145.239.42.107

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): France

运营商(isp): OVH SAS

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	$f2bV_matches	2020-01-11 22:35:01
attackspam	Dec 22 15:26:53 ws12vmsma01 sshd[17115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107 Dec 22 15:26:53 ws12vmsma01 sshd[17115]: Invalid user user from 145.239.42.107 Dec 22 15:26:55 ws12vmsma01 sshd[17115]: Failed password for invalid user user from 145.239.42.107 port 42148 ssh2 ...	2019-12-23 06:38:57
attackspambots	Dec 19 06:54:36 sso sshd[8108]: Failed password for root from 145.239.42.107 port 38590 ssh2 ...	2019-12-19 14:15:08
attackbotsspam	SSH Bruteforce attempt	2019-12-14 07:23:39
attackspambots	Dec 12 23:42:33 loxhost sshd\[21460\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107 user=root Dec 12 23:42:35 loxhost sshd\[21460\]: Failed password for root from 145.239.42.107 port 36628 ssh2 Dec 12 23:48:14 loxhost sshd\[21639\]: Invalid user rashiem from 145.239.42.107 port 45678 Dec 12 23:48:14 loxhost sshd\[21639\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107 Dec 12 23:48:16 loxhost sshd\[21639\]: Failed password for invalid user rashiem from 145.239.42.107 port 45678 ssh2 ...	2019-12-13 06:54:09
attackspambots	Too many connections or unauthorized access detected from Arctic banned ip	2019-12-11 07:36:59
attackbots	Dec 10 15:12:14 hcbbdb sshd\[6439\]: Invalid user ashleykath from 145.239.42.107 Dec 10 15:12:14 hcbbdb sshd\[6439\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107 Dec 10 15:12:16 hcbbdb sshd\[6439\]: Failed password for invalid user ashleykath from 145.239.42.107 port 43196 ssh2 Dec 10 15:18:04 hcbbdb sshd\[7163\]: Invalid user rafols from 145.239.42.107 Dec 10 15:18:04 hcbbdb sshd\[7163\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107	2019-12-10 23:22:44
attackspambots	Dec 9 06:47:08 wbs sshd\[30658\]: Invalid user kate from 145.239.42.107 Dec 9 06:47:08 wbs sshd\[30658\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107 Dec 9 06:47:09 wbs sshd\[30658\]: Failed password for invalid user kate from 145.239.42.107 port 39150 ssh2 Dec 9 06:53:06 wbs sshd\[31319\]: Invalid user oyakuma from 145.239.42.107 Dec 9 06:53:06 wbs sshd\[31319\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107	2019-12-10 00:59:44
attackspam	SSH invalid-user multiple login attempts	2019-12-08 17:11:08
attackspam	SSH brute-force: detected 33 distinct usernames within a 24-hour window.	2019-12-05 19:57:58
attack	ssh intrusion attempt	2019-11-22 17:22:23
attackspam	Nov 17 06:17:17 web8 sshd\[13050\]: Invalid user sig@tjlt from 145.239.42.107 Nov 17 06:17:17 web8 sshd\[13050\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107 Nov 17 06:17:19 web8 sshd\[13050\]: Failed password for invalid user sig@tjlt from 145.239.42.107 port 35220 ssh2 Nov 17 06:21:07 web8 sshd\[15028\]: Invalid user !@\#ewq!@\# from 145.239.42.107 Nov 17 06:21:07 web8 sshd\[15028\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107	2019-11-17 21:27:05
attack	2019-11-13T01:26:48.361927ns547587 sshd\[1369\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107.kr-k.de user=root 2019-11-13T01:26:50.847019ns547587 sshd\[1369\]: Failed password for root from 145.239.42.107 port 54708 ssh2 2019-11-13T01:30:13.300899ns547587 sshd\[5820\]: Invalid user biliamee from 145.239.42.107 port 35256 2019-11-13T01:30:13.304768ns547587 sshd\[5820\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107.kr-k.de ...	2019-11-13 14:46:26
attackspambots	SSH Brute Force, server-1 sshd[4737]: Failed password for invalid user webmaster from 145.239.42.107 port 41128 ssh2	2019-11-12 00:00:12
attackspam	SSH brutforce	2019-11-07 18:12:35
attack	Invalid user stefan from 145.239.42.107 port 52496	2019-10-25 17:10:57
attack	Invalid user stefan from 145.239.42.107 port 52496	2019-10-24 16:47:34
attack	Oct 20 07:05:01 localhost sshd\[30811\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107 user=root Oct 20 07:05:03 localhost sshd\[30811\]: Failed password for root from 145.239.42.107 port 43072 ssh2 Oct 20 07:09:06 localhost sshd\[31175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.42.107 user=root	2019-10-20 13:19:14

