45.55.135.4 - IPInfo

基本信息:

城市(city): Clifton

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
45.55.135.88	attack	45.55.135.88 - - \[29/Jun/2020:05:57:05 +0200\] "POST /wp-login.php HTTP/1.0" 200 6400 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - \[29/Jun/2020:05:57:12 +0200\] "POST /wp-login.php HTTP/1.0" 200 6267 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - \[29/Jun/2020:05:57:18 +0200\] "POST /wp-login.php HTTP/1.0" 200 6263 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-06-29 13:19:56
45.55.135.88	attackbotsspam	Automatically reported by fail2ban report script (mx1)	2020-06-26 13:00:44
45.55.135.88	attack	Wordpress login bruteforce	2020-06-24 21:02:23
45.55.135.88	attackspambots	Automatic report - XMLRPC Attack	2020-05-27 14:22:03
45.55.135.88	attack	CMS (WordPress or Joomla) login attempt.	2020-05-22 12:21:35
45.55.135.88	attackspam	45.55.135.88 - - [13/May/2020:14:46:53 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:46:58 +0200] "POST /wp-login.php HTTP/1.1" 200 2031 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:47:04 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:47:04 +0200] "POST /wp-login.php HTTP/1.1" 200 2030 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:47:09 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:47:10 +0200] "POST /wp-login.php HTTP/1.1" 200 2030 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/6 ...	2020-05-13 21:57:48
45.55.135.88	attack	WordPress XMLRPC scan :: 45.55.135.88 0.064 BYPASS [02/May/2020:03:55:43 0000] [censored_2] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-02 14:22:22
45.55.135.88	attackbots	php WP PHPmyadamin ABUSE blocked for 12h	2020-04-18 18:19:04
45.55.135.88	attack	WordPress wp-login brute force :: 45.55.135.88 0.104 - [14/Apr/2020:03:58:41 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 1804 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-04-14 13:05:13
45.55.135.88	attack	45.55.135.88 - - \[01/Apr/2020:12:18:59 +0200\] "POST /wp-login.php HTTP/1.0" 200 6997 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - \[01/Apr/2020:12:19:10 +0200\] "POST /wp-login.php HTTP/1.0" 200 7009 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - \[01/Apr/2020:12:19:17 +0200\] "POST /wp-login.php HTTP/1.0" 200 7001 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-04-01 19:32:04
45.55.135.88	attack	Sql/code injection probe	2020-02-26 03:55:39
45.55.135.88	attack	45.55.135.88 - - \[13/Feb/2020:06:21:30 +0100\] "POST /wp-login.php HTTP/1.0" 200 3080 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - \[13/Feb/2020:06:21:32 +0100\] "POST /wp-login.php HTTP/1.0" 200 3039 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - \[13/Feb/2020:06:21:39 +0100\] "POST /wp-login.php HTTP/1.0" 200 3048 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-02-13 19:05:55
45.55.135.88	attack	Dec 25 08:46:55 wordpress wordpress(www.ruhnke.cloud)[19622]: Blocked authentication attempt for admin from ::ffff:45.55.135.88	2019-12-25 18:22:14
45.55.135.88	attackspam	Automatic report - XMLRPC Attack	2019-12-14 16:55:51
45.55.135.88	attackspam	fail2ban honeypot	2019-11-29 02:26:45

