148.216.45.137

基本信息:

城市(city): Morelia

省份(region): Michoacán

国家(country): Mexico

运营商(isp): Universidad Michoacana de San Nicolas de Hidalgo

主机名(hostname): unknown

机构(organization): Mega Cable, S.A. de C.V.

使用类型(Usage Type): University/College/School

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	[AUTOMATIC REPORT] - 21 tries in total - SSH BRUTE FORCE - IP banned	2019-12-02 15:27:00
attackbots	Dec 1 06:29:13 work-partkepr sshd\[5569\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.216.45.137 user=root Dec 1 06:29:15 work-partkepr sshd\[5569\]: Failed password for root from 148.216.45.137 port 57793 ssh2 ...	2019-12-01 16:10:50

类型

评论内容

时间

attackbots

[AUTOMATIC REPORT] - 21 tries in total - SSH BRUTE FORCE - IP banned

2019-12-02 15:27:00

attackbots

Dec  1 06:29:13 work-partkepr sshd\[5569\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.216.45.137  user=root
Dec  1 06:29:15 work-partkepr sshd\[5569\]: Failed password for root from 148.216.45.137 port 57793 ssh2
...

2019-12-01 16:10:50

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.216.45.137
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25468
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.216.45.137.			IN	A

;; AUTHORITY SECTION:
.			2448	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040700 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Apr 07 13:49:53 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 137.45.216.148.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 137.45.216.148.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
111.231.94.138	attackspambots	May 13 05:36:21 Ubuntu-1404-trusty-64-minimal sshd\[27230\]: Invalid user wwwrun from 111.231.94.138 May 13 05:36:21 Ubuntu-1404-trusty-64-minimal sshd\[27230\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.94.138 May 13 05:36:23 Ubuntu-1404-trusty-64-minimal sshd\[27230\]: Failed password for invalid user wwwrun from 111.231.94.138 port 59682 ssh2 May 13 05:55:45 Ubuntu-1404-trusty-64-minimal sshd\[11989\]: Invalid user data from 111.231.94.138 May 13 05:55:45 Ubuntu-1404-trusty-64-minimal sshd\[11989\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.94.138	2020-05-13 15:33:47
171.243.245.219	attack	May 13 05:56:02 ncomp sshd[30926]: Invalid user dircreate from 171.243.245.219 May 13 05:56:02 ncomp sshd[30926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.243.245.219 May 13 05:56:02 ncomp sshd[30926]: Invalid user dircreate from 171.243.245.219 May 13 05:56:04 ncomp sshd[30926]: Failed password for invalid user dircreate from 171.243.245.219 port 27805 ssh2	2020-05-13 15:18:10
159.89.130.178	attackspam	$f2bV_matches	2020-05-13 15:03:10
182.61.46.245	attack	May 12 19:18:40 eddieflores sshd\[9827\]: Invalid user api from 182.61.46.245 May 12 19:18:40 eddieflores sshd\[9827\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.46.245 May 12 19:18:42 eddieflores sshd\[9827\]: Failed password for invalid user api from 182.61.46.245 port 48096 ssh2 May 12 19:22:58 eddieflores sshd\[10147\]: Invalid user user1 from 182.61.46.245 May 12 19:22:59 eddieflores sshd\[10147\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.46.245	2020-05-13 15:24:09
35.189.12.246	attackspam	Unauthorized connection attempt detected from IP address 35.189.12.246 to port 22 [T]	2020-05-13 15:01:33