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.239.42.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43683
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;145.239.42.107.			IN	A

;; AUTHORITY SECTION:
.			572	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101901 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 20 13:19:10 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

107.42.239.145.in-addr.arpa domain name pointer 145.239.42.107.kr-k.de.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
107.42.239.145.in-addr.arpa	name = 145.239.42.107.kr-k.de.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
176.254.117.5	attackbots	Oct 7 09:42:28 vps01 sshd[13656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.254.117.5 Oct 7 09:42:30 vps01 sshd[13656]: Failed password for invalid user admin from 176.254.117.5 port 38976 ssh2	2019-10-07 17:07:06
104.248.237.238	attackbots	Oct 7 12:00:16 server sshd\[2698\]: User root from 104.248.237.238 not allowed because listed in DenyUsers Oct 7 12:00:16 server sshd\[2698\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.237.238 user=root Oct 7 12:00:18 server sshd\[2698\]: Failed password for invalid user root from 104.248.237.238 port 59660 ssh2 Oct 7 12:04:20 server sshd\[4839\]: User root from 104.248.237.238 not allowed because listed in DenyUsers Oct 7 12:04:20 server sshd\[4839\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.237.238 user=root	2019-10-07 17:11:38
118.25.134.166	attackspambots	[Mon Oct 07 04:46:22.345516 2019] [authz_core:error] [pid 15159] [client 118.25.134.166:60436] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/l.php [Mon Oct 07 04:46:22.892080 2019] [authz_core:error] [pid 16491] [client 118.25.134.166:60712] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/phpinfo.php [Mon Oct 07 04:46:34.352003 2019] [authz_core:error] [pid 9962] [client 118.25.134.166:60910] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/test.php ...	2019-10-07 17:17:04
133.130.99.77	attackbotsspam	Oct 7 08:43:43 vmd17057 sshd\[24347\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.99.77 user=root Oct 7 08:43:45 vmd17057 sshd\[24347\]: Failed password for root from 133.130.99.77 port 33916 ssh2 Oct 7 08:53:04 vmd17057 sshd\[24954\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.99.77 user=root ...	2019-10-07 17:26:16
201.140.111.58	attackbots	Oct 7 06:38:45 www sshd\[10268\]: Failed password for root from 201.140.111.58 port 10779 ssh2Oct 7 06:42:50 www sshd\[10474\]: Failed password for root from 201.140.111.58 port 57973 ssh2Oct 7 06:47:03 www sshd\[10663\]: Failed password for root from 201.140.111.58 port 46557 ssh2 ...	2019-10-07 17:04:39
54.246.143.171	attackbots	Received: from nnmtpndzrm.amazon.com (54.246.143.171) by DM6NAM11FT047.mail.protection.outlook.com (10.13.172.139) with Microsoft SMTP Server id 15.20.2327.20 via Frontend Transport; OriginalChecksum:8EC791B244F55C90FA146C8D7C5F81970EB1310DDD1EFBECF845D0B7ADEE5531;UpperCasedChecksum:E1CEFB47B3DD8D081BDE88A8B5578DD89CC9F819F1573AECA894093652A130C0;SizeAsReceived:471;Count:9 From: TOP CBD Subject: Get CBD Today! Reply-To: Received: from 99awdo3linaIHhadchi44.com (172.31.22.253) by 99awdo3linaIHhadchi44.com id rA55LG0veEoO for ; Sun, 06 Oct 2019 23:09:39 +0200 (envelope-from To: joycemarie1212@hotmail.com Message-ID: <9390a348-6bd5-4edd-a736-80e0d14074f4@DM6NAM11FT047.eop-nam11.prod.protection.outlook.com> Return-Path: bounce@69awdo3linatAhadchi44.com X-SID-PRA: FROM@09AWDO3LINAMZHADCHI44.COM X-SID-Result: NONE	2019-10-07 16:52:30
