218.240.130.106

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Kuancom Network Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	prod11 ...	2020-08-21 17:57:26
attack	Jul 18 23:10:01 abendstille sshd\[2261\]: Invalid user nagios from 218.240.130.106 Jul 18 23:10:01 abendstille sshd\[2261\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.240.130.106 Jul 18 23:10:02 abendstille sshd\[2261\]: Failed password for invalid user nagios from 218.240.130.106 port 56490 ssh2 Jul 18 23:12:26 abendstille sshd\[4661\]: Invalid user nginx from 218.240.130.106 Jul 18 23:12:26 abendstille sshd\[4661\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.240.130.106 ...	2020-07-19 05:14:59
attackspambots	B: Abusive ssh attack	2020-07-13 00:59:49
attackspambots	May 28 01:00:21 vps333114 sshd[12290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.240.130.106 user=ftp May 28 01:00:23 vps333114 sshd[12290]: Failed password for ftp from 218.240.130.106 port 59292 ssh2 ...	2020-05-28 07:58:36
attackspambots	May 27 05:45:14 v22019038103785759 sshd\[31284\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.240.130.106 user=root May 27 05:45:16 v22019038103785759 sshd\[31284\]: Failed password for root from 218.240.130.106 port 53155 ssh2 May 27 05:48:38 v22019038103785759 sshd\[31440\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.240.130.106 user=root May 27 05:48:40 v22019038103785759 sshd\[31440\]: Failed password for root from 218.240.130.106 port 48374 ssh2 May 27 05:52:03 v22019038103785759 sshd\[31615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.240.130.106 user=root ...	2020-05-27 16:37:56
attackbotsspam	May 21 13:57:58 MainVPS sshd[21259]: Invalid user zik from 218.240.130.106 port 44989 May 21 13:57:58 MainVPS sshd[21259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.240.130.106 May 21 13:57:58 MainVPS sshd[21259]: Invalid user zik from 218.240.130.106 port 44989 May 21 13:58:00 MainVPS sshd[21259]: Failed password for invalid user zik from 218.240.130.106 port 44989 ssh2 May 21 14:00:15 MainVPS sshd[22957]: Invalid user zqm from 218.240.130.106 port 58721 ...	2020-05-22 02:26:38
attack	Mar 18 14:23:44 silence02 sshd[23130]: Failed password for mail from 218.240.130.106 port 33133 ssh2 Mar 18 14:26:04 silence02 sshd[23234]: Failed password for root from 218.240.130.106 port 47367 ssh2	2020-03-18 21:33:10
attackspambots	Mar 3 18:55:17 areeb-Workstation sshd[29864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.240.130.106 Mar 3 18:55:19 areeb-Workstation sshd[29864]: Failed password for invalid user www from 218.240.130.106 port 45181 ssh2 ...	2020-03-03 21:32:00
attackbots	Feb 11 08:31:07 sshd\[7471\]: Invalid user xao from 218.240.130.106Feb 11 08:31:08 sshd\[7471\]: Failed password for invalid user xao from 218.240.130.106 port 37171 ssh2 ...	2020-02-11 18:04:37
attackspambots	Feb 1 16:43:37 silence02 sshd[14798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.240.130.106 Feb 1 16:43:39 silence02 sshd[14798]: Failed password for invalid user daniela from 218.240.130.106 port 52055 ssh2 Feb 1 16:47:18 silence02 sshd[15047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.240.130.106	2020-02-01 23:50:48
attackspam	Unauthorized connection attempt detected from IP address 218.240.130.106 to port 2220 [J]	2020-01-23 16:42:38
attack	Invalid user nextcloud from 218.240.130.106 port 43619	2020-01-19 14:00:00
attackspam	Jan 13 05:53:25 meumeu sshd[344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.240.130.106 Jan 13 05:53:27 meumeu sshd[344]: Failed password for invalid user openkm from 218.240.130.106 port 47904 ssh2 Jan 13 05:56:56 meumeu sshd[934]: Failed password for root from 218.240.130.106 port 57860 ssh2 ...	2020-01-13 13:12:07
attack	Aug 3 21:25:52 [host] sshd[15885]: Invalid user user_1 from 218.240.130.106 Aug 3 21:25:52 [host] sshd[15885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.240.130.106 Aug 3 21:25:54 [host] sshd[15885]: Failed password for invalid user user_1 from 218.240.130.106 port 46477 ssh2	2019-08-04 04:44:18
attack	Aug 2 04:01:46 server sshd\[25450\]: Invalid user admin from 218.240.130.106 port 34086 Aug 2 04:01:46 server sshd\[25450\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.240.130.106 Aug 2 04:01:47 server sshd\[25450\]: Failed password for invalid user admin from 218.240.130.106 port 34086 ssh2 Aug 2 04:05:46 server sshd\[28408\]: Invalid user ml from 218.240.130.106 port 52530 Aug 2 04:05:46 server sshd\[28408\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.240.130.106	2019-08-02 13:29:35
attackspambots	Jul 30 05:29:14 MK-Soft-VM6 sshd\[19142\]: Invalid user socket from 218.240.130.106 port 48629 Jul 30 05:29:14 MK-Soft-VM6 sshd\[19142\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.240.130.106 Jul 30 05:29:16 MK-Soft-VM6 sshd\[19142\]: Failed password for invalid user socket from 218.240.130.106 port 48629 ssh2 ...	2019-07-30 14:08:30

