JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 60.13.7.59

60.13.7.59 was found in our database!

This IP was reported 197 times. Confidence of Abuse is 42%: ?

42%

ISP	China Unicom Gansu province network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Lanzhou, Gansu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 60.13.7.59

Whois 60.13.7.59

IP Abuse Reports for 60.13.7.59:

This IP address has been reported a total of 197 times from 60 distinct sources. 60.13.7.59 was first reported on January 7th 2021, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 anycast_ac	2026-06-27 02:08:36 (1 day ago)	[mirai-detector honeypot] Inbound attack against our honeypot on tcp/6080 (novnc). Family fingerprin ... show more [mirai-detector honeypot] Inbound attack against our honeypot on tcp/6080 (novnc). Family fingerprint: vnc-scanner Commands captured: $ http: GET /favicon.ico HTTP/1.1 $ ua: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36 $ served fake noVNC index (no upgrade) show less	DDoS Attack
🇫🇷 TheHoneyPotter	2026-06-21 16:56:02 (6 days ago)	Honeypot [fc-honeypot]: HTTP/1.1 request on 58000 GET / Accept: /; 58000 [1] TCP Reported by: htt ... show more Honeypot [fc-honeypot]: HTTP/1.1 request on 58000 GET / Accept: /; 58000 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-18 15:15:46 (1 week ago)	Honeypot hit: Empty payload (likely service probe); 9002 [1] TCP	Port Scan
🇫🇮 6kilowatti	2026-06-10 16:56:46 (2 weeks ago)	2026-06-10T19:56:45.860436+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18 ... show more 2026-06-10T19:56:45.860436+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18:bd:57:7e:08:00 SRC=60.13.7.59 DST=5.61.88.83 LEN=44 TOS=0x00 PREC=0x00 TTL=229 ID=56220 PROTO=TCP SPT=23074 DPT=8084 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇮 6kilowatti	2026-06-10 02:43:23 (2 weeks ago)	2026-06-10T05:43:22.296004+03:00 mummo kernel: [UFW BLOCK] IN=enp0s25 OUT= MAC=6c:62:6d:d6:a5:bc:00: ... show more 2026-06-10T05:43:22.296004+03:00 mummo kernel: [UFW BLOCK] IN=enp0s25 OUT= MAC=6c:62:6d:d6:a5:bc:00:00:5e:00:01:58:08:00 SRC=60.13.7.59 DST=83.148.240.21 LEN=44 TOS=0x00 PREC=0x00 TTL=228 ID=4340 PROTO=TCP SPT=57396 DPT=11211 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 MPL	2026-06-08 04:08:47 (2 weeks ago)	tcp/7443 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-06-07 10:20:35 (2 weeks ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5985. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5985. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-07 05:11:08 (2 weeks ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-31 16:10:32 (3 weeks ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-31 02:34:31 (4 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇸🇪 donarev419	2026-05-31 01:20:59 (4 weeks ago)	Connection to port 12392 with data transfer. Data preview: �	Port Scan Hacking
Anonymous	2026-05-23 09:07:33 (1 month ago)	unsolicited connect TCP dport 3790 (sport 20183)	Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-20 20:23:18 (1 month ago)	Honeypot hit: Empty payload (likely service probe); 7844 [1] TCP	Port Scan
🇦🇺 trentwiles.com	2026-05-20 05:33:41 (1 month ago)	Unauthorized connection attempt detected from IP address 60.13.7.59 to port 30050 [SYD]	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-20 02:57:23 (1 month ago)	Honeypot hit: Empty payload (likely service probe); 2500 [1] TCP	Port Scan

Showing 1 to 15 of 197 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇱 212.127.91.32

🇧🇷 205.210.31.175

🇳🇱 204.76.203.15

🇬🇧 193.163.125.76

🇩🇪 185.47.174.75

🇧🇼 168.167.228.123

🇳🇱 164.92.211.134

🇺🇸 162.216.149.160

🇻🇳 113.161.222.150

🇱🇹 45.227.254.170

🇳🇱 45.148.10.157

🇰🇷 43.155.172.154

🇻🇳 14.225.173.146

🇳🇱 195.178.110.232

🇫🇮 147.185.133.131

🇰🇷 121.131.220.154

🇺🇸 66.132.172.134

🇧🇷 45.179.216.18

🇸🇬 43.128.122.242

🇵🇱 194.180.49.220