45.171.239.12 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Brazil

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.171.239.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34945
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.171.239.12.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025013101 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 01 03:53:44 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

12.239.171.45.in-addr.arpa domain name pointer 12-239-171-45.teqnet.com.br.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
12.239.171.45.in-addr.arpa	name = 12-239-171-45.teqnet.com.br.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
182.61.165.191	attack	182.61.165.191 - - [30/Aug/2020:11:06:58 +0100] "POST /wp-login.php HTTP/1.1" 200 2369 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 182.61.165.191 - - [30/Aug/2020:11:07:01 +0100] "POST /wp-login.php HTTP/1.1" 200 2364 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 182.61.165.191 - - [30/Aug/2020:11:07:02 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-30 18:42:36
183.56.165.200	attack	Hacking	2020-08-30 18:43:07
5.188.62.14	attack	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-08-30T09:43:55Z and 2020-08-30T09:56:01Z	2020-08-30 18:34:17
206.189.235.139	attack	WordPress wp-login brute force :: 206.189.235.139 0.156 - [30/Aug/2020:03:44:15 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 2411 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-08-30 18:22:04
176.250.246.132	attack	20/8/29@23:44:08: FAIL: Alarm-Telnet address from=176.250.246.132 ...	2020-08-30 18:26:13
159.89.114.40	attack	2020-08-30T06:18:15.909179xentho-1 sshd[305167]: Invalid user mdo from 159.89.114.40 port 53764 2020-08-30T06:18:15.915079xentho-1 sshd[305167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.114.40 2020-08-30T06:18:15.909179xentho-1 sshd[305167]: Invalid user mdo from 159.89.114.40 port 53764 2020-08-30T06:18:17.801795xentho-1 sshd[305167]: Failed password for invalid user mdo from 159.89.114.40 port 53764 ssh2 2020-08-30T06:20:22.321760xentho-1 sshd[305208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.114.40 user=root 2020-08-30T06:20:24.308611xentho-1 sshd[305208]: Failed password for root from 159.89.114.40 port 53472 ssh2 2020-08-30T06:22:10.534327xentho-1 sshd[305256]: Invalid user tecnici from 159.89.114.40 port 53148 2020-08-30T06:22:10.539865xentho-1 sshd[305256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.114.40 2020-08-30T06: ...	2020-08-30 18:28:16
91.212.38.68	attackspam	Aug 30 11:59:37 nextcloud sshd\[14300\]: Invalid user user from 91.212.38.68 Aug 30 11:59:37 nextcloud sshd\[14300\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.212.38.68 Aug 30 11:59:39 nextcloud sshd\[14300\]: Failed password for invalid user user from 91.212.38.68 port 41598 ssh2	2020-08-30 18:41:47
51.77.148.7	attack	Time: Sun Aug 30 08:59:34 2020 +0000 IP: 51.77.148.7 (FR/France/7.ip-51-77-148.eu) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Aug 30 08:35:42 ca-1-ams1 sshd[50279]: Failed password for root from 51.77.148.7 port 33910 ssh2 Aug 30 08:51:45 ca-1-ams1 sshd[50821]: Failed password for root from 51.77.148.7 port 58304 ssh2 Aug 30 08:55:40 ca-1-ams1 sshd[51126]: Invalid user test from 51.77.148.7 port 37144 Aug 30 08:55:42 ca-1-ams1 sshd[51126]: Failed password for invalid user test from 51.77.148.7 port 37144 ssh2 Aug 30 08:59:33 ca-1-ams1 sshd[51344]: Invalid user mega from 51.77.148.7 port 44228	2020-08-30 18:25:57
159.65.149.139	attackbots	Aug 29 23:50:16 propaganda sshd[22447]: Connection from 159.65.149.139 port 37766 on 10.0.0.161 port 22 rdomain "" Aug 29 23:50:17 propaganda sshd[22447]: Connection closed by 159.65.149.139 port 37766 [preauth]	2020-08-30 18:05:40
52.188.69.174	attackbots	detected by Fail2Ban	2020-08-30 18:19:16
200.158.32.146	attack	(sshd) Failed SSH login from 200.158.32.146 (BR/Brazil/200-158-32-146.dsl.telesp.net.br): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 30 05:40:17 server sshd[11019]: Invalid user sambauser from 200.158.32.146 port 29569 Aug 30 05:40:19 server sshd[11019]: Failed password for invalid user sambauser from 200.158.32.146 port 29569 ssh2 Aug 30 05:49:56 server sshd[13598]: Invalid user postgres from 200.158.32.146 port 61378 Aug 30 05:49:57 server sshd[13598]: Failed password for invalid user postgres from 200.158.32.146 port 61378 ssh2 Aug 30 05:54:31 server sshd[14828]: Invalid user deployer from 200.158.32.146 port 16449	2020-08-30 18:20:36
188.166.50.57	attackspambots	ssh brute force	2020-08-30 18:03:06
101.99.20.59	attackspambots	Aug 30 07:19:00 Ubuntu-1404-trusty-64-minimal sshd\[2039\]: Invalid user user5 from 101.99.20.59 Aug 30 07:19:00 Ubuntu-1404-trusty-64-minimal sshd\[2039\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.99.20.59 Aug 30 07:19:01 Ubuntu-1404-trusty-64-minimal sshd\[2039\]: Failed password for invalid user user5 from 101.99.20.59 port 49396 ssh2 Aug 30 07:29:22 Ubuntu-1404-trusty-64-minimal sshd\[6895\]: Invalid user postgres from 101.99.20.59 Aug 30 07:29:22 Ubuntu-1404-trusty-64-minimal sshd\[6895\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.99.20.59	2020-08-30 18:23:17
188.246.224.140	attackbotsspam	Aug 30 08:07:59 scw-tender-jepsen sshd[3594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.246.224.140 Aug 30 08:08:00 scw-tender-jepsen sshd[3594]: Failed password for invalid user ganyi from 188.246.224.140 port 32794 ssh2	2020-08-30 18:09:16
176.36.89.203	attackbotsspam	Dovecot Invalid User Login Attempt.	2020-08-30 18:36:18

最近上报的IP列表

247.146.228.67	30.230.35.252	170.118.29.228	164.176.8.33
19.192.194.166	29.134.4.71	40.118.210.13	174.51.194.189
89.214.243.2	163.132.251.124	144.247.60.67	107.219.27.52
167.173.41.252	213.134.170.117	230.198.156.76	18.12.41.27
43.107.10.112	189.124.80.122	230.15.3.182	4.20.188.227