164.132.145.70

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): France

运营商(isp): OVH SAS

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	12614/tcp 1735/tcp 7798/tcp... [2020-08-06/10-06]205pkt,72pt.(tcp)	2020-10-07 07:37:20
attackbots	Oct 6 12:29:09 ws19vmsma01 sshd[216948]: Failed password for root from 164.132.145.70 port 49040 ssh2 ...	2020-10-07 00:04:44
attack	Invalid user amavis2 from 164.132.145.70 port 48088	2020-10-06 15:53:37
attackbots	Invalid user redmine from 164.132.145.70 port 37818	2020-10-04 05:49:29
attackbotsspam	Oct 3 07:19:56 vps647732 sshd[12906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 Oct 3 07:19:58 vps647732 sshd[12906]: Failed password for invalid user admin from 164.132.145.70 port 49904 ssh2 ...	2020-10-03 13:32:49
attackbotsspam	" "	2020-09-23 02:14:22
attack	2020-09-22T10:05:29.696351abusebot-8.cloudsearch.cf sshd[7059]: Invalid user trinity from 164.132.145.70 port 48012 2020-09-22T10:05:29.702273abusebot-8.cloudsearch.cf sshd[7059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip70.ip-164-132-145.eu 2020-09-22T10:05:29.696351abusebot-8.cloudsearch.cf sshd[7059]: Invalid user trinity from 164.132.145.70 port 48012 2020-09-22T10:05:31.382017abusebot-8.cloudsearch.cf sshd[7059]: Failed password for invalid user trinity from 164.132.145.70 port 48012 ssh2 2020-09-22T10:15:27.387842abusebot-8.cloudsearch.cf sshd[7378]: Invalid user guest from 164.132.145.70 port 42918 2020-09-22T10:15:27.395150abusebot-8.cloudsearch.cf sshd[7378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip70.ip-164-132-145.eu 2020-09-22T10:15:27.387842abusebot-8.cloudsearch.cf sshd[7378]: Invalid user guest from 164.132.145.70 port 42918 2020-09-22T10:15:29.170516abusebot-8.cloudsearch. ...	2020-09-22 18:16:47
attackbotsspam	SSH Bruteforce Attempt on Honeypot	2020-09-18 00:55:37
attack	Sep 17 04:27:25 NPSTNNYC01T sshd[29581]: Failed password for root from 164.132.145.70 port 53940 ssh2 Sep 17 04:29:38 NPSTNNYC01T sshd[29895]: Failed password for root from 164.132.145.70 port 35764 ssh2 ...	2020-09-17 16:57:04
attackspam	srv02 Mass scanning activity detected Target: 12210 ..	2020-09-17 08:03:13
attack	" "	2020-09-05 22:40:34
attackspambots	Port scan: Attack repeated for 24 hours	2020-09-05 14:17:07
attackspambots	Invalid user amir from 164.132.145.70 port 39258	2020-09-05 06:59:27
attack	Aug 30 21:19:06 webhost01 sshd[8106]: Failed password for root from 164.132.145.70 port 33554 ssh2 Aug 30 21:22:40 webhost01 sshd[8158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 ...	2020-08-31 01:16:02
attackbots	Aug 19 04:03:55 Host-KEWR-E sshd[21143]: Disconnected from invalid user esp 164.132.145.70 port 36322 [preauth] ...	2020-08-19 16:18:30
attack	Aug 15 12:41:28 ip40 sshd[25802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 Aug 15 12:41:30 ip40 sshd[25802]: Failed password for invalid user PassWord!@# from 164.132.145.70 port 57668 ssh2 ...	2020-08-15 20:09:12
attack	(sshd) Failed SSH login from 164.132.145.70 (PL/Poland/ip70.ip-164-132-145.eu): 5 in the last 3600 secs	2020-08-13 14:03:00
attackspam	SSH brute-force attempt	2020-08-10 19:55:20
attackspambots	Sent packet to closed port: 28863	2020-08-09 07:40:35
