209.141.55.242

基本信息:

城市(city): Las Vegas

省份(region): Nevada

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
209.141.55.105	attack	UDP 209.141.55.105:35031 -> port 123, len 220	2020-10-07 02:37:43
209.141.55.105	attackbots	UDP 209.141.55.105:38402 -> port 123, len 220	2020-10-06 18:35:09
209.141.55.247	attackbotsspam	Honeypot hit.	2020-06-13 01:10:18
209.141.55.175	attackspambots	Tor exit node	2020-05-28 05:12:54
209.141.55.11	attackspambots	Apr 30 00:10:10 s1 sshd\[16154\]: Invalid user test from 209.141.55.11 port 37520 Apr 30 00:10:10 s1 sshd\[16152\]: Invalid user ec2-user from 209.141.55.11 port 37506 Apr 30 00:10:10 s1 sshd\[16146\]: Invalid user java from 209.141.55.11 port 37516 Apr 30 00:10:10 s1 sshd\[16149\]: User root from 209.141.55.11 not allowed because not listed in AllowUsers Apr 30 00:10:10 s1 sshd\[16143\]: Invalid user devops from 209.141.55.11 port 37508 Apr 30 00:10:10 s1 sshd\[16148\]: User root from 209.141.55.11 not allowed because not listed in AllowUsers Apr 30 00:10:10 s1 sshd\[16144\]: Invalid user guest from 209.141.55.11 port 37510 Apr 30 00:10:10 s1 sshd\[16145\]: Invalid user postgres from 209.141.55.11 port 37524 Apr 30 00:10:10 s1 sshd\[16142\]: Invalid user oracle from 209.141.55.11 port 37518 Apr 30 00:10:10 s1 sshd\[16147\]: Invalid user user from 209.141.55.11 port 37528 Apr 30 00:10:10 s1 sshd\[16150\]: Invalid user ubuntu from 209.141.55.11 port 37530 Apr 30 00:10:10 s1 sshd\[16153\]: Invalid user openvpn	2020-04-30 06:13:28
209.141.55.11	attackbots	2020-04-28T14:41:33.085217vps751288.ovh.net sshd\[20158\]: Invalid user devops from 209.141.55.11 port 48938 2020-04-28T14:41:33.097518vps751288.ovh.net sshd\[20163\]: Invalid user test from 209.141.55.11 port 49156 2020-04-28T14:41:33.098641vps751288.ovh.net sshd\[20164\]: Invalid user oracle from 209.141.55.11 port 49154 2020-04-28T14:41:33.103262vps751288.ovh.net sshd\[20165\]: Invalid user guest from 209.141.55.11 port 49060 2020-04-28T14:41:33.104482vps751288.ovh.net sshd\[20162\]: Invalid user user from 209.141.55.11 port 49164 2020-04-28T14:41:33.105658vps751288.ovh.net sshd\[20160\]: Invalid user openvpn from 209.141.55.11 port 49150	2020-04-28 23:41:04
209.141.55.11	attackspam	Apr 27 20:07:01 XXXXXX sshd[31391]: Invalid user openvpn from 209.141.55.11 port 51892	2020-04-28 05:52:27
209.141.55.11	attackbotsspam	2020-04-27T14:04:31.746288vps773228.ovh.net sshd[2981]: Invalid user ubuntu from 209.141.55.11 port 39608 2020-04-27T14:04:31.747072vps773228.ovh.net sshd[2985]: Invalid user ec2-user from 209.141.55.11 port 39584 2020-04-27T14:04:31.747791vps773228.ovh.net sshd[2983]: Invalid user openvpn from 209.141.55.11 port 39592 2020-04-27T14:04:31.748514vps773228.ovh.net sshd[2989]: Invalid user user from 209.141.55.11 port 39606 2020-04-27T14:04:31.759264vps773228.ovh.net sshd[2984]: Invalid user guest from 209.141.55.11 port 39588 ...	2020-04-27 23:15:19
209.141.55.11	attackbots	(sshd) Failed SSH login from 209.141.55.11 (US/United States/not.a.sb.co): 10 in the last 3600 secs	2020-04-27 01:23:42
209.141.55.11	attack	Apr 25 18:17:46 XXX sshd[18902]: Invalid user ubuntu from 209.141.55.11 port 56426	2020-04-26 08:01:30
