城市(city): unknown
省份(region): unknown
国家(country): Portugal
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 45.156.129.32 | attack | Malicious IP |
2024-06-11 21:03:25 |
| 45.156.129.23 | attack | hacking |
2024-02-21 16:21:38 |
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 45.154.220.0 - 45.157.167.255
CIDR: 45.154.224.0/19, 45.155.0.0/16, 45.157.0.0/17, 45.156.0.0/16, 45.154.220.0/22, 45.157.128.0/19, 45.157.160.0/21
NetName: RIPE
NetHandle: NET-45-154-220-0-1
Parent: NET45 (NET-45-0-0-0-0)
NetType: Early Registrations, Transferred to RIPE NCC
OriginAS:
Organization: RIPE Network Coordination Centre (RIPE)
RegDate: 2014-05-22
Updated: 2025-02-10
Comment: These addresses have been further assigned to users in the RIPE NCC region. Please note that the organization and point of contact details listed below are those of the RIPE NCC not the current address holder. ** You can find user contact information for the current address holder in the RIPE database at http://www.ripe.net/whois.
Ref: https://rdap.arin.net/registry/ip/45.154.220.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.ripe.net
OrgName: RIPE Network Coordination Centre
OrgId: RIPE
Address: P.O. Box 10096
City: Amsterdam
StateProv:
PostalCode: 1001EB
Country: NL
RegDate:
Updated: 2013-07-29
Ref: https://rdap.arin.net/registry/entity/RIPE
ReferralServer: whois.ripe.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
OrgAbuseHandle: ABUSE3850-ARIN
OrgAbuseName: Abuse Contact
OrgAbusePhone: +31205354444
OrgAbuseEmail: abuse@ripe.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
OrgTechHandle: RNO29-ARIN
OrgTechName: RIPE NCC Operations
OrgTechPhone: +31 20 535 4444
OrgTechEmail: hostmaster@ripe.net
OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.156.129.187
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60707
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;45.156.129.187. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026042702 1800 900 604800 86400
;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 28 13:01:02 CST 2026
;; MSG SIZE rcvd: 107187.129.156.45.in-addr.arpa domain name pointer sh-chi-us-gd17-wk102a.internet-census.org.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
187.129.156.45.in-addr.arpa name = sh-chi-us-gd17-wk102a.internet-census.org.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 157.230.129.73 | attackbots | Unauthorized connection attempt detected from IP address 157.230.129.73 to port 2220 [J] |
2020-01-07 21:16:31 |
| 51.83.255.93 | attackspam | Jan 7 12:45:31 node1 sshd[29755]: Address 51.83.255.93 maps to ip-51-83-255.eu, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jan 7 12:45:31 node1 sshd[29755]: Received disconnect from 51.83.255.93: 11: Normal Shutdown, Thank you for playing [preauth] Jan 7 12:45:47 node1 sshd[29766]: Address 51.83.255.93 maps to ip-51-83-255.eu, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jan 7 12:45:47 node1 sshd[29766]: Received disconnect from 51.83.255.93: 11: Normal Shutdown, Thank you for playing [preauth] Jan 7 12:46:03 node1 sshd[29835]: Address 51.83.255.93 maps to ip-51-83-255.eu, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jan 7 12:46:03 node1 sshd[29835]: Received disconnect from 51.83.255.93: 11: Normal Shutdown, Thank you for playing [preauth] Jan 7 12:46:18 node1 sshd[29877]: Address 51.83.255.93 maps to ip-51-83-255.eu, but this does not map back to the address - POSSIBLE BREAK-IN ATTE........ ------------------------------- |
2020-01-07 21:37:25 |