attackbots	Aug 7 04:24:54 php1 sshd\[14212\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 user=root Aug 7 04:24:56 php1 sshd\[14212\]: Failed password for root from 164.132.145.70 port 36176 ssh2 Aug 7 04:28:48 php1 sshd\[14471\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 user=root Aug 7 04:28:50 php1 sshd\[14471\]: Failed password for root from 164.132.145.70 port 45548 ssh2 Aug 7 04:32:48 php1 sshd\[14743\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 user=root	2020-08-08 03:17:17
attack	07/29/2020-03:26:10.303770 164.132.145.70 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-07-29 15:27:14
attackbots	2020-07-25T03:52:18.106779shield sshd\[28738\]: Invalid user ghost from 164.132.145.70 port 46104 2020-07-25T03:52:18.115819shield sshd\[28738\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip70.ip-164-132-145.eu 2020-07-25T03:52:20.291072shield sshd\[28738\]: Failed password for invalid user ghost from 164.132.145.70 port 46104 ssh2 2020-07-25T03:56:19.562079shield sshd\[29291\]: Invalid user remote from 164.132.145.70 port 60770 2020-07-25T03:56:19.571358shield sshd\[29291\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip70.ip-164-132-145.eu	2020-07-25 12:02:10
attackbotsspam	Jul 25 00:17:36 scw-6657dc sshd[17282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 Jul 25 00:17:36 scw-6657dc sshd[17282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 Jul 25 00:17:37 scw-6657dc sshd[17282]: Failed password for invalid user oracle from 164.132.145.70 port 43180 ssh2 ...	2020-07-25 08:32:51
attack	Jul 21 16:10:44 pi sshd[17158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 Jul 21 16:10:46 pi sshd[17158]: Failed password for invalid user sme from 164.132.145.70 port 38208 ssh2	2020-07-24 06:26:12
attackspambots	Port Scan ...	2020-07-13 23:20:40
attack	SSH Brute-force	2020-07-13 12:27:11
attackbots	2020-07-11T22:05:13.472539vps773228.ovh.net sshd[16796]: Failed password for invalid user xnzhang from 164.132.145.70 port 44932 ssh2 2020-07-11T22:08:01.817025vps773228.ovh.net sshd[16838]: Invalid user olivia from 164.132.145.70 port 40474 2020-07-11T22:08:01.837304vps773228.ovh.net sshd[16838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip70.ip-164-132-145.eu 2020-07-11T22:08:01.817025vps773228.ovh.net sshd[16838]: Invalid user olivia from 164.132.145.70 port 40474 2020-07-11T22:08:03.520991vps773228.ovh.net sshd[16838]: Failed password for invalid user olivia from 164.132.145.70 port 40474 ssh2 ...	2020-07-12 04:50:41
attackspam	2020-06-28T23:06:37+0200 Failed SSH Authentication/Brute Force Attack. (Server 10)	2020-06-29 05:07:35
attack	Jun 26 19:33:23 inter-technics sshd[23079]: Invalid user nap from 164.132.145.70 port 39602 Jun 26 19:33:23 inter-technics sshd[23079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 Jun 26 19:33:23 inter-technics sshd[23079]: Invalid user nap from 164.132.145.70 port 39602 Jun 26 19:33:25 inter-technics sshd[23079]: Failed password for invalid user nap from 164.132.145.70 port 39602 ssh2 Jun 26 19:35:10 inter-technics sshd[23177]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 user=root Jun 26 19:35:12 inter-technics sshd[23177]: Failed password for root from 164.132.145.70 port 39618 ssh2 ...	2020-06-27 02:42:49
attack	Jun 12 06:35:10 PorscheCustomer sshd[30704]: Failed password for root from 164.132.145.70 port 57540 ssh2 Jun 12 06:38:28 PorscheCustomer sshd[30837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.70 Jun 12 06:38:30 PorscheCustomer sshd[30837]: Failed password for invalid user apinizer from 164.132.145.70 port 56268 ssh2 ...	2020-06-12 12:45:33

