45.148.10.11 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): Bunea Telecom SRL

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	scans once in preceeding hours on the ports (in chronological order) 1900 resulting in total of 1 scans from 45.148.10.0/24 block.	2020-09-14 02:43:26
attackbotsspam	Port scanning [3 denied]	2020-09-13 18:42:31
attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 23 - port: 6881 proto: udp cat: Misc Attackbytes: 133	2020-09-04 02:16:10
attackspam	UDP 45.148.10.11:49054 -> port 37810, len 33	2020-09-03 17:42:56
attackspam	UDP 45.148.10.11:40753 -> port 3702, len 57	2020-08-27 01:17:22

相同子网IP讨论:

IP	类型	评论内容	时间
45.148.10.247	botsattack	45.148.10.247/Trojan Linux	2025-11-19 14:09:00
45.148.10.241	attack	DDoS Inbound	2023-11-15 18:54:04
45.148.10.28	attackspam	Oct 13 20:18:40 sshgateway sshd\[2360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.28 user=root Oct 13 20:18:43 sshgateway sshd\[2360\]: Failed password for root from 45.148.10.28 port 40178 ssh2 Oct 13 20:19:07 sshgateway sshd\[2364\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.28 user=root	2020-10-14 02:28:44
45.148.10.15	attackspambots	Bruteforce detected by fail2ban	2020-10-13 21:25:53
45.148.10.186	attackspam	Unable to negotiate with 45.148.10.186 port 47964: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]	2020-10-13 21:24:21
45.148.10.28	attackbotsspam	SSH Server Abuse (45.148.10.28 as ): ...	2020-10-13 17:43:00
45.148.10.15	attackbotsspam	Oct 13 05:18:03 server2 sshd\[31409\]: Invalid user user from 45.148.10.15 Oct 13 05:18:48 server2 sshd\[31424\]: Invalid user server from 45.148.10.15 Oct 13 05:19:33 server2 sshd\[31465\]: Invalid user steam from 45.148.10.15 Oct 13 05:20:17 server2 sshd\[31678\]: Invalid user vmware from 45.148.10.15 Oct 13 05:21:00 server2 sshd\[31685\]: Invalid user microsoft from 45.148.10.15 Oct 13 05:21:44 server2 sshd\[31730\]: Invalid user cloud from 45.148.10.15	2020-10-13 12:52:46
45.148.10.186	attackspam	Oct 13 05:33:03 ns308116 sshd[11001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:05 ns308116 sshd[11001]: Failed password for root from 45.148.10.186 port 41866 ssh2 Oct 13 05:33:38 ns308116 sshd[11016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:40 ns308116 sshd[11016]: Failed password for root from 45.148.10.186 port 39380 ssh2 Oct 13 05:34:15 ns308116 sshd[11027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root ...	2020-10-13 12:50:57
45.148.10.15	attack	Oct 12 23:36:06 srv-ubuntu-dev3 sshd[31523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.15 Oct 12 23:36:06 srv-ubuntu-dev3 sshd[31523]: Invalid user user from 45.148.10.15 Oct 12 23:36:08 srv-ubuntu-dev3 sshd[31523]: Failed password for invalid user user from 45.148.10.15 port 40704 ssh2 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: Invalid user 123Diego from 45.148.10.15 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.15 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: Invalid user 123Diego from 45.148.10.15 Oct 12 23:36:40 srv-ubuntu-dev3 sshd[31590]: Failed password for invalid user 123Diego from 45.148.10.15 port 59760 ssh2 Oct 12 23:37:17 srv-ubuntu-dev3 sshd[31656]: Invalid user Alphanetworks from 45.148.10.15 Oct 12 23:37:17 srv-ubuntu-dev3 sshd[31656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rh ...	2020-10-13 05:40:39
45.148.10.186	attack	Fail2Ban	2020-10-13 05:39:02
45.148.10.15	attackbotsspam	Fail2Ban	2020-10-12 05:52:51
45.148.10.65	attackbots	Invalid user ubuntu from 45.148.10.65 port 43138	2020-10-12 05:36:52
45.148.10.15	attack	Brute force attempt	2020-10-11 21:59:38
45.148.10.65	attackspam	Oct 01 10:49:15 host sshd[12378]: Invalid user ubuntu from 45.148.10.65 port 41060	2020-10-11 21:43:21
45.148.10.28	attack	Fail2Ban automatic report: SSH brute-force:	2020-10-11 21:05:28

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.148.10.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4075
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.148.10.11.			IN	A

