必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Brazil

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.171.239.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34945
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.171.239.12.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025013101 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 01 03:53:44 CST 2025
;; MSG SIZE  rcvd: 106
HOST信息:
12.239.171.45.in-addr.arpa domain name pointer 12-239-171-45.teqnet.com.br.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
12.239.171.45.in-addr.arpa	name = 12-239-171-45.teqnet.com.br.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
182.61.165.191 attack
182.61.165.191 - - [30/Aug/2020:11:06:58 +0100] "POST /wp-login.php HTTP/1.1" 200 2369 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
182.61.165.191 - - [30/Aug/2020:11:07:01 +0100] "POST /wp-login.php HTTP/1.1" 200 2364 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
182.61.165.191 - - [30/Aug/2020:11:07:02 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-08-30 18:42:36
183.56.165.200 attack
Hacking
2020-08-30 18:43:07
5.188.62.14 attack
Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-08-30T09:43:55Z and 2020-08-30T09:56:01Z
2020-08-30 18:34:17
206.189.235.139 attack
WordPress wp-login brute force :: 206.189.235.139 0.156 - [30/Aug/2020:03:44:15  0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 2411 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"
2020-08-30 18:22:04
176.250.246.132 attack
20/8/29@23:44:08: FAIL: Alarm-Telnet address from=176.250.246.132
...
2020-08-30 18:26:13
159.89.114.40 attack
2020-08-30T06:18:15.909179xentho-1 sshd[305167]: Invalid user mdo from 159.89.114.40 port 53764
2020-08-30T06:18:15.915079xentho-1 sshd[305167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.114.40
2020-08-30T06:18:15.909179xentho-1 sshd[305167]: Invalid user mdo from 159.89.114.40 port 53764
2020-08-30T06:18:17.801795xentho-1 sshd[305167]: Failed password for invalid user mdo from 159.89.114.40 port 53764 ssh2
2020-08-30T06:20:22.321760xentho-1 sshd[305208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.114.40  user=root
2020-08-30T06:20:24.308611xentho-1 sshd[305208]: Failed password for root from 159.89.114.40 port 53472 ssh2
2020-08-30T06:22:10.534327xentho-1 sshd[305256]: Invalid user tecnici from 159.89.114.40 port 53148
2020-08-30T06:22:10.539865xentho-1 sshd[305256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.114.40
2020-08-30T06:
...
2020-08-30 18:28:16
91.212.38.68 attackspam
Aug 30 11:59:37 nextcloud sshd\[14300\]: Invalid user user from 91.212.38.68
Aug 30 11:59:37 nextcloud sshd\[14300\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.212.38.68
Aug 30 11:59:39 nextcloud sshd\[14300\]: Failed password for invalid user user from 91.212.38.68 port 41598 ssh2
2020-08-30 18:41:47
51.77.148.7 attack
Time:     Sun Aug 30 08:59:34 2020 +0000
IP:       51.77.148.7 (FR/France/7.ip-51-77-148.eu)
Failures: 5 (sshd)
Interval: 3600 seconds
Blocked:  Permanent Block [LF_SSHD]

Log entries:

Aug 30 08:35:42 ca-1-ams1 sshd[50279]: Failed password for root from 51.77.148.7 port 33910 ssh2
Aug 30 08:51:45 ca-1-ams1 sshd[50821]: Failed password for root from 51.77.148.7 port 58304 ssh2
Aug 30 08:55:40 ca-1-ams1 sshd[51126]: Invalid user test from 51.77.148.7 port 37144
Aug 30 08:55:42 ca-1-ams1 sshd[51126]: Failed password for invalid user test from 51.77.148.7 port 37144 ssh2
Aug 30 08:59:33 ca-1-ams1 sshd[51344]: Invalid user mega from 51.77.148.7 port 44228
2020-08-30 18:25:57
159.65.149.139 attackbots
Aug 29 23:50:16 propaganda sshd[22447]: Connection from 159.65.149.139 port 37766 on 10.0.0.161 port 22 rdomain ""
Aug 29 23:50:17 propaganda sshd[22447]: Connection closed by 159.65.149.139 port 37766 [preauth]
2020-08-30 18:05:40
52.188.69.174 attackbots
detected by Fail2Ban
2020-08-30 18:19:16
200.158.32.146 attack
(sshd) Failed SSH login from 200.158.32.146 (BR/Brazil/200-158-32-146.dsl.telesp.net.br): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 30 05:40:17 server sshd[11019]: Invalid user sambauser from 200.158.32.146 port 29569
Aug 30 05:40:19 server sshd[11019]: Failed password for invalid user sambauser from 200.158.32.146 port 29569 ssh2
Aug 30 05:49:56 server sshd[13598]: Invalid user postgres from 200.158.32.146 port 61378
Aug 30 05:49:57 server sshd[13598]: Failed password for invalid user postgres from 200.158.32.146 port 61378 ssh2
Aug 30 05:54:31 server sshd[14828]: Invalid user deployer from 200.158.32.146 port 16449
2020-08-30 18:20:36
188.166.50.57 attackspambots
ssh brute force
2020-08-30 18:03:06
101.99.20.59 attackspambots
Aug 30 07:19:00 Ubuntu-1404-trusty-64-minimal sshd\[2039\]: Invalid user user5 from 101.99.20.59
Aug 30 07:19:00 Ubuntu-1404-trusty-64-minimal sshd\[2039\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.99.20.59
Aug 30 07:19:01 Ubuntu-1404-trusty-64-minimal sshd\[2039\]: Failed password for invalid user user5 from 101.99.20.59 port 49396 ssh2
Aug 30 07:29:22 Ubuntu-1404-trusty-64-minimal sshd\[6895\]: Invalid user postgres from 101.99.20.59
Aug 30 07:29:22 Ubuntu-1404-trusty-64-minimal sshd\[6895\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.99.20.59
2020-08-30 18:23:17
188.246.224.140 attackbotsspam
Aug 30 08:07:59 scw-tender-jepsen sshd[3594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.246.224.140
Aug 30 08:08:00 scw-tender-jepsen sshd[3594]: Failed password for invalid user ganyi from 188.246.224.140 port 32794 ssh2
2020-08-30 18:09:16
176.36.89.203 attackbotsspam
Dovecot Invalid User Login Attempt.
2020-08-30 18:36:18

最近上报的IP列表

247.146.228.67 30.230.35.252 170.118.29.228 164.176.8.33
19.192.194.166 29.134.4.71 40.118.210.13 174.51.194.189
89.214.243.2 163.132.251.124 144.247.60.67 107.219.27.52
167.173.41.252 213.134.170.117 230.198.156.76 18.12.41.27
43.107.10.112 189.124.80.122 230.15.3.182 4.20.188.227