45.192.138.55 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Seychelles

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.192.138.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6843
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.192.138.55.			IN	A

;; AUTHORITY SECTION:
.			494	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022101100 1800 900 604800 86400

;; Query time: 98 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 11 22:41:52 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 55.138.192.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 55.138.192.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
39.38.236.240	attack	39.38.236.240 - - \[16/Mar/2020:07:34:33 -0700\] "POST /index.php/admin HTTP/1.1" 404 2040739.38.236.240 - - \[16/Mar/2020:07:34:34 -0700\] "POST /index.php/admin/index/ HTTP/1.1" 404 2043539.38.236.240 - - \[16/Mar/2020:07:34:34 -0700\] "POST /index.php/admin/sales_order/ HTTP/1.1" 404 20459 ...	2020-03-17 07:33:03
129.204.101.132	attack	Mar 16 22:24:16 localhost sshd\[27688\]: Invalid user ts3bot from 129.204.101.132 port 47958 Mar 16 22:24:16 localhost sshd\[27688\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.101.132 Mar 16 22:24:19 localhost sshd\[27688\]: Failed password for invalid user ts3bot from 129.204.101.132 port 47958 ssh2 ...	2020-03-17 07:28:56
41.223.142.211	attackspam	Mar 17 00:35:19 host01 sshd[19265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.223.142.211 Mar 17 00:35:22 host01 sshd[19265]: Failed password for invalid user xiaorunqiu from 41.223.142.211 port 54299 ssh2 Mar 17 00:40:08 host01 sshd[20121]: Failed password for root from 41.223.142.211 port 59991 ssh2 ...	2020-03-17 07:44:44
84.64.184.225	attackspam	Mar 16 15:34:52 debian-2gb-nbg1-2 kernel: \[6628412.651868\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=84.64.184.225 DST=195.201.40.59 LEN=211 TOS=0x00 PREC=0x00 TTL=113 ID=9566 PROTO=UDP SPT=61504 DPT=61672 LEN=191	2020-03-17 07:23:56
51.83.19.172	attackbotsspam	Invalid user billy from 51.83.19.172 port 44288	2020-03-17 07:39:59
101.231.124.6	attackbotsspam	Mar 17 00:35:08 host01 sshd[19231]: Failed password for root from 101.231.124.6 port 41243 ssh2 Mar 17 00:37:40 host01 sshd[19673]: Failed password for root from 101.231.124.6 port 60333 ssh2 ...	2020-03-17 07:48:38
109.94.223.130	attackspam	B: Magento admin pass test (wrong country)	2020-03-17 07:38:55
134.175.154.22	attackspambots	Mar 16 18:40:34 marvibiene sshd[48827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.154.22 user=root Mar 16 18:40:36 marvibiene sshd[48827]: Failed password for root from 134.175.154.22 port 56988 ssh2 Mar 16 19:08:23 marvibiene sshd[49042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.154.22 user=root Mar 16 19:08:26 marvibiene sshd[49042]: Failed password for root from 134.175.154.22 port 35748 ssh2 ...	2020-03-17 07:41:50
177.191.213.180	attackbots	Automatic report - Port Scan Attack	2020-03-17 07:32:29
218.92.0.203	attackbots	2020-03-17T00:30:44.863812vps751288.ovh.net sshd\[878\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.203 user=root 2020-03-17T00:30:47.126677vps751288.ovh.net sshd\[878\]: Failed password for root from 218.92.0.203 port 61282 ssh2 2020-03-17T00:30:49.055154vps751288.ovh.net sshd\[878\]: Failed password for root from 218.92.0.203 port 61282 ssh2 2020-03-17T00:30:50.923779vps751288.ovh.net sshd\[878\]: Failed password for root from 218.92.0.203 port 61282 ssh2 2020-03-17T00:32:10.935154vps751288.ovh.net sshd\[898\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.203 user=root	2020-03-17 07:43:06
125.160.201.242	attackbots	[Tue Mar 17 06:39:38.053375 2020] [:error] [pid 20853:tid 140439655249664] [client 125.160.201.242:35608] [client 125.160.201.242] ModSecurity: Access denied with code 403 (phase 4). Pattern match "^5\\\\d{2}$" at RESPONSE_STATUS. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/RESPONSE-950-DATA-LEAKAGES.conf"] [line "118"] [id "950100"] [msg "The Application Returned a 500-Level Status Code"] [data "Matched Data: 500 found within RESPONSE_STATUS: 500"] [severity "ERROR"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-disclosure"] [tag "WASCTC/WASC-13"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.6"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php"] [unique_id "XnAOOaEzxiYbKEFqAfoYhwAAAAE"] ...	2020-03-17 08:03:06
123.231.105.184	attackbotsspam	Detected by ModSecurity. Request URI: /wp-login.php	2020-03-17 07:30:09
190.12.115.8	attackbots	1584369288 - 03/16/2020 15:34:48 Host: 190.12.115.8/190.12.115.8 Port: 445 TCP Blocked	2020-03-17 07:25:29
89.248.168.202	attack	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-03-17 07:51:41
89.34.26.129	attackspambots	DATE:2020-03-17 00:40:08, IP:89.34.26.129, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-03-17 07:45:51

最近上报的IP列表

49.254.73.13	45.134.224.131	81.170.246.36	176.106.122.56
79.151.85.74	119.91.61.108	194.110.150.21	83.171.255.241
40.126.64.23	45.130.60.78	88.218.47.15	193.56.67.125
93.137.50.144	188.10.229.112	149.18.31.44	104.227.205.89
200.32.80.50	194.99.26.111	38.242.156.236	45.199.136.27