192.241.234.106

基本信息:

城市(city): San Francisco

省份(region): California

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Port probing on unauthorized port 21	2020-03-08 04:58:49

相同子网IP讨论:

IP	类型	评论内容	时间
192.241.234.47	attackproxy	Malicious IP	2024-05-10 12:56:50
192.241.234.83	attackbots	404 NOT FOUND	2020-10-10 23:20:43
192.241.234.83	attackspambots	Fail2Ban Ban Triggered	2020-10-10 15:10:13
192.241.234.214	attackbots	TCP (SYN) 192.241.234.214:49051 -> port 21, len 40	2020-10-07 00:48:16
192.241.234.214	attackbots	smtp	2020-10-06 16:40:08
192.241.234.196	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-05 06:25:19
192.241.234.196	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-04 22:26:30
192.241.234.196	attackspam	1601790020 - 10/04/2020 07:40:20 Host: 192.241.234.196/192.241.234.196 Port: 23 TCP Blocked ...	2020-10-04 14:12:36
192.241.234.83	attackspam	2020-10-02 12:47:21 wonderland sendmail[17554]: 092AlLK8017554: rejecting commands from zg-0915a-294.stretchoid.com [192.241.234.83] due to pre-greeting traffic after 0 seconds	2020-10-03 06:07:26
192.241.234.83	attackspam	2020-10-02 12:47:21 wonderland sendmail[17554]: 092AlLK8017554: rejecting commands from zg-0915a-294.stretchoid.com [192.241.234.83] due to pre-greeting traffic after 0 seconds	2020-10-03 01:34:04
192.241.234.83	attackspam	2020-10-02 12:47:21 wonderland sendmail[17554]: 092AlLK8017554: rejecting commands from zg-0915a-294.stretchoid.com [192.241.234.83] due to pre-greeting traffic after 0 seconds	2020-10-02 22:03:18
192.241.234.83	attackbotsspam	IP 192.241.234.83 attacked honeypot on port: 80 at 10/1/2020 7:38:09 PM	2020-10-02 18:35:19
192.241.234.83	attackspam	IP 192.241.234.83 attacked honeypot on port: 80 at 10/1/2020 7:38:09 PM	2020-10-02 15:08:14
192.241.234.53	attackbots	Port scan: Attack repeated for 24 hours 192.241.234.53 - - [25/Sep/2020:07:17:21 +0300] "GET / HTTP/1.1" 403 4940 "-" "Mozilla/5.0 zgrab/0.x"	2020-10-01 06:36:53
192.241.234.116	attackbotsspam	" "	2020-10-01 05:14:51

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.241.234.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7877
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;192.241.234.106.		IN	A

;; AUTHORITY SECTION:
.			381	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030701 1800 900 604800 86400

;; Query time: 98 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 08 04:58:46 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

106.234.241.192.in-addr.arpa domain name pointer zg-0229i-217.stretchoid.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
106.234.241.192.in-addr.arpa	name = zg-0229i-217.stretchoid.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
61.161.250.202	attackbotsspam	SSH Brute-Force. Ports scanning.	2020-09-05 22:33:15
139.59.40.233	attack	139.59.40.233 - - [05/Sep/2020:11:36:56 +0200] "GET /wp-login.php HTTP/1.1" 200 8712 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.40.233 - - [05/Sep/2020:11:36:58 +0200] "POST /wp-login.php HTTP/1.1" 200 8942 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.40.233 - - [05/Sep/2020:11:37:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-05 22:06:06
218.92.0.251	attackbotsspam	Sep 5 16:10:58 ns382633 sshd\[4866\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.251 user=root Sep 5 16:10:59 ns382633 sshd\[4866\]: Failed password for root from 218.92.0.251 port 14704 ssh2 Sep 5 16:11:03 ns382633 sshd\[4866\]: Failed password for root from 218.92.0.251 port 14704 ssh2 Sep 5 16:11:05 ns382633 sshd\[4866\]: Failed password for root from 218.92.0.251 port 14704 ssh2 Sep 5 16:11:09 ns382633 sshd\[4866\]: Failed password for root from 218.92.0.251 port 14704 ssh2	2020-09-05 22:11:29
222.186.173.142	attackbotsspam	Sep 5 16:05:15 jane sshd[5112]: Failed password for root from 222.186.173.142 port 31878 ssh2 Sep 5 16:05:18 jane sshd[5112]: Failed password for root from 222.186.173.142 port 31878 ssh2 ...	2020-09-05 22:15:33
106.12.38.70	attackspam	Sep 4 23:48:22 sip sshd[1510667]: Invalid user test11 from 106.12.38.70 port 51416 Sep 4 23:48:24 sip sshd[1510667]: Failed password for invalid user test11 from 106.12.38.70 port 51416 ssh2 Sep 4 23:51:52 sip sshd[1510681]: Invalid user test3 from 106.12.38.70 port 49156 ...	2020-09-05 22:10:06
113.22.80.131	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-05 22:20:04
190.38.27.203	attackspambots	Honeypot attack, port: 445, PTR: 190-38-27-203.dyn.dsl.cantv.net.	2020-09-05 22:31:05
86.45.254.132	attackspambots	Sep 4 18:51:03 mellenthin postfix/smtpd[32584]: NOQUEUE: reject: RCPT from 86-45-254-132-dynamic.agg1.cab.bdt-fng.eircom.net[86.45.254.132]: 554 5.7.1 Service unavailable; Client host [86.45.254.132] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/86.45.254.132; from= to= proto=ESMTP helo=<86-45-254-132-dynamic.agg1.cab.bdt-fng.eircom.net>	2020-09-05 22:35:25
177.152.124.19	attack	Port Scan detected from 177.152.124.19 (BR/Brazil/Minas Gerais/Timóteo/-). 4 hits in the last 50 seconds	2020-09-05 22:07:26
178.86.210.81	attackspambots	Sep 4 18:51:49 mellenthin postfix/smtpd[32280]: NOQUEUE: reject: RCPT from unknown[178.86.210.81]: 554 5.7.1 Service unavailable; Client host [178.86.210.81] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/178.86.210.81; from= to= proto=ESMTP helo=<[178.86.210.81]>	2020-09-05 21:58:01
51.68.198.113	attackbotsspam	Sep 5 13:48:21 santamaria sshd\[3181\]: Invalid user zihang from 51.68.198.113 Sep 5 13:48:21 santamaria sshd\[3181\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.198.113 Sep 5 13:48:23 santamaria sshd\[3181\]: Failed password for invalid user zihang from 51.68.198.113 port 60372 ssh2 ...	2020-09-05 22:43:39
182.254.243.182	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-05 22:07:00
67.207.82.47	attackspam	TCP (SYN) 67.207.82.47:32767 -> port 8545, len 44	2020-09-05 22:10:31
197.51.216.156	attack	1599238270 - 09/04/2020 18:51:10 Host: 197.51.216.156/197.51.216.156 Port: 445 TCP Blocked	2020-09-05 22:27:55
210.9.47.154	attack	2020-09-05T07:41:42+0200 Failed SSH Authentication/Brute Force Attack.(Server 2)	2020-09-05 22:03:14

最近上报的IP列表

87.57.47.57	49.1.123.5	187.204.250.53	90.199.194.44
80.185.229.205	122.251.231.89	88.65.177.225	209.214.67.201
83.87.112.9	39.152.34.28	196.239.46.96	190.225.32.190
14.167.146.247	153.189.85.169	177.221.59.49	72.126.180.218
137.250.33.200	63.242.244.55	72.172.49.222	51.253.75.254