192.241.214.249

基本信息:

城市(city): San Francisco

省份(region): California

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
192.241.214.48	attack	firewall-block, port(s): 6379/tcp	2020-10-08 06:39:57
192.241.214.142	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-08 01:02:48
192.241.214.48	attackbotsspam	scans once in preceeding hours on the ports (in chronological order) 9042 resulting in total of 71 scans from 192.241.128.0/17 block.	2020-10-07 23:00:58
192.241.214.142	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-07 17:11:35
192.241.214.48	attack	Metasploit VxWorks WDB Agent Scanner Detection	2020-10-07 15:06:12
192.241.214.46	attackbotsspam	192.241.214.46 - - - [06/Oct/2020:19:51:34 +0200] "GET /portal/redlion HTTP/1.1" 404 162 "-" "Mozilla/5.0 zgrab/0.x" "-" "-"	2020-10-07 03:06:02
192.241.214.46	attack	389/tcp 5903/tcp 3306/tcp... [2020-09-16/10-06]21pkt,19pt.(tcp),1pt.(udp)	2020-10-06 19:05:49
192.241.214.172	attack	TCP port : 5984	2020-10-05 21:39:21
192.241.214.172	attack	Port scan: Attack repeated for 24 hours	2020-10-05 13:33:03
192.241.214.172	attack	Port Scan ...	2020-10-04 05:41:00
192.241.214.172	attack	TCP (SYN) 192.241.214.172:46488 -> port 58950, len 44	2020-10-03 13:22:37
192.241.214.165	attack	Found on CINS badguys / proto=6 . srcport=52605 . dstport=49152 . (1011)	2020-10-02 02:18:43
192.241.214.165	attack	8140/tcp 58836/tcp 179/tcp... [2020-09-18/10-01]13pkt,11pt.(tcp),1pt.(udp)	2020-10-01 18:27:01
192.241.214.210	attackbotsspam	Threat Management Alert 3: Detection of a Network Scan. Signature ET SCAN Zmap User-Agent (Inbound). From: 192.241.214.210:57630, to: 192.168.x.x:80, protocol: TCP	2020-10-01 04:32:56
192.241.214.210	attack	Threat Management Alert 3: Detection of a Network Scan. Signature ET SCAN Zmap User-Agent (Inbound). From: 192.241.214.210:57630, to: 192.168.x.x:80, protocol: TCP	2020-09-30 20:45:18

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.241.214.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57461
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;192.241.214.249.		IN	A

;; AUTHORITY SECTION:
.			421	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061503 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 16 09:16:27 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

