132.145.196.243

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Oracle Public Cloud

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Port Scan detected from 132.145.196.243 (US/United States/-). 4 hits in the last 256 seconds	2019-07-05 09:16:14

相同子网IP讨论:

IP	类型	评论内容	时间
132.145.196.193	attackbots	Unauthorized connection attempt detected from IP address 132.145.196.193 to port 2220 [J]	2020-02-05 06:52:14
132.145.196.193	attack	Unauthorized connection attempt detected from IP address 132.145.196.193 to port 2220 [J]	2020-02-02 05:11:16
132.145.196.193	attackbots	Scanned 3 times in the last 24 hours on port 22	2020-01-26 02:10:08
132.145.196.193	attackspambots	Unauthorized connection attempt detected from IP address 132.145.196.193 to port 2220 [J]	2020-01-16 16:42:47

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 132.145.196.243
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24586
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;132.145.196.243.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070401 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 05 09:16:09 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 243.196.145.132.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 243.196.145.132.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
190.36.18.229	attackspambots	Honeypot attack, port: 445, PTR: 190-36-18-229.dyn.dsl.cantv.net.	2019-12-18 17:50:41
125.42.24.135	attackspam	Scanning random ports - tries to find possible vulnerable services	2019-12-18 17:47:43
118.24.234.176	attackspam	Dec 18 09:31:57 game-panel sshd[25203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.234.176 Dec 18 09:31:59 game-panel sshd[25203]: Failed password for invalid user mey from 118.24.234.176 port 54624 ssh2 Dec 18 09:36:46 game-panel sshd[25400]: Failed password for root from 118.24.234.176 port 43002 ssh2	2019-12-18 17:37:13
40.92.66.27	attackspam	Dec 18 12:27:04 debian-2gb-vpn-nbg1-1 kernel: [1039589.537477] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.66.27 DST=78.46.192.101 LEN=48 TOS=0x00 PREC=0x00 TTL=112 ID=3087 DF PROTO=TCP SPT=63795 DPT=25 WINDOW=8192 RES=0x00 SYN URGP=0	2019-12-18 18:06:00
104.236.81.204	attackbots	Dec 18 10:22:07 srv206 sshd[2352]: Invalid user admin from 104.236.81.204 Dec 18 10:22:07 srv206 sshd[2352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.81.204 Dec 18 10:22:07 srv206 sshd[2352]: Invalid user admin from 104.236.81.204 Dec 18 10:22:09 srv206 sshd[2352]: Failed password for invalid user admin from 104.236.81.204 port 38741 ssh2 ...	2019-12-18 17:50:55
121.164.107.10	attackspam	Dec 18 10:40:38 MK-Soft-VM5 sshd[13420]: Failed password for root from 121.164.107.10 port 38510 ssh2 Dec 18 10:46:49 MK-Soft-VM5 sshd[13521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.164.107.10 ...	2019-12-18 17:58:07
142.11.236.205	attackbotsspam	Host Scan	2019-12-18 18:01:55
118.97.77.114	attackspam	2019-12-18T09:19:24.954197shield sshd\[27305\]: Invalid user dhencel from 118.97.77.114 port 41242 2019-12-18T09:19:24.958466shield sshd\[27305\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.97.77.114 2019-12-18T09:19:27.005610shield sshd\[27305\]: Failed password for invalid user dhencel from 118.97.77.114 port 41242 ssh2 2019-12-18T09:27:45.481119shield sshd\[29851\]: Invalid user erlat from 118.97.77.114 port 48914 2019-12-18T09:27:45.486131shield sshd\[29851\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.97.77.114	2019-12-18 17:46:53
88.228.199.146	attackbots	Honeypot attack, port: 23, PTR: 88.228.199.146.dynamic.ttnet.com.tr.	2019-12-18 17:44:21
177.94.225.207	attack	Dec 18 02:53:04 srv1 sshd[23710]: Address 177.94.225.207 maps to 177-94-225-207.dsl.telesp.net.br, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Dec 18 02:53:04 srv1 sshd[23710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.94.225.207 user=ftp Dec 18 02:53:07 srv1 sshd[23710]: Failed password for ftp from 177.94.225.207 port 33408 ssh2 Dec 18 02:53:07 srv1 sshd[23711]: Received disconnect from 177.94.225.207: 11: Bye Bye Dec 18 04:01:46 srv1 sshd[26454]: Address 177.94.225.207 maps to 177-94-225-207.dsl.telesp.net.br, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Dec 18 04:01:46 srv1 sshd[26454]: Invalid user kursa from 177.94.225.207 Dec 18 04:01:46 srv1 sshd[26454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.94.225.207 Dec 18 04:01:48 srv1 sshd[26454]: Failed password for invalid user kursa from 177.94.225.207 port 48960 s........ -------------------------------	2019-12-18 17:43:34
213.32.92.57	attackbots	Dec 18 11:33:17 sauna sshd[23771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.92.57 Dec 18 11:33:19 sauna sshd[23771]: Failed password for invalid user skjold from 213.32.92.57 port 51616 ssh2 ...	2019-12-18 17:41:36
222.99.52.216	attackspam	Dec 18 09:19:37 microserver sshd[30983]: Invalid user hung from 222.99.52.216 port 27293 Dec 18 09:19:37 microserver sshd[30983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.99.52.216 Dec 18 09:19:39 microserver sshd[30983]: Failed password for invalid user hung from 222.99.52.216 port 27293 ssh2 Dec 18 09:25:50 microserver sshd[32239]: Invalid user http from 222.99.52.216 port 33758 Dec 18 09:25:50 microserver sshd[32239]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.99.52.216 Dec 18 10:03:18 microserver sshd[38496]: Invalid user advice from 222.99.52.216 port 17273 Dec 18 10:03:18 microserver sshd[38496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.99.52.216 Dec 18 10:03:20 microserver sshd[38496]: Failed password for invalid user advice from 222.99.52.216 port 17273 ssh2 Dec 18 10:09:33 microserver sshd[39411]: Invalid user guest from 222.99.52.216 port 23740 Dec 18	2019-12-18 17:55:35
182.61.36.38	attack	Dec 18 11:45:46 server sshd\[26886\]: Invalid user anerney from 182.61.36.38 Dec 18 11:45:46 server sshd\[26886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.36.38 Dec 18 11:45:48 server sshd\[26886\]: Failed password for invalid user anerney from 182.61.36.38 port 59470 ssh2 Dec 18 12:03:35 server sshd\[31536\]: Invalid user tripleX from 182.61.36.38 Dec 18 12:03:35 server sshd\[31536\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.36.38 ...	2019-12-18 18:02:56
69.194.234.35	attackspam	Automatic report - XMLRPC Attack	2019-12-18 18:00:53
209.34.25.190	attack	Unauthorised access (Dec 18) SRC=209.34.25.190 LEN=52 TTL=111 ID=17448 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-18 17:43:07

最近上报的IP列表

78.166.226.34	189.89.208.41	187.57.183.195	95.18.11.125
91.121.171.104	177.207.196.202	52.194.223.4	112.163.200.203
170.82.12.208	113.134.22.37	107.175.148.118	51.15.191.178
167.102.251.116	105.162.71.8	220.165.28.189	181.114.205.93
41.218.197.30	136.222.196.89	37.49.224.118	193.111.199.130