212.49.70.12 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Kenya

运营商(isp): Telkom Kenya Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jan 2 21:21:45 ms-srv sshd[2336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.49.70.12 Jan 2 21:21:47 ms-srv sshd[2336]: Failed password for invalid user vftp from 212.49.70.12 port 46422 ssh2	2020-02-15 22:21:25

类型

评论内容

时间

attack

Jan  2 21:21:45 ms-srv sshd[2336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.49.70.12
Jan  2 21:21:47 ms-srv sshd[2336]: Failed password for invalid user vftp from 212.49.70.12 port 46422 ssh2

2020-02-15 22:21:25

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.49.70.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27509
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;212.49.70.12.			IN	A

;; AUTHORITY SECTION:
.			572	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021500 1800 900 604800 86400

;; Query time: 538 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 22:21:20 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

12.70.49.212.in-addr.arpa domain name pointer smtp.jambo.co.ke.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
12.70.49.212.in-addr.arpa	name = smtp.jambo.co.ke.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
79.181.215.1	attackspam	[portscan] tcp/23 [TELNET] *(RWIN=41162)(08041230)	2019-08-05 02:03:25
189.155.84.205	attack	[portscan] tcp/23 [TELNET] *(RWIN=46518)(08041230)	2019-08-05 02:22:27
107.170.195.183	attack	" "	2019-08-05 01:26:03
112.242.128.39	attackbotsspam	[portscan] tcp/23 [TELNET] *(RWIN=10809)(08041230)	2019-08-05 01:25:46
177.34.148.155	attackspambots	[portscan] tcp/23 [TELNET] *(RWIN=36484)(08041230)	2019-08-05 01:48:39
78.189.187.108	attackspam	[portscan] tcp/23 [TELNET] *(RWIN=8510)(08041230)	2019-08-05 02:05:40
186.251.225.173	attackbots	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08041230)	2019-08-05 01:42:46
180.158.215.24	attackspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(08041230)	2019-08-05 01:47:23
185.153.184.154	attackspambots	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08041230)	2019-08-05 01:43:50
188.132.181.190	attackspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08041230)	2019-08-05 01:41:34
152.101.38.185	attackspambots	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08041230)	2019-08-05 01:52:33
62.68.254.35	attack	[SMB remote code execution attempt: port tcp/445] [scan/connect: 2 time(s)] *(RWIN=1024)(08041230)	2019-08-05 02:07:58
5.135.174.212	attackspambots	[portscan] tcp/21 [FTP] *(RWIN=65535)(08041230)	2019-08-05 02:15:04
210.51.165.118	attackspambots	firewall-block, port(s): 445/tcp	2019-08-05 01:37:47
197.210.53.51	attackspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(08041230)	2019-08-05 02:20:29

最近上报的IP列表

36.96.213.189	221.126.29.10	118.43.37.69	174.27.3.176
160.44.10.139	64.132.152.70	126.179.148.211	1.77.220.168
46.93.155.239	251.134.191.214	3.54.85.127	76.74.109.54
212.252.182.220	5.178.216.26	212.251.232.194	196.53.110.218
150.109.167.182	118.43.236.12	125.25.213.21	168.232.130.173