119.45.137.244

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Aug 25 15:27:33 root sshd[22887]: Invalid user zsy from 119.45.137.244 ...	2020-08-26 01:42:20
attackbots	Aug 20 22:29:11 h2829583 sshd[25889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.137.244	2020-08-21 04:53:27
attackspam	Aug 16 16:12:58 abendstille sshd\[30760\]: Invalid user viki from 119.45.137.244 Aug 16 16:12:58 abendstille sshd\[30760\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.137.244 Aug 16 16:13:00 abendstille sshd\[30760\]: Failed password for invalid user viki from 119.45.137.244 port 40200 ssh2 Aug 16 16:16:32 abendstille sshd\[2931\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.137.244 user=root Aug 16 16:16:35 abendstille sshd\[2931\]: Failed password for root from 119.45.137.244 port 45574 ssh2 ...	2020-08-16 22:27:21
attack	Aug 12 05:47:59 pornomens sshd\[6576\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.137.244 user=root Aug 12 05:48:01 pornomens sshd\[6576\]: Failed password for root from 119.45.137.244 port 52048 ssh2 Aug 12 05:54:26 pornomens sshd\[6639\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.137.244 user=root ...	2020-08-12 12:49:21
attackbotsspam	Aug 7 14:35:30 vps639187 sshd\[22107\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.137.244 user=root Aug 7 14:35:33 vps639187 sshd\[22107\]: Failed password for root from 119.45.137.244 port 38692 ssh2 Aug 7 14:39:30 vps639187 sshd\[22151\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.137.244 user=root ...	2020-08-08 01:16:28
attack	Jul 30 22:17:10 inter-technics sshd[31129]: Invalid user art from 119.45.137.244 port 43772 Jul 30 22:17:10 inter-technics sshd[31129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.137.244 Jul 30 22:17:10 inter-technics sshd[31129]: Invalid user art from 119.45.137.244 port 43772 Jul 30 22:17:12 inter-technics sshd[31129]: Failed password for invalid user art from 119.45.137.244 port 43772 ssh2 Jul 30 22:23:21 inter-technics sshd[31490]: Invalid user siding from 119.45.137.244 port 53000 ...	2020-07-31 04:45:56
attackbotsspam	Jul 27 22:07:32 ns382633 sshd\[7021\]: Invalid user shajiaojiao from 119.45.137.244 port 55042 Jul 27 22:07:32 ns382633 sshd\[7021\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.137.244 Jul 27 22:07:34 ns382633 sshd\[7021\]: Failed password for invalid user shajiaojiao from 119.45.137.244 port 55042 ssh2 Jul 27 22:18:29 ns382633 sshd\[9010\]: Invalid user lichengzhang from 119.45.137.244 port 42974 Jul 27 22:18:30 ns382633 sshd\[9010\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.137.244	2020-07-28 04:28:21
attack	Jul 9 08:38:36 serwer sshd\[26299\]: Invalid user venecia from 119.45.137.244 port 37010 Jul 9 08:38:36 serwer sshd\[26299\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.137.244 Jul 9 08:38:38 serwer sshd\[26299\]: Failed password for invalid user venecia from 119.45.137.244 port 37010 ssh2 ...	2020-07-09 17:17:44

相同子网IP讨论:

