45.134.145.19 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): IPv4 Superhub Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Invalid user server from 45.134.145.19 port 37208	2020-05-29 06:29:29

相同子网IP讨论:

IP	类型	评论内容	时间
45.134.145.141	attack	May 1 13:06:54 CT721 sshd[1148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.134.145.141 user=r.r May 1 13:06:56 CT721 sshd[1148]: Failed password for r.r from 45.134.145.141 port 42606 ssh2 May 1 13:06:56 CT721 sshd[1148]: Received disconnect from 45.134.145.141 port 42606:11: Bye Bye [preauth] May 1 13:06:56 CT721 sshd[1148]: Disconnected from 45.134.145.141 port 42606 [preauth] May 1 13:14:20 CT721 sshd[1404]: Invalid user jessica from 45.134.145.141 port 59756 May 1 13:14:20 CT721 sshd[1404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.134.145.141 May 1 13:14:21 CT721 sshd[1404]: Failed password for invalid user jessica from 45.134.145.141 port 59756 ssh2 May 1 13:14:22 CT721 sshd[1404]: Received disconnect from 45.134.145.141 port 59756:11: Bye Bye [preauth] May 1 13:14:22 CT721 sshd[1404]: Disconnected from 45.134.145.141 port 59756 [preauth] ........ -----------------------------------------------	2020-05-03 03:51:02
45.134.145.130	attackspam	Unauthorized connection attempt detected from IP address 45.134.145.130 to port 5900	2020-04-18 01:12:36
45.134.145.129	attackspam	Unauthorized connection attempt detected from IP address 45.134.145.129 to port 5900	2020-04-17 23:28:00
45.134.145.128	attackspambots	Unauthorized connection attempt detected from IP address 45.134.145.128 to port 5900	2020-04-17 22:10:30
45.134.145.127	attackspam	Unauthorized connection attempt detected from IP address 45.134.145.127 to port 5900	2020-04-17 20:53:24

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.134.145.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56537
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.134.145.19.			IN	A

;; AUTHORITY SECTION:
.			182	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052802 1800 900 604800 86400

