45.225.140.139

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Brazil

运营商(isp): LT Solucoes

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Honeypot attack, port: 4567, PTR: PTR record not found	2020-02-20 04:04:21

相同子网IP讨论:

IP	类型	评论内容	时间
45.225.140.239	attack	Unauthorized connection attempt detected from IP address 45.225.140.239 to port 81	2020-04-13 00:06:53
45.225.140.97	attackspam	" "	2020-03-11 07:04:32
45.225.140.208	attack	Unauthorized connection attempt detected from IP address 45.225.140.208 to port 4567 [J]	2020-01-23 00:10:50
45.225.140.142	attackspambots	Unauthorized connection attempt detected from IP address 45.225.140.142 to port 4567 [J]	2020-01-17 20:07:46
45.225.140.208	attackbotsspam	Port scan on 1 port(s): 8080	2020-01-13 18:56:49

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.225.140.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35736
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.225.140.139.			IN	A

;; AUTHORITY SECTION:
.			565	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021901 1800 900 604800 86400

;; Query time: 210 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 04:04:18 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 139.140.225.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.140.225.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
122.228.19.79	attackbotsspam	122.228.19.79 was recorded 20 times by 5 hosts attempting to connect to the following ports: 11300,5632,623,64738,40001,8090,9000,8010,8333,9001,8140,4800,1433,6000,5222,1099,5443,20476,5351,7. Incident counter (4h, 24h, all-time): 20, 94, 15364	2020-03-05 13:05:08
218.92.0.204	attack	2020-03-05T00:08:46.557708xentho-1 sshd[261878]: Failed password for root from 218.92.0.204 port 35306 ssh2 2020-03-05T00:08:44.786077xentho-1 sshd[261878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.204 user=root 2020-03-05T00:08:46.557708xentho-1 sshd[261878]: Failed password for root from 218.92.0.204 port 35306 ssh2 2020-03-05T00:08:50.213555xentho-1 sshd[261878]: Failed password for root from 218.92.0.204 port 35306 ssh2 2020-03-05T00:08:44.786077xentho-1 sshd[261878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.204 user=root 2020-03-05T00:08:46.557708xentho-1 sshd[261878]: Failed password for root from 218.92.0.204 port 35306 ssh2 2020-03-05T00:08:50.213555xentho-1 sshd[261878]: Failed password for root from 218.92.0.204 port 35306 ssh2 2020-03-05T00:08:53.736969xentho-1 sshd[261878]: Failed password for root from 218.92.0.204 port 35306 ssh2 2020-03-05T00:10:31.780641xent ...	2020-03-05 13:31:24
206.189.73.164	attackbotsspam	Mar 5 05:49:22 sd-53420 sshd\[23514\]: Invalid user test from 206.189.73.164 Mar 5 05:49:22 sd-53420 sshd\[23514\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.73.164 Mar 5 05:49:25 sd-53420 sshd\[23514\]: Failed password for invalid user test from 206.189.73.164 port 57674 ssh2 Mar 5 05:55:22 sd-53420 sshd\[24040\]: Invalid user remote from 206.189.73.164 Mar 5 05:55:22 sd-53420 sshd\[24040\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.73.164 ...	2020-03-05 13:05:44
77.158.71.118	attackbotsspam	(sshd) Failed SSH login from 77.158.71.118 (FR/France/118.71.158.77.rev.sfr.net): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 5 05:39:02 amsweb01 sshd[11148]: Invalid user xautomation from 77.158.71.118 port 52970 Mar 5 05:39:05 amsweb01 sshd[11148]: Failed password for invalid user xautomation from 77.158.71.118 port 52970 ssh2 Mar 5 05:47:10 amsweb01 sshd[12102]: Invalid user activiti from 77.158.71.118 port 34862 Mar 5 05:47:12 amsweb01 sshd[12102]: Failed password for invalid user activiti from 77.158.71.118 port 34862 ssh2 Mar 5 05:55:29 amsweb01 sshd[12908]: Failed password for invalid user ftp from 77.158.71.118 port 44974 ssh2	2020-03-05 13:01:40
