191.214.244.42

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Brazil

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 191.214.244.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8834
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;191.214.244.42.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021500 1800 900 604800 86400

;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 16:10:21 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

42.244.214.191.in-addr.arpa domain name pointer 191-214-244-42.user3g.veloxzone.com.br.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.244.214.191.in-addr.arpa	name = 191-214-244-42.user3g.veloxzone.com.br.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
82.200.226.226	attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-30 07:58:19
138.97.247.26	attack	[WedJul2922:25:41.4459142020][:error][pid7860:tid139903400621824][client138.97.247.26:65221][client138.97.247.26]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\(DisableifyouwanttoallowMSIE6\)"][severity"WARNING"][hostname"aress2030.ch"][uri"/wp-login.php"][unique_id"XyHbReJ3WVdXToYCIaP8JgAAAIw"][WedJul2922:25:44.1148912020][:error][pid30921:tid139903453071104][client138.97.247.26:65249][client138.97.247.26]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\	2020-07-30 07:28:23
94.102.56.151	attack	Brute force attack stopped by firewall	2020-07-30 07:40:29
222.186.175.169	attackbots	Jul 29 23:27:05 ip-172-31-62-245 sshd\[11571\]: Failed password for root from 222.186.175.169 port 15282 ssh2\ Jul 29 23:32:45 ip-172-31-62-245 sshd\[11623\]: Failed password for root from 222.186.175.169 port 60982 ssh2\ Jul 29 23:32:48 ip-172-31-62-245 sshd\[11623\]: Failed password for root from 222.186.175.169 port 60982 ssh2\ Jul 29 23:32:51 ip-172-31-62-245 sshd\[11623\]: Failed password for root from 222.186.175.169 port 60982 ssh2\ Jul 29 23:32:55 ip-172-31-62-245 sshd\[11623\]: Failed password for root from 222.186.175.169 port 60982 ssh2\	2020-07-30 07:37:50
218.92.0.246	attackspam	Jul 30 01:58:21 vpn01 sshd[10372]: Failed password for root from 218.92.0.246 port 9548 ssh2 Jul 30 01:58:34 vpn01 sshd[10372]: error: maximum authentication attempts exceeded for root from 218.92.0.246 port 9548 ssh2 [preauth] ...	2020-07-30 07:59:02
185.94.111.1	attackbotsspam	Fail2Ban Ban Triggered	2020-07-30 07:58:04
51.145.0.150	attackspambots	Jul 29 19:42:37 Tower sshd[8096]: Connection from 51.145.0.150 port 42820 on 192.168.10.220 port 22 rdomain "" Jul 29 19:42:38 Tower sshd[8096]: Invalid user pellegrini from 51.145.0.150 port 42820 Jul 29 19:42:38 Tower sshd[8096]: error: Could not get shadow information for NOUSER Jul 29 19:42:38 Tower sshd[8096]: Failed password for invalid user pellegrini from 51.145.0.150 port 42820 ssh2 Jul 29 19:42:38 Tower sshd[8096]: Received disconnect from 51.145.0.150 port 42820:11: Bye Bye [preauth] Jul 29 19:42:38 Tower sshd[8096]: Disconnected from invalid user pellegrini 51.145.0.150 port 42820 [preauth]	2020-07-30 07:43:46
5.188.206.196	attack	2020-07-30 01:40:32 dovecot_login authenticator failed for \(\[5.188.206.196\]\) \[5.188.206.196\]: 535 Incorrect authentication data \(set_id=info@nopcommerce.it\) 2020-07-30 01:40:42 dovecot_login authenticator failed for \(\[5.188.206.196\]\) \[5.188.206.196\]: 535 Incorrect authentication data 2020-07-30 01:40:53 dovecot_login authenticator failed for \(\[5.188.206.196\]\) \[5.188.206.196\]: 535 Incorrect authentication data 2020-07-30 01:41:09 dovecot_login authenticator failed for \(\[5.188.206.196\]\) \[5.188.206.196\]: 535 Incorrect authentication data 2020-07-30 01:41:17 dovecot_login authenticator failed for \(\[5.188.206.196\]\) \[5.188.206.196\]: 535 Incorrect authentication data	2020-07-30 07:57:07
186.16.163.3	attackbots	20 attempts against mh-ssh on echoip	2020-07-30 08:01:20
45.148.10.54	attack	TCP (SYN) 45.148.10.54:46630 -> port 8089, len 44	2020-07-30 07:36:47
181.129.161.28	attack	SSH invalid-user multiple login try	2020-07-30 07:55:21
148.70.129.112	attack	[SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.	2020-07-30 07:44:46
46.238.122.54	attackspam	...	2020-07-30 07:51:55
112.85.42.174	attackbots	Jul 30 01:30:53 vps639187 sshd\[29712\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.174 user=root Jul 30 01:30:55 vps639187 sshd\[29712\]: Failed password for root from 112.85.42.174 port 31347 ssh2 Jul 30 01:30:58 vps639187 sshd\[29712\]: Failed password for root from 112.85.42.174 port 31347 ssh2 ...	2020-07-30 07:33:14
134.175.129.204	attackspam	Brute force attempt	2020-07-30 07:27:00

最近上报的IP列表

95.251.134.29	66.202.154.164	202.37.208.147	15.45.196.115
34.149.88.140	244.16.108.4	192.234.218.178	75.200.54.99
137.74.24.35	134.59.82.176	41.155.190.244	132.12.54.97
127.131.167.0	171.114.36.55	72.1.37.85	76.50.74.99
38.114.231.90	215.92.13.118	194.142.170.234	147.20.4.201