45.143.220.107

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Netherlands

运营商(isp): Zumy Communications

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Triggered: repeated knocking on closed ports.	2020-04-06 00:58:46

相同子网IP讨论:

IP	类型	评论内容	时间
45.143.220.3	attack	The IP 45.143.220.3 has just been banned by Fail2Ban after 8 attempts	2020-10-16 03:06:49
45.143.220.250	attackspambots	Automatic report - Brute Force attack using this IP address	2020-08-25 16:44:35
45.143.220.87	attack	Tried our host z.	2020-08-22 07:43:17
45.143.220.59	attackspam	45.143.220.59 was recorded 7 times by 2 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 7, 16, 1532	2020-08-20 08:57:56
45.143.220.59	attackbotsspam	45.143.220.59 was recorded 5 times by 2 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 5, 30, 1507	2020-08-19 02:52:58
45.143.220.87	attack	[2020-08-15 11:32:40] NOTICE[1185][C-000027ae] chan_sip.c: Call from '' (45.143.220.87:6336) to extension '0046842002652' rejected because extension not found in context 'public'. [2020-08-15 11:32:40] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-15T11:32:40.124-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="0046842002652",SessionID="0x7f10c43e3a48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.87/6336",ACLName="no_extension_match" [2020-08-15 11:40:48] NOTICE[1185][C-000027b5] chan_sip.c: Call from '' (45.143.220.87:11278) to extension '+46842002652' rejected because extension not found in context 'public'. [2020-08-15 11:40:48] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-15T11:40:48.085-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="+46842002652",SessionID="0x7f10c43e3a48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.8 ...	2020-08-15 23:57:56
45.143.220.165	attack	Try to login my routers admin-account several times.	2020-08-12 20:14:50
45.143.220.59	attack	45.143.220.59 was recorded 5 times by 4 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 5, 38, 1279	2020-08-12 03:28:54
45.143.220.116	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-09 21:34:40
45.143.220.59	attackbots	08/07/2020-08:08:43.480573 45.143.220.59 Protocol: 17 ET SCAN Sipvicious Scan	2020-08-07 20:26:49
45.143.220.116	attack	Aug 5 07:28:09 debian-2gb-nbg1-2 kernel: \[18863752.168870\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.143.220.116 DST=195.201.40.59 LEN=444 TOS=0x00 PREC=0x00 TTL=54 ID=0 DF PROTO=UDP SPT=5252 DPT=5060 LEN=424	2020-08-05 15:00:58
45.143.220.59	attack	SmallBizIT.US 6 packets to udp(5060)	2020-08-01 06:26:51
45.143.220.59	attackspambots	45.143.220.59 was recorded 10 times by 5 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 10, 63, 653	2020-07-27 06:35:08
45.143.220.116	attackspambots	firewall-block, port(s): 5060/udp	2020-07-27 03:28:04
45.143.220.116	attackspambots	Jul 25 19:20:47 debian-2gb-nbg1-2 kernel: \[17956161.731244\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.143.220.116 DST=195.201.40.59 LEN=444 TOS=0x00 PREC=0x00 TTL=55 ID=0 DF PROTO=UDP SPT=5368 DPT=5060 LEN=424	2020-07-26 04:50:57

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.143.220.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21836
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.143.220.107.			IN	A

