213.230.80.6 - IPInfo

基本信息:

城市(city): Tashkent

省份(region): Toshkent Shahri

国家(country): Uzbekistan

运营商(isp): Uzbektelekom Joint Stock Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Nov 7 07:17:36 mxgate1 postfix/postscreen[13848]: CONNECT from [213.230.80.6]:5720 to [176.31.12.44]:25 Nov 7 07:17:36 mxgate1 postfix/dnsblog[13850]: addr 213.230.80.6 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 7 07:17:36 mxgate1 postfix/dnsblog[13850]: addr 213.230.80.6 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 7 07:17:36 mxgate1 postfix/dnsblog[13853]: addr 213.230.80.6 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 7 07:17:36 mxgate1 postfix/postscreen[13848]: PREGREET 21 after 0.17 from [213.230.80.6]:5720: EHLO [213.230.80.6] Nov 7 07:17:37 mxgate1 postfix/dnsblog[13849]: addr 213.230.80.6 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 7 07:17:37 mxgate1 postfix/postscreen[13848]: DNSBL rank 4 for [213.230.80.6]:5720 Nov x@x Nov 7 07:17:37 mxgate1 postfix/postscreen[13848]: HANGUP after 0.46 from [213.230.80.6]:5720 in tests after SMTP handshake Nov 7 07:17:37 mxgate1 postfix/postscreen[13848]: DISCONNECT [213.230.80.6]:572........ -------------------------------	2019-11-07 19:52:28

类型

评论内容

时间

attackbotsspam

Nov  7 07:17:36 mxgate1 postfix/postscreen[13848]: CONNECT from [213.230.80.6]:5720 to [176.31.12.44]:25
Nov  7 07:17:36 mxgate1 postfix/dnsblog[13850]: addr 213.230.80.6 listed by domain zen.spamhaus.org as 127.0.0.11
Nov  7 07:17:36 mxgate1 postfix/dnsblog[13850]: addr 213.230.80.6 listed by domain zen.spamhaus.org as 127.0.0.4
Nov  7 07:17:36 mxgate1 postfix/dnsblog[13853]: addr 213.230.80.6 listed by domain b.barracudacentral.org as 127.0.0.2
Nov  7 07:17:36 mxgate1 postfix/postscreen[13848]: PREGREET 21 after 0.17 from [213.230.80.6]:5720: EHLO [213.230.80.6]

Nov  7 07:17:37 mxgate1 postfix/dnsblog[13849]: addr 213.230.80.6 listed by domain cbl.abuseat.org as 127.0.0.2
Nov  7 07:17:37 mxgate1 postfix/postscreen[13848]: DNSBL rank 4 for [213.230.80.6]:5720
Nov x@x
Nov  7 07:17:37 mxgate1 postfix/postscreen[13848]: HANGUP after 0.46 from [213.230.80.6]:5720 in tests after SMTP handshake
Nov  7 07:17:37 mxgate1 postfix/postscreen[13848]: DISCONNECT [213.230.80.6]:572........
-------------------------------

2019-11-07 19:52:28

相同子网IP讨论:

IP	类型	评论内容	时间
213.230.80.107	attackbots	port scan and connect, tcp 21 (ftp)	2020-07-18 00:44:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 213.230.80.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2041
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;213.230.80.6.			IN	A

;; AUTHORITY SECTION:
.			524	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110700 1800 900 604800 86400

;; Query time: 121 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 07 19:52:25 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

