45.143.220.107

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Netherlands

运营商(isp): Zumy Communications

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Triggered: repeated knocking on closed ports.	2020-04-06 00:58:46

相同子网IP讨论:

IP	类型	评论内容	时间
45.143.220.3	attack	The IP 45.143.220.3 has just been banned by Fail2Ban after 8 attempts	2020-10-16 03:06:49
45.143.220.250	attackspambots	Automatic report - Brute Force attack using this IP address	2020-08-25 16:44:35
45.143.220.87	attack	Tried our host z.	2020-08-22 07:43:17
45.143.220.59	attackspam	45.143.220.59 was recorded 7 times by 2 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 7, 16, 1532	2020-08-20 08:57:56
45.143.220.59	attackbotsspam	45.143.220.59 was recorded 5 times by 2 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 5, 30, 1507	2020-08-19 02:52:58
45.143.220.87	attack	[2020-08-15 11:32:40] NOTICE[1185][C-000027ae] chan_sip.c: Call from '' (45.143.220.87:6336) to extension '0046842002652' rejected because extension not found in context 'public'. [2020-08-15 11:32:40] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-15T11:32:40.124-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="0046842002652",SessionID="0x7f10c43e3a48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.87/6336",ACLName="no_extension_match" [2020-08-15 11:40:48] NOTICE[1185][C-000027b5] chan_sip.c: Call from '' (45.143.220.87:11278) to extension '+46842002652' rejected because extension not found in context 'public'. [2020-08-15 11:40:48] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-15T11:40:48.085-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="+46842002652",SessionID="0x7f10c43e3a48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.8 ...	2020-08-15 23:57:56
45.143.220.165	attack	Try to login my routers admin-account several times.	2020-08-12 20:14:50
45.143.220.59	attack	45.143.220.59 was recorded 5 times by 4 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 5, 38, 1279	2020-08-12 03:28:54
45.143.220.116	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-09 21:34:40
45.143.220.59	attackbots	08/07/2020-08:08:43.480573 45.143.220.59 Protocol: 17 ET SCAN Sipvicious Scan	2020-08-07 20:26:49
45.143.220.116	attack	Aug 5 07:28:09 debian-2gb-nbg1-2 kernel: \[18863752.168870\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.143.220.116 DST=195.201.40.59 LEN=444 TOS=0x00 PREC=0x00 TTL=54 ID=0 DF PROTO=UDP SPT=5252 DPT=5060 LEN=424	2020-08-05 15:00:58
45.143.220.59	attack	SmallBizIT.US 6 packets to udp(5060)	2020-08-01 06:26:51
45.143.220.59	attackspambots	45.143.220.59 was recorded 10 times by 5 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 10, 63, 653	2020-07-27 06:35:08
45.143.220.116	attackspambots	firewall-block, port(s): 5060/udp	2020-07-27 03:28:04
45.143.220.116	attackspambots	Jul 25 19:20:47 debian-2gb-nbg1-2 kernel: \[17956161.731244\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.143.220.116 DST=195.201.40.59 LEN=444 TOS=0x00 PREC=0x00 TTL=55 ID=0 DF PROTO=UDP SPT=5368 DPT=5060 LEN=424	2020-07-26 04:50:57

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.143.220.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21836
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.143.220.107.			IN	A

