城市(city): unknown
省份(region): unknown
国家(country): Portugal
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 45.156.129.32 | attack | Malicious IP |
2024-06-11 21:03:25 |
| 45.156.129.23 | attack | hacking |
2024-02-21 16:21:38 |
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 45.154.220.0 - 45.157.167.255
CIDR: 45.156.0.0/16, 45.154.224.0/19, 45.154.220.0/22, 45.157.128.0/19, 45.155.0.0/16, 45.157.160.0/21, 45.157.0.0/17
NetName: RIPE
NetHandle: NET-45-154-220-0-1
Parent: NET45 (NET-45-0-0-0-0)
NetType: Early Registrations, Transferred to RIPE NCC
OriginAS:
Organization: RIPE Network Coordination Centre (RIPE)
RegDate: 2014-05-22
Updated: 2025-02-10
Comment: These addresses have been further assigned to users in the RIPE NCC region. Please note that the organization and point of contact details listed below are those of the RIPE NCC not the current address holder. ** You can find user contact information for the current address holder in the RIPE database at http://www.ripe.net/whois.
Ref: https://rdap.arin.net/registry/ip/45.154.220.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.ripe.net
OrgName: RIPE Network Coordination Centre
OrgId: RIPE
Address: P.O. Box 10096
City: Amsterdam
StateProv:
PostalCode: 1001EB
Country: NL
RegDate:
Updated: 2013-07-29
Ref: https://rdap.arin.net/registry/entity/RIPE
ReferralServer: whois.ripe.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
OrgAbuseHandle: ABUSE3850-ARIN
OrgAbuseName: Abuse Contact
OrgAbusePhone: +31205354444
OrgAbuseEmail: abuse@ripe.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
OrgTechHandle: RNO29-ARIN
OrgTechName: RIPE NCC Operations
OrgTechPhone: +31 20 535 4444
OrgTechEmail: hostmaster@ripe.net
OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.156.129.168
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21862
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;45.156.129.168. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026020202 1800 900 604800 86400
;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 03 18:30:17 CST 2026
;; MSG SIZE rcvd: 107168.129.156.45.in-addr.arpa domain name pointer sh-chi-us-gp6-wk132a.internet-census.org.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
168.129.156.45.in-addr.arpa name = sh-chi-us-gp6-wk132a.internet-census.org.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 101.91.217.94 | attackspambots | Nov 3 15:32:37 sd-53420 sshd\[8010\]: Invalid user paul from 101.91.217.94 Nov 3 15:32:37 sd-53420 sshd\[8010\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.91.217.94 Nov 3 15:32:39 sd-53420 sshd\[8010\]: Failed password for invalid user paul from 101.91.217.94 port 48014 ssh2 Nov 3 15:38:18 sd-53420 sshd\[8400\]: User root from 101.91.217.94 not allowed because none of user's groups are listed in AllowGroups Nov 3 15:38:18 sd-53420 sshd\[8400\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.91.217.94 user=root ... |
2019-11-03 22:51:07 |
| 190.216.184.14 | attack | Spam mails sent to address hacked/leaked from Nexus Mods in July 2013 |
2019-11-03 23:24:03 |
| 177.134.206.46 | attackspam | Fail2Ban Ban Triggered |
2019-11-03 23:29:18 |
| 123.140.114.252 | attackbots | Nov 3 04:51:08 php1 sshd\[24079\]: Invalid user Bemvinda@123 from 123.140.114.252 Nov 3 04:51:08 php1 sshd\[24079\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.140.114.252 Nov 3 04:51:10 php1 sshd\[24079\]: Failed password for invalid user Bemvinda@123 from 123.140.114.252 port 52040 ssh2 Nov 3 04:55:47 php1 sshd\[25005\]: Invalid user stuckdexter@123 from 123.140.114.252 Nov 3 04:55:47 php1 sshd\[25005\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.140.114.252 |
2019-11-03 23:29:45 |
| 45.55.246.119 | attack | Automatic report - XMLRPC Attack |
2019-11-03 23:28:05 |
| 46.38.144.57 | attackspambots | Nov 3 15:58:48 webserver postfix/smtpd\[32700\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 3 15:59:58 webserver postfix/smtpd\[345\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 3 16:01:08 webserver postfix/smtpd\[32700\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 3 16:02:19 webserver postfix/smtpd\[345\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 3 16:03:29 webserver postfix/smtpd\[32700\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2019-11-03 23:16:33 |
| 167.71.226.158 | attackspambots | Nov 3 15:54:07 SilenceServices sshd[8032]: Failed password for root from 167.71.226.158 port 34920 ssh2 Nov 3 15:58:21 SilenceServices sshd[9231]: Failed password for root from 167.71.226.158 port 45364 ssh2 |
2019-11-03 23:23:04 |
| 103.129.98.170 | attackbots | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/103.129.98.170/ IN - 1H : (38) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IN NAME ASN : ASN138251 IP : 103.129.98.170 CIDR : 103.129.98.0/24 PREFIX COUNT : 3 UNIQUE IP COUNT : 768 ATTACKS DETECTED ASN138251 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-11-03 15:37:47 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery |
2019-11-03 23:08:10 |
| 107.170.23.212 | attackbotsspam | Automatic report - XMLRPC Attack |
2019-11-03 23:15:26 |
| 109.93.62.245 | attack | B: Magento admin pass test (wrong country) |
2019-11-03 23:26:36 |
| 117.185.62.146 | attackspam | Nov 3 15:53:30 nextcloud sshd\[10850\]: Invalid user myworkingcrack from 117.185.62.146 Nov 3 15:53:30 nextcloud sshd\[10850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.185.62.146 Nov 3 15:53:32 nextcloud sshd\[10850\]: Failed password for invalid user myworkingcrack from 117.185.62.146 port 46372 ssh2 ... |
2019-11-03 22:55:12 |
| 171.120.77.128 | attackbotsspam | Nov 3 15:34:45 ns382633 sshd\[12806\]: Invalid user admin from 171.120.77.128 port 41947 Nov 3 15:34:45 ns382633 sshd\[12806\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.120.77.128 Nov 3 15:34:46 ns382633 sshd\[12806\]: Failed password for invalid user admin from 171.120.77.128 port 41947 ssh2 Nov 3 15:37:26 ns382633 sshd\[13462\]: Invalid user ubuntu from 171.120.77.128 port 42312 Nov 3 15:37:26 ns382633 sshd\[13462\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.120.77.128 |
2019-11-03 23:22:51 |
| 218.29.108.186 | attackspam | Nov 3 09:37:40 web1 postfix/smtpd[6909]: warning: unknown[218.29.108.186]: SASL LOGIN authentication failed: authentication failure ... |
2019-11-03 23:12:00 |
| 211.144.12.75 | attackbotsspam | Nov 3 22:11:03 webhost01 sshd[6601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.144.12.75 Nov 3 22:11:05 webhost01 sshd[6601]: Failed password for invalid user sensivity from 211.144.12.75 port 32544 ssh2 ... |
2019-11-03 23:17:32 |
| 52.172.37.141 | attack | Nov 3 15:38:19 dedicated sshd[28243]: Invalid user sadasdasd from 52.172.37.141 port 56502 |
2019-11-03 22:51:30 |