164.132.6.145 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): France

运营商(isp): OVH SAS

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Mar 14 08:27:21 vpn sshd[18329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.6.145 user=root Mar 14 08:27:23 vpn sshd[18329]: Failed password for root from 164.132.6.145 port 43136 ssh2 Mar 14 08:28:34 vpn sshd[18331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.6.145 user=root Mar 14 08:28:36 vpn sshd[18331]: Failed password for root from 164.132.6.145 port 45934 ssh2 Mar 14 08:29:54 vpn sshd[18334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.6.145 user=root	2019-07-19 11:44:45

类型

评论内容

时间

attackbotsspam

Mar 14 08:27:21 vpn sshd[18329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.6.145  user=root
Mar 14 08:27:23 vpn sshd[18329]: Failed password for root from 164.132.6.145 port 43136 ssh2
Mar 14 08:28:34 vpn sshd[18331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.6.145  user=root
Mar 14 08:28:36 vpn sshd[18331]: Failed password for root from 164.132.6.145 port 45934 ssh2
Mar 14 08:29:54 vpn sshd[18334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.6.145  user=root

2019-07-19 11:44:45

相同子网IP讨论:

IP	类型	评论内容	时间
164.132.62.233	attack	Apr 19 10:27:31 h2779839 sshd[27770]: Invalid user pz from 164.132.62.233 port 57594 Apr 19 10:27:31 h2779839 sshd[27770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.62.233 Apr 19 10:27:31 h2779839 sshd[27770]: Invalid user pz from 164.132.62.233 port 57594 Apr 19 10:27:34 h2779839 sshd[27770]: Failed password for invalid user pz from 164.132.62.233 port 57594 ssh2 Apr 19 10:31:19 h2779839 sshd[27842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.62.233 user=root Apr 19 10:31:21 h2779839 sshd[27842]: Failed password for root from 164.132.62.233 port 38988 ssh2 Apr 19 10:35:29 h2779839 sshd[27936]: Invalid user jd from 164.132.62.233 port 48624 Apr 19 10:35:29 h2779839 sshd[27936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.62.233 Apr 19 10:35:29 h2779839 sshd[27936]: Invalid user jd from 164.132.62.233 port 48624 Apr 19 10:35:31 h ...	2020-04-19 16:54:28
164.132.62.233	attackbotsspam	ssh brute force	2020-04-17 17:10:31
164.132.62.233	attackbotsspam	Invalid user pky from 164.132.62.233 port 40256	2020-04-05 09:14:39
164.132.62.233	attack	Mar 28 07:04:15 lukav-desktop sshd\[5604\]: Invalid user spi from 164.132.62.233 Mar 28 07:04:15 lukav-desktop sshd\[5604\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.62.233 Mar 28 07:04:17 lukav-desktop sshd\[5604\]: Failed password for invalid user spi from 164.132.62.233 port 41260 ssh2 Mar 28 07:07:39 lukav-desktop sshd\[15939\]: Invalid user gua from 164.132.62.233 Mar 28 07:07:39 lukav-desktop sshd\[15939\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.62.233	2020-03-28 13:08:09
164.132.62.233	attack	Invalid user umendoza from 164.132.62.233 port 47438	2020-03-26 07:13:01
164.132.62.233	attackspambots	SSH Bruteforce attack	2020-03-26 00:45:42
164.132.62.233	attack	Mar 24 01:08:12 ns382633 sshd\[21246\]: Invalid user www from 164.132.62.233 port 33770 Mar 24 01:08:12 ns382633 sshd\[21246\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.62.233 Mar 24 01:08:14 ns382633 sshd\[21246\]: Failed password for invalid user www from 164.132.62.233 port 33770 ssh2 Mar 24 01:17:16 ns382633 sshd\[22993\]: Invalid user circ from 164.132.62.233 port 37142 Mar 24 01:17:16 ns382633 sshd\[22993\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.62.233	2020-03-24 09:53:44
164.132.62.233	attackspambots	Mar 20 23:48:31 Tower sshd[38956]: Connection from 164.132.62.233 port 51812 on 192.168.10.220 port 22 rdomain "" Mar 20 23:48:32 Tower sshd[38956]: Invalid user theodore from 164.132.62.233 port 51812 Mar 20 23:48:32 Tower sshd[38956]: error: Could not get shadow information for NOUSER Mar 20 23:48:32 Tower sshd[38956]: Failed password for invalid user theodore from 164.132.62.233 port 51812 ssh2 Mar 20 23:48:32 Tower sshd[38956]: Received disconnect from 164.132.62.233 port 51812:11: Bye Bye [preauth] Mar 20 23:48:32 Tower sshd[38956]: Disconnected from invalid user theodore 164.132.62.233 port 51812 [preauth]	2020-03-21 17:52:50
164.132.62.233	attackspambots	IP blocked	2020-03-18 17:53:43
164.132.62.233	attackspambots	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-03-13 18:09:17
164.132.62.233	attack	Mar 11 21:56:14 srv206 sshd[20126]: Invalid user 1234567!@ from 164.132.62.233 ...	2020-03-12 06:13:01
164.132.62.233	attackspam	Mar 5 22:36:36 server sshd[358160]: Failed password for root from 164.132.62.233 port 46468 ssh2 Mar 5 22:47:35 server sshd[360064]: Failed password for invalid user vnc from 164.132.62.233 port 49772 ssh2 Mar 5 22:58:27 server sshd[361815]: Failed password for invalid user ubuntu from 164.132.62.233 port 52880 ssh2	2020-03-06 07:24:35
164.132.62.233	attack	Mar 3 06:25:51 srv01 sshd[1088]: Invalid user dodserver from 164.132.62.233 port 48332 Mar 3 06:25:51 srv01 sshd[1088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.62.233 Mar 3 06:25:51 srv01 sshd[1088]: Invalid user dodserver from 164.132.62.233 port 48332 Mar 3 06:25:53 srv01 sshd[1088]: Failed password for invalid user dodserver from 164.132.62.233 port 48332 ssh2 Mar 3 06:34:19 srv01 sshd[16680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.62.233 user=root Mar 3 06:34:22 srv01 sshd[16680]: Failed password for root from 164.132.62.233 port 54992 ssh2 ...	2020-03-03 15:57:54
164.132.62.233	attackbots	(sshd) Failed SSH login from 164.132.62.233 (FR/France/-/-/ip233.ip-164-132-62.eu/[AS16276 OVH SAS]): 1 in the last 3600 secs	2020-02-08 05:05:37
164.132.62.233	attackbots	Hacking	2020-02-06 08:57:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.132.6.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41710
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;164.132.6.145.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071801 1800 900 604800 86400

