132.145.140.203

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Oracle Public Cloud

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	serveres are UTC Lines containing failures of 132.145.140.203 Jan 25 21:00:11 tux2 sshd[581]: Invalid user support from 132.145.140.203 port 52336 Jan 25 21:00:11 tux2 sshd[581]: Failed password for invalid user support from 132.145.140.203 port 52336 ssh2 Jan 25 21:00:11 tux2 sshd[581]: Connection closed by invalid user support 132.145.140.203 port 52336 [preauth] Jan 25 23:40:44 tux2 sshd[9220]: Invalid user support from 132.145.140.203 port 63630 Jan 25 23:40:44 tux2 sshd[9220]: Failed password for invalid user support from 132.145.140.203 port 63630 ssh2 Jan 25 23:40:44 tux2 sshd[9220]: Connection closed by invalid user support 132.145.140.203 port 63630 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=132.145.140.203	2020-01-26 20:41:22

类型

评论内容

时间

attackspambots

serveres are UTC 
Lines containing failures of 132.145.140.203
Jan 25 21:00:11 tux2 sshd[581]: Invalid user support from 132.145.140.203 port 52336
Jan 25 21:00:11 tux2 sshd[581]: Failed password for invalid user support from 132.145.140.203 port 52336 ssh2
Jan 25 21:00:11 tux2 sshd[581]: Connection closed by invalid user support 132.145.140.203 port 52336 [preauth]
Jan 25 23:40:44 tux2 sshd[9220]: Invalid user support from 132.145.140.203 port 63630
Jan 25 23:40:44 tux2 sshd[9220]: Failed password for invalid user support from 132.145.140.203 port 63630 ssh2
Jan 25 23:40:44 tux2 sshd[9220]: Connection closed by invalid user support 132.145.140.203 port 63630 [preauth]



........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=132.145.140.203

2020-01-26 20:41:22

相同子网IP讨论:

IP	类型	评论内容	时间
132.145.140.38	attack	21 attempts against mh-ssh on cloud	2020-09-22 22:22:56
132.145.140.38	attack	Failed password for invalid user darwin from 132.145.140.38 port 34232 ssh2 Invalid user telnet from 132.145.140.38 port 39224 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.140.38 Invalid user telnet from 132.145.140.38 port 39224 Failed password for invalid user telnet from 132.145.140.38 port 39224 ssh2	2020-09-22 14:27:50
132.145.140.38	attackspam	Sep 21 22:28:02 nopemail auth.info sshd[22537]: Invalid user test from 132.145.140.38 port 37888 ...	2020-09-22 06:30:57
132.145.140.142	attack	Unauthorized connection attempt detected from IP address 132.145.140.142 to port 1433	2019-12-29 18:55:13

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 132.145.140.203
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27237
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;132.145.140.203.		IN	A

;; AUTHORITY SECTION:
.			226	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012600 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 26 20:41:19 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 203.140.145.132.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 203.140.145.132.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
157.230.163.6	attackspambots	Aug 2 16:46:30 vlre-nyc-1 sshd\[2257\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.163.6 user=root Aug 2 16:46:32 vlre-nyc-1 sshd\[2257\]: Failed password for root from 157.230.163.6 port 50480 ssh2 Aug 2 16:51:38 vlre-nyc-1 sshd\[2297\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.163.6 user=root Aug 2 16:51:40 vlre-nyc-1 sshd\[2297\]: Failed password for root from 157.230.163.6 port 37166 ssh2 Aug 2 16:55:51 vlre-nyc-1 sshd\[2331\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.163.6 user=root ...	2020-08-03 03:06:31
51.178.29.191	attackbotsspam	Aug 2 14:21:37 lnxmysql61 sshd[26542]: Failed password for root from 51.178.29.191 port 60400 ssh2 Aug 2 14:26:01 lnxmysql61 sshd[27764]: Failed password for root from 51.178.29.191 port 35896 ssh2	2020-08-03 03:22:53
106.13.40.65	attackbotsspam	2020-08-02T16:22:13.216174mail.standpoint.com.ua sshd[8568]: Invalid user asdfg1234%^ from 106.13.40.65 port 51994 2020-08-02T16:22:13.218890mail.standpoint.com.ua sshd[8568]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.40.65 2020-08-02T16:22:13.216174mail.standpoint.com.ua sshd[8568]: Invalid user asdfg1234%^ from 106.13.40.65 port 51994 2020-08-02T16:22:15.072350mail.standpoint.com.ua sshd[8568]: Failed password for invalid user asdfg1234%^ from 106.13.40.65 port 51994 ssh2 2020-08-02T16:23:26.927764mail.standpoint.com.ua sshd[8702]: Invalid user coolbeans from 106.13.40.65 port 38040 ...	2020-08-03 03:03:41
159.65.155.255	attack	Aug 2 18:39:52 prod4 sshd\[31270\]: Failed password for root from 159.65.155.255 port 41850 ssh2 Aug 2 18:46:24 prod4 sshd\[3339\]: Failed password for root from 159.65.155.255 port 41368 ssh2 Aug 2 18:49:40 prod4 sshd\[4926\]: Failed password for root from 159.65.155.255 port 33220 ssh2 ...	2020-08-03 03:11:31
51.75.52.118	attack	Unauthorized access detected from black listed ip!	2020-08-03 03:21:36
182.61.21.200	attackbots	Aug 2 21:33:03 ns37 sshd[28169]: Failed password for root from 182.61.21.200 port 57484 ssh2 Aug 2 21:33:30 ns37 sshd[28205]: Failed password for root from 182.61.21.200 port 59840 ssh2	2020-08-03 03:34:18
185.176.27.2	attackspam	Port scan: Attack repeated for 24 hours	2020-08-03 03:10:58
62.234.164.238	attackspambots	Aug 2 14:01:22 vps639187 sshd\[8862\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.164.238 user=root Aug 2 14:01:24 vps639187 sshd\[8862\]: Failed password for root from 62.234.164.238 port 53426 ssh2 Aug 2 14:04:50 vps639187 sshd\[8871\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.164.238 user=root ...	2020-08-03 03:08:29
118.25.125.17	attack	Aug 2 21:10:33 lnxweb61 sshd[9683]: Failed password for root from 118.25.125.17 port 34348 ssh2 Aug 2 21:15:30 lnxweb61 sshd[14773]: Failed password for root from 118.25.125.17 port 38816 ssh2	2020-08-03 03:29:11
94.102.51.95	attackspambots	08/02/2020-15:13:05.469582 94.102.51.95 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-08-03 03:18:33
51.75.18.215	attackspam	$f2bV_matches	2020-08-03 03:01:31
192.241.246.167	attackspambots	Aug 2 20:56:32 ns381471 sshd[12099]: Failed password for root from 192.241.246.167 port 34031 ssh2	2020-08-03 03:14:12
192.241.130.161	attack	TCP (SYN) 192.241.130.161:52857 -> port 22, len 44	2020-08-03 03:01:06
216.218.206.103	attackspam	Port scan denied	2020-08-03 03:28:10
95.107.2.143	attackspam	Automatic report - Banned IP Access	2020-08-03 02:59:33

最近上报的IP列表

207.195.139.20	26.103.244.130	61.0.124.42	194.44.82.107
190.94.149.86	187.234.109.167	177.85.81.86	111.229.167.200
82.102.104.103	36.226.16.183	5.54.29.52	223.155.179.220
223.10.182.43	30.56.142.114	222.139.195.157	155.100.238.47
7.233.60.208	206.189.231.41	39.40.2.97	197.231.196.102