212.193.157.112

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.193.157.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60106
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;212.193.157.112.		IN	A

;; AUTHORITY SECTION:
.			234	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 01:31:53 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

112.157.193.212.in-addr.arpa domain name pointer cdn.ngenix.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
112.157.193.212.in-addr.arpa	name = cdn.ngenix.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
5.188.206.197	attack	Aug 10 05:18:06 mailserver postfix/smtps/smtpd[83581]: connect from unknown[5.188.206.197] Aug 10 05:18:15 mailserver dovecot: auth-worker(83585): sql([hidden],5.188.206.197): unknown user Aug 10 05:18:17 mailserver postfix/smtps/smtpd[83581]: warning: unknown[5.188.206.197]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 10 05:18:17 mailserver postfix/smtps/smtpd[83581]: lost connection after AUTH from unknown[5.188.206.197] Aug 10 05:18:17 mailserver postfix/smtps/smtpd[83581]: disconnect from unknown[5.188.206.197] Aug 10 05:18:17 mailserver postfix/smtps/smtpd[83581]: connect from unknown[5.188.206.197] Aug 10 05:18:26 mailserver postfix/smtps/smtpd[83581]: lost connection after AUTH from unknown[5.188.206.197] Aug 10 05:18:26 mailserver postfix/smtps/smtpd[83581]: disconnect from unknown[5.188.206.197] Aug 10 05:18:26 mailserver postfix/smtps/smtpd[83581]: connect from unknown[5.188.206.197] Aug 10 05:18:34 mailserver dovecot: auth-worker(83585): sql(t.vanderhallen,5.188.206.197): unknown user	2020-08-10 12:28:30
59.149.147.168	attackbotsspam	Unauthorized connection attempt detected from IP address 59.149.147.168 to port 23 [T]	2020-08-10 12:37:25
77.247.178.200	attackspambots	[2020-08-09 23:34:44] NOTICE[1185][C-000001da] chan_sip.c: Call from '' (77.247.178.200:52681) to extension '9011442037693713' rejected because extension not found in context 'public'. [2020-08-09 23:34:44] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-09T23:34:44.921-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011442037693713",SessionID="0x7f10c401ce18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.178.200/52681",ACLName="no_extension_match" [2020-08-09 23:34:54] NOTICE[1185][C-000001db] chan_sip.c: Call from '' (77.247.178.200:51329) to extension '011442037693601' rejected because extension not found in context 'public'. [2020-08-09 23:34:54] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-09T23:34:54.520-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011442037693601",SessionID="0x7f10c405ea98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4 ...	2020-08-10 12:50:18
212.70.149.19	attackspambots	2020-08-10 06:37:58 dovecot_login authenticator failed for \(User\) \[212.70.149.19\]: 535 Incorrect authentication data 2020-08-10 06:38:00 dovecot_login authenticator failed for \(User\) \[212.70.149.19\]: 535 Incorrect authentication data 2020-08-10 06:42:19 dovecot_login authenticator failed for \(User\) \[212.70.149.19\]: 535 Incorrect authentication data \(set_id=yucan@no-server.de\) 2020-08-10 06:42:32 dovecot_login authenticator failed for \(User\) \[212.70.149.19\]: 535 Incorrect authentication data \(set_id=yucel@no-server.de\) 2020-08-10 06:42:35 dovecot_login authenticator failed for \(User\) \[212.70.149.19\]: 535 Incorrect authentication data \(set_id=yucel@no-server.de\) 2020-08-10 06:42:43 dovecot_login authenticator failed for \(User\) \[212.70.149.19\]: 535 Incorrect authentication data \(set_id=yucel@no-server.de\) 2020-08-10 06:42:45 dovecot_login authenticator failed for \(User\) \[212.70.149.19\]: 535 Incorrect authentication data \(set_id=yucel@no-server.de\) 202 ...	2020-08-10 13:00:17