209.141.55.11	attackbotsspam	2020-04-25T09:19:23.838371xentho-1 sshd[153989]: Invalid user postgres from 209.141.55.11 port 51638 2020-04-25T09:19:28.421581xentho-1 sshd[153989]: Failed password for invalid user postgres from 209.141.55.11 port 51638 ssh2 2020-04-25T09:19:26.136517xentho-1 sshd[153994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.141.55.11 user=openvpn 2020-04-25T09:19:28.424718xentho-1 sshd[153994]: Failed password for openvpn from 209.141.55.11 port 51626 ssh2 2020-04-25T09:19:26.137343xentho-1 sshd[153993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.141.55.11 user=nobody 2020-04-25T09:19:28.426429xentho-1 sshd[153993]: Failed password for nobody from 209.141.55.11 port 51624 ssh2 2020-04-25T09:19:26.155525xentho-1 sshd[153997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.141.55.11 user=root 2020-04-25T09:19:28.447444xentho-1 sshd[153997]: Failed pas ...	2020-04-26 01:36:36
209.141.55.11	attack	Apr 24 17:22:02 yolandtech-ams3 sshd\[10712\]: Invalid user ec2-user from 209.141.55.11 Apr 24 17:22:02 yolandtech-ams3 sshd\[10720\]: Invalid user devops from 209.141.55.11 Apr 24 17:22:02 yolandtech-ams3 sshd\[10715\]: Invalid user user from 209.141.55.11 Apr 24 17:22:02 yolandtech-ams3 sshd\[10721\]: Invalid user openvpn from 209.141.55.11 Apr 24 17:22:02 yolandtech-ams3 sshd\[10719\]: Invalid user ubuntu from 209.141.55.11 Apr 24 17:22:02 yolandtech-ams3 sshd\[10716\]: Invalid user vagrant from 209.141.55.11 Apr 24 17:22:02 yolandtech-ams3 sshd\[10723\]: Invalid user oracle from 209.141.55.11 Apr 24 17:22:02 yolandtech-ams3 sshd\[10713\]: Invalid user java from 209.141.55.11 Apr 24 17:22:02 yolandtech-ams3 sshd\[10714\]: Invalid user test from 209.141.55.11 Apr 24 17:22:02 yolandtech-ams3 sshd\[10722\]: Invalid user guest from 209.141.55.11 ...	2020-04-25 05:22:53
209.141.55.11	attack	2020-04-22T05:16:04.248351hessvillage.com sshd\[27860\]: Invalid user test from 209.141.55.11 2020-04-22T05:16:04.249124hessvillage.com sshd\[27854\]: Invalid user devops from 209.141.55.11 2020-04-22T05:16:04.249477hessvillage.com sshd\[27861\]: Invalid user oracle from 209.141.55.11 2020-04-22T05:16:04.249478hessvillage.com sshd\[27855\]: Invalid user ec2-user from 209.141.55.11 2020-04-22T05:16:04.251424hessvillage.com sshd\[27858\]: Invalid user guest from 209.141.55.11 2020-04-22T05:16:04.258208hessvillage.com sshd\[27856\]: Invalid user ubuntu from 209.141.55.11 2020-04-22T05:16:04.262253hessvillage.com sshd\[27863\]: Invalid user user from 209.141.55.11 2020-04-22T05:16:04.272698hessvillage.com sshd\[27865\]: Invalid user java from 209.141.55.11 ...	2020-04-22 20:20:14
209.141.55.11	attackbotsspam	Apr 21 16:39:22 nextcloud sshd\[16606\]: Invalid user oracle from 209.141.55.11 Apr 21 16:39:22 nextcloud sshd\[16603\]: Invalid user postgres from 209.141.55.11 Apr 21 16:39:22 nextcloud sshd\[16601\]: Invalid user test from 209.141.55.11 Apr 21 16:39:22 nextcloud sshd\[16602\]: Invalid user java from 209.141.55.11 Apr 21 16:39:22 nextcloud sshd\[16599\]: Invalid user user from 209.141.55.11 Apr 21 16:39:22 nextcloud sshd\[16605\]: Invalid user ec2-user from 209.141.55.11 Apr 21 16:39:22 nextcloud sshd\[16608\]: Invalid user vagrant from 209.141.55.11	2020-04-22 01:59:16
209.141.55.11	attackspambots	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-04-20 22:20:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 209.141.55.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11746
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;209.141.55.242.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025011801 1800 900 604800 86400

