132.145.18.157

基本信息:

城市(city): London

省份(region): England

国家(country): United Kingdom

运营商(isp): Oracle Public Cloud

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	$f2bV_matches	2020-01-12 01:26:26
attackspambots	2020-01-05T21:49:51.685010abusebot-2.cloudsearch.cf sshd[5834]: Invalid user castis from 132.145.18.157 port 53562 2020-01-05T21:49:51.690894abusebot-2.cloudsearch.cf sshd[5834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.18.157 2020-01-05T21:49:51.685010abusebot-2.cloudsearch.cf sshd[5834]: Invalid user castis from 132.145.18.157 port 53562 2020-01-05T21:49:54.038310abusebot-2.cloudsearch.cf sshd[5834]: Failed password for invalid user castis from 132.145.18.157 port 53562 ssh2 2020-01-05T21:51:32.976068abusebot-2.cloudsearch.cf sshd[5920]: Invalid user ubuntu from 132.145.18.157 port 45348 2020-01-05T21:51:32.984561abusebot-2.cloudsearch.cf sshd[5920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.18.157 2020-01-05T21:51:32.976068abusebot-2.cloudsearch.cf sshd[5920]: Invalid user ubuntu from 132.145.18.157 port 45348 2020-01-05T21:51:34.529211abusebot-2.cloudsearch.cf sshd[5920]: Fa ...	2020-01-06 06:03:28
attackspam	Multiple SSH login attempts.	2020-01-04 21:04:27
attackbotsspam	SSHScan	2020-01-04 05:34:42
attackbotsspam	Dec 10 11:06:37 tuxlinux sshd[62941]: Invalid user backuppc from 132.145.18.157 port 41938 Dec 10 11:06:37 tuxlinux sshd[62941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.18.157 Dec 10 11:06:37 tuxlinux sshd[62941]: Invalid user backuppc from 132.145.18.157 port 41938 Dec 10 11:06:37 tuxlinux sshd[62941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.18.157 ...	2019-12-10 18:37:37
attack	Dec 3 06:37:03 MK-Soft-Root2 sshd[26642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.18.157 Dec 3 06:37:04 MK-Soft-Root2 sshd[26642]: Failed password for invalid user postgres from 132.145.18.157 port 34060 ssh2 ...	2019-12-03 13:39:20
attackspambots	Nov 23 09:50:19 sshd[3729]: Invalid user ubuntu from 132.145.18.157 port 41288	2019-11-24 16:09:32
attackbots	Nov 11 17:44:46 mail sshd\[16761\]: Invalid user applmgr from 132.145.18.157 Nov 11 17:44:46 mail sshd\[16761\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.18.157 ...	2019-11-12 07:00:04
attack	Nov 11 16:38:53 cvbnet sshd[2145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.18.157 Nov 11 16:38:54 cvbnet sshd[2145]: Failed password for invalid user postgres from 132.145.18.157 port 37982 ssh2 ...	2019-11-11 23:43:55

相同子网IP讨论:

IP	类型	评论内容	时间
132.145.180.139	attackspambots	2020-09-27T18:12:45.179806shield sshd\[10491\]: Invalid user nicolas from 132.145.180.139 port 57586 2020-09-27T18:12:45.188284shield sshd\[10491\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.180.139 2020-09-27T18:12:46.532774shield sshd\[10491\]: Failed password for invalid user nicolas from 132.145.180.139 port 57586 ssh2 2020-09-27T18:17:08.095452shield sshd\[10977\]: Invalid user zs from 132.145.180.139 port 37032 2020-09-27T18:17:08.103439shield sshd\[10977\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.180.139	2020-09-28 02:32:02
132.145.180.139	attackbots	Sep 27 10:33:16 rocket sshd[26701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.180.139 Sep 27 10:33:18 rocket sshd[26701]: Failed password for invalid user roman from 132.145.180.139 port 46864 ssh2 ...	2020-09-27 18:38:35
132.145.184.238	attackspam	Invalid user ubnt from 132.145.184.238 port 48660	2020-09-11 21:59:41
132.145.184.238	attackbots	Invalid user ubnt from 132.145.184.238 port 48660	2020-09-11 14:06:51
132.145.184.238	attack	Invalid user ubnt from 132.145.184.238 port 54944	2020-09-11 06:18:32
132.145.184.238	attack	2020-09-07 UTC: (2x) - ubnt,user	2020-09-08 23:08:48
132.145.184.238	attackbots	2020-09-08T02:05:40.599425Z 73f53bed5813 New connection: 132.145.184.238:40924 (172.17.0.2:2222) [session: 73f53bed5813] 2020-09-08T03:00:09.386016Z 9f3ceb95c26d New connection: 132.145.184.238:37838 (172.17.0.2:2222) [session: 9f3ceb95c26d]	2020-09-08 14:51:10
132.145.184.238	attack	Sep 8 00:44:38 icecube sshd[75587]: Failed password for root from 132.145.184.238 port 59026 ssh2	2020-09-08 07:22:45
132.145.187.94	attack	404 NOT FOUND	2020-04-27 23:09:10
132.145.187.218	attackspam	Automatic report - Port Scan	2020-02-25 05:02:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 132.145.18.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34796
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;132.145.18.157.			IN	A

