106.13.130.80 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Invalid user ark from 106.13.130.80 port 47172	2020-03-20 18:18:53

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.130.166	attack	Automatic report - Banned IP Access	2020-10-04 08:51:20
106.13.130.166	attackspambots	Automatic report - Banned IP Access	2020-10-04 01:24:56
106.13.130.208	attackspam	May 14 12:23:16 vlre-nyc-1 sshd\[12889\]: Invalid user deploy from 106.13.130.208 May 14 12:23:16 vlre-nyc-1 sshd\[12889\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.208 May 14 12:23:18 vlre-nyc-1 sshd\[12889\]: Failed password for invalid user deploy from 106.13.130.208 port 53648 ssh2 May 14 12:26:54 vlre-nyc-1 sshd\[13014\]: Invalid user test3 from 106.13.130.208 May 14 12:26:54 vlre-nyc-1 sshd\[13014\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.208 ...	2020-05-14 22:35:19
106.13.130.208	attackspambots	2020-05-11T10:00:40.124954randservbullet-proofcloud-66.localdomain sshd[28565]: Invalid user yh from 106.13.130.208 port 56350 2020-05-11T10:00:40.130484randservbullet-proofcloud-66.localdomain sshd[28565]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.208 2020-05-11T10:00:40.124954randservbullet-proofcloud-66.localdomain sshd[28565]: Invalid user yh from 106.13.130.208 port 56350 2020-05-11T10:00:42.297407randservbullet-proofcloud-66.localdomain sshd[28565]: Failed password for invalid user yh from 106.13.130.208 port 56350 ssh2 ...	2020-05-11 18:21:20
106.13.130.66	attackspambots	Apr 3 21:04:33 php1 sshd\[4529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66 user=root Apr 3 21:04:35 php1 sshd\[4529\]: Failed password for root from 106.13.130.66 port 40622 ssh2 Apr 3 21:09:37 php1 sshd\[5101\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66 user=root Apr 3 21:09:39 php1 sshd\[5101\]: Failed password for root from 106.13.130.66 port 37576 ssh2 Apr 3 21:14:25 php1 sshd\[5483\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66 user=root	2020-04-04 17:57:00
106.13.130.66	attack	Invalid user ws from 106.13.130.66 port 48216	2020-04-03 23:21:50
106.13.130.208	attack	SSH login attempts.	2020-03-30 13:58:54
106.13.130.208	attackbotsspam	Mar 27 06:49:06 mockhub sshd[22872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.208 Mar 27 06:49:08 mockhub sshd[22872]: Failed password for invalid user jkl from 106.13.130.208 port 33824 ssh2 ...	2020-03-28 01:29:28
106.13.130.66	attackbots	Mar 26 12:12:34 legacy sshd[6736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66 Mar 26 12:12:37 legacy sshd[6736]: Failed password for invalid user jboss from 106.13.130.66 port 46144 ssh2 Mar 26 12:14:08 legacy sshd[6755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66 ...	2020-03-26 20:18:09
106.13.130.66	attackbots	SSH Authentication Attempts Exceeded	2020-03-24 16:21:44
106.13.130.208	attackbotsspam	Mar 24 01:03:22 silence02 sshd[16057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.208 Mar 24 01:03:24 silence02 sshd[16057]: Failed password for invalid user cassy from 106.13.130.208 port 46516 ssh2 Mar 24 01:06:43 silence02 sshd[16198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.208	2020-03-24 10:07:25
106.13.130.66	attackbotsspam	Mar 3 07:10:46 lnxded63 sshd[3915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66	2020-03-03 15:22:12
106.13.130.66	attackbots	$f2bV_matches	2020-02-13 16:04:35
106.13.130.66	attackspam	Unauthorized connection attempt detected from IP address 106.13.130.66 to port 2220 [J]	2020-01-29 15:28:15
106.13.130.66	attackbots	(sshd) Failed SSH login from 106.13.130.66 (CN/China/-): 5 in the last 3600 secs	2020-01-19 14:48:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.130.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53771
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.130.80.			IN	A