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 218.240.130.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53674
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;218.240.130.106.		IN	A

;; AUTHORITY SECTION:
.			2597	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019073001 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 30 14:08:20 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 106.130.240.218.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 106.130.240.218.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
141.98.80.149	attack	Mar 13 15:57:06 bacztwo courieresmtpd[27691]: error,relay=::ffff:141.98.80.149,msg="535 Authentication failed.",cmd: AUTH PLAIN andcycle-w7club@andcycle.idv.tw Mar 13 15:57:06 bacztwo courieresmtpd[27692]: error,relay=::ffff:141.98.80.149,msg="535 Authentication failed.",cmd: AUTH PLAIN andcycle-w7club@andcycle.idv.tw Mar 13 15:57:06 bacztwo courieresmtpd[27690]: error,relay=::ffff:141.98.80.149,msg="535 Authentication failed.",cmd: AUTH PLAIN andcycle-bitcointalk.org@andcycle.idv.tw Mar 13 15:57:09 bacztwo courieresmtpd[27961]: error,relay=::ffff:141.98.80.149,msg="535 Authentication failed.",cmd: AUTH PLAIN andcycle-w7club Mar 13 15:57:09 bacztwo courieresmtpd[27962]: error,relay=::ffff:141.98.80.149,msg="535 Authentication failed.",cmd: AUTH PLAIN andcycle-w7club ...	2020-03-13 15:58:49
192.241.237.224	attackspambots	1584073745 - 03/13/2020 05:29:05 Host: 192.241.237.224/192.241.237.224 Port: 8080 TCP Blocked	2020-03-13 16:29:41
185.211.245.170	attack	Mar 13 08:35:52 relay postfix/smtpd\[17471\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 13 08:43:52 relay postfix/smtpd\[17473\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 13 08:43:52 relay postfix/smtpd\[25270\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 13 08:43:59 relay postfix/smtpd\[22420\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 13 08:43:59 relay postfix/smtpd\[25278\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-03-13 15:57:25
159.203.32.71	attackspambots	(sshd) Failed SSH login from 159.203.32.71 (CA/Canada/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 13 09:25:18 ubnt-55d23 sshd[2374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.32.71 user=root Mar 13 09:25:20 ubnt-55d23 sshd[2374]: Failed password for root from 159.203.32.71 port 64452 ssh2	2020-03-13 16:37:22
222.186.30.209	attackspambots	2020-03-13T09:22:24.302326scmdmz1 sshd[18691]: Failed password for root from 222.186.30.209 port 37757 ssh2 2020-03-13T09:22:26.955824scmdmz1 sshd[18691]: Failed password for root from 222.186.30.209 port 37757 ssh2 2020-03-13T09:22:29.348692scmdmz1 sshd[18691]: Failed password for root from 222.186.30.209 port 37757 ssh2 ...	2020-03-13 16:23:39
45.63.83.160	attackspam	Mar 13 08:01:37 lnxded63 sshd[23388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.63.83.160 Mar 13 08:01:39 lnxded63 sshd[23388]: Failed password for invalid user mfptrading from 45.63.83.160 port 36683 ssh2 Mar 13 08:05:16 lnxded63 sshd[23690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.63.83.160	2020-03-13 16:06:35