相同子网IP讨论:

IP	类型	评论内容	时间
164.132.145.22	attackspam	Port probing on unauthorized port 14463	2020-03-01 16:33:48
164.132.145.22	attackspambots	Brute force VPN server	2020-02-12 15:05:01
164.132.145.3	attackspambots	Sep 28 17:11:16 aat-srv002 sshd[30093]: Failed password for ftp from 164.132.145.3 port 60016 ssh2 Sep 28 17:15:30 aat-srv002 sshd[30186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.3 Sep 28 17:15:33 aat-srv002 sshd[30186]: Failed password for invalid user techno from 164.132.145.3 port 52730 ssh2 ...	2019-09-29 06:29:37

类型

评论内容

时间

164.132.145.22

attackspam

Port probing on unauthorized port 14463

2020-03-01 16:33:48

164.132.145.22

attackspambots

Brute force VPN server

2020-02-12 15:05:01

164.132.145.3

attackspambots

Sep 28 17:11:16 aat-srv002 sshd[30093]: Failed password for ftp from 164.132.145.3 port 60016 ssh2
Sep 28 17:15:30 aat-srv002 sshd[30186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.145.3
Sep 28 17:15:33 aat-srv002 sshd[30186]: Failed password for invalid user techno from 164.132.145.3 port 52730 ssh2
...

2019-09-29 06:29:37

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.132.145.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33798
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;164.132.145.70.			IN	A

;; AUTHORITY SECTION:
.			411	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100600 1800 900 604800 86400

;; Query time: 352 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 06 17:37:14 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

