112.13.196.21 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Mobile Communications Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	port scan and connect, tcp 23 (telnet)	2019-06-23 11:38:46

相同子网IP讨论:

IP	类型	评论内容	时间
112.13.196.43	attackspam	Automatic report - Port Scan Attack	2019-07-16 15:14:24

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.13.196.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54271
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.13.196.21.			IN	A

;; AUTHORITY SECTION:
.			2366	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062202 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jun 23 11:38:38 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 21.196.13.112.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 21.196.13.112.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
159.203.199.101	attackspam	SASL Brute Force	2019-09-09 06:56:58
95.110.235.17	attackspambots	Sep 8 22:31:07 localhost sshd\[97626\]: Invalid user webadmin@123 from 95.110.235.17 port 56805 Sep 8 22:31:07 localhost sshd\[97626\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.110.235.17 Sep 8 22:31:10 localhost sshd\[97626\]: Failed password for invalid user webadmin@123 from 95.110.235.17 port 56805 ssh2 Sep 8 22:37:00 localhost sshd\[97752\]: Invalid user web from 95.110.235.17 port 59466 Sep 8 22:37:00 localhost sshd\[97752\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.110.235.17 ...	2019-09-09 06:52:34
59.120.19.40	attackspam	Sep 8 22:20:27 web8 sshd\[9762\]: Invalid user p@ssw0rd from 59.120.19.40 Sep 8 22:20:27 web8 sshd\[9762\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.120.19.40 Sep 8 22:20:29 web8 sshd\[9762\]: Failed password for invalid user p@ssw0rd from 59.120.19.40 port 64831 ssh2 Sep 8 22:25:11 web8 sshd\[12307\]: Invalid user passw0rd from 59.120.19.40 Sep 8 22:25:11 web8 sshd\[12307\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.120.19.40	2019-09-09 06:36:05
159.89.8.230	attack	[ssh] SSH attack	2019-09-09 06:43:25
79.60.107.11	attack	Unauthorized connection attempt from IP address 79.60.107.11 on Port 445(SMB)	2019-09-09 06:59:37
118.97.97.162	attackbots	Unauthorized connection attempt from IP address 118.97.97.162 on Port 445(SMB)	2019-09-09 07:00:40
206.189.36.69	attackspam	Invalid user gb from 206.189.36.69 port 39986 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.36.69 Failed password for invalid user gb from 206.189.36.69 port 39986 ssh2 Invalid user pablo from 206.189.36.69 port 56408 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.36.69	2019-09-09 06:56:13
45.115.4.170	attackspam	Unauthorised access (Sep 8) SRC=45.115.4.170 LEN=52 TTL=117 ID=26799 DF TCP DPT=445 WINDOW=8192 SYN	2019-09-09 07:04:11
14.247.178.89	attackspam	Unauthorized connection attempt from IP address 14.247.178.89 on Port 445(SMB)	2019-09-09 06:53:23
41.239.149.151	attackspam	Unauthorized connection attempt from IP address 41.239.149.151 on Port 445(SMB)	2019-09-09 06:51:20
192.144.175.106	attackspambots	Sep 8 22:23:40 MK-Soft-VM6 sshd\[1779\]: Invalid user ubuntu from 192.144.175.106 port 59862 Sep 8 22:23:40 MK-Soft-VM6 sshd\[1779\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.175.106 Sep 8 22:23:42 MK-Soft-VM6 sshd\[1779\]: Failed password for invalid user ubuntu from 192.144.175.106 port 59862 ssh2 ...	2019-09-09 07:01:14
51.38.237.214	attack	Sep 8 12:37:06 aiointranet sshd\[6208\]: Invalid user ftpuser from 51.38.237.214 Sep 8 12:37:06 aiointranet sshd\[6208\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=214.ip-51-38-237.eu Sep 8 12:37:08 aiointranet sshd\[6208\]: Failed password for invalid user ftpuser from 51.38.237.214 port 36314 ssh2 Sep 8 12:43:01 aiointranet sshd\[6755\]: Invalid user testuser from 51.38.237.214 Sep 8 12:43:01 aiointranet sshd\[6755\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=214.ip-51-38-237.eu	2019-09-09 06:58:16
182.61.188.133	attackspam	Unauthorized connection attempt from IP address 182.61.188.133 on Port 25(SMTP)	2019-09-09 06:43:00
134.175.23.46	attack	Sep 9 01:33:07 yabzik sshd[14995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.23.46 Sep 9 01:33:09 yabzik sshd[14995]: Failed password for invalid user ftpusr from 134.175.23.46 port 39840 ssh2 Sep 9 01:38:09 yabzik sshd[16801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.23.46	2019-09-09 06:38:19
182.245.73.170	attack	Unauthorised access (Sep 8) SRC=182.245.73.170 LEN=40 TOS=0x10 PREC=0x40 TTL=48 ID=49382 TCP DPT=8080 WINDOW=50170 SYN Unauthorised access (Sep 8) SRC=182.245.73.170 LEN=40 TOS=0x10 PREC=0x40 TTL=48 ID=54828 TCP DPT=8080 WINDOW=50170 SYN	2019-09-09 06:47:47

最近上报的IP列表

178.32.176.46	168.205.108.108	58.129.89.216	168.70.32.181
2604:a880:800:10::3775:c001	178.120.14.126	148.81.194.167	143.208.249.188
237.55.167.192	177.66.234.115	173.194.68.188	77.246.188.101
109.98.158.182	178.159.7.11	120.51.228.146	103.108.244.4
118.32.43.211	148.229.183.4	107.189.5.112	53.58.6.18