92.222.89.7	attackbots	Mar 5 06:13:17 silence02 sshd[14449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.89.7 Mar 5 06:13:19 silence02 sshd[14449]: Failed password for invalid user hadoop from 92.222.89.7 port 57570 ssh2 Mar 5 06:22:27 silence02 sshd[14925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.89.7	2020-03-05 13:30:14
220.225.126.55	attackspam	2020-03-05T05:14:02.198768ns386461 sshd\[9506\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.225.126.55 user=root 2020-03-05T05:14:04.741929ns386461 sshd\[9506\]: Failed password for root from 220.225.126.55 port 58052 ssh2 2020-03-05T05:59:10.922320ns386461 sshd\[17695\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.225.126.55 user=root 2020-03-05T05:59:12.893158ns386461 sshd\[17695\]: Failed password for root from 220.225.126.55 port 34346 ssh2 2020-03-05T06:10:04.622420ns386461 sshd\[27029\]: Invalid user test3 from 220.225.126.55 port 46240 2020-03-05T06:10:04.627008ns386461 sshd\[27029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.225.126.55 ...	2020-03-05 13:13:09
141.237.26.252	attack	Telnet Server BruteForce Attack	2020-03-05 13:23:36
91.212.150.145	attackspam	SSH invalid-user multiple login try	2020-03-05 13:17:42
212.34.240.65	attackspam	Unauthorised access (Mar 5) SRC=212.34.240.65 LEN=40 TTL=113 ID=256 TCP DPT=139 WINDOW=16384 SYN Unauthorised access (Mar 4) SRC=212.34.240.65 LEN=40 TTL=110 ID=256 TCP DPT=139 WINDOW=16384 SYN Unauthorised access (Mar 3) SRC=212.34.240.65 LEN=40 TTL=111 ID=256 TCP DPT=139 WINDOW=16384 SYN Unauthorised access (Mar 2) SRC=212.34.240.65 LEN=40 TTL=113 ID=256 TCP DPT=139 WINDOW=16384 SYN	2020-03-05 13:05:26
79.166.136.15	attackbots	Telnet Server BruteForce Attack	2020-03-05 13:29:50
103.93.221.228	attack	20/3/4@23:54:52: FAIL: Alarm-Network address from=103.93.221.228 20/3/4@23:54:52: FAIL: Alarm-Network address from=103.93.221.228 ...	2020-03-05 13:25:25
218.92.0.173	attackbots	SSH Brute-Force attacks	2020-03-05 13:23:17
201.205.137.34	attackspambots	Mar 5 05:54:56 debian-2gb-nbg1-2 kernel: \[5643267.595907\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=201.205.137.34 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=50 ID=20546 PROTO=TCP SPT=33696 DPT=23 WINDOW=41860 RES=0x00 SYN URGP=0	2020-03-05 13:20:42
101.255.81.91	attackbotsspam	Mar 5 00:29:39 NPSTNNYC01T sshd[24506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.255.81.91 Mar 5 00:29:42 NPSTNNYC01T sshd[24506]: Failed password for invalid user fjseclib from 101.255.81.91 port 48592 ssh2 Mar 5 00:36:50 NPSTNNYC01T sshd[25032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.255.81.91 ...	2020-03-05 13:37:24
222.186.175.202	attack	2020-03-04T22:47:29.838146homeassistant sshd[12991]: Failed password for root from 222.186.175.202 port 31846 ssh2 2020-03-05T05:25:35.070463homeassistant sshd[23678]: Failed none for root from 222.186.175.202 port 12470 ssh2 2020-03-05T05:25:35.287834homeassistant sshd[23678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root ...	2020-03-05 13:33:06

最近上报的IP列表

84.157.210.93	202.94.163.27	188.83.78.189	174.82.161.83
201.156.156.200	79.231.238.126	24.182.46.52	76.67.81.21
8.34.40.199	123.103.183.227	1.179.141.231	122.86.36.231
95.177.31.230	177.247.135.122	100.2.79.36	52.91.86.16
133.35.188.6	203.166.59.222	1.54.210.121	154.232.78.160