249.214.241.192.in-addr.arpa domain name pointer zg-0421b-157.stretchoid.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
249.214.241.192.in-addr.arpa	name = zg-0421b-157.stretchoid.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
46.101.220.225	attackspam	TCP port : 5634	2020-09-11 21:28:01
201.140.110.78	attack	(imapd) Failed IMAP login from 201.140.110.78 (MX/Mexico/78.201-140-110.bestelclientes.com.mx): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Sep 11 16:48:02 ir1 dovecot[3110802]: imap-login: Disconnected (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=201.140.110.78, lip=5.63.12.44, session=<6U3HrAivrN7JjG5O>	2020-09-11 21:16:01
114.141.150.110	attack	SSH/22 MH Probe, BF, Hack -	2020-09-11 21:21:24
222.186.173.183	attackspambots	Sep 11 15:33:00 vpn01 sshd[29812]: Failed password for root from 222.186.173.183 port 20608 ssh2 Sep 11 15:33:04 vpn01 sshd[29812]: Failed password for root from 222.186.173.183 port 20608 ssh2 ...	2020-09-11 21:34:16
14.118.215.119	attackspam	(sshd) Failed SSH login from 14.118.215.119 (CN/China/Guangdong/Guangzhou Shi/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 11 04:31:02 atlas sshd[10862]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.118.215.119 user=root Sep 11 04:31:04 atlas sshd[10862]: Failed password for root from 14.118.215.119 port 40634 ssh2 Sep 11 04:36:44 atlas sshd[12116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.118.215.119 user=root Sep 11 04:36:46 atlas sshd[12116]: Failed password for root from 14.118.215.119 port 43542 ssh2 Sep 11 04:38:08 atlas sshd[12424]: Invalid user cron from 14.118.215.119 port 33614	2020-09-11 21:35:06
118.45.235.83	attackbots	Sep 10 18:57:49 vmd26974 sshd[2464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.45.235.83 Sep 10 18:57:51 vmd26974 sshd[2464]: Failed password for invalid user user from 118.45.235.83 port 44612 ssh2 ...	2020-09-11 21:32:04
103.119.165.232	attack	1599757077 - 09/10/2020 18:57:57 Host: 103.119.165.232/103.119.165.232 Port: 445 TCP Blocked	2020-09-11 21:22:16
192.240.103.181	attackbots	Sep 11 03:00:56 root sshd[25211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.240.103.181 user=root Sep 11 03:00:58 root sshd[25211]: Failed password for root from 192.240.103.181 port 37674 ssh2 ...	2020-09-11 21:17:15
222.186.173.226	attackbotsspam	Sep 11 02:40:46 web9 sshd\[31357\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.226 user=root Sep 11 02:40:48 web9 sshd\[31357\]: Failed password for root from 222.186.173.226 port 47294 ssh2 Sep 11 02:40:51 web9 sshd\[31357\]: Failed password for root from 222.186.173.226 port 47294 ssh2 Sep 11 02:40:54 web9 sshd\[31357\]: Failed password for root from 222.186.173.226 port 47294 ssh2 Sep 11 02:40:58 web9 sshd\[31357\]: Failed password for root from 222.186.173.226 port 47294 ssh2	2020-09-11 21:04:16
62.234.17.74	attackbots	Sep 11 00:55:31 h2865660 sshd[3911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.17.74 user=root Sep 11 00:55:34 h2865660 sshd[3911]: Failed password for root from 62.234.17.74 port 45952 ssh2 Sep 11 01:01:26 h2865660 sshd[4163]: Invalid user user from 62.234.17.74 port 56476 Sep 11 01:01:26 h2865660 sshd[4163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.17.74 Sep 11 01:01:26 h2865660 sshd[4163]: Invalid user user from 62.234.17.74 port 56476 Sep 11 01:01:28 h2865660 sshd[4163]: Failed password for invalid user user from 62.234.17.74 port 56476 ssh2 ...	2020-09-11 21:17:02
158.69.35.227	attackbotsspam	Sep 11 14:32:41 vps647732 sshd[21886]: Failed password for root from 158.69.35.227 port 33265 ssh2 Sep 11 14:32:52 vps647732 sshd[21886]: error: maximum authentication attempts exceeded for root from 158.69.35.227 port 33265 ssh2 [preauth] ...	2020-09-11 20:54:35
62.234.96.122	attack	Sep 9 23:25:31 myhostname sshd[12420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.96.122 user=r.r Sep 9 23:25:32 myhostname sshd[12420]: Failed password for r.r from 62.234.96.122 port 52628 ssh2 Sep 9 23:25:32 myhostname sshd[12420]: Received disconnect from 62.234.96.122 port 52628:11: Bye Bye [preauth] Sep 9 23:25:32 myhostname sshd[12420]: Disconnected from 62.234.96.122 port 52628 [preauth] Sep 9 23:34:52 myhostname sshd[18728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.96.122 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=62.234.96.122	2020-09-11 21:08:53
164.132.41.67	attackbotsspam	164.132.41.67 (FR/France/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 11 06:11:50 jbs1 sshd[7227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.136.90 user=root Sep 11 06:09:03 jbs1 sshd[6272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.16.47 user=root Sep 11 06:09:05 jbs1 sshd[6272]: Failed password for root from 49.232.16.47 port 60310 ssh2 Sep 11 06:10:43 jbs1 sshd[6918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.92.41.16 user=root Sep 11 06:10:44 jbs1 sshd[6918]: Failed password for root from 212.92.41.16 port 51400 ssh2 Sep 11 06:11:43 jbs1 sshd[7196]: Failed password for root from 164.132.41.67 port 59832 ssh2 IP Addresses Blocked: 49.232.136.90 (CN/China/-) 49.232.16.47 (CN/China/-) 212.92.41.16 (ES/Spain/-)	2020-09-11 21:11:37
220.132.123.13	attackbots	Port Scan detected! ...	2020-09-11 20:56:58
41.37.26.42	attackspambots	Listed on abuseat-org plus zen-spamhaus and rbldns-ru / proto=6 . srcport=17473 . dstport=80 . (804)	2020-09-11 20:55:24

最近上报的IP列表

169.229.167.136	192.241.207.115	192.241.206.14	169.229.163.16
177.130.169.226	137.226.30.63	137.226.101.39	137.226.138.6
137.226.152.242	137.226.231.39	169.229.10.127	137.226.238.104
169.229.101.181	137.226.237.49	137.226.233.172	169.229.16.30
137.226.237.112	169.229.17.182	169.229.23.113	169.229.76.165