;; AUTHORITY SECTION:
.			252	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032000 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 20 18:18:49 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 80.130.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 80.130.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
51.77.140.36	attackbots	Oct 2 23:29:52 vps01 sshd[24191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.140.36 Oct 2 23:29:54 vps01 sshd[24191]: Failed password for invalid user password321 from 51.77.140.36 port 58480 ssh2	2019-10-03 05:38:17
31.53.74.0	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/31.53.74.0/ GB - 1H : (126) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : GB NAME ASN : ASN2856 IP : 31.53.74.0 CIDR : 31.48.0.0/13 PREFIX COUNT : 292 UNIQUE IP COUNT : 10658560 WYKRYTE ATAKI Z ASN2856 : 1H - 8 3H - 10 6H - 10 12H - 11 24H - 14 DateTime : 2019-10-02 23:29:52 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-03 05:39:12
95.46.111.145	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/95.46.111.145/ RU - 1H : (517) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : RU NAME ASN : ASN198056 IP : 95.46.111.145 CIDR : 95.46.111.0/24 PREFIX COUNT : 20 UNIQUE IP COUNT : 5120 WYKRYTE ATAKI Z ASN198056 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-02 23:29:52 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-03 05:38:02
162.247.73.192	attack	Automatic report - Banned IP Access	2019-10-03 05:11:17
109.102.158.14	attackspam	Oct 2 23:29:26 localhost sshd\[13803\]: Invalid user iy from 109.102.158.14 port 49068 Oct 2 23:29:27 localhost sshd\[13803\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.102.158.14 Oct 2 23:29:28 localhost sshd\[13803\]: Failed password for invalid user iy from 109.102.158.14 port 49068 ssh2	2019-10-03 05:45:43
102.173.45.186	attackbots	SpamReport	2019-10-03 05:31:14
207.154.232.160	attack	2019-10-02T21:29:53.037362abusebot-4.cloudsearch.cf sshd\[19254\]: Invalid user usuario from 207.154.232.160 port 38464	2019-10-03 05:39:34
222.186.175.8	attackspam	DATE:2019-10-02 23:27:40, IP:222.186.175.8, PORT:ssh SSH brute force auth on honeypot server (honey-neo-dc-bis)	2019-10-03 05:44:18
179.124.200.222	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/179.124.200.222/ BR - 1H : (862) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN263617 IP : 179.124.200.222 CIDR : 179.124.200.0/24 PREFIX COUNT : 4 UNIQUE IP COUNT : 1024 WYKRYTE ATAKI Z ASN263617 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-02 23:29:52 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-03 05:39:58
54.37.230.15	attackspam	Oct 2 11:25:39 wbs sshd\[25701\]: Invalid user postgres from 54.37.230.15 Oct 2 11:25:39 wbs sshd\[25701\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=15.ip-54-37-230.eu Oct 2 11:25:41 wbs sshd\[25701\]: Failed password for invalid user postgres from 54.37.230.15 port 60552 ssh2 Oct 2 11:29:12 wbs sshd\[26027\]: Invalid user admin from 54.37.230.15 Oct 2 11:29:12 wbs sshd\[26027\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=15.ip-54-37-230.eu	2019-10-03 05:41:37
151.77.147.201	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/151.77.147.201/ IT - 1H : (338) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IT NAME ASN : ASN1267 IP : 151.77.147.201 CIDR : 151.77.0.0/16 PREFIX COUNT : 161 UNIQUE IP COUNT : 6032640 WYKRYTE ATAKI Z ASN1267 : 1H - 10 3H - 33 6H - 42 12H - 50 24H - 77 DateTime : 2019-10-02 23:29:52 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-03 05:37:48
62.234.23.78	attackbotsspam	Oct 2 17:40:45 debian sshd\[4785\]: Invalid user kapaul from 62.234.23.78 port 44248 Oct 2 17:40:45 debian sshd\[4785\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.23.78 Oct 2 17:40:47 debian sshd\[4785\]: Failed password for invalid user kapaul from 62.234.23.78 port 44248 ssh2 ...	2019-10-03 05:47:21
106.12.90.250	attackbots	2019-10-02T20:59:57.692006abusebot.cloudsearch.cf sshd\[28039\]: Invalid user upload1 from 106.12.90.250 port 57766	2019-10-03 05:25:52
117.50.12.10	attackbotsspam	Oct 2 11:25:26 php1 sshd\[12094\]: Invalid user t from 117.50.12.10 Oct 2 11:25:26 php1 sshd\[12094\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.12.10 Oct 2 11:25:28 php1 sshd\[12094\]: Failed password for invalid user t from 117.50.12.10 port 37562 ssh2 Oct 2 11:29:41 php1 sshd\[12474\]: Invalid user beefy from 117.50.12.10 Oct 2 11:29:41 php1 sshd\[12474\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.12.10	2019-10-03 05:48:35
197.221.155.30	attack	B: Magento admin pass test (wrong country)	2019-10-03 05:24:39

最近上报的IP列表

142.51.237.126	95.32.228.54	97.110.200.176	24.190.94.212
107.155.56.229	37.187.125.32	110.228.254.148	171.237.104.17
103.144.77.242	94.156.125.196	103.37.201.178	106.13.25.112
46.239.30.174	217.112.142.164	97.26.173.156	134.73.51.149
119.160.65.150	63.82.48.8	94.179.104.127	12.136.16.151