164.132.145.70

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): France

运营商(isp): OVH SAS

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	12614/tcp 1735/tcp 7798/tcp... [2020-08-06/10-06]205pkt,72pt.(tcp)	2020-10-07 07:37:20
attackbots	Oct 6 12:29:09 ws19vmsma01 sshd[216948]: Failed password for root from 164.132.145.70 port 49040 ssh2 ...	2020-10-07 00:04:44
attack	Invalid user amavis2 from 164.132.145.70 port 48088	2020-10-06 15:53:37
attackbots	Invalid user redmine from 164.132.145.70 port 37818	2020-10-04 05:49:29
attackbotsspam	Oct 3 07:19:56 vps647732 sshd[12906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 Oct 3 07:19:58 vps647732 sshd[12906]: Failed password for invalid user admin from 164.132.145.70 port 49904 ssh2 ...	2020-10-03 13:32:49
attackbotsspam	" "	2020-09-23 02:14:22
attack	2020-09-22T10:05:29.696351abusebot-8.cloudsearch.cf sshd[7059]: Invalid user trinity from 164.132.145.70 port 48012 2020-09-22T10:05:29.702273abusebot-8.cloudsearch.cf sshd[7059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip70.ip-164-132-145.eu 2020-09-22T10:05:29.696351abusebot-8.cloudsearch.cf sshd[7059]: Invalid user trinity from 164.132.145.70 port 48012 2020-09-22T10:05:31.382017abusebot-8.cloudsearch.cf sshd[7059]: Failed password for invalid user trinity from 164.132.145.70 port 48012 ssh2 2020-09-22T10:15:27.387842abusebot-8.cloudsearch.cf sshd[7378]: Invalid user guest from 164.132.145.70 port 42918 2020-09-22T10:15:27.395150abusebot-8.cloudsearch.cf sshd[7378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip70.ip-164-132-145.eu 2020-09-22T10:15:27.387842abusebot-8.cloudsearch.cf sshd[7378]: Invalid user guest from 164.132.145.70 port 42918 2020-09-22T10:15:29.170516abusebot-8.cloudsearch. ...	2020-09-22 18:16:47
attackbotsspam	SSH Bruteforce Attempt on Honeypot	2020-09-18 00:55:37
attack	Sep 17 04:27:25 NPSTNNYC01T sshd[29581]: Failed password for root from 164.132.145.70 port 53940 ssh2 Sep 17 04:29:38 NPSTNNYC01T sshd[29895]: Failed password for root from 164.132.145.70 port 35764 ssh2 ...	2020-09-17 16:57:04
attackspam	srv02 Mass scanning activity detected Target: 12210 ..	2020-09-17 08:03:13
attack	" "	2020-09-05 22:40:34
attackspambots	Port scan: Attack repeated for 24 hours	2020-09-05 14:17:07
attackspambots	Invalid user amir from 164.132.145.70 port 39258	2020-09-05 06:59:27
attack	Aug 30 21:19:06 webhost01 sshd[8106]: Failed password for root from 164.132.145.70 port 33554 ssh2 Aug 30 21:22:40 webhost01 sshd[8158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 ...	2020-08-31 01:16:02
attackbots	Aug 19 04:03:55 Host-KEWR-E sshd[21143]: Disconnected from invalid user esp 164.132.145.70 port 36322 [preauth] ...	2020-08-19 16:18:30
attack	Aug 15 12:41:28 ip40 sshd[25802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 Aug 15 12:41:30 ip40 sshd[25802]: Failed password for invalid user PassWord!@# from 164.132.145.70 port 57668 ssh2 ...	2020-08-15 20:09:12
attack	(sshd) Failed SSH login from 164.132.145.70 (PL/Poland/ip70.ip-164-132-145.eu): 5 in the last 3600 secs	2020-08-13 14:03:00
attackspam	SSH brute-force attempt	2020-08-10 19:55:20
attackspambots	Sent packet to closed port: 28863	2020-08-09 07:40:35
attackbots	Aug 7 04:24:54 php1 sshd\[14212\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 user=root Aug 7 04:24:56 php1 sshd\[14212\]: Failed password for root from 164.132.145.70 port 36176 ssh2 Aug 7 04:28:48 php1 sshd\[14471\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 user=root Aug 7 04:28:50 php1 sshd\[14471\]: Failed password for root from 164.132.145.70 port 45548 ssh2 Aug 7 04:32:48 php1 sshd\[14743\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 user=root	2020-08-08 03:17:17
attack	07/29/2020-03:26:10.303770 164.132.145.70 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-07-29 15:27:14
attackbots	2020-07-25T03:52:18.106779shield sshd\[28738\]: Invalid user ghost from 164.132.145.70 port 46104 2020-07-25T03:52:18.115819shield sshd\[28738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip70.ip-164-132-145.eu 2020-07-25T03:52:20.291072shield sshd\[28738\]: Failed password for invalid user ghost from 164.132.145.70 port 46104 ssh2 2020-07-25T03:56:19.562079shield sshd\[29291\]: Invalid user remote from 164.132.145.70 port 60770 2020-07-25T03:56:19.571358shield sshd\[29291\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip70.ip-164-132-145.eu	2020-07-25 12:02:10
attackbotsspam	Jul 25 00:17:36 scw-6657dc sshd[17282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 Jul 25 00:17:36 scw-6657dc sshd[17282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 Jul 25 00:17:37 scw-6657dc sshd[17282]: Failed password for invalid user oracle from 164.132.145.70 port 43180 ssh2 ...	2020-07-25 08:32:51
attack	Jul 21 16:10:44 pi sshd[17158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 Jul 21 16:10:46 pi sshd[17158]: Failed password for invalid user sme from 164.132.145.70 port 38208 ssh2	2020-07-24 06:26:12
attackspambots	Port Scan ...	2020-07-13 23:20:40
attack	SSH Brute-force	2020-07-13 12:27:11
attackbots	2020-07-11T22:05:13.472539vps773228.ovh.net sshd[16796]: Failed password for invalid user xnzhang from 164.132.145.70 port 44932 ssh2 2020-07-11T22:08:01.817025vps773228.ovh.net sshd[16838]: Invalid user olivia from 164.132.145.70 port 40474 2020-07-11T22:08:01.837304vps773228.ovh.net sshd[16838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip70.ip-164-132-145.eu 2020-07-11T22:08:01.817025vps773228.ovh.net sshd[16838]: Invalid user olivia from 164.132.145.70 port 40474 2020-07-11T22:08:03.520991vps773228.ovh.net sshd[16838]: Failed password for invalid user olivia from 164.132.145.70 port 40474 ssh2 ...	2020-07-12 04:50:41
attackspam	2020-06-28T23:06:37+0200 Failed SSH Authentication/Brute Force Attack. (Server 10)	2020-06-29 05:07:35
attack	Jun 26 19:33:23 inter-technics sshd[23079]: Invalid user nap from 164.132.145.70 port 39602 Jun 26 19:33:23 inter-technics sshd[23079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 Jun 26 19:33:23 inter-technics sshd[23079]: Invalid user nap from 164.132.145.70 port 39602 Jun 26 19:33:25 inter-technics sshd[23079]: Failed password for invalid user nap from 164.132.145.70 port 39602 ssh2 Jun 26 19:35:10 inter-technics sshd[23177]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 user=root Jun 26 19:35:12 inter-technics sshd[23177]: Failed password for root from 164.132.145.70 port 39618 ssh2 ...	2020-06-27 02:42:49
attack	Jun 12 06:35:10 PorscheCustomer sshd[30704]: Failed password for root from 164.132.145.70 port 57540 ssh2 Jun 12 06:38:28 PorscheCustomer sshd[30837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 Jun 12 06:38:30 PorscheCustomer sshd[30837]: Failed password for invalid user apinizer from 164.132.145.70 port 56268 ssh2 ...	2020-06-12 12:45:33

