42.238.107.13 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.238.107.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7156
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.238.107.13.			IN	A

;; AUTHORITY SECTION:
.			260	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022010200 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 02 19:41:50 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

13.107.238.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
13.107.238.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.186.15.62	attack	Unauthorized connection attempt detected from IP address 222.186.15.62 to port 22 [T]	2020-05-07 23:49:26
159.65.255.153	attackspam	May 7 12:10:38 ws12vmsma01 sshd[40055]: Failed password for invalid user ccm-1 from 159.65.255.153 port 46280 ssh2 May 7 12:15:36 ws12vmsma01 sshd[40804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.255.153 user=root May 7 12:15:37 ws12vmsma01 sshd[40804]: Failed password for root from 159.65.255.153 port 54106 ssh2 ...	2020-05-07 23:57:48
128.199.253.146	attack	...	2020-05-07 23:56:19
116.111.85.7	attackbots	Unauthorized connection attempt from IP address 116.111.85.7 on Port 445(SMB)	2020-05-07 23:31:44
98.4.41.184	attack	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "maxwell" at 2020-05-07T13:20:49Z	2020-05-07 23:54:12
78.180.38.127	attack	Automatic report - XMLRPC Attack	2020-05-07 23:56:40
83.196.98.96	attack	May 7 13:59:48 sd-126173 sshd[6812]: Invalid user pi from 83.196.98.96 port 42964 May 7 13:59:48 sd-126173 sshd[6814]: Invalid user pi from 83.196.98.96 port 42970	2020-05-07 23:46:40
222.186.175.182	attackbots	May 7 17:42:04 server sshd[14428]: Failed none for root from 222.186.175.182 port 21478 ssh2 May 7 17:42:07 server sshd[14428]: Failed password for root from 222.186.175.182 port 21478 ssh2 May 7 17:42:11 server sshd[14428]: Failed password for root from 222.186.175.182 port 21478 ssh2	2020-05-07 23:44:55
31.40.27.254	attackspambots	May 7 17:16:06 ip51 sshd[4192]: Invalid user vr from 31.40.27.254 port 44005 May 7 17:16:06 ip51 sshd[4192]: pam_unix(sshd:auth): check pass; user unknown May 7 17:16:06 ip51 sshd[4192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.40.27.254 May 7 17:16:07 ip51 sshd[4194]: refused connect from 122.180.48.29 (122.180.48.29) May 7 17:16:08 ip51 sshd[4192]: Failed password for invalid user vr from 31.40.27.254 port 44005 ssh2 May 7 17:16:08 ip51 sshd[4192]: Received disconnect from 31.40.27.254 port 44005:11: Bye Bye [preauth] May 7 17:16:08 ip51 sshd[4192]: Disconnected from invalid user vr 31.40.27.254 port 44005 [preauth]	2020-05-07 23:47:18
138.128.160.90	attackspam	138.128.160.90 - - [07/May/2020:11:20:17 +0000] "GET /phpmyadmin/ HTTP/1.1" 404 209 "http://XXX.family/phpmyadmin/" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-07 23:36:30
185.143.74.93	attackbots	2020-05-07 19:11:59 dovecot_login authenticator failed for \(User\) \[185.143.74.93\]: 535 Incorrect authentication data \(set_id=voltage-pp-0000@org.ua\)2020-05-07 19:14:02 dovecot_login authenticator failed for \(User\) \[185.143.74.93\]: 535 Incorrect authentication data \(set_id=moviegalls1@org.ua\)2020-05-07 19:16:04 dovecot_login authenticator failed for \(User\) \[185.143.74.93\]: 535 Incorrect authentication data \(set_id=nissan@org.ua\) ...	2020-05-08 00:17:04
185.234.218.249	attackspambots	May 07 17:37:16 pop3-login: Info: Disconnected: Inactivity \(auth failed, 1 attempts in 180 secs\): user=\, method=PLAIN, rip=185.234.218.249, lip=192.168.100.101, session=\\ May 07 17:37:18 pop3-login: Info: Disconnected: Inactivity \(auth failed, 1 attempts in 180 secs\): user=\, method=PLAIN, rip=185.234.218.249, lip=192.168.100.101, session=\<39EwnRCltAC56tr5\>\ May 07 18:07:00 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=185.234.218.249, lip=192.168.100.101, session=\\ May 07 18:07:07 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 6 secs\): user=\, method=PLAIN, rip=185.234.218.249, lip=192.168.100.101, session=\\ May 07 18:10:03 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=185.234.218.249, lip=192.168.100.101, session=\	2020-05-08 00:16:27
195.231.11.201	attackbotsspam	May 7 11:41:05 ntop sshd[20336]: Did not receive identification string from 195.231.11.201 port 58876 May 7 11:41:06 ntop sshd[20346]: Did not receive identification string from 195.231.11.201 port 33372 May 7 11:41:08 ntop sshd[20373]: Did not receive identification string from 195.231.11.201 port 34004 May 7 11:41:49 ntop sshd[20736]: User r.r from 195.231.11.201 not allowed because not listed in AllowUsers May 7 11:41:49 ntop sshd[20736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.231.11.201 user=r.r May 7 11:41:51 ntop sshd[20736]: Failed password for invalid user r.r from 195.231.11.201 port 51160 ssh2 May 7 11:41:52 ntop sshd[20736]: Received disconnect from 195.231.11.201 port 51160:11: Normal Shutdown, Thank you for playing [preauth] May 7 11:41:52 ntop sshd[20736]: Disconnected from invalid user r.r 195.231.11.201 port 51160 [preauth] May 7 11:44:32 ntop sshd[22387]: User r.r from 195.231.11.201 not all........ -------------------------------	2020-05-07 23:26:23
190.29.166.226	attackspam	Automatic report BANNED IP	2020-05-07 23:22:48
139.99.121.6	attackbotsspam	139.99.121.6 - - \[07/May/2020:14:49:37 +0200\] "POST /wp-login.php HTTP/1.0" 200 5932 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - \[07/May/2020:14:49:40 +0200\] "POST /wp-login.php HTTP/1.0" 200 5745 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - \[07/May/2020:14:49:41 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-05-07 23:58:04

最近上报的IP列表

59.145.245.131	154.103.237.77	4.101.110.9	107.32.67.172
144.19.98.37	8.160.41.249	210.125.155.59	11.78.174.205
217.135.230.208	211.221.111.120	31.238.147.199	41.143.119.164
253.158.98.178	26.232.252.251	31.241.24.244	201.230.45.180
154.128.130.71	158.78.48.10	212.116.164.150	246.69.249.25