109.168.248.12

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.168.248.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43885
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;109.168.248.12.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022801 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 01 04:09:04 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

12.248.168.109.in-addr.arpa domain name pointer host-109-168-248-12.stavropol.ru.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
12.248.168.109.in-addr.arpa	name = host-109-168-248-12.stavropol.ru.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
113.166.127.210	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 27-12-2019 06:25:16.	2019-12-27 18:49:29
49.88.112.116	attackbots	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.116 user=root Failed password for root from 49.88.112.116 port 58455 ssh2 Failed password for root from 49.88.112.116 port 58455 ssh2 Failed password for root from 49.88.112.116 port 58455 ssh2 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.116 user=root	2019-12-27 18:54:42
85.93.20.70	attack	alert tcp $EXTERNAL_NET any -> $HOME_NET !3389 (msg:"ET SCAN MS Terminal Server Traffic on Non-standard Port"; flow:to_server,established; content:"\|03 00 00\|"; depth:3; content:"\|e0 00 00 00 00 00\|"; offset:5; depth:6; content:"Cookie\|3a\| mstshash="; fast_pattern; classtype:attempted-recon; sid:2023753; rev:2; metadata:affected_product Microsoft_Terminal_Server_RDP, attack_target Server, deployment Perimeter, signature_severity Major, created_at 2017_01_23, performance_impact Low, updated_at 2017_02_23;)	2019-12-27 18:44:29
222.186.173.215	attackbots	2019-12-27T11:44:50.185220ns386461 sshd\[3010\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root 2019-12-27T11:44:51.548374ns386461 sshd\[3010\]: Failed password for root from 222.186.173.215 port 37388 ssh2 2019-12-27T11:44:55.428643ns386461 sshd\[3010\]: Failed password for root from 222.186.173.215 port 37388 ssh2 2019-12-27T11:44:58.857526ns386461 sshd\[3010\]: Failed password for root from 222.186.173.215 port 37388 ssh2 2019-12-27T11:45:03.440245ns386461 sshd\[3010\]: Failed password for root from 222.186.173.215 port 37388 ssh2 ...	2019-12-27 18:46:41
112.85.42.227	attackbots	Dec 27 06:05:44 TORMINT sshd\[3515\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.227 user=root Dec 27 06:05:46 TORMINT sshd\[3515\]: Failed password for root from 112.85.42.227 port 36328 ssh2 Dec 27 06:11:07 TORMINT sshd\[3820\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.227 user=root ...	2019-12-27 19:15:09
139.155.118.190	attack	$f2bV_matches	2019-12-27 18:58:33
156.223.245.177	attackbotsspam	Dec 27 07:24:51 vpn01 sshd[10064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.223.245.177 Dec 27 07:24:53 vpn01 sshd[10064]: Failed password for invalid user admin from 156.223.245.177 port 41222 ssh2 ...	2019-12-27 19:16:20
49.232.162.53	attack	$f2bV_matches	2019-12-27 19:00:06
37.49.230.67	attackbotsspam	Host Scan	2019-12-27 19:19:32
157.245.217.186	attack	157.245.217.186 - - \[27/Dec/2019:08:00:53 +0100\] "POST /wp-login.php HTTP/1.0" 200 3080 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 157.245.217.186 - - \[27/Dec/2019:08:00:55 +0100\] "POST /wp-login.php HTTP/1.0" 200 3039 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 157.245.217.186 - - \[27/Dec/2019:08:01:01 +0100\] "POST /wp-login.php HTTP/1.0" 200 3048 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-12-27 18:42:14
78.187.73.3	attackspam	Unauthorized connection attempt detected from IP address 78.187.73.3 to port 23	2019-12-27 18:38:39
187.103.8.90	attackspam	Dec 27 11:43:57 sd-53420 sshd\[23081\]: Invalid user osadrc from 187.103.8.90 Dec 27 11:43:57 sd-53420 sshd\[23081\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.103.8.90 Dec 27 11:43:59 sd-53420 sshd\[23081\]: Failed password for invalid user osadrc from 187.103.8.90 port 6625 ssh2 Dec 27 11:51:49 sd-53420 sshd\[26230\]: User root from 187.103.8.90 not allowed because none of user's groups are listed in AllowGroups Dec 27 11:51:49 sd-53420 sshd\[26230\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.103.8.90 user=root ...	2019-12-27 19:17:11
40.89.176.60	attack	Dec 27 09:21:38 unicornsoft sshd\[22549\]: User backup from 40.89.176.60 not allowed because not listed in AllowUsers Dec 27 09:21:38 unicornsoft sshd\[22549\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.89.176.60 user=backup Dec 27 09:21:41 unicornsoft sshd\[22549\]: Failed password for invalid user backup from 40.89.176.60 port 45220 ssh2	2019-12-27 19:09:46
114.135.144.253	attackspam	Host Scan	2019-12-27 18:45:01
46.105.125.98	attackbotsspam	Lines containing failures of 46.105.125.98 Dec 25 22:09:13 siirappi sshd[13249]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.125.98 user=r.r Dec 25 22:09:15 siirappi sshd[13249]: Failed password for r.r from 46.105.125.98 port 59410 ssh2 Dec 25 22:09:15 siirappi sshd[13249]: Received disconnect from 46.105.125.98 port 59410:11: Bye Bye [preauth] Dec 25 22:09:15 siirappi sshd[13249]: Disconnected from 46.105.125.98 port 59410 [preauth] Dec 25 22:20:47 siirappi sshd[13422]: Invalid user stack from 46.105.125.98 port 36244 Dec 25 22:20:47 siirappi sshd[13422]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.125.98 Dec 25 22:20:49 siirappi sshd[13422]: Failed password for invalid user stack from 46.105.125.98 port 36244 ssh2 Dec 25 22:20:50 siirappi sshd[13422]: Received disconnect from 46.105.125.98 port 36244:11: Bye Bye [preauth] Dec 25 22:20:50 siirappi sshd[13422]: Disconn........ ------------------------------	2019-12-27 19:04:14

最近上报的IP列表

109.168.249.110	109.168.251.191	109.168.255.55	109.168.254.185
109.168.29.177	109.168.29.202	109.168.29.255	109.168.35.189
109.168.35.230	109.168.38.34	109.168.43.70	109.168.54.234
109.168.49.29	109.168.56.181	109.168.64.157	109.168.55.165
109.168.59.127	109.168.65.176	109.168.68.234	109.168.68.237