145.239.42.107

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): France

运营商(isp): OVH SAS

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	$f2bV_matches	2020-01-11 22:35:01
attackspam	Dec 22 15:26:53 ws12vmsma01 sshd[17115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107 Dec 22 15:26:53 ws12vmsma01 sshd[17115]: Invalid user user from 145.239.42.107 Dec 22 15:26:55 ws12vmsma01 sshd[17115]: Failed password for invalid user user from 145.239.42.107 port 42148 ssh2 ...	2019-12-23 06:38:57
attackspambots	Dec 19 06:54:36 sso sshd[8108]: Failed password for root from 145.239.42.107 port 38590 ssh2 ...	2019-12-19 14:15:08
attackbotsspam	SSH Bruteforce attempt	2019-12-14 07:23:39
attackspambots	Dec 12 23:42:33 loxhost sshd\[21460\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107 user=root Dec 12 23:42:35 loxhost sshd\[21460\]: Failed password for root from 145.239.42.107 port 36628 ssh2 Dec 12 23:48:14 loxhost sshd\[21639\]: Invalid user rashiem from 145.239.42.107 port 45678 Dec 12 23:48:14 loxhost sshd\[21639\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107 Dec 12 23:48:16 loxhost sshd\[21639\]: Failed password for invalid user rashiem from 145.239.42.107 port 45678 ssh2 ...	2019-12-13 06:54:09
attackspambots	Too many connections or unauthorized access detected from Arctic banned ip	2019-12-11 07:36:59
attackbots	Dec 10 15:12:14 hcbbdb sshd\[6439\]: Invalid user ashleykath from 145.239.42.107 Dec 10 15:12:14 hcbbdb sshd\[6439\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107 Dec 10 15:12:16 hcbbdb sshd\[6439\]: Failed password for invalid user ashleykath from 145.239.42.107 port 43196 ssh2 Dec 10 15:18:04 hcbbdb sshd\[7163\]: Invalid user rafols from 145.239.42.107 Dec 10 15:18:04 hcbbdb sshd\[7163\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107	2019-12-10 23:22:44
attackspambots	Dec 9 06:47:08 wbs sshd\[30658\]: Invalid user kate from 145.239.42.107 Dec 9 06:47:08 wbs sshd\[30658\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107 Dec 9 06:47:09 wbs sshd\[30658\]: Failed password for invalid user kate from 145.239.42.107 port 39150 ssh2 Dec 9 06:53:06 wbs sshd\[31319\]: Invalid user oyakuma from 145.239.42.107 Dec 9 06:53:06 wbs sshd\[31319\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107	2019-12-10 00:59:44
attackspam	SSH invalid-user multiple login attempts	2019-12-08 17:11:08
attackspam	SSH brute-force: detected 33 distinct usernames within a 24-hour window.	2019-12-05 19:57:58
attack	ssh intrusion attempt	2019-11-22 17:22:23
attackspam	Nov 17 06:17:17 web8 sshd\[13050\]: Invalid user sig@tjlt from 145.239.42.107 Nov 17 06:17:17 web8 sshd\[13050\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107 Nov 17 06:17:19 web8 sshd\[13050\]: Failed password for invalid user sig@tjlt from 145.239.42.107 port 35220 ssh2 Nov 17 06:21:07 web8 sshd\[15028\]: Invalid user !@\#ewq!@\# from 145.239.42.107 Nov 17 06:21:07 web8 sshd\[15028\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107	2019-11-17 21:27:05
attack	2019-11-13T01:26:48.361927ns547587 sshd\[1369\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107.kr-k.de user=root 2019-11-13T01:26:50.847019ns547587 sshd\[1369\]: Failed password for root from 145.239.42.107 port 54708 ssh2 2019-11-13T01:30:13.300899ns547587 sshd\[5820\]: Invalid user biliamee from 145.239.42.107 port 35256 2019-11-13T01:30:13.304768ns547587 sshd\[5820\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107.kr-k.de ...	2019-11-13 14:46:26
attackspambots	SSH Brute Force, server-1 sshd[4737]: Failed password for invalid user webmaster from 145.239.42.107 port 41128 ssh2	2019-11-12 00:00:12
attackspam	SSH brutforce	2019-11-07 18:12:35
attack	Invalid user stefan from 145.239.42.107 port 52496	2019-10-25 17:10:57
attack	Invalid user stefan from 145.239.42.107 port 52496	2019-10-24 16:47:34
attack	Oct 20 07:05:01 localhost sshd\[30811\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107 user=root Oct 20 07:05:03 localhost sshd\[30811\]: Failed password for root from 145.239.42.107 port 43072 ssh2 Oct 20 07:09:06 localhost sshd\[31175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107 user=root	2019-10-20 13:19:14

