145.102.6.46 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Netherlands

运营商(isp): University of Twente

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): University/College/School

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Port scan on 1 port(s): 53	2020-04-28 01:12:56
attackspambots	Port scan on 1 port(s): 53	2020-04-11 03:25:51

相同子网IP讨论:

IP	类型	评论内容	时间
145.102.6.73	attackspam	Port scan on 1 port(s): 53	2020-06-25 03:23:48
145.102.6.58	attackspam	Port scan on 1 port(s): 53	2020-06-25 03:15:42
145.102.6.49	attackbots	Port scan on 1 port(s): 53	2020-06-25 03:01:10
145.102.6.49	attack	Port scan on 1 port(s): 53	2020-05-16 22:39:45
145.102.6.86	attackspambots	Port scan on 1 port(s): 53	2020-05-16 22:39:01
145.102.6.57	attack	Port scan on 1 port(s): 53	2020-04-28 01:12:42
145.102.6.58	attackbotsspam	Port scan on 1 port(s): 53	2020-04-28 01:10:27
145.102.6.49	attack	Port scan on 1 port(s): 53	2020-04-19 23:38:00
145.102.6.73	attackspam	Port scan on 1 port(s): 53	2020-04-19 23:37:49
145.102.6.57	attackbotsspam	Port scan on 1 port(s): 53	2020-04-11 03:33:54
145.102.6.86	attack	Port scan on 1 port(s): 53	2020-04-11 03:33:36
145.102.6.73	attackspam	Port scan detected on *	2020-03-21 05:29:57
145.102.6.55	attackbots	Port scan on 1 port(s): 53	2020-03-19 21:23:10
145.102.6.57	attack	Port scan on 1 port(s): 53	2020-02-20 22:37:44
145.102.6.57	attackspam	Port scan on 1 port(s): 53	2020-02-17 23:32:20

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.102.6.46
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49366
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;145.102.6.46.			IN	A

;; AUTHORITY SECTION:
.			135	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041001 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 11 03:25:41 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