;; AUTHORITY SECTION:
.			231	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040500 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 06 00:58:40 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 107.220.143.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 107.220.143.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
186.233.215.18	attack	Jun 16 04:59:42 mail.srvfarm.net postfix/smtpd[916110]: warning: unknown[186.233.215.18]: SASL PLAIN authentication failed: Jun 16 04:59:43 mail.srvfarm.net postfix/smtpd[916110]: lost connection after AUTH from unknown[186.233.215.18] Jun 16 05:07:44 mail.srvfarm.net postfix/smtpd[936062]: lost connection after CONNECT from unknown[186.233.215.18] Jun 16 05:08:22 mail.srvfarm.net postfix/smtpd[936098]: warning: unknown[186.233.215.18]: SASL PLAIN authentication failed: Jun 16 05:08:22 mail.srvfarm.net postfix/smtpd[936098]: lost connection after AUTH from unknown[186.233.215.18]	2020-06-16 17:34:27
93.99.159.20	attackspambots	Jun 16 05:02:25 mail.srvfarm.net postfix/smtps/smtpd[915576]: warning: unknown[93.99.159.20]: SASL PLAIN authentication failed: Jun 16 05:02:25 mail.srvfarm.net postfix/smtps/smtpd[915576]: lost connection after AUTH from unknown[93.99.159.20] Jun 16 05:09:40 mail.srvfarm.net postfix/smtps/smtpd[914307]: warning: unknown[93.99.159.20]: SASL PLAIN authentication failed: Jun 16 05:09:40 mail.srvfarm.net postfix/smtps/smtpd[914307]: lost connection after AUTH from unknown[93.99.159.20] Jun 16 05:10:13 mail.srvfarm.net postfix/smtps/smtpd[917498]: warning: unknown[93.99.159.20]: SASL PLAIN authentication failed:	2020-06-16 17:42:03
13.235.229.84	attackbots	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-06-16 17:32:14
177.154.72.25	attack	Jun 16 05:06:15 mail.srvfarm.net postfix/smtps/smtpd[916121]: warning: unknown[177.154.72.25]: SASL PLAIN authentication failed: Jun 16 05:06:16 mail.srvfarm.net postfix/smtps/smtpd[916121]: lost connection after AUTH from unknown[177.154.72.25] Jun 16 05:08:39 mail.srvfarm.net postfix/smtps/smtpd[915915]: warning: unknown[177.154.72.25]: SASL PLAIN authentication failed: Jun 16 05:08:40 mail.srvfarm.net postfix/smtps/smtpd[915915]: lost connection after AUTH from unknown[177.154.72.25] Jun 16 05:11:42 mail.srvfarm.net postfix/smtps/smtpd[938135]: warning: unknown[177.154.72.25]: SASL PLAIN authentication failed:	2020-06-16 17:22:17
159.65.136.196	attackbotsspam	Jun 16 08:34:22 mailserver sshd\[15781\]: Invalid user rust from 159.65.136.196 ...	2020-06-16 17:48:54
186.216.70.195	attackspam	Jun 16 05:10:17 mail.srvfarm.net postfix/smtps/smtpd[935140]: warning: unknown[186.216.70.195]: SASL PLAIN authentication failed: Jun 16 05:10:17 mail.srvfarm.net postfix/smtps/smtpd[935140]: lost connection after AUTH from unknown[186.216.70.195] Jun 16 05:11:40 mail.srvfarm.net postfix/smtps/smtpd[935166]: warning: unknown[186.216.70.195]: SASL PLAIN authentication failed: Jun 16 05:11:41 mail.srvfarm.net postfix/smtps/smtpd[935166]: lost connection after AUTH from unknown[186.216.70.195] Jun 16 05:13:51 mail.srvfarm.net postfix/smtps/smtpd[914306]: lost connection after CONNECT from unknown[186.216.70.195]	2020-06-16 17:17:58
103.136.75.206	attackspambots	Jun 16 05:04:45 mail.srvfarm.net postfix/smtps/smtpd[916122]: warning: unknown[103.136.75.206]: SASL PLAIN authentication failed: Jun 16 05:04:45 mail.srvfarm.net postfix/smtps/smtpd[916122]: lost connection after AUTH from unknown[103.136.75.206] Jun 16 05:05:24 mail.srvfarm.net postfix/smtps/smtpd[935100]: lost connection after CONNECT from unknown[103.136.75.206] Jun 16 05:13:05 mail.srvfarm.net postfix/smtps/smtpd[935104]: warning: unknown[103.136.75.206]: SASL PLAIN authentication failed: Jun 16 05:13:05 mail.srvfarm.net postfix/smtps/smtpd[935104]: lost connection after AUTH from unknown[103.136.75.206]	2020-06-16 17:26:02
177.10.240.103	attackspambots	Jun 16 05:10:08 mail.srvfarm.net postfix/smtpd[935949]: warning: unknown[177.10.240.103]: SASL PLAIN authentication failed: Jun 16 05:10:08 mail.srvfarm.net postfix/smtpd[935949]: lost connection after AUTH from unknown[177.10.240.103] Jun 16 05:10:15 mail.srvfarm.net postfix/smtps/smtpd[935105]: warning: unknown[177.10.240.103]: SASL PLAIN authentication failed: Jun 16 05:10:15 mail.srvfarm.net postfix/smtps/smtpd[935105]: lost connection after AUTH from unknown[177.10.240.103] Jun 16 05:11:51 mail.srvfarm.net postfix/smtps/smtpd[938134]: warning: unknown[177.10.240.103]: SASL PLAIN authentication failed:	2020-06-16 17:23:16
