213.14.65.130 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Turkey

运营商(isp): Superonline Iletisim Hizmetleri A.S.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Scanning random ports - tries to find possible vulnerable services	2020-02-27 09:33:53

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 213.14.65.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15695
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;213.14.65.130.			IN	A

;; AUTHORITY SECTION:
.			394	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022602 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 27 09:33:50 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

130.65.14.213.in-addr.arpa domain name pointer host-213-14-65-130.reverse.superonline.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
130.65.14.213.in-addr.arpa	name = host-213-14-65-130.reverse.superonline.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
146.59.172.66	attack	13.10.2020 01:15:43 - Wordpress fail Detected by ELinOX-ALM	2020-10-13 16:37:48
185.132.53.115	attack	Oct 13 10:06:29 ns1 sshd[78677]: Did not receive identification string from 185.132.53.115 port 44168 Oct 13 10:06:33 ns1 sshd[78678]: Unable to negotiate with 185.132.53.115 port 40660: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Oct 13 10:06:49 ns1 sshd[78680]: Unable to negotiate with 185.132.53.115 port 41618: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Oct 13 10:07:05 ns1 sshd[78682]: Unable to negotiate with 185.132.53.115 port 42644: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Oct 13 10:07:20 ns1 sshd[78684]: Unable to negotiate with 185.132.53.115 port 43726: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-e ...	2020-10-13 16:28:43
156.96.47.5	attackspambots	IP: 156.96.47.5 Ports affected Simple Mail Transfer (25) Abuse Confidence rating 55% Found in DNSBL('s) ASN Details AS46664 VDI-NETWORK United States (US) CIDR 156.96.44.0/22 Log Date: 13/10/2020 4:50:06 AM UTC	2020-10-13 16:30:39
139.199.94.100	attackspam	$f2bV_matches	2020-10-13 16:34:04
68.183.12.80	attackbotsspam	Oct 12 19:17:18 tdfoods sshd\[27267\]: Invalid user matthew from 68.183.12.80 Oct 12 19:17:18 tdfoods sshd\[27267\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.12.80 Oct 12 19:17:20 tdfoods sshd\[27267\]: Failed password for invalid user matthew from 68.183.12.80 port 37102 ssh2 Oct 12 19:21:05 tdfoods sshd\[27608\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.12.80 user=root Oct 12 19:21:07 tdfoods sshd\[27608\]: Failed password for root from 68.183.12.80 port 41538 ssh2	2020-10-13 16:20:02
39.128.250.88	attackspambots	Invalid user vlk from 39.128.250.88 port 9602	2020-10-13 16:37:09
106.54.65.144	attackbots	Oct 13 09:30:35 Ubuntu-1404-trusty-64-minimal sshd\[32374\]: Invalid user sanchez from 106.54.65.144 Oct 13 09:30:35 Ubuntu-1404-trusty-64-minimal sshd\[32374\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.65.144 Oct 13 09:30:38 Ubuntu-1404-trusty-64-minimal sshd\[32374\]: Failed password for invalid user sanchez from 106.54.65.144 port 43390 ssh2 Oct 13 09:37:24 Ubuntu-1404-trusty-64-minimal sshd\[7164\]: Invalid user hirabaya from 106.54.65.144 Oct 13 09:37:24 Ubuntu-1404-trusty-64-minimal sshd\[7164\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.65.144	2020-10-13 16:38:52
145.239.95.9	attackspam	Oct 13 10:18:26 * sshd[16606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.95.9 Oct 13 10:18:28 * sshd[16606]: Failed password for invalid user Aida from 145.239.95.9 port 35908 ssh2	2020-10-13 16:45:56
103.133.105.65	spam	SMTP protocol error in "AUTH LOGIN" H=(User) [103.133.105.65] AUTH command used when not advertised	2020-10-13 16:30:39
125.209.70.2	attack	Unauthorized connection attempt from IP address 125.209.70.2 on Port 445(SMB)	2020-10-13 16:50:18
82.130.201.15	attack	Oct 13 10:16:52 db sshd[14251]: Invalid user horiuchi from 82.130.201.15 port 37822 ...	2020-10-13 16:31:15
134.175.236.132	attackspam	Oct 13 07:45:23 hidden sshd[44314]: Failed password for invalid user elli from 134.175.236.132 port 41428 ssh2 Oct 13 08:01:25 hidden sshd[44633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.236.132 user=root Oct 13 08:01:27 hidden sshd[44633]: Failed password for hidden from 134.175.236.132 port 56400 ssh2	2020-10-13 16:51:30
194.5.207.189	attackspam	Oct 13 10:06:53 ip106 sshd[27678]: Failed password for root from 194.5.207.189 port 49582 ssh2 ...	2020-10-13 16:31:48
54.37.154.113	attackspambots	54.37.154.113 (FR/France/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 13 02:24:12 server4 sshd[26775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.154 user=root Oct 13 02:21:58 server4 sshd[24871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.153.147 user=root Oct 13 02:23:22 server4 sshd[26254]: Failed password for root from 54.37.154.113 port 57444 ssh2 Oct 13 02:23:51 server4 sshd[26576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.73 user=root Oct 13 02:23:53 server4 sshd[26576]: Failed password for root from 45.252.249.73 port 50650 ssh2 Oct 13 02:22:00 server4 sshd[24871]: Failed password for root from 159.65.153.147 port 40518 ssh2 IP Addresses Blocked: 157.245.252.154 (US/United States/-) 159.65.153.147 (IN/India/-)	2020-10-13 16:47:42
218.92.0.175	attack	2020-10-13 03:18:29.459691-0500 localhost sshd[38702]: Failed password for root from 218.92.0.175 port 10920 ssh2	2020-10-13 16:24:36

最近上报的IP列表

210.44.172.251	122.166.76.169	72.57.53.50	203.202.243.57
203.130.18.236	203.70.231.53	202.189.231.44	202.181.25.36
202.165.225.32	202.158.69.162	202.152.36.214	202.142.159.54
202.134.166.23	202.85.214.89	202.83.173.244	218.3.48.49
118.200.66.140	108.106.112.168	58.121.76.36	242.195.147.236