217.248.239.119

基本信息:

城市(city): Nürnberg

省份(region): Bayern

国家(country): Germany

运营商(isp): Telekom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See https://docs.db.ripe.net/terms-conditions.html

% Note: this output has been filtered.
%       To receive output for a database update, use the "-B" flag.

% Information related to '217.246.0.0 - 217.255.255.255'

% Abuse contact for '217.246.0.0 - 217.255.255.255' is 'abuse@telekom.de'

inetnum:        217.246.0.0 - 217.255.255.255
netname:        DTAG-DIAL17
descr:          Deutsche Telekom AG
org:            ORG-DTAG1-RIPE
country:        DE
admin-c:        DTIP
tech-c:         DTST
status:         ASSIGNED PA
mnt-by:         DTAG-NIC
created:        2002-08-21T14:16:47Z
last-modified:  2014-06-18T06:17:30Z
source:         RIPE

organisation:   ORG-DTAG1-RIPE
org-name:       Deutsche Telekom AG
org-type:       OTHER
address:        Group Information Security, SDA/Abuse
address:        Deutsche Telekom Allee 9
address:        DE 64295 Darmstadt
remarks:        abuse contact in case of Spam,
                hack attacks, illegal activity,
                violation, scans, probes, etc.
mnt-ref:        DTAG-NIC
mnt-by:         DTAG-NIC
abuse-c:        DTAG4-RIPE
created:        2014-06-17T11:47:04Z
last-modified:  2021-02-22T13:35:19Z
source:         RIPE # Filtered

person:         DTAG Global IP-Addressing
address:        Deutsche Telekom AG
address:        Darmstadt, Germany
phone:          +49 180 2 33 1000
nic-hdl:        DTIP
mnt-by:         DTAG-NIC
created:        2003-01-29T10:22:59Z
last-modified:  2019-05-14T12:55:19Z
source:         RIPE # Filtered

person:         Security Team
address:        Deutsche Telekom AG
address:        Darmstadt, Germany
phone:          +49 180 2 33 1000
nic-hdl:        DTST
mnt-by:         DTAG-NIC
created:        2003-01-29T10:31:11Z
last-modified:  2019-05-14T12:56:39Z
source:         RIPE # Filtered

% Information related to '217.224.0.0/11AS3320'

route:          217.224.0.0/11
descr:          Deutsche Telekom AG, Internet service provider
origin:         AS3320
member-of:      AS3320:RS-PA-TELEKOM
mnt-by:         DTAG-RR
created:        1970-01-01T00:00:00Z
last-modified:  2004-06-15T17:32:54Z
source:         RIPE

% This query was served by the RIPE Database Query Service version 1.121.1 (ABERDEEN)

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 217.248.239.119
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10389
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;217.248.239.119.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026031700 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 17 21:31:21 CST 2026
;; MSG SIZE  rcvd: 108

HOST信息:

119.239.248.217.in-addr.arpa domain name pointer pd9f8ef77.dip0.t-ipconnect.de.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
119.239.248.217.in-addr.arpa	name = pd9f8ef77.dip0.t-ipconnect.de.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.247.20.155	attackbotsspam	1598978801 - 09/01/2020 18:46:41 Host: 185.247.20.155/185.247.20.155 Port: 445 TCP Blocked	2020-09-02 22:14:14
145.239.78.59	attackspam	Invalid user admin from 145.239.78.59 port 38416	2020-09-02 22:26:03
125.162.217.150	attackspam	Unauthorized connection attempt from IP address 125.162.217.150 on Port 445(SMB)	2020-09-02 22:18:30
80.4.174.98	attackspam	Attempts against non-existent wp-login	2020-09-02 22:08:55
192.95.30.59	attack	192.95.30.59 - - [02/Sep/2020:15:06:23 +0100] "POST /wp-login.php HTTP/1.1" 200 6287 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.95.30.59 - - [02/Sep/2020:15:09:25 +0100] "POST /wp-login.php HTTP/1.1" 200 6287 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.95.30.59 - - [02/Sep/2020:15:12:27 +0100] "POST /wp-login.php HTTP/1.1" 200 6287 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ...	2020-09-02 22:29:05
31.13.115.5	attack	[Tue Sep 01 23:46:38.452014 2020] [:error] [pid 19950:tid 140264043071232] [client 31.13.115.5:43732] [client 31.13.115.5] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "staklim-malang.info"] [uri "/timeout-worker-v3.js"] [unique_id "X0567i9Xc5-xLXtRxShTZwABwgM"] ...	2020-09-02 22:18:07
81.68.128.198	attackspam	Invalid user praveen from 81.68.128.198 port 59378	2020-09-02 22:08:20
105.112.115.29	attackbots	Unauthorized connection attempt from IP address 105.112.115.29 on Port 445(SMB)	2020-09-02 22:32:51
108.11.1.25	attackbots	port scan and connect, tcp 23 (telnet)	2020-09-02 22:20:18
190.121.146.178	attack	Unauthorized connection attempt from IP address 190.121.146.178 on Port 445(SMB)	2020-09-02 22:23:20
54.37.86.192	attackbots	Sep 2 13:07:45 santamaria sshd\[11060\]: Invalid user pc from 54.37.86.192 Sep 2 13:07:45 santamaria sshd\[11060\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.86.192 Sep 2 13:07:48 santamaria sshd\[11060\]: Failed password for invalid user pc from 54.37.86.192 port 36442 ssh2 ...	2020-09-02 21:57:39
180.168.36.2	attack	(sshd) Failed SSH login from 180.168.36.2 (CN/China/Shanghai/Shanghai/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 2 03:58:46 atlas sshd[4537]: Invalid user ganyi from 180.168.36.2 port 27269 Sep 2 03:58:48 atlas sshd[4537]: Failed password for invalid user ganyi from 180.168.36.2 port 27269 ssh2 Sep 2 04:01:38 atlas sshd[5886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.36.2 user=root Sep 2 04:01:40 atlas sshd[5886]: Failed password for root from 180.168.36.2 port 36605 ssh2 Sep 2 04:03:05 atlas sshd[6390]: Invalid user joel from 180.168.36.2 port 16788	2020-09-02 22:25:44
162.142.125.34	attackspam	Unauthorized connection attempt detected from IP address 162.142.125.34 to port 8081 [T]	2020-09-02 21:55:40
222.173.12.35	attackspambots	$f2bV_matches	2020-09-02 22:25:04
124.199.133.231	attackspambots	SSH/22 MH Probe, BF, Hack -	2020-09-02 21:56:09

最近上报的IP列表

91.219.9.12	171.78.165.97	249.124.156.43	247.226.11.200
36.106.166.48	20.168.127.149	129.212.237.17	233.64.20.225
64.226.71.148	124.220.47.47	206.189.3.223	18.191.118.41
167.253.99.73	38.95.213.29	206.189.163.88	164.92.125.8
39.100.78.254	110.66.222.111	39.100.78.139	159.89.239.214