39.72.1.13 - IPInfo

基本信息:

城市(city): unknown

省份(region): Shandong

国家(country): China

运营商(isp): China Unicom Shandong Province Network

主机名(hostname): unknown

机构(organization): CHINA UNICOM China169 Backbone

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	2019-08-15T12:20:21.734Z CLOSE host=39.72.1.13 port=16940 fd=6 time=2961.126 bytes=5542 ...	2019-08-16 02:36:16

相同子网IP讨论:

IP	类型	评论内容	时间
39.72.180.34	attackspambots	DATE:2020-09-28 22:32:17, IP:39.72.180.34, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-09-30 01:30:36
39.72.180.34	attackspambots	DATE:2020-09-28 22:32:17, IP:39.72.180.34, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-09-29 17:29:18
39.72.13.11	attackbotsspam	30301/udp [2020-09-27]1pkt	2020-09-29 02:24:40
39.72.13.11	attackspam	30301/udp [2020-09-27]1pkt	2020-09-28 18:32:28
39.72.19.237	attackbotsspam	Unauthorized connection attempt detected from IP address 39.72.19.237 to port 88 [J]	2020-01-16 02:16:21
39.72.150.21	attackbots	Fail2Ban - FTP Abuse Attempt	2019-08-24 17:52:26
39.72.189.157	attackbotsspam	23/tcp [2019-07-30]1pkt	2019-07-31 06:14:41
39.72.12.109	attackspambots	22/tcp [2019-06-21]1pkt	2019-06-22 06:20:12

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 39.72.1.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54570
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;39.72.1.13.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081502 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 16 02:36:10 CST 2019
;; MSG SIZE  rcvd: 114

HOST信息:

