13.66.139.1 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Microsoft Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	2019-12-12 08:49:37
attack	Brute force attack stopped by firewall	2019-09-25 08:59:37
attackspambots	Port Scan: TCP/443	2019-09-10 18:54:04
attack	Port Scan: TCP/80	2019-08-05 11:45:03
attackspambots	Brute force attack stopped by firewall	2019-07-05 10:11:11

相同子网IP讨论:

IP	类型	评论内容	时间
13.66.139.0	attackbots	log:/aero/meteo/UGEJ	2020-08-04 18:11:00
13.66.139.0	attackspambots	log:/meteo/biarritz_FR	2020-08-04 12:12:26
13.66.139.0	attackbotsspam	Automatic report - Banned IP Access	2020-06-18 18:33:16
13.66.139.0	attackbots	SQL injection attempt.	2020-03-26 01:53:48
13.66.139.0	attack	Automatic report - Banned IP Access	2020-02-08 20:47:57
13.66.139.0	attackbotsspam	Automatic report - Banned IP Access	2019-12-30 13:54:52
13.66.139.0	attackbotsspam	Port Scan: TCP/443	2019-10-18 16:42:50
13.66.139.0	attackbots	Port Scan: TCP/443	2019-09-20 23:10:20
13.66.139.0	attackspambots	Port Scan: TCP/443	2019-09-03 03:27:03
13.66.139.0	attackspambots	Port Scan: TCP/443	2019-08-05 12:49:42
13.66.139.0	attack	FakeBingbot	2019-07-05 09:39:54
13.66.139.0	attack	Brute force attack stopped by firewall	2019-06-27 09:28:16

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.66.139.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44630
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;13.66.139.1.			IN	A

