31.145.1.90 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Turkey

运营商(isp): Vodafone Net Iletisim Hizmetleri Anonim Sirketi

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Nov 26 08:55:08 eventyay sshd[14370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 26 08:55:10 eventyay sshd[14370]: Failed password for invalid user jsandye from 31.145.1.90 port 37420 ssh2 Nov 26 08:59:35 eventyay sshd[14434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 ...	2019-11-26 16:44:25
attackbots	Nov 24 15:46:51 web8 sshd\[28780\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 user=mysql Nov 24 15:46:52 web8 sshd\[28780\]: Failed password for mysql from 31.145.1.90 port 37168 ssh2 Nov 24 15:51:09 web8 sshd\[30853\]: Invalid user vishalj from 31.145.1.90 Nov 24 15:51:09 web8 sshd\[30853\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 24 15:51:12 web8 sshd\[30853\]: Failed password for invalid user vishalj from 31.145.1.90 port 19479 ssh2	2019-11-25 00:18:04
attackspambots	Nov 23 18:18:06 sd-53420 sshd\[22314\]: Invalid user bariton from 31.145.1.90 Nov 23 18:18:06 sd-53420 sshd\[22314\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 23 18:18:08 sd-53420 sshd\[22314\]: Failed password for invalid user bariton from 31.145.1.90 port 35606 ssh2 Nov 23 18:22:52 sd-53420 sshd\[23519\]: User root from 31.145.1.90 not allowed because none of user's groups are listed in AllowGroups Nov 23 18:22:52 sd-53420 sshd\[23519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 user=root ...	2019-11-24 03:39:47
attackspam	$f2bV_matches	2019-11-21 03:30:32
attackspambots	Nov 14 21:42:17 auw2 sshd\[8491\]: Invalid user pelletti from 31.145.1.90 Nov 14 21:42:17 auw2 sshd\[8491\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 14 21:42:18 auw2 sshd\[8491\]: Failed password for invalid user pelletti from 31.145.1.90 port 48282 ssh2 Nov 14 21:46:57 auw2 sshd\[8899\]: Invalid user Kaino from 31.145.1.90 Nov 14 21:46:57 auw2 sshd\[8899\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90	2019-11-15 16:07:09
attackspambots	Nov 14 20:05:56 auw2 sshd\[32117\]: Invalid user hopcroft from 31.145.1.90 Nov 14 20:05:56 auw2 sshd\[32117\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 14 20:05:58 auw2 sshd\[32117\]: Failed password for invalid user hopcroft from 31.145.1.90 port 60234 ssh2 Nov 14 20:10:21 auw2 sshd\[32614\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 user=root Nov 14 20:10:24 auw2 sshd\[32614\]: Failed password for root from 31.145.1.90 port 40834 ssh2	2019-11-15 14:22:36
attackspam	Nov 13 16:16:29 zooi sshd[5702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 13 16:16:30 zooi sshd[5702]: Failed password for invalid user server from 31.145.1.90 port 35632 ssh2 ...	2019-11-14 02:21:49
attack	Nov 13 06:12:50 areeb-Workstation sshd[25064]: Failed password for root from 31.145.1.90 port 34150 ssh2 ...	2019-11-13 08:56:46
attackspambots	frenzy	2019-11-10 21:30:56
attackbots	Nov 4 13:49:21 MK-Soft-Root2 sshd[23266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 4 13:49:23 MK-Soft-Root2 sshd[23266]: Failed password for invalid user mikael from 31.145.1.90 port 48272 ssh2 ...	2019-11-04 20:50:25
attack	Nov 3 09:41:24 intra sshd\[34002\]: Invalid user rustserver from 31.145.1.90Nov 3 09:41:27 intra sshd\[34002\]: Failed password for invalid user rustserver from 31.145.1.90 port 57420 ssh2Nov 3 09:46:07 intra sshd\[34055\]: Invalid user randy from 31.145.1.90Nov 3 09:46:08 intra sshd\[34055\]: Failed password for invalid user randy from 31.145.1.90 port 40626 ssh2Nov 3 09:51:11 intra sshd\[34112\]: Invalid user student from 31.145.1.90Nov 3 09:51:13 intra sshd\[34112\]: Failed password for invalid user student from 31.145.1.90 port 52142 ssh2 ...	2019-11-03 21:11:01

相同子网IP讨论:

IP	类型	评论内容	时间
31.145.131.202	attack	Unauthorized connection attempt from IP address 31.145.131.202 on Port 445(SMB)	2020-08-06 00:23:25
31.145.166.55	attack	Unauthorized connection attempt from IP address 31.145.166.55 on Port 445(SMB)	2020-07-01 13:59:17
31.145.150.194	attack	Unauthorized connection attempt from IP address 31.145.150.194 on Port 445(SMB)	2020-06-24 08:20:33
31.145.189.190	attackspambots	Unauthorized connection attempt from IP address 31.145.189.190 on Port 445(SMB)	2020-04-25 02:36:32
31.145.150.194	attack	Unauthorized connection attempt detected from IP address 31.145.150.194 to port 445	2020-03-23 21:55:12
31.145.174.90	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-13 23:06:18
31.145.194.195	attackspambots	Automatic report - Banned IP Access	2020-03-08 10:09:35
31.145.101.250	attackbotsspam	20/2/22@11:47:50: FAIL: Alarm-Network address from=31.145.101.250 ...	2020-02-23 03:34:42
31.145.190.66	attackbots	spam	2020-01-28 14:02:11
31.145.101.250	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-25 06:24:01
31.145.119.138	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-25 05:44:42
31.145.101.250	attackspam	Unauthorised access (Dec 27) SRC=31.145.101.250 LEN=52 TTL=112 ID=25416 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-28 03:23:34
31.145.111.57	attack	Unauthorized connection attempt detected from IP address 31.145.111.57 to port 445	2019-12-13 15:40:02
31.145.1.146	attack	Unauthorized connection attempt from IP address 31.145.1.146 on Port 445(SMB)	2019-12-10 03:56:41
31.145.1.146	attack	Unauthorized connection attempt from IP address 31.145.1.146 on Port 445(SMB)	2019-11-29 22:06:44