| 112.85.42.178 | attackbots | 2020-01-07T13:04:04.958513abusebot-3.cloudsearch.cf sshd[26712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root 2020-01-07T13:04:07.213612abusebot-3.cloudsearch.cf sshd[26712]: Failed password for root from 112.85.42.178 port 25214 ssh2 2020-01-07T13:04:09.777185abusebot-3.cloudsearch.cf sshd[26712]: Failed password for root from 112.85.42.178 port 25214 ssh2 2020-01-07T13:04:04.958513abusebot-3.cloudsearch.cf sshd[26712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root 2020-01-07T13:04:07.213612abusebot-3.cloudsearch.cf sshd[26712]: Failed password for root from 112.85.42.178 port 25214 ssh2 2020-01-07T13:04:09.777185abusebot-3.cloudsearch.cf sshd[26712]: Failed password for root from 112.85.42.178 port 25214 ssh2 2020-01-07T13:04:04.958513abusebot-3.cloudsearch.cf sshd[26712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruse ... |
2020-01-07 21:08:11 |
| 64.182.210.183 | attackspambots | tcp 1433 ms-sql-server |
2020-01-07 21:35:15 |
| 152.136.76.134 | attackbots | Jan 7 14:17:17 legacy sshd[10423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.76.134 Jan 7 14:17:19 legacy sshd[10423]: Failed password for invalid user test from 152.136.76.134 port 41873 ssh2 Jan 7 14:21:44 legacy sshd[10642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.76.134 ... |
2020-01-07 21:25:21 |
| 222.186.175.217 | attackspam | Jan 7 14:05:25 vps691689 sshd[5701]: Failed password for root from 222.186.175.217 port 29190 ssh2 Jan 7 14:05:38 vps691689 sshd[5701]: error: maximum authentication attempts exceeded for root from 222.186.175.217 port 29190 ssh2 [preauth] ... |
2020-01-07 21:06:53 |
| 103.27.9.135 | attackbots | Unauthorized connection attempt from IP address 103.27.9.135 on Port 445(SMB) |
2020-01-07 21:31:11 |
| 89.182.72.38 | attackbots | SSH/22 MH Probe, BF, Hack - |
2020-01-07 21:20:26 |
| 185.209.0.51 | attackbotsspam | 01/07/2020-08:31:55.349845 185.209.0.51 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-01-07 21:35:51 |
| 211.37.89.207 | normal | 누구신데 내 네이버 아이디로 로그인하세요? |
2020-01-07 21:19:22 |
| 68.183.4.129 | attackbotsspam | Unauthorized connection attempt detected from IP address 68.183.4.129 to port 2220 [J] |
2020-01-07 21:20:50 |
| 159.203.27.98 | attackbotsspam | Jan 7 12:12:57 zn008 sshd[3824]: Invalid user teamspeak from 159.203.27.98 Jan 7 12:12:57 zn008 sshd[3824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.27.98 Jan 7 12:12:59 zn008 sshd[3824]: Failed password for invalid user teamspeak from 159.203.27.98 port 55938 ssh2 Jan 7 12:12:59 zn008 sshd[3824]: Received disconnect from 159.203.27.98: 11: Bye Bye [preauth] Jan 7 12:17:10 zn008 sshd[4274]: Invalid user ftpserver from 159.203.27.98 Jan 7 12:17:10 zn008 sshd[4274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.27.98 Jan 7 12:17:13 zn008 sshd[4274]: Failed password for invalid user ftpserver from 159.203.27.98 port 56122 ssh2 Jan 7 12:17:13 zn008 sshd[4274]: Received disconnect from 159.203.27.98: 11: Bye Bye [preauth] Jan 7 12:19:18 zn008 sshd[4336]: Invalid user test0 from 159.203.27.98 Jan 7 12:19:18 zn008 sshd[4336]: pam_unix(sshd:auth): authentication ........ ------------------------------- |
2020-01-07 21:25:56 |
| 61.167.99.163 | attack | Jan 7 05:19:21 mockhub sshd[11907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.167.99.163 Jan 7 05:19:23 mockhub sshd[11907]: Failed password for invalid user exe from 61.167.99.163 port 46558 ssh2 ... |
2020-01-07 21:25:42 |
| 106.47.239.117 | attackbots | Unauthorized connection attempt from IP address 106.47.239.117 on Port 445(SMB) |
2020-01-07 21:08:31 |
| 41.230.105.36 | attackbots | Unauthorized connection attempt detected from IP address 41.230.105.36 to port 23 |
2020-01-07 20:58:34 |