70.145.132.164.in-addr.arpa domain name pointer ip70.ip-164-132-145.eu.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
70.145.132.164.in-addr.arpa	name = ip70.ip-164-132-145.eu.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
112.85.42.231	attackbots	Oct 6 15:15:54 marvibiene sshd[21752]: Failed password for root from 112.85.42.231 port 26954 ssh2 Oct 6 15:15:59 marvibiene sshd[21752]: Failed password for root from 112.85.42.231 port 26954 ssh2	2020-10-06 21:26:34
112.85.42.183	attack	Oct 6 15:42:16 santamaria sshd\[14146\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.183 user=root Oct 6 15:42:17 santamaria sshd\[14146\]: Failed password for root from 112.85.42.183 port 16576 ssh2 Oct 6 15:42:21 santamaria sshd\[14146\]: Failed password for root from 112.85.42.183 port 16576 ssh2 ...	2020-10-06 21:44:29
220.128.135.10	attack	20/10/5@16:43:44: FAIL: Alarm-Network address from=220.128.135.10 20/10/5@16:43:44: FAIL: Alarm-Network address from=220.128.135.10 ...	2020-10-06 21:29:29
64.227.45.215	attackbotsspam	64.227.45.215 (US/United States/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 6 11:20:45 server sshd[31979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.45.215 user=root Oct 6 11:20:19 server sshd[31913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.135.55 user=root Oct 6 11:22:19 server sshd[32206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.223.121 user=root Oct 6 11:20:39 server sshd[31959]: Failed password for root from 3.22.49.101 port 57444 ssh2 Oct 6 11:20:21 server sshd[31913]: Failed password for root from 49.247.135.55 port 46410 ssh2 Oct 6 11:20:47 server sshd[31979]: Failed password for root from 64.227.45.215 port 47568 ssh2 IP Addresses Blocked:	2020-10-06 21:47:05
106.52.205.211	attackbotsspam	SSH Brute-Force reported by Fail2Ban	2020-10-06 21:28:56
103.45.102.170	attackbotsspam	SSH Honeypot -> SSH Bruteforce / Login	2020-10-06 21:45:18
222.186.30.35	attack	2020-10-06T16:44:26.005570lavrinenko.info sshd[25964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root 2020-10-06T16:44:28.376053lavrinenko.info sshd[25964]: Failed password for root from 222.186.30.35 port 53652 ssh2 2020-10-06T16:44:26.005570lavrinenko.info sshd[25964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root 2020-10-06T16:44:28.376053lavrinenko.info sshd[25964]: Failed password for root from 222.186.30.35 port 53652 ssh2 2020-10-06T16:44:32.373267lavrinenko.info sshd[25964]: Failed password for root from 222.186.30.35 port 53652 ssh2 ...	2020-10-06 21:49:34
106.53.2.93	attackspambots	$f2bV_matches	2020-10-06 21:39:24
118.116.108.96	attackbotsspam	SSH login attempts.	2020-10-06 21:30:18
106.13.164.136	attackspambots	2020-10-06T04:01:56.544790ns386461 sshd\[30057\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.164.136 user=root 2020-10-06T04:01:58.588450ns386461 sshd\[30057\]: Failed password for root from 106.13.164.136 port 58036 ssh2 2020-10-06T04:07:38.142909ns386461 sshd\[2823\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.164.136 user=root 2020-10-06T04:07:40.134548ns386461 sshd\[2823\]: Failed password for root from 106.13.164.136 port 32926 ssh2 2020-10-06T04:11:42.191508ns386461 sshd\[6762\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.164.136 user=root ...	2020-10-06 21:54:45
45.142.120.33	attackspambots	Brute force attack on mail server Oct 6 08:17:44 vps postfix/smtpd[28068]: connect from unknown[45.142.120.14] Oct 6 08:17:48 vps postfix/smtpd[28068]: warning: unknown[45.142.120.14]: SASL LOGIN authentication failed: authentication failure Oct 6 08:17:48 vps postfix/smtpd[27891]: warning: unknown[45.142.120.14]: SASL LOGIN authentication failed: authentication failure Oct 6 08:17:49 vps postfix/smtpd[27985]: warning: unknown[45.142.120.14]: SASL LOGIN authentication failed: authentication failure Oct 6 08:17:49 vps postfix/smtpd[27891]: disconnect from unknown[45.142.120.14] ehlo=1 auth=0/1 rset=1 quit=1 commands=3/4 Oct 6 08:17:49 vps postfix/smtpd[27985]: disconnect from unknown[45.142.120.14] ehlo=1 auth=0/1 rset=1 quit=1 commands=3/4 Oct 6 08:17:49 vps postfix/smtpd[29820]: warning: unknown[45.142.120.14]: SASL LOGIN authentication failed: authentication failure Oct 6 08:17:49 vps postfix/smtpd[29820]: disconnect from unknown[45.142.120.14] ehlo=1 auth=0/1 rset=1 quit=1 commands=3/4	2020-10-06 21:57:47
222.244.146.232	attackspam	Failed password for invalid user root from 222.244.146.232 port 44750 ssh2	2020-10-06 21:53:00
61.240.148.110	attack	Port Scan ...	2020-10-06 21:17:30
78.128.113.121	attackbotsspam	2020-09-22 14:30:55,068 fail2ban.actions \[2657\]: NOTICE \[qpsmtpd\] Ban 78.128.113.121 2020-09-23 01:39:50,049 fail2ban.actions \[2657\]: NOTICE \[qpsmtpd\] Ban 78.128.113.121 2020-09-23 04:58:18,143 fail2ban.actions \[2657\]: NOTICE \[qpsmtpd\] Ban 78.128.113.121 2020-09-23 06:49:19,792 fail2ban.actions \[2657\]: NOTICE \[qpsmtpd\] Ban 78.128.113.121 2020-09-23 13:29:44,888 fail2ban.actions \[2657\]: NOTICE \[qpsmtpd\] Ban 78.128.113.121 ...	2020-10-06 21:29:13
188.114.103.175	attackspambots	srv02 DDoS Malware Target(80:http) ..	2020-10-06 21:48:24

最近上报的IP列表

203.177.173.123	2.228.87.194	185.6.9.220	69.138.85.14
14.98.242.99	194.116.202.51	193.188.22.222	121.81.70.4
160.176.156.107	103.210.48.1	211.27.11.189	49.146.59.73
36.71.234.217	202.131.231.138	212.83.191.184	176.123.200.214
171.229.84.89	123.188.238.169	60.19.2.68	92.71.206.253