IP	类型	评论内容	时间
119.45.137.52	attackbots	frenzy	2020-09-29 23:46:09
119.45.137.52	attackspambots	Sep 12 09:55:43 root sshd[16290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.137.52 ...	2020-09-13 03:06:06
119.45.137.52	attackspambots	Sep 12 09:55:43 root sshd[16290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.137.52 ...	2020-09-12 19:11:15
119.45.137.52	attackbots	Sep 9 18:41:05 rush sshd[12597]: Failed password for root from 119.45.137.52 port 38614 ssh2 Sep 9 18:46:02 rush sshd[12675]: Failed password for root from 119.45.137.52 port 32806 ssh2 ...	2020-09-10 12:02:51
119.45.137.52	attackspam	Sep 9 18:21:21 rush sshd[12222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.137.52 Sep 9 18:21:23 rush sshd[12222]: Failed password for invalid user ubuntu from 119.45.137.52 port 33580 ssh2 Sep 9 18:26:23 rush sshd[12337]: Failed password for root from 119.45.137.52 port 56014 ssh2 ...	2020-09-10 02:48:07
119.45.137.52	attackspam	2020-08-19T06:24:53.787939shield sshd\[3830\]: Invalid user julia from 119.45.137.52 port 57542 2020-08-19T06:24:53.796915shield sshd\[3830\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.137.52 2020-08-19T06:24:56.417497shield sshd\[3830\]: Failed password for invalid user julia from 119.45.137.52 port 57542 ssh2 2020-08-19T06:28:19.423492shield sshd\[4098\]: Invalid user popeye from 119.45.137.52 port 48172 2020-08-19T06:28:19.433476shield sshd\[4098\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.137.52	2020-08-19 15:56:58
119.45.137.210	attackspam	Bruteforce detected by fail2ban	2020-08-17 21:32:13
119.45.137.52	attackspambots	(sshd) Failed SSH login from 119.45.137.52 (CN/China/-): 5 in the last 3600 secs	2020-08-17 00:28:53
119.45.137.210	attackbots	Aug 13 13:15:08 rocket sshd[24806]: Failed password for root from 119.45.137.210 port 50932 ssh2 Aug 13 13:18:59 rocket sshd[25165]: Failed password for root from 119.45.137.210 port 33650 ssh2 ...	2020-08-13 22:21:32
119.45.137.210	attackbots	Aug 13 05:56:11 vps sshd[31472]: Failed password for root from 119.45.137.210 port 55068 ssh2 Aug 13 05:56:48 vps sshd[31497]: Failed password for root from 119.45.137.210 port 59638 ssh2 ...	2020-08-13 12:10:12
119.45.137.210	attackspam	Aug 12 08:58:30 pve1 sshd[26138]: Failed password for root from 119.45.137.210 port 44278 ssh2 ...	2020-08-12 15:53:07
119.45.137.210	attackspambots	Aug 9 17:05:26 PorscheCustomer sshd[30264]: Failed password for root from 119.45.137.210 port 51558 ssh2 Aug 9 17:09:34 PorscheCustomer sshd[30367]: Failed password for root from 119.45.137.210 port 35318 ssh2 ...	2020-08-09 23:16:41
119.45.137.52	attackbots	Aug 7 06:04:42 eventyay sshd[1608]: Failed password for root from 119.45.137.52 port 41686 ssh2 Aug 7 06:08:22 eventyay sshd[1742]: Failed password for root from 119.45.137.52 port 36124 ssh2 ...	2020-08-07 15:54:12
119.45.137.210	attackspambots	Aug 4 17:01:01 sshd\[25046\]: User root from 119.45.137.210 not allowed because not listed in AllowUsersAug 4 17:01:04 sshd\[25046\]: Failed password for invalid user root from 119.45.137.210 port 49684 ssh2 ...	2020-08-04 23:25:23
119.45.137.210	attackspambots	Aug 3 09:14:46 sip sshd[1175268]: Failed password for root from 119.45.137.210 port 54216 ssh2 Aug 3 09:18:41 sip sshd[1175308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.137.210 user=root Aug 3 09:18:44 sip sshd[1175308]: Failed password for root from 119.45.137.210 port 39172 ssh2 ...	2020-08-03 15:41:45

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.45.137.244
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54788
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.45.137.244.			IN	A

