城市(city): unknown
省份(region): unknown
国家(country): Russia
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See https://docs.db.ripe.net/terms-conditions.html
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '212.193.152.0 - 212.193.159.255'
% Abuse contact for '212.193.152.0 - 212.193.159.255' is 'support@ngenix.net'
inetnum: 212.193.152.0 - 212.193.159.255
org: ORG-LN125-RIPE
netname: NGENIX-INFRASTRUCTURE-NET
country: RU
admin-c: RN1863-RIPE
tech-c: RN1863-RIPE
status: ASSIGNED PA
mnt-by: RUIX-MNT
created: 2020-11-12T13:25:40Z
last-modified: 2020-11-16T06:19:06Z
source: RIPE
organisation: ORG-LN125-RIPE
org-name: LLC NGENIX
org-type: OTHER
address: 127083, Moscow, 8 Marta Street 1, bld. 12
abuse-c: LN3560-RIPE
mnt-ref: RUIX-MNT
mnt-by: RUIX-MNT
created: 2020-11-16T06:18:03Z
last-modified: 2020-11-16T06:18:03Z
source: RIPE # Filtered
role: MSK-IX NOC
address: JSC "MSK-IX"
address: 8 Marta Street 1, bld. 12, office XXXV, room 19
address: Moscow 127083, Russian Federation
phone: +7 495 7370685
phone: +7 499 1929179
fax-no: +7 499 1964984
admin-c: IA5224-RIPE
tech-c: IA5224-RIPE
tech-c: MAGR-RIPE
tech-c: DYK9-RIPE
nic-hdl: RN1863-RIPE
mnt-by: RUIX-MNT
created: 2009-03-26T15:52:51Z
last-modified: 2023-09-25T09:56:47Z
source: RIPE # Filtered
% Information related to '212.193.157.0/24AS34879'
route: 212.193.157.0/24
descr: NGENIX-INFRASTRUCTURE-NET
origin: AS34879
mnt-by: RUIX-MNT
created: 2017-02-17T10:30:24Z
last-modified: 2019-04-26T06:02:37Z
source: RIPE
% This query was served by the RIPE Database Query Service version 1.121.2 (BUSA); <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.193.157.240
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28570
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;212.193.157.240. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026041100 1800 900 604800 86400
;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 12 01:23:50 CST 2026
;; MSG SIZE rcvd: 108240.157.193.212.in-addr.arpa domain name pointer cdn.ngenix.net.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
240.157.193.212.in-addr.arpa name = cdn.ngenix.net.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 194.26.29.110 | attackbots | Jul 15 03:30:46 debian-2gb-nbg1-2 kernel: \[17035212.999592\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.26.29.110 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=12767 PROTO=TCP SPT=55703 DPT=28382 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-07-15 09:51:53 |
| 85.99.126.204 | attack | Honeypot attack, port: 445, PTR: 85.99.126.204.static.ttnet.com.tr. |
2020-07-15 09:57:22 |
| 86.102.118.54 | attack | 1594750963 - 07/14/2020 20:22:43 Host: 86.102.118.54/86.102.118.54 Port: 445 TCP Blocked |
2020-07-15 10:05:52 |
| 45.70.157.145 | attack | Honeypot attack, port: 445, PTR: 145.157.70.45.maxbr.com.br. |
2020-07-15 10:07:28 |
| 221.144.39.96 | attackspam | blogonese.net 221.144.39.96 [14/Jul/2020:20:22:43 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4262 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" blogonese.net 221.144.39.96 [14/Jul/2020:20:22:49 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4262 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" |
2020-07-15 09:57:49 |
| 206.189.211.146 | attackspam | Jul 15 04:43:52 pkdns2 sshd\[63782\]: Invalid user student from 206.189.211.146Jul 15 04:43:54 pkdns2 sshd\[63782\]: Failed password for invalid user student from 206.189.211.146 port 53688 ssh2Jul 15 04:47:03 pkdns2 sshd\[63980\]: Invalid user nfs from 206.189.211.146Jul 15 04:47:05 pkdns2 sshd\[63980\]: Failed password for invalid user nfs from 206.189.211.146 port 52302 ssh2Jul 15 04:50:21 pkdns2 sshd\[64134\]: Invalid user test from 206.189.211.146Jul 15 04:50:24 pkdns2 sshd\[64134\]: Failed password for invalid user test from 206.189.211.146 port 50906 ssh2 ... |
2020-07-15 10:04:41 |
| 110.145.140.210 | attack | 2020-07-15T01:51:19.405327mail.broermann.family sshd[12038]: Invalid user postgres from 110.145.140.210 port 48014 2020-07-15T01:51:19.413118mail.broermann.family sshd[12038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.lotusdoors.com.au 2020-07-15T01:51:19.405327mail.broermann.family sshd[12038]: Invalid user postgres from 110.145.140.210 port 48014 2020-07-15T01:51:21.378277mail.broermann.family sshd[12038]: Failed password for invalid user postgres from 110.145.140.210 port 48014 ssh2 2020-07-15T01:54:55.098545mail.broermann.family sshd[12229]: Invalid user kathy from 110.145.140.210 port 45044 ... |
2020-07-15 09:32:21 |
| 87.253.235.96 | attackspambots | bitcoin-based fraud attempt / scam |
2020-07-15 09:59:11 |
| 103.217.158.121 | attack | "XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES: |
2020-07-15 10:03:27 |
| 5.188.84.95 | attackbots | 0,22-01/02 [bc01/m10] PostRequest-Spammer scoring: Dodoma |
2020-07-15 09:51:09 |
| 92.222.180.221 | attackbotsspam | 1036. On Jul 14 2020 experienced a Brute Force SSH login attempt -> 2 unique times by 92.222.180.221. |
2020-07-15 09:29:02 |
| 201.158.21.30 | attack | blogonese.net 201.158.21.30 [14/Jul/2020:20:23:06 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4262 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" blogonese.net 201.158.21.30 [14/Jul/2020:20:23:12 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4262 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" |
2020-07-15 09:37:36 |
| 49.233.208.45 | attackspam | Jul 9 13:27:26 server sshd[1949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.208.45 Jul 9 13:27:28 server sshd[1949]: Failed password for invalid user reno from 49.233.208.45 port 35304 ssh2 Jul 9 13:44:10 server sshd[2938]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.208.45 Jul 9 13:44:11 server sshd[2938]: Failed password for invalid user ucpss from 49.233.208.45 port 38114 ssh2 |
2020-07-15 09:50:05 |
| 62.192.225.21 | attack | 1594750972 - 07/14/2020 20:22:52 Host: 62.192.225.21/62.192.225.21 Port: 445 TCP Blocked |
2020-07-15 09:54:38 |
| 201.6.154.155 | attack | frenzy |
2020-07-15 10:00:29 |