;; Query time: 88 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 19 11:44:40 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

145.6.132.164.in-addr.arpa domain name pointer crackburn.de.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
145.6.132.164.in-addr.arpa	name = crackburn.de.

Authoritative answers can be found from:

IP	类型	评论内容	时间
49.235.28.207	attackbotsspam	Invalid user web5 from 49.235.28.207 port 47418	2019-08-23 15:38:01
138.197.162.28	attack	Invalid user secvpn from 138.197.162.28 port 39872	2019-08-23 15:23:46
201.47.158.130	attack	Port Scan detected from 201.47.158.130 (BR/Brazil/201.47.158.130.static.host.gvt.net.br). 4 hits in the last 295 seconds	2019-08-23 15:03:51
188.20.52.25	attackspam	Invalid user notebook from 188.20.52.25 port 47548	2019-08-23 15:07:19
138.197.140.184	attackbots	Invalid user webb666 from 138.197.140.184 port 59718	2019-08-23 14:31:01
139.199.213.105	attack	Invalid user test from 139.199.213.105 port 60963	2019-08-23 15:21:15
41.32.82.6	attackspam	Invalid user admin from 41.32.82.6 port 48507	2019-08-23 14:56:05
219.159.239.77	attackbots	Invalid user user from 219.159.239.77 port 44370	2019-08-23 15:00:27
178.210.130.139	attack	Invalid user qmaild from 178.210.130.139 port 43254	2019-08-23 15:12:53
206.81.7.42	attack	Invalid user zabbix from 206.81.7.42 port 35276	2019-08-23 15:03:16
150.223.2.123	attack	Invalid user g from 150.223.2.123 port 38314	2019-08-23 14:27:24
188.226.167.212	attack	Invalid user cj from 188.226.167.212 port 50748	2019-08-23 15:48:16
104.254.247.239	attackbotsspam	Invalid user bi from 104.254.247.239 port 50676	2019-08-23 15:29:51
81.169.177.5	attackspambots	Invalid user nagios from 81.169.177.5 port 58384	2019-08-23 15:34:41
94.191.70.221	attack	Aug 23 08:46:16 MK-Soft-Root1 sshd\[8549\]: Invalid user shoutcast from 94.191.70.221 port 43160 Aug 23 08:46:16 MK-Soft-Root1 sshd\[8549\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.70.221 Aug 23 08:46:18 MK-Soft-Root1 sshd\[8549\]: Failed password for invalid user shoutcast from 94.191.70.221 port 43160 ssh2 ...	2019-08-23 15:32:06

最近上报的IP列表

164.132.101.28	79.143.181.197	163.53.151.234	163.53.150.134
163.5.245.178	151.251.244.228	163.44.207.232	163.44.206.35
3.9.75.137	203.207.53.130	178.19.109.66	104.236.60.19
45.40.134.20	198.16.32.55	176.9.146.134	128.61.111.183
113.90.93.114	104.129.198.89	51.89.160.164	163.180.57.244