175.139.201.45

基本信息:

城市(city): George Town

省份(region): Penang

国家(country): Malaysia

运营商(isp): Telekom Malaysia Berhad

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Port probing on unauthorized port 22	2020-06-27 08:11:38

相同子网IP讨论:

IP	类型	评论内容	时间
175.139.201.205	attackspambots	Invalid user admin from 175.139.201.205 port 48382	2020-04-22 02:14:23
175.139.201.205	attack	Invalid user admin from 175.139.201.205 port 38175	2019-11-01 08:22:21
175.139.201.77	attackbotsspam	Oct 17 13:05:47 vpn sshd[27254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.201.77 user=root Oct 17 13:05:50 vpn sshd[27254]: Failed password for root from 175.139.201.77 port 32821 ssh2 Oct 17 13:10:28 vpn sshd[27258]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.201.77 user=root Oct 17 13:10:30 vpn sshd[27258]: Failed password for root from 175.139.201.77 port 56073 ssh2 Oct 17 13:15:24 vpn sshd[27261]: Invalid user planet from 175.139.201.77	2019-07-19 06:10:05

类型

评论内容

时间

175.139.201.205

attackspambots

Invalid user admin from 175.139.201.205 port 48382

2020-04-22 02:14:23

175.139.201.205

attack

Invalid user admin from 175.139.201.205 port 38175

2019-11-01 08:22:21

175.139.201.77

attackbotsspam

Oct 17 13:05:47 vpn sshd[27254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.201.77  user=root
Oct 17 13:05:50 vpn sshd[27254]: Failed password for root from 175.139.201.77 port 32821 ssh2
Oct 17 13:10:28 vpn sshd[27258]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.201.77  user=root
Oct 17 13:10:30 vpn sshd[27258]: Failed password for root from 175.139.201.77 port 56073 ssh2
Oct 17 13:15:24 vpn sshd[27261]: Invalid user planet from 175.139.201.77

2019-07-19 06:10:05

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 175.139.201.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1407
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;175.139.201.45.			IN	A

;; AUTHORITY SECTION:
.			543	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062602 1800 900 604800 86400

;; Query time: 91 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 27 08:11:35 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 45.201.139.175.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 45.201.139.175.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
201.235.98.60	attack	/adv,/cgi-bin/weblogin.cgi%3Fusername=admin%27%3Bls%20%23%26password=asdf	2020-06-11 04:53:31
140.143.136.41	attack	$f2bV_matches	2020-06-11 04:51:02
142.44.210.150	attack	ssh intrusion attempt	2020-06-11 04:58:03
90.112.165.151	attack	2020-06-10T20:37:28.700612server.espacesoutien.com sshd[27346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.112.165.151 2020-06-10T20:37:28.686916server.espacesoutien.com sshd[27346]: Invalid user ivn from 90.112.165.151 port 46330 2020-06-10T20:37:30.615838server.espacesoutien.com sshd[27346]: Failed password for invalid user ivn from 90.112.165.151 port 46330 ssh2 2020-06-10T20:39:47.455726server.espacesoutien.com sshd[27528]: Invalid user ovh from 90.112.165.151 port 56342 ...	2020-06-11 05:00:03
104.248.92.124	attack	2020-06-10T20:52:35.956929shield sshd\[17338\]: Invalid user git from 104.248.92.124 port 56704 2020-06-10T20:52:35.962310shield sshd\[17338\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.92.124 2020-06-10T20:52:38.057980shield sshd\[17338\]: Failed password for invalid user git from 104.248.92.124 port 56704 ssh2 2020-06-10T20:55:26.089969shield sshd\[17848\]: Invalid user admin from 104.248.92.124 port 52958 2020-06-10T20:55:26.093645shield sshd\[17848\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.92.124	2020-06-11 05:19:54
125.227.26.20	attackbotsspam	Jun 10 22:30:34 [host] sshd[24079]: pam_unix(sshd: Jun 10 22:30:36 [host] sshd[24079]: Failed passwor Jun 10 22:34:12 [host] sshd[24199]: Invalid user j	2020-06-11 04:52:38
87.246.7.70	attack	Jun 10 23:06:45 inter-technics postfix/smtpd[19091]: warning: unknown[87.246.7.70]: SASL LOGIN authentication failed: authentication failure Jun 10 23:06:48 inter-technics postfix/smtpd[19091]: warning: unknown[87.246.7.70]: SASL LOGIN authentication failed: authentication failure Jun 10 23:07:36 inter-technics postfix/smtpd[19091]: warning: unknown[87.246.7.70]: SASL LOGIN authentication failed: authentication failure ...	2020-06-11 05:13:45
187.188.51.157	attackbots	Jun 10 21:55:57 OPSO sshd\[4540\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.188.51.157 user=root Jun 10 21:56:00 OPSO sshd\[4540\]: Failed password for root from 187.188.51.157 port 34784 ssh2 Jun 10 21:59:23 OPSO sshd\[4926\]: Invalid user dream from 187.188.51.157 port 36720 Jun 10 21:59:23 OPSO sshd\[4926\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.188.51.157 Jun 10 21:59:25 OPSO sshd\[4926\]: Failed password for invalid user dream from 187.188.51.157 port 36720 ssh2	2020-06-11 05:14:39
35.189.173.89	attack	20 attempts against mh-ssh on grain	2020-06-11 05:18:20
106.12.179.191	attackbots	Jun 10 21:25:54 odroid64 sshd\[3903\]: Invalid user admin from 106.12.179.191 Jun 10 21:25:54 odroid64 sshd\[3903\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.179.191 ...	2020-06-11 05:02:23
83.12.171.68	attackbots	Jun 10 22:32:49 home sshd[14526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.12.171.68 Jun 10 22:32:50 home sshd[14526]: Failed password for invalid user soma from 83.12.171.68 port 24634 ssh2 Jun 10 22:36:44 home sshd[14937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.12.171.68 ...	2020-06-11 04:49:07
211.23.17.2	attackspambots	20/6/10@15:25:58: FAIL: Alarm-Network address from=211.23.17.2 20/6/10@15:25:58: FAIL: Alarm-Network address from=211.23.17.2 ...	2020-06-11 04:58:51
148.70.125.42	attackspambots	Jun 10 19:57:47 vlre-nyc-1 sshd\[10457\]: Invalid user selnagar from 148.70.125.42 Jun 10 19:57:47 vlre-nyc-1 sshd\[10457\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.125.42 Jun 10 19:57:50 vlre-nyc-1 sshd\[10457\]: Failed password for invalid user selnagar from 148.70.125.42 port 49964 ssh2 Jun 10 20:07:24 vlre-nyc-1 sshd\[10627\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.125.42 user=root Jun 10 20:07:27 vlre-nyc-1 sshd\[10627\]: Failed password for root from 148.70.125.42 port 34160 ssh2 ...	2020-06-11 04:57:42
89.248.174.201	attackbotsspam	[H1.VM6] Blocked by UFW	2020-06-11 05:15:22
200.129.242.4	attackspam	Jun 10 19:25:45 *** sshd[15359]: Invalid user karen from 200.129.242.4	2020-06-11 05:08:28

最近上报的IP列表

118.179.127.38	99.180.65.46	123.117.70.187	125.117.196.215
102.40.76.140	88.248.133.61	109.139.131.225	24.166.221.174
95.207.217.33	217.58.216.78	38.125.230.4	94.102.63.70
207.18.214.69	209.87.195.120	73.143.60.14	82.74.121.120
143.128.254.114	125.72.2.102	109.51.229.220	157.139.84.181