;; AUTHORITY SECTION:
.			231	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040500 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 06 00:58:40 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 107.220.143.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 107.220.143.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
146.88.240.2	attackspam	146.88.240.2 was recorded 8 times by 5 hosts attempting to connect to the following ports: 8295,8205,8154,8279,8306,8308,8325,8343. Incident counter (4h, 24h, all-time): 8, 31, 729	2019-12-25 14:10:06
222.186.175.183	attackbotsspam	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.183 user=root Failed password for root from 222.186.175.183 port 51760 ssh2 Failed password for root from 222.186.175.183 port 51760 ssh2 Failed password for root from 222.186.175.183 port 51760 ssh2 Failed password for root from 222.186.175.183 port 51760 ssh2	2019-12-25 14:14:53
122.116.63.93	attack	2019-12-25T05:55:55.572646stark.klein-stark.info sshd\[17931\]: Invalid user factorio from 122.116.63.93 port 48430 2019-12-25T05:55:55.580044stark.klein-stark.info sshd\[17931\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122-116-63-93.hinet-ip.hinet.net 2019-12-25T05:55:58.106934stark.klein-stark.info sshd\[17931\]: Failed password for invalid user factorio from 122.116.63.93 port 48430 ssh2 ...	2019-12-25 14:26:41
46.38.144.179	attackspam	Dec 25 07:08:41 relay postfix/smtpd\[14172\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 25 07:11:13 relay postfix/smtpd\[12881\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 25 07:12:02 relay postfix/smtpd\[14228\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 25 07:14:24 relay postfix/smtpd\[7606\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 25 07:15:13 relay postfix/smtpd\[14173\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-25 14:21:59
140.143.136.89	attackbots	Dec 25 01:56:39 ws24vmsma01 sshd[20450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.136.89 Dec 25 01:56:41 ws24vmsma01 sshd[20450]: Failed password for invalid user rast from 140.143.136.89 port 57902 ssh2 ...	2019-12-25 14:04:44
5.63.119.154	attackspambots	Dec 25 05:30:01 *** sshd[4329]: Invalid user hollenbach from 5.63.119.154	2019-12-25 14:14:30
92.222.216.81	attackbots	Dec 25 06:30:43 mout sshd[25635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.216.81 user=root Dec 25 06:30:45 mout sshd[25635]: Failed password for root from 92.222.216.81 port 56770 ssh2	2019-12-25 13:44:10
206.189.142.10	attackbotsspam	Dec 25 11:26:00 vibhu-HP-Z238-Microtower-Workstation sshd\[16252\]: Invalid user test from 206.189.142.10 Dec 25 11:26:00 vibhu-HP-Z238-Microtower-Workstation sshd\[16252\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.142.10 Dec 25 11:26:02 vibhu-HP-Z238-Microtower-Workstation sshd\[16252\]: Failed password for invalid user test from 206.189.142.10 port 55532 ssh2 Dec 25 11:29:11 vibhu-HP-Z238-Microtower-Workstation sshd\[16472\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.142.10 user=root Dec 25 11:29:12 vibhu-HP-Z238-Microtower-Workstation sshd\[16472\]: Failed password for root from 206.189.142.10 port 55334 ssh2 ...	2019-12-25 14:08:17
115.75.177.169	attack	Unauthorised access (Dec 25) SRC=115.75.177.169 LEN=52 TTL=46 ID=7183 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Dec 23) SRC=115.75.177.169 LEN=52 TTL=110 ID=19632 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-25 13:45:31
165.227.80.35	attackspambots	WordPress wp-login brute force :: 165.227.80.35 0.112 - [25/Dec/2019:04:56:45 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 1806 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2019-12-25 14:02:45
62.234.83.50	attack	Dec 25 05:57:16 zeus sshd[1652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.83.50 Dec 25 05:57:18 zeus sshd[1652]: Failed password for invalid user varoujan from 62.234.83.50 port 48148 ssh2 Dec 25 06:00:10 zeus sshd[1728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.83.50 Dec 25 06:00:13 zeus sshd[1728]: Failed password for invalid user baud from 62.234.83.50 port 57279 ssh2	2019-12-25 14:12:17
49.235.254.147	attackspam	Dec 25 11:16:36 vibhu-HP-Z238-Microtower-Workstation sshd\[15612\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.254.147 user=root Dec 25 11:16:38 vibhu-HP-Z238-Microtower-Workstation sshd\[15612\]: Failed password for root from 49.235.254.147 port 38170 ssh2 Dec 25 11:20:05 vibhu-HP-Z238-Microtower-Workstation sshd\[15835\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.254.147 user=root Dec 25 11:20:06 vibhu-HP-Z238-Microtower-Workstation sshd\[15835\]: Failed password for root from 49.235.254.147 port 33358 ssh2 Dec 25 11:23:37 vibhu-HP-Z238-Microtower-Workstation sshd\[16086\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.254.147 user=root ...	2019-12-25 14:03:49
181.84.249.66	attackspam	Unauthorized connection attempt detected from IP address 181.84.249.66 to port 445	2019-12-25 14:11:54
182.61.23.89	attackbots	Dec 25 05:52:53 minden010 sshd[25020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.23.89 Dec 25 05:52:55 minden010 sshd[25020]: Failed password for invalid user donetta from 182.61.23.89 port 55596 ssh2 Dec 25 05:57:05 minden010 sshd[26425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.23.89 ...	2019-12-25 13:48:49
222.186.30.59	attack	Dec 25 06:40:42 tuxlinux sshd[16448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.59 user=root Dec 25 06:40:45 tuxlinux sshd[16448]: Failed password for root from 222.186.30.59 port 50966 ssh2 Dec 25 06:40:42 tuxlinux sshd[16448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.59 user=root Dec 25 06:40:45 tuxlinux sshd[16448]: Failed password for root from 222.186.30.59 port 50966 ssh2 ...	2019-12-25 14:02:28

最近上报的IP列表

171.97.101.139	52.210.84.19	172.196.94.29	21.53.94.212
115.178.202.197	201.45.79.212	87.117.178.105	50.100.75.202
196.77.58.150	171.233.180.220	192.99.120.29	171.225.251.87
156.213.136.171	134.209.169.239	109.79.242.235	59.110.68.253
47.116.106.223	14.187.1.251	191.232.245.90	188.255.246.114