214.217.111.42

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 214.217.111.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59477
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;214.217.111.42.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020500 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 19:47:47 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

b'Host 42.111.217.214.in-addr.arpa not found: 2(SERVFAIL)
'

NSLOOKUP信息:

server can't find 214.217.111.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
51.91.249.178	attackbotsspam	Oct 14 19:18:27 apollo sshd\[13495\]: Invalid user mitchell from 51.91.249.178Oct 14 19:18:29 apollo sshd\[13495\]: Failed password for invalid user mitchell from 51.91.249.178 port 42310 ssh2Oct 14 19:31:24 apollo sshd\[13585\]: Failed password for root from 51.91.249.178 port 46366 ssh2 ...	2019-10-15 02:54:09
188.247.207.89	attack	Port 1433 Scan	2019-10-15 03:20:00
183.2.88.15	attack	1 pkts, ports: TCP:1433	2019-10-15 03:24:54
89.109.112.90	attack	fail2ban honeypot	2019-10-15 03:28:33
202.98.203.29	attackbots	" "	2019-10-15 02:58:38
96.243.113.135	attack	Automatic report - Port Scan Attack	2019-10-15 03:07:09
46.229.168.136	attack	Malicious Traffic/Form Submission	2019-10-15 03:22:41
62.234.190.190	attack	Oct 14 10:54:46 keyhelp sshd[22179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.190.190 user=r.r Oct 14 10:54:49 keyhelp sshd[22179]: Failed password for r.r from 62.234.190.190 port 51066 ssh2 Oct 14 10:54:49 keyhelp sshd[22179]: Received disconnect from 62.234.190.190 port 51066:11: Bye Bye [preauth] Oct 14 10:54:49 keyhelp sshd[22179]: Disconnected from 62.234.190.190 port 51066 [preauth] Oct 14 11:14:40 keyhelp sshd[26997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.190.190 user=r.r Oct 14 11:14:42 keyhelp sshd[26997]: Failed password for r.r from 62.234.190.190 port 43060 ssh2 Oct 14 11:14:43 keyhelp sshd[26997]: Received disconnect from 62.234.190.190 port 43060:11: Bye Bye [preauth] Oct 14 11:14:43 keyhelp sshd[26997]: Disconnected from 62.234.190.190 port 43060 [preauth] Oct 14 11:19:46 keyhelp sshd[27864]: pam_unix(sshd:auth): authentication failure; lognam........ -------------------------------	2019-10-15 02:55:45
120.89.64.8	attackbots	Oct 14 16:24:41 server sshd[50408]: Failed password for invalid user marry from 120.89.64.8 port 58798 ssh2 Oct 14 16:34:46 server sshd[52533]: Failed password for root from 120.89.64.8 port 53446 ssh2 Oct 14 16:39:10 server sshd[53495]: Failed password for invalid user bi from 120.89.64.8 port 35288 ssh2	2019-10-15 03:25:27
13.211.1.93	attack	wp4.breidenba.ch 13.211.1.93 \[14/Oct/2019:13:42:36 +0200\] "POST /wp-login.php HTTP/1.1" 200 5603 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" wp4.breidenba.ch 13.211.1.93 \[14/Oct/2019:13:42:38 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4083 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-10-15 03:18:14
167.99.159.35	attackbots	Oct 14 16:36:46 www sshd\[5653\]: Invalid user acalendra from 167.99.159.35 Oct 14 16:36:46 www sshd\[5653\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.159.35 Oct 14 16:36:48 www sshd\[5653\]: Failed password for invalid user acalendra from 167.99.159.35 port 43228 ssh2 ...	2019-10-15 03:14:52
45.146.203.160	attackbots	Lines containing failures of 45.146.203.160 Oct 14 13:04:36 shared01 postfix/smtpd[25993]: connect from heavy.sckenz.com[45.146.203.160] Oct 14 13:04:36 shared01 policyd-spf[27071]: prepend Received-SPF: Pass (mailfrom) identhostnamey=mailfrom; client-ip=45.146.203.160; helo=heavy.movsse.com; envelope-from=x@x Oct x@x Oct 14 13:04:36 shared01 postfix/smtpd[25993]: disconnect from heavy.sckenz.com[45.146.203.160] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Oct 14 13:09:59 shared01 postfix/smtpd[20288]: connect from heavy.sckenz.com[45.146.203.160] Oct 14 13:10:00 shared01 policyd-spf[27276]: prepend Received-SPF: Pass (mailfrom) identhostnamey=mailfrom; client-ip=45.146.203.160; helo=heavy.movsse.com; envelope-from=x@x Oct x@x Oct 14 13:10:00 shared01 postfix/smtpd[20288]: disconnect from heavy.sckenz.com[45.146.203.160] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Oct 14 13:11:35 shared01 postfix/smtpd[29973]: connect from heavy.sckenz.com[45.1........ ------------------------------	2019-10-15 03:06:20
59.95.159.232	attack	port scan and connect, tcp 80 (http)	2019-10-15 03:19:29
45.82.34.237	attackbots	$f2bV_matches	2019-10-15 02:53:52
185.216.140.252	attackspam	10/14/2019-20:39:05.013541 185.216.140.252 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-15 02:54:23

最近上报的IP列表

187.220.164.28	209.58.226.177	63.159.6.164	204.6.236.169
71.191.207.25	70.111.153.85	214.141.249.40	141.231.122.60
16.132.118.194	217.82.112.204	38.29.173.82	205.126.227.133
250.121.97.108	6.116.120.209	192.185.81.94	242.127.225.25
202.215.10.68	242.151.36.141	38.8.119.17	9.32.160.8