45.143.138.157

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Russian Federation

运营商(isp): Garant-Park-Internet LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Aug 11 21:10:35 our-server-hostname postfix/smtpd[4648]: connect from unknown[45.143.138.157] Aug 11 21:10:55 our-server-hostname postfix/smtpd[4648]: lost connection after CONNECT from unknown[45.143.138.157] Aug 11 21:10:55 our-server-hostname postfix/smtpd[4648]: disconnect from unknown[45.143.138.157] Aug 11 21:14:03 our-server-hostname postfix/smtpd[4644]: connect from unknown[45.143.138.157] Aug x@x Aug 11 21:14:04 our-server-hostname postfix/smtpd[4644]: disconnect from unknown[45.143.138.157] Aug 11 21:18:29 our-server-hostname postfix/smtpd[7726]: connect from unknown[45.143.138.157] Aug x@x Aug 11 21:18:30 our-server-hostname postfix/smtpd[7726]: disconnect from unknown[45.143.138.157] Aug 11 21:18:47 our-server-hostname postfix/smtpd[7509]: connect from unknown[45.143.138.157] Aug x@x Aug 11 21:18:48 our-server-hostname postfix/smtpd[7509]: disconnect from unknown[45.143.138.157] Aug 11 21:23:13 our-server-hostname postfix/smtpd[7509]: connect from unknown[45........ -------------------------------	2020-08-12 20:58:10

类型

评论内容

时间

attackbots

Aug 11 21:10:35 our-server-hostname postfix/smtpd[4648]: connect from unknown[45.143.138.157]
Aug 11 21:10:55 our-server-hostname postfix/smtpd[4648]: lost connection after CONNECT from unknown[45.143.138.157]
Aug 11 21:10:55 our-server-hostname postfix/smtpd[4648]: disconnect from unknown[45.143.138.157]
Aug 11 21:14:03 our-server-hostname postfix/smtpd[4644]: connect from unknown[45.143.138.157]
Aug x@x
Aug 11 21:14:04 our-server-hostname postfix/smtpd[4644]: disconnect from unknown[45.143.138.157]
Aug 11 21:18:29 our-server-hostname postfix/smtpd[7726]: connect from unknown[45.143.138.157]
Aug x@x
Aug 11 21:18:30 our-server-hostname postfix/smtpd[7726]: disconnect from unknown[45.143.138.157]
Aug 11 21:18:47 our-server-hostname postfix/smtpd[7509]: connect from unknown[45.143.138.157]
Aug x@x
Aug 11 21:18:48 our-server-hostname postfix/smtpd[7509]: disconnect from unknown[45.143.138.157]
Aug 11 21:23:13 our-server-hostname postfix/smtpd[7509]: connect from unknown[45........
-------------------------------

2020-08-12 20:58:10

相同子网IP讨论:

IP	类型	评论内容	时间
45.143.138.159	attackspambots	Email rejected due to spam filtering	2020-08-18 02:54:03
45.143.138.253	attack	Email rejected due to spam filtering	2020-08-16 00:16:57
45.143.138.179	attack	2 Attack(s) Detected [DoS Attack: SYN/ACK Scan] from source: 45.143.138.179, port 22, Tuesday, August 11, 2020 03:06:58 [DoS Attack: SYN/ACK Scan] from source: 45.143.138.179, port 22, Tuesday, August 11, 2020 02:26:56	2020-08-13 15:14:36
45.143.138.128	attackspam	Email rejected due to spam filtering	2020-07-29 23:45:57
45.143.138.118	attackbots	Spamassassin_45.143.138.118	2020-07-04 15:22:29
45.143.138.50	attack	Tried sshing with brute force.	2020-06-08 05:11:27
45.143.138.50	attackspam	TCP (SYN) 45.143.138.50:43016 -> port 22, len 44	2020-06-07 17:43:19
45.143.138.185	attackbots	Email rejected due to spam filtering	2020-06-07 17:29:35
45.143.138.16	attackspambots	SSH Invalid Login	2020-03-23 06:46:13
45.143.138.16	attackbots	Invalid user mc from 45.143.138.16 port 51936	2020-03-21 14:18:20

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.143.138.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61945
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.143.138.157.			IN	A

;; AUTHORITY SECTION:
.			589	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081200 1800 900 604800 86400

;; Query time: 285 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Aug 12 20:58:06 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 157.138.143.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 157.138.143.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
81.177.6.164	attack	Invalid user jeany from 81.177.6.164 port 34058	2019-12-28 21:33:40
82.147.74.30	attackspam	firewall-block, port(s): 23/tcp	2019-12-28 21:20:29
123.132.27.214	attackspambots	Scanning	2019-12-28 21:05:10
46.217.248.31	attackbotsspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-28 21:00:41
158.69.48.197	attackbotsspam	Invalid user koutaro from 158.69.48.197 port 43928	2019-12-28 21:20:10
139.59.190.69	attackbots	$f2bV_matches	2019-12-28 20:55:15
61.168.47.95	attackbotsspam	Scanning	2019-12-28 21:10:38
121.46.244.209	attack	Unauthorized connection attempt detected from IP address 121.46.244.209 to port 1433	2019-12-28 21:16:42
106.13.87.170	attack	Invalid user maxseiner from 106.13.87.170 port 46612	2019-12-28 21:17:48
221.122.108.178	attackspambots	Unauthorized connection attempt detected from IP address 221.122.108.178 to port 1433	2019-12-28 20:56:19
207.228.248.108	attackbots	2019-12-28 00:19:50 H=(jdh5jujF) [207.228.248.108]:63012 I=[192.147.25.65]:25 F= rejected RCPT : Sender verify failed 2019-12-28 00:20:03 dovecot_login authenticator failed for (2ehP8nj) [207.228.248.108]:63949 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=zeroone@lerctr.org) 2019-12-28 00:20:19 dovecot_login authenticator failed for (Ds3OtFEp) [207.228.248.108]:64763 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=zeroone@lerctr.org) ...	2019-12-28 21:33:16
123.16.41.103	attackspam	Unauthorized connection attempt detected from IP address 123.16.41.103 to port 445	2019-12-28 21:22:04
68.183.4.129	attackspam	Dec 28 08:07:33 vmd26974 sshd[6746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.4.129 Dec 28 08:07:35 vmd26974 sshd[6746]: Failed password for invalid user test from 68.183.4.129 port 44182 ssh2 ...	2019-12-28 21:01:39
111.8.34.154	attackbotsspam	Port 1433 Scan	2019-12-28 21:24:27
103.86.111.162	attackbots	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-28 21:12:31

最近上报的IP列表

192.250.154.66	194.15.36.150	159.146.95.154	121.234.18.34
103.133.223.131	120.84.10.98	46.43.69.76	219.137.66.228
114.119.164.53	46.161.53.8	27.68.198.28	23.95.32.138
184.96.17.68	46.243.221.7	42.118.100.2	1.55.73.138
186.229.154.179	211.211.34.139	139.155.59.174	156.96.56.226