;; AUTHORITY SECTION:
.			530	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082500 1800 900 604800 86400

;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Aug 25 20:18:20 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 11.10.148.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 11.10.148.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
187.189.241.135	attack	Sep 6 09:15:12 markkoudstaal sshd[21088]: Failed password for root from 187.189.241.135 port 38579 ssh2 Sep 6 09:18:41 markkoudstaal sshd[22047]: Failed password for root from 187.189.241.135 port 29018 ssh2 Sep 6 09:22:21 markkoudstaal sshd[23044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.189.241.135 ...	2020-09-06 19:16:25
211.144.68.227	attackspam	Sep 6 11:19:43 root sshd[24194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.144.68.227 ...	2020-09-06 19:22:19
36.155.115.227	attackbots	Sep 6 05:58:28 sshgateway sshd\[16152\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.115.227 user=root Sep 6 05:58:30 sshgateway sshd\[16152\]: Failed password for root from 36.155.115.227 port 57112 ssh2 Sep 6 06:00:58 sshgateway sshd\[16977\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.115.227 user=root	2020-09-06 18:46:59
185.81.157.220	attack	WordPress vulnerability sniffing (looking for /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php)	2020-09-06 18:55:13
45.148.9.160	attackbots	e-mail spam	2020-09-06 19:15:13
153.193.197.215	attackspambots	...	2020-09-06 18:53:54
220.81.62.43	attack	DATE:2020-09-05 20:28:08, IP:220.81.62.43, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-09-06 19:14:03
107.175.33.19	attack	Invalid user fake from 107.175.33.19 port 35873	2020-09-06 19:17:33
124.239.218.188	attack	(sshd) Failed SSH login from 124.239.218.188 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 5 22:12:40 optimus sshd[3959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.239.218.188 user=root Sep 5 22:12:42 optimus sshd[3959]: Failed password for root from 124.239.218.188 port 11775 ssh2 Sep 5 22:17:16 optimus sshd[6231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.239.218.188 user=root Sep 5 22:17:18 optimus sshd[6231]: Failed password for root from 124.239.218.188 port 42791 ssh2 Sep 5 22:21:49 optimus sshd[8924]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.239.218.188 user=root	2020-09-06 19:27:37
114.67.168.0	attackbotsspam	Sep 6 05:40:26 zeus postfix/smtpd[23355]: warning: unknown[114.67.168.0]: SASL LOGIN authentication failed: authentication failure Sep 6 05:40:28 zeus postfix/smtpd[23355]: warning: unknown[114.67.168.0]: SASL LOGIN authentication failed: authentication failure Sep 6 05:40:30 zeus postfix/smtpd[23350]: warning: unknown[114.67.168.0]: SASL LOGIN authentication failed: authentication failure ...	2020-09-06 19:01:23
119.29.13.114	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-06 19:02:35
106.13.83.202	attackbots	Sep 6 09:21:03 sshgateway sshd\[2685\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.83.202 user=root Sep 6 09:21:05 sshgateway sshd\[2685\]: Failed password for root from 106.13.83.202 port 55664 ssh2 Sep 6 09:23:02 sshgateway sshd\[3917\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.83.202 user=root Sep 6 09:23:05 sshgateway sshd\[3917\]: Failed password for root from 106.13.83.202 port 58570 ssh2 Sep 6 09:26:46 sshgateway sshd\[6229\]: Invalid user support from 106.13.83.202 Sep 6 09:26:46 sshgateway sshd\[6229\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.83.202 Sep 6 09:26:49 sshgateway sshd\[6229\]: Failed password for invalid user support from 106.13.83.202 port 36132 ssh2 Sep 6 09:28:39 sshgateway sshd\[7379\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.83.202 user=root Sep 6	2020-09-06 19:05:44
5.188.158.147	attackspam	RDP brute force attack detected by fail2ban	2020-09-06 19:10:03
5.235.191.248	attack	Telnet Honeypot -> Telnet Bruteforce / Login	2020-09-06 19:11:11
83.69.213.45	attack	Port Scan ...	2020-09-06 18:50:26

最近上报的IP列表

231.101.191.215	189.37.66.17	57.212.192.58	17.2.112.78
62.190.97.70	23.114.58.200	247.219.120.20	164.208.138.247
136.119.171.233	86.82.218.45	54.39.1.253	106.52.211.230
45.71.128.91	8.100.28.70	201.69.153.145	193.112.207.200
183.154.16.164	88.247.68.116	24.218.231.49	103.6.49.43