;; AUTHORITY SECTION:
.			2568	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019060201 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jun 03 07:29:26 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 1.139.66.13.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 1.139.66.13.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
134.122.96.20	attackspambots	2020-07-23T12:59:37.753645shield sshd\[12774\]: Invalid user postgres from 134.122.96.20 port 51346 2020-07-23T12:59:37.761576shield sshd\[12774\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.96.20 2020-07-23T12:59:39.636770shield sshd\[12774\]: Failed password for invalid user postgres from 134.122.96.20 port 51346 ssh2 2020-07-23T13:03:36.819503shield sshd\[13647\]: Invalid user testuser from 134.122.96.20 port 59350 2020-07-23T13:03:36.828014shield sshd\[13647\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.96.20	2020-07-23 21:10:24
185.176.27.106	attack	Jul 23 15:04:37 debian-2gb-nbg1-2 kernel: \[17768002.580355\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.106 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=48327 PROTO=TCP SPT=57029 DPT=31420 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-23 21:18:15
5.9.70.117	attack	Automatic report - Banned IP Access	2020-07-23 21:15:40
222.186.190.14	attackbotsspam	Jul 23 14:50:33 OPSO sshd\[17944\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.14 user=root Jul 23 14:50:35 OPSO sshd\[17944\]: Failed password for root from 222.186.190.14 port 40413 ssh2 Jul 23 14:50:37 OPSO sshd\[17944\]: Failed password for root from 222.186.190.14 port 40413 ssh2 Jul 23 14:50:39 OPSO sshd\[17944\]: Failed password for root from 222.186.190.14 port 40413 ssh2 Jul 23 14:50:45 OPSO sshd\[17948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.14 user=root	2020-07-23 21:22:57
198.98.59.29	attackbotsspam	Jul 23 14:03:03 host sshd[27583]: Invalid user username from 198.98.59.29 port 55871 ...	2020-07-23 21:13:52
64.197.196.174	attackspambots	Jul 23 05:58:27 dignus sshd[18380]: Failed password for invalid user admin from 64.197.196.174 port 58558 ssh2 Jul 23 06:02:46 dignus sshd[18924]: Invalid user akj from 64.197.196.174 port 44616 Jul 23 06:02:46 dignus sshd[18924]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.197.196.174 Jul 23 06:02:49 dignus sshd[18924]: Failed password for invalid user akj from 64.197.196.174 port 44616 ssh2 Jul 23 06:07:06 dignus sshd[19416]: Invalid user cedric from 64.197.196.174 port 58900 ...	2020-07-23 21:31:07
103.75.208.53	attackspam	Jul 23 14:52:26 PorscheCustomer sshd[25786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.75.208.53 Jul 23 14:52:29 PorscheCustomer sshd[25786]: Failed password for invalid user admin from 103.75.208.53 port 40476 ssh2 Jul 23 14:57:06 PorscheCustomer sshd[25859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.75.208.53 ...	2020-07-23 20:57:19
218.92.0.247	attackspambots	Jul 23 10:05:49 vps46666688 sshd[16487]: Failed password for root from 218.92.0.247 port 18044 ssh2 Jul 23 10:06:02 vps46666688 sshd[16487]: error: maximum authentication attempts exceeded for root from 218.92.0.247 port 18044 ssh2 [preauth] ...	2020-07-23 21:20:55
61.177.172.41	attackbots	Jul 23 15:03:03 ovpn sshd\[1912\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.41 user=root Jul 23 15:03:05 ovpn sshd\[1912\]: Failed password for root from 61.177.172.41 port 39184 ssh2 Jul 23 15:03:24 ovpn sshd\[2020\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.41 user=root Jul 23 15:03:26 ovpn sshd\[2020\]: Failed password for root from 61.177.172.41 port 6328 ssh2 Jul 23 15:03:52 ovpn sshd\[2132\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.41 user=root	2020-07-23 21:04:37
51.79.82.137	attackbots	51.79.82.137 - - [23/Jul/2020:14:03:01 +0200] "GET /wp-login.php HTTP/1.1" 200 5738 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.79.82.137 - - [23/Jul/2020:14:03:02 +0200] "POST /wp-login.php HTTP/1.1" 200 5989 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.79.82.137 - - [23/Jul/2020:14:03:03 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-23 21:15:14
206.189.138.99	attackspambots	Jul 23 12:45:27 vlre-nyc-1 sshd\[29858\]: Invalid user line from 206.189.138.99 Jul 23 12:45:27 vlre-nyc-1 sshd\[29858\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.138.99 Jul 23 12:45:29 vlre-nyc-1 sshd\[29858\]: Failed password for invalid user line from 206.189.138.99 port 40110 ssh2 Jul 23 12:50:06 vlre-nyc-1 sshd\[29979\]: Invalid user gitblit from 206.189.138.99 Jul 23 12:50:06 vlre-nyc-1 sshd\[29979\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.138.99 ...	2020-07-23 21:10:03
186.193.74.250	attackbotsspam	Jul 23 09:01:37 ws12vmsma01 sshd[39897]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.193.74.250 Jul 23 09:01:37 ws12vmsma01 sshd[39897]: Invalid user pibid from 186.193.74.250 Jul 23 09:01:39 ws12vmsma01 sshd[39897]: Failed password for invalid user pibid from 186.193.74.250 port 51910 ssh2 ...	2020-07-23 21:14:26
75.44.16.251	attackbots	fail2ban/Jul 23 13:57:10 h1962932 sshd[5391]: Invalid user tester from 75.44.16.251 port 35594 Jul 23 13:57:10 h1962932 sshd[5391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.44.16.251 Jul 23 13:57:10 h1962932 sshd[5391]: Invalid user tester from 75.44.16.251 port 35594 Jul 23 13:57:11 h1962932 sshd[5391]: Failed password for invalid user tester from 75.44.16.251 port 35594 ssh2 Jul 23 14:02:54 h1962932 sshd[5589]: Invalid user maluks from 75.44.16.251 port 55018	2020-07-23 21:26:29
81.192.8.14	attack	Jul 23 18:32:24 gw1 sshd[10870]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.192.8.14 Jul 23 18:32:26 gw1 sshd[10870]: Failed password for invalid user eveline from 81.192.8.14 port 36748 ssh2 ...	2020-07-23 21:32:39
62.60.206.126	attack	2020-07-23T14:50:55.625253vps751288.ovh.net sshd\[662\]: Invalid user villa from 62.60.206.126 port 49012 2020-07-23T14:50:55.636892vps751288.ovh.net sshd\[662\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.60.206.126 2020-07-23T14:50:57.853145vps751288.ovh.net sshd\[662\]: Failed password for invalid user villa from 62.60.206.126 port 49012 ssh2 2020-07-23T14:56:06.548327vps751288.ovh.net sshd\[682\]: Invalid user assem from 62.60.206.126 port 35188 2020-07-23T14:56:06.559034vps751288.ovh.net sshd\[682\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.60.206.126	2020-07-23 21:07:33

最近上报的IP列表

8.133.12.157	149.26.83.60	128.199.195.139	113.223.141.145
103.207.97.37	224.11.36.220	198.175.215.67	191.32.72.166
209.198.118.28	171.164.84.102	112.72.127.137	89.210.47.157
77.208.103.122	215.89.44.114	187.131.132.106	26.151.23.179
203.249.126.92	74.50.25.183	39.138.113.230	54.36.150.100