204.137.208.166

基本信息:

城市(city): Phoenix

省份(region): Arizona

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 204.137.208.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55829
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;204.137.208.166.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025103001 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 31 09:33:19 CST 2025
;; MSG SIZE  rcvd: 108

HOST信息:

Host 166.208.137.204.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 166.208.137.204.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
5.182.39.64	attack	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "user" at 2020-09-13T17:21:57Z	2020-09-14 02:57:20
152.136.106.94	attackspam	Sep 13 06:22:09 ip106 sshd[7245]: Failed password for root from 152.136.106.94 port 55796 ssh2 ...	2020-09-14 03:14:14
14.160.39.26	attack	Unauthorized connection attempt from IP address 14.160.39.26 on port 993	2020-09-14 03:03:30
202.77.105.98	attack	Sep 13 20:26:36 ns37 sshd[4562]: Failed password for root from 202.77.105.98 port 48652 ssh2 Sep 13 20:30:52 ns37 sshd[4771]: Failed password for root from 202.77.105.98 port 60524 ssh2 Sep 13 20:35:11 ns37 sshd[5030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.77.105.98	2020-09-14 02:49:03
69.28.234.130	attackspam	(sshd) Failed SSH login from 69.28.234.130 (CA/Canada/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 13 17:56:16 amsweb01 sshd[4282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.28.234.130 user=root Sep 13 17:56:18 amsweb01 sshd[4282]: Failed password for root from 69.28.234.130 port 36501 ssh2 Sep 13 18:16:31 amsweb01 sshd[7175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.28.234.130 user=root Sep 13 18:16:33 amsweb01 sshd[7175]: Failed password for root from 69.28.234.130 port 42526 ssh2 Sep 13 18:23:06 amsweb01 sshd[8125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.28.234.130 user=root	2020-09-14 03:02:19
197.45.22.130	attackspam	firewall-block, port(s): 445/tcp	2020-09-14 02:51:01
185.153.196.126	attackbots	scans 2 times in preceeding hours on the ports (in chronological order) 3393 3389 resulting in total of 2 scans from 185.153.196.0/22 block.	2020-09-14 02:52:42
218.92.0.250	attack	Sep 13 15:03:10 Tower sshd[40877]: Connection from 218.92.0.250 port 45253 on 192.168.10.220 port 22 rdomain "" Sep 13 15:03:11 Tower sshd[40877]: Failed password for root from 218.92.0.250 port 45253 ssh2	2020-09-14 03:17:43
185.143.221.56	attack	2020-09-12 11:46:43.680988-0500 localhost screensharingd[64606]: Authentication: FAILED :: User Name: N/A :: Viewer Address: 185.143.221.56 :: Type: VNC DES	2020-09-14 03:07:05
45.148.10.11	attackspam	scans once in preceeding hours on the ports (in chronological order) 1900 resulting in total of 1 scans from 45.148.10.0/24 block.	2020-09-14 02:43:26
185.220.101.215	attack	Sep 12 16:38:25 Ubuntu-1404-trusty-64-minimal sshd\[3546\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.215 user=root Sep 12 16:38:26 Ubuntu-1404-trusty-64-minimal sshd\[3546\]: Failed password for root from 185.220.101.215 port 27396 ssh2 Sep 12 16:38:33 Ubuntu-1404-trusty-64-minimal sshd\[3546\]: Failed password for root from 185.220.101.215 port 27396 ssh2 Sep 12 16:38:35 Ubuntu-1404-trusty-64-minimal sshd\[3546\]: Failed password for root from 185.220.101.215 port 27396 ssh2 Sep 12 16:38:37 Ubuntu-1404-trusty-64-minimal sshd\[3546\]: Failed password for root from 185.220.101.215 port 27396 ssh2	2020-09-14 02:52:13
185.237.204.99	attack	20 attempts against mh-misbehave-ban on ship	2020-09-14 03:11:24
201.211.185.43	attack	1599929428 - 09/12/2020 18:50:28 Host: 201.211.185.43/201.211.185.43 Port: 445 TCP Blocked	2020-09-14 02:46:36
20.36.194.79	attackbots	srvr2: (mod_security) mod_security (id:934100) triggered by 20.36.194.79 (US/-/-): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/13 07:52:22 [error] 70302#0: 112258 [client 20.36.194.79] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-934-APPLICATION-ATTACK-NODEJS.conf"] [line "48"] [id "934100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-javascript"] [tag "platform-multi"] [tag "attack-rce"] [tag "attack-injection-nodejs"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/242"] [redacted] [uri "/p/i/"] [unique_id "159997634234.076801"] [ref ""], client: 20.36.194.79, [redacted] request: "GET /p/i/?a=">alert(String.fromCharCode(88,83,83))&get=f_26&order=ASC&token=f1c6dd4b95196516b8a5cafed373733de1dafb9d HTTP/1.1" [redacted]	2020-09-14 03:06:18
165.22.69.147	attack	2020-09-13T01:23:24.197139hostname sshd[31944]: Failed password for root from 165.22.69.147 port 57566 ssh2 ...	2020-09-14 02:53:32

最近上报的IP列表

13.89.125.224	138.199.6.210	233.40.82.115	151.254.13.174
61.160.248.120	129.153.73.124	223.104.133.53	60.191.209.74
20.64.104.229	49.36.81.31	183.186.193.199	180.153.236.6
180.153.236.229	123.113.237.156	194.180.49.73	180.153.236.173
180.153.236.125	139.19.117.206	162.216.150.29	167.99.111.33