120.245.42.238

基本信息:

城市(city): Beijing

省份(region): Beijing

国家(country): China

运营商(isp): China Mobile

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.245.42.238
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24910
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;120.245.42.238.			IN	A

;; AUTHORITY SECTION:
.			255	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022010901 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 10 10:35:46 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 238.42.245.120.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 238.42.245.120.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.75.11.251	attackbotsspam	Aug 18 04:25:39 v26 sshd[24606]: Invalid user sridhar from 106.75.11.251 port 37018 Aug 18 04:25:39 v26 sshd[24606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.11.251 Aug 18 04:25:42 v26 sshd[24606]: Failed password for invalid user sridhar from 106.75.11.251 port 37018 ssh2 Aug 18 04:25:42 v26 sshd[24606]: Received disconnect from 106.75.11.251 port 37018:11: Bye Bye [preauth] Aug 18 04:25:42 v26 sshd[24606]: Disconnected from 106.75.11.251 port 37018 [preauth] Aug 18 04:30:14 v26 sshd[25240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.11.251 user=mysql Aug 18 04:30:16 v26 sshd[25240]: Failed password for mysql from 106.75.11.251 port 35290 ssh2 Aug 18 04:30:16 v26 sshd[25240]: Received disconnect from 106.75.11.251 port 35290:11: Bye Bye [preauth] Aug 18 04:30:16 v26 sshd[25240]: Disconnected from 106.75.11.251 port 35290 [preauth] ........ ----------------------------------------------- https://www.bl	2020-08-19 07:23:09
111.229.93.104	attack	Aug 18 19:52:50 firewall sshd[9761]: Invalid user tomek from 111.229.93.104 Aug 18 19:52:52 firewall sshd[9761]: Failed password for invalid user tomek from 111.229.93.104 port 53892 ssh2 Aug 18 19:56:27 firewall sshd[9847]: Invalid user train1 from 111.229.93.104 ...	2020-08-19 07:29:17
39.45.131.162	attackbotsspam	Unauthorized connection attempt from IP address 39.45.131.162 on Port 445(SMB)	2020-08-19 07:10:41
71.78.210.242	attackbots	SSH Invalid Login	2020-08-19 07:26:32
49.235.132.88	attack	Invalid user lab from 49.235.132.88 port 40222	2020-08-19 07:34:42
182.122.3.15	attack	Aug 17 21:00:49 finn sshd[3842]: Invalid user zhangyl from 182.122.3.15 port 37288 Aug 17 21:00:49 finn sshd[3842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.122.3.15 Aug 17 21:00:51 finn sshd[3842]: Failed password for invalid user zhangyl from 182.122.3.15 port 37288 ssh2 Aug 17 21:00:52 finn sshd[3842]: Received disconnect from 182.122.3.15 port 37288:11: Bye Bye [preauth] Aug 17 21:00:52 finn sshd[3842]: Disconnected from 182.122.3.15 port 37288 [preauth] Aug 17 21:09:21 finn sshd[5665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.122.3.15 user=r.r Aug 17 21:09:23 finn sshd[5665]: Failed password for r.r from 182.122.3.15 port 28146 ssh2 Aug 17 21:09:23 finn sshd[5665]: Received disconnect from 182.122.3.15 port 28146:11: Bye Bye [preauth] Aug 17 21:09:23 finn sshd[5665]: Disconnected from 182.122.3.15 port 28146 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en	2020-08-19 07:22:51
106.12.150.36	attack	Aug 18 19:43:34 vps46666688 sshd[832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.150.36 Aug 18 19:43:36 vps46666688 sshd[832]: Failed password for invalid user bp from 106.12.150.36 port 43986 ssh2 ...	2020-08-19 07:10:19
2.57.122.185	attack	2020-08-19T01:32:12.429660centos sshd[27991]: Failed password for root from 2.57.122.185 port 54228 ssh2 2020-08-19T01:32:35.256110centos sshd[28001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.122.185 user=root 2020-08-19T01:32:36.779006centos sshd[28001]: Failed password for root from 2.57.122.185 port 42510 ssh2 ...	2020-08-19 07:42:27
185.210.218.206	attack	[2020-08-18 18:55:51] NOTICE[1185] chan_sip.c: Registration from '' failed for '185.210.218.206:57852' - Wrong password [2020-08-18 18:55:51] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-18T18:55:51.453-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="3018",SessionID="0x7f10c4245bd8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.210.218.206/57852",Challenge="0da71921",ReceivedChallenge="0da71921",ReceivedHash="c86406cd9b6cd38cda6fe7c3408ff02d" [2020-08-18 18:56:18] NOTICE[1185] chan_sip.c: Registration from '' failed for '185.210.218.206:53261' - Wrong password [2020-08-18 18:56:18] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-18T18:56:18.598-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="2279",SessionID="0x7f10c41b0fe8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.210 ...	2020-08-19 07:07:42
24.214.153.246	attackbotsspam	Port 22 Scan, PTR: None	2020-08-19 07:22:23
79.137.116.233	attack	UDP 79.137.116.233:5790 -> port 5060, len 441	2020-08-19 07:41:57
24.156.77.155	attackspambots	Port 22 Scan, PTR: None	2020-08-19 07:30:14
103.3.46.92	attackbots	103.3.46.92 - - [18/Aug/2020:23:29:09 +0100] "POST /wp-login.php HTTP/1.1" 200 1801 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.3.46.92 - - [18/Aug/2020:23:29:11 +0100] "POST /wp-login.php HTTP/1.1" 200 1779 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.3.46.92 - - [18/Aug/2020:23:29:12 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-19 07:36:54
161.132.196.163	attackbotsspam	Unauthorized connection attempt from IP address 161.132.196.163 on Port 445(SMB)	2020-08-19 07:03:10
123.157.165.58	attack	Unauthorised access (Aug 18) SRC=123.157.165.58 LEN=48 TTL=110 ID=10011 DF TCP DPT=1433 WINDOW=65535 SYN	2020-08-19 07:03:41

最近上报的IP列表

13.227.83.26	211.147.199.153	77.143.97.210	186.52.87.124
67.55.68.112	210.28.7.72	182.252.101.197	45.154.35.236
129.196.192.93	101.34.130.246	142.165.85.54	246.51.186.181
174.109.67.243	172.159.6.175	24.205.59.111	200.190.127.225
160.15.13.245	221.246.33.152	235.180.208.164	47.28.251.150