211.39.195.249

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea (the Republic of)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 211.39.195.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27555
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;211.39.195.249.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021200 1800 900 604800 86400

;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 13 00:36:48 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 249.195.39.211.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 249.195.39.211.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
111.229.3.73	attack	Feb 13 14:48:18 [host] sshd[13051]: Invalid user n Feb 13 14:48:18 [host] sshd[13051]: pam_unix(sshd: Feb 13 14:48:20 [host] sshd[13051]: Failed passwor	2020-02-14 00:43:31
111.248.60.46	attack	Mirai and Reaper Exploitation Traffic	2020-02-14 00:43:08
27.106.18.218	attackbots	pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.106.18.218 Failed password for invalid user testftp from 27.106.18.218 port 46074 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.106.18.218	2020-02-14 01:14:03
191.5.119.91	attackbotsspam	Automatic report - Port Scan Attack	2020-02-14 01:09:31
107.210.153.95	attackbotsspam	Telnet/23 MH Probe, BF, Hack -	2020-02-14 01:01:16
115.42.151.75	attackbots	Feb 13 17:42:28 silence02 sshd[23964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.42.151.75 Feb 13 17:42:31 silence02 sshd[23964]: Failed password for invalid user cher from 115.42.151.75 port 46021 ssh2 Feb 13 17:45:53 silence02 sshd[25554]: Failed password for root from 115.42.151.75 port 14676 ssh2	2020-02-14 00:47:14
178.23.151.66	attackspambots	Feb 13 06:39:28 server1 sshd\[23178\]: Failed password for invalid user yarn from 178.23.151.66 port 34653 ssh2 Feb 13 06:43:48 server1 sshd\[5575\]: Invalid user yarn from 178.23.151.66 Feb 13 06:43:48 server1 sshd\[5575\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.23.151.66 Feb 13 06:43:50 server1 sshd\[5575\]: Failed password for invalid user yarn from 178.23.151.66 port 45138 ssh2 Feb 13 06:48:16 server1 sshd\[3154\]: Invalid user yarn from 178.23.151.66 ...	2020-02-14 00:46:39
111.93.156.74	attackbotsspam	Feb 13 17:58:40 MK-Soft-Root2 sshd[18356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.156.74 Feb 13 17:58:42 MK-Soft-Root2 sshd[18356]: Failed password for invalid user sandin from 111.93.156.74 port 37368 ssh2 ...	2020-02-14 01:02:49
141.8.132.9	attackspam	[Thu Feb 13 20:48:12.442472 2020] [:error] [pid 5260:tid 140369236838144] [client 141.8.132.9:42647] [client 141.8.132.9] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XkVTnDu2DnY6B6UC0cpgPQAAAU4"] ...	2020-02-14 00:51:14
14.215.176.179	attackspam	ICMP MH Probe, Scan /Distributed -	2020-02-14 00:52:10
183.131.110.99	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 564491af4f9ee4c4 \| WAF_Rule_ID: 1aff1cdfeb5c4074965d7cd85bfc1d4e \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.2; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.100 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2020-02-14 01:10:16
18.162.232.168	attack	ICMP MH Probe, Scan /Distributed -	2020-02-14 00:33:04
1.231.5.253	attackbotsspam	Telnet/23 MH Probe, BF, Hack -	2020-02-14 01:06:05
111.59.93.76	attackbots	2020-02-13T08:41:57.144798linuxbox sshd[69128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.59.93.76 user=root 2020-02-13T08:41:58.841552linuxbox sshd[69128]: Failed password for root from 111.59.93.76 port 64586 ssh2 ...	2020-02-14 00:42:30
185.143.223.168	attackbots	Feb 13 17:22:06 grey postfix/smtpd\[21498\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.168\]: 554 5.7.1 Service unavailable\; Client host \[185.143.223.168\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[185.143.223.168\]\; from=\ to=\ proto=ESMTP helo=\<\[185.143.223.97\]\> ...	2020-02-14 00:50:53

最近上报的IP列表

239.189.64.11	124.91.242.246	185.107.105.221	185.62.153.234
196.192.133.230	166.158.152.48	135.188.155.204	231.47.194.131
16.117.196.14	69.131.89.177	140.184.238.110	141.27.180.170
53.36.187.81	225.166.221.251	206.48.83.240	172.87.225.160
19.177.240.115	218.169.87.101	131.246.208.25	88.85.42.66