13.112.6.1 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Japan

运营商(isp): Amazon Data Services Japan

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	web Attack on Wordpress site at 2020-02-05.	2020-02-06 17:12:35

相同子网IP讨论:

IP	类型	评论内容	时间
13.112.6.175	attack	unauthorized connection attempt	2020-02-16 17:59:55
13.112.6.175	attack	Unauthorized connection attempt detected from IP address 13.112.6.175 to port 6379 [J]	2020-02-04 00:23:24
13.112.6.175	attack	Unauthorized connection attempt detected from IP address 13.112.6.175 to port 80 [T]	2020-02-02 09:11:28
13.112.6.175	attackspambots	Unauthorized connection attempt detected from IP address 13.112.6.175 to port 80 [J]	2020-01-20 23:42:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.112.6.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2578
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;13.112.6.1.			IN	A

;; AUTHORITY SECTION:
.			508	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020600 1800 900 604800 86400

;; Query time: 223 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 06 17:12:28 CST 2020
;; MSG SIZE  rcvd: 114

HOST信息:

1.6.112.13.in-addr.arpa domain name pointer ec2-13-112-6-1.ap-northeast-1.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
1.6.112.13.in-addr.arpa	name = ec2-13-112-6-1.ap-northeast-1.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
91.225.77.52	attackspam	Apr 1 08:36:15 sshd\[15964\]: User root from 91.225.77.52 not allowed because not listed in AllowUsersApr 1 08:36:17 sshd\[15964\]: Failed password for invalid user root from 91.225.77.52 port 44940 ssh2 ...	2020-04-01 15:27:12
49.232.162.235	attack	Apr 1 06:36:39 server sshd[10805]: Failed password for root from 49.232.162.235 port 49648 ssh2 Apr 1 06:41:46 server sshd[12143]: Failed password for root from 49.232.162.235 port 47902 ssh2 Apr 1 06:47:03 server sshd[13485]: Failed password for root from 49.232.162.235 port 46158 ssh2	2020-04-01 15:25:49
222.99.52.216	attackbotsspam	Invalid user fm from 222.99.52.216 port 25098	2020-04-01 16:09:15
191.234.167.43	attackbots	WordPress login Brute force / Web App Attack on client site.	2020-04-01 15:28:20
167.172.145.231	attack	$f2bV_matches	2020-04-01 16:09:53
128.199.162.2	attackbotsspam	Apr 1 10:55:53 itv-usvr-02 sshd[22003]: Invalid user ih from 128.199.162.2 port 43196 Apr 1 10:55:53 itv-usvr-02 sshd[22003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.162.2 Apr 1 10:55:53 itv-usvr-02 sshd[22003]: Invalid user ih from 128.199.162.2 port 43196 Apr 1 10:55:55 itv-usvr-02 sshd[22003]: Failed password for invalid user ih from 128.199.162.2 port 43196 ssh2 Apr 1 11:01:45 itv-usvr-02 sshd[22188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.162.2 user=root Apr 1 11:01:46 itv-usvr-02 sshd[22188]: Failed password for root from 128.199.162.2 port 48924 ssh2	2020-04-01 15:42:01
61.19.22.217	attack	Invalid user ebm from 61.19.22.217 port 43072	2020-04-01 16:14:13
123.206.45.16	attack	Invalid user gek from 123.206.45.16 port 51524	2020-04-01 15:35:04
180.183.16.11	attack	1585713089 - 04/01/2020 05:51:29 Host: 180.183.16.11/180.183.16.11 Port: 445 TCP Blocked	2020-04-01 16:01:58
61.14.210.88	attackspambots	$f2bV_matches	2020-04-01 16:12:59
148.70.223.115	attack	<6 unauthorized SSH connections	2020-04-01 16:05:15
139.59.190.69	attackspam	2020-04-01T06:33:20.423779abusebot-3.cloudsearch.cf sshd[23026]: Invalid user deploy from 139.59.190.69 port 60849 2020-04-01T06:33:20.430808abusebot-3.cloudsearch.cf sshd[23026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.190.69 2020-04-01T06:33:20.423779abusebot-3.cloudsearch.cf sshd[23026]: Invalid user deploy from 139.59.190.69 port 60849 2020-04-01T06:33:22.190408abusebot-3.cloudsearch.cf sshd[23026]: Failed password for invalid user deploy from 139.59.190.69 port 60849 ssh2 2020-04-01T06:36:57.107283abusebot-3.cloudsearch.cf sshd[23254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.190.69 user=root 2020-04-01T06:36:58.660736abusebot-3.cloudsearch.cf sshd[23254]: Failed password for root from 139.59.190.69 port 38706 ssh2 2020-04-01T06:40:26.039663abusebot-3.cloudsearch.cf sshd[23473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59. ...	2020-04-01 16:10:23
170.150.72.28	attackbotsspam	2020-04-01T05:54:21.841142ionos.janbro.de sshd[27522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.150.72.28 user=root 2020-04-01T05:54:23.512647ionos.janbro.de sshd[27522]: Failed password for root from 170.150.72.28 port 33182 ssh2 2020-04-01T05:57:20.285753ionos.janbro.de sshd[27547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.150.72.28 user=root 2020-04-01T05:57:21.856997ionos.janbro.de sshd[27547]: Failed password for root from 170.150.72.28 port 47048 ssh2 2020-04-01T06:00:08.293042ionos.janbro.de sshd[27576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.150.72.28 user=root 2020-04-01T06:00:09.923517ionos.janbro.de sshd[27576]: Failed password for root from 170.150.72.28 port 60916 ssh2 2020-04-01T06:03:05.550332ionos.janbro.de sshd[27597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.150. ...	2020-04-01 15:40:39
213.182.84.153	attack	Lines containing failures of 213.182.84.153 Apr 1 00:45:50 linuxrulz sshd[13047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.182.84.153 user=r.r Apr 1 00:45:52 linuxrulz sshd[13047]: Failed password for r.r from 213.182.84.153 port 51072 ssh2 Apr 1 00:45:53 linuxrulz sshd[13047]: Received disconnect from 213.182.84.153 port 51072:11: Bye Bye [preauth] Apr 1 00:45:53 linuxrulz sshd[13047]: Disconnected from authenticating user r.r 213.182.84.153 port 51072 [preauth] Apr 1 00:58:53 linuxrulz sshd[14416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.182.84.153 user=r.r Apr 1 00:58:55 linuxrulz sshd[14416]: Failed password for r.r from 213.182.84.153 port 41284 ssh2 Apr 1 00:58:56 linuxrulz sshd[14416]: Received disconnect from 213.182.84.153 port 41284:11: Bye Bye [preauth] Apr 1 00:58:56 linuxrulz sshd[14416]: Disconnected from authenticating user r.r 213.182.84.153 po........ ------------------------------	2020-04-01 15:41:46
181.81.149.136	attackbotsspam	Port probing on unauthorized port 23	2020-04-01 16:04:50

最近上报的IP列表

118.25.55.1	37.210.219.163	76.115.182.123	253.215.200.229
91.239.165.158	207.20.65.81	118.25.11.2	80.6.135.125
200.104.134.119	46.163.11.210	106.248.228.114	172.157.235.183
208.5.91.83	96.36.239.223	184.152.61.98	127.98.36.239
117.89.53.64	150.233.67.179	118.179.215.5	153.7.203.30