107.6.171.130 - IPInfo

基本信息:

城市(city): Amsterdam

省份(region): North Holland

国家(country): Netherlands

运营商(isp): SingleHop LLC

主机名(hostname): unknown

机构(organization): SingleHop LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	port scan and connect, tcp 443 (https)	2020-10-12 00:39:55
attackbotsspam	Unauthorized connection attempt detected from IP address 107.6.171.130 to port 5984 [T]	2020-10-11 16:36:42
attack	srv02 Mass scanning activity detected Target: 9200 ..	2020-10-11 09:55:12
attackbotsspam	Unauthorized connection attempt detected from IP address 107.6.171.130 to port 5601 [T]	2020-08-29 20:53:18
attack	5000/tcp 3541/tcp 5009/tcp... [2020-06-17/08-17]49pkt,37pt.(tcp),1pt.(udp)	2020-08-18 08:10:01
attackbotsspam	Honeypot hit.	2020-08-16 19:05:56
attack	TCP (SYN) 107.6.171.130:17511 -> port 9100, len 44	2020-07-16 20:44:58
attackspam	Unauthorized connection attempt detected from IP address 107.6.171.130 to port 3388	2020-07-13 03:11:52
attackspambots	9200/tcp 1521/tcp 554/tcp... [2020-05-11/07-08]49pkt,29pt.(tcp)	2020-07-08 22:54:21
attack	Unauthorized connection attempt detected from IP address 107.6.171.130 to port 8443	2020-05-31 23:32:15
attackspam	Unauthorized connection attempt detected from IP address 107.6.171.130 to port 111	2020-05-13 04:04:31
attackbots	Unauthorized connection attempt detected from IP address 107.6.171.130 to port 81	2020-04-07 05:31:18
attackbots	Unauthorized access detected from black listed ip!	2020-03-12 13:31:03
attackspambots	Unauthorized connection attempt detected from IP address 107.6.171.130 to port 8089 [J]	2020-03-03 00:41:16
attackspam	Automatic report - Banned IP Access	2020-02-17 17:29:06
attackbotsspam	port scan and connect, tcp 443 (https)	2020-02-09 10:50:42
attack	Unauthorized connection attempt detected from IP address 107.6.171.130 to port 23 [J]	2020-02-05 23:41:05
attackspam	Unauthorized connection attempt detected from IP address 107.6.171.130 to port 8080 [J]	2020-01-29 05:16:39
attackbotsspam	Honeypot hit.	2019-12-27 14:00:21
attackbots	HTTP/80/443 Probe, BF, WP, Hack -	2019-12-26 05:32:04
attackspam	Automatic report - Banned IP Access	2019-11-17 02:08:10
attackspam	vpn mutli connection	2019-11-13 23:32:29
attackbotsspam	Postfix-SMTPd	2019-10-11 23:50:58
attackbotsspam	Telnetd brute force attack detected by fail2ban	2019-10-06 03:40:34
attackbotsspam	port scan and connect, tcp 8443 (https-alt)	2019-08-19 19:32:33
attack	Port scan and direct access per IP instead of hostname	2019-07-28 17:26:53
attackspambots	143/tcp 2000/tcp 2222/tcp... [2019-05-26/07-24]30pkt,12pt.(tcp)	2019-07-26 11:40:28
attack	SSH-bruteforce attempts	2019-07-16 10:11:27
attackspam	Jul 7 13:31:51 *** sshd[20736]: Did not receive identification string from 107.6.171.130	2019-07-08 04:00:11
attackbotsspam	Fri 05 03:06:37 5000/tcp	2019-07-05 18:18:22

相同子网IP讨论:

IP	类型	评论内容	时间
107.6.171.132	attack	[Mon Aug 03 23:12:20 2020] - DDoS Attack From IP: 107.6.171.132 Port: 40521	2020-09-08 02:44:43
107.6.171.132	attackbotsspam	[Mon Aug 03 23:12:20 2020] - DDoS Attack From IP: 107.6.171.132 Port: 40521	2020-09-07 18:12:15
107.6.171.132	attackbots	Unwanted checking 80 or 443 port ...	2020-08-29 14:32:09
107.6.171.133	attack	" "	2020-08-12 19:19:23
107.6.171.131	attackspambots	TCP (SYN) 107.6.171.131:29886 -> port 1741, len 44	2020-08-05 08:28:24
107.6.171.133	attackspam	[Thu Jun 18 15:44:29 2020] - DDoS Attack From IP: 107.6.171.133 Port: 28480	2020-07-16 20:19:13
107.6.171.133	attack	Honeypot attack, port: 4848, PTR: sh-ams-nl-gp1-wk104.internet-census.org.	2020-07-13 02:50:51
107.6.171.132	attackspam	[Fri Jun 26 07:42:43 2020] - DDoS Attack From IP: 107.6.171.132 Port: 37631	2020-07-13 02:17:29
107.6.171.131	attackspam	UDP 107.6.171.131:41502 -> port 161, len 71	2020-07-09 01:18:07
107.6.171.133	attackspambots	[Thu Jun 18 15:44:34 2020] - DDoS Attack From IP: 107.6.171.133 Port: 28480	2020-07-08 22:27:54
107.6.171.132	attackspambots	[Fri Jun 26 07:42:46 2020] - DDoS Attack From IP: 107.6.171.132 Port: 37631	2020-07-08 21:02:56
107.6.171.131	attackspam	81/tcp 666/tcp 631/tcp... [2020-05-08/06-25]29pkt,27pt.(tcp)	2020-06-26 04:26:59
107.6.171.132	attackspambots	TCP (SYN) 107.6.171.132:13174 -> port 995, len 40	2020-06-15 22:14:46
107.6.171.132	attackspambots	firewall-block, port(s): 2404/tcp	2020-05-26 05:13:15
107.6.171.132	attackbotsspam	firewall-block, port(s): 8554/tcp	2020-05-24 00:01:40

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 107.6.171.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58847
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;107.6.171.130.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040900 1800 900 604800 86400

;; Query time: 5 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 09 18:56:04 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