相同子网IP讨论:

IP	类型	评论内容	时间
164.132.145.22	attackspam	Port probing on unauthorized port 14463	2020-03-01 16:33:48
164.132.145.22	attackspambots	Brute force VPN server	2020-02-12 15:05:01
164.132.145.3	attackspambots	Sep 28 17:11:16 aat-srv002 sshd[30093]: Failed password for ftp from 164.132.145.3 port 60016 ssh2 Sep 28 17:15:30 aat-srv002 sshd[30186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.3 Sep 28 17:15:33 aat-srv002 sshd[30186]: Failed password for invalid user techno from 164.132.145.3 port 52730 ssh2 ...	2019-09-29 06:29:37

类型

评论内容

时间

164.132.145.22

attackspam

Port probing on unauthorized port 14463

2020-03-01 16:33:48

164.132.145.22

attackspambots

Brute force VPN server

2020-02-12 15:05:01

164.132.145.3

attackspambots

Sep 28 17:11:16 aat-srv002 sshd[30093]: Failed password for ftp from 164.132.145.3 port 60016 ssh2
Sep 28 17:15:30 aat-srv002 sshd[30186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.3
Sep 28 17:15:33 aat-srv002 sshd[30186]: Failed password for invalid user techno from 164.132.145.3 port 52730 ssh2
...

