130.63.39.242 - IPInfo

基本信息:

城市(city): Toronto

省份(region): Ontario

国家(country): Canada

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 130.63.39.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23224
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;130.63.39.242.			IN	A

;; AUTHORITY SECTION:
.			309	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022012201 1800 900 604800 86400

;; Query time: 214 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 23 10:09:06 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

242.39.63.130.in-addr.arpa domain name pointer cl61-icl1.uit.yorku.ca.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
242.39.63.130.in-addr.arpa	name = cl61-icl1.uit.yorku.ca.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
123.6.51.133	attack	Aug 29 12:06:09 *** sshd[29353]: Invalid user user2 from 123.6.51.133	2020-08-30 01:49:00
51.77.200.101	attack	SSH	2020-08-30 02:00:28
47.99.35.235	attack	SSH brutforce	2020-08-30 01:51:57
198.27.69.130	attack	198.27.69.130 - - [29/Aug/2020:13:20:43 +0100] "POST /wp-login.php HTTP/1.1" 200 5112 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.69.130 - - [29/Aug/2020:13:22:02 +0100] "POST /wp-login.php HTTP/1.1" 200 5125 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.69.130 - - [29/Aug/2020:13:23:41 +0100] "POST /wp-login.php HTTP/1.1" 200 5125 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ...	2020-08-30 01:37:22
134.119.207.105	attack	Unwanted checking 80 or 443 port ...	2020-08-30 01:55:49
67.215.234.162	attackbots	200 SQL injection attempts in 1 minute, 10 minutes earlier an attempt from 154.211.124.176	2020-08-30 01:45:50
49.235.73.19	attack	Aug 29 15:06:21 minden010 sshd[31186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.73.19 Aug 29 15:06:23 minden010 sshd[31186]: Failed password for invalid user jabber from 49.235.73.19 port 29925 ssh2 Aug 29 15:08:29 minden010 sshd[31886]: Failed password for root from 49.235.73.19 port 52533 ssh2 ...	2020-08-30 01:46:35
185.234.219.11	attackbots	Aug 29 13:45:40 karger postfix/smtpd[23151]: warning: unknown[185.234.219.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 29 13:55:52 karger postfix/smtpd[26269]: warning: unknown[185.234.219.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 29 14:06:14 karger postfix/smtpd[29462]: warning: unknown[185.234.219.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-30 01:48:36
132.232.6.207	attack	Aug 29 14:04:10 home sshd[2536742]: Invalid user william from 132.232.6.207 port 39848 Aug 29 14:04:10 home sshd[2536742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.6.207 Aug 29 14:04:10 home sshd[2536742]: Invalid user william from 132.232.6.207 port 39848 Aug 29 14:04:11 home sshd[2536742]: Failed password for invalid user william from 132.232.6.207 port 39848 ssh2 Aug 29 14:06:40 home sshd[2537601]: Invalid user lihui from 132.232.6.207 port 38426 ...	2020-08-30 01:36:05
184.105.247.194	attackbotsspam	TCP (SYN) 184.105.247.194:33405 -> port 21, len 40	2020-08-30 01:46:19
151.31.59.79	attackbots	Telnet Honeypot -> Telnet Bruteforce / Login	2020-08-30 01:40:32
206.189.132.8	attackspambots	2020-08-29T07:06:48.921075linuxbox-skyline sshd[22344]: Invalid user ftpuser from 206.189.132.8 port 43160 ...	2020-08-30 01:45:12
114.119.163.4	attack	[Sat Aug 29 19:06:48.719056 2020] [:error] [pid 14205:tid 139817367504640] [client 114.119.163.4:2970] [client 114.119.163.4] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/agroklimatologi/kalender-tanam/1528-kalender-tanam-katam-terpadu-pulau-jawa/kalender-tanam-katam-terpadu-provinsi-jawa-timur/kalender-tanam-katam-terpadu-kabupaten-tranggalek"] [unique_id "X0pE2Mn7VYhmitREAl4agwAAARA"] ...	2020-08-30 01:29:40
91.225.78.245	attackspam	20/8/29@08:06:01: FAIL: Alarm-Network address from=91.225.78.245 20/8/29@08:06:01: FAIL: Alarm-Network address from=91.225.78.245 ...	2020-08-30 01:59:51
192.241.224.10	attackspambots	Unauthorized SSH login attempts	2020-08-30 01:58:26

最近上报的IP列表

10.117.139.52	148.24.237.81	51.146.62.115	253.79.109.167
81.104.120.35	153.24.12.27	117.253.113.82	40.248.31.95
36.98.200.61	187.169.228.217	170.180.173.80	120.78.131.189
117.63.218.177	35.229.253.169	6.133.80.195	61.52.4.52
3.122.102.11	76.107.130.204	2.35.29.36	199.20.44.73