45.148.10.11 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): Bunea Telecom SRL

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	scans once in preceeding hours on the ports (in chronological order) 1900 resulting in total of 1 scans from 45.148.10.0/24 block.	2020-09-14 02:43:26
attackbotsspam	Port scanning [3 denied]	2020-09-13 18:42:31
attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 23 - port: 6881 proto: udp cat: Misc Attackbytes: 133	2020-09-04 02:16:10
attackspam	UDP 45.148.10.11:49054 -> port 37810, len 33	2020-09-03 17:42:56
attackspam	UDP 45.148.10.11:40753 -> port 3702, len 57	2020-08-27 01:17:22

相同子网IP讨论:

IP	类型	评论内容	时间
45.148.10.247	botsattack	45.148.10.247/Trojan Linux	2025-11-19 14:09:00
45.148.10.241	attack	DDoS Inbound	2023-11-15 18:54:04
45.148.10.28	attackspam	Oct 13 20:18:40 sshgateway sshd\[2360\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.28 user=root Oct 13 20:18:43 sshgateway sshd\[2360\]: Failed password for root from 45.148.10.28 port 40178 ssh2 Oct 13 20:19:07 sshgateway sshd\[2364\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.28 user=root	2020-10-14 02:28:44
45.148.10.15	attackspambots	Bruteforce detected by fail2ban	2020-10-13 21:25:53
45.148.10.186	attackspam	Unable to negotiate with 45.148.10.186 port 47964: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]	2020-10-13 21:24:21
45.148.10.28	attackbotsspam	SSH Server Abuse (45.148.10.28 as ): ...	2020-10-13 17:43:00
45.148.10.15	attackbotsspam	Oct 13 05:18:03 server2 sshd\[31409\]: Invalid user user from 45.148.10.15 Oct 13 05:18:48 server2 sshd\[31424\]: Invalid user server from 45.148.10.15 Oct 13 05:19:33 server2 sshd\[31465\]: Invalid user steam from 45.148.10.15 Oct 13 05:20:17 server2 sshd\[31678\]: Invalid user vmware from 45.148.10.15 Oct 13 05:21:00 server2 sshd\[31685\]: Invalid user microsoft from 45.148.10.15 Oct 13 05:21:44 server2 sshd\[31730\]: Invalid user cloud from 45.148.10.15	2020-10-13 12:52:46
45.148.10.186	attackspam	Oct 13 05:33:03 ns308116 sshd[11001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:05 ns308116 sshd[11001]: Failed password for root from 45.148.10.186 port 41866 ssh2 Oct 13 05:33:38 ns308116 sshd[11016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:40 ns308116 sshd[11016]: Failed password for root from 45.148.10.186 port 39380 ssh2 Oct 13 05:34:15 ns308116 sshd[11027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root ...	2020-10-13 12:50:57
45.148.10.15	attack	Oct 12 23:36:06 srv-ubuntu-dev3 sshd[31523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.15 Oct 12 23:36:06 srv-ubuntu-dev3 sshd[31523]: Invalid user user from 45.148.10.15 Oct 12 23:36:08 srv-ubuntu-dev3 sshd[31523]: Failed password for invalid user user from 45.148.10.15 port 40704 ssh2 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: Invalid user 123Diego from 45.148.10.15 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.15 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: Invalid user 123Diego from 45.148.10.15 Oct 12 23:36:40 srv-ubuntu-dev3 sshd[31590]: Failed password for invalid user 123Diego from 45.148.10.15 port 59760 ssh2 Oct 12 23:37:17 srv-ubuntu-dev3 sshd[31656]: Invalid user Alphanetworks from 45.148.10.15 Oct 12 23:37:17 srv-ubuntu-dev3 sshd[31656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rh ...	2020-10-13 05:40:39
45.148.10.186	attack	Fail2Ban	2020-10-13 05:39:02
45.148.10.15	attackbotsspam	Fail2Ban	2020-10-12 05:52:51
45.148.10.65	attackbots	Invalid user ubuntu from 45.148.10.65 port 43138	2020-10-12 05:36:52
45.148.10.15	attack	Brute force attempt	2020-10-11 21:59:38
45.148.10.65	attackspam	Oct 01 10:49:15 host sshd[12378]: Invalid user ubuntu from 45.148.10.65 port 41060	2020-10-11 21:43:21
45.148.10.28	attack	Fail2Ban automatic report: SSH brute-force:	2020-10-11 21:05:28

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.148.10.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4075
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.148.10.11.			IN	A

;; AUTHORITY SECTION:
.			530	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082500 1800 900 604800 86400

;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Aug 25 20:18:20 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 11.10.148.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 11.10.148.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
14.29.218.53	attackspambots	Feb 9 14:26:43 mockhub sshd[6733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.218.53 Feb 9 14:26:46 mockhub sshd[6733]: Failed password for invalid user ajs from 14.29.218.53 port 40379 ssh2 ...	2020-02-10 07:33:07
222.186.169.192	attack	Feb 9 13:32:10 php1 sshd\[7174\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.192 user=root Feb 9 13:32:12 php1 sshd\[7174\]: Failed password for root from 222.186.169.192 port 36796 ssh2 Feb 9 13:32:15 php1 sshd\[7174\]: Failed password for root from 222.186.169.192 port 36796 ssh2 Feb 9 13:32:26 php1 sshd\[7179\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.192 user=root Feb 9 13:32:28 php1 sshd\[7179\]: Failed password for root from 222.186.169.192 port 6298 ssh2	2020-02-10 07:33:50
36.67.149.5	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-10 07:19:58
119.29.129.88	attackspam	$f2bV_matches	2020-02-10 07:19:02
165.227.179.138	attackbotsspam	no	2020-02-10 07:23:55
61.147.103.154	attack	[mysql-auth] MySQL auth attack	2020-02-10 07:41:15
194.204.236.164	attack	Hacking	2020-02-10 07:28:19
167.71.220.75	botsattackproxynormal	tantepoker.me	2020-02-10 07:22:02
89.163.239.216	attackbotsspam	xmlrpc attack	2020-02-10 07:19:34
96.126.103.73	attackspam	Unauthorized connection attempt from IP address 96.126.103.73 on Port 445(SMB)	2020-02-10 07:49:47
217.15.61.178	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-10 07:54:14
47.89.179.29	attack	wp-login.php	2020-02-10 07:37:17
118.25.178.131	attackbotsspam	Feb 9 22:04:52 vlre-nyc-1 sshd\[8511\]: Invalid user rsv from 118.25.178.131 Feb 9 22:04:52 vlre-nyc-1 sshd\[8511\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.178.131 Feb 9 22:04:53 vlre-nyc-1 sshd\[8511\]: Failed password for invalid user rsv from 118.25.178.131 port 53620 ssh2 Feb 9 22:07:44 vlre-nyc-1 sshd\[8567\]: Invalid user rph from 118.25.178.131 Feb 9 22:07:44 vlre-nyc-1 sshd\[8567\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.178.131 ...	2020-02-10 07:45:41
122.225.85.78	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-10 07:15:12
51.15.1.221	attackspambots	xmlrpc attack	2020-02-10 07:32:36

最近上报的IP列表

231.101.191.215	189.37.66.17	57.212.192.58	17.2.112.78
62.190.97.70	23.114.58.200	247.219.120.20	164.208.138.247
136.119.171.233	86.82.218.45	54.39.1.253	106.52.211.230
45.71.128.91	8.100.28.70	201.69.153.145	193.112.207.200
183.154.16.164	88.247.68.116	24.218.231.49	103.6.49.43