6.80.230.213.in-addr.arpa domain name pointer 6.64.uzpak.uz.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
6.80.230.213.in-addr.arpa	name = 6.64.uzpak.uz.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
27.71.206.110	attackspam	SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-09-13 16:45:28
27.105.252.36	attack	" "	2019-09-13 16:39:54
138.197.162.28	attackspam	Sep 12 23:06:24 hcbb sshd\[503\]: Invalid user demo1 from 138.197.162.28 Sep 12 23:06:24 hcbb sshd\[503\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.162.28 Sep 12 23:06:26 hcbb sshd\[503\]: Failed password for invalid user demo1 from 138.197.162.28 port 51810 ssh2 Sep 12 23:10:51 hcbb sshd\[960\]: Invalid user 123 from 138.197.162.28 Sep 12 23:10:51 hcbb sshd\[960\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.162.28	2019-09-13 17:18:32
103.207.11.10	attackspambots	2019-09-08 08:29:00,247 fail2ban.actions \[1859\]: NOTICE \[ssh\] Ban 103.207.11.10 2019-09-08 08:46:59,565 fail2ban.actions \[1859\]: NOTICE \[ssh\] Ban 103.207.11.10 2019-09-08 09:05:10,951 fail2ban.actions \[1859\]: NOTICE \[ssh\] Ban 103.207.11.10 2019-09-08 09:23:16,281 fail2ban.actions \[1859\]: NOTICE \[ssh\] Ban 103.207.11.10 2019-09-08 09:41:31,200 fail2ban.actions \[1859\]: NOTICE \[ssh\] Ban 103.207.11.10 ...	2019-09-13 17:05:49
114.7.120.10	attackbotsspam	Sep 13 07:12:19 taivassalofi sshd[229152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.7.120.10 Sep 13 07:12:21 taivassalofi sshd[229152]: Failed password for invalid user 123456 from 114.7.120.10 port 59638 ssh2 ...	2019-09-13 17:13:10
180.183.130.149	attackbotsspam	Automatic report - Port Scan Attack	2019-09-13 16:49:53
163.172.205.52	attack	at least 50 failed attempts to log in during the past 120 minutes...	2019-09-13 16:52:13
222.186.15.217	attack	Sep 13 09:03:03 hcbbdb sshd\[11752\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.217 user=root Sep 13 09:03:05 hcbbdb sshd\[11752\]: Failed password for root from 222.186.15.217 port 43534 ssh2 Sep 13 09:03:07 hcbbdb sshd\[11752\]: Failed password for root from 222.186.15.217 port 43534 ssh2 Sep 13 09:03:09 hcbbdb sshd\[11752\]: Failed password for root from 222.186.15.217 port 43534 ssh2 Sep 13 09:03:26 hcbbdb sshd\[11807\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.217 user=root	2019-09-13 17:09:38
213.174.23.12	attackspam	SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-09-13 16:50:25
106.12.33.174	attack	Sep 11 23:43:11 itv-usvr-01 sshd[15566]: Invalid user admin from 106.12.33.174 Sep 11 23:43:11 itv-usvr-01 sshd[15566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.33.174 Sep 11 23:43:11 itv-usvr-01 sshd[15566]: Invalid user admin from 106.12.33.174 Sep 11 23:43:13 itv-usvr-01 sshd[15566]: Failed password for invalid user admin from 106.12.33.174 port 54360 ssh2 Sep 11 23:51:06 itv-usvr-01 sshd[15883]: Invalid user tester from 106.12.33.174	2019-09-13 17:07:00
125.16.97.246	attackspambots	2019-09-08 06:52:45,147 fail2ban.actions \[1859\]: NOTICE \[ssh\] Ban 125.16.97.246 2019-09-08 07:12:10,484 fail2ban.actions \[1859\]: NOTICE \[ssh\] Ban 125.16.97.246 2019-09-08 07:31:11,187 fail2ban.actions \[1859\]: NOTICE \[ssh\] Ban 125.16.97.246 2019-09-08 07:53:02,288 fail2ban.actions \[1859\]: NOTICE \[ssh\] Ban 125.16.97.246 2019-09-08 08:12:07,389 fail2ban.actions \[1859\]: NOTICE \[ssh\] Ban 125.16.97.246 ...	2019-09-13 17:03:17
185.209.0.58	attackbotsspam	Port scan on 6 port(s): 5505 5506 5529 5551 5567 5593	2019-09-13 17:07:21
14.198.6.164	attackspambots	2019-08-23 13:00:10,204 fail2ban.actions [878]: NOTICE [sshd] Ban 14.198.6.164 2019-08-23 16:07:17,767 fail2ban.actions [878]: NOTICE [sshd] Ban 14.198.6.164 2019-08-23 19:15:03,813 fail2ban.actions [878]: NOTICE [sshd] Ban 14.198.6.164 ...	2019-09-13 17:04:15
51.77.215.207	attack	Automatic report - Banned IP Access	2019-09-13 17:13:41
173.254.195.38	attack	Unauthorized IMAP connection attempt	2019-09-13 16:42:35

最近上报的IP列表

59.144.88.66	85.141.126.144	156.238.168.170	14.186.163.161
145.239.93.149	111.53.115.116	78.204.123.164	114.235.35.26
92.255.201.134	89.83.237.114	173.212.229.22	185.165.28.163
49.235.91.217	91.200.151.226	109.100.62.50	139.59.91.176
185.15.37.55	58.56.244.50	125.112.47.4	183.166.145.134