217.244.91.142

基本信息:

城市(city): Magdeburg

省份(region): Saxony-Anhalt

国家(country): Germany

运营商(isp): Deutsche Telekom AG

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2019-07-07 05:31:53,769 [snip] proftpd[26184] [snip].white.fastwebserver.de (pD9F45B8E.dip0.t-ipconnect.de[217.244.91.142]): USER log-458 (Login failed): No such user found 2019-07-07 05:50:38,324 [snip] proftpd[28459] [snip].white.fastwebserver.de (pD9F45B8E.dip0.t-ipconnect.de[217.244.91.142]): USER log-458 (Login failed): No such user found 2019-07-07 05:50:50,527 [snip] proftpd[28475] [snip].white.fastwebserver.de (pD9F45B8E.dip0.t-ipconnect.de[217.244.91.142]): USER log-458 (Login failed): No such user found[...]	2019-07-07 15:08:40

类型

评论内容

时间

attack

2019-07-07 05:31:53,769 [snip] proftpd[26184] [snip].white.fastwebserver.de (pD9F45B8E.dip0.t-ipconnect.de[217.244.91.142]): USER log-458 (Login failed): No such user found
2019-07-07 05:50:38,324 [snip] proftpd[28459] [snip].white.fastwebserver.de (pD9F45B8E.dip0.t-ipconnect.de[217.244.91.142]): USER log-458 (Login failed): No such user found
2019-07-07 05:50:50,527 [snip] proftpd[28475] [snip].white.fastwebserver.de (pD9F45B8E.dip0.t-ipconnect.de[217.244.91.142]): USER log-458 (Login failed): No such user found[...]

2019-07-07 15:08:40

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 217.244.91.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38821
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;217.244.91.142.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070700 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jul 07 15:08:29 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

142.91.244.217.in-addr.arpa domain name pointer pD9F45B8E.dip0.t-ipconnect.de.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
142.91.244.217.in-addr.arpa	name = pD9F45B8E.dip0.t-ipconnect.de.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
85.209.0.251	attack	Aug 13 01:02:30 localhost sshd[1068914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.209.0.251 user=root Aug 13 01:02:31 localhost sshd[1068914]: Failed password for root from 85.209.0.251 port 19806 ssh2 ...	2020-08-12 23:07:29
45.73.166.21	attack	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	2020-08-12 23:07:49
188.152.189.220	attackbots	Aug 12 17:09:23 OPSO sshd\[17702\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.152.189.220 user=root Aug 12 17:09:25 OPSO sshd\[17702\]: Failed password for root from 188.152.189.220 port 35587 ssh2 Aug 12 17:13:56 OPSO sshd\[18507\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.152.189.220 user=root Aug 12 17:13:58 OPSO sshd\[18507\]: Failed password for root from 188.152.189.220 port 41374 ssh2 Aug 12 17:18:31 OPSO sshd\[19199\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.152.189.220 user=root	2020-08-12 23:20:41
222.73.180.219	attackbotsspam	Aug 12 15:50:52 sso sshd[27403]: Failed password for root from 222.73.180.219 port 53756 ssh2 ...	2020-08-12 22:48:53
222.160.25.153	attackspambots	Unauthorised access (Aug 12) SRC=222.160.25.153 LEN=40 TTL=45 ID=63217 TCP DPT=8080 WINDOW=65202 SYN Unauthorised access (Aug 12) SRC=222.160.25.153 LEN=40 TTL=45 ID=47652 TCP DPT=8080 WINDOW=5483 SYN Unauthorised access (Aug 12) SRC=222.160.25.153 LEN=40 TTL=45 ID=16201 TCP DPT=8080 WINDOW=5483 SYN	2020-08-12 23:23:43
222.252.40.206	attack	1597236106 - 08/12/2020 14:41:46 Host: 222.252.40.206/222.252.40.206 Port: 445 TCP Blocked	2020-08-12 23:08:12
95.163.151.25	attack	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	2020-08-12 22:58:25
46.101.31.59	attack	46.101.31.59 - - [12/Aug/2020:16:29:36 +0200] "GET /wp-login.php HTTP/1.1" 200 6398 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.31.59 - - [12/Aug/2020:16:29:38 +0200] "POST /wp-login.php HTTP/1.1" 200 6649 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.31.59 - - [12/Aug/2020:16:29:39 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-12 23:27:48
117.50.36.137	attack	Aug 12 15:43:56 server sshd[13295]: Failed password for root from 117.50.36.137 port 48134 ssh2 Aug 12 15:48:19 server sshd[19296]: Failed password for root from 117.50.36.137 port 36064 ssh2 Aug 12 15:52:43 server sshd[25124]: Failed password for root from 117.50.36.137 port 52226 ssh2	2020-08-12 22:46:36
213.219.254.112	attackbotsspam	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	2020-08-12 22:53:47
167.71.36.101	attack	TCP (SYN) 167.71.36.101:40007 -> port 22, len 40	2020-08-12 23:25:51
218.92.0.165	attackspam	Aug 12 07:52:57 dignus sshd[16999]: Failed password for root from 218.92.0.165 port 34177 ssh2 Aug 12 07:53:02 dignus sshd[16999]: Failed password for root from 218.92.0.165 port 34177 ssh2 Aug 12 07:53:06 dignus sshd[16999]: Failed password for root from 218.92.0.165 port 34177 ssh2 Aug 12 07:53:09 dignus sshd[16999]: Failed password for root from 218.92.0.165 port 34177 ssh2 Aug 12 07:53:13 dignus sshd[16999]: Failed password for root from 218.92.0.165 port 34177 ssh2 ...	2020-08-12 23:24:27
128.199.96.1	attackspam	Aug 12 16:57:54 vps639187 sshd\[4788\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.96.1 user=root Aug 12 16:57:56 vps639187 sshd\[4788\]: Failed password for root from 128.199.96.1 port 57298 ssh2 Aug 12 16:59:45 vps639187 sshd\[4834\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.96.1 user=root ...	2020-08-12 23:13:57
66.78.1.85	attackspambots	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	2020-08-12 23:05:56
138.197.213.233	attackspambots	Aug 12 12:05:03 ws24vmsma01 sshd[241681]: Failed password for root from 138.197.213.233 port 36978 ssh2 ...	2020-08-12 23:15:10

最近上报的IP列表

218.155.202.145	189.129.157.80	42.72.184.30	51.253.2.1
104.225.166.94	119.184.255.89	114.139.143.143	95.141.142.46
112.225.80.236	212.12.2.2	122.116.242.179	27.72.62.246
221.124.215.74	140.213.3.13	119.236.77.24	73.133.162.19
118.99.99.23	183.28.62.1	62.78.81.28	154.117.159.102