31.145.1.90 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Turkey

运营商(isp): Vodafone Net Iletisim Hizmetleri Anonim Sirketi

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Nov 26 08:55:08 eventyay sshd[14370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 26 08:55:10 eventyay sshd[14370]: Failed password for invalid user jsandye from 31.145.1.90 port 37420 ssh2 Nov 26 08:59:35 eventyay sshd[14434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 ...	2019-11-26 16:44:25
attackbots	Nov 24 15:46:51 web8 sshd\[28780\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 user=mysql Nov 24 15:46:52 web8 sshd\[28780\]: Failed password for mysql from 31.145.1.90 port 37168 ssh2 Nov 24 15:51:09 web8 sshd\[30853\]: Invalid user vishalj from 31.145.1.90 Nov 24 15:51:09 web8 sshd\[30853\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 24 15:51:12 web8 sshd\[30853\]: Failed password for invalid user vishalj from 31.145.1.90 port 19479 ssh2	2019-11-25 00:18:04
attackspambots	Nov 23 18:18:06 sd-53420 sshd\[22314\]: Invalid user bariton from 31.145.1.90 Nov 23 18:18:06 sd-53420 sshd\[22314\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 23 18:18:08 sd-53420 sshd\[22314\]: Failed password for invalid user bariton from 31.145.1.90 port 35606 ssh2 Nov 23 18:22:52 sd-53420 sshd\[23519\]: User root from 31.145.1.90 not allowed because none of user's groups are listed in AllowGroups Nov 23 18:22:52 sd-53420 sshd\[23519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 user=root ...	2019-11-24 03:39:47
attackspam	$f2bV_matches	2019-11-21 03:30:32
attackspambots	Nov 14 21:42:17 auw2 sshd\[8491\]: Invalid user pelletti from 31.145.1.90 Nov 14 21:42:17 auw2 sshd\[8491\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 14 21:42:18 auw2 sshd\[8491\]: Failed password for invalid user pelletti from 31.145.1.90 port 48282 ssh2 Nov 14 21:46:57 auw2 sshd\[8899\]: Invalid user Kaino from 31.145.1.90 Nov 14 21:46:57 auw2 sshd\[8899\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90	2019-11-15 16:07:09
attackspambots	Nov 14 20:05:56 auw2 sshd\[32117\]: Invalid user hopcroft from 31.145.1.90 Nov 14 20:05:56 auw2 sshd\[32117\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 14 20:05:58 auw2 sshd\[32117\]: Failed password for invalid user hopcroft from 31.145.1.90 port 60234 ssh2 Nov 14 20:10:21 auw2 sshd\[32614\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 user=root Nov 14 20:10:24 auw2 sshd\[32614\]: Failed password for root from 31.145.1.90 port 40834 ssh2	2019-11-15 14:22:36
attackspam	Nov 13 16:16:29 zooi sshd[5702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 13 16:16:30 zooi sshd[5702]: Failed password for invalid user server from 31.145.1.90 port 35632 ssh2 ...	2019-11-14 02:21:49
attack	Nov 13 06:12:50 areeb-Workstation sshd[25064]: Failed password for root from 31.145.1.90 port 34150 ssh2 ...	2019-11-13 08:56:46
attackspambots	frenzy	2019-11-10 21:30:56
attackbots	Nov 4 13:49:21 MK-Soft-Root2 sshd[23266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.145.1.90 Nov 4 13:49:23 MK-Soft-Root2 sshd[23266]: Failed password for invalid user mikael from 31.145.1.90 port 48272 ssh2 ...	2019-11-04 20:50:25
attack	Nov 3 09:41:24 intra sshd\[34002\]: Invalid user rustserver from 31.145.1.90Nov 3 09:41:27 intra sshd\[34002\]: Failed password for invalid user rustserver from 31.145.1.90 port 57420 ssh2Nov 3 09:46:07 intra sshd\[34055\]: Invalid user randy from 31.145.1.90Nov 3 09:46:08 intra sshd\[34055\]: Failed password for invalid user randy from 31.145.1.90 port 40626 ssh2Nov 3 09:51:11 intra sshd\[34112\]: Invalid user student from 31.145.1.90Nov 3 09:51:13 intra sshd\[34112\]: Failed password for invalid user student from 31.145.1.90 port 52142 ssh2 ...	2019-11-03 21:11:01

相同子网IP讨论:

IP	类型	评论内容	时间
31.145.131.202	attack	Unauthorized connection attempt from IP address 31.145.131.202 on Port 445(SMB)	2020-08-06 00:23:25
31.145.166.55	attack	Unauthorized connection attempt from IP address 31.145.166.55 on Port 445(SMB)	2020-07-01 13:59:17
31.145.150.194	attack	Unauthorized connection attempt from IP address 31.145.150.194 on Port 445(SMB)	2020-06-24 08:20:33
31.145.189.190	attackspambots	Unauthorized connection attempt from IP address 31.145.189.190 on Port 445(SMB)	2020-04-25 02:36:32
31.145.150.194	attack	Unauthorized connection attempt detected from IP address 31.145.150.194 to port 445	2020-03-23 21:55:12
31.145.174.90	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-13 23:06:18
31.145.194.195	attackspambots	Automatic report - Banned IP Access	2020-03-08 10:09:35
31.145.101.250	attackbotsspam	20/2/22@11:47:50: FAIL: Alarm-Network address from=31.145.101.250 ...	2020-02-23 03:34:42
31.145.190.66	attackbots	spam	2020-01-28 14:02:11
31.145.101.250	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-25 06:24:01
31.145.119.138	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-25 05:44:42
31.145.101.250	attackspam	Unauthorised access (Dec 27) SRC=31.145.101.250 LEN=52 TTL=112 ID=25416 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-28 03:23:34
31.145.111.57	attack	Unauthorized connection attempt detected from IP address 31.145.111.57 to port 445	2019-12-13 15:40:02
31.145.1.146	attack	Unauthorized connection attempt from IP address 31.145.1.146 on Port 445(SMB)	2019-12-10 03:56:41
31.145.1.146	attack	Unauthorized connection attempt from IP address 31.145.1.146 on Port 445(SMB)	2019-11-29 22:06:44

