166.61.84.48 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 166.61.84.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42013
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;166.61.84.48.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025013001 1800 900 604800 86400

;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 31 13:20:44 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 48.84.61.166.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 48.84.61.166.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
58.210.94.98	attack	2019-10-21T13:41:27.230892scmdmz1 sshd\[5182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.210.94.98 user=rpc 2019-10-21T13:41:29.192912scmdmz1 sshd\[5182\]: Failed password for rpc from 58.210.94.98 port 22207 ssh2 2019-10-21T13:45:38.229684scmdmz1 sshd\[5525\]: Invalid user ales from 58.210.94.98 port 3513 ...	2019-10-21 20:23:26
222.186.173.180	attackbotsspam	Oct 21 08:34:33 xtremcommunity sshd\[743969\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.180 user=root Oct 21 08:34:35 xtremcommunity sshd\[743969\]: Failed password for root from 222.186.173.180 port 26696 ssh2 Oct 21 08:34:41 xtremcommunity sshd\[743969\]: Failed password for root from 222.186.173.180 port 26696 ssh2 Oct 21 08:34:45 xtremcommunity sshd\[743969\]: Failed password for root from 222.186.173.180 port 26696 ssh2 Oct 21 08:34:49 xtremcommunity sshd\[743969\]: Failed password for root from 222.186.173.180 port 26696 ssh2 ...	2019-10-21 20:53:58
45.143.220.13	attackspam	\[2019-10-21 08:07:49\] NOTICE\[2038\] chan_sip.c: Registration from '\' failed for '45.143.220.13:60062' - Wrong password \[2019-10-21 08:07:49\] SECURITY\[2046\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-21T08:07:49.893-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="2345678",SessionID="0x7f6130804e48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.13/60062",Challenge="67c249dd",ReceivedChallenge="67c249dd",ReceivedHash="fcc999db46a88b549bbd0f9bb5b0a9be" \[2019-10-21 08:08:41\] NOTICE\[2038\] chan_sip.c: Registration from '\' failed for '45.143.220.13:60805' - Wrong password \[2019-10-21 08:08:41\] SECURITY\[2046\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-21T08:08:41.675-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="234",SessionID="0x7f6130286de8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.14	2019-10-21 20:34:44
98.137.64.167	attack	Same person from U.S.A. Google LLC 1600 Amphitheater Parkway 94403 Mountain View californie using a VPN	2019-10-21 20:43:58
106.51.80.198	attack	2019-10-21T12:47:51.593253abusebot-4.cloudsearch.cf sshd\[21744\]: Invalid user sanovidrm from 106.51.80.198 port 48648	2019-10-21 20:58:21
37.98.224.105	attackbotsspam	Oct 21 08:34:37 xtremcommunity sshd\[743971\]: Invalid user Wgo5EwE8 from 37.98.224.105 port 46280 Oct 21 08:34:37 xtremcommunity sshd\[743971\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.98.224.105 Oct 21 08:34:39 xtremcommunity sshd\[743971\]: Failed password for invalid user Wgo5EwE8 from 37.98.224.105 port 46280 ssh2 Oct 21 08:39:21 xtremcommunity sshd\[744122\]: Invalid user tss2 from 37.98.224.105 port 57662 Oct 21 08:39:21 xtremcommunity sshd\[744122\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.98.224.105 ...	2019-10-21 20:48:20
147.139.136.237	attackbots	2019-10-21T12:04:22.080528shield sshd\[9108\]: Invalid user wangbo from 147.139.136.237 port 40218 2019-10-21T12:04:22.084579shield sshd\[9108\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.136.237 2019-10-21T12:04:24.809578shield sshd\[9108\]: Failed password for invalid user wangbo from 147.139.136.237 port 40218 ssh2 2019-10-21T12:13:54.086843shield sshd\[10958\]: Invalid user dereco from 147.139.136.237 port 50474 2019-10-21T12:13:54.090230shield sshd\[10958\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.136.237	2019-10-21 20:22:00
5.196.225.45	attackbotsspam	SSH bruteforce (Triggered fail2ban)	2019-10-21 20:45:51
115.79.167.119	attack	Port Scan	2019-10-21 20:47:26
45.82.153.76	attackspam	Oct 21 14:19:35 relay postfix/smtpd\[15071\]: warning: unknown\[45.82.153.76\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 21 14:19:44 relay postfix/smtpd\[18674\]: warning: unknown\[45.82.153.76\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 21 14:21:09 relay postfix/smtpd\[20691\]: warning: unknown\[45.82.153.76\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 21 14:21:19 relay postfix/smtpd\[19072\]: warning: unknown\[45.82.153.76\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 21 14:22:00 relay postfix/smtpd\[19568\]: warning: unknown\[45.82.153.76\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-10-21 20:22:21
128.68.31.2	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/128.68.31.2/ RU - 1H : (149) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : RU NAME ASN : ASN8402 IP : 128.68.31.2 CIDR : 128.68.0.0/18 PREFIX COUNT : 1674 UNIQUE IP COUNT : 1840128 ATTACKS DETECTED ASN8402 : 1H - 1 3H - 1 6H - 2 12H - 2 24H - 8 DateTime : 2019-10-21 13:45:46 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-21 20:15:45
105.157.167.113	attack	2019-10-21 x@x 2019-10-21 12:16:34 unexpected disconnection while reading SMTP command from ([105.157.167.113]) [105.157.167.113]:27250 I=[10.100.18.20]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=105.157.167.113	2019-10-21 20:20:31
61.2.21.205	attackspambots	Port Scan	2019-10-21 20:51:13
189.68.49.225	attack	Port Scan	2019-10-21 20:56:32
211.159.152.252	attackspam	2019-10-21T12:32:40.458673abusebot-5.cloudsearch.cf sshd\[4287\]: Invalid user fuckyou from 211.159.152.252 port 36760	2019-10-21 20:39:25

最近上报的IP列表

235.108.15.78	38.83.2.37	138.216.106.220	109.198.162.190
217.33.171.109	246.96.161.97	128.127.141.251	47.253.97.60
27.227.56.218	164.1.31.117	81.185.39.78	51.122.65.53
134.31.214.43	12.26.180.227	15.210.253.50	179.166.86.225
189.151.79.9	26.14.155.94	131.244.46.85	69.92.153.6