2019-09-29 06:29:37

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.132.145.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33798
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;164.132.145.70.			IN	A

;; AUTHORITY SECTION:
.			411	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100600 1800 900 604800 86400

;; Query time: 352 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 06 17:37:14 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

70.145.132.164.in-addr.arpa domain name pointer ip70.ip-164-132-145.eu.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
70.145.132.164.in-addr.arpa	name = ip70.ip-164-132-145.eu.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
167.114.98.169	attack	Automated report - ssh fail2ban: Sep 30 11:15:52 authentication failure Sep 30 11:15:54 wrong password, user=pass, port=35548, ssh2 Sep 30 11:19:53 authentication failure	2019-09-30 17:25:23
61.69.254.46	attackspam	2019-09-30T12:02:25.029390tmaserv sshd\[7460\]: Invalid user renata from 61.69.254.46 port 53424 2019-09-30T12:02:25.033036tmaserv sshd\[7460\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.69.254.46 2019-09-30T12:02:26.857587tmaserv sshd\[7460\]: Failed password for invalid user renata from 61.69.254.46 port 53424 ssh2 2019-09-30T12:07:43.866022tmaserv sshd\[7704\]: Invalid user admin from 61.69.254.46 port 39054 2019-09-30T12:07:43.869621tmaserv sshd\[7704\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.69.254.46 2019-09-30T12:07:46.015577tmaserv sshd\[7704\]: Failed password for invalid user admin from 61.69.254.46 port 39054 ssh2 ...	2019-09-30 17:15:32
139.199.45.83	attack	Sep 29 18:23:24 hiderm sshd\[15163\]: Invalid user holy from 139.199.45.83 Sep 29 18:23:24 hiderm sshd\[15163\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 Sep 29 18:23:26 hiderm sshd\[15163\]: Failed password for invalid user holy from 139.199.45.83 port 33446 ssh2 Sep 29 18:28:09 hiderm sshd\[15532\]: Invalid user boon from 139.199.45.83 Sep 29 18:28:09 hiderm sshd\[15532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83	2019-09-30 17:07:16
41.47.68.223	attackbotsspam	SSH brutforce	2019-09-30 17:22:20
81.30.212.14	attack	SSH Brute Force, server-1 sshd[26094]: Failed password for invalid user tatiana from 81.30.212.14 port 45592 ssh2	2019-09-30 17:12:58
206.81.8.14	attackbotsspam	ssh failed login	2019-09-30 17:31:48
187.190.236.88	attack	Sep 29 20:08:19 php1 sshd\[11651\]: Invalid user do from 187.190.236.88 Sep 29 20:08:19 php1 sshd\[11651\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=fixed-187-190-236-88.totalplay.net Sep 29 20:08:22 php1 sshd\[11651\]: Failed password for invalid user do from 187.190.236.88 port 40682 ssh2 Sep 29 20:12:00 php1 sshd\[12222\]: Invalid user ys from 187.190.236.88 Sep 29 20:12:00 php1 sshd\[12222\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=fixed-187-190-236-88.totalplay.net	2019-09-30 17:20:05
142.112.115.160	attackbotsspam	Port Scan detected from 142.112.115.160 (CA/Canada/ipagstaticip-f6ffd4e0-f46a-b142-b2ad-b6c2b58e2418.sdsl.bell.ca). 4 hits in the last 70 seconds	2019-09-30 17:12:18
49.88.112.113	attack	Sep 30 16:22:17 webhost01 sshd[10187]: Failed password for root from 49.88.112.113 port 24904 ssh2 ...	2019-09-30 17:32:33
125.132.103.74	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/125.132.103.74/ KR - 1H : (273) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : KR NAME ASN : ASN4766 IP : 125.132.103.74 CIDR : 125.132.64.0/18 PREFIX COUNT : 8136 UNIQUE IP COUNT : 44725248 WYKRYTE ATAKI Z ASN4766 : 1H - 3 3H - 16 6H - 25 12H - 55 24H - 95 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-09-30 17:40:02
103.216.160.16	attackspambots	2019-09-29 22:50:00 H=([103.216.160.18]) [103.216.160.16]:11851 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11, 127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-09-29 22:53:32 H=([103.216.160.18]) [103.216.160.16]:4330 I=[192.147.25.65]:25 sender verify fail for : Unrouteable address 2019-09-29 22:53:32 H=([103.216.160.18]) [103.216.160.16]:4330 I=[192.147.25.65]:25 F= rejected RCPT : Sender verify failed ...	2019-09-30 17:18:46
134.209.134.227	attackbots	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-09-30 17:02:01
70.61.166.78	attack	Sent mail to target address hacked/leaked from abandonia in 2016	2019-09-30 17:32:15
216.14.163.172	attackspam	SSH/22 MH Probe, BF, Hack -	2019-09-30 17:33:05
212.20.54.63	attackspambots	09/29/2019-23:53:08.266500 212.20.54.63 Protocol: 1 GPL SCAN PING NMAP	2019-09-30 17:38:57

最近上报的IP列表

203.177.173.123	2.228.87.194	185.6.9.220	69.138.85.14
14.98.242.99	194.116.202.51	193.188.22.222	121.81.70.4
160.176.156.107	103.210.48.1	211.27.11.189	49.146.59.73
36.71.234.217	202.131.231.138	212.83.191.184	176.123.200.214
171.229.84.89	123.188.238.169	60.19.2.68	92.71.206.253