170.106.38.190	attackbots	2020-05-13T02:44:55.5937621495-001 sshd[14951]: Invalid user oracle from 170.106.38.190 port 60654 2020-05-13T02:44:57.4734581495-001 sshd[14951]: Failed password for invalid user oracle from 170.106.38.190 port 60654 ssh2 2020-05-13T02:50:45.0982071495-001 sshd[15221]: Invalid user guest from 170.106.38.190 port 42892 2020-05-13T02:50:45.1043061495-001 sshd[15221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.106.38.190 2020-05-13T02:50:45.0982071495-001 sshd[15221]: Invalid user guest from 170.106.38.190 port 42892 2020-05-13T02:50:47.0311341495-001 sshd[15221]: Failed password for invalid user guest from 170.106.38.190 port 42892 ssh2 ...	2020-05-13 15:41:02
103.108.87.161	attackspam	5x Failed Password	2020-05-13 15:39:12
49.235.39.217	attack	DATE:2020-05-13 08:48:57, IP:49.235.39.217, PORT:ssh SSH brute force auth (docker-dc)	2020-05-13 15:03:52
221.143.48.143	attackbots	2020-05-13T05:15:38.844618shield sshd\[14822\]: Invalid user hostmaster from 221.143.48.143 port 49986 2020-05-13T05:15:38.855333shield sshd\[14822\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.143.48.143 2020-05-13T05:15:40.642310shield sshd\[14822\]: Failed password for invalid user hostmaster from 221.143.48.143 port 49986 ssh2 2020-05-13T05:19:32.222549shield sshd\[15620\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.143.48.143 user=root 2020-05-13T05:19:34.133876shield sshd\[15620\]: Failed password for root from 221.143.48.143 port 62682 ssh2	2020-05-13 15:15:49
47.75.70.153	attack	Malicious/Probing: /xmlrpc.php	2020-05-13 15:22:07
163.172.19.244	attack	xmlrpc attack	2020-05-13 15:12:00
180.214.236.138	attackspam	May 13 08:30:25 debian-2gb-nbg1-2 kernel: \[11610284.387651\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=180.214.236.138 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=63837 PROTO=TCP SPT=49857 DPT=3458 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-13 15:17:38
45.136.245.137	attack	Lines containing failures of 45.136.245.137 May 12 19:47:56 neweola sshd[7608]: Did not receive identification string from 45.136.245.137 port 33254 May 12 19:48:02 neweola sshd[7609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.136.245.137 user=r.r May 12 19:48:04 neweola sshd[7609]: Failed password for r.r from 45.136.245.137 port 54426 ssh2 May 12 19:48:06 neweola sshd[7609]: Received disconnect from 45.136.245.137 port 54426:11: Normal Shutdown, Thank you for playing [preauth] May 12 19:48:06 neweola sshd[7609]: Disconnected from authenticating user r.r 45.136.245.137 port 54426 [preauth] May 12 19:48:09 neweola sshd[7614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.136.245.137 user=r.r May 12 19:48:12 neweola sshd[7614]: Failed password for r.r from 45.136.245.137 port 43266 ssh2 May 12 19:48:13 neweola sshd[7614]: Received disconnect from 45.136.245.137 port 43266:11: N........ ------------------------------	2020-05-13 15:36:01
92.105.40.159	attackbotsspam	Invalid user pi from 92.105.40.159 port 50754	2020-05-13 15:14:29
213.251.184.102	attack	May 13 09:00:51 roki-contabo sshd\[20037\]: Invalid user toor from 213.251.184.102 May 13 09:00:51 roki-contabo sshd\[20037\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.251.184.102 May 13 09:00:53 roki-contabo sshd\[20037\]: Failed password for invalid user toor from 213.251.184.102 port 37696 ssh2 May 13 09:07:03 roki-contabo sshd\[20194\]: Invalid user pl from 213.251.184.102 May 13 09:07:03 roki-contabo sshd\[20194\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.251.184.102 ...	2020-05-13 15:08:54

最近上报的IP列表

54.92.252.103	52.233.182.21	61.183.35.44	79.113.61.225
118.24.153.230	119.27.173.72	103.1.93.213	41.95.246.251
190.193.138.177	114.241.199.75	5.63.151.118	41.46.181.253
125.161.104.58	122.155.0.145	211.140.116.108	212.92.106.146
74.214.227.50	200.110.89.82	46.105.123.11	187.0.211.99