45.142.195.4 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): Bunea Telecom SRL

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Apr 24 22:04:21 : SSH login attempts with invalid user	2020-04-25 07:27:14

相同子网IP讨论:

IP	类型	评论内容	时间
45.142.195.7	attackbotsspam	2020-05-29T18:48:11.678276linuxbox-skyline auth[12030]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=livecasino rhost=45.142.195.7 ...	2020-05-30 08:52:34
45.142.195.7	attack	May 29 06:09:52 srv01 postfix/smtpd\[924\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 29 06:10:03 srv01 postfix/smtpd\[26383\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 29 06:10:05 srv01 postfix/smtpd\[924\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 29 06:10:06 srv01 postfix/smtpd\[15967\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 29 06:10:45 srv01 postfix/smtpd\[20570\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-29 12:15:04
45.142.195.7	attackbotsspam	May 29 01:22:05 vmanager6029 postfix/smtpd\[17262\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 29 01:22:55 vmanager6029 postfix/smtpd\[17262\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-05-29 07:30:24
45.142.195.7	attackbots	May 28 14:27:40 srv01 postfix/smtpd\[1016\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 28 14:27:51 srv01 postfix/smtpd\[8522\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 28 14:27:54 srv01 postfix/smtpd\[13853\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 28 14:27:55 srv01 postfix/smtpd\[1016\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 28 14:28:36 srv01 postfix/smtpd\[1016\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-28 20:29:20
45.142.195.7	attack	May 28 11:06:18 relay postfix/smtpd\[15977\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 28 11:06:35 relay postfix/smtpd\[21975\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 28 11:07:12 relay postfix/smtpd\[15977\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 28 11:07:29 relay postfix/smtpd\[24252\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 28 11:08:04 relay postfix/smtpd\[9830\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-28 17:09:54
45.142.195.7	attack	May 28 02:09:13 srv01 postfix/smtpd\[16639\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 28 02:09:23 srv01 postfix/smtpd\[16639\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 28 02:09:26 srv01 postfix/smtpd\[18454\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 28 02:09:26 srv01 postfix/smtpd\[18453\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 28 02:10:07 srv01 postfix/smtpd\[18454\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-28 08:10:28
45.142.195.7	attackbots	May 27 17:41:13 srv01 postfix/smtpd\[18312\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 17:41:25 srv01 postfix/smtpd\[11085\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 17:41:27 srv01 postfix/smtpd\[18312\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 17:41:28 srv01 postfix/smtpd\[15674\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 17:42:11 srv01 postfix/smtpd\[19631\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-27 23:46:38
45.142.195.15	attackbotsspam	SASL LOGIN authentication failed: authentication failure	2020-05-27 18:21:36
45.142.195.9	attackbots	May 27 08:05:22 srv01 postfix/smtpd\[6857\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 08:05:36 srv01 postfix/smtpd\[23155\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 08:05:41 srv01 postfix/smtpd\[6857\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 08:05:53 srv01 postfix/smtpd\[23118\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 08:05:57 srv01 postfix/smtpd\[23155\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-27 14:36:34
45.142.195.9	attackspam	May 27 01:48:37 srv01 postfix/smtpd\[4403\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 01:48:57 srv01 postfix/smtpd\[4403\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 01:48:58 srv01 postfix/smtpd\[3033\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 01:49:08 srv01 postfix/smtpd\[4627\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 01:49:13 srv01 postfix/smtpd\[4646\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-27 07:49:43
45.142.195.15	attackbotsspam	May 27 01:18:30 websrv1.aknwsrv.net postfix/smtpd[1278845]: warning: unknown[45.142.195.15]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 01:19:20 websrv1.aknwsrv.net postfix/smtpd[1278845]: warning: unknown[45.142.195.15]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 01:20:12 websrv1.aknwsrv.net postfix/smtpd[1278845]: warning: unknown[45.142.195.15]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 01:21:07 websrv1.aknwsrv.net postfix/smtpd[1279036]: warning: unknown[45.142.195.15]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 01:21:53 websrv1.aknwsrv.net postfix/smtpd[1278845]: warning: unknown[45.142.195.15]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-05-27 07:49:23
45.142.195.9	attack	May 27 00:24:51 srv01 postfix/smtpd\[12215\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 00:24:54 srv01 postfix/smtpd\[9802\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 00:25:02 srv01 postfix/smtpd\[9082\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 00:25:04 srv01 postfix/smtpd\[12215\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 00:25:27 srv01 postfix/smtpd\[9802\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-27 06:32:58
45.142.195.9	attack	May 26 16:44:32 srv01 postfix/smtpd\[13632\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 26 16:44:41 srv01 postfix/smtpd\[8132\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 26 16:44:45 srv01 postfix/smtpd\[7978\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 26 16:44:53 srv01 postfix/smtpd\[13632\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 26 16:45:07 srv01 postfix/smtpd\[7978\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-26 22:52:46
45.142.195.15	attackspam	May 26 14:26:04 mail postfix/smtpd\[10378\]: warning: unknown\[45.142.195.15\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ May 26 14:56:14 mail postfix/smtpd\[11388\]: warning: unknown\[45.142.195.15\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ May 26 14:57:01 mail postfix/smtpd\[11388\]: warning: unknown\[45.142.195.15\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ May 26 14:57:54 mail postfix/smtpd\[11543\]: warning: unknown\[45.142.195.15\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-05-26 21:04:15
45.142.195.7	attackspam	May 26 09:05:39 websrv1.aknwsrv.net postfix/smtpd[831998]: warning: unknown[45.142.195.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 26 09:06:32 websrv1.aknwsrv.net postfix/smtpd[831998]: warning: unknown[45.142.195.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 26 09:07:23 websrv1.aknwsrv.net postfix/smtpd[831998]: warning: unknown[45.142.195.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 26 09:08:16 websrv1.aknwsrv.net postfix/smtpd[831998]: warning: unknown[45.142.195.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 26 09:09:08 websrv1.aknwsrv.net postfix/smtpd[831998]: warning: unknown[45.142.195.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-05-26 17:58:20