;; Query time: 41 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 19 07:37:41 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

242.55.141.209.in-addr.arpa domain name pointer storage.kadgar.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
242.55.141.209.in-addr.arpa	name = storage.kadgar.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
41.185.31.37	attack	Dec 19 06:17:52 sd-53420 sshd\[23586\]: Invalid user burgan from 41.185.31.37 Dec 19 06:17:52 sd-53420 sshd\[23586\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.185.31.37 Dec 19 06:17:54 sd-53420 sshd\[23586\]: Failed password for invalid user burgan from 41.185.31.37 port 38938 ssh2 Dec 19 06:19:10 sd-53420 sshd\[24055\]: Invalid user burgandy from 41.185.31.37 Dec 19 06:19:10 sd-53420 sshd\[24055\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.185.31.37 ...	2019-12-19 13:24:26
45.143.220.70	attackspam	\[2019-12-18 23:54:38\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-18T23:54:38.404-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441603976972",SessionID="0x7f0fb4b5bf98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.70/57392",ACLName="no_extension_match" \[2019-12-18 23:55:10\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-18T23:55:10.261-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="00441603976972",SessionID="0x7f0fb4859c28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.70/54696",ACLName="no_extension_match" \[2019-12-18 23:55:38\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-18T23:55:38.539-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="000441603976972",SessionID="0x7f0fb4b5bf98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.70/56963",ACLName="no_ext	2019-12-19 13:15:05
180.182.47.132	attackspam	Dec 19 05:55:03 nextcloud sshd\[18539\]: Invalid user dips21 from 180.182.47.132 Dec 19 05:55:03 nextcloud sshd\[18539\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.182.47.132 Dec 19 05:55:05 nextcloud sshd\[18539\]: Failed password for invalid user dips21 from 180.182.47.132 port 34667 ssh2 ...	2019-12-19 13:25:06
112.11.109.113	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-19 13:46:57
142.93.33.62	attackbots	Dec 19 05:44:17 Ubuntu-1404-trusty-64-minimal sshd\[10035\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.33.62 user=root Dec 19 05:44:19 Ubuntu-1404-trusty-64-minimal sshd\[10035\]: Failed password for root from 142.93.33.62 port 43754 ssh2 Dec 19 05:55:28 Ubuntu-1404-trusty-64-minimal sshd\[15792\]: Invalid user apache from 142.93.33.62 Dec 19 05:55:28 Ubuntu-1404-trusty-64-minimal sshd\[15792\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.33.62 Dec 19 05:55:30 Ubuntu-1404-trusty-64-minimal sshd\[15792\]: Failed password for invalid user apache from 142.93.33.62 port 58532 ssh2	2019-12-19 13:27:54
134.209.178.109	attackbotsspam	Dec 18 19:06:40 hpm sshd\[31951\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.178.109 user=root Dec 18 19:06:42 hpm sshd\[31951\]: Failed password for root from 134.209.178.109 port 34680 ssh2 Dec 18 19:11:34 hpm sshd\[32555\]: Invalid user test123 from 134.209.178.109 Dec 18 19:11:34 hpm sshd\[32555\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.178.109 Dec 18 19:11:37 hpm sshd\[32555\]: Failed password for invalid user test123 from 134.209.178.109 port 41978 ssh2	2019-12-19 13:20:44
159.203.201.155	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-19 13:32:09
112.85.42.238	attackspam	2019-12-19T05:12:43.173153+00:00 suse sshd[24571]: User root from 112.85.42.238 not allowed because not listed in AllowUsers 2019-12-19T05:12:45.787586+00:00 suse sshd[24571]: error: PAM: Authentication failure for illegal user root from 112.85.42.238 2019-12-19T05:12:43.173153+00:00 suse sshd[24571]: User root from 112.85.42.238 not allowed because not listed in AllowUsers 2019-12-19T05:12:45.787586+00:00 suse sshd[24571]: error: PAM: Authentication failure for illegal user root from 112.85.42.238 2019-12-19T05:12:43.173153+00:00 suse sshd[24571]: User root from 112.85.42.238 not allowed because not listed in AllowUsers 2019-12-19T05:12:45.787586+00:00 suse sshd[24571]: error: PAM: Authentication failure for illegal user root from 112.85.42.238 2019-12-19T05:12:45.792062+00:00 suse sshd[24571]: Failed keyboard-interactive/pam for invalid user root from 112.85.42.238 port 34934 ssh2 ...	2019-12-19 13:14:52
134.175.103.114	attackbots	Dec 19 06:30:37 markkoudstaal sshd[12967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.103.114 Dec 19 06:30:39 markkoudstaal sshd[12967]: Failed password for invalid user gretal from 134.175.103.114 port 42480 ssh2 Dec 19 06:37:46 markkoudstaal sshd[13681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.103.114	2019-12-19 13:45:20
221.132.17.81	attack	Dec 19 07:44:41 server sshd\[5119\]: Invalid user barroeta from 221.132.17.81 Dec 19 07:44:41 server sshd\[5119\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.132.17.81 Dec 19 07:44:43 server sshd\[5119\]: Failed password for invalid user barroeta from 221.132.17.81 port 36548 ssh2 Dec 19 07:55:28 server sshd\[8431\]: Invalid user chalfant from 221.132.17.81 Dec 19 07:55:28 server sshd\[8431\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.132.17.81 ...	2019-12-19 13:30:11
59.99.41.221	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 19-12-2019 04:55:17.	2019-12-19 13:37:34
112.85.42.89	attack	$f2bV_matches	2019-12-19 13:22:31
37.19.194.46	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2019-12-19 13:38:21
218.92.36.66	attack	$f2bV_matches	2019-12-19 13:11:31
103.60.212.2	attack	Dec 19 06:31:52 ns381471 sshd[21662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.60.212.2 Dec 19 06:31:55 ns381471 sshd[21662]: Failed password for invalid user rpc from 103.60.212.2 port 52922 ssh2	2019-12-19 13:35:41

最近上报的IP列表

209.141.55.119	149.6.181.201	123.37.237.124	104.107.45.146
128.199.175.149	131.214.21.149	205.29.152.46	51.152.120.97
37.97.224.119	159.164.31.68	115.14.159.222	242.57.225.249
6.155.142.17	50.6.200.87	164.135.178.204	31.98.120.140
138.139.104.147	147.75.61.24	18.14.224.77	244.215.228.203