177.74.181.26	attack	Jun 16 05:06:52 mail.srvfarm.net postfix/smtps/smtpd[935166]: warning: 177-74-181-26.dynamic.mdnetfibra.com[177.74.181.26]: SASL PLAIN authentication failed: Jun 16 05:06:53 mail.srvfarm.net postfix/smtps/smtpd[935166]: lost connection after AUTH from 177-74-181-26.dynamic.mdnetfibra.com[177.74.181.26] Jun 16 05:06:57 mail.srvfarm.net postfix/smtps/smtpd[914307]: warning: 177-74-181-26.dynamic.mdnetfibra.com[177.74.181.26]: SASL PLAIN authentication failed: Jun 16 05:06:58 mail.srvfarm.net postfix/smtps/smtpd[914307]: lost connection after AUTH from 177-74-181-26.dynamic.mdnetfibra.com[177.74.181.26] Jun 16 05:09:48 mail.srvfarm.net postfix/smtps/smtpd[916122]: warning: 177-74-181-26.dynamic.mdnetfibra.com[177.74.181.26]: SASL PLAIN authentication failed:	2020-06-16 17:38:42
177.154.234.254	attackbotsspam	Jun 16 05:04:04 mail.srvfarm.net postfix/smtps/smtpd[915914]: warning: unknown[177.154.234.254]: SASL PLAIN authentication failed: Jun 16 05:04:05 mail.srvfarm.net postfix/smtps/smtpd[915914]: lost connection after AUTH from unknown[177.154.234.254] Jun 16 05:08:21 mail.srvfarm.net postfix/smtps/smtpd[915915]: warning: unknown[177.154.234.254]: SASL PLAIN authentication failed: Jun 16 05:08:22 mail.srvfarm.net postfix/smtps/smtpd[915915]: lost connection after AUTH from unknown[177.154.234.254] Jun 16 05:10:19 mail.srvfarm.net postfix/smtps/smtpd[917496]: warning: unknown[177.154.234.254]: SASL PLAIN authentication failed:	2020-06-16 17:21:17
95.173.68.204	attackspam	Jun 16 09:38:23 mail.srvfarm.net postfix/smtps/smtpd[1099748]: warning: unknown[95.173.68.204]: SASL PLAIN authentication failed: Jun 16 09:38:23 mail.srvfarm.net postfix/smtps/smtpd[1099748]: lost connection after AUTH from unknown[95.173.68.204] Jun 16 09:38:44 mail.srvfarm.net postfix/smtpd[1104278]: warning: unknown[95.173.68.204]: SASL PLAIN authentication failed: Jun 16 09:38:44 mail.srvfarm.net postfix/smtpd[1104278]: lost connection after AUTH from unknown[95.173.68.204] Jun 16 09:45:00 mail.srvfarm.net postfix/smtps/smtpd[1105851]: warning: unknown[95.173.68.204]: SASL PLAIN authentication failed:	2020-06-16 17:26:54
77.45.84.47	attackbotsspam	Jun 16 05:07:47 mail.srvfarm.net postfix/smtps/smtpd[935135]: warning: 77-45-84-47.sta.asta-net.com.pl[77.45.84.47]: SASL PLAIN authentication failed: Jun 16 05:07:47 mail.srvfarm.net postfix/smtps/smtpd[935135]: lost connection after AUTH from 77-45-84-47.sta.asta-net.com.pl[77.45.84.47] Jun 16 05:11:03 mail.srvfarm.net postfix/smtpd[935947]: lost connection after CONNECT from unknown[77.45.84.47] Jun 16 05:13:28 mail.srvfarm.net postfix/smtps/smtpd[914306]: warning: 77-45-84-47.sta.asta-net.com.pl[77.45.84.47]: SASL PLAIN authentication failed: Jun 16 05:13:28 mail.srvfarm.net postfix/smtps/smtpd[914306]: lost connection after AUTH from 77-45-84-47.sta.asta-net.com.pl[77.45.84.47]	2020-06-16 17:28:06
103.25.132.101	attack	Jun 16 05:05:04 mail.srvfarm.net postfix/smtpd[915628]: warning: unknown[103.25.132.101]: SASL PLAIN authentication failed: Jun 16 05:05:04 mail.srvfarm.net postfix/smtpd[915628]: lost connection after AUTH from unknown[103.25.132.101] Jun 16 05:07:21 mail.srvfarm.net postfix/smtpd[935209]: warning: unknown[103.25.132.101]: SASL PLAIN authentication failed: Jun 16 05:07:21 mail.srvfarm.net postfix/smtpd[935209]: lost connection after AUTH from unknown[103.25.132.101] Jun 16 05:11:13 mail.srvfarm.net postfix/smtps/smtpd[938097]: lost connection after CONNECT from unknown[103.25.132.101]	2020-06-16 17:26:26
167.99.224.160	attack	$f2bV_matches	2020-06-16 17:45:23
103.57.84.82	attackspam	SMTP/25/465/587 Probe, BadAuth, SPAM, Hack -	2020-06-16 17:54:23

最近上报的IP列表

171.97.101.139	52.210.84.19	172.196.94.29	21.53.94.212
115.178.202.197	201.45.79.212	87.117.178.105	50.100.75.202
196.77.58.150	171.233.180.220	192.99.120.29	171.225.251.87
156.213.136.171	134.209.169.239	109.79.242.235	59.110.68.253
47.116.106.223	14.187.1.251	191.232.245.90	188.255.246.114