180.164.94.145

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Shanghai Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 180.164.94.145 to port 445	2020-07-23 06:50:24

相同子网IP讨论:

IP	类型	评论内容	时间
180.164.94.115	attackspam	Fail2Ban Ban Triggered	2020-08-06 18:14:07
180.164.94.173	attackbots	Jul 28 19:41:41 TORMINT sshd\[24594\]: Invalid user kje from 180.164.94.173 Jul 28 19:41:41 TORMINT sshd\[24594\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.164.94.173 Jul 28 19:41:44 TORMINT sshd\[24594\]: Failed password for invalid user kje from 180.164.94.173 port 49366 ssh2 ...	2019-07-29 12:24:42
180.164.94.58	attack	Unauthorized connection attempt from IP address 180.164.94.58 on Port 445(SMB)	2019-07-10 09:03:09

类型

评论内容

时间

180.164.94.115

attackspam

Fail2Ban Ban Triggered

2020-08-06 18:14:07

180.164.94.173

attackbots

Jul 28 19:41:41 TORMINT sshd\[24594\]: Invalid user kje from 180.164.94.173
Jul 28 19:41:41 TORMINT sshd\[24594\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.164.94.173
Jul 28 19:41:44 TORMINT sshd\[24594\]: Failed password for invalid user kje from 180.164.94.173 port 49366 ssh2
...

2019-07-29 12:24:42

180.164.94.58

attack

Unauthorized connection attempt from IP address 180.164.94.58 on Port 445(SMB)

2019-07-10 09:03:09

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 180.164.94.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41025
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;180.164.94.145.			IN	A

;; AUTHORITY SECTION:
.			575	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072201 1800 900 604800 86400

;; Query time: 559 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 23 06:50:21 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 145.94.164.180.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.94.164.180.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
94.29.124.37	attackspam	Unauthorized connection attempt from IP address 94.29.124.37 on Port 445(SMB)	2019-06-22 16:38:08
195.239.4.94	attack	firewall-block, port(s): 23/tcp	2019-06-22 16:50:28
176.160.78.55	attackbotsspam	C1,WP GET /wp-login.php	2019-06-22 16:57:09
113.168.66.141	attackbots	Unauthorized connection attempt from IP address 113.168.66.141 on Port 445(SMB)	2019-06-22 16:51:53
220.128.233.122	attack	firewall-block, port(s): 81/tcp	2019-06-22 16:45:14
190.117.155.166	attackspambots	3389BruteforceFW22	2019-06-22 17:08:20
59.126.200.128	attack	firewall-block, port(s): 23/tcp	2019-06-22 17:03:12
162.247.99.38	attackbots	701 attempts to GET/POST various PHPs	2019-06-22 16:46:03
139.99.218.189	attack	\[2019-06-22 03:57:01\] NOTICE\[1849\] chan_sip.c: Registration from '\' failed for '139.99.218.189:35330' - Wrong password \[2019-06-22 03:57:01\] SECURITY\[1857\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-06-22T03:57:01.550-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="091",SessionID="0x7fc4240077d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/139.99.218.189/35330",Challenge="041cc17f",ReceivedChallenge="041cc17f",ReceivedHash="71b8eb87e94e589403512ca2a1f401d1" \[2019-06-22 03:57:03\] NOTICE\[1849\] chan_sip.c: Registration from '\' failed for '139.99.218.189:49604' - Wrong password \[2019-06-22 03:57:03\] SECURITY\[1857\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-06-22T03:57:03.165-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="200000001",SessionID="0x7fc424036c88",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UD	2019-06-22 17:05:00
82.221.105.6	attack	22.06.2019 07:56:17 Connection to port 502 blocked by firewall	2019-06-22 16:22:15
217.182.4.85	attack	[munged]::80 217.182.4.85 - - [22/Jun/2019:07:43:17 +0200] "POST /[munged]: HTTP/1.1" 200 1933 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 217.182.4.85 - - [22/Jun/2019:07:43:17 +0200] "POST /[munged]: HTTP/1.1" 200 1904 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-06-22 17:13:52
104.248.150.150	attackspam	Jun 22 06:29:42 jane sshd\[19176\]: Invalid user gui from 104.248.150.150 port 50025 Jun 22 06:29:42 jane sshd\[19176\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150 Jun 22 06:29:44 jane sshd\[19176\]: Failed password for invalid user gui from 104.248.150.150 port 50025 ssh2 ...	2019-06-22 17:07:56
82.151.123.235	attackbots	Unauthorized connection attempt from IP address 82.151.123.235 on Port 445(SMB)	2019-06-22 16:28:53
69.64.75.48	attackbots	Unauthorized connection attempt from IP address 69.64.75.48 on Port 445(SMB)	2019-06-22 16:40:04
85.119.146.154	attackspambots	Spam	2019-06-22 17:00:47

最近上报的IP列表

124.112.204.3	179.100.9.172	111.40.172.82	103.214.108.180
2.238.52.108	219.49.80.168	27.82.193.106	168.30.186.52
97.157.28.49	99.158.178.0	134.0.60.244	191.188.55.101
49.88.30.13	151.166.26.157	217.98.0.189	68.144.63.37
115.171.18.113	191.186.2.127	60.24.19.148	110.12.194.195