31.145.1.90 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Turkey

运营商(isp): Vodafone Net Iletisim Hizmetleri Anonim Sirketi

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Nov 26 08:55:08 eventyay sshd[14370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 26 08:55:10 eventyay sshd[14370]: Failed password for invalid user jsandye from 31.145.1.90 port 37420 ssh2 Nov 26 08:59:35 eventyay sshd[14434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 ...	2019-11-26 16:44:25
attackbots	Nov 24 15:46:51 web8 sshd\[28780\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 user=mysql Nov 24 15:46:52 web8 sshd\[28780\]: Failed password for mysql from 31.145.1.90 port 37168 ssh2 Nov 24 15:51:09 web8 sshd\[30853\]: Invalid user vishalj from 31.145.1.90 Nov 24 15:51:09 web8 sshd\[30853\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 24 15:51:12 web8 sshd\[30853\]: Failed password for invalid user vishalj from 31.145.1.90 port 19479 ssh2	2019-11-25 00:18:04
attackspambots	Nov 23 18:18:06 sd-53420 sshd\[22314\]: Invalid user bariton from 31.145.1.90 Nov 23 18:18:06 sd-53420 sshd\[22314\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 23 18:18:08 sd-53420 sshd\[22314\]: Failed password for invalid user bariton from 31.145.1.90 port 35606 ssh2 Nov 23 18:22:52 sd-53420 sshd\[23519\]: User root from 31.145.1.90 not allowed because none of user's groups are listed in AllowGroups Nov 23 18:22:52 sd-53420 sshd\[23519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 user=root ...	2019-11-24 03:39:47
attackspam	$f2bV_matches	2019-11-21 03:30:32
attackspambots	Nov 14 21:42:17 auw2 sshd\[8491\]: Invalid user pelletti from 31.145.1.90 Nov 14 21:42:17 auw2 sshd\[8491\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 14 21:42:18 auw2 sshd\[8491\]: Failed password for invalid user pelletti from 31.145.1.90 port 48282 ssh2 Nov 14 21:46:57 auw2 sshd\[8899\]: Invalid user Kaino from 31.145.1.90 Nov 14 21:46:57 auw2 sshd\[8899\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90	2019-11-15 16:07:09
attackspambots	Nov 14 20:05:56 auw2 sshd\[32117\]: Invalid user hopcroft from 31.145.1.90 Nov 14 20:05:56 auw2 sshd\[32117\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 14 20:05:58 auw2 sshd\[32117\]: Failed password for invalid user hopcroft from 31.145.1.90 port 60234 ssh2 Nov 14 20:10:21 auw2 sshd\[32614\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 user=root Nov 14 20:10:24 auw2 sshd\[32614\]: Failed password for root from 31.145.1.90 port 40834 ssh2	2019-11-15 14:22:36
attackspam	Nov 13 16:16:29 zooi sshd[5702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 13 16:16:30 zooi sshd[5702]: Failed password for invalid user server from 31.145.1.90 port 35632 ssh2 ...	2019-11-14 02:21:49
attack	Nov 13 06:12:50 areeb-Workstation sshd[25064]: Failed password for root from 31.145.1.90 port 34150 ssh2 ...	2019-11-13 08:56:46
attackspambots	frenzy	2019-11-10 21:30:56
attackbots	Nov 4 13:49:21 MK-Soft-Root2 sshd[23266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 4 13:49:23 MK-Soft-Root2 sshd[23266]: Failed password for invalid user mikael from 31.145.1.90 port 48272 ssh2 ...	2019-11-04 20:50:25
attack	Nov 3 09:41:24 intra sshd\[34002\]: Invalid user rustserver from 31.145.1.90Nov 3 09:41:27 intra sshd\[34002\]: Failed password for invalid user rustserver from 31.145.1.90 port 57420 ssh2Nov 3 09:46:07 intra sshd\[34055\]: Invalid user randy from 31.145.1.90Nov 3 09:46:08 intra sshd\[34055\]: Failed password for invalid user randy from 31.145.1.90 port 40626 ssh2Nov 3 09:51:11 intra sshd\[34112\]: Invalid user student from 31.145.1.90Nov 3 09:51:13 intra sshd\[34112\]: Failed password for invalid user student from 31.145.1.90 port 52142 ssh2 ...	2019-11-03 21:11:01

相同子网IP讨论:

IP	类型	评论内容	时间
31.145.131.202	attack	Unauthorized connection attempt from IP address 31.145.131.202 on Port 445(SMB)	2020-08-06 00:23:25
31.145.166.55	attack	Unauthorized connection attempt from IP address 31.145.166.55 on Port 445(SMB)	2020-07-01 13:59:17
31.145.150.194	attack	Unauthorized connection attempt from IP address 31.145.150.194 on Port 445(SMB)	2020-06-24 08:20:33
31.145.189.190	attackspambots	Unauthorized connection attempt from IP address 31.145.189.190 on Port 445(SMB)	2020-04-25 02:36:32
31.145.150.194	attack	Unauthorized connection attempt detected from IP address 31.145.150.194 to port 445	2020-03-23 21:55:12
31.145.174.90	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-13 23:06:18
31.145.194.195	attackspambots	Automatic report - Banned IP Access	2020-03-08 10:09:35
31.145.101.250	attackbotsspam	20/2/22@11:47:50: FAIL: Alarm-Network address from=31.145.101.250 ...	2020-02-23 03:34:42
31.145.190.66	attackbots	spam	2020-01-28 14:02:11
31.145.101.250	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-25 06:24:01
31.145.119.138	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-25 05:44:42
31.145.101.250	attackspam	Unauthorised access (Dec 27) SRC=31.145.101.250 LEN=52 TTL=112 ID=25416 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-28 03:23:34
31.145.111.57	attack	Unauthorized connection attempt detected from IP address 31.145.111.57 to port 445	2019-12-13 15:40:02
31.145.1.146	attack	Unauthorized connection attempt from IP address 31.145.1.146 on Port 445(SMB)	2019-12-10 03:56:41
31.145.1.146	attack	Unauthorized connection attempt from IP address 31.145.1.146 on Port 445(SMB)	2019-11-29 22:06:44