46.6.102.145.in-addr.arpa domain name pointer please.visit.www.openintel.nl.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
46.6.102.145.in-addr.arpa	name = please.visit.www.openintel.nl.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
182.114.58.58	attackspambots	Port probing on unauthorized port 23	2020-08-12 21:50:59
218.92.0.246	attackspam	Aug 12 15:52:55 ns381471 sshd[17525]: Failed password for root from 218.92.0.246 port 46473 ssh2 Aug 12 15:53:07 ns381471 sshd[17525]: error: maximum authentication attempts exceeded for root from 218.92.0.246 port 46473 ssh2 [preauth]	2020-08-12 21:57:06
187.176.185.65	attack	Aug 12 15:53:43 h2646465 sshd[9097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.176.185.65 user=root Aug 12 15:53:45 h2646465 sshd[9097]: Failed password for root from 187.176.185.65 port 37534 ssh2 Aug 12 15:54:30 h2646465 sshd[9127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.176.185.65 user=root Aug 12 15:54:32 h2646465 sshd[9127]: Failed password for root from 187.176.185.65 port 44918 ssh2 Aug 12 15:55:01 h2646465 sshd[9134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.176.185.65 user=root Aug 12 15:55:03 h2646465 sshd[9134]: Failed password for root from 187.176.185.65 port 49976 ssh2 Aug 12 15:55:33 h2646465 sshd[9616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.176.185.65 user=root Aug 12 15:55:35 h2646465 sshd[9616]: Failed password for root from 187.176.185.65 port 55026 ssh2 Aug 12 15:56:03 h2646465 ssh	2020-08-12 22:03:09
195.54.160.228	attack	TCP (SYN) 195.54.160.228:43482 -> port 3385, len 44	2020-08-12 22:04:39
179.0.160.21	attackbots	Aug 11 16:26:23 ACSRAD auth.info sshd[25484]: Failed password for r.r from 179.0.160.21 port 55164 ssh2 Aug 11 16:26:23 ACSRAD auth.info sshd[25484]: Received disconnect from 179.0.160.21 port 55164:11: Bye Bye [preauth] Aug 11 16:26:23 ACSRAD auth.info sshd[25484]: Disconnected from 179.0.160.21 port 55164 [preauth] Aug 11 16:27:17 ACSRAD auth.info sshd[25920]: Failed password for r.r from 179.0.160.21 port 39892 ssh2 Aug 11 16:27:17 ACSRAD auth.info sshd[25920]: Received disconnect from 179.0.160.21 port 39892:11: Bye Bye [preauth] Aug 11 16:27:17 ACSRAD auth.info sshd[25920]: Disconnected from 179.0.160.21 port 39892 [preauth] Aug 11 16:27:17 ACSRAD auth.notice sshguard[23160]: Attack from "179.0.160.21" on service 100 whostnameh danger 10. Aug 11 16:27:17 ACSRAD auth.notice sshguard[23160]: Attack from "179.0.160.21" on service 100 whostnameh danger 10. Aug 11 16:28:10 ACSRAD auth.info sshd[26344]: Failed password for r.r from 179.0.160.21 port 52854 ssh2 Aug 11 16:2........ ------------------------------	2020-08-12 21:54:51
92.118.160.49	attackspam	tired to connect with server	2020-08-12 22:22:58
159.89.194.160	attackbotsspam	Aug 12 12:38:26 jumpserver sshd[122980]: Failed password for root from 159.89.194.160 port 38668 ssh2 Aug 12 12:43:03 jumpserver sshd[123016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.194.160 user=root Aug 12 12:43:05 jumpserver sshd[123016]: Failed password for root from 159.89.194.160 port 49892 ssh2 ...	2020-08-12 21:49:29
190.192.40.18	attackspam	Multiple SSH authentication failures from 190.192.40.18	2020-08-12 21:48:54
54.36.143.169	attackspambots	[2020-08-12 09:31:43] NOTICE[1185][C-00001685] chan_sip.c: Call from '' (54.36.143.169:53987) to extension '011442820539007' rejected because extension not found in context 'public'. [2020-08-12 09:31:43] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-12T09:31:43.079-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011442820539007",SessionID="0x7f10c405ea98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/54.36.143.169/53987",ACLName="no_extension_match" [2020-08-12 09:33:09] NOTICE[1185][C-00001687] chan_sip.c: Call from '' (54.36.143.169:59500) to extension '9011442820539007' rejected because extension not found in context 'public'. [2020-08-12 09:33:09] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-12T09:33:09.332-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011442820539007",SessionID="0x7f10c405ea98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UD ...	2020-08-12 21:58:36
157.245.101.31	attackspambots	fail2ban/Aug 12 14:32:37 h1962932 sshd[6802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.101.31 user=root Aug 12 14:32:40 h1962932 sshd[6802]: Failed password for root from 157.245.101.31 port 41332 ssh2 Aug 12 14:37:36 h1962932 sshd[7018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.101.31 user=root Aug 12 14:37:38 h1962932 sshd[7018]: Failed password for root from 157.245.101.31 port 52068 ssh2 Aug 12 14:42:34 h1962932 sshd[7181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.101.31 user=root Aug 12 14:42:37 h1962932 sshd[7181]: Failed password for root from 157.245.101.31 port 34556 ssh2	2020-08-12 22:14:06
140.186.244.55	attackspambots	Brute forcing email accounts	2020-08-12 22:21:58
14.29.253.239	attackspam	Aug 12 11:09:56 our-server-hostname sshd[31775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.253.239 user=r.r Aug 12 11:09:58 our-server-hostname sshd[31775]: Failed password for r.r from 14.29.253.239 port 38972 ssh2 Aug 12 11:32:32 our-server-hostname sshd[5511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.253.239 user=r.r Aug 12 11:32:34 our-server-hostname sshd[5511]: Failed password for r.r from 14.29.253.239 port 57600 ssh2 Aug 12 11:35:19 our-server-hostname sshd[6074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.253.239 user=r.r Aug 12 11:35:21 our-server-hostname sshd[6074]: Failed password for r.r from 14.29.253.239 port 54268 ssh2 Aug 12 11:38:08 our-server-hostname sshd[6714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.253.239 user=r.r Aug 12 11:38:10 our-s........ -------------------------------	2020-08-12 22:01:35
27.71.229.116	attack	Aug 12 14:56:40 vmd36147 sshd[31774]: Failed password for root from 27.71.229.116 port 46744 ssh2 Aug 12 15:03:51 vmd36147 sshd[15631]: Failed password for root from 27.71.229.116 port 53076 ssh2 ...	2020-08-12 22:18:46
128.72.31.28	attack	Aug 12 15:49:30 [host] sshd[24118]: pam_unix(sshd: Aug 12 15:49:32 [host] sshd[24118]: Failed passwor Aug 12 15:53:39 [host] sshd[24166]: pam_unix(sshd:	2020-08-12 22:17:59
218.92.0.223	attack	Aug 12 15:49:55 piServer sshd[25959]: Failed password for root from 218.92.0.223 port 27241 ssh2 Aug 12 15:49:58 piServer sshd[25959]: Failed password for root from 218.92.0.223 port 27241 ssh2 Aug 12 15:50:03 piServer sshd[25959]: Failed password for root from 218.92.0.223 port 27241 ssh2 Aug 12 15:50:08 piServer sshd[25959]: Failed password for root from 218.92.0.223 port 27241 ssh2 ...	2020-08-12 21:52:46

最近上报的IP列表

111.13.67.115	255.6.27.249	171.65.178.221	237.146.240.185
227.135.160.113	206.46.110.135	59.51.133.168	193.173.42.69
162.243.8.129	154.214.105.240	146.248.124.245	180.241.153.182
152.168.227.154	117.37.124.14	217.246.159.12	104.8.245.82
2a01:cb08:864d:7d00:4c04:f4e0:360a:d220	36.73.144.39	17.58.101.70	175.36.162.112