162.243.128.57	attackspambots	Port probing on unauthorized port 9001	2020-03-13 16:06:15
112.85.42.178	attack	Mar 13 08:53:04 nextcloud sshd\[15295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root Mar 13 08:53:06 nextcloud sshd\[15295\]: Failed password for root from 112.85.42.178 port 42569 ssh2 Mar 13 08:53:10 nextcloud sshd\[15295\]: Failed password for root from 112.85.42.178 port 42569 ssh2	2020-03-13 15:54:47
209.97.178.174	attackspambots	Mar 13 08:33:20 markkoudstaal sshd[11472]: Failed password for root from 209.97.178.174 port 46654 ssh2 Mar 13 08:40:30 markkoudstaal sshd[12634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.178.174 Mar 13 08:40:32 markkoudstaal sshd[12634]: Failed password for invalid user ts3server from 209.97.178.174 port 35174 ssh2	2020-03-13 15:59:17
94.180.58.238	attackbotsspam	Invalid user pramod from 94.180.58.238 port 35590	2020-03-13 16:38:07
195.231.3.188	attackspam	Mar 13 09:08:31 mail.srvfarm.net postfix/smtpd[2361471]: lost connection after CONNECT from unknown[195.231.3.188] Mar 13 09:09:01 mail.srvfarm.net postfix/smtpd[2361798]: warning: unknown[195.231.3.188]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 13 09:09:01 mail.srvfarm.net postfix/smtpd[2361798]: lost connection after AUTH from unknown[195.231.3.188] Mar 13 09:10:27 mail.srvfarm.net postfix/smtpd[2361471]: warning: unknown[195.231.3.188]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 13 09:10:27 mail.srvfarm.net postfix/smtpd[2361471]: lost connection after AUTH from unknown[195.231.3.188]	2020-03-13 16:33:51
60.166.52.51	attackspam	Port Scan detected from 60.166.52.51 (CN/China/-). 4 hits in the last 136 seconds	2020-03-13 16:10:29
222.186.15.91	attackbots	Mar 13 03:58:54 plusreed sshd[31434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.91 user=root Mar 13 03:58:57 plusreed sshd[31434]: Failed password for root from 222.186.15.91 port 28761 ssh2 ...	2020-03-13 16:00:38
217.112.142.108	attackbotsspam	Mar 13 04:36:12 mail.srvfarm.net postfix/smtpd[2272686]: NOQUEUE: reject: RCPT from unknown[217.112.142.108]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 13 04:36:15 mail.srvfarm.net postfix/smtpd[2258439]: NOQUEUE: reject: RCPT from unknown[217.112.142.108]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 13 04:36:15 mail.srvfarm.net postfix/smtpd[2272688]: NOQUEUE: reject: RCPT from unknown[217.112.142.108]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 13 04:36:15 mail.srvfarm.net postfix/smtpd[2270462]: NOQUEUE: reject: RCPT from unknown[217.112.142.108]: 450 4	2020-03-13 16:33:27
184.105.139.67	attackspambots	Unauthorized connection attempt detected from IP address 184.105.139.67 to port 5900	2020-03-13 16:34:45

最近上报的IP列表

76.250.173.3	187.49.123.196	118.77.220.185	29.161.24.183
106.13.144.8	211.116.110.137	7.147.79.84	93.118.235.232
165.225.231.51	78.204.141.241	112.252.19.151	3.104.2.161
209.113.175.33	47.245.1.241	11.154.237.10	167.166.59.185
136.211.74.66	103.113.60.95	185.147.195.228	94.29.73.59