;; AUTHORITY SECTION:
.			562	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111100 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 11 23:43:52 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 157.18.145.132.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 157.18.145.132.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
104.248.145.163	attackbots	Jan 31 00:05:40 php1 sshd\[4148\]: Invalid user sumita from 104.248.145.163 Jan 31 00:05:40 php1 sshd\[4148\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.145.163 Jan 31 00:05:42 php1 sshd\[4148\]: Failed password for invalid user sumita from 104.248.145.163 port 49590 ssh2 Jan 31 00:09:03 php1 sshd\[4514\]: Invalid user ilavalagi from 104.248.145.163 Jan 31 00:09:03 php1 sshd\[4514\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.145.163	2020-01-31 18:14:00
222.186.30.76	attackbotsspam	Jan 31 11:19:33 piServer sshd[11630]: Failed password for root from 222.186.30.76 port 42466 ssh2 Jan 31 11:19:37 piServer sshd[11630]: Failed password for root from 222.186.30.76 port 42466 ssh2 Jan 31 11:19:41 piServer sshd[11630]: Failed password for root from 222.186.30.76 port 42466 ssh2 ...	2020-01-31 18:31:33
60.30.73.250	attackbotsspam	2020-01-31T10:47:25.902865scmdmz1 sshd[15738]: Invalid user fajyaz from 60.30.73.250 port 4765 2020-01-31T10:47:25.905710scmdmz1 sshd[15738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.30.73.250 2020-01-31T10:47:25.902865scmdmz1 sshd[15738]: Invalid user fajyaz from 60.30.73.250 port 4765 2020-01-31T10:47:27.526961scmdmz1 sshd[15738]: Failed password for invalid user fajyaz from 60.30.73.250 port 4765 ssh2 2020-01-31T10:51:29.780315scmdmz1 sshd[16205]: Invalid user nisna from 60.30.73.250 port 17032 ...	2020-01-31 18:16:14
110.56.16.157	attack	Jan 31 10:53:21 MK-Soft-Root2 sshd[27894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.56.16.157 Jan 31 10:53:23 MK-Soft-Root2 sshd[27894]: Failed password for invalid user kamakshi from 110.56.16.157 port 59186 ssh2 ...	2020-01-31 18:22:48
91.79.252.119	attackspambots	Jan 31 11:05:56 lnxded63 sshd[2478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.79.252.119	2020-01-31 18:23:16
217.182.194.95	attackbotsspam	detected by Fail2Ban	2020-01-31 18:00:28
188.170.83.45	attackspambots	20/1/31@03:48:55: FAIL: Alarm-Network address from=188.170.83.45 20/1/31@03:48:55: FAIL: Alarm-Network address from=188.170.83.45 ...	2020-01-31 18:18:15
89.133.62.227	attackspam	Jan 31 09:49:48 cvbnet sshd[13448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.133.62.227 Jan 31 09:49:50 cvbnet sshd[13448]: Failed password for invalid user sourabh from 89.133.62.227 port 47955 ssh2 ...	2020-01-31 17:41:53
61.28.108.122	attackbotsspam	Unauthorized connection attempt detected from IP address 61.28.108.122 to port 2220 [J]	2020-01-31 18:09:52
218.92.0.184	attack	2020-01-31T09:46:21.417790abusebot-7.cloudsearch.cf sshd[4707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.184 user=root 2020-01-31T09:46:23.254529abusebot-7.cloudsearch.cf sshd[4707]: Failed password for root from 218.92.0.184 port 23149 ssh2 2020-01-31T09:46:26.743741abusebot-7.cloudsearch.cf sshd[4707]: Failed password for root from 218.92.0.184 port 23149 ssh2 2020-01-31T09:46:21.417790abusebot-7.cloudsearch.cf sshd[4707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.184 user=root 2020-01-31T09:46:23.254529abusebot-7.cloudsearch.cf sshd[4707]: Failed password for root from 218.92.0.184 port 23149 ssh2 2020-01-31T09:46:26.743741abusebot-7.cloudsearch.cf sshd[4707]: Failed password for root from 218.92.0.184 port 23149 ssh2 2020-01-31T09:46:21.417790abusebot-7.cloudsearch.cf sshd[4707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218. ...	2020-01-31 18:01:41
92.97.39.171	attack	" "	2020-01-31 18:14:20
123.125.71.50	attackspambots	Bad bot/spoofed identity	2020-01-31 17:54:12
190.8.149.146	attackbotsspam	2020-01-31T10:33:12.410945scmdmz1 sshd[14112]: Invalid user tapisnu from 190.8.149.146 port 46831 2020-01-31T10:33:12.414641scmdmz1 sshd[14112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.8.149.146 2020-01-31T10:33:12.410945scmdmz1 sshd[14112]: Invalid user tapisnu from 190.8.149.146 port 46831 2020-01-31T10:33:13.935470scmdmz1 sshd[14112]: Failed password for invalid user tapisnu from 190.8.149.146 port 46831 ssh2 2020-01-31T10:35:56.438668scmdmz1 sshd[14387]: Invalid user surakshith from 190.8.149.146 port 57730 ...	2020-01-31 18:06:12
36.83.92.19	attack	1580460541 - 01/31/2020 09:49:01 Host: 36.83.92.19/36.83.92.19 Port: 445 TCP Blocked	2020-01-31 18:12:12
156.236.119.178	attack	Unauthorized connection attempt detected from IP address 156.236.119.178 to port 2220 [J]	2020-01-31 17:51:17

最近上报的IP列表

81.30.177.40	185.36.81.174	179.177.63.205	46.33.250.251
217.218.20.134	185.127.111.238	151.233.50.234	181.118.161.5
175.37.196.118	181.118.161.148	36.89.238.171	43.243.12.62
113.194.130.166	27.74.245.60	27.67.138.170	197.51.129.199
189.103.85.27	40.117.40.100	69.133.122.145	209.141.49.26