132.145.34.45 - IPInfo

基本信息:

城市(city): Seattle

省份(region): Washington

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): Oracle Corporation

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
132.145.34.191	attackbotsspam	Jun 9 07:14:16 zimbra sshd[23918]: Invalid user xfs from 132.145.34.191 Jun 9 07:14:16 zimbra sshd[23918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.34.191 Jun 9 07:14:18 zimbra sshd[23918]: Failed password for invalid user xfs from 132.145.34.191 port 51800 ssh2 Jun 9 07:14:18 zimbra sshd[23918]: Received disconnect from 132.145.34.191 port 51800:11: Bye Bye [preauth] Jun 9 07:14:18 zimbra sshd[23918]: Disconnected from 132.145.34.191 port 51800 [preauth] Jun 9 07:19:15 zimbra sshd[27411]: Invalid user mc3 from 132.145.34.191 Jun 9 07:19:15 zimbra sshd[27411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.34.191 Jun 9 07:19:17 zimbra sshd[27411]: Failed password for invalid user mc3 from 132.145.34.191 port 48110 ssh2 Jun 9 07:19:17 zimbra sshd[27411]: Received disconnect from 132.145.34.191 port 48110:11: Bye Bye [preauth] Jun 9 07:19:17 zimbra sshd[27411]........ -------------------------------	2020-06-09 20:57:41
132.145.34.57	attackbotsspam	php WP PHPmyadamin ABUSE blocked for 12h	2019-11-26 03:34:58
132.145.34.57	attack	132.145.34.57 - - [24/Nov/2019:15:56:45 +0100] "GET /scripts/setup.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0" 132.145.34.57 - - [24/Nov/2019:15:56:46 +0100] "GET /MyAdmin/scripts/setup.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0" ...	2019-11-24 23:16:29

类型

评论内容

时间

132.145.34.191

attackbotsspam

Jun  9 07:14:16 zimbra sshd[23918]: Invalid user xfs from 132.145.34.191
Jun  9 07:14:16 zimbra sshd[23918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.34.191
Jun  9 07:14:18 zimbra sshd[23918]: Failed password for invalid user xfs from 132.145.34.191 port 51800 ssh2
Jun  9 07:14:18 zimbra sshd[23918]: Received disconnect from 132.145.34.191 port 51800:11: Bye Bye [preauth]
Jun  9 07:14:18 zimbra sshd[23918]: Disconnected from 132.145.34.191 port 51800 [preauth]
Jun  9 07:19:15 zimbra sshd[27411]: Invalid user mc3 from 132.145.34.191
Jun  9 07:19:15 zimbra sshd[27411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.34.191
Jun  9 07:19:17 zimbra sshd[27411]: Failed password for invalid user mc3 from 132.145.34.191 port 48110 ssh2
Jun  9 07:19:17 zimbra sshd[27411]: Received disconnect from 132.145.34.191 port 48110:11: Bye Bye [preauth]
Jun  9 07:19:17 zimbra sshd[27411]........
-------------------------------

2020-06-09 20:57:41

132.145.34.57

attackbotsspam

php WP PHPmyadamin ABUSE blocked for 12h

2019-11-26 03:34:58

132.145.34.57

attack

132.145.34.57 - - [24/Nov/2019:15:56:45 +0100] "GET /scripts/setup.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0"
132.145.34.57 - - [24/Nov/2019:15:56:46 +0100] "GET /MyAdmin/scripts/setup.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0"
...