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.135.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2390
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.135.4.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue May 07 18:33:48 +08 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 4.135.55.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 4.135.55.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.12.207.236	attack	2020-09-19T07:48:56.376642abusebot-5.cloudsearch.cf sshd[15310]: Invalid user ftpuser from 106.12.207.236 port 36322 2020-09-19T07:48:56.383587abusebot-5.cloudsearch.cf sshd[15310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.207.236 2020-09-19T07:48:56.376642abusebot-5.cloudsearch.cf sshd[15310]: Invalid user ftpuser from 106.12.207.236 port 36322 2020-09-19T07:48:58.324067abusebot-5.cloudsearch.cf sshd[15310]: Failed password for invalid user ftpuser from 106.12.207.236 port 36322 ssh2 2020-09-19T07:52:00.786972abusebot-5.cloudsearch.cf sshd[15321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.207.236 user=root 2020-09-19T07:52:02.988256abusebot-5.cloudsearch.cf sshd[15321]: Failed password for root from 106.12.207.236 port 50944 ssh2 2020-09-19T07:55:11.019232abusebot-5.cloudsearch.cf sshd[15377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhos ...	2020-09-19 19:39:01
222.122.31.133	attackspambots	Sep 19 13:01:33 haigwepa sshd[6927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.122.31.133 Sep 19 13:01:34 haigwepa sshd[6927]: Failed password for invalid user testtest from 222.122.31.133 port 42830 ssh2 ...	2020-09-19 19:22:26
185.17.122.77	attackspambots	From: "KundenServiceCenter" <sale@sexandtheuk.com> Subject: Volksbank eG Date: Thu, 17 Sep 2020 11:18:12 +0200	2020-09-19 19:10:58
177.190.113.128	attack	(smtpauth) Failed SMTP AUTH login from 177.190.113.128 (BR/Brazil/177.190.113.128-customer-fttx.tcheturbo.com.br): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2020-09-18 13:52:30 dovecot_login authenticator failed for (Marilda) [177.190.113.128]:3392: 535 Incorrect authentication data (set_id=lunamorena) 2020-09-18 13:53:28 dovecot_login authenticator failed for (Marilda) [177.190.113.128]:3393: 535 Incorrect authentication data (set_id=lunamorena) 2020-09-18 13:54:35 dovecot_login authenticator failed for (Marilda) [177.190.113.128]:3393: 535 Incorrect authentication data (set_id=lunamorena) 2020-09-18 13:55:44 dovecot_login authenticator failed for (Marilda) [177.190.113.128]:3392: 535 Incorrect authentication data (set_id=lunamorena) 2020-09-18 13:57:04 dovecot_login authenticator failed for (Marilda) [177.190.113.128]:3392: 535 Incorrect authentication data (set_id=lunamorena)	2020-09-19 19:30:40
92.222.78.178	attackspambots	20 attempts against mh-ssh on echoip	2020-09-19 19:27:16
201.116.194.210	attack	Sep 19 12:33:45 jane sshd[15815]: Failed password for root from 201.116.194.210 port 49475 ssh2 ...	2020-09-19 19:04:03
106.51.98.159	attack	Sep 19 11:42:41 DAAP sshd[30731]: Invalid user vpn from 106.51.98.159 port 53812 Sep 19 11:42:41 DAAP sshd[30731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.98.159 Sep 19 11:42:41 DAAP sshd[30731]: Invalid user vpn from 106.51.98.159 port 53812 Sep 19 11:42:43 DAAP sshd[30731]: Failed password for invalid user vpn from 106.51.98.159 port 53812 ssh2 Sep 19 11:47:57 DAAP sshd[30775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.98.159 user=root Sep 19 11:47:59 DAAP sshd[30775]: Failed password for root from 106.51.98.159 port 35406 ssh2 ...	2020-09-19 19:33:05
27.78.229.53	attackbots	Automatic report - Port Scan Attack	2020-09-19 19:34:27
124.61.214.44	attack	Sep 19 11:05:19 abendstille sshd\[14378\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.61.214.44 user=root Sep 19 11:05:21 abendstille sshd\[14378\]: Failed password for root from 124.61.214.44 port 36372 ssh2 Sep 19 11:07:19 abendstille sshd\[16696\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.61.214.44 user=root Sep 19 11:07:21 abendstille sshd\[16696\]: Failed password for root from 124.61.214.44 port 37522 ssh2 Sep 19 11:09:20 abendstille sshd\[18586\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.61.214.44 user=root ...	2020-09-19 19:31:11
