13.52.69.132 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.52.69.132
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50803
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;13.52.69.132.			IN	A

;; AUTHORITY SECTION:
.			339	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 11:25:06 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

132.69.52.13.in-addr.arpa domain name pointer ec2-13-52-69-132.us-west-1.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
132.69.52.13.in-addr.arpa	name = ec2-13-52-69-132.us-west-1.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
193.25.121.249	attackspambots	port scan and connect, tcp 80 (http)	2020-09-06 21:45:23
222.186.180.147	attackspambots	$f2bV_matches	2020-09-06 21:47:27
188.217.181.18	attackspam	2020-09-06T10:45:39.685272vps1033 sshd[5877]: Failed password for root from 188.217.181.18 port 38590 ssh2 2020-09-06T10:49:20.322802vps1033 sshd[13708]: Invalid user gulriz from 188.217.181.18 port 44738 2020-09-06T10:49:20.326726vps1033 sshd[13708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=net-188-217-181-18.cust.vodafonedsl.it 2020-09-06T10:49:20.322802vps1033 sshd[13708]: Invalid user gulriz from 188.217.181.18 port 44738 2020-09-06T10:49:22.420145vps1033 sshd[13708]: Failed password for invalid user gulriz from 188.217.181.18 port 44738 ssh2 ...	2020-09-06 21:50:08
190.78.205.114	attack	20/9/5@12:53:06: FAIL: Alarm-Intrusion address from=190.78.205.114 ...	2020-09-06 21:27:43
192.35.168.80	attackbotsspam	2020-09-05 17:40 Unauthorized connection attempt to IMAP/POP	2020-09-06 21:49:26
176.236.42.218	attackspambots	TCP (SYN) 176.236.42.218:57553 -> port 445, len 52	2020-09-06 21:51:32
45.143.223.106	attackspam	[2020-09-06 09:07:45] NOTICE[1194][C-000013a5] chan_sip.c: Call from '' (45.143.223.106:60777) to extension '011441904911024' rejected because extension not found in context 'public'. [2020-09-06 09:07:45] SECURITY[1233] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-06T09:07:45.327-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011441904911024",SessionID="0x7f2ddc04e988",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.223.106/60777",ACLName="no_extension_match" [2020-09-06 09:08:19] NOTICE[1194][C-000013a8] chan_sip.c: Call from '' (45.143.223.106:62934) to extension '000441904911024' rejected because extension not found in context 'public'. [2020-09-06 09:08:19] SECURITY[1233] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-06T09:08:19.381-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="000441904911024",SessionID="0x7f2ddc04e988",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/U ...	2020-09-06 21:29:40
222.186.173.154	attackbots	Sep 6 15:11:45 markkoudstaal sshd[23393]: Failed password for root from 222.186.173.154 port 24018 ssh2 Sep 6 15:11:49 markkoudstaal sshd[23393]: Failed password for root from 222.186.173.154 port 24018 ssh2 Sep 6 15:11:52 markkoudstaal sshd[23393]: Failed password for root from 222.186.173.154 port 24018 ssh2 Sep 6 15:11:55 markkoudstaal sshd[23393]: Failed password for root from 222.186.173.154 port 24018 ssh2 ...	2020-09-06 21:17:25
202.164.45.101	attack	202.164.45.101 - - [06/Sep/2020:07:12:53 +0200] "GET /wp-login.php HTTP/1.1" 200 2010 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 202.164.45.101 - - [06/Sep/2020:07:12:55 +0200] "POST /wp-login.php HTTP/1.1" 200 2144 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 202.164.45.101 - - [06/Sep/2020:07:16:46 +0200] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 202.164.45.101 - - [06/Sep/2020:07:16:47 +0200] "POST /wp-login.php HTTP/1.1" 200 1650 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 202.164.45.101 - - [06/Sep/2020:07:17:58 +0200] "GET /wp-login.php HTTP/1.1" 200 4459 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 202.164.45.101 - - [06/Sep/2020:07:18:01 +0200] "POST /wp-login.php HTTP/1.1" 200 4459 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ...	2020-09-06 21:30:09
148.229.3.242	attack	Sep 6 12:22:59 XXX sshd[55555]: Invalid user test from 148.229.3.242 port 32800	2020-09-06 21:07:29
165.90.3.122	attack	[Sun Sep 06 03:13:25.153543 2020] [:error] [pid 2754:tid 140397330274048] [client 165.90.3.122:65500] [client 165.90.3.122] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/"] [unique_id "X1PxZdlmuncnyx65RuMHlQAAAGU"] ...	2020-09-06 21:31:49
148.70.14.121	attackspambots	Sep 6 14:34:22 dev0-dcde-rnet sshd[7815]: Failed password for root from 148.70.14.121 port 34494 ssh2 Sep 6 14:38:16 dev0-dcde-rnet sshd[7891]: Failed password for root from 148.70.14.121 port 35540 ssh2 Sep 6 14:45:50 dev0-dcde-rnet sshd[8019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.14.121	2020-09-06 21:15:50
218.92.0.212	attackspam	Sep 6 15:44:23 vps639187 sshd\[10017\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.212 user=root Sep 6 15:44:26 vps639187 sshd\[10017\]: Failed password for root from 218.92.0.212 port 5737 ssh2 Sep 6 15:44:28 vps639187 sshd\[10017\]: Failed password for root from 218.92.0.212 port 5737 ssh2 ...	2020-09-06 21:48:00
206.189.28.69	attack	TCP ports : 2314 / 8997 / 11473 / 17412	2020-09-06 21:31:32
118.25.1.48	attackspam	2020-09-06T09:21:51.806126afi-git.jinr.ru sshd[17490]: Failed password for invalid user system from 118.25.1.48 port 37492 ssh2 2020-09-06T09:25:36.995571afi-git.jinr.ru sshd[18347]: Invalid user teamsystem from 118.25.1.48 port 48222 2020-09-06T09:25:36.998791afi-git.jinr.ru sshd[18347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.1.48 2020-09-06T09:25:36.995571afi-git.jinr.ru sshd[18347]: Invalid user teamsystem from 118.25.1.48 port 48222 2020-09-06T09:25:39.062247afi-git.jinr.ru sshd[18347]: Failed password for invalid user teamsystem from 118.25.1.48 port 48222 ssh2 ...	2020-09-06 21:22:56

最近上报的IP列表

13.52.51.179	13.52.68.41	13.52.84.170	13.52.79.119
13.52.88.245	13.52.95.246	13.52.95.111	13.53.102.118
13.53.149.7	13.53.186.181	13.53.200.232	13.53.228.127
13.53.70.220	13.53.55.80	13.53.232.243	13.54.1.25
13.53.80.121	13.53.94.96	13.54.10.128	13.53.73.9