13.138.89.20 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.138.89.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58672
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;13.138.89.20.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020300 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 17:11:54 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 20.89.138.13.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 20.89.138.13.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
187.189.11.49	attackspambots	2020-08-21T16:00:30.928744abusebot-3.cloudsearch.cf sshd[22407]: Invalid user tomcat from 187.189.11.49 port 51180 2020-08-21T16:00:30.935392abusebot-3.cloudsearch.cf sshd[22407]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=fixed-187-189-11-49.totalplay.net 2020-08-21T16:00:30.928744abusebot-3.cloudsearch.cf sshd[22407]: Invalid user tomcat from 187.189.11.49 port 51180 2020-08-21T16:00:33.317586abusebot-3.cloudsearch.cf sshd[22407]: Failed password for invalid user tomcat from 187.189.11.49 port 51180 ssh2 2020-08-21T16:01:31.451876abusebot-3.cloudsearch.cf sshd[22424]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=fixed-187-189-11-49.totalplay.net user=root 2020-08-21T16:01:33.206457abusebot-3.cloudsearch.cf sshd[22424]: Failed password for root from 187.189.11.49 port 59922 ssh2 2020-08-21T16:01:56.686504abusebot-3.cloudsearch.cf sshd[22428]: pam_unix(sshd:auth): authentication failure; logname= u ...	2020-08-22 01:49:26
128.14.134.134	attackspam	[20/Aug/2020:12:41:42 -0400] "GET / HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" [20/Aug/2020:12:41:43 -0400] "GET / HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36"	2020-08-22 01:50:24
84.54.153.140	attackspam	Port Scan ...	2020-08-22 01:45:10
68.183.82.97	attackspambots	Aug 21 19:11:51 ns382633 sshd\[23627\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.82.97 user=root Aug 21 19:11:53 ns382633 sshd\[23627\]: Failed password for root from 68.183.82.97 port 59310 ssh2 Aug 21 19:27:11 ns382633 sshd\[29222\]: Invalid user test from 68.183.82.97 port 42796 Aug 21 19:27:11 ns382633 sshd\[29222\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.82.97 Aug 21 19:27:13 ns382633 sshd\[29222\]: Failed password for invalid user test from 68.183.82.97 port 42796 ssh2	2020-08-22 01:41:23
110.10.129.110	attackbots	srvr1: (mod_security) mod_security (id:942100) triggered by 110.10.129.110 (KR/-/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:02:25 [error] 482759#0: 840137 [client 110.10.129.110] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/faq.php"] [unique_id "159801134524.724565"] [ref ""], client: 110.10.129.110, [redacted] request: "GET /faq.php?cat_id=8%20and%201%3D1 HTTP/1.1" [redacted]	2020-08-22 02:12:19
221.133.18.115	attackbots	Aug 22 03:30:34 NG-HHDC-SVS-001 sshd[21621]: Invalid user abe from 221.133.18.115 ...	2020-08-22 01:35:24
62.210.91.62	attack	62.210.91.62 - [21/Aug/2020:15:02:53 +0300] "POST /xmlrpc.php HTTP/1.1" 404 73790 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" "-" 62.210.91.62 - [21/Aug/2020:15:02:53 +0300] "POST /xmlrpc.php HTTP/1.1" 404 73790 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" "-" ...	2020-08-22 01:43:53
46.19.40.108	attackspam	Unauthorized connection attempt from IP address 46.19.40.108 on Port 445(SMB)	2020-08-22 02:11:55
115.78.9.189	attackbots	Unauthorized connection attempt from IP address 115.78.9.189 on Port 445(SMB)	2020-08-22 01:42:38
64.139.73.170	attackbots	Aug 21 14:02:26 minden010 sshd[575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.139.73.170 Aug 21 14:02:26 minden010 sshd[578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.139.73.170 Aug 21 14:02:28 minden010 sshd[575]: Failed password for invalid user pi from 64.139.73.170 port 33662 ssh2 ...	2020-08-22 01:43:37
36.66.105.23	attackspam	srvr1: (mod_security) mod_security (id:942100) triggered by 36.66.105.23 (ID/-/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:02:51 [error] 482759#0: 840279 [client 36.66.105.23] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801137179.562580"] [ref ""], client: 36.66.105.23, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%27+OR+++%274865%27+%3D+%274865 HTTP/1.1" [redacted]	2020-08-22 01:38:25
42.177.53.126	attack	Unauthorised access (Aug 21) SRC=42.177.53.126 LEN=40 TTL=46 ID=47852 TCP DPT=8080 WINDOW=53910 SYN Unauthorised access (Aug 21) SRC=42.177.53.126 LEN=40 TTL=46 ID=17808 TCP DPT=8080 WINDOW=53910 SYN	2020-08-22 01:57:45
118.202.255.141	attack	Aug 21 19:17:44 vpn01 sshd[28699]: Failed password for root from 118.202.255.141 port 52390 ssh2 ...	2020-08-22 02:03:47
106.54.98.89	attackspambots	Aug 21 14:39:26 firewall sshd[25562]: Invalid user yhy from 106.54.98.89 Aug 21 14:39:28 firewall sshd[25562]: Failed password for invalid user yhy from 106.54.98.89 port 41548 ssh2 Aug 21 14:44:02 firewall sshd[25736]: Invalid user rdp from 106.54.98.89 ...	2020-08-22 01:54:02
82.137.11.97	attack	Unauthorized connection attempt from IP address 82.137.11.97 on Port 445(SMB)	2020-08-22 01:47:18

最近上报的IP列表

120.142.22.46	54.246.189.244	195.184.116.114	192.200.73.111
216.52.163.110	117.151.47.65	35.223.56.34	185.199.101.225
122.56.52.248	200.219.57.182	211.16.76.231	220.222.115.213
107.183.202.125	140.23.49.178	68.66.171.124	38.205.201.106
71.105.148.247	132.95.72.151	168.186.141.47	41.217.130.83