45.116.106.70 - IPInfo

基本信息:

城市(city): Bhadohi

省份(region): Uttar Pradesh

国家(country): India

运营商(isp): Magus Sales and Services Private Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 45.116.106.70 to port 8080 [J]	2020-01-16 07:02:13

相同子网IP讨论:

IP	类型	评论内容	时间
45.116.106.237	attack	IP: 45.116.106.237 ASN: AS133647 ELXIRE DATA SERVICES PVT. LTD. Port: Simple Mail Transfer 25 Found in one or more Blacklists Date: 29/07/2019 5:35:31 PM UTC	2019-07-30 07:17:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.116.106.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13960
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.116.106.70.			IN	A

;; AUTHORITY SECTION:
.			488	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011502 1800 900 604800 86400

;; Query time: 120 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 16 07:02:10 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 70.106.116.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 70.106.116.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
157.230.43.135	attack	SSH 15 Failed Logins	2019-08-20 11:04:26
177.38.182.92	attackspam	firewall-block, port(s): 445/tcp	2019-08-20 10:33:51
181.231.57.198	attackspambots	vps1:sshd-InvalidUser	2019-08-20 11:08:28
181.123.10.88	attackbots	Aug 20 04:23:57 localhost sshd\[14359\]: Invalid user edencraft from 181.123.10.88 port 32924 Aug 20 04:23:57 localhost sshd\[14359\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.123.10.88 Aug 20 04:23:59 localhost sshd\[14359\]: Failed password for invalid user edencraft from 181.123.10.88 port 32924 ssh2	2019-08-20 10:37:19
157.230.57.112	attackbots	2676/tcp 2675/tcp 2674/tcp...≡ [2613/tcp,2676/tcp] [2019-06-19/08-19]249pkt,64pt.(tcp)	2019-08-20 10:40:57
182.61.15.70	attackspambots	Aug 19 13:40:31 hcbb sshd\[21701\]: Invalid user nmt from 182.61.15.70 Aug 19 13:40:31 hcbb sshd\[21701\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.15.70 Aug 19 13:40:33 hcbb sshd\[21701\]: Failed password for invalid user nmt from 182.61.15.70 port 35706 ssh2 Aug 19 13:42:08 hcbb sshd\[21833\]: Invalid user skaner from 182.61.15.70 Aug 19 13:42:08 hcbb sshd\[21833\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.15.70	2019-08-20 11:03:34
106.13.38.246	attackspam	Aug 19 20:50:01 [munged] sshd[29964]: Invalid user urban from 106.13.38.246 port 32784 Aug 19 20:50:01 [munged] sshd[29964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.38.246	2019-08-20 10:56:56
77.247.110.83	attack	" "	2019-08-20 10:53:51
62.210.180.84	attackbots	\[2019-08-19 22:24:43\] NOTICE\[2288\] chan_sip.c: Registration from '"100"\' failed for '62.210.180.84:48380' - Wrong password \[2019-08-19 22:24:43\] SECURITY\[2326\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-19T22:24:43.848-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="100",SessionID="0x7ff4d0348688",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.180.84/48380",Challenge="6ba01b41",ReceivedChallenge="6ba01b41",ReceivedHash="dc1344a84e52ee344a8fe7dce5b8d1f7" \[2019-08-19 22:30:20\] NOTICE\[2288\] chan_sip.c: Registration from '"334455"\' failed for '62.210.180.84:34280' - Wrong password \[2019-08-19 22:30:20\] SECURITY\[2326\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-19T22:30:20.736-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="334455",SessionID="0x7ff4d09702e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210	2019-08-20 10:46:19
106.12.178.62	attackspambots	SSH 15 Failed Logins	2019-08-20 10:36:11
194.44.94.103	attack	2019-08-19 13:49:49 H=(luxresorts.it) [194.44.94.103]:45892 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/194.44.94.103) 2019-08-19 13:49:49 H=(luxresorts.it) [194.44.94.103]:45892 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/194.44.94.103) 2019-08-19 13:49:50 H=(luxresorts.it) [194.44.94.103]:45892 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/194.44.94.103) ...	2019-08-20 11:05:51
104.248.187.231	attackbots	Aug 19 16:50:34 friendsofhawaii sshd\[16110\]: Invalid user myftp from 104.248.187.231 Aug 19 16:50:34 friendsofhawaii sshd\[16110\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.187.231 Aug 19 16:50:36 friendsofhawaii sshd\[16110\]: Failed password for invalid user myftp from 104.248.187.231 port 56964 ssh2 Aug 19 16:57:59 friendsofhawaii sshd\[16978\]: Invalid user admin from 104.248.187.231 Aug 19 16:57:59 friendsofhawaii sshd\[16978\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.187.231	2019-08-20 10:58:51
36.26.128.143	attack	Aug 19 14:22:14 hiderm sshd\[13443\]: Invalid user usuario from 36.26.128.143 Aug 19 14:22:15 hiderm sshd\[13443\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.26.128.143 Aug 19 14:22:16 hiderm sshd\[13443\]: Failed password for invalid user usuario from 36.26.128.143 port 42548 ssh2 Aug 19 14:22:19 hiderm sshd\[13443\]: Failed password for invalid user usuario from 36.26.128.143 port 42548 ssh2 Aug 19 14:22:21 hiderm sshd\[13443\]: Failed password for invalid user usuario from 36.26.128.143 port 42548 ssh2	2019-08-20 11:04:51
104.206.128.58	attackspam	" "	2019-08-20 11:05:33
131.255.82.83	attackbotsspam	[DoS Attack: SYN/ACK Scan] from source: 131.255.82.83	2019-08-20 10:50:03

最近上报的IP列表

5.2.140.90	118.78.27.79	1.52.191.81	179.218.220.84
193.224.240.64	223.155.53.55	158.222.32.177	222.165.224.173
117.247.232.146	222.82.49.186	132.157.58.54	220.144.209.43
211.46.22.111	77.69.158.39	124.202.0.142	201.145.105.59
201.95.48.199	219.228.149.19	92.191.150.105	59.49.160.136