13.38.14.93 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.38.14.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1030
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;13.38.14.93.			IN	A

;; AUTHORITY SECTION:
.			193	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 05:09:16 CST 2022
;; MSG SIZE  rcvd: 104

HOST信息:

93.14.38.13.in-addr.arpa domain name pointer ec2-13-38-14-93.eu-west-3.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
93.14.38.13.in-addr.arpa	name = ec2-13-38-14-93.eu-west-3.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
203.136.181.254	attack	2019-06-23T11:24:09.889738ldap.arvenenaske.de sshd[13217]: Connection from 203.136.181.254 port 36217 on 5.199.128.55 port 22 2019-06-23T11:24:11.408702ldap.arvenenaske.de sshd[13217]: Invalid user admin from 203.136.181.254 port 36217 2019-06-23T11:24:11.416496ldap.arvenenaske.de sshd[13217]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.136.181.254 user=admin 2019-06-23T11:24:11.417644ldap.arvenenaske.de sshd[13217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.136.181.254 2019-06-23T11:24:09.889738ldap.arvenenaske.de sshd[13217]: Connection from 203.136.181.254 port 36217 on 5.199.128.55 port 22 2019-06-23T11:24:11.408702ldap.arvenenaske.de sshd[13217]: Invalid user admin from 203.136.181.254 port 36217 2019-06-23T11:24:13.226777ldap.arvenenaske.de sshd[13217]: Failed password for invalid user admin from 203.136.181.254 port 36217 ssh2 2019-06-23T11:24:13.760659ldap.arvenenaske........ ------------------------------	2019-06-24 02:51:42
66.133.76.51	attack	"to=MA	2019-06-24 02:56:40
27.95.146.121	attackspam	Jun 23 18:55:56 MK-Soft-VM6 sshd\[26909\]: Invalid user odoo from 27.95.146.121 port 59740 Jun 23 18:55:56 MK-Soft-VM6 sshd\[26909\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.95.146.121 Jun 23 18:55:57 MK-Soft-VM6 sshd\[26909\]: Failed password for invalid user odoo from 27.95.146.121 port 59740 ssh2 ...	2019-06-24 02:57:31
54.85.167.161	attackspam	Jun 23 05:45:05 localhost kernel: [12527299.248904] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=54.85.167.161 DST=[mungedIP2] LEN=68 TOS=0x00 PREC=0x00 TTL=244 ID=5297 PROTO=UDP SPT=30001 DPT=111 LEN=48 Jun 23 05:45:05 localhost kernel: [12527299.248931] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=54.85.167.161 DST=[mungedIP2] LEN=68 TOS=0x00 PREC=0x00 TTL=244 ID=5297 PROTO=UDP SPT=30001 DPT=111 LEN=48 Jun 23 05:45:06 localhost kernel: [12527299.410812] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=54.85.167.161 DST=[mungedIP2] LEN=68 TOS=0x00 PREC=0x00 TTL=244 ID=40127 PROTO=UDP SPT=30001 DPT=111 LEN=48 Jun 23 05:45:06 localhost kernel: [12527299.410819] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=54.85.167.161 DST=[mungedIP2] LEN=68 TOS=0x00 PREC=0x00 TTL=244 ID=40127 PROTO=UDP SPT=30001 DPT=111 LEN=48	2019-06-24 03:06:49
188.162.48.128	attackbots	445/tcp [2019-06-23]1pkt	2019-06-24 03:16:49
