169.56.93.52 - IPInfo

基本信息:

城市(city): Seongnam-si

省份(region): Gyeonggi-do

国家(country): South Korea

运营商(isp): SoftLayer Technologies Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SMB Server BruteForce Attack	2019-09-21 02:49:57

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 169.56.93.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28548
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;169.56.93.52.			IN	A

;; AUTHORITY SECTION:
.			533	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092001 1800 900 604800 86400

;; Query time: 917 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 21 02:49:54 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

52.93.56.169.in-addr.arpa domain name pointer 34.5d.38a9.ip4.static.sl-reverse.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.93.56.169.in-addr.arpa	name = 34.5d.38a9.ip4.static.sl-reverse.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
103.248.33.51	attackbots	(sshd) Failed SSH login from 103.248.33.51 (IN/India/prod1.adisoftronics.net): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 24 14:36:15 ubnt-55d23 sshd[512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.248.33.51 user=proftpd Apr 24 14:36:17 ubnt-55d23 sshd[512]: Failed password for proftpd from 103.248.33.51 port 48540 ssh2	2020-04-25 01:16:18
99.183.144.132	attackbotsspam	Apr 24 08:58:33 ws12vmsma01 sshd[50583]: Invalid user hhh from 99.183.144.132 Apr 24 08:58:36 ws12vmsma01 sshd[50583]: Failed password for invalid user hhh from 99.183.144.132 port 50224 ssh2 Apr 24 09:03:58 ws12vmsma01 sshd[51431]: Invalid user admin from 99.183.144.132 ...	2020-04-25 00:59:03
47.104.164.219	attack	Apr 24 19:51:36 our-server-hostname sshd[9179]: Invalid user tacpro from 47.104.164.219 Apr 24 19:51:36 our-server-hostname sshd[9179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.104.164.219 Apr 24 19:51:38 our-server-hostname sshd[9179]: Failed password for invalid user tacpro from 47.104.164.219 port 33620 ssh2 Apr 24 20:04:05 our-server-hostname sshd[10829]: Invalid user student from 47.104.164.219 Apr 24 20:04:05 our-server-hostname sshd[10829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.104.164.219 Apr 24 20:04:07 our-server-hostname sshd[10829]: Failed password for invalid user student from 47.104.164.219 port 54530 ssh2 Apr 24 20:04:59 our-server-hostname sshd[11030]: Invalid user uftp from 47.104.164.219 Apr 24 20:04:59 our-server-hostname sshd[11030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.104.164.219 ........ ----------------------------------------	2020-04-25 01:03:50
117.211.192.70	attackspambots	Apr 24 15:17:23 vps58358 sshd\[6884\]: Invalid user root321 from 117.211.192.70Apr 24 15:17:25 vps58358 sshd\[6884\]: Failed password for invalid user root321 from 117.211.192.70 port 36264 ssh2Apr 24 15:22:28 vps58358 sshd\[6918\]: Invalid user manas from 117.211.192.70Apr 24 15:22:30 vps58358 sshd\[6918\]: Failed password for invalid user manas from 117.211.192.70 port 43226 ssh2Apr 24 15:27:11 vps58358 sshd\[6974\]: Invalid user teamspeak3 from 117.211.192.70Apr 24 15:27:14 vps58358 sshd\[6974\]: Failed password for invalid user teamspeak3 from 117.211.192.70 port 50200 ssh2 ...	2020-04-25 00:50:59
180.180.170.202	attackbotsspam	failed_logins	2020-04-25 00:56:25
117.3.207.222	attackspambots	Honeypot attack, port: 81, PTR: PTR record not found	2020-04-25 00:58:46
203.147.72.32	attackbots	Dovecot Invalid User Login Attempt.	2020-04-25 01:04:16
106.12.146.9	attack	Apr 24 18:48:00 host sshd[6963]: Invalid user oc from 106.12.146.9 port 50756 ...	2020-04-25 01:10:22
34.69.115.56	attackspambots	2020-04-24T14:46:44.971149shield sshd\[28812\]: Invalid user aaPower from 34.69.115.56 port 45380 2020-04-24T14:46:44.975444shield sshd\[28812\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=56.115.69.34.bc.googleusercontent.com 2020-04-24T14:46:46.815166shield sshd\[28812\]: Failed password for invalid user aaPower from 34.69.115.56 port 45380 ssh2 2020-04-24T14:52:07.945746shield sshd\[29936\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=56.115.69.34.bc.googleusercontent.com user=root 2020-04-24T14:52:10.463004shield sshd\[29936\]: Failed password for root from 34.69.115.56 port 58924 ssh2	2020-04-25 01:06:05
113.255.161.199	attackbots	Honeypot attack, port: 5555, PTR: 199-161-255-113-on-nets.com.	2020-04-25 01:20:54
46.198.212.139	attackspambots	DATE:2020-04-24 14:04:22, IP:46.198.212.139, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-04-25 00:48:38
74.208.214.168	attackbots	Apr 24 11:50:52 zimbra sshd[726]: Invalid user vagrant from 74.208.214.168 Apr 24 11:50:52 zimbra sshd[726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.208.214.168 Apr 24 11:50:54 zimbra sshd[726]: Failed password for invalid user vagrant from 74.208.214.168 port 42396 ssh2 Apr 24 11:50:54 zimbra sshd[726]: Received disconnect from 74.208.214.168 port 42396:11: Bye Bye [preauth] Apr 24 11:50:54 zimbra sshd[726]: Disconnected from 74.208.214.168 port 42396 [preauth] Apr 24 12:02:12 zimbra sshd[9582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.208.214.168 user=r.r Apr 24 12:02:14 zimbra sshd[9582]: Failed password for r.r from 74.208.214.168 port 51408 ssh2 Apr 24 12:02:14 zimbra sshd[9582]: Received disconnect from 74.208.214.168 port 51408:11: Bye Bye [preauth] Apr 24 12:02:14 zimbra sshd[9582]: Disconnected from 74.208.214.168 port 51408 [preauth] Apr 24 12:07:32 zimbra ssh........ -------------------------------	2020-04-25 01:05:44
43.226.144.169	attackbotsspam	Apr 24 13:16:48 work-partkepr sshd\[29178\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.226.144.169 user=root Apr 24 13:16:50 work-partkepr sshd\[29178\]: Failed password for root from 43.226.144.169 port 42002 ssh2 ...	2020-04-25 00:53:28
167.206.202.137	attackspambots	Unauthorised access (Apr 24) SRC=167.206.202.137 LEN=52 TTL=118 ID=19597 DF TCP DPT=445 WINDOW=8192 SYN	2020-04-25 00:47:42
45.148.10.141	attack	Triggered: repeated knocking on closed ports.	2020-04-25 01:17:49

最近上报的IP列表

136.228.204.78	82.140.245.112	200.166.163.254	162.174.131.69
110.174.101.119	99.75.245.29	44.235.175.153	82.163.73.186
128.113.244.114	61.191.194.130	163.58.152.99	41.82.22.10
106.157.46.23	24.192.210.241	86.97.252.205	192.163.210.131
118.93.131.246	200.166.253.225	12.15.150.223	45.200.187.195