192.241.214.249

基本信息:

城市(city): San Francisco

省份(region): California

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
192.241.214.48	attack	firewall-block, port(s): 6379/tcp	2020-10-08 06:39:57
192.241.214.142	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-08 01:02:48
192.241.214.48	attackbotsspam	scans once in preceeding hours on the ports (in chronological order) 9042 resulting in total of 71 scans from 192.241.128.0/17 block.	2020-10-07 23:00:58
192.241.214.142	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-07 17:11:35
192.241.214.48	attack	Metasploit VxWorks WDB Agent Scanner Detection	2020-10-07 15:06:12
192.241.214.46	attackbotsspam	192.241.214.46 - - - [06/Oct/2020:19:51:34 +0200] "GET /portal/redlion HTTP/1.1" 404 162 "-" "Mozilla/5.0 zgrab/0.x" "-" "-"	2020-10-07 03:06:02
192.241.214.46	attack	389/tcp 5903/tcp 3306/tcp... [2020-09-16/10-06]21pkt,19pt.(tcp),1pt.(udp)	2020-10-06 19:05:49
192.241.214.172	attack	TCP port : 5984	2020-10-05 21:39:21
192.241.214.172	attack	Port scan: Attack repeated for 24 hours	2020-10-05 13:33:03
192.241.214.172	attack	Port Scan ...	2020-10-04 05:41:00
192.241.214.172	attack	TCP (SYN) 192.241.214.172:46488 -> port 58950, len 44	2020-10-03 13:22:37
192.241.214.165	attack	Found on CINS badguys / proto=6 . srcport=52605 . dstport=49152 . (1011)	2020-10-02 02:18:43
192.241.214.165	attack	8140/tcp 58836/tcp 179/tcp... [2020-09-18/10-01]13pkt,11pt.(tcp),1pt.(udp)	2020-10-01 18:27:01
192.241.214.210	attackbotsspam	Threat Management Alert 3: Detection of a Network Scan. Signature ET SCAN Zmap User-Agent (Inbound). From: 192.241.214.210:57630, to: 192.168.x.x:80, protocol: TCP	2020-10-01 04:32:56
192.241.214.210	attack	Threat Management Alert 3: Detection of a Network Scan. Signature ET SCAN Zmap User-Agent (Inbound). From: 192.241.214.210:57630, to: 192.168.x.x:80, protocol: TCP	2020-09-30 20:45:18

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.241.214.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57461
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;192.241.214.249.		IN	A

;; AUTHORITY SECTION:
.			421	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061503 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 16 09:16:27 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

