13.211.29.53 - IPInfo

基本信息:

城市(city): Sydney

省份(region): New South Wales

国家(country): Australia

运营商(isp): Amazon Corporate Services Pty Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	RDP Bruteforce	2019-11-25 03:48:39

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.211.29.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55615
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;13.211.29.53.			IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112401 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 100.100.2.136#53(100.100.2.136)
;; WHEN: Mon Nov 25 03:54:15 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

53.29.211.13.in-addr.arpa domain name pointer ec2-13-211-29-53.ap-southeast-2.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
53.29.211.13.in-addr.arpa	name = ec2-13-211-29-53.ap-southeast-2.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
103.120.124.142	attackspam	2020-07-21T07:16:47.198843+02:00 sshd[19499]: Failed password for invalid user ADMIN from 103.120.124.142 port 49722 ssh2	2020-07-21 16:19:53
201.55.159.217	attackbotsspam	Jul 21 05:41:32 mail.srvfarm.net postfix/smtpd[10235]: warning: 201-55-159-217.witelecom.com.br[201.55.159.217]: SASL PLAIN authentication failed: Jul 21 05:41:32 mail.srvfarm.net postfix/smtpd[10235]: lost connection after AUTH from 201-55-159-217.witelecom.com.br[201.55.159.217] Jul 21 05:43:35 mail.srvfarm.net postfix/smtpd[11696]: warning: 201-55-159-217.witelecom.com.br[201.55.159.217]: SASL PLAIN authentication failed: Jul 21 05:43:35 mail.srvfarm.net postfix/smtpd[11696]: lost connection after AUTH from 201-55-159-217.witelecom.com.br[201.55.159.217] Jul 21 05:43:46 mail.srvfarm.net postfix/smtpd[11772]: warning: 201-55-159-217.witelecom.com.br[201.55.159.217]: SASL PLAIN authentication failed:	2020-07-21 16:35:01
103.56.113.224	attackbotsspam	Jul 21 04:53:56 ip-172-31-62-245 sshd\[10376\]: Invalid user cacti from 103.56.113.224\ Jul 21 04:53:58 ip-172-31-62-245 sshd\[10376\]: Failed password for invalid user cacti from 103.56.113.224 port 43832 ssh2\ Jul 21 04:55:58 ip-172-31-62-245 sshd\[10411\]: Invalid user arlindo from 103.56.113.224\ Jul 21 04:56:00 ip-172-31-62-245 sshd\[10411\]: Failed password for invalid user arlindo from 103.56.113.224 port 47774 ssh2\ Jul 21 04:58:01 ip-172-31-62-245 sshd\[10455\]: Invalid user cc from 103.56.113.224\	2020-07-21 16:33:43
60.219.171.134	attack	Jul 21 08:56:31 vps639187 sshd\[8202\]: Invalid user admin from 60.219.171.134 port 40492 Jul 21 08:56:31 vps639187 sshd\[8202\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.219.171.134 Jul 21 08:56:33 vps639187 sshd\[8202\]: Failed password for invalid user admin from 60.219.171.134 port 40492 ssh2 ...	2020-07-21 16:22:36
106.52.36.19	attackspam	Fail2Ban Ban Triggered	2020-07-21 16:02:48
94.152.193.95	attackbots	SpamScore above: 10.0	2020-07-21 16:24:03
103.93.16.105	attackspambots	2020-07-21T05:06:53.467897shield sshd\[6705\]: Invalid user k from 103.93.16.105 port 34894 2020-07-21T05:06:53.479016shield sshd\[6705\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.93.16.105 2020-07-21T05:06:55.709897shield sshd\[6705\]: Failed password for invalid user k from 103.93.16.105 port 34894 ssh2 2020-07-21T05:11:10.648723shield sshd\[7027\]: Invalid user postgres from 103.93.16.105 port 33650 2020-07-21T05:11:10.659517shield sshd\[7027\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.93.16.105	2020-07-21 16:08:45
14.23.81.42	attackspambots	Jul 20 08:31:42 Tower sshd[6083]: refused connect from 49.233.182.205 (49.233.182.205) Jul 21 03:00:19 Tower sshd[6083]: Connection from 14.23.81.42 port 57762 on 192.168.10.220 port 22 rdomain "" Jul 21 03:00:22 Tower sshd[6083]: Invalid user webmaster from 14.23.81.42 port 57762 Jul 21 03:00:22 Tower sshd[6083]: error: Could not get shadow information for NOUSER Jul 21 03:00:22 Tower sshd[6083]: Failed password for invalid user webmaster from 14.23.81.42 port 57762 ssh2 Jul 21 03:00:23 Tower sshd[6083]: Received disconnect from 14.23.81.42 port 57762:11: Bye Bye [preauth] Jul 21 03:00:23 Tower sshd[6083]: Disconnected from invalid user webmaster 14.23.81.42 port 57762 [preauth]	2020-07-21 16:20:07
146.120.87.199	attack	Automatic Fail2ban report - Trying login SSH	2020-07-21 16:19:00
212.70.149.19	attackbotsspam	Jul 21 09:50:44 srv01 postfix/smtpd\[32497\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 21 09:50:52 srv01 postfix/smtpd\[20476\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 21 09:50:53 srv01 postfix/smtpd\[5809\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 21 09:50:58 srv01 postfix/smtpd\[32497\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 21 09:51:15 srv01 postfix/smtpd\[20476\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-21 16:03:20
51.255.172.77	attack	Jul 21 06:27:29 *** sshd[25330]: Invalid user sandy from 51.255.172.77	2020-07-21 16:04:24
31.36.181.181	attackbotsspam	Invalid user youngjun from 31.36.181.181 port 60798	2020-07-21 16:15:17
218.92.0.148	attackspambots	Jul 21 09:55:30 andromeda sshd\[29206\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root Jul 21 09:55:33 andromeda sshd\[29206\]: Failed password for root from 218.92.0.148 port 13000 ssh2 Jul 21 09:55:43 andromeda sshd\[29759\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root	2020-07-21 15:56:05
27.128.233.3	attack	2020-07-21T00:13:45.620853-07:00 suse-nuc sshd[26474]: Invalid user useradmin from 27.128.233.3 port 36792 ...	2020-07-21 16:00:48
2.182.31.179	attack	20/7/20@23:53:44: FAIL: Alarm-Network address from=2.182.31.179 ...	2020-07-21 16:30:54

最近上报的IP列表

46.38.109.143	99.37.1.42	79.86.176.1	204.117.126.171
71.59.15.100	109.27.192.241	36.74.179.106	182.63.149.18
65.233.82.78	82.119.141.200	14.157.103.94	31.221.172.19
47.84.27.187	88.100.210.13	17.18.183.128	174.235.190.3
136.243.89.146	71.222.243.218	109.96.190.220	212.80.49.70