;; AUTHORITY SECTION:
.			482	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070900 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 09 17:17:40 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 244.137.45.119.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 244.137.45.119.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
120.52.121.86	attackspam	Aug 10 16:40:11 server sshd\[12496\]: Invalid user tryton from 120.52.121.86 port 39318 Aug 10 16:40:11 server sshd\[12496\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.121.86 Aug 10 16:40:13 server sshd\[12496\]: Failed password for invalid user tryton from 120.52.121.86 port 39318 ssh2 Aug 10 16:44:27 server sshd\[21901\]: Invalid user dd from 120.52.121.86 port 55642 Aug 10 16:44:27 server sshd\[21901\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.121.86	2019-08-10 21:45:27
14.116.254.33	attackbotsspam	Feb 6 16:51:43 motanud sshd\[13713\]: Invalid user jason from 14.116.254.33 port 25609 Feb 6 16:51:43 motanud sshd\[13713\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.254.33 Feb 6 16:51:45 motanud sshd\[13713\]: Failed password for invalid user jason from 14.116.254.33 port 25609 ssh2	2019-08-10 21:11:45
66.150.8.85	attackbotsspam	ICMP MP Probe, Scan -	2019-08-10 20:59:01
165.22.206.81	attackbots	detected by Fail2Ban	2019-08-10 21:23:38
23.6.113.181	attackspambots	ICMP MP Probe, Scan -	2019-08-10 21:40:55
187.116.75.145	attack	Aug 9 22:06:58 vpxxxxxxx22308 sshd[30391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.116.75.145 user=r.r Aug 9 22:07:00 vpxxxxxxx22308 sshd[30391]: Failed password for r.r from 187.116.75.145 port 4213 ssh2 Aug 9 22:07:02 vpxxxxxxx22308 sshd[30391]: Failed password for r.r from 187.116.75.145 port 4213 ssh2 Aug 9 22:07:04 vpxxxxxxx22308 sshd[30391]: Failed password for r.r from 187.116.75.145 port 4213 ssh2 Aug 9 22:07:06 vpxxxxxxx22308 sshd[30391]: Failed password for r.r from 187.116.75.145 port 4213 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=187.116.75.145	2019-08-10 21:30:54
212.47.238.207	attackbots	Automatic report - Banned IP Access	2019-08-10 21:41:17
64.94.45.0	attackspam	ICMP MP Probe, Scan -	2019-08-10 21:24:37
58.71.220.30	attackspambots	Aug 10 15:57:29 docs sshd\[17999\]: Invalid user alba from 58.71.220.30Aug 10 15:57:30 docs sshd\[17999\]: Failed password for invalid user alba from 58.71.220.30 port 51025 ssh2Aug 10 16:02:24 docs sshd\[18085\]: Invalid user admin from 58.71.220.30Aug 10 16:02:26 docs sshd\[18085\]: Failed password for invalid user admin from 58.71.220.30 port 39419 ssh2Aug 10 16:07:21 docs sshd\[18166\]: Invalid user wendel from 58.71.220.30Aug 10 16:07:23 docs sshd\[18166\]: Failed password for invalid user wendel from 58.71.220.30 port 28797 ssh2 ...	2019-08-10 21:17:53
43.227.66.159	attackspam	Aug 10 14:22:50 microserver sshd[13198]: Invalid user guest from 43.227.66.159 port 40872 Aug 10 14:22:50 microserver sshd[13198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.227.66.159 Aug 10 14:22:52 microserver sshd[13198]: Failed password for invalid user guest from 43.227.66.159 port 40872 ssh2 Aug 10 14:27:57 microserver sshd[13899]: Invalid user abdul from 43.227.66.159 port 58558 Aug 10 14:27:57 microserver sshd[13899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.227.66.159 Aug 10 14:43:10 microserver sshd[15932]: Invalid user arya from 43.227.66.159 port 55320 Aug 10 14:43:10 microserver sshd[15932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.227.66.159 Aug 10 14:43:13 microserver sshd[15932]: Failed password for invalid user arya from 43.227.66.159 port 55320 ssh2 Aug 10 14:48:12 microserver sshd[16577]: Invalid user kjayroe from 43.227.66.159 port 44752 Aug 1	2019-08-10 21:37:45
62.210.151.21	attack	\[2019-08-10 09:26:47\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-10T09:26:47.727-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="90065415623860418",SessionID="0x7ff4d07952f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.151.21/59200",ACLName="no_extension_match" \[2019-08-10 09:26:56\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-10T09:26:56.124-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="901165013054404227",SessionID="0x7ff4d014e018",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.151.21/58453",ACLName="no_extension_match" \[2019-08-10 09:27:05\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-10T09:27:05.745-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="757812243078499",SessionID="0x7ff4d02d8f48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.151.21/61507",ACLName="n	2019-08-10 21:36:47
89.248.172.85	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-10 21:03:26
41.35.17.72	attackspam	Aug 10 13:39:51 pl3server sshd[937591]: reveeclipse mapping checking getaddrinfo for host-41.35.17.72.tedata.net [41.35.17.72] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 10 13:39:51 pl3server sshd[937591]: Invalid user admin from 41.35.17.72 Aug 10 13:39:51 pl3server sshd[937591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.35.17.72 Aug 10 13:39:52 pl3server sshd[937591]: Failed password for invalid user admin from 41.35.17.72 port 53709 ssh2 Aug 10 13:39:53 pl3server sshd[937591]: Connection closed by 41.35.17.72 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=41.35.17.72	2019-08-10 21:14:42
14.139.155.19	attackbotsspam	Feb 28 19:34:26 motanud sshd\[17313\]: Invalid user adriana from 14.139.155.19 port 49780 Feb 28 19:34:26 motanud sshd\[17313\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.155.19 Feb 28 19:34:28 motanud sshd\[17313\]: Failed password for invalid user adriana from 14.139.155.19 port 49780 ssh2	2019-08-10 21:05:54
81.12.13.169	attack	Aug 10 14:22:18 lnxmail61 sshd[21674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.12.13.169	2019-08-10 21:42:39

最近上报的IP列表

92.245.173.78	41.218.225.147	135.10.136.137	182.25.199.97
122.226.99.238	43.171.38.133	190.201.108.138	22.233.20.79
211.212.37.204	45.95.253.167	190.78.15.37	176.40.48.206
211.155.225.104	190.73.77.187	138.186.227.250	43.119.254.116
117.51.153.70	47.6.18.207	118.165.130.97	37.237.152.204