13.52.240.49 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
13.52.240.178	attack	Bruteforce detected by fail2ban	2020-04-28 17:10:21
13.52.240.178	attack	Apr 27 22:04:43 ovpn sshd[18796]: Invalid user manny from 13.52.240.178 Apr 27 22:04:43 ovpn sshd[18796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.52.240.178 Apr 27 22:04:46 ovpn sshd[18796]: Failed password for invalid user manny from 13.52.240.178 port 52676 ssh2 Apr 27 22:04:46 ovpn sshd[18796]: Received disconnect from 13.52.240.178 port 52676:11: Bye Bye [preauth] Apr 27 22:04:46 ovpn sshd[18796]: Disconnected from 13.52.240.178 port 52676 [preauth] Apr 27 22:11:02 ovpn sshd[20395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.52.240.178 user=r.r Apr 27 22:11:05 ovpn sshd[20395]: Failed password for r.r from 13.52.240.178 port 46106 ssh2 Apr 27 22:11:05 ovpn sshd[20395]: Received disconnect from 13.52.240.178 port 46106:11: Bye Bye [preauth] Apr 27 22:11:05 ovpn sshd[20395]: Disconnected from 13.52.240.178 port 46106 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/	2020-04-28 06:10:32

类型

评论内容

时间

13.52.240.178

attack

Bruteforce detected by fail2ban

2020-04-28 17:10:21

13.52.240.178

attack

Apr 27 22:04:43 ovpn sshd[18796]: Invalid user manny from 13.52.240.178
Apr 27 22:04:43 ovpn sshd[18796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.52.240.178
Apr 27 22:04:46 ovpn sshd[18796]: Failed password for invalid user manny from 13.52.240.178 port 52676 ssh2
Apr 27 22:04:46 ovpn sshd[18796]: Received disconnect from 13.52.240.178 port 52676:11: Bye Bye [preauth]
Apr 27 22:04:46 ovpn sshd[18796]: Disconnected from 13.52.240.178 port 52676 [preauth]
Apr 27 22:11:02 ovpn sshd[20395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.52.240.178  user=r.r
Apr 27 22:11:05 ovpn sshd[20395]: Failed password for r.r from 13.52.240.178 port 46106 ssh2
Apr 27 22:11:05 ovpn sshd[20395]: Received disconnect from 13.52.240.178 port 46106:11: Bye Bye [preauth]
Apr 27 22:11:05 ovpn sshd[20395]: Disconnected from 13.52.240.178 port 46106 [preauth]

........
-----------------------------------------------
https://www.blocklist.de/

2020-04-28 06:10:32

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.52.240.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64276
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;13.52.240.49.			IN	A

;; AUTHORITY SECTION:
.			552	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 12:06:48 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

