132.145.193.74

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Oracle Public Cloud

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Apr 28 23:07:12 server sshd[2775]: Failed password for invalid user packer from 132.145.193.74 port 53944 ssh2 Apr 28 23:15:39 server sshd[5559]: Failed password for root from 132.145.193.74 port 41172 ssh2 Apr 28 23:18:20 server sshd[6530]: Failed password for invalid user nicu from 132.145.193.74 port 34960 ssh2	2020-04-29 05:43:13
attackbots	Apr 28 15:13:46 vpn01 sshd[1819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.193.74 Apr 28 15:13:48 vpn01 sshd[1819]: Failed password for invalid user service from 132.145.193.74 port 60520 ssh2 ...	2020-04-28 21:37:15

类型

评论内容

时间

attackspambots

Apr 28 23:07:12 server sshd[2775]: Failed password for invalid user packer from 132.145.193.74 port 53944 ssh2
Apr 28 23:15:39 server sshd[5559]: Failed password for root from 132.145.193.74 port 41172 ssh2
Apr 28 23:18:20 server sshd[6530]: Failed password for invalid user nicu from 132.145.193.74 port 34960 ssh2

2020-04-29 05:43:13

attackbots

Apr 28 15:13:46 vpn01 sshd[1819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.193.74
Apr 28 15:13:48 vpn01 sshd[1819]: Failed password for invalid user service from 132.145.193.74 port 60520 ssh2
...

2020-04-28 21:37:15

相同子网IP讨论:

IP	类型	评论内容	时间
132.145.193.203	attackspambots	Hit on /phpMyAdmin/scripts/setup.php	2019-11-19 21:36:18
132.145.193.203	attack	Attempts to probe for or exploit a Drupal 7.67 site on url: /phpmyadmin/scripts/setup.php. Reported by the module https://www.drupal.org/project/abuseipdb.	2019-11-19 14:20:08

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 132.145.193.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35808
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;132.145.193.74.			IN	A

;; AUTHORITY SECTION:
.			559	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042800 1800 900 604800 86400

;; Query time: 121 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 28 21:37:11 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 74.193.145.132.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 74.193.145.132.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
192.227.252.30	attack	Sep 20 13:26:35 sachi sshd\[24099\]: Invalid user Lunixx from 192.227.252.30 Sep 20 13:26:35 sachi sshd\[24099\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.227.252.30 Sep 20 13:26:38 sachi sshd\[24099\]: Failed password for invalid user Lunixx from 192.227.252.30 port 35338 ssh2 Sep 20 13:35:07 sachi sshd\[24778\]: Invalid user train1 from 192.227.252.30 Sep 20 13:35:07 sachi sshd\[24778\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.227.252.30	2019-09-21 07:50:07
213.136.73.193	attackbots	User agent in blacklist: Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.115 Safari/537.36 @ 2019-09-20T23:37:03+02:00.	2019-09-21 08:12:25
176.65.2.5	attackspam	This IP address was blacklisted for the following reason: /de/jobs/industriemechaniker-m-w/&%22%20or%20(1,2)=(select*from(select%20name_const(CHAR(111,78,69,75,117,76,116,86,103,101,104,75),1),name_const(CHAR(111,78,69,75,117,76,116,86,103,101,104,75),1))a)%20--%20%22x%22=%22x @ 2018-10-15T00:54:59+02:00.	2019-09-21 08:11:08
164.132.47.139	attack	Sep 20 20:06:52 mail sshd[32378]: Invalid user oracle3 from 164.132.47.139 Sep 20 20:06:52 mail sshd[32378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.47.139 Sep 20 20:06:52 mail sshd[32378]: Invalid user oracle3 from 164.132.47.139 Sep 20 20:06:54 mail sshd[32378]: Failed password for invalid user oracle3 from 164.132.47.139 port 59832 ssh2 Sep 20 20:15:52 mail sshd[13603]: Invalid user ubuntu from 164.132.47.139 ...	2019-09-21 07:35:02
5.39.92.185	attackbotsspam	Sep 20 21:12:50 Ubuntu-1404-trusty-64-minimal sshd\[9020\]: Invalid user host from 5.39.92.185 Sep 20 21:12:50 Ubuntu-1404-trusty-64-minimal sshd\[9020\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.92.185 Sep 20 21:12:53 Ubuntu-1404-trusty-64-minimal sshd\[9020\]: Failed password for invalid user host from 5.39.92.185 port 54832 ssh2 Sep 20 21:33:05 Ubuntu-1404-trusty-64-minimal sshd\[24051\]: Invalid user sonic from 5.39.92.185 Sep 20 21:33:05 Ubuntu-1404-trusty-64-minimal sshd\[24051\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.92.185	2019-09-21 07:52:35
191.32.226.232	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 20-09-2019 19:15:16.	2019-09-21 08:01:21
149.56.141.193	attackbotsspam	Sep 20 09:34:26 tdfoods sshd\[2361\]: Invalid user glassfish from 149.56.141.193 Sep 20 09:34:26 tdfoods sshd\[2361\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.ip-149-56-141.net Sep 20 09:34:28 tdfoods sshd\[2361\]: Failed password for invalid user glassfish from 149.56.141.193 port 53788 ssh2 Sep 20 09:38:43 tdfoods sshd\[2718\]: Invalid user ey from 149.56.141.193 Sep 20 09:38:43 tdfoods sshd\[2718\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.ip-149-56-141.net	2019-09-21 07:35:30
154.92.130.225	attackspam	SSH Brute-Force reported by Fail2Ban	2019-09-21 08:13:46
49.207.32.146	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 20-09-2019 19:15:18.	2019-09-21 07:59:17
37.113.128.52	attackbotsspam	Sep 21 01:24:15 jane sshd[25257]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.113.128.52 Sep 21 01:24:17 jane sshd[25257]: Failed password for invalid user ltsp from 37.113.128.52 port 55732 ssh2 ...	2019-09-21 07:46:46
185.91.252.102	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 20-09-2019 19:15:13.	2019-09-21 08:04:55
189.57.26.18	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 20-09-2019 19:15:15.	2019-09-21 08:02:24
159.192.133.106	attackbots	$f2bV_matches	2019-09-21 07:58:18
188.243.66.208	attack	Sep 20 17:37:42 ny01 sshd[7650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.243.66.208 Sep 20 17:37:44 ny01 sshd[7650]: Failed password for invalid user os from 188.243.66.208 port 36509 ssh2 Sep 20 17:42:06 ny01 sshd[8402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.243.66.208	2019-09-21 07:37:34
95.9.158.94	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 20-09-2019 19:15:19.	2019-09-21 07:56:07

最近上报的IP列表

49.64.209.180	37.144.99.169	189.124.93.223	86.99.123.117
84.94.152.96	18.216.90.79	188.151.72.137	121.254.100.149
109.227.115.59	219.170.93.112	161.35.45.182	206.189.173.75
79.142.76.203	218.91.112.200	123.243.1.74	125.140.177.119
181.30.68.76	121.61.144.28	188.166.217.55	125.69.52.121