176.79.135.185	attackspambots	Oct 7 10:56:30 server sshd\[24171\]: User root from 176.79.135.185 not allowed because listed in DenyUsers Oct 7 10:56:30 server sshd\[24171\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.79.135.185 user=root Oct 7 10:56:32 server sshd\[24171\]: Failed password for invalid user root from 176.79.135.185 port 58260 ssh2 Oct 7 11:01:48 server sshd\[17692\]: User root from 176.79.135.185 not allowed because listed in DenyUsers Oct 7 11:01:48 server sshd\[17692\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.79.135.185 user=root	2019-10-07 16:49:21
193.253.97.116	attackbots	Oct 6 17:59:08 hpm sshd\[29533\]: Invalid user Adrien2017 from 193.253.97.116 Oct 6 17:59:08 hpm sshd\[29533\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=lreunion-656-1-11-116.w193-253.abo.wanadoo.fr Oct 6 17:59:10 hpm sshd\[29533\]: Failed password for invalid user Adrien2017 from 193.253.97.116 port 1556 ssh2 Oct 6 18:04:15 hpm sshd\[29962\]: Invalid user Salut from 193.253.97.116 Oct 6 18:04:15 hpm sshd\[29962\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=lreunion-656-1-11-116.w193-253.abo.wanadoo.fr	2019-10-07 17:04:56
222.186.180.20	attackbots	Oct 7 10:47:53 tux-35-217 sshd\[556\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.20 user=root Oct 7 10:47:56 tux-35-217 sshd\[556\]: Failed password for root from 222.186.180.20 port 28022 ssh2 Oct 7 10:48:01 tux-35-217 sshd\[556\]: Failed password for root from 222.186.180.20 port 28022 ssh2 Oct 7 10:48:05 tux-35-217 sshd\[556\]: Failed password for root from 222.186.180.20 port 28022 ssh2 ...	2019-10-07 16:55:07
193.112.62.85	attack	Oct 7 03:29:38 plusreed sshd[20316]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.62.85 user=root Oct 7 03:29:40 plusreed sshd[20316]: Failed password for root from 193.112.62.85 port 52202 ssh2 ...	2019-10-07 17:02:15
181.225.19.94	attackspam	(sshd) Failed SSH login from 181.225.19.94 (AR/Argentina/Neuquen/Cutral-Co/customer-94.tpp.com.ar.19.225.181.in-addr.arpa/[AS52232 Telefonía Pública y Privada S.A.]): 1 in the last 3600 secs	2019-10-07 17:07:23
162.247.74.206	attack	Oct 7 04:04:41 thevastnessof sshd[5581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.74.206 ...	2019-10-07 16:48:00
190.64.141.18	attack	2019-10-07T07:25:54.789464shield sshd\[18245\]: Invalid user Passw0rt123 from 190.64.141.18 port 37767 2019-10-07T07:25:54.794697shield sshd\[18245\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=r190-64-141-18.ir-static.anteldata.net.uy 2019-10-07T07:25:57.127083shield sshd\[18245\]: Failed password for invalid user Passw0rt123 from 190.64.141.18 port 37767 ssh2 2019-10-07T07:30:57.365637shield sshd\[18758\]: Invalid user P4rol4@2016 from 190.64.141.18 port 57692 2019-10-07T07:30:57.370221shield sshd\[18758\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=r190-64-141-18.ir-static.anteldata.net.uy	2019-10-07 17:06:44
202.75.216.136	attackspam	Fail2Ban - SSH Bruteforce Attempt	2019-10-07 17:05:37
118.27.26.79	attackbots	Oct 7 08:29:00 meumeu sshd[20528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.27.26.79 Oct 7 08:29:02 meumeu sshd[20528]: Failed password for invalid user Password@2017 from 118.27.26.79 port 44342 ssh2 Oct 7 08:33:42 meumeu sshd[21154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.27.26.79 ...	2019-10-07 17:20:40

最近上报的IP列表

211.179.76.9	34.87.24.125	185.40.15.247	142.93.218.34
202.52.52.94	200.194.28.159	184.186.75.132	103.61.39.106
174.142.90.14	52.14.33.15	83.149.128.234	23.244.43.2
213.215.82.36	195.138.72.83	167.71.4.130	160.106.238.48
185.40.12.193	83.22.197.253	207.180.196.57	174.139.98.234