49.240.52.13.in-addr.arpa domain name pointer ec2-13-52-240-49.us-west-1.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
49.240.52.13.in-addr.arpa	name = ec2-13-52-240-49.us-west-1.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
114.222.216.218	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/114.222.216.218/ CN - 1H : (937) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 114.222.216.218 CIDR : 114.222.128.0/17 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 ATTACKS DETECTED ASN4134 : 1H - 20 3H - 50 6H - 118 12H - 195 24H - 438 DateTime : 2019-11-15 07:24:26 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-15 18:32:48
139.59.141.196	attack	139.59.141.196 - - \[15/Nov/2019:08:54:07 +0100\] "POST /wp-login.php HTTP/1.0" 200 4474 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 139.59.141.196 - - \[15/Nov/2019:08:54:08 +0100\] "POST /wp-login.php HTTP/1.0" 200 4287 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 139.59.141.196 - - \[15/Nov/2019:08:54:09 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-11-15 18:49:13
178.128.93.63	attackbots	Automatic report - Banned IP Access	2019-11-15 18:48:15
113.69.130.246	attackbotsspam		2019-11-15 18:42:30
121.158.190.83	attackbots	Nov 15 11:46:19 vps01 sshd[2701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.158.190.83 Nov 15 11:46:21 vps01 sshd[2701]: Failed password for invalid user marian from 121.158.190.83 port 38513 ssh2	2019-11-15 18:53:40
80.191.140.28	attackbots	jannisjulius.de 80.191.140.28 \[15/Nov/2019:07:24:17 +0100\] "POST /wp-login.php HTTP/1.1" 200 6658 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" jannisjulius.de 80.191.140.28 \[15/Nov/2019:07:24:19 +0100\] "POST /wp-login.php HTTP/1.1" 200 6621 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" jannisjulius.de 80.191.140.28 \[15/Nov/2019:07:24:20 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 4093 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-11-15 18:38:03
183.89.212.93	attack	$f2bV_matches	2019-11-15 18:30:52
195.161.114.244	attack	MYH,DEF GET /test/wp-login.php	2019-11-15 18:36:40
183.167.196.65	attack	Nov 15 13:18:33 itv-usvr-01 sshd[29691]: Invalid user kweisi from 183.167.196.65 Nov 15 13:18:33 itv-usvr-01 sshd[29691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.167.196.65 Nov 15 13:18:33 itv-usvr-01 sshd[29691]: Invalid user kweisi from 183.167.196.65 Nov 15 13:18:35 itv-usvr-01 sshd[29691]: Failed password for invalid user kweisi from 183.167.196.65 port 38096 ssh2 Nov 15 13:24:14 itv-usvr-01 sshd[29908]: Invalid user bjorg from 183.167.196.65	2019-11-15 18:44:04
46.38.144.32	attack	Nov 15 11:26:56 webserver postfix/smtpd\[31573\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 15 11:28:08 webserver postfix/smtpd\[31573\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 15 11:29:19 webserver postfix/smtpd\[31573\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 15 11:30:30 webserver postfix/smtpd\[31573\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 15 11:31:41 webserver postfix/smtpd\[32507\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-15 18:45:36
129.213.96.241	attack	Nov 15 07:19:21 heissa sshd\[9598\]: Invalid user corzani from 129.213.96.241 port 44480 Nov 15 07:19:21 heissa sshd\[9598\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.96.241 Nov 15 07:19:23 heissa sshd\[9598\]: Failed password for invalid user corzani from 129.213.96.241 port 44480 ssh2 Nov 15 07:24:44 heissa sshd\[10482\]: Invalid user frankel from 129.213.96.241 port 64931 Nov 15 07:24:44 heissa sshd\[10482\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.96.241	2019-11-15 18:27:09
51.75.248.127	attackbots	Nov 15 13:24:41 webhost01 sshd[12156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.248.127 Nov 15 13:24:43 webhost01 sshd[12156]: Failed password for invalid user test from 51.75.248.127 port 38094 ssh2 ...	2019-11-15 18:41:00
167.172.242.239	attack	Port Scan: TCP/8088	2019-11-15 18:36:57
113.141.70.199	attackbotsspam	Nov 14 21:59:13 hanapaa sshd\[8382\]: Invalid user pass222 from 113.141.70.199 Nov 14 21:59:13 hanapaa sshd\[8382\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.141.70.199 Nov 14 21:59:15 hanapaa sshd\[8382\]: Failed password for invalid user pass222 from 113.141.70.199 port 44208 ssh2 Nov 14 22:03:19 hanapaa sshd\[8736\]: Invalid user 128542 from 113.141.70.199 Nov 14 22:03:19 hanapaa sshd\[8736\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.141.70.199	2019-11-15 18:30:29
103.114.107.149	attack	Nov 15 13:24:18 lcl-usvr-02 sshd[11397]: Invalid user support from 103.114.107.149 port 65407 ...	2019-11-15 18:41:12

最近上报的IP列表

13.52.242.242	13.52.242.246	13.52.24.180	13.52.243.234
13.52.243.67	13.52.243.142	13.52.243.97	13.52.247.112
13.52.246.127	13.52.247.249	13.52.247.13	13.52.246.244
13.52.248.162	13.52.248.40	13.52.250.173	13.52.246.68
13.52.250.233	13.52.250.71	13.52.253.139	13.52.250.107