211.139.241.211

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Mobile Communications Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Auto Detect Rule! proto TCP (SYN), 211.139.241.211:58829->gjan.info:23, len 40	2020-08-26 06:26:05

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 211.139.241.211
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62109
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;211.139.241.211.		IN	A

;; AUTHORITY SECTION:
.			286	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082501 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Aug 26 06:26:02 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 211.241.139.211.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 211.241.139.211.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
103.125.251.140	attackbotsspam	Nov 30 21:42:10 gw1 sshd[1357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.125.251.140 Nov 30 21:42:12 gw1 sshd[1357]: Failed password for invalid user dovecot from 103.125.251.140 port 46872 ssh2 ...	2019-12-01 00:45:07
190.202.54.12	attackbots	Nov 30 17:20:49 [host] sshd[22439]: Invalid user yousef from 190.202.54.12 Nov 30 17:20:49 [host] sshd[22439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.202.54.12 Nov 30 17:20:51 [host] sshd[22439]: Failed password for invalid user yousef from 190.202.54.12 port 8879 ssh2	2019-12-01 00:32:39
14.98.22.30	attackbots	fail2ban	2019-12-01 00:47:33
222.233.53.132	attackbots	$f2bV_matches	2019-12-01 00:21:14
185.184.221.27	attack	Nov 30 08:55:26 sshd[17729]: Connection from 185.184.221.27 port 39965 on server Nov 30 08:55:27 sshd[17729]: Received disconnect from 185.184.221.27: 11: Bye Bye [preauth]	2019-12-01 00:11:33
185.176.27.2	attack	Nov 30 16:45:19 h2177944 kernel: \[8003978.121423\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.2 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=41238 PROTO=TCP SPT=8080 DPT=20337 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 30 16:45:59 h2177944 kernel: \[8004018.997020\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.2 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=14362 PROTO=TCP SPT=8080 DPT=21508 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 30 16:50:49 h2177944 kernel: \[8004308.168485\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.2 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=7543 PROTO=TCP SPT=8080 DPT=20680 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 30 17:00:42 h2177944 kernel: \[8004901.097559\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.2 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=11268 PROTO=TCP SPT=8080 DPT=20204 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 30 17:03:57 h2177944 kernel: \[8005096.476055\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.2 DST=85.214.117.9 LEN=4	2019-12-01 00:25:09
40.86.179.170	attackbotsspam	Nov 30 04:47:27 php1 sshd\[10956\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.86.179.170 user=root Nov 30 04:47:29 php1 sshd\[10956\]: Failed password for root from 40.86.179.170 port 17344 ssh2 Nov 30 04:51:09 php1 sshd\[11312\]: Invalid user bot from 40.86.179.170 Nov 30 04:51:09 php1 sshd\[11312\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.86.179.170 Nov 30 04:51:10 php1 sshd\[11312\]: Failed password for invalid user bot from 40.86.179.170 port 17344 ssh2	2019-12-01 00:46:37
113.173.116.132	attackbots	Nov 27 07:47:32 pl3server sshd[12182]: Address 113.173.116.132 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Nov 27 07:47:32 pl3server sshd[12182]: Invalid user admin from 113.173.116.132 Nov 27 07:47:32 pl3server sshd[12182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.173.116.132 Nov 27 07:47:33 pl3server sshd[12182]: Failed password for invalid user admin from 113.173.116.132 port 44617 ssh2 Nov 27 07:47:34 pl3server sshd[12182]: Connection closed by 113.173.116.132 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=113.173.116.132	2019-12-01 00:15:25
94.190.50.238	attack	Unauthorised access (Nov 30) SRC=94.190.50.238 LEN=52 TTL=119 ID=31704 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Nov 30) SRC=94.190.50.238 LEN=52 TTL=119 ID=24615 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-01 00:39:56
92.118.37.88	attackspam	11/30/2019-10:07:01.182684 92.118.37.88 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-01 00:37:51
180.76.162.111	attackbots	Nov 30 16:47:52 MK-Soft-VM7 sshd[1091]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.162.111 Nov 30 16:47:55 MK-Soft-VM7 sshd[1091]: Failed password for invalid user sashida from 180.76.162.111 port 38073 ssh2 ...	2019-12-01 00:29:45
31.154.79.114	attack	Fail2Ban Ban Triggered	2019-12-01 00:28:54
116.196.82.187	attack	Nov 30 14:45:19 h1637304 sshd[2209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.82.187 Nov 30 14:45:22 h1637304 sshd[2209]: Failed password for invalid user shara from 116.196.82.187 port 33009 ssh2 Nov 30 14:45:22 h1637304 sshd[2209]: Received disconnect from 116.196.82.187: 11: Bye Bye [preauth] Nov 30 15:20:19 h1637304 sshd[2152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.82.187 Nov 30 15:20:21 h1637304 sshd[2152]: Failed password for invalid user pentaho from 116.196.82.187 port 44107 ssh2 Nov 30 15:20:22 h1637304 sshd[2152]: Received disconnect from 116.196.82.187: 11: Bye Bye [preauth] Nov 30 15:23:54 h1637304 sshd[2260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.82.187 Nov 30 15:23:56 h1637304 sshd[2260]: Failed password for invalid user zf from 116.196.82.187 port 58175 ssh2 Nov 30 15:23:57 h1637304 s........ -------------------------------	2019-12-01 00:14:33
202.131.126.142	attackbots	$f2bV_matches	2019-12-01 00:26:22
162.144.217.210	attack	Automatic report - XMLRPC Attack	2019-12-01 00:27:04

最近上报的IP列表

134.175.146.231	40.76.92.191	189.203.194.163	138.36.204.189
5.189.152.169	103.97.86.32	67.179.10.69	93.141.94.160
35.188.201.240	183.147.2.5	161.35.49.187	171.221.206.182
42.6.170.217	103.31.144.185	102.252.64.63	106.37.222.110
103.145.13.171	88.73.176.251	4.106.200.187	167.99.235.124