145.255.21.5 - IPInfo

基本信息:

城市(city): Orenburg

省份(region): Orenburg Oblast

国家(country): Russia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): OJSC Ufanet

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
145.255.21.69	attackspambots	Unauthorized connection attempt detected from IP address 145.255.21.69 to port 445 [T]	2020-08-29 22:43:03
145.255.21.213	attackspam	honeypot forum registration (user=Philliprisee; email=intercreditl@yandex.ru)	2020-06-12 17:49:55
145.255.21.151	attackbots	Port probing on unauthorized port 445	2020-06-04 03:38:39
145.255.215.8	attackspambots	Telnetd brute force attack detected by fail2ban	2019-12-06 00:53:32
145.255.21.172	attackspambots	Unauthorized connection attempt from IP address 145.255.21.172 on Port 445(SMB)	2019-10-12 17:05:23
145.255.21.29	attackbotsspam	2019-10-0114:14:291iFH2y-0007ao-SZ\<=info@imsuisse-sa.chH=\(imsuisse-sa.ch\)[5.62.136.71]:54634P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_plain:info@imsuisse-sa.chS=2784id=E65CE359-68A7-4D32-BE28-4D04F1A56FE9@imsuisse-sa.chT=""foramyremaxsilverman@yahoo.comanya_lee81@yahoo.comaquavargas@yahoo.combeckwheat3@aol.combidme10@aol.combluedramatic8@yahoo.combonnie3386@yahoo.combovella@cox.netbrandon_delgrosso@yahoo.comBredekimberly@yahoo.combruin2000@aol.comcaldrich7@aol.comcallen1942@gotsky.com2019-10-0114:14:291iFH2z-0007bU-2J\<=info@imsuisse-sa.chH=\(imsuisse-sa.ch\)[112.134.232.94]:45807P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_plain:info@imsuisse-sa.chS=2151id=52C24F30-9718-4AD3-B3D8-644F1A346494@imsuisse-sa.chT="Kayla"forkaylaakinlosose@yahoo.comjarvi00@aol.comkeiviacrane@yahoo.comkhelia_willis@yahoo.comkierra_lewis09@yahoo.comkindra3battles@hotmail.comkwill17@aol.comlakeishamiami@aol.com2019-10-0114:14:181iFH2o-0007ao-34\<=info@imsuisse-sa.chH=\(imsuisse-sa.ch\	2019-10-02 00:16:20
145.255.21.127	attackbots	Trying to (more than 3 packets) bruteforce (not open) Samba/Microsoft-DS port 445	2019-06-30 07:34:00

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.255.21.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25740
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;145.255.21.5.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041500 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 15 23:13:01 +08 2019
;; MSG SIZE  rcvd: 116

HOST信息:

5.21.255.145.in-addr.arpa domain name pointer 145.255.21.5.dynamic.o56.ru.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
5.21.255.145.in-addr.arpa	name = 145.255.21.5.dynamic.o56.ru.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.186.175.147	attackbots	Dec 29 17:09:12 * sshd[3819]: Failed password for root from 222.186.175.147 port 5222 ssh2 Dec 29 17:09:26 * sshd[3819]: error: maximum authentication attempts exceeded for root from 222.186.175.147 port 5222 ssh2 [preauth]	2019-12-30 00:11:10
188.80.22.177	attackbotsspam	Hit on CMS login honeypot	2019-12-30 00:02:51
111.231.87.204	attack	Dec 29 15:52:56 nextcloud sshd\[30153\]: Invalid user neeraj from 111.231.87.204 Dec 29 15:52:56 nextcloud sshd\[30153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.87.204 Dec 29 15:52:58 nextcloud sshd\[30153\]: Failed password for invalid user neeraj from 111.231.87.204 port 49970 ssh2 ...	2019-12-30 00:12:02
164.132.81.106	attack	Dec 29 16:35:03 dedicated sshd[8822]: Invalid user hafto from 164.132.81.106 port 32978	2019-12-29 23:45:57
139.155.45.196	attackbots	Dec 29 15:53:56 serwer sshd\[5281\]: Invalid user u1 from 139.155.45.196 port 53836 Dec 29 15:53:56 serwer sshd\[5281\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.45.196 Dec 29 15:53:58 serwer sshd\[5281\]: Failed password for invalid user u1 from 139.155.45.196 port 53836 ssh2 ...	2019-12-29 23:44:47
45.55.210.248	attackbotsspam	Dec 29 15:53:02 cvbnet sshd[2939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.210.248 Dec 29 15:53:04 cvbnet sshd[2939]: Failed password for invalid user elena from 45.55.210.248 port 57088 ssh2 ...	2019-12-30 00:18:24
104.236.230.165	attack	[Aegis] @ 2019-12-29 16:04:27 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-12-29 23:47:52
148.235.57.183	attackspambots	Dec 29 15:52:54 mout sshd[15857]: Invalid user admin from 148.235.57.183 port 50001	2019-12-30 00:23:14
177.74.226.173	attackbotsspam	W 31101,/var/log/nginx/access.log,-,-	2019-12-29 23:50:42
182.254.172.63	attackbotsspam	Automatic report - Banned IP Access	2019-12-29 23:46:50
37.59.58.142	attack	Dec 29 12:54:12 vps46666688 sshd[12999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.58.142 Dec 29 12:54:13 vps46666688 sshd[12999]: Failed password for invalid user \|\|\|\|\|\|\| from 37.59.58.142 port 46398 ssh2 ...	2019-12-30 00:12:18
27.78.12.22	attackbots	Dec 29 15:53:55 rotator sshd\[20718\]: Address 27.78.12.22 maps to localhost, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Dec 29 15:53:55 rotator sshd\[20718\]: Invalid user tomcat from 27.78.12.22Dec 29 15:53:58 rotator sshd\[20718\]: Failed password for invalid user tomcat from 27.78.12.22 port 44736 ssh2Dec 29 15:53:58 rotator sshd\[20721\]: Address 27.78.12.22 maps to localhost, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Dec 29 15:53:58 rotator sshd\[20721\]: Invalid user user1 from 27.78.12.22Dec 29 15:54:00 rotator sshd\[20721\]: Failed password for invalid user user1 from 27.78.12.22 port 52964 ssh2 ...	2019-12-29 23:43:22
184.82.55.215	attackbotsspam	Unauthorized IMAP connection attempt	2019-12-30 00:10:11
124.233.2.82	attack	Portscan or hack attempt detected by psad/fwsnort	2019-12-29 23:48:29
185.156.73.60	attack	Dec 29 17:14:06 debian-2gb-nbg1-2 kernel: \[1288757.639641\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.156.73.60 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=56080 PROTO=TCP SPT=54074 DPT=40007 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-30 00:17:36

最近上报的IP列表

196.28.101.137	42.118.55.241	105.238.235.69	103.3.228.162
203.206.181.13	192.118.32.250	122.96.145.228	134.17.25.34
90.171.44.254	80.253.152.177	94.159.12.230	201.48.183.203
106.120.188.141	129.150.122.243	198.108.67.58	87.116.177.114
115.166.142.146	195.201.172.87	2.37.22.229	220.175.137.216