192.241.214.4 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
192.241.214.48	attack	firewall-block, port(s): 6379/tcp	2020-10-08 06:39:57
192.241.214.142	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-08 01:02:48
192.241.214.48	attackbotsspam	scans once in preceeding hours on the ports (in chronological order) 9042 resulting in total of 71 scans from 192.241.128.0/17 block.	2020-10-07 23:00:58
192.241.214.142	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-07 17:11:35
192.241.214.48	attack	Metasploit VxWorks WDB Agent Scanner Detection	2020-10-07 15:06:12
192.241.214.46	attackbotsspam	192.241.214.46 - - - [06/Oct/2020:19:51:34 +0200] "GET /portal/redlion HTTP/1.1" 404 162 "-" "Mozilla/5.0 zgrab/0.x" "-" "-"	2020-10-07 03:06:02
192.241.214.46	attack	389/tcp 5903/tcp 3306/tcp... [2020-09-16/10-06]21pkt,19pt.(tcp),1pt.(udp)	2020-10-06 19:05:49
192.241.214.172	attack	TCP port : 5984	2020-10-05 21:39:21
192.241.214.172	attack	Port scan: Attack repeated for 24 hours	2020-10-05 13:33:03
192.241.214.172	attack	Port Scan ...	2020-10-04 05:41:00
192.241.214.172	attack	TCP (SYN) 192.241.214.172:46488 -> port 58950, len 44	2020-10-03 13:22:37
192.241.214.165	attack	Found on CINS badguys / proto=6 . srcport=52605 . dstport=49152 . (1011)	2020-10-02 02:18:43
192.241.214.165	attack	8140/tcp 58836/tcp 179/tcp... [2020-09-18/10-01]13pkt,11pt.(tcp),1pt.(udp)	2020-10-01 18:27:01
192.241.214.210	attackbotsspam	Threat Management Alert 3: Detection of a Network Scan. Signature ET SCAN Zmap User-Agent (Inbound). From: 192.241.214.210:57630, to: 192.168.x.x:80, protocol: TCP	2020-10-01 04:32:56
192.241.214.210	attack	Threat Management Alert 3: Detection of a Network Scan. Signature ET SCAN Zmap User-Agent (Inbound). From: 192.241.214.210:57630, to: 192.168.x.x:80, protocol: TCP	2020-09-30 20:45:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.241.214.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30146
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;192.241.214.4.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 02:03:46 CST 2022
;; MSG SIZE  rcvd: 106

Host info

4.214.241.192.in-addr.arpa domain name pointer zg-0122d-170.stretchoid.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
4.214.241.192.in-addr.arpa	name = zg-0122d-170.stretchoid.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
95.141.135.171	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931)	2019-08-05 19:02:12
31.146.212.220	attack	[portscan] tcp/23 [TELNET] *(RWIN=13175)(08050931)	2019-08-05 18:40:55
80.19.251.81	attackspam	[portscan] tcp/23 [TELNET] *(RWIN=38582)(08050931)	2019-08-05 19:17:41
103.106.22.77	attackbotsspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931)	2019-08-05 18:48:15
113.23.141.107	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(08050931)	2019-08-05 19:26:02
154.90.10.85	attackspambots	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(08050931)	2019-08-05 18:26:46
84.108.209.196	attackbots	[portscan] tcp/23 [TELNET] *(RWIN=6836)(08050931)	2019-08-05 18:49:44
194.58.70.211	attackspam	Unauthorized connection attempt from IP address 194.58.70.211 on Port 445(SMB)	2019-08-05 18:55:23
192.64.86.80	attackbots	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931)	2019-08-05 18:55:58
177.54.110.35	attackbots	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931)	2019-08-05 18:57:47
157.230.141.158	attack	Aug 5 05:34:19 bilbo sshd\[1205\]: Invalid user admin from 157.230.141.158\ Aug 5 05:34:20 bilbo sshd\[1207\]: Invalid user admin from 157.230.141.158\ Aug 5 05:34:20 bilbo sshd\[1209\]: Invalid user user from 157.230.141.158\ Aug 5 05:34:21 bilbo sshd\[1211\]: Invalid user ubnt from 157.230.141.158\	2019-08-05 19:23:10
121.237.224.22	attackspambots	[portscan] tcp/22 [SSH] *(RWIN=40714)(08050931)	2019-08-05 19:15:43
77.235.19.4	attackbots	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931)	2019-08-05 18:35:13
85.96.203.120	attack	[portscan] tcp/23 [TELNET] *(RWIN=35825)(08050931)	2019-08-05 18:49:15
88.42.232.9	attackbotsspam	[portscan] tcp/23 [TELNET] *(RWIN=46123)(08050931)	2019-08-05 19:27:14

Recently Reported IPs

43.239.121.143	165.22.84.203	186.15.8.216	82.54.8.180
46.99.178.247	42.235.0.13	123.231.21.197	80.215.180.6
103.94.236.105	106.105.205.95	89.255.73.85	31.186.84.97
111.19.125.55	119.42.94.204	176.97.110.214	102.133.189.81
149.34.16.12	159.192.152.228	106.58.27.62	122.191.204.179