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.239.42.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43683
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;145.239.42.107.			IN	A

;; AUTHORITY SECTION:
.			572	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101901 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 20 13:19:10 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

107.42.239.145.in-addr.arpa domain name pointer 145.239.42.107.kr-k.de.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
107.42.239.145.in-addr.arpa	name = 145.239.42.107.kr-k.de.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
49.235.217.169	attackbots	Sep 1 18:20:51 ns392434 sshd[26676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.217.169 user=root Sep 1 18:20:53 ns392434 sshd[26676]: Failed password for root from 49.235.217.169 port 47486 ssh2 Sep 1 18:45:08 ns392434 sshd[27243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.217.169 user=root Sep 1 18:45:10 ns392434 sshd[27243]: Failed password for root from 49.235.217.169 port 35370 ssh2 Sep 1 18:49:16 ns392434 sshd[27275]: Invalid user test2 from 49.235.217.169 port 59990 Sep 1 18:49:16 ns392434 sshd[27275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.217.169 Sep 1 18:49:16 ns392434 sshd[27275]: Invalid user test2 from 49.235.217.169 port 59990 Sep 1 18:49:19 ns392434 sshd[27275]: Failed password for invalid user test2 from 49.235.217.169 port 59990 ssh2 Sep 1 18:53:22 ns392434 sshd[27374]: Invalid user olimex from 49.235.217.169 port 56382	2020-09-02 02:45:15
218.56.59.176	attack	Icarus honeypot on github	2020-09-02 02:43:28
40.107.6.107	attackspambots	TCP Port: 25 invalid blocked Listed on backscatter (124)	2020-09-02 03:10:50
51.158.111.157	attackspam	Sep 1 19:40:02 neko-world sshd[7084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.111.157 user=root Sep 1 19:40:04 neko-world sshd[7084]: Failed password for invalid user root from 51.158.111.157 port 44228 ssh2	2020-09-02 02:48:12
200.71.73.129	attack	Unauthorized IMAP connection attempt	2020-09-02 02:44:12
186.225.157.22	attackspam	Sep 1 13:28:18 shivevps sshd[27861]: Did not receive identification string from 186.225.157.22 port 60049 ...	2020-09-02 03:16:48
185.200.118.74	attack	TCP (SYN) 185.200.118.74:41644 -> port 1723, len 44	2020-09-02 03:09:30
106.201.113.105	attackspam	URL Probing: /pma/index.php	2020-09-02 03:09:18
117.69.153.105	attack	/<404 URL>	2020-09-02 02:51:41
169.239.92.81	attack	Sep 1 13:29:09 shivevps sshd[28898]: Did not receive identification string from 169.239.92.81 port 34241 ...	2020-09-02 02:51:24
1.53.54.34	attackspambots	Unauthorised access (Sep 1) SRC=1.53.54.34 LEN=52 TTL=111 ID=22002 DF TCP DPT=445 WINDOW=8192 SYN	2020-09-02 02:55:17
171.12.115.90	attack	Sep 1 13:28:18 shivevps sshd[28436]: Did not receive identification string from 171.12.115.90 port 47908 ...	2020-09-02 03:15:42
91.206.129.77	attack	Brute forcing RDP port 3389	2020-09-02 03:10:33
168.232.20.155	attack	Sep 1 13:28:18 shivevps sshd[28356]: Did not receive identification string from 168.232.20.155 port 59714 ...	2020-09-02 03:18:01
110.80.17.26	attack	Sep 1 21:08:02 lnxded63 sshd[25945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.80.17.26 Sep 1 21:08:04 lnxded63 sshd[25945]: Failed password for invalid user joao from 110.80.17.26 port 37268 ssh2 Sep 1 21:10:37 lnxded63 sshd[26299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.80.17.26	2020-09-02 03:19:31

最近上报的IP列表

211.179.76.9	34.87.24.125	185.40.15.247	142.93.218.34
202.52.52.94	200.194.28.159	184.186.75.132	103.61.39.106
174.142.90.14	52.14.33.15	83.149.128.234	23.244.43.2
213.215.82.36	195.138.72.83	167.71.4.130	160.106.238.48
185.40.12.193	83.22.197.253	207.180.196.57	174.139.98.234