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 31.145.1.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16683
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;31.145.1.90.			IN	A

;; AUTHORITY SECTION:
.			573	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110300 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 03 21:10:58 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 90.1.145.31.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 90.1.145.31.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
162.243.138.205	attackspambots	Jun 3 23:12:24 debian kernel: [117708.073032] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=162.243.138.205 DST=89.252.131.35 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=54321 PROTO=TCP SPT=40799 DPT=9990 WINDOW=65535 RES=0x00 SYN URGP=0	2020-06-04 08:00:32
52.81.39.140	attackbots	Jun 4 05:57:59 vps647732 sshd[25169]: Failed password for root from 52.81.39.140 port 59076 ssh2 ...	2020-06-04 12:02:34
37.182.123.40	attackspam	Unauthorized connection attempt detected from IP address 37.182.123.40 to port 23	2020-06-04 12:12:11
183.237.79.234	attackspambots	Attack to wordpress xmlrpc	2020-06-04 12:08:47
62.210.167.202	attack	sip attack	2020-06-04 09:18:02
113.125.16.234	attack	2020-06-04T01:14:39.930608mail.standpoint.com.ua sshd[8365]: Failed password for root from 113.125.16.234 port 56856 ssh2 2020-06-04T01:16:23.079854mail.standpoint.com.ua sshd[8582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.16.234 user=root 2020-06-04T01:16:24.592001mail.standpoint.com.ua sshd[8582]: Failed password for root from 113.125.16.234 port 55972 ssh2 2020-06-04T01:18:10.584727mail.standpoint.com.ua sshd[8795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.16.234 user=root 2020-06-04T01:18:13.120320mail.standpoint.com.ua sshd[8795]: Failed password for root from 113.125.16.234 port 55086 ssh2 ...	2020-06-04 08:06:34
42.114.121.152	attack	kidness.family 42.114.121.152 [04/Jun/2020:05:58:59 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4265 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" kidness.family 42.114.121.152 [04/Jun/2020:05:59:03 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4265 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36"	2020-06-04 12:09:58
90.84.224.152	attack	Honeypot attack, port: 81, PTR: 90-84-224-152.orangero.net.	2020-06-04 07:59:29
189.209.216.206	attackbots	Automatic report - Port Scan Attack	2020-06-04 08:07:36
186.121.204.10	attack	Jun 3 15:13:52 server1 sshd\[32630\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.121.204.10 user=root Jun 3 15:13:55 server1 sshd\[32630\]: Failed password for root from 186.121.204.10 port 51544 ssh2 Jun 3 15:17:20 server1 sshd\[1181\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.121.204.10 user=root Jun 3 15:17:22 server1 sshd\[1181\]: Failed password for root from 186.121.204.10 port 47480 ssh2 Jun 3 15:20:42 server1 sshd\[2169\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.121.204.10 user=root ...	2020-06-04 07:58:49
222.186.175.202	attackbotsspam	Jun 3 23:59:02 NPSTNNYC01T sshd[27712]: Failed password for root from 222.186.175.202 port 38816 ssh2 Jun 3 23:59:05 NPSTNNYC01T sshd[27712]: Failed password for root from 222.186.175.202 port 38816 ssh2 Jun 3 23:59:09 NPSTNNYC01T sshd[27712]: Failed password for root from 222.186.175.202 port 38816 ssh2 Jun 3 23:59:12 NPSTNNYC01T sshd[27712]: Failed password for root from 222.186.175.202 port 38816 ssh2 ...	2020-06-04 12:04:21
198.100.146.67	attackbotsspam	Jun 4 00:55:48 firewall sshd[24970]: Failed password for root from 198.100.146.67 port 55049 ssh2 Jun 4 00:58:58 firewall sshd[25036]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.100.146.67 user=root Jun 4 00:59:00 firewall sshd[25036]: Failed password for root from 198.100.146.67 port 56954 ssh2 ...	2020-06-04 12:10:46
180.215.199.105	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-06-04 08:05:02
104.248.187.165	attackspam	Jun 4 05:55:37 jane sshd[20635]: Failed password for root from 104.248.187.165 port 58758 ssh2 ...	2020-06-04 12:14:33
217.165.22.147	attackbotsspam	Wordpress malicious attack:[sshd]	2020-06-04 12:22:28

最近上报的IP列表

113.22.236.105	132.238.225.213	81.213.111.104	11.86.18.140
92.45.59.162	61.96.116.245	185.194.141.185	131.152.170.179
196.59.152.255	64.79.21.91	80.216.10.161	153.98.219.37
204.46.2.107	206.68.83.173	158.243.123.121	39.57.18.163
35.224.223.30	51.23.168.76	93.232.220.155	66.233.95.103