Host 13.1.72.39.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 13.1.72.39.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
144.217.80.190	attackspam	Automatic report - XMLRPC Attack	2019-11-23 22:52:44
37.187.192.162	attack	$f2bV_matches	2019-11-23 23:13:40
178.128.169.88	attack	Automatic report - XMLRPC Attack	2019-11-23 23:31:49
185.176.27.178	attackbotsspam	Nov 23 15:40:17 mc1 kernel: \[5806258.535768\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=2535 PROTO=TCP SPT=53396 DPT=30261 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 23 15:41:44 mc1 kernel: \[5806345.284035\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=2275 PROTO=TCP SPT=53396 DPT=8501 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 23 15:43:27 mc1 kernel: \[5806448.242341\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=34771 PROTO=TCP SPT=53396 DPT=22039 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-23 22:51:57
202.100.78.110	attackspambots	" "	2019-11-23 23:12:17
51.75.66.11	attackspambots	2019-11-23T15:24:21.025971 sshd[25711]: Invalid user devendran from 51.75.66.11 port 35388 2019-11-23T15:24:21.040487 sshd[25711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.66.11 2019-11-23T15:24:21.025971 sshd[25711]: Invalid user devendran from 51.75.66.11 port 35388 2019-11-23T15:24:22.567592 sshd[25711]: Failed password for invalid user devendran from 51.75.66.11 port 35388 ssh2 2019-11-23T15:27:57.846231 sshd[25738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.66.11 user=root 2019-11-23T15:28:00.030117 sshd[25738]: Failed password for root from 51.75.66.11 port 42462 ssh2 ...	2019-11-23 22:57:36
221.202.168.254	attackbots	Nov2315:27:42server2pure-ftpd:$\?@221.202.168.254$[WARNING]Authenticationfailedforuser[anonymous]Nov2315:27:44server2pure-ftpd:$\?@221.202.168.254$[WARNING]Authenticationfailedforuser[www]Nov2315:27:48server2pure-ftpd:$\?@221.202.168.254$[WARNING]Authenticationfailedforuser[morgenstern-swiss]Nov2315:27:51server2pure-ftpd:$\?@221.202.168.254$[WARNING]Authenticationfailedforuser[www]Nov2315:27:53server2pure-ftpd:$\?@221.202.168.254$[WARNING]Authenticationfailedforuser[morgenstern-swiss]	2019-11-23 23:00:30
106.75.6.229	attackspambots	Nov 23 15:53:26 srv01 sshd[6502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.6.229 user=backup Nov 23 15:53:28 srv01 sshd[6502]: Failed password for backup from 106.75.6.229 port 48278 ssh2 Nov 23 15:58:20 srv01 sshd[6818]: Invalid user guest from 106.75.6.229 port 48336 Nov 23 15:58:20 srv01 sshd[6818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.6.229 Nov 23 15:58:20 srv01 sshd[6818]: Invalid user guest from 106.75.6.229 port 48336 Nov 23 15:58:22 srv01 sshd[6818]: Failed password for invalid user guest from 106.75.6.229 port 48336 ssh2 ...	2019-11-23 23:06:16
222.242.223.75	attackbots	[Aegis] @ 2019-11-23 15:27:23 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-11-23 23:17:26
159.203.201.164	attack	Port scan: Attack repeated for 24 hours	2019-11-23 22:46:16
41.34.171.145	attackspam	2019-11-23T09:24:57.888287ns547587 sshd\[24151\]: Invalid user kurfuerst from 41.34.171.145 port 34184 2019-11-23T09:24:57.893918ns547587 sshd\[24151\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.34.171.145 2019-11-23T09:24:59.694899ns547587 sshd\[24151\]: Failed password for invalid user kurfuerst from 41.34.171.145 port 34184 ssh2 2019-11-23T09:28:01.396308ns547587 sshd\[25245\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.34.171.145 user=root ...	2019-11-23 22:54:41
139.219.14.12	attackspam	Nov 23 18:07:24 microserver sshd[57127]: Invalid user asterisk from 139.219.14.12 port 42578 Nov 23 18:07:24 microserver sshd[57127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 Nov 23 18:07:26 microserver sshd[57127]: Failed password for invalid user asterisk from 139.219.14.12 port 42578 ssh2 Nov 23 18:11:44 microserver sshd[57755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 user=root Nov 23 18:11:46 microserver sshd[57755]: Failed password for root from 139.219.14.12 port 45332 ssh2 Nov 23 18:23:44 microserver sshd[59184]: Invalid user melle from 139.219.14.12 port 53580 Nov 23 18:23:44 microserver sshd[59184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 Nov 23 18:23:47 microserver sshd[59184]: Failed password for invalid user melle from 139.219.14.12 port 53580 ssh2 Nov 23 18:27:47 microserver sshd[59789]: pam_unix(sshd:auth): authe	2019-11-23 23:08:07
138.36.96.46	attackspam	Nov 23 15:27:52 MK-Soft-VM4 sshd[715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.36.96.46 Nov 23 15:27:54 MK-Soft-VM4 sshd[715]: Failed password for invalid user dulciana from 138.36.96.46 port 35644 ssh2 ...	2019-11-23 23:01:48
200.146.215.25	attackspam	php WP PHPmyadamin ABUSE blocked for 12h	2019-11-23 22:56:08
46.38.144.179	attackspambots	Nov 23 15:54:11 webserver postfix/smtpd\[21879\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 23 15:55:27 webserver postfix/smtpd\[21879\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 23 15:56:38 webserver postfix/smtpd\[21879\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 23 15:57:50 webserver postfix/smtpd\[21879\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 23 15:59:02 webserver postfix/smtpd\[21090\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-23 23:05:59

最近上报的IP列表

123.115.115.11	105.30.200.55	181.208.168.231	221.215.251.167
37.63.227.0	126.133.121.108	212.1.231.70	201.17.133.23
79.16.252.137	124.160.17.98	200.225.230.81	174.58.106.106
52.37.165.72	114.160.168.211	76.82.135.153	58.218.66.10
171.50.78.62	210.173.30.53	114.132.110.169	185.13.106.104