145.239.137.180

基本信息:

城市(city): Heidelberg

省份(region): Baden-Württemberg

国家(country): Germany

运营商(isp): OVH SAS

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
145.239.137.248	attack	20037/tcp [2020-04-12]1pkt	2020-04-13 07:38:03

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.239.137.180
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11431
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;145.239.137.180.		IN	A

;; AUTHORITY SECTION:
.			395	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042601 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 27 07:03:44 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

180.137.239.145.in-addr.arpa domain name pointer ip180.ip-145-239-137.eu.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
180.137.239.145.in-addr.arpa	name = ip180.ip-145-239-137.eu.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
179.214.192.141	attackspam	Sep 12 14:06:22 minden010 sshd[5668]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.214.192.141 Sep 12 14:06:24 minden010 sshd[5668]: Failed password for invalid user steam from 179.214.192.141 port 53526 ssh2 Sep 12 14:15:07 minden010 sshd[8731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.214.192.141 ...	2019-09-12 20:33:06
112.160.43.64	attackbots	Sep 11 21:21:12 home sshd[7263]: Invalid user bots from 112.160.43.64 port 53286 Sep 11 21:21:12 home sshd[7263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.160.43.64 Sep 11 21:21:12 home sshd[7263]: Invalid user bots from 112.160.43.64 port 53286 Sep 11 21:21:13 home sshd[7263]: Failed password for invalid user bots from 112.160.43.64 port 53286 ssh2 Sep 11 21:30:09 home sshd[7282]: Invalid user server from 112.160.43.64 port 51548 Sep 11 21:30:09 home sshd[7282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.160.43.64 Sep 11 21:30:09 home sshd[7282]: Invalid user server from 112.160.43.64 port 51548 Sep 11 21:30:12 home sshd[7282]: Failed password for invalid user server from 112.160.43.64 port 51548 ssh2 Sep 11 21:36:41 home sshd[7292]: Invalid user oracle from 112.160.43.64 port 57288 Sep 11 21:36:41 home sshd[7292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.160.	2019-09-12 20:37:31
34.66.28.207	attackspambots	Oracle WebLogic WLS Security Component Remote Code Execution Vulnerability 2017-10271, PTR: 207.28.66.34.bc.googleusercontent.com.	2019-09-12 20:15:29
59.126.174.228	attackbots	Automatic report - Port Scan Attack	2019-09-12 19:54:36
159.89.230.141	attackspambots	Sep 12 01:07:55 hpm sshd\[10375\]: Invalid user gmodserver from 159.89.230.141 Sep 12 01:07:55 hpm sshd\[10375\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.230.141 Sep 12 01:07:57 hpm sshd\[10375\]: Failed password for invalid user gmodserver from 159.89.230.141 port 53916 ssh2 Sep 12 01:16:17 hpm sshd\[11265\]: Invalid user administrator from 159.89.230.141 Sep 12 01:16:17 hpm sshd\[11265\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.230.141	2019-09-12 20:04:04
128.199.170.77	attackspam	Sep 12 01:32:32 hanapaa sshd\[26591\]: Invalid user factorio from 128.199.170.77 Sep 12 01:32:32 hanapaa sshd\[26591\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.170.77 Sep 12 01:32:34 hanapaa sshd\[26591\]: Failed password for invalid user factorio from 128.199.170.77 port 37160 ssh2 Sep 12 01:39:42 hanapaa sshd\[27288\]: Invalid user jenkins from 128.199.170.77 Sep 12 01:39:42 hanapaa sshd\[27288\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.170.77	2019-09-12 19:45:22
109.197.15.224	attackspambots	frenzy	2019-09-12 20:38:03
167.71.4.55	attack	[portscan] tcp/137 [netbios NS] *(RWIN=65535)(09120936)	2019-09-12 20:22:15
77.247.109.29	attackspambots	6550/udp 6548/udp 6549/udp... [2019-07-23/09-12]245pkt,99pt.(udp)	2019-09-12 20:28:18