;; Query time: 123 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 29 06:29:25 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 19.145.134.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 19.145.134.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
134.122.79.249	attack	Automatic report - XMLRPC Attack	2020-06-27 14:20:45
51.158.124.238	attack	srv02 SSH BruteForce Attacks 22 ..	2020-06-27 14:04:12
185.39.10.38	attackspam	Jun 27 07:57:21 debian-2gb-nbg1-2 kernel: \[15496095.027128\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.39.10.38 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=5240 PROTO=TCP SPT=47822 DPT=931 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-27 14:00:45
49.233.136.245	attack	2020-06-27T05:39:02.588705shield sshd\[15173\]: Invalid user caro from 49.233.136.245 port 46898 2020-06-27T05:39:02.593930shield sshd\[15173\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.136.245 2020-06-27T05:39:05.143739shield sshd\[15173\]: Failed password for invalid user caro from 49.233.136.245 port 46898 ssh2 2020-06-27T05:41:48.910538shield sshd\[15325\]: Invalid user sdtdserver from 49.233.136.245 port 37730 2020-06-27T05:41:48.914148shield sshd\[15325\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.136.245	2020-06-27 13:50:47
124.93.160.82	attackbotsspam	$f2bV_matches	2020-06-27 13:46:43
111.250.182.74	attack	Jun 27 05:52:57 h1745522 sshd[31055]: Invalid user av from 111.250.182.74 port 50534 Jun 27 05:52:58 h1745522 sshd[31055]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.250.182.74 Jun 27 05:52:57 h1745522 sshd[31055]: Invalid user av from 111.250.182.74 port 50534 Jun 27 05:53:00 h1745522 sshd[31055]: Failed password for invalid user av from 111.250.182.74 port 50534 ssh2 Jun 27 05:53:53 h1745522 sshd[31112]: Invalid user helpdesk from 111.250.182.74 port 35670 Jun 27 05:53:53 h1745522 sshd[31112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.250.182.74 Jun 27 05:53:53 h1745522 sshd[31112]: Invalid user helpdesk from 111.250.182.74 port 35670 Jun 27 05:53:55 h1745522 sshd[31112]: Failed password for invalid user helpdesk from 111.250.182.74 port 35670 ssh2 Jun 27 05:54:48 h1745522 sshd[31150]: Invalid user bo from 111.250.182.74 port 49040 ...	2020-06-27 14:10:45
185.244.20.143	attackspambots	Excessive Port-Scanning	2020-06-27 14:05:55
122.51.229.124	attack	3x Failed Password	2020-06-27 13:45:18
89.252.143.42	attackspam	89.252.143.42 - - [27/Jun/2020:07:47:06 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 89.252.143.42 - - [27/Jun/2020:07:47:07 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 89.252.143.42 - - [27/Jun/2020:07:47:08 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-27 14:11:37
102.133.165.93	attackspam	Jun 27 07:41:05 fhem-rasp sshd[6979]: Failed password for root from 102.133.165.93 port 25734 ssh2 Jun 27 07:41:06 fhem-rasp sshd[6979]: Disconnected from authenticating user root 102.133.165.93 port 25734 [preauth] ...	2020-06-27 13:56:27
113.21.118.74	attack	Jun 26 21:55:06 Host-KLAX-C dovecot: imap-login: Disconnected (auth failed, 1 attempts in 10 secs): user=, method=PLAIN, rip=113.21.118.74, lip=185.198.26.142, TLS, session= ...	2020-06-27 13:47:05
46.38.150.37	attack	2020-06-27 06:12:38 auth_plain authenticator failed for (User) [46.38.150.37]: 535 Incorrect authentication data (set_id=genetics@csmailer.org) 2020-06-27 06:13:10 auth_plain authenticator failed for (User) [46.38.150.37]: 535 Incorrect authentication data (set_id=dirs@csmailer.org) 2020-06-27 06:13:42 auth_plain authenticator failed for (User) [46.38.150.37]: 535 Incorrect authentication data (set_id=sword_list@csmailer.org) 2020-06-27 06:14:13 auth_plain authenticator failed for (User) [46.38.150.37]: 535 Incorrect authentication data (set_id=mcollins@csmailer.org) 2020-06-27 06:14:46 auth_plain authenticator failed for (User) [46.38.150.37]: 535 Incorrect authentication data (set_id=itl@csmailer.org) ...	2020-06-27 14:14:02
104.236.175.204	attackbots	ssh intrusion attempt	2020-06-27 14:09:29
103.121.57.130	attackspambots	Try to hack with python script or wget/shell or other script..	2020-06-27 14:11:09
37.152.183.18	attack	Jun 27 10:42:33 dhoomketu sshd[1070587]: Invalid user lyc from 37.152.183.18 port 51264 Jun 27 10:42:35 dhoomketu sshd[1070587]: Failed password for invalid user lyc from 37.152.183.18 port 51264 ssh2 Jun 27 10:44:45 dhoomketu sshd[1070613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.152.183.18 user=root Jun 27 10:44:47 dhoomketu sshd[1070613]: Failed password for root from 37.152.183.18 port 51350 ssh2 Jun 27 10:46:50 dhoomketu sshd[1070667]: Invalid user jayrock from 37.152.183.18 port 51464 ...	2020-06-27 14:17:43

最近上报的IP列表

107.213.16.232	209.126.124.203	129.223.172.181	101.159.160.246
90.187.108.133	186.161.242.211	197.221.254.235	217.91.100.168
117.39.157.89	207.75.59.67	116.75.207.82	39.91.247.14
176.191.204.234	173.69.254.175	86.252.65.27	50.201.226.182
105.128.205.232	178.227.210.85	2a02:aa7:4003:62bf:7957:31dc:5f91:7b12	78.105.212.204