2019-11-24 23:16:29

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 132.145.34.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2603
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;132.145.34.45.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040501 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Apr 06 02:59:07 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 45.34.145.132.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 45.34.145.132.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
117.211.65.73	attackspam	1592483194 - 06/18/2020 14:26:34 Host: 117.211.65.73/117.211.65.73 Port: 445 TCP Blocked	2020-06-19 01:15:08
45.80.208.225	attack	Jun 18 15:53:31 web01.agentur-b-2.de postfix/smtpd[47632]: NOQUEUE: reject: RCPT from unknown[45.80.208.225]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Jun 18 15:53:33 web01.agentur-b-2.de postfix/smtpd[22988]: NOQUEUE: reject: RCPT from unknown[45.80.208.225]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Jun 18 15:54:02 web01.agentur-b-2.de postfix/smtpd[47632]: NOQUEUE: reject: RCPT from unknown[45.80.208.225]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Jun 18 15:58:32 web01.agentur-b-2.de postfix/smtpd[47631]: NOQUEUE: reject: RCPT from unknown[45.80.208.225]: 450 4.7.1 : Helo command rejected: Host not found; from=	2020-06-19 00:35:43
144.172.73.43	attackspambots	Invalid user honey from 144.172.73.43 port 53066	2020-06-19 01:05:17
46.38.145.249	attackbotsspam	Rude login attack (598 tries in 1d)	2020-06-19 00:34:39
210.211.119.10	attackbotsspam	Jun 18 16:16:45 jumpserver sshd[131730]: Invalid user 9 from 210.211.119.10 port 48250 Jun 18 16:16:47 jumpserver sshd[131730]: Failed password for invalid user 9 from 210.211.119.10 port 48250 ssh2 Jun 18 16:20:45 jumpserver sshd[131770]: Invalid user tomcat from 210.211.119.10 port 48260 ...	2020-06-19 00:38:19
63.81.93.85	attackbots	Received: from peace.nonnastar.com (peace.nonnastar.com [63.81.93.85])	2020-06-19 00:56:43
46.38.150.193	attack	1456 times SMTP brute-force	2020-06-19 00:32:14
181.143.172.106	attackbots	2020-06-18T17:34:30.720175vps751288.ovh.net sshd\[26360\]: Invalid user kyle from 181.143.172.106 port 61863 2020-06-18T17:34:30.730081vps751288.ovh.net sshd\[26360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.143.172.106 2020-06-18T17:34:32.176722vps751288.ovh.net sshd\[26360\]: Failed password for invalid user kyle from 181.143.172.106 port 61863 ssh2 2020-06-18T17:38:57.545778vps751288.ovh.net sshd\[26400\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.143.172.106 user=root 2020-06-18T17:38:59.644851vps751288.ovh.net sshd\[26400\]: Failed password for root from 181.143.172.106 port 54788 ssh2	2020-06-19 00:39:49
37.49.230.131	attack	Jun 18 17:42:35 relay postfix/smtpd\[20339\]: warning: unknown\[37.49.230.131\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 18 17:42:41 relay postfix/smtpd\[18096\]: warning: unknown\[37.49.230.131\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 18 17:42:51 relay postfix/smtpd\[26742\]: warning: unknown\[37.49.230.131\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 18 17:43:13 relay postfix/smtpd\[26712\]: warning: unknown\[37.49.230.131\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 18 17:43:19 relay postfix/smtpd\[18096\]: warning: unknown\[37.49.230.131\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-19 01:01:11
46.38.145.252	attack	Rude login attack (583 tries in 1d)	2020-06-19 00:33:31
61.177.172.128	attackspam	2020-06-18T18:47:57.721737sd-86998 sshd[14711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.128 user=root 2020-06-18T18:47:59.839749sd-86998 sshd[14711]: Failed password for root from 61.177.172.128 port 26782 ssh2 2020-06-18T18:48:02.768098sd-86998 sshd[14711]: Failed password for root from 61.177.172.128 port 26782 ssh2 2020-06-18T18:47:57.721737sd-86998 sshd[14711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.128 user=root 2020-06-18T18:47:59.839749sd-86998 sshd[14711]: Failed password for root from 61.177.172.128 port 26782 ssh2 2020-06-18T18:48:02.768098sd-86998 sshd[14711]: Failed password for root from 61.177.172.128 port 26782 ssh2 2020-06-18T18:47:57.721737sd-86998 sshd[14711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.128 user=root 2020-06-18T18:47:59.839749sd-86998 sshd[14711]: Failed password for root from ...	2020-06-19 00:48:47
157.230.151.241	attackbots	2020-06-18T14:43:21.944036shield sshd\[8275\]: Invalid user mysql from 157.230.151.241 port 36706 2020-06-18T14:43:21.947866shield sshd\[8275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.151.241 2020-06-18T14:43:24.407915shield sshd\[8275\]: Failed password for invalid user mysql from 157.230.151.241 port 36706 ssh2 2020-06-18T14:46:51.486445shield sshd\[9050\]: Invalid user konstantin from 157.230.151.241 port 36726 2020-06-18T14:46:51.490288shield sshd\[9050\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.151.241	2020-06-19 01:12:58
183.88.243.184	attack	Dovecot Invalid User Login Attempt.	2020-06-19 00:38:45
185.220.100.245	attackspambots	(sshd) Failed SSH login from 185.220.100.245 (DE/Germany/tor-exit-6.zbau.f3netze.de): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 18 14:05:44 ubnt-55d23 sshd[14844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.100.245 user=root Jun 18 14:05:46 ubnt-55d23 sshd[14844]: Failed password for root from 185.220.100.245 port 7262 ssh2	2020-06-19 01:05:30
121.138.83.92	attackspambots	SSH Brute-Force Attack	2020-06-19 00:43:36

最近上报的IP列表

87.54.237.210	116.203.41.104	139.162.75.112	187.111.160.8
201.92.218.127	77.247.109.49	180.247.149.42	185.189.213.100
181.231.152.44	168.228.185.96	220.227.40.235	205.170.93.195
200.206.49.139	181.223.227.155	151.80.155.98	139.59.4.54
129.204.141.3	107.170.196.44	105.225.134.11	104.248.57.21