148.234.145.18

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Mexico

运营商(isp): Universidad Autonoma de Nuevo Leon

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): University/College/School

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt from IP address 148.234.145.18 on Port 445(SMB)	2019-08-10 17:49:35

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.234.145.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27253
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.234.145.18.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 10 17:49:28 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 18.145.234.148.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 18.145.234.148.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
189.8.136.102	attackspambots	Jun 26 17:46:25 dallas01 sshd[32076]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.8.136.102 Jun 26 17:46:28 dallas01 sshd[32076]: Failed password for invalid user hadoop from 189.8.136.102 port 39543 ssh2 Jun 26 17:52:02 dallas01 sshd[32756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.8.136.102	2019-08-01 07:21:17
187.120.15.222	attackbots	Aug 1 01:16:45 minden010 sshd[12339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.120.15.222 Aug 1 01:16:48 minden010 sshd[12339]: Failed password for invalid user odoo from 187.120.15.222 port 36640 ssh2 Aug 1 01:22:15 minden010 sshd[14237]: Failed password for root from 187.120.15.222 port 60876 ssh2 ...	2019-08-01 08:06:00
191.201.33.243	attack	Jul 31 20:30:59 master sshd[17363]: Failed password for invalid user admin from 191.201.33.243 port 2098 ssh2	2019-08-01 07:24:33
189.8.108.73	attackbotsspam	Jun 26 09:05:00 dallas01 sshd[10816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.8.108.73 Jun 26 09:05:00 dallas01 sshd[10815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.8.108.73 Jun 26 09:05:02 dallas01 sshd[10816]: Failed password for invalid user pi from 189.8.108.73 port 58209 ssh2	2019-08-01 07:26:36
222.254.31.136	attackbots	Jul 31 20:57:47 master sshd[17383]: Failed password for invalid user admin from 222.254.31.136 port 45102 ssh2	2019-08-01 07:23:34
178.62.41.7	attack	Aug 1 02:02:13 srv-4 sshd\[3087\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.41.7 user=ftp Aug 1 02:02:15 srv-4 sshd\[3087\]: Failed password for ftp from 178.62.41.7 port 49160 ssh2 Aug 1 02:10:53 srv-4 sshd\[3359\]: Invalid user test from 178.62.41.7 Aug 1 02:10:53 srv-4 sshd\[3359\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.41.7 ...	2019-08-01 07:45:58
79.106.19.231	attackspam	Unauthorised access (Jul 31) SRC=79.106.19.231 LEN=40 TTL=242 ID=53881 TCP DPT=445 WINDOW=1024 SYN	2019-08-01 08:05:41
106.251.118.119	attack	Jun 30 22:21:54 server sshd\[54570\]: Invalid user jcseg from 106.251.118.119 Jun 30 22:21:54 server sshd\[54570\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.251.118.119 Jun 30 22:21:57 server sshd\[54570\]: Failed password for invalid user jcseg from 106.251.118.119 port 37184 ssh2 ...	2019-08-01 07:17:05
82.142.71.9	attack	Many RDP login attempts detected by IDS script	2019-08-01 07:43:48
180.126.239.84	attackspam	Automatic report - Port Scan Attack	2019-08-01 07:35:21
142.93.22.180	attackspam	SSH Brute Force	2019-08-01 07:50:01
46.3.96.66	attackspambots	Port scan attempt detected by AWS-CCS, CTS, India	2019-08-01 07:51:14
112.85.42.182	attackbotsspam	Jul 31 14:39:04 mail sshd[27455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.182 user=root Jul 31 14:39:05 mail sshd[27455]: Failed password for root from 112.85.42.182 port 55176 ssh2 Jul 31 14:39:21 mail sshd[27455]: error: maximum authentication attempts exceeded for root from 112.85.42.182 port 55176 ssh2 [preauth] Jul 31 14:39:04 mail sshd[27455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.182 user=root Jul 31 14:39:05 mail sshd[27455]: Failed password for root from 112.85.42.182 port 55176 ssh2 Jul 31 14:39:21 mail sshd[27455]: error: maximum authentication attempts exceeded for root from 112.85.42.182 port 55176 ssh2 [preauth] Jul 31 14:39:04 mail sshd[27455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.182 user=root Jul 31 14:39:05 mail sshd[27455]: Failed password for root from 112.85.42.182 port 55176 ssh2 Jul 31 14:39:21 mail sshd[274	2019-08-01 07:37:08
104.248.149.9	attackbotsspam	Jul 31 22:02:23 server sshd\[10177\]: Invalid user china from 104.248.149.9 port 16015 Jul 31 22:02:23 server sshd\[10177\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.149.9 Jul 31 22:02:25 server sshd\[10177\]: Failed password for invalid user china from 104.248.149.9 port 16015 ssh2 Jul 31 22:12:10 server sshd\[2763\]: Invalid user karlijn from 104.248.149.9 port 23152 Jul 31 22:12:10 server sshd\[2763\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.149.9	2019-08-01 08:08:11
216.189.15.132	attack	Aug 1 02:32:18 www2 sshd\[40017\]: Invalid user gw from 216.189.15.132Aug 1 02:32:20 www2 sshd\[40017\]: Failed password for invalid user gw from 216.189.15.132 port 50108 ssh2Aug 1 02:36:55 www2 sshd\[40527\]: Invalid user camden from 216.189.15.132Aug 1 02:36:57 www2 sshd\[40527\]: Failed password for invalid user camden from 216.189.15.132 port 50600 ssh2Aug 1 02:41:25 www2 sshd\[41061\]: Invalid user lbchao from 216.189.15.132Aug 1 02:41:27 www2 sshd\[41061\]: Failed password for invalid user lbchao from 216.189.15.132 port 50364 ssh2 ...	2019-08-01 07:56:40

最近上报的IP列表

16.41.13.9	104.198.171.133	153.190.59.88	37.0.121.102
36.236.140.137	177.8.255.162	106.32.220.5	81.211.18.114
61.34.77.155	194.28.115.251	45.195.202.204	74.44.75.19
191.53.198.66	107.25.6.146	244.195.224.127	187.134.253.233
66.59.217.39	187.87.4.61	39.255.113.215	237.207.115.50