45.132.194.28 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Belarus

运营商(isp): Sennal BV

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2019-12-02T13:29:20.352210+00:00 suse sshd[9214]: Invalid user user from 45.132.194.28 port 52767 2019-12-02T13:29:22.511279+00:00 suse sshd[9214]: error: PAM: User not known to the underlying authentication module for illegal user user from 45.132.194.28 2019-12-02T13:29:20.352210+00:00 suse sshd[9214]: Invalid user user from 45.132.194.28 port 52767 2019-12-02T13:29:22.511279+00:00 suse sshd[9214]: error: PAM: User not known to the underlying authentication module for illegal user user from 45.132.194.28 2019-12-02T13:29:20.352210+00:00 suse sshd[9214]: Invalid user user from 45.132.194.28 port 52767 2019-12-02T13:29:22.511279+00:00 suse sshd[9214]: error: PAM: User not known to the underlying authentication module for illegal user user from 45.132.194.28 2019-12-02T13:29:22.512686+00:00 suse sshd[9214]: Failed keyboard-interactive/pam for invalid user user from 45.132.194.28 port 52767 ssh2 ...	2019-12-03 05:25:05

类型

评论内容

时间

attack

2019-12-02T13:29:20.352210+00:00 suse sshd[9214]: Invalid user user from 45.132.194.28 port 52767
2019-12-02T13:29:22.511279+00:00 suse sshd[9214]: error: PAM: User not known to the underlying authentication module for illegal user user from 45.132.194.28
2019-12-02T13:29:20.352210+00:00 suse sshd[9214]: Invalid user user from 45.132.194.28 port 52767
2019-12-02T13:29:22.511279+00:00 suse sshd[9214]: error: PAM: User not known to the underlying authentication module for illegal user user from 45.132.194.28
2019-12-02T13:29:20.352210+00:00 suse sshd[9214]: Invalid user user from 45.132.194.28 port 52767
2019-12-02T13:29:22.511279+00:00 suse sshd[9214]: error: PAM: User not known to the underlying authentication module for illegal user user from 45.132.194.28
2019-12-02T13:29:22.512686+00:00 suse sshd[9214]: Failed keyboard-interactive/pam for invalid user user from 45.132.194.28 port 52767 ssh2
...

2019-12-03 05:25:05

相同子网IP讨论:

IP	类型	评论内容	时间
45.132.194.32	attackbotsspam	Brute force SMTP login attempted. ...	2020-06-22 02:03:18
45.132.194.36	attackbots	Lines containing failures of 45.132.194.36 Jun 4 23:02:39 cube sshd[11802]: Did not receive identification string from 45.132.194.36 port 60320 Jun 4 23:02:39 cube sshd[11803]: Connection closed by 45.132.194.36 port 60579 [preauth] Jun 4 23:02:41 cube sshd[11805]: Invalid user pi from 45.132.194.36 port 60862 Jun 4 23:02:41 cube sshd[11805]: Connection closed by invalid user pi 45.132.194.36 port 60862 [preauth] Jun 4 23:02:42 cube sshd[11809]: Invalid user pi from 45.132.194.36 port 61101 Jun 4 23:02:42 cube sshd[11809]: Connection closed by invalid user pi 45.132.194.36 port 61101 [preauth] Jun 4 23:02:42 cube sshd[11811]: Invalid user admin from 45.132.194.36 port 61166 Jun 4 23:02:42 cube sshd[11811]: Connection closed by invalid user admin 45.132.194.36 port 61166 [preauth] Jun 4 23:02:42 cube sshd[11813]: Invalid user admin from 45.132.194.36 port 6........ ------------------------------	2020-06-05 06:33:35
45.132.194.42	attack	Nov 24 10:09:42 microserver sshd[54051]: Invalid user pi from 45.132.194.42 port 49351 Nov 24 10:09:42 microserver sshd[54051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.132.194.42 Nov 24 10:09:44 microserver sshd[54051]: Failed password for invalid user pi from 45.132.194.42 port 49351 ssh2 Nov 24 10:09:45 microserver sshd[54053]: Invalid user pi from 45.132.194.42 port 49571 Nov 24 10:09:45 microserver sshd[54053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.132.194.42 Nov 24 10:50:09 microserver sshd[59551]: Invalid user user from 45.132.194.42 port 63108 Nov 24 10:50:09 microserver sshd[59551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.132.194.42 Nov 24 10:50:12 microserver sshd[59551]: Failed password for invalid user user from 45.132.194.42 port 63108 ssh2 Nov 24 10:50:13 microserver sshd[59575]: Invalid user test from 45.132.194.42 port 63355 Nov 24 10:50:13 m	2019-11-24 22:00:40
45.132.194.21	attack	Nov 22 12:40:03 PiServer sshd[2970]: Invalid user user from 45.132.194.21 Nov 22 12:40:05 PiServer sshd[2970]: Failed password for invalid user user from 45.132.194.21 port 61405 ssh2 Nov 22 12:40:06 PiServer sshd[2975]: Invalid user test from 45.132.194.21 Nov 22 12:40:08 PiServer sshd[2975]: Failed password for invalid user test from 45.132.194.21 port 61589 ssh2 Nov 22 12:40:09 PiServer sshd[2981]: Invalid user ubuntu from 45.132.194.21 Nov 22 12:40:10 PiServer sshd[2981]: Failed password for invalid user ubuntu from 45.132.194.21 port 61792 ssh2 Nov 22 12:40:11 PiServer sshd[2996]: Invalid user guest from 45.132.194.21 Nov 22 12:40:14 PiServer sshd[2996]: Failed password for invalid user guest from 45.132.194.21 port 62019 ssh2 Nov 22 12:40:15 PiServer sshd[3000]: Invalid user rsync from 45.132.194.21 Nov 22 12:40:17 PiServer sshd[3000]: Failed password for invalid user rsync from 45.132.194.21 port 62265 ssh2 Nov 22 12:40:20 PiServer sshd[3007]: Failed password for ........ ------------------------------	2019-11-23 18:31:05
45.132.194.18	attackspam	Nov 22 11:36:21 PiServer sshd[30799]: Failed password for pi from 45.132.194.18 port 52149 ssh2 Nov 22 11:36:27 PiServer sshd[30805]: Failed password for pi from 45.132.194.18 port 52369 ssh2 Nov 22 11:36:28 PiServer sshd[30810]: Invalid user admin from 45.132.194.18 Nov 22 11:36:30 PiServer sshd[30810]: Failed password for invalid user admin from 45.132.194.18 port 52894 ssh2 Nov 22 11:36:31 PiServer sshd[30814]: Invalid user admin from 45.132.194.18 Nov 22 11:36:34 PiServer sshd[30814]: Failed password for invalid user admin from 45.132.194.18 port 53164 ssh2 Nov 22 11:36:37 PiServer sshd[30819]: Failed password for r.r from 45.132.194.18 port 53411 ssh2 Nov 22 11:36:41 PiServer sshd[30824]: Failed password for r.r from 45.132.194.18 port 53682 ssh2 Nov 22 11:36:44 PiServer sshd[30830]: Failed password for r.r from 45.132.194.18 port 53992 ssh2 Nov 22 11:36:47 PiServer sshd[30834]: Failed password for r.r from 45.132.194.18 port 54253 ssh2 Nov 22 11:36:50 PiServer sshd........ ------------------------------	2019-11-23 18:17:46