130.171.6.107.in-addr.arpa domain name pointer sh-ams-nl-gp1-wk104.internet-census.org.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
130.171.6.107.in-addr.arpa	name = sh-ams-nl-gp1-wk104.internet-census.org.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
115.231.231.3	attackbotsspam	firewall-block, port(s): 22975/tcp	2020-09-15 00:46:04
132.232.59.247	attack	Sep 14 14:47:50 ns382633 sshd\[6176\]: Invalid user cyril from 132.232.59.247 port 45648 Sep 14 14:47:50 ns382633 sshd\[6176\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.59.247 Sep 14 14:47:52 ns382633 sshd\[6176\]: Failed password for invalid user cyril from 132.232.59.247 port 45648 ssh2 Sep 14 15:01:17 ns382633 sshd\[8981\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.59.247 user=root Sep 14 15:01:19 ns382633 sshd\[8981\]: Failed password for root from 132.232.59.247 port 57226 ssh2	2020-09-15 00:41:43
198.143.133.154	attackspam	Detected by ModSecurity. Host header is an IP address, Request URI: /	2020-09-15 00:51:23
34.76.47.142	attackbots	HTTP_USER_AGENT python-requests/2.24.0	2020-09-15 01:14:26
180.153.57.251	attackspam	$f2bV_matches	2020-09-15 00:41:23
103.219.112.48	attackspambots	Sep 14 13:42:00 scw-6657dc sshd[12747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.219.112.48 Sep 14 13:42:00 scw-6657dc sshd[12747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.219.112.48 Sep 14 13:42:02 scw-6657dc sshd[12747]: Failed password for invalid user admin from 103.219.112.48 port 46800 ssh2 ...	2020-09-15 01:08:08
43.225.151.252	attack	Invalid user css from 43.225.151.252 port 52320	2020-09-15 01:09:00
109.162.245.194	attack	Attempted Brute Force (dovecot)	2020-09-15 00:34:05
192.241.218.40	attackbots	2020-09-14T13:30:15.581112amanda2.illicoweb.com sshd\[8021\]: Invalid user cstrike from 192.241.218.40 port 38834 2020-09-14T13:30:15.584185amanda2.illicoweb.com sshd\[8021\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.218.40 2020-09-14T13:30:17.424905amanda2.illicoweb.com sshd\[8021\]: Failed password for invalid user cstrike from 192.241.218.40 port 38834 ssh2 2020-09-14T13:39:05.601507amanda2.illicoweb.com sshd\[8595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.218.40 user=root 2020-09-14T13:39:07.868827amanda2.illicoweb.com sshd\[8595\]: Failed password for root from 192.241.218.40 port 55908 ssh2 ...	2020-09-15 00:50:32
49.235.84.250	attackbotsspam	Sep 14 14:04:55 Ubuntu-1404-trusty-64-minimal sshd\[18086\]: Invalid user rtribbett from 49.235.84.250 Sep 14 14:04:55 Ubuntu-1404-trusty-64-minimal sshd\[18086\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.84.250 Sep 14 14:04:57 Ubuntu-1404-trusty-64-minimal sshd\[18086\]: Failed password for invalid user rtribbett from 49.235.84.250 port 59692 ssh2 Sep 14 14:14:23 Ubuntu-1404-trusty-64-minimal sshd\[24976\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.84.250 user=root Sep 14 14:14:25 Ubuntu-1404-trusty-64-minimal sshd\[24976\]: Failed password for root from 49.235.84.250 port 58666 ssh2	2020-09-15 01:13:59
213.32.31.108	attack	Sep 15 02:56:56 localhost sshd[190280]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.31.108 user=root Sep 15 02:56:58 localhost sshd[190280]: Failed password for root from 213.32.31.108 port 56068 ssh2 ...	2020-09-15 01:06:30
36.74.143.11	attackspam	2020-09-14T00:47:20.842783xentho-1 sshd[706628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.74.143.11 user=root 2020-09-14T00:47:23.210556xentho-1 sshd[706628]: Failed password for root from 36.74.143.11 port 34564 ssh2 2020-09-14T00:48:33.100042xentho-1 sshd[706661]: Invalid user wen from 36.74.143.11 port 47302 2020-09-14T00:48:33.105225xentho-1 sshd[706661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.74.143.11 2020-09-14T00:48:33.100042xentho-1 sshd[706661]: Invalid user wen from 36.74.143.11 port 47302 2020-09-14T00:48:35.161837xentho-1 sshd[706661]: Failed password for invalid user wen from 36.74.143.11 port 47302 ssh2 2020-09-14T00:49:42.622764xentho-1 sshd[706687]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.74.143.11 user=root 2020-09-14T00:49:44.151746xentho-1 sshd[706687]: Failed password for root from 36.74.143.11 port 60038 ssh2 20 ...	2020-09-15 00:32:00
34.122.92.180	attack	SSH brute-force attempt	2020-09-15 00:52:35
51.68.139.151	attackbotsspam	until 2020-09-14T06:36:42+01:00, observations: 6, bad account names: 1	2020-09-15 00:40:54
157.245.200.16	attackspam	Time: Mon Sep 14 14:59:19 2020 +0000 IP: 157.245.200.16 (-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 14 14:42:01 ca-18-ede1 sshd[21364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.200.16 user=root Sep 14 14:42:03 ca-18-ede1 sshd[21364]: Failed password for root from 157.245.200.16 port 45464 ssh2 Sep 14 14:54:29 ca-18-ede1 sshd[22707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.200.16 user=root Sep 14 14:54:31 ca-18-ede1 sshd[22707]: Failed password for root from 157.245.200.16 port 54034 ssh2 Sep 14 14:59:18 ca-18-ede1 sshd[23269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.200.16 user=root	2020-09-15 00:56:32

最近上报的IP列表

112.170.23.21	177.103.223.147	162.243.144.193	74.83.253.8
61.220.140.63	54.38.254.227	178.128.101.28	124.131.75.192
188.28.15.210	122.11.139.64	149.56.96.78	216.218.206.66
177.250.90.108	177.124.89.14	174.7.185.78	115.239.63.105
68.183.105.52	37.104.137.103	218.6.224.50	167.99.71.144