12.219.244.13 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Applied Medical Technology I

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	unauthorized connection attempt	2020-02-18 19:12:44
attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-14 13:33:53

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 12.219.244.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51521
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;12.219.244.13.			IN	A

;; AUTHORITY SECTION:
.			536	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021400 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 13:33:46 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 13.244.219.12.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 13.244.219.12.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.175.167	attack	Apr 8 14:43:36 silence02 sshd[5117]: Failed password for root from 222.186.175.167 port 22066 ssh2 Apr 8 14:43:46 silence02 sshd[5117]: Failed password for root from 222.186.175.167 port 22066 ssh2 Apr 8 14:43:49 silence02 sshd[5117]: Failed password for root from 222.186.175.167 port 22066 ssh2 Apr 8 14:43:49 silence02 sshd[5117]: error: maximum authentication attempts exceeded for root from 222.186.175.167 port 22066 ssh2 [preauth]	2020-04-08 20:47:34
106.54.64.77	attackspambots	(sshd) Failed SSH login from 106.54.64.77 (US/United States/-): 5 in the last 3600 secs	2020-04-08 20:50:49
51.68.229.73	attack	Apr 8 08:58:56 firewall sshd[14639]: Invalid user student from 51.68.229.73 Apr 8 08:58:58 firewall sshd[14639]: Failed password for invalid user student from 51.68.229.73 port 48412 ssh2 Apr 8 09:08:24 firewall sshd[15004]: Invalid user setup from 51.68.229.73 ...	2020-04-08 20:18:07
14.18.66.61	attackspam	Apr 8 13:29:27 ns382633 sshd\[17418\]: Invalid user test from 14.18.66.61 port 44776 Apr 8 13:29:27 ns382633 sshd\[17418\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.18.66.61 Apr 8 13:29:29 ns382633 sshd\[17418\]: Failed password for invalid user test from 14.18.66.61 port 44776 ssh2 Apr 8 13:36:14 ns382633 sshd\[19010\]: Invalid user stunnel from 14.18.66.61 port 43528 Apr 8 13:36:14 ns382633 sshd\[19010\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.18.66.61	2020-04-08 20:08:08
65.31.127.80	attack	Apr 8 14:39:57 vps sshd[1036224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-65-31-127-80.wi.res.rr.com Apr 8 14:39:59 vps sshd[1036224]: Failed password for invalid user testuser from 65.31.127.80 port 46586 ssh2 Apr 8 14:43:38 vps sshd[11180]: Invalid user update from 65.31.127.80 port 55198 Apr 8 14:43:38 vps sshd[11180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-65-31-127-80.wi.res.rr.com Apr 8 14:43:40 vps sshd[11180]: Failed password for invalid user update from 65.31.127.80 port 55198 ssh2 ...	2020-04-08 20:57:11
83.30.170.54	attackspambots	Fail2Ban - SSH Bruteforce Attempt	2020-04-08 20:22:48
211.144.69.249	attack	2020-04-08T13:33:37.602746centos sshd[24552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.144.69.249 2020-04-08T13:33:37.594599centos sshd[24552]: Invalid user admin from 211.144.69.249 port 7875 2020-04-08T13:33:39.959727centos sshd[24552]: Failed password for invalid user admin from 211.144.69.249 port 7875 ssh2 ...	2020-04-08 20:25:31
61.42.20.128	attack	Apr 8 13:41:14 v22019038103785759 sshd\[25645\]: Invalid user wilder from 61.42.20.128 port 57284 Apr 8 13:41:14 v22019038103785759 sshd\[25645\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.42.20.128 Apr 8 13:41:16 v22019038103785759 sshd\[25645\]: Failed password for invalid user wilder from 61.42.20.128 port 57284 ssh2 Apr 8 13:49:31 v22019038103785759 sshd\[26153\]: Invalid user terraria from 61.42.20.128 port 10822 Apr 8 13:49:31 v22019038103785759 sshd\[26153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.42.20.128 ...	2020-04-08 20:23:32
51.15.41.227	attackspambots	Apr 8 14:43:44 ns381471 sshd[30929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.41.227 Apr 8 14:43:47 ns381471 sshd[30929]: Failed password for invalid user glass from 51.15.41.227 port 45706 ssh2	2020-04-08 20:51:38
156.96.44.14	attackspambots	DATE:2020-04-08 13:52:15, IP:156.96.44.14, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-04-08 20:06:59
178.128.168.87	attackspam	$f2bV_matches	2020-04-08 20:38:55
218.92.0.165	attackbots	Apr 8 13:02:45 combo sshd[30830]: Failed password for root from 218.92.0.165 port 40651 ssh2 Apr 8 13:02:48 combo sshd[30830]: Failed password for root from 218.92.0.165 port 40651 ssh2 Apr 8 13:02:51 combo sshd[30830]: Failed password for root from 218.92.0.165 port 40651 ssh2 ...	2020-04-08 20:42:33
69.163.152.111	attackspam	69.163.152.111 - - [08/Apr/2020:08:33:43 +0200] "GET /wp-login.php HTTP/1.1" 200 5821 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 69.163.152.111 - - [08/Apr/2020:08:33:44 +0200] "POST /wp-login.php HTTP/1.1" 200 6601 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 69.163.152.111 - - [08/Apr/2020:08:33:46 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-08 20:28:34
222.186.30.57	attack	Apr 8 14:37:07 dcd-gentoo sshd[4908]: User root from 222.186.30.57 not allowed because none of user's groups are listed in AllowGroups Apr 8 14:37:10 dcd-gentoo sshd[4908]: error: PAM: Authentication failure for illegal user root from 222.186.30.57 Apr 8 14:37:07 dcd-gentoo sshd[4908]: User root from 222.186.30.57 not allowed because none of user's groups are listed in AllowGroups Apr 8 14:37:10 dcd-gentoo sshd[4908]: error: PAM: Authentication failure for illegal user root from 222.186.30.57 Apr 8 14:37:07 dcd-gentoo sshd[4908]: User root from 222.186.30.57 not allowed because none of user's groups are listed in AllowGroups Apr 8 14:37:10 dcd-gentoo sshd[4908]: error: PAM: Authentication failure for illegal user root from 222.186.30.57 Apr 8 14:37:10 dcd-gentoo sshd[4908]: Failed keyboard-interactive/pam for invalid user root from 222.186.30.57 port 49383 ssh2 ...	2020-04-08 20:37:50
94.198.110.205	attackbots	(sshd) Failed SSH login from 94.198.110.205 (RU/Russia/host110-205.almatel.ru): 5 in the last 3600 secs	2020-04-08 20:34:30

最近上报的IP列表

171.250.249.92	118.172.172.240	176.102.13.93	35.224.28.194
114.47.131.37	115.76.0.67	12.132.113.2	171.248.33.81
129.204.193.192	203.128.76.74	112.115.55.127	12.11.253.71
1.161.114.218	58.87.113.207	12.11.253.70	114.119.149.167
113.190.208.50	45.120.126.48	171.235.96.65	12.10.56.68