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.142.195.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27893
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.142.195.4.			IN	A

;; AUTHORITY SECTION:
.			259	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042401 1800 900 604800 86400

;; Query time: 122 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 25 07:27:10 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 4.195.142.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 4.195.142.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
148.70.11.143	attackbots	Aug 31 13:36:08 h2177944 sshd\[13917\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.11.143 user=root Aug 31 13:36:10 h2177944 sshd\[13917\]: Failed password for root from 148.70.11.143 port 48642 ssh2 Aug 31 14:03:53 h2177944 sshd\[15233\]: Invalid user andrei from 148.70.11.143 port 38922 Aug 31 14:03:53 h2177944 sshd\[15233\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.11.143 ...	2019-08-31 23:37:08
159.65.4.64	attackspam	Aug 31 15:44:12 mail sshd\[26335\]: Failed password for invalid user sm from 159.65.4.64 port 59560 ssh2 Aug 31 16:04:42 mail sshd\[26561\]: Invalid user louisk from 159.65.4.64 port 39544 ...	2019-08-31 23:06:34
151.80.61.103	attackspambots	Aug 31 13:52:37 localhost sshd\[28743\]: Invalid user hmsftp from 151.80.61.103 port 51628 Aug 31 13:52:37 localhost sshd\[28743\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.61.103 Aug 31 13:52:39 localhost sshd\[28743\]: Failed password for invalid user hmsftp from 151.80.61.103 port 51628 ssh2 ...	2019-08-31 23:02:30
192.30.162.119	attackspambots	$f2bV_matches	2019-08-31 22:51:29
104.194.69.10	attackbotsspam	Aug 31 10:33:55 TORMINT sshd\[5079\]: Invalid user will from 104.194.69.10 Aug 31 10:33:55 TORMINT sshd\[5079\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.194.69.10 Aug 31 10:33:57 TORMINT sshd\[5079\]: Failed password for invalid user will from 104.194.69.10 port 41412 ssh2 ...	2019-08-31 23:30:51
49.88.112.68	attackbotsspam	Aug 31 16:38:35 minden010 sshd[9478]: Failed password for root from 49.88.112.68 port 36276 ssh2 Aug 31 16:38:37 minden010 sshd[9478]: Failed password for root from 49.88.112.68 port 36276 ssh2 Aug 31 16:38:39 minden010 sshd[9478]: Failed password for root from 49.88.112.68 port 36276 ssh2 ...	2019-08-31 22:46:37
40.78.100.11	attack	Aug 31 14:55:22 MK-Soft-VM4 sshd\[7782\]: Invalid user jtrejo from 40.78.100.11 port 48184 Aug 31 14:55:22 MK-Soft-VM4 sshd\[7782\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.78.100.11 Aug 31 14:55:25 MK-Soft-VM4 sshd\[7782\]: Failed password for invalid user jtrejo from 40.78.100.11 port 48184 ssh2 ...	2019-08-31 23:43:57
111.101.138.126	attackbotsspam	Aug 31 16:37:58 legacy sshd[30861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.101.138.126 Aug 31 16:38:00 legacy sshd[30861]: Failed password for invalid user 123 from 111.101.138.126 port 62362 ssh2 Aug 31 16:41:54 legacy sshd[31016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.101.138.126 ...	2019-08-31 22:42:41
54.37.64.101	attackbots	ssh failed login	2019-08-31 22:49:09
