12.166.139.4 - IPInfo

基本信息:

城市(city): Ennis

省份(region): Texas

国家(country): United States

运营商(isp): AT&T

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 12.166.139.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52041
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;12.166.139.4.			IN	A

;; AUTHORITY SECTION:
.			228	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023010300 1800 900 604800 86400

;; Query time: 25 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 03 20:16:05 CST 2023
;; MSG SIZE  rcvd: 105

HOST信息:

Host 4.139.166.12.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 4.139.166.12.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
103.144.180.18	attack	Sep 6 00:20:14 lanister sshd[1426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.144.180.18 user=root Sep 6 00:20:17 lanister sshd[1426]: Failed password for root from 103.144.180.18 port 24367 ssh2 Sep 6 00:23:30 lanister sshd[1484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.144.180.18 user=root Sep 6 00:23:33 lanister sshd[1484]: Failed password for root from 103.144.180.18 port 35233 ssh2	2020-09-06 17:05:46
85.214.151.144	attackspam	Unauthorized connection attempt from IP address 85.214.151.144 on Port 139(NETBIOS)	2020-09-06 16:54:32
222.186.175.183	attackspambots	Sep 6 10:34:23 vps647732 sshd[1355]: Failed password for root from 222.186.175.183 port 9272 ssh2 Sep 6 10:34:35 vps647732 sshd[1355]: error: maximum authentication attempts exceeded for root from 222.186.175.183 port 9272 ssh2 [preauth] ...	2020-09-06 16:35:49
116.22.197.224	attackbots	Lines containing failures of 116.22.197.224 Sep 4 13:43:10 newdogma sshd[3116]: Invalid user atul from 116.22.197.224 port 55280 Sep 4 13:43:10 newdogma sshd[3116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.22.197.224 Sep 4 13:43:13 newdogma sshd[3116]: Failed password for invalid user atul from 116.22.197.224 port 55280 ssh2 Sep 4 13:43:14 newdogma sshd[3116]: Received disconnect from 116.22.197.224 port 55280:11: Bye Bye [preauth] Sep 4 13:43:14 newdogma sshd[3116]: Disconnected from invalid user atul 116.22.197.224 port 55280 [preauth] Sep 4 13:44:55 newdogma sshd[3380]: Invalid user riana from 116.22.197.224 port 55122 Sep 4 13:44:55 newdogma sshd[3380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.22.197.224 Sep 4 13:44:56 newdogma sshd[3380]: Failed password for invalid user riana from 116.22.197.224 port 55122 ssh2 ........ ----------------------------------------------- https://www.blocklist.de	2020-09-06 16:43:52
88.156.122.72	attackbots	2020-09-06T09:34:12.465069lavrinenko.info sshd[22148]: Failed password for invalid user msfadmin from 88.156.122.72 port 56546 ssh2 2020-09-06T09:38:12.572435lavrinenko.info sshd[22313]: Invalid user admin from 88.156.122.72 port 41726 2020-09-06T09:38:12.579544lavrinenko.info sshd[22313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.156.122.72 2020-09-06T09:38:12.572435lavrinenko.info sshd[22313]: Invalid user admin from 88.156.122.72 port 41726 2020-09-06T09:38:14.095975lavrinenko.info sshd[22313]: Failed password for invalid user admin from 88.156.122.72 port 41726 ssh2 ...	2020-09-06 16:59:45
60.8.123.159	attackspam	Forbidden directory scan :: 2020/09/05 16:45:57 [error] 1010#1010: *1532907 access forbidden by rule, client: 60.8.123.159, server: [censored_2], request: "GET /news/tag/depth:4 HTTP/1.1", host: "www.[censored_2]"	2020-09-06 16:54:48
166.175.59.117	attackspam	Brute forcing email accounts	2020-09-06 17:04:07
218.173.80.95	attack	Honeypot attack, port: 5555, PTR: 218-173-80-95.dynamic-ip.hinet.net.	2020-09-06 16:40:36
91.236.116.185	attackspambots	[05/Sep/2020 21:35:13] SMTP Spam attack detected from 91.236.116.185, client closed connection before SMTP greeting [05/Sep/2020 21:35:23] SMTP Spam attack detected from 91.236.116.185, client closed connection before SMTP greeting [05/Sep/2020 21:35:33] SMTP Spam attack detected from 91.236.116.185, client closed connection before SMTP greeting [05/Sep/2020 21:35:43] SMTP Spam attack detected from 91.236.116.185, client closed connection before SMTP greeting [05/Sep/2020 21:36:45] SMTP Spam attack detected from 91.236.116.185, client closed connection before SMTP greeting [05/Sep/2020 21:36:56] SMTP Spam attack detected from 91.236.116.185, client closed connection before SMTP greeting [05/Sep/2020 21:37:06] SMTP Spam attack detected from 91.236.116.185, client closed connection before SMTP greeting [05/Sep/2020 21:37:17] SMTP Spam attack detected from 91.236.116.185, client closed connection before SMTP greeting	2020-09-06 16:31:42
218.92.0.138	attack	Sep 5 22:41:09 web9 sshd\[9203\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root Sep 5 22:41:10 web9 sshd\[9203\]: Failed password for root from 218.92.0.138 port 15336 ssh2 Sep 5 22:41:13 web9 sshd\[9203\]: Failed password for root from 218.92.0.138 port 15336 ssh2 Sep 5 22:41:16 web9 sshd\[9203\]: Failed password for root from 218.92.0.138 port 15336 ssh2 Sep 5 22:41:40 web9 sshd\[9263\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root	2020-09-06 16:48:54
156.221.183.227	attack	Attempted connection to port 5501.	2020-09-06 16:40:02
156.197.91.10	attack	Attempted connection to port 445.	2020-09-06 16:41:06
101.89.92.230	attackspambots	Lines containing failures of 101.89.92.230 Sep 3 04:00:56 shared01 sshd[11678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.89.92.230 user=r.r Sep 3 04:00:58 shared01 sshd[11678]: Failed password for r.r from 101.89.92.230 port 44058 ssh2 Sep 3 04:00:59 shared01 sshd[11678]: Received disconnect from 101.89.92.230 port 44058:11: Bye Bye [preauth] Sep 3 04:00:59 shared01 sshd[11678]: Disconnected from authenticating user r.r 101.89.92.230 port 44058 [preauth] Sep 3 04:17:14 shared01 sshd[16636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.89.92.230 user=r.r Sep 3 04:17:15 shared01 sshd[16636]: Failed password for r.r from 101.89.92.230 port 41728 ssh2 Sep 3 04:17:15 shared01 sshd[16636]: Received disconnect from 101.89.92.230 port 41728:11: Bye Bye [preauth] Sep 3 04:17:15 shared01 sshd[16636]: Disconnected from authenticating user r.r 101.89.92.230 port 41728 [preauth........ ------------------------------	2020-09-06 17:01:33
194.26.25.108	attack	2020-09-05 17:50:10 Reject access to port(s):3389 1 times a day	2020-09-06 17:07:29
5.39.44.17	attack	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-09-06 16:44:30

最近上报的IP列表

147.161.185.20	101.86.47.186	143.44.193.45	99.54.197.233
98.245.231.95	95.165.239.149	94.83.36.82	93.246.240.89
93.145.97.90	92.41.98.6	90.235.236.124	90.103.50.74
9.226.88.68	9.225.223.0	9.118.145.255	89.192.110.147
89.156.246.196	88.123.145.44	88.101.4.227	87.147.93.84