192.241.220.48

基本信息:

城市(city): San Francisco

省份(region): California

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
192.241.220.25	proxy	VPN fraud	2023-04-03 13:03:49
192.241.220.144	attackbots	26/tcp 3391/udp 771/tcp... [2020-09-16/10-05]15pkt,12pt.(tcp),2pt.(udp)	2020-10-07 06:19:08
192.241.220.144	attack	26/tcp 3391/udp 771/tcp... [2020-09-16/10-05]15pkt,12pt.(tcp),2pt.(udp)	2020-10-06 22:34:49
192.241.220.144	attackbotsspam	26/tcp 3391/udp 771/tcp... [2020-09-16/10-05]15pkt,12pt.(tcp),2pt.(udp)	2020-10-06 14:20:10
192.241.220.224	attackspambots	TCP (SYN) 192.241.220.224:44046 -> port 8080, len 40	2020-10-06 04:26:35
192.241.220.224	attackspam	TCP (SYN) 192.241.220.224:40820 -> port 445, len 40	2020-10-05 20:27:56
192.241.220.224	attackbotsspam	TCP (SYN) 192.241.220.224:40820 -> port 445, len 40	2020-10-05 12:18:29
192.241.220.248	attack	Port scan: Attack repeated for 24 hours	2020-09-28 05:06:46
192.241.220.248	attackspambots	TCP ports : 139 / 4200	2020-09-27 21:25:06
192.241.220.248	attackspam	2020-09-26 22:41:32 wonderland sendmail[2203]: 08QKfWgQ002203: rejecting commands from zg-0915a-156.stretchoid.com [192.241.220.248] due to pre-greeting traffic after 0 seconds	2020-09-27 13:07:39
192.241.220.199	attackspambots	UDP 192.241.220.199:36217 -> port 1434, len 29	2020-09-14 02:28:14
192.241.220.199	attackbotsspam	port scan and connect, tcp 27017 (mongodb)	2020-09-13 18:26:03
192.241.220.88	attack	TCP ports : 3306 / 5431 / 8443	2020-09-07 20:25:36
192.241.220.88	attackbotsspam	Scanned 1 times in the last 24 hours on port 22	2020-09-07 12:10:25
192.241.220.88	attackspam	Port Scan detected from 192.241.220.88 (US/United States/California/San Francisco/zg-0823a-66.stretchoid.com). 4 hits in the last 291 seconds	2020-09-07 04:54:32

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.241.220.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64944
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;192.241.220.48.			IN	A

;; AUTHORITY SECTION:
.			555	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061102 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 12 08:47:29 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

48.220.241.192.in-addr.arpa domain name pointer zg-0421d-6.stretchoid.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
48.220.241.192.in-addr.arpa	name = zg-0421d-6.stretchoid.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
194.186.73.30	attack	2019-07-28T04:49:50.702728abusebot-5.cloudsearch.cf sshd\[26286\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.186.73.30 user=root	2019-07-28 17:34:42
12.247.117.222	attackbots	Port scan and direct access per IP instead of hostname	2019-07-28 17:10:37
107.170.237.219	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-28 17:28:35
62.76.92.22	attackbotsspam	[portscan] Port scan	2019-07-28 17:15:04
79.137.46.233	attackbots	C2,WP GET /wp-login.php	2019-07-28 17:25:53
58.87.124.196	attackbotsspam	Jul 28 10:40:42 SilenceServices sshd[15143]: Failed password for root from 58.87.124.196 port 47281 ssh2 Jul 28 10:46:55 SilenceServices sshd[19934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.124.196 Jul 28 10:46:56 SilenceServices sshd[19934]: Failed password for invalid user 123 from 58.87.124.196 port 44828 ssh2	2019-07-28 17:34:21
164.132.74.224	attack	Jul 28 04:38:09 s64-1 sshd[2905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.74.224 Jul 28 04:38:10 s64-1 sshd[2905]: Failed password for invalid user deeptiman from 164.132.74.224 port 55652 ssh2 Jul 28 04:43:47 s64-1 sshd[2967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.74.224 ...	2019-07-28 17:07:46
77.247.110.15	attackbots	" "	2019-07-28 16:52:35
218.92.0.172	attackspambots	Jul 28 06:58:25 Ubuntu-1404-trusty-64-minimal sshd\[21089\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.172 user=root Jul 28 06:58:27 Ubuntu-1404-trusty-64-minimal sshd\[21089\]: Failed password for root from 218.92.0.172 port 59030 ssh2 Jul 28 06:58:30 Ubuntu-1404-trusty-64-minimal sshd\[21089\]: Failed password for root from 218.92.0.172 port 59030 ssh2 Jul 28 06:58:32 Ubuntu-1404-trusty-64-minimal sshd\[21089\]: Failed password for root from 218.92.0.172 port 59030 ssh2 Jul 28 06:58:35 Ubuntu-1404-trusty-64-minimal sshd\[21089\]: Failed password for root from 218.92.0.172 port 59030 ssh2	2019-07-28 16:56:57
41.223.236.24	attackbots	Jul 27 21:05:24 localhost kernel: [15520117.353317] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=41.223.236.24 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=241 ID=59748 PROTO=TCP SPT=45550 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 27 21:05:24 localhost kernel: [15520117.353325] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=41.223.236.24 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=241 ID=59748 PROTO=TCP SPT=45550 DPT=445 SEQ=509642919 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 27 21:05:24 localhost kernel: [15520117.361844] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=41.223.236.24 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=242 ID=59748 PROTO=TCP SPT=45550 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0	2019-07-28 17:13:31
111.198.29.223	attackspam	Jul 28 00:39:07 aat-srv002 sshd[3307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.198.29.223 Jul 28 00:39:09 aat-srv002 sshd[3307]: Failed password for invalid user wear from 111.198.29.223 port 20521 ssh2 Jul 28 00:42:16 aat-srv002 sshd[3388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.198.29.223 Jul 28 00:42:18 aat-srv002 sshd[3388]: Failed password for invalid user admin123#@! from 111.198.29.223 port 34697 ssh2 ...	2019-07-28 17:24:15
110.80.25.11	attackbotsspam	Port scan and direct access per IP instead of hostname	2019-07-28 17:19:22
107.6.171.130	attack	Port scan and direct access per IP instead of hostname	2019-07-28 17:26:53
104.222.111.207	attackbots	Port scan and direct access per IP instead of hostname	2019-07-28 17:41:26
5.196.72.58	attack	Jul 28 09:08:10 pornomens sshd\[19616\]: Invalid user backuppc from 5.196.72.58 port 53122 Jul 28 09:08:10 pornomens sshd\[19616\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.72.58 Jul 28 09:08:13 pornomens sshd\[19616\]: Failed password for invalid user backuppc from 5.196.72.58 port 53122 ssh2 ...	2019-07-28 17:28:57

最近上报的IP列表

43.134.205.252	137.226.7.21	138.3.253.123	137.226.4.225
5.167.68.196	5.167.68.193	138.124.183.5	5.167.68.225
221.187.50.180	137.226.5.19	5.167.68.249	5.167.69.4
164.92.177.69	5.167.69.24	143.244.177.178	137.226.5.96
5.167.69.67	5.167.69.127	5.167.69.145	43.154.206.205