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 31.145.1.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16683
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;31.145.1.90.			IN	A

;; AUTHORITY SECTION:
.			573	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110300 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 03 21:10:58 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 90.1.145.31.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 90.1.145.31.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
36.111.182.37	attack	Port scan: Attack repeated for 24 hours	2020-08-05 04:20:42
112.85.42.178	attack	Aug 4 21:45:59 abendstille sshd\[16551\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root Aug 4 21:46:01 abendstille sshd\[16551\]: Failed password for root from 112.85.42.178 port 61519 ssh2 Aug 4 21:46:04 abendstille sshd\[16551\]: Failed password for root from 112.85.42.178 port 61519 ssh2 Aug 4 21:46:14 abendstille sshd\[16551\]: Failed password for root from 112.85.42.178 port 61519 ssh2 Aug 4 21:46:19 abendstille sshd\[17008\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root ...	2020-08-05 03:55:26
83.97.20.35	attack	Aug 4 22:08:10 debian-2gb-nbg1-2 kernel: \[18830154.303228\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=83.97.20.35 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=54321 PROTO=TCP SPT=51899 DPT=11211 WINDOW=65535 RES=0x00 SYN URGP=0	2020-08-05 04:14:21
84.78.91.2	attackbots	1596563967 - 08/04/2020 19:59:27 Host: 84.78.91.2/84.78.91.2 Port: 445 TCP Blocked	2020-08-05 04:00:07
79.49.23.117	attack	Automatic report - Port Scan Attack	2020-08-05 04:19:10
209.127.18.229	attackbots	(pop3d) Failed POP3 login from 209.127.18.229 (CA/Canada/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Aug 4 22:29:15 ir1 dovecot[3110802]: pop3-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=209.127.18.229, lip=5.63.12.44, session=<1rJTAxGsv87RfxLl>	2020-08-05 04:01:04
111.229.57.3	attackspambots	Aug 4 22:20:27 eventyay sshd[2702]: Failed password for root from 111.229.57.3 port 42358 ssh2 Aug 4 22:22:41 eventyay sshd[2797]: Failed password for root from 111.229.57.3 port 38936 ssh2 ...	2020-08-05 04:30:44
45.115.62.131	attackspambots	2020-08-04T20:03:07.063948shield sshd\[24528\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.115.62.131 user=root 2020-08-04T20:03:08.873974shield sshd\[24528\]: Failed password for root from 45.115.62.131 port 40196 ssh2 2020-08-04T20:06:11.023690shield sshd\[24892\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.115.62.131 user=root 2020-08-04T20:06:13.626158shield sshd\[24892\]: Failed password for root from 45.115.62.131 port 21186 ssh2 2020-08-04T20:09:14.728800shield sshd\[25638\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.115.62.131 user=root	2020-08-05 04:21:38
139.99.237.183	attack	(sshd) Failed SSH login from 139.99.237.183 (AU/Australia/183.ip-139-99-237.net): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 4 19:41:43 grace sshd[16613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.237.183 user=root Aug 4 19:41:45 grace sshd[16613]: Failed password for root from 139.99.237.183 port 41340 ssh2 Aug 4 19:54:47 grace sshd[18085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.237.183 user=root Aug 4 19:54:49 grace sshd[18085]: Failed password for root from 139.99.237.183 port 56328 ssh2 Aug 4 19:59:17 grace sshd[18581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.237.183 user=root	2020-08-05 04:04:10
110.8.67.146	attackspam	Automatic report BANNED IP	2020-08-05 04:31:12
202.154.184.148	attackbotsspam	Aug 4 18:46:37 django-0 sshd[25171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=fast-internet-202-154-184-148.solnet.net.id user=root Aug 4 18:46:39 django-0 sshd[25171]: Failed password for root from 202.154.184.148 port 43944 ssh2 ...	2020-08-05 04:13:49
116.228.160.20	attackspam	Aug 4 21:07:17 ip106 sshd[4268]: Failed password for root from 116.228.160.20 port 44592 ssh2 ...	2020-08-05 04:12:43
40.125.169.76	attack	Aug 4 13:59:31 mail sshd\[29366\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.125.169.76 user=root ...	2020-08-05 03:56:22
176.96.138.175	attackspam	Automatic report - XMLRPC Attack	2020-08-05 03:57:33
49.233.79.78	attackbots	Failed password for root from 49.233.79.78 port 32896 ssh2	2020-08-05 04:28:12

最近上报的IP列表

113.22.236.105	132.238.225.213	81.213.111.104	11.86.18.140
92.45.59.162	61.96.116.245	185.194.141.185	131.152.170.179
196.59.152.255	64.79.21.91	80.216.10.161	153.98.219.37
204.46.2.107	206.68.83.173	158.243.123.121	39.57.18.163
35.224.223.30	51.23.168.76	93.232.220.155	66.233.95.103