45.132.194.21 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Belarus

运营商(isp): Sennal BV

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Nov 22 12:40:03 PiServer sshd[2970]: Invalid user user from 45.132.194.21 Nov 22 12:40:05 PiServer sshd[2970]: Failed password for invalid user user from 45.132.194.21 port 61405 ssh2 Nov 22 12:40:06 PiServer sshd[2975]: Invalid user test from 45.132.194.21 Nov 22 12:40:08 PiServer sshd[2975]: Failed password for invalid user test from 45.132.194.21 port 61589 ssh2 Nov 22 12:40:09 PiServer sshd[2981]: Invalid user ubuntu from 45.132.194.21 Nov 22 12:40:10 PiServer sshd[2981]: Failed password for invalid user ubuntu from 45.132.194.21 port 61792 ssh2 Nov 22 12:40:11 PiServer sshd[2996]: Invalid user guest from 45.132.194.21 Nov 22 12:40:14 PiServer sshd[2996]: Failed password for invalid user guest from 45.132.194.21 port 62019 ssh2 Nov 22 12:40:15 PiServer sshd[3000]: Invalid user rsync from 45.132.194.21 Nov 22 12:40:17 PiServer sshd[3000]: Failed password for invalid user rsync from 45.132.194.21 port 62265 ssh2 Nov 22 12:40:20 PiServer sshd[3007]: Failed password for ........ ------------------------------	2019-11-23 18:31:05

类型

评论内容

时间

attack

Nov 22 12:40:03 PiServer sshd[2970]: Invalid user user from 45.132.194.21
Nov 22 12:40:05 PiServer sshd[2970]: Failed password for invalid user user from 45.132.194.21 port 61405 ssh2
Nov 22 12:40:06 PiServer sshd[2975]: Invalid user test from 45.132.194.21
Nov 22 12:40:08 PiServer sshd[2975]: Failed password for invalid user test from 45.132.194.21 port 61589 ssh2
Nov 22 12:40:09 PiServer sshd[2981]: Invalid user ubuntu from 45.132.194.21
Nov 22 12:40:10 PiServer sshd[2981]: Failed password for invalid user ubuntu from 45.132.194.21 port 61792 ssh2
Nov 22 12:40:11 PiServer sshd[2996]: Invalid user guest from 45.132.194.21
Nov 22 12:40:14 PiServer sshd[2996]: Failed password for invalid user guest from 45.132.194.21 port 62019 ssh2
Nov 22 12:40:15 PiServer sshd[3000]: Invalid user rsync from 45.132.194.21
Nov 22 12:40:17 PiServer sshd[3000]: Failed password for invalid user rsync from 45.132.194.21 port 62265 ssh2
Nov 22 12:40:20 PiServer sshd[3007]: Failed password for ........
------------------------------

2019-11-23 18:31:05

相同子网IP讨论:

IP	类型	评论内容	时间
45.132.194.32	attackbotsspam	Brute force SMTP login attempted. ...	2020-06-22 02:03:18
45.132.194.36	attackbots	Lines containing failures of 45.132.194.36 Jun 4 23:02:39 cube sshd[11802]: Did not receive identification string from 45.132.194.36 port 60320 Jun 4 23:02:39 cube sshd[11803]: Connection closed by 45.132.194.36 port 60579 [preauth] Jun 4 23:02:41 cube sshd[11805]: Invalid user pi from 45.132.194.36 port 60862 Jun 4 23:02:41 cube sshd[11805]: Connection closed by invalid user pi 45.132.194.36 port 60862 [preauth] Jun 4 23:02:42 cube sshd[11809]: Invalid user pi from 45.132.194.36 port 61101 Jun 4 23:02:42 cube sshd[11809]: Connection closed by invalid user pi 45.132.194.36 port 61101 [preauth] Jun 4 23:02:42 cube sshd[11811]: Invalid user admin from 45.132.194.36 port 61166 Jun 4 23:02:42 cube sshd[11811]: Connection closed by invalid user admin 45.132.194.36 port 61166 [preauth] Jun 4 23:02:42 cube sshd[11813]: Invalid user admin from 45.132.194.36 port 6........ ------------------------------	2020-06-05 06:33:35
45.132.194.28	attack	2019-12-02T13:29:20.352210+00:00 suse sshd[9214]: Invalid user user from 45.132.194.28 port 52767 2019-12-02T13:29:22.511279+00:00 suse sshd[9214]: error: PAM: User not known to the underlying authentication module for illegal user user from 45.132.194.28 2019-12-02T13:29:20.352210+00:00 suse sshd[9214]: Invalid user user from 45.132.194.28 port 52767 2019-12-02T13:29:22.511279+00:00 suse sshd[9214]: error: PAM: User not known to the underlying authentication module for illegal user user from 45.132.194.28 2019-12-02T13:29:20.352210+00:00 suse sshd[9214]: Invalid user user from 45.132.194.28 port 52767 2019-12-02T13:29:22.511279+00:00 suse sshd[9214]: error: PAM: User not known to the underlying authentication module for illegal user user from 45.132.194.28 2019-12-02T13:29:22.512686+00:00 suse sshd[9214]: Failed keyboard-interactive/pam for invalid user user from 45.132.194.28 port 52767 ssh2 ...	2019-12-03 05:25:05
45.132.194.42	attack	Nov 24 10:09:42 microserver sshd[54051]: Invalid user pi from 45.132.194.42 port 49351 Nov 24 10:09:42 microserver sshd[54051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.132.194.42 Nov 24 10:09:44 microserver sshd[54051]: Failed password for invalid user pi from 45.132.194.42 port 49351 ssh2 Nov 24 10:09:45 microserver sshd[54053]: Invalid user pi from 45.132.194.42 port 49571 Nov 24 10:09:45 microserver sshd[54053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.132.194.42 Nov 24 10:50:09 microserver sshd[59551]: Invalid user user from 45.132.194.42 port 63108 Nov 24 10:50:09 microserver sshd[59551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.132.194.42 Nov 24 10:50:12 microserver sshd[59551]: Failed password for invalid user user from 45.132.194.42 port 63108 ssh2 Nov 24 10:50:13 microserver sshd[59575]: Invalid user test from 45.132.194.42 port 63355 Nov 24 10:50:13 m	2019-11-24 22:00:40
45.132.194.18	attackspam	Nov 22 11:36:21 PiServer sshd[30799]: Failed password for pi from 45.132.194.18 port 52149 ssh2 Nov 22 11:36:27 PiServer sshd[30805]: Failed password for pi from 45.132.194.18 port 52369 ssh2 Nov 22 11:36:28 PiServer sshd[30810]: Invalid user admin from 45.132.194.18 Nov 22 11:36:30 PiServer sshd[30810]: Failed password for invalid user admin from 45.132.194.18 port 52894 ssh2 Nov 22 11:36:31 PiServer sshd[30814]: Invalid user admin from 45.132.194.18 Nov 22 11:36:34 PiServer sshd[30814]: Failed password for invalid user admin from 45.132.194.18 port 53164 ssh2 Nov 22 11:36:37 PiServer sshd[30819]: Failed password for r.r from 45.132.194.18 port 53411 ssh2 Nov 22 11:36:41 PiServer sshd[30824]: Failed password for r.r from 45.132.194.18 port 53682 ssh2 Nov 22 11:36:44 PiServer sshd[30830]: Failed password for r.r from 45.132.194.18 port 53992 ssh2 Nov 22 11:36:47 PiServer sshd[30834]: Failed password for r.r from 45.132.194.18 port 54253 ssh2 Nov 22 11:36:50 PiServer sshd........ ------------------------------	2019-11-23 18:17:46

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.132.194.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38600
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.132.194.21.			IN	A

;; AUTHORITY SECTION:
.			513	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112300 1800 900 604800 86400

;; Query time: 93 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 23 18:31:01 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 21.194.132.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 21.194.132.45.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
200.54.27.25	attackspambots	Unauthorized connection attempt from IP address 200.54.27.25 on Port 445(SMB)	2020-07-23 05:12:23
59.31.131.223	attackbots	Port probing on unauthorized port 23	2020-07-23 05:29:23
190.205.239.44	attack	Unauthorized connection attempt from IP address 190.205.239.44 on Port 445(SMB)	2020-07-23 05:33:03
46.190.92.124	attackbots	Tried our host z.	2020-07-23 05:33:24
183.66.103.237	attackbots	Attempted connection to port 34737.	2020-07-23 05:06:50
186.90.181.230	attack	Attempted connection to port 445.	2020-07-23 05:06:33
188.64.180.249	attackspam	Attempted connection to port 445.	2020-07-23 05:05:12
107.180.92.3	attackbots	SSH authentication failure x 6 reported by Fail2Ban ...	2020-07-23 05:17:03
109.191.16.31	attackspam	Attempted connection to port 445.	2020-07-23 05:09:01
162.243.128.245	attackbotsspam	Unauthorized connection attempt from IP address 162.243.128.245 on Port 445(SMB)	2020-07-23 05:14:30
77.29.6.46	attack	Unauthorized connection attempt from IP address 77.29.6.46 on Port 445(SMB)	2020-07-23 05:22:51
191.111.154.30	attackbots	michaelklotzbier.de 191.111.154.30 [22/Jul/2020:16:45:43 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4279 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" michaelklotzbier.de 191.111.154.30 [22/Jul/2020:16:45:48 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4279 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36"	2020-07-23 05:21:39
109.162.248.77	attackspam	Unauthorized connection attempt from IP address 109.162.248.77 on Port 445(SMB)	2020-07-23 05:28:21
122.246.6.120	attack	Attempted connection to port 34737.	2020-07-23 05:07:56
106.13.175.211	attackspambots	(sshd) Failed SSH login from 106.13.175.211 (CN/China/-): 5 in the last 3600 secs	2020-07-23 05:10:34

最近上报的IP列表

59.128.61.202	41.63.166.176	37.114.182.75	158.69.212.106
128.201.208.216	103.227.54.95	187.73.33.90	119.42.97.65
77.54.245.199	84.246.209.97	45.169.44.225	43.240.125.195
182.48.194.167	149.200.242.60	151.237.185.110	187.49.91.11
64.252.144.86	168.197.9.12	123.233.116.85	180.125.210.141