163.172.93.131	attackspambots	Sep 14 20:44:05 Ubuntu-1404-trusty-64-minimal sshd\[31288\]: Invalid user bertram from 163.172.93.131 Sep 14 20:44:05 Ubuntu-1404-trusty-64-minimal sshd\[31288\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.93.131 Sep 14 20:44:07 Ubuntu-1404-trusty-64-minimal sshd\[31288\]: Failed password for invalid user bertram from 163.172.93.131 port 37032 ssh2 Sep 19 10:17:21 Ubuntu-1404-trusty-64-minimal sshd\[26873\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.93.131 user=root Sep 19 10:17:23 Ubuntu-1404-trusty-64-minimal sshd\[26873\]: Failed password for root from 163.172.93.131 port 37114 ssh2	2020-09-19 19:02:20
134.213.201.20	attackspambots	134.213.201.20 - - [19/Sep/2020:11:00:14 +0100] "POST /wp-login.php HTTP/1.1" 200 4401 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.213.201.20 - - [19/Sep/2020:11:00:15 +0100] "POST /wp-login.php HTTP/1.1" 200 4401 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.213.201.20 - - [19/Sep/2020:11:00:15 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-19 19:39:44
176.102.196.162	attackspam	TCP (SYN) 176.102.196.162:20470 -> port 80, len 44	2020-09-19 19:28:00
222.186.30.35	attack	Sep 19 11:18:35 localhost sshd[84816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root Sep 19 11:18:37 localhost sshd[84816]: Failed password for root from 222.186.30.35 port 53364 ssh2 Sep 19 11:18:40 localhost sshd[84816]: Failed password for root from 222.186.30.35 port 53364 ssh2 Sep 19 11:18:35 localhost sshd[84816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root Sep 19 11:18:37 localhost sshd[84816]: Failed password for root from 222.186.30.35 port 53364 ssh2 Sep 19 11:18:40 localhost sshd[84816]: Failed password for root from 222.186.30.35 port 53364 ssh2 Sep 19 11:18:35 localhost sshd[84816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root Sep 19 11:18:37 localhost sshd[84816]: Failed password for root from 222.186.30.35 port 53364 ssh2 Sep 19 11:18:40 localhost sshd[84816]: Failed pas ...	2020-09-19 19:19:51
212.70.149.68	attackspam	Sep 19 13:17:47 zimbra postfix/smtps/smtpd[21731]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: authentication failure Sep 19 13:17:53 zimbra postfix/smtps/smtpd[21731]: lost connection after AUTH from unknown[212.70.149.68] Sep 19 13:17:53 zimbra postfix/smtps/smtpd[21731]: disconnect from unknown[212.70.149.68] ehlo=1 auth=0/1 rset=1 commands=2/3 Sep 19 13:19:42 zimbra postfix/smtps/smtpd[21731]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: authentication failure ...	2020-09-19 19:21:11
180.127.94.65	attackspambots	Sep 18 19:57:46 elektron postfix/smtpd\[24613\]: NOQUEUE: reject: RCPT from unknown\[180.127.94.65\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[180.127.94.65\]\; from=\ to=\ proto=ESMTP helo=\ Sep 18 19:58:21 elektron postfix/smtpd\[24613\]: NOQUEUE: reject: RCPT from unknown\[180.127.94.65\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[180.127.94.65\]\; from=\ to=\ proto=ESMTP helo=\ Sep 18 19:59:18 elektron postfix/smtpd\[24613\]: NOQUEUE: reject: RCPT from unknown\[180.127.94.65\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[180.127.94.65\]\; from=\ to=\ proto=ESMTP helo=\ Sep 18 20:00:01 elektron postfix/smtpd\[24732\]: NOQUEUE: reject: RCPT from unknown\[180.127.94.65\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[180.127.94.65\]\; from=\ to=\ proto=ESMTP helo	2020-09-19 19:38:21

最近上报的IP列表

241.5.108.203	162.243.41.100	47.175.72.238	149.34.3.171
118.186.17.243	66.130.75.98	109.201.133.100	195.142.183.92
62.10.149.163	123.121.229.80	107.77.215.160	205.165.244.44
195.231.6.13	218.154.250.1	139.99.114.236	83.108.43.24
126.185.83.248	106.251.214.30	195.158.92.104	106.120.173.64