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.132.194.28
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46326
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.132.194.28.			IN	A

;; AUTHORITY SECTION:
.			440	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120201 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 03 05:25:02 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 28.194.132.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 28.194.132.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
79.186.250.238	spam	这台主机发送如下内容的勒索邮件 I am a professional hacker secretly monitoring all= your activities and watching you for several months. The thing is your= computer was infected with harmful spyware due to the fact that you had vi= sited a website with porn content previously. Let me explain to you = what that entails. Thanks to Trojan viruses, I can gain complete access to = your computer or any other device that you own. It means that I can see absolutely everything in your screen and switch on = the camera as well as microphone at any point of time without your permissi= on. In addition, I can also access and see your confidential informatio= n. You may be wondering why your antivirus cannot detect my maliciou= s software. Let me break it down for you: I am using harmful software t= hat is driver-based, which refreshes its signatures on 4-hourly basis, hence your antivirus is u= nable to detect it presence. I have made a video compilation, which = shows on the left side the scenes of you happily masturbating, while on= the right side it demonstrates the video you were watching at that moment.= =2Eᵔ.ᵔ All I need is just to share this video to all ema= il addresses and messenger contacts of people you are in communication with= on your device or PC. I believe you would definitely want to avoid this from happening. Here = is what you need to do - transfer the Bitcoin equivalent of 1500 USD to my = Bitcoin account (that is rather a simple process, which you can check o= ut online in case if you don't know how to do that). Below is my bit= coin account information (Bitcoin wallet): bc1quhk990m3cgg93kkt68s4l7= mqspcaz49nxshvn3	2023-01-13 03:14:15
192.241.211.4	proxy	VPN	2023-01-27 14:05:06
219.100.37.219	proxy	219.100.37.219	2023-01-14 07:29:01
185.63.253.200	proxy	185.63.253.200	2023-01-28 17:36:25
103.247.103.137	attack	Local net	2023-01-25 01:01:13
95.163.50.79	attack	Port scan DDoS	2023-01-30 13:54:38
64.62.197.160	proxy	VPN	2023-01-17 14:16:06
2001:0002:14:5:1:2:bf35:2610	attack	while fishing with	2023-01-20 08:53:07
107.170.239.18	proxy	VPN	2023-01-30 14:05:21
2001:0002:14:5:1:2:bf35:2610	attack	while fishing with	2023-01-20 08:53:15
218.248.29.102	attack	Port scan	2023-01-27 13:45:21
45.93.16.189	attack	Brute-force	2023-01-23 13:48:42
34.102.136.180	spam	https://www.virustotal.com/gui/ip-address/34.102.136.180 Security vendors' analysis CMC Threat Intelligence Malware Lumu Malware Xcitium Verdict Cloud Malware Abusix	2023-01-30 02:46:54
45.93.16.100	attack	Port scan	2023-01-23 13:52:29
2001:0002:14:5:1:2:bf35:2610	spambotsattackproxynormal	while fishing with www.shane.pack@gmail.com	2023-01-20 08:54:54

最近上报的IP列表

109.27.83.207	1.10.163.0	190.188.92.109	34.92.229.88
178.0.152.81	55.233.136.180	219.3.0.153	118.70.12.142
11.6.236.115	179.141.160.46	187.212.198.193	41.143.234.222
89.103.89.100	123.204.46.250	5.106.35.37	185.229.160.158
179.115.122.116	193.124.182.198	100.98.172.230	95.48.212.193