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 31.145.1.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16683
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;31.145.1.90.			IN	A

;; AUTHORITY SECTION:
.			573	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110300 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 03 21:10:58 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 90.1.145.31.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 90.1.145.31.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
213.79.91.100	attackspambots	Unauthorized connection attempt from IP address 213.79.91.100 on Port 445(SMB)	2019-10-16 12:28:18
88.5.82.52	attackspambots	Oct 14 16:04:30 wp sshd[4161]: Failed password for r.r from 88.5.82.52 port 60782 ssh2 Oct 14 16:04:30 wp sshd[4161]: Received disconnect from 88.5.82.52: 11: Bye Bye [preauth] Oct 14 16:20:59 wp sshd[4289]: Failed password for r.r from 88.5.82.52 port 32964 ssh2 Oct 14 16:20:59 wp sshd[4289]: Received disconnect from 88.5.82.52: 11: Bye Bye [preauth] Oct 14 16:25:49 wp sshd[4327]: Invalid user ppp from 88.5.82.52 Oct 14 16:25:51 wp sshd[4327]: Failed password for invalid user ppp from 88.5.82.52 port 39222 ssh2 Oct 14 16:25:51 wp sshd[4327]: Received disconnect from 88.5.82.52: 11: Bye Bye [preauth] Oct 14 16:30:56 wp sshd[4390]: Invalid user bhadrang from 88.5.82.52 Oct 14 16:30:58 wp sshd[4390]: Failed password for invalid user bhadrang from 88.5.82.52 port 45470 ssh2 Oct 14 16:30:58 wp sshd[4390]: Received disconnect from 88.5.82.52: 11: Bye Bye [preauth] Oct 14 16:35:55 wp sshd[4407]: Failed password for r.r from 88.5.82.52 port 51732 ssh2 Oct 14 16:35:55 wp sshd[4........ -------------------------------	2019-10-16 12:47:59
159.192.96.182	attackbotsspam	Unauthorized connection attempt from IP address 159.192.96.182 on Port 445(SMB)	2019-10-16 12:35:16
81.22.45.190	attackspam	10/16/2019-06:23:37.824850 81.22.45.190 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-16 12:23:41
61.74.118.139	attackbotsspam	Oct 16 03:31:41 thevastnessof sshd[28805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.74.118.139 ...	2019-10-16 12:11:23
196.29.33.74	attackbotsspam	Unauthorized connection attempt from IP address 196.29.33.74 on Port 445(SMB)	2019-10-16 12:19:18
60.9.80.35	attackspambots	" "	2019-10-16 12:38:35
178.150.151.168	attack	Unauthorised access (Oct 16) SRC=178.150.151.168 LEN=52 TTL=121 ID=18222 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-16 12:37:20
93.29.187.145	attackspambots	Oct 15 18:25:06 php1 sshd\[24429\]: Invalid user altab from 93.29.187.145 Oct 15 18:25:06 php1 sshd\[24429\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.29.187.145 Oct 15 18:25:07 php1 sshd\[24429\]: Failed password for invalid user altab from 93.29.187.145 port 49812 ssh2 Oct 15 18:28:48 php1 sshd\[24730\]: Invalid user Welcome3 from 93.29.187.145 Oct 15 18:28:48 php1 sshd\[24730\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.29.187.145	2019-10-16 12:29:49
123.201.116.127	attackbots	C1,WP GET /nelson/wp-login.php	2019-10-16 12:27:34
216.218.206.79	attackspam	Unauthorized connection attempt from IP address 216.218.206.79 on Port 137(NETBIOS)	2019-10-16 12:18:15
173.54.164.60	attackbots	Unauthorized connection attempt from IP address 173.54.164.60 on Port 445(SMB)	2019-10-16 12:17:25
14.191.118.74	attackbots	Unauthorized connection attempt from IP address 14.191.118.74 on Port 445(SMB)	2019-10-16 12:10:59
112.109.20.242	attackbots	Unauthorized connection attempt from IP address 112.109.20.242 on Port 445(SMB)	2019-10-16 12:47:41
192.42.116.14	attackspam	10/16/2019-05:30:58.916664 192.42.116.14 Protocol: 6 ET TOR Known Tor Exit Node Traffic group 39	2019-10-16 12:47:15

最近上报的IP列表

113.22.236.105	132.238.225.213	81.213.111.104	11.86.18.140
92.45.59.162	61.96.116.245	185.194.141.185	131.152.170.179
196.59.152.255	64.79.21.91	80.216.10.161	153.98.219.37
204.46.2.107	206.68.83.173	158.243.123.121	39.57.18.163
35.224.223.30	51.23.168.76	93.232.220.155	66.233.95.103