137.96.12.148 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.96.12.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55651
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;137.96.12.148.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020600 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 06 15:21:27 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 148.12.96.137.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 148.12.96.137.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
197.44.72.58	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-17 01:47:13
81.177.174.10	attack	WordPress wp-login brute force :: 81.177.174.10 0.136 BYPASS [17/Oct/2019:03:12:01 1100] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-17 01:56:58
151.236.32.126	attackbotsspam	Oct 16 19:17:31 nextcloud sshd\[19537\]: Invalid user zimbra from 151.236.32.126 Oct 16 19:17:31 nextcloud sshd\[19537\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.236.32.126 Oct 16 19:17:33 nextcloud sshd\[19537\]: Failed password for invalid user zimbra from 151.236.32.126 port 59872 ssh2 ...	2019-10-17 01:55:25
138.68.24.138	attackbots	WordPress wp-login brute force :: 138.68.24.138 0.044 BYPASS [17/Oct/2019:04:47:52 1100] [censored_4] "POST /wp-login.php HTTP/1.1" 200 3989 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-17 02:05:22
45.87.184.11	attack	Wed Oct 16 13:15:40 2019 \[pid 1950\] \[admin\] FAIL LOGIN: Client "45.87.184.11" Wed Oct 16 13:15:44 2019 \[pid 1954\] \[admin\] FAIL LOGIN: Client "45.87.184.11" Wed Oct 16 13:15:48 2019 \[pid 1959\] \[admin\] FAIL LOGIN: Client "45.87.184.11" Wed Oct 16 13:15:51 2019 \[pid 1964\] \[admin\] FAIL LOGIN: Client "45.87.184.11" Wed Oct 16 13:15:54 2019 \[pid 1970\] \[admin\] FAIL LOGIN: Client "45.87.184.11"	2019-10-17 02:18:48
45.55.67.128	attack	SSH Brute Force, server-1 sshd[1999]: Failed password for invalid user toilatoi from 45.55.67.128 port 51109 ssh2	2019-10-17 01:45:12
198.108.67.108	attackbotsspam	firewall-block, port(s): 9093/tcp	2019-10-17 02:07:31
114.43.180.150	attack	Unauthorised access (Oct 16) SRC=114.43.180.150 LEN=40 PREC=0x20 TTL=51 ID=27854 TCP DPT=23 WINDOW=12666 SYN	2019-10-17 02:03:08
222.186.173.183	attackbotsspam	2019-10-17T01:16:34.726757enmeeting.mahidol.ac.th sshd\[17495\]: User root from 222.186.173.183 not allowed because not listed in AllowUsers 2019-10-17T01:16:36.032535enmeeting.mahidol.ac.th sshd\[17495\]: Failed none for invalid user root from 222.186.173.183 port 28540 ssh2 2019-10-17T01:16:37.444255enmeeting.mahidol.ac.th sshd\[17495\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root ...	2019-10-17 02:19:28
176.31.172.40	attackspam	2019-10-16T17:30:20.706090homeassistant sshd[8810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.172.40 user=root 2019-10-16T17:30:22.659613homeassistant sshd[8810]: Failed password for root from 176.31.172.40 port 38520 ssh2 ...	2019-10-17 01:39:49
210.133.240.218	attackbots	Spam emails used this IP address for the URLs in their messages. This kind of spam had the following features.: - They passed the SPF authentication checks. - They used networks 210.133.240.0/22 (netname: BOOT-NET) for their SMTP servers. - They used the following domains for the email addresses and URLs.: anybodyamazed.jp, askappliance.jp, hamburgermotorboat.jp, holidayarchitectural.jp, 5dfis3r.com, 5iami22.com, d8hchg5.com, myp8tkm.com, wh422c8.com, wxzimgi.com, classificationclarity.com, swampcapsule.com, tagcorps.com, etc. - Those URLs used the following name sever pairs.: -- ns1.anyaltitude.jp and ns2 -- ns1.abandonedemigrate.com and ns2 -- ns1.greetincline.jp and ns2 -- ns1.himprotestant.jp and ns2 -- ns1.swampcapsule.com and ns2 -- ns1.yybuijezu.com and ns2	2019-10-17 02:16:24
124.156.181.66	attackbotsspam	Oct 16 02:03:39 kapalua sshd\[29137\]: Invalid user Qwerty000 from 124.156.181.66 Oct 16 02:03:39 kapalua sshd\[29137\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.181.66 Oct 16 02:03:41 kapalua sshd\[29137\]: Failed password for invalid user Qwerty000 from 124.156.181.66 port 59360 ssh2 Oct 16 02:08:00 kapalua sshd\[29512\]: Invalid user mata-haria from 124.156.181.66 Oct 16 02:08:00 kapalua sshd\[29512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.181.66	2019-10-17 01:49:00
51.254.141.18	attackbots	SSH brutforce	2019-10-17 02:15:50
184.105.247.220	attack	3389BruteforceFW21	2019-10-17 02:01:43
36.46.136.149	attackspam	Oct 16 19:43:31 ns381471 sshd[15801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.46.136.149 Oct 16 19:43:33 ns381471 sshd[15801]: Failed password for invalid user zxiptv from 36.46.136.149 port 44430 ssh2 Oct 16 19:51:45 ns381471 sshd[16076]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.46.136.149	2019-10-17 01:52:55

最近上报的IP列表

170.138.182.102	203.24.229.106	250.37.148.12	40.114.194.85
253.122.93.43	215.81.19.108	224.183.176.57	129.108.151.48
21.159.119.157	167.15.60.207	56.206.48.49	238.115.93.96
144.108.186.168	96.90.8.129	235.25.95.240	159.2.34.231
249.177.84.158	235.202.99.59	32.29.128.47	12.216.152.5