78.112.180.202	attackspam	Jun 23 09:00:05 srv00 sshd[42959]: Connection from 78.112.180.202 port 39574 on 87.98.249.174 port 22 Jun 23 09:00:44 srv00 sshd[42959]: reveeclipse mapping checking getaddrinfo for 202.180.112.78.rev.sfr.net [78.112.180.202] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 23 09:00:44 srv00 sshd[42959]: Connection closed by 78.112.180.202 port 39574 [preauth] Jun 23 09:14:09 srv00 sshd[43019]: Connection from 78.112.180.202 port 51134 on 87.98.249.174 port 22 Jun 23 09:16:00 srv00 sshd[43019]: reveeclipse mapping checking getaddrinfo for 202.180.112.78.rev.sfr.net [78.112.180.202] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 23 09:16:05 srv00 sshd[43019]: Connection closed by 78.112.180.202 port 51134 [preauth] Jun 23 09:16:08 srv00 sshd[43026]: Connection from 78.112.180.202 port 38286 on 87.98.249.174 port 22 Jun 23 09:16:38 srv00 sshd[43026]: reveeclipse mapping checking getaddrinfo for 202.180.112.78.rev.sfr.net [78.112.180.202] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 23 09:16:39........ ------------------------------	2019-06-24 03:06:27
85.187.245.204	attack	NAME : BG-SKYNET CIDR : 85.187.244.0/22 DDoS attack Bulgaria - block certain countries :) IP: 85.187.245.204 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-06-24 03:05:40
5.39.165.155	attack	445/tcp [2019-06-23]1pkt	2019-06-24 02:58:37
202.137.155.111	attackspam	Automatic report - Web App Attack	2019-06-24 02:52:01
190.2.7.65	attackspam	23/tcp [2019-06-23]1pkt	2019-06-24 03:11:02
50.2.38.159	attackspam	NAME : EONIX CIDR : 50.2.0.0/15 \| STATUS : 200 ROBOT {Looking for resource vulnerabilities} DDoS Attack USA - Nevada - block certain countries :) IP: 50.2.38.159 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-06-24 02:44:13
222.180.162.8	attackbots	Jun 22 22:50:19 rb06 sshd[26528]: Failed password for invalid user viktor? from 222.180.162.8 port 35415 ssh2 Jun 22 22:50:19 rb06 sshd[26528]: Received disconnect from 222.180.162.8: 11: Bye Bye [preauth] Jun 22 22:55:13 rb06 sshd[19368]: Failed password for invalid user audhostname from 222.180.162.8 port 37111 ssh2 Jun 22 22:55:13 rb06 sshd[19368]: Received disconnect from 222.180.162.8: 11: Bye Bye [preauth] Jun 22 22:56:28 rb06 sshd[6905]: Failed password for invalid user pul from 222.180.162.8 port 58323 ssh2 Jun 22 22:56:28 rb06 sshd[6905]: Received disconnect from 222.180.162.8: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=222.180.162.8	2019-06-24 02:50:34
115.84.99.216	attackbots	Automatic report - Web App Attack	2019-06-24 02:54:08
103.120.112.41	attackspam	Unauthorised access (Jun 23) SRC=103.120.112.41 LEN=52 TTL=53 ID=1524 DF TCP DPT=445 WINDOW=8192 SYN	2019-06-24 02:41:09
103.9.77.80	attackbots	103.9.77.80 - - \[23/Jun/2019:14:34:37 +0200\] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 103.9.77.80 - - \[23/Jun/2019:14:34:43 +0200\] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 103.9.77.80 - - \[23/Jun/2019:14:34:44 +0200\] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 103.9.77.80 - - \[23/Jun/2019:14:34:45 +0200\] "POST /wp-login.php HTTP/1.1" 200 1607 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 103.9.77.80 - - \[23/Jun/2019:14:34:51 +0200\] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 103.9.77.80 - - \[23/Jun/2019:14:34:52 +0200\] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/201001	2019-06-24 03:13:48

最近上报的IP列表

13.38.127.156	118.172.148.34	13.38.164.87	13.38.41.245
13.38.30.248	13.38.41.40	13.38.44.92	13.38.47.142
13.38.52.254	13.38.5.116	13.38.55.48	118.172.148.36
118.172.148.38	118.172.148.45	118.172.148.46	118.172.148.5
149.142.105.0	118.172.148.56	118.172.148.60	118.172.148.65