13.249.21.105 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.249.21.105
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44192
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;13.249.21.105.			IN	A

;; AUTHORITY SECTION:
.			189	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 05:05:19 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

105.21.249.13.in-addr.arpa domain name pointer server-13-249-21-105.iah50.r.cloudfront.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
105.21.249.13.in-addr.arpa	name = server-13-249-21-105.iah50.r.cloudfront.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
178.154.200.103	attack	[Thu Jun 11 02:24:42.012844 2020] [:error] [pid 6458:tid 140673117513472] [client 178.154.200.103:58294] [client 178.154.200.103] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XuEzenmwliXNF7a8gaYqJQAAAfA"] ...	2020-06-11 06:01:23
221.0.94.20	attackbotsspam	Jun 10 21:19:10 gestao sshd[14471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.0.94.20 Jun 10 21:19:12 gestao sshd[14471]: Failed password for invalid user 1492 from 221.0.94.20 port 17911 ssh2 Jun 10 21:21:40 gestao sshd[14569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.0.94.20 ...	2020-06-11 06:24:28
220.134.3.93	attackspambots	W 31101,/var/log/nginx/access.log,-,-	2020-06-11 06:26:43
222.186.15.62	attackbotsspam	Jun 11 00:03:33 vps sshd[841510]: Failed password for root from 222.186.15.62 port 30505 ssh2 Jun 11 00:03:35 vps sshd[841510]: Failed password for root from 222.186.15.62 port 30505 ssh2 Jun 11 00:03:47 vps sshd[842933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.62 user=root Jun 11 00:03:49 vps sshd[842933]: Failed password for root from 222.186.15.62 port 60060 ssh2 Jun 11 00:03:52 vps sshd[842933]: Failed password for root from 222.186.15.62 port 60060 ssh2 ...	2020-06-11 06:18:35
41.80.252.28	attackspam	This ISP is being used to SEND emails of Advanced Fee Scams scammer's email address: azimp0901@gmail.com http://www.scamalot.com/ScamTipReports/99131	2020-06-11 06:22:34
192.99.244.225	attack	Jun 10 23:38:42 legacy sshd[23091]: Failed password for root from 192.99.244.225 port 40462 ssh2 Jun 10 23:42:49 legacy sshd[23274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 Jun 10 23:42:51 legacy sshd[23274]: Failed password for invalid user yuanwd from 192.99.244.225 port 34592 ssh2 ...	2020-06-11 05:57:17
115.193.42.55	attack	Jun 9 19:47:16 datentool sshd[32646]: Invalid user boxer from 115.193.42.55 Jun 9 19:47:16 datentool sshd[32646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.193.42.55 Jun 9 19:47:17 datentool sshd[32646]: Failed password for invalid user boxer from 115.193.42.55 port 50302 ssh2 Jun 9 19:59:43 datentool sshd[32701]: Invalid user liric from 115.193.42.55 Jun 9 19:59:43 datentool sshd[32701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.193.42.55 Jun 9 19:59:45 datentool sshd[32701]: Failed password for invalid user liric from 115.193.42.55 port 46770 ssh2 Jun 9 20:03:40 datentool sshd[332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.193.42.55 user=r.r Jun 9 20:03:42 datentool sshd[332]: Failed password for r.r from 115.193.42.55 port 50206 ssh2 Jun 9 20:07:19 datentool sshd[363]: pam_unix(sshd:auth): authentication fa........ -------------------------------	2020-06-11 05:56:12
167.114.203.73	attackbots	Jun 10 00:21:27: Invalid user wt from 167.114.203.73 port 60234	2020-06-11 06:13:20
45.162.216.10	attackspambots	Jun 10 21:06:37 onepixel sshd[266907]: Invalid user p@ssw0rd from 45.162.216.10 port 37628 Jun 10 21:06:37 onepixel sshd[266907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.162.216.10 Jun 10 21:06:37 onepixel sshd[266907]: Invalid user p@ssw0rd from 45.162.216.10 port 37628 Jun 10 21:06:39 onepixel sshd[266907]: Failed password for invalid user p@ssw0rd from 45.162.216.10 port 37628 ssh2 Jun 10 21:10:06 onepixel sshd[267527]: Invalid user tabatha from 45.162.216.10 port 35568	2020-06-11 06:30:35
184.101.211.79	attack	Attempts against non-existent wp-login	2020-06-11 06:25:59
40.69.75.172	attackspambots	$f2bV_matches	2020-06-11 05:59:00
212.56.155.61	attackspam	xmlrpc attack	2020-06-11 06:29:45
103.65.236.169	attackbotsspam	2020-06-10T15:26:17.331845linuxbox-skyline sshd[301521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.65.236.169 user=root 2020-06-10T15:26:19.680794linuxbox-skyline sshd[301521]: Failed password for root from 103.65.236.169 port 38042 ssh2 ...	2020-06-11 06:08:46
94.191.122.141	attackspambots	Jun 10 23:54:31 home sshd[23253]: Failed password for root from 94.191.122.141 port 45118 ssh2 Jun 10 23:56:48 home sshd[23450]: Failed password for root from 94.191.122.141 port 42702 ssh2 ...	2020-06-11 06:24:16
106.12.138.72	attack	2020-06-10T21:22:09.385316amanda2.illicoweb.com sshd\[21613\]: Invalid user monitor from 106.12.138.72 port 51374 2020-06-10T21:22:09.387983amanda2.illicoweb.com sshd\[21613\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.138.72 2020-06-10T21:22:10.922041amanda2.illicoweb.com sshd\[21613\]: Failed password for invalid user monitor from 106.12.138.72 port 51374 ssh2 2020-06-10T21:24:25.839848amanda2.illicoweb.com sshd\[21973\]: Invalid user admin from 106.12.138.72 port 36260 2020-06-10T21:24:25.842019amanda2.illicoweb.com sshd\[21973\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.138.72 ...	2020-06-11 06:17:58

最近上报的IP列表

118.172.142.234	13.249.184.93	13.249.32.10	13.249.184.94
13.249.32.100	13.249.32.101	13.249.32.104	13.249.32.103
13.249.32.102	118.172.142.245	13.249.32.105	13.249.32.108
13.249.32.109	13.249.32.115	13.249.32.11	13.249.32.110
13.249.32.112	13.249.32.113	13.249.32.111	13.249.32.118