103.109.0.66	attackspambots	1594646989 - 07/13/2020 15:29:49 Host: 103.109.0.66/103.109.0.66 Port: 445 TCP Blocked	2020-08-10 12:15:08
209.97.191.190	attack	Aug 10 06:22:25 journals sshd\[127531\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.191.190 user=root Aug 10 06:22:26 journals sshd\[127531\]: Failed password for root from 209.97.191.190 port 51738 ssh2 Aug 10 06:27:21 journals sshd\[128110\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.191.190 user=root Aug 10 06:27:24 journals sshd\[128110\]: Failed password for root from 209.97.191.190 port 35858 ssh2 Aug 10 06:32:14 journals sshd\[128555\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.191.190 user=root ...	2020-08-10 12:43:06
111.231.226.87	attackbots	Bruteforce detected by fail2ban	2020-08-10 12:32:11
181.166.98.73	attack	Automatic report - Port Scan Attack	2020-08-10 12:23:52
128.199.212.194	attackspambots	128.199.212.194 - - [10/Aug/2020:03:42:00 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 128.199.212.194 - - [10/Aug/2020:03:42:01 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 128.199.212.194 - - [10/Aug/2020:03:42:08 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-10 12:24:24
117.211.192.70	attack	Aug 10 01:55:23 pornomens sshd\[9197\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.211.192.70 user=root Aug 10 01:55:25 pornomens sshd\[9197\]: Failed password for root from 117.211.192.70 port 37164 ssh2 Aug 10 02:00:14 pornomens sshd\[9272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.211.192.70 user=root ...	2020-08-10 12:39:59
106.13.86.54	attackbotsspam	Automatic report - Banned IP Access	2020-08-10 12:20:12
49.69.158.159	attackspambots	Lines containing failures of 49.69.158.159 Aug 4 09:04:05 neweola sshd[5283]: Bad protocol version identification '' from 49.69.158.159 port 40699 Aug 4 09:04:10 neweola sshd[5284]: Invalid user pi from 49.69.158.159 port 40970 Aug 4 09:04:11 neweola sshd[5284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.69.158.159 Aug 4 09:04:12 neweola sshd[5284]: Failed password for invalid user pi from 49.69.158.159 port 40970 ssh2 Aug 4 09:04:16 neweola sshd[5284]: Connection closed by invalid user pi 49.69.158.159 port 40970 [preauth] Aug 4 09:04:21 neweola sshd[5287]: Invalid user pi from 49.69.158.159 port 45583 Aug 4 09:04:22 neweola sshd[5287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.69.158.159 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=49.69.158.159	2020-08-10 12:48:47
222.186.175.154	attackspambots	Aug 9 23:21:24 NPSTNNYC01T sshd[32375]: Failed password for root from 222.186.175.154 port 53660 ssh2 Aug 9 23:21:27 NPSTNNYC01T sshd[32375]: Failed password for root from 222.186.175.154 port 53660 ssh2 Aug 9 23:21:31 NPSTNNYC01T sshd[32375]: Failed password for root from 222.186.175.154 port 53660 ssh2 Aug 9 23:21:37 NPSTNNYC01T sshd[32375]: error: maximum authentication attempts exceeded for root from 222.186.175.154 port 53660 ssh2 [preauth] ...	2020-08-10 12:25:50
182.61.3.157	attackspambots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-10T01:24:24Z and 2020-08-10T01:27:04Z	2020-08-10 12:20:56
218.92.0.248	attackbots	Aug 10 05:12:39 * sshd[14802]: Failed password for root from 218.92.0.248 port 51739 ssh2 Aug 10 05:12:52 * sshd[14802]: error: maximum authentication attempts exceeded for root from 218.92.0.248 port 51739 ssh2 [preauth]	2020-08-10 12:27:05

最近上报的IP列表

212.193.155.127	212.193.156.146	212.193.157.119	212.193.157.216
212.193.157.43	212.193.157.75	212.193.158.156	212.193.158.154
212.193.158.165	212.193.158.131	212.193.158.178	212.193.157.78
212.193.157.22	212.193.158.252	212.193.157.227	212.193.158.173
212.193.163.194	212.193.158.183	212.193.163.198	212.193.163.195