51.68.136.36	attackbots	Aug 31 04:45:42 friendsofhawaii sshd\[2337\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.ip-51-68-136.eu user=root Aug 31 04:45:44 friendsofhawaii sshd\[2337\]: Failed password for root from 51.68.136.36 port 44564 ssh2 Aug 31 04:52:23 friendsofhawaii sshd\[3295\]: Invalid user guest from 51.68.136.36 Aug 31 04:52:23 friendsofhawaii sshd\[3295\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.ip-51-68-136.eu Aug 31 04:52:24 friendsofhawaii sshd\[3295\]: Failed password for invalid user guest from 51.68.136.36 port 37882 ssh2	2019-08-31 23:10:10
176.196.207.10	attackspam	23/tcp 9527/tcp 60001/tcp... [2019-07-16/08-31]11pkt,3pt.(tcp)	2019-08-31 23:28:44
174.138.31.237	attack	Aug 31 12:00:31 vtv3 sshd\[24029\]: Invalid user jshea from 174.138.31.237 port 45974 Aug 31 12:00:31 vtv3 sshd\[24029\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.31.237 Aug 31 12:00:33 vtv3 sshd\[24029\]: Failed password for invalid user jshea from 174.138.31.237 port 45974 ssh2 Aug 31 12:05:22 vtv3 sshd\[26643\]: Invalid user inputws from 174.138.31.237 port 26695 Aug 31 12:05:22 vtv3 sshd\[26643\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.31.237 Aug 31 12:19:40 vtv3 sshd\[1081\]: Invalid user samba from 174.138.31.237 port 32863 Aug 31 12:19:40 vtv3 sshd\[1081\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.31.237 Aug 31 12:19:43 vtv3 sshd\[1081\]: Failed password for invalid user samba from 174.138.31.237 port 32863 ssh2 Aug 31 12:24:29 vtv3 sshd\[3727\]: Invalid user web from 174.138.31.237 port 13588 Aug 31 12:24:29 vtv3 sshd\[3727\]: p	2019-08-31 23:04:49
45.237.140.120	attack	Aug 31 01:34:09 php1 sshd\[6938\]: Invalid user maria from 45.237.140.120 Aug 31 01:34:09 php1 sshd\[6938\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.237.140.120 Aug 31 01:34:10 php1 sshd\[6938\]: Failed password for invalid user maria from 45.237.140.120 port 48830 ssh2 Aug 31 01:39:17 php1 sshd\[7641\]: Invalid user odoo from 45.237.140.120 Aug 31 01:39:17 php1 sshd\[7641\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.237.140.120	2019-08-31 22:54:29
139.155.77.133	attackbotsspam	Aug 31 14:43:23 MK-Soft-VM5 sshd\[16364\]: Invalid user vds123 from 139.155.77.133 port 52162 Aug 31 14:43:23 MK-Soft-VM5 sshd\[16364\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.77.133 Aug 31 14:43:26 MK-Soft-VM5 sshd\[16364\]: Failed password for invalid user vds123 from 139.155.77.133 port 52162 ssh2 ...	2019-08-31 23:31:20
167.99.48.123	attackspambots	Aug 31 04:02:00 aiointranet sshd\[21955\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.48.123 user=root Aug 31 04:02:02 aiointranet sshd\[21955\]: Failed password for root from 167.99.48.123 port 41296 ssh2 Aug 31 04:06:17 aiointranet sshd\[22494\]: Invalid user renato from 167.99.48.123 Aug 31 04:06:17 aiointranet sshd\[22494\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.48.123 Aug 31 04:06:18 aiointranet sshd\[22494\]: Failed password for invalid user renato from 167.99.48.123 port 57898 ssh2	2019-08-31 22:48:48

最近上报的IP列表

152.182.122.235	99.158.69.97	93.95.241.204	103.218.240.33
88.255.120.187	174.138.9.187	60.86.3.194	217.114.51.63
140.213.16.250	134.215.181.240	179.50.183.41	117.140.67.139
113.170.79.96	136.144.184.203	222.117.33.88	140.197.255.114
207.46.13.156	113.227.139.74	64.172.103.237	85.152.1.203