence02 sshd[16057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.208 Mar 24 01:03:24 silence02 sshd[16057]: Failed password for invalid user cassy from 106.13.130.208 port 46516 ssh2 Mar 24 01:06:43 silence02 sshd[16198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.208	2020-03-24 10:07:25
106.13.130.66	attackbotsspam	Mar 3 07:10:46 lnxded63 sshd[3915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66	2020-03-03 15:22:12
106.13.130.66	attackbots	$f2bV_matches	2020-02-13 16:04:35
106.13.130.66	attackspam	Unauthorized connection attempt detected from IP address 106.13.130.66 to port 2220 [J]	2020-01-29 15:28:15
106.13.130.66	attackbots	(sshd) Failed SSH login from 106.13.130.66 (CN/China/-): 5 in the last 3600 secs	2020-01-19 14:48:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.130.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53771
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.130.80.			IN	A

;; AUTHORITY SECTION:
.			252	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032000 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 20 18:18:49 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 80.130.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 80.130.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
69.94.135.201	attack	Apr 20 22:35:52 mail.srvfarm.net postfix/smtpd[2306699]: NOQUEUE: reject: RCPT from unknown[69.94.135.201]: 554 5.7.1 Service unavailable; Client host [69.94.135.201] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?69.94.135.201; from= to= proto=ESMTP helo= Apr 20 22:36:24 mail.srvfarm.net postfix/smtpd[2306699]: NOQUEUE: reject: RCPT from unknown[69.94.135.201]: 554 5.7.1 Service unavailable; Client host [69.94.135.201] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?69.94.135.201; from= to= proto=ESMTP helo= Apr 20 22:36:25 mail.srvfarm.net postfix/smtpd[2307048]: NOQUEUE: reject: RCPT from unknown[69.94.135.201]: 554 5.7.1 Service unavailable; Client host [69.94.135.201] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?69.94.135.201; from=	2020-04-21 06:53:19
101.4.130.247	attackbotsspam	Apr 21 01:02:13 * sshd[15056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.4.130.247 Apr 21 01:02:15 * sshd[15056]: Failed password for invalid user s from 101.4.130.247 port 40436 ssh2	2020-04-21 07:20:25
10.79.48.10	attackspam	Port scanning	2020-04-21 07:28:05
129.204.122.170	attackbots	Invalid user rg from 129.204.122.170 port 33280	2020-04-21 07:02:22
185.225.36.211	attack	Spam	2020-04-21 07:12:54
196.203.53.20	attackbots	Apr 20 21:16:31 h2646465 sshd[15349]: Invalid user kj from 196.203.53.20 Apr 20 21:16:31 h2646465 sshd[15349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.203.53.20 Apr 20 21:16:31 h2646465 sshd[15349]: Invalid user kj from 196.203.53.20 Apr 20 21:16:32 h2646465 sshd[15349]: Failed password for invalid user kj from 196.203.53.20 port 39466 ssh2 Apr 20 21:36:40 h2646465 sshd[17824]: Invalid user od from 196.203.53.20 Apr 20 21:36:40 h2646465 sshd[17824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.203.53.20 Apr 20 21:36:40 h2646465 sshd[17824]: Invalid user od from 196.203.53.20 Apr 20 21:36:42 h2646465 sshd[17824]: Failed password for invalid user od from 196.203.53.20 port 48470 ssh2 Apr 20 21:54:00 h2646465 sshd[19827]: Invalid user user from 196.203.53.20 ...	2020-04-21 07:28:25
41.94.28.14	attack	Invalid user ftpuser from 41.94.28.14 port 57496	2020-04-21 07:20:52
63.245.119.130	attack	port scan and connect, tcp 23 (telnet)	2020-04-21 07:03:23
115.124.64.126	attackspam	prod11 ...	2020-04-21 06:55:00
171.100.121.242	attack	Dovecot Invalid User Login Attempt.	2020-04-21 07:25:04
92.63.194.106	attackbots	Invalid user user from 92.63.194.106 port 34715	2020-04-21 06:55:25
88.230.67.186	attack	Unauthorized connection attempt detected from IP address 88.230.67.186 to port 445	2020-04-21 07:02:38
37.49.229.190	attack	[2020-04-20 17:34:35] NOTICE[1170][C-00002f20] chan_sip.c: Call from '' (37.49.229.190:29070) to extension '0000848323395006' rejected because extension not found in context 'public'. [2020-04-20 17:34:35] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-20T17:34:35.447-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="0000848323395006",SessionID="0x7f6c0817f3c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.229.190/5060",ACLName="no_extension_match" [2020-04-20 17:39:27] NOTICE[1170][C-00002f28] chan_sip.c: Call from '' (37.49.229.190:20377) to extension '0000148323395006' rejected because extension not found in context 'public'. [2020-04-20 17:39:27] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-20T17:39:27.718-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="0000148323395006",SessionID="0x7f6c08341c08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/U ...	2020-04-21 07:16:18
167.172.158.180	attack	" "	2020-04-21 07:24:24
190.196.64.93	attackbots	2020-04-20T19:51:06.715971shield sshd\[18730\]: Invalid user hadoop from 190.196.64.93 port 35244 2020-04-20T19:51:06.718659shield sshd\[18730\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.196.64.93 2020-04-20T19:51:08.401557shield sshd\[18730\]: Failed password for invalid user hadoop from 190.196.64.93 port 35244 ssh2 2020-04-20T19:54:44.489347shield sshd\[19657\]: Invalid user test123 from 190.196.64.93 port 49070 2020-04-20T19:54:44.492982shield sshd\[19657\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.196.64.93	2020-04-21 07:01:57

最近上报的IP列表

142.51.237.126	95.32.228.54	97.110.200.176	24.190.94.212
107.155.56.229	37.187.125.32	110.228.254.148	171.237.104.17
103.144.77.242	94.156.125.196	103.37.201.178	106.13.25.112
46.239.30.174	217.112.142.164	97.26.173.156	134.73.51.149
119.160.65.150	63.82.48.8	94.179.104.127	12.136.16.151