54.222.219.87	attack	Sep 12 12:40:34 server sshd\[8279\]: Invalid user webadmin from 54.222.219.87 port 38720 Sep 12 12:40:34 server sshd\[8279\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.222.219.87 Sep 12 12:40:36 server sshd\[8279\]: Failed password for invalid user webadmin from 54.222.219.87 port 38720 ssh2 Sep 12 12:43:32 server sshd\[22297\]: Invalid user gpadmin from 54.222.219.87 port 36928 Sep 12 12:43:32 server sshd\[22297\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.222.219.87	2019-09-12 20:13:23
106.12.220.218	attack	Sep 11 14:37:03 fv15 sshd[7663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.220.218 user=web1 Sep 11 14:37:04 fv15 sshd[7663]: Failed password for web1 from 106.12.220.218 port 58868 ssh2 Sep 11 14:37:04 fv15 sshd[7663]: Received disconnect from 106.12.220.218: 11: Bye Bye [preauth] Sep 11 14:57:34 fv15 sshd[26887]: Failed password for invalid user dspace from 106.12.220.218 port 42430 ssh2 Sep 11 14:57:34 fv15 sshd[26887]: Received disconnect from 106.12.220.218: 11: Bye Bye [preauth] Sep 11 15:00:45 fv15 sshd[9654]: Failed password for invalid user test from 106.12.220.218 port 37808 ssh2 Sep 11 15:00:45 fv15 sshd[9654]: Received disconnect from 106.12.220.218: 11: Bye Bye [preauth] Sep 11 15:03:49 fv15 sshd[21324]: Failed password for invalid user bots from 106.12.220.218 port 33182 ssh2 Sep 11 15:03:49 fv15 sshd[21324]: Received disconnect from 106.12.220.218: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.b	2019-09-12 20:27:25
141.98.80.80	attackbots	Sep 12 13:04:28 ncomp postfix/smtpd[3726]: warning: unknown[141.98.80.80]: SASL PLAIN authentication failed: Sep 12 13:04:39 ncomp postfix/smtpd[3726]: warning: unknown[141.98.80.80]: SASL PLAIN authentication failed: Sep 12 13:40:40 ncomp postfix/smtpd[4354]: warning: unknown[141.98.80.80]: SASL PLAIN authentication failed:	2019-09-12 19:51:36
182.48.84.6	attack	Sep 12 13:42:03 MK-Soft-Root2 sshd\[5918\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.48.84.6 user=root Sep 12 13:42:05 MK-Soft-Root2 sshd\[5918\]: Failed password for root from 182.48.84.6 port 43588 ssh2 Sep 12 13:50:33 MK-Soft-Root2 sshd\[7116\]: Invalid user newuser from 182.48.84.6 port 49016 Sep 12 13:50:33 MK-Soft-Root2 sshd\[7116\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.48.84.6 ...	2019-09-12 20:21:44
92.118.37.74	attackbots	Sep 12 14:31:46 mc1 kernel: \[842068.607440\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.118.37.74 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=37739 PROTO=TCP SPT=46525 DPT=30451 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 12 14:35:31 mc1 kernel: \[842293.674559\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.118.37.74 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=48712 PROTO=TCP SPT=46525 DPT=36624 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 12 14:35:43 mc1 kernel: \[842305.255423\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.118.37.74 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=4970 PROTO=TCP SPT=46525 DPT=23497 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-09-12 20:38:35
103.102.192.106	attackspam	Sep 12 03:51:24 MK-Soft-VM4 sshd\[25291\]: Invalid user 1 from 103.102.192.106 port 20552 Sep 12 03:51:24 MK-Soft-VM4 sshd\[25291\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.102.192.106 Sep 12 03:51:27 MK-Soft-VM4 sshd\[25291\]: Failed password for invalid user 1 from 103.102.192.106 port 20552 ssh2 ...	2019-09-12 19:40:41

最近上报的IP列表

31.201.104.80	188.48.159.36	213.202.101.114	108.135.60.203
103.247.51.118	124.226.213.129	91.187.32.120	62.212.101.215
173.93.174.62	69.121.134.79	103.129.64.171	70.202.239.157
97.159.98.89	131.193.219.25	79.137.181.54	208.236.248.0
198.70.133.149	13.55.158.64	134.174.61.67	185.87.100.247