249.214.241.192.in-addr.arpa domain name pointer zg-0421b-157.stretchoid.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
249.214.241.192.in-addr.arpa	name = zg-0421b-157.stretchoid.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
181.189.144.206	attackspam	Sep 28 01:20:56 dhoomketu sshd[3413782]: Invalid user james from 181.189.144.206 port 51142 Sep 28 01:20:56 dhoomketu sshd[3413782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.189.144.206 Sep 28 01:20:56 dhoomketu sshd[3413782]: Invalid user james from 181.189.144.206 port 51142 Sep 28 01:20:57 dhoomketu sshd[3413782]: Failed password for invalid user james from 181.189.144.206 port 51142 ssh2 Sep 28 01:25:21 dhoomketu sshd[3413797]: Invalid user ftp_test from 181.189.144.206 port 46354 ...	2020-09-28 05:11:15
88.17.240.63	attackspam	Sep 27 20:38:30 abendstille sshd\[27717\]: Invalid user ftp_id from 88.17.240.63 Sep 27 20:38:30 abendstille sshd\[27717\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.17.240.63 Sep 27 20:38:32 abendstille sshd\[27717\]: Failed password for invalid user ftp_id from 88.17.240.63 port 56454 ssh2 Sep 27 20:42:02 abendstille sshd\[31413\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.17.240.63 user=root Sep 27 20:42:05 abendstille sshd\[31413\]: Failed password for root from 88.17.240.63 port 59849 ssh2 ...	2020-09-28 05:22:09
77.68.79.253	attackspam	www.villaromeo.de 77.68.79.253 [27/Sep/2020:20:30:43 +0200] "POST /wp-login.php HTTP/1.1" 200 3054 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" www.villaromeo.de 77.68.79.253 [27/Sep/2020:20:30:44 +0200] "POST /wp-login.php HTTP/1.1" 200 3021 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-28 05:01:57
162.243.192.108	attack	DATE:2020-09-27 19:39:58,IP:162.243.192.108,MATCHES:10,PORT:ssh	2020-09-28 05:13:55
176.214.60.193	attackbots	445/tcp 445/tcp 445/tcp... [2020-09-18/26]30pkt,1pt.(tcp)	2020-09-28 05:16:54
213.158.29.179	attackbots	2020-09-28T00:10:03.246209mail.standpoint.com.ua sshd[20069]: Invalid user ubuntu from 213.158.29.179 port 59046 2020-09-28T00:10:03.249124mail.standpoint.com.ua sshd[20069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.158.29.179 2020-09-28T00:10:03.246209mail.standpoint.com.ua sshd[20069]: Invalid user ubuntu from 213.158.29.179 port 59046 2020-09-28T00:10:05.008329mail.standpoint.com.ua sshd[20069]: Failed password for invalid user ubuntu from 213.158.29.179 port 59046 ssh2 2020-09-28T00:13:40.769806mail.standpoint.com.ua sshd[20498]: Invalid user user8 from 213.158.29.179 port 38150 ...	2020-09-28 05:20:07
115.236.100.36	attack	Sep 27 13:59:12 mockhub sshd[77632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.236.100.36 Sep 27 13:59:12 mockhub sshd[77632]: Invalid user mq from 115.236.100.36 port 23869 Sep 27 13:59:15 mockhub sshd[77632]: Failed password for invalid user mq from 115.236.100.36 port 23869 ssh2 ...	2020-09-28 05:24:59
192.35.168.72	attack	5984/tcp 5902/tcp 9200/tcp... [2020-07-31/09-26]15pkt,15pt.(tcp)	2020-09-28 05:04:33
106.12.171.253	attackspam	Sep 27 16:12:15 Tower sshd[38616]: Connection from 106.12.171.253 port 33246 on 192.168.10.220 port 22 rdomain "" Sep 27 16:12:16 Tower sshd[38616]: Invalid user cesar from 106.12.171.253 port 33246 Sep 27 16:12:16 Tower sshd[38616]: error: Could not get shadow information for NOUSER Sep 27 16:12:16 Tower sshd[38616]: Failed password for invalid user cesar from 106.12.171.253 port 33246 ssh2 Sep 27 16:12:16 Tower sshd[38616]: Received disconnect from 106.12.171.253 port 33246:11: Bye Bye [preauth] Sep 27 16:12:16 Tower sshd[38616]: Disconnected from invalid user cesar 106.12.171.253 port 33246 [preauth]	2020-09-28 05:34:07
115.237.255.29	attack	3389/tcp [2020-09-26]1pkt	2020-09-28 05:33:37
2.57.122.213	attackbots	Failed password for invalid user from 2.57.122.213 port 37080 ssh2	2020-09-28 05:30:01
87.27.5.116	attackbotsspam	Unauthorised access (Sep 27) SRC=87.27.5.116 LEN=44 TTL=50 ID=51286 TCP DPT=23 WINDOW=48745 SYN	2020-09-28 05:15:19
189.209.249.159	attackbotsspam	Automatic report - Port Scan Attack	2020-09-28 05:10:44
13.127.50.37	attackspambots	Lines containing failures of 13.127.50.37 (max 1000) Sep 27 08:03:00 srv sshd[59890]: Invalid user www from 13.127.50.37 port 37436 Sep 27 08:03:00 srv sshd[59890]: Received disconnect from 13.127.50.37 port 37436:11: Bye Bye [preauth] Sep 27 08:03:00 srv sshd[59890]: Disconnected from invalid user www 13.127.50.37 port 37436 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=13.127.50.37	2020-09-28 05:35:16
222.186.42.7	attackspambots	Sep 27 18:07:06 shivevps sshd[23553]: Failed password for root from 222.186.42.7 port 62718 ssh2 Sep 27 18:07:09 shivevps sshd[23553]: Failed password for root from 222.186.42.7 port 62718 ssh2 Sep 27 18:07:11 shivevps sshd[23553]: Failed password for root from 222.186.42.7 port 62718 ssh2 ...	2020-09-28 05:09:51

最近上报的IP列表

169.229.167.136	192.241.207.115	192.241.206.14	169.229.163.16
177.130.169.226	137.226.30.63	137.226.101.39	137.226.138.6
137.226.152.242	137.226.231.39	169.229.10.127	137.226.238.104
169.229.101.181	137.226.237.49	137.226.233.172	169.229.16.30
137.226.237.112	169.229.17.182	169.229.23.113	169.229.76.165