45.55.15.134 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jan 31 22:10:51 game-panel sshd[21629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 Jan 31 22:10:53 game-panel sshd[21629]: Failed password for invalid user oracle@123 from 45.55.15.134 port 34314 ssh2 Jan 31 22:12:17 game-panel sshd[21696]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134	2020-02-01 06:19:55
attack	Jan 8 01:44:08 firewall sshd[26182]: Invalid user 123 from 45.55.15.134 Jan 8 01:44:10 firewall sshd[26182]: Failed password for invalid user 123 from 45.55.15.134 port 52025 ssh2 Jan 8 01:46:28 firewall sshd[26306]: Invalid user 123456789 from 45.55.15.134 ...	2020-01-08 19:36:22
attackbots	Jan 1 09:53:12 MK-Soft-VM7 sshd[12307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 Jan 1 09:53:14 MK-Soft-VM7 sshd[12307]: Failed password for invalid user anari from 45.55.15.134 port 48301 ssh2 ...	2020-01-01 17:28:15
attack	Dec 31 19:00:04 plusreed sshd[30285]: Invalid user named from 45.55.15.134 ...	2020-01-01 08:50:50
attackspam	Brute-force attempt banned	2019-12-26 19:57:51
attackbots	SSH authentication failure x 6 reported by Fail2Ban ...	2019-12-24 05:26:11
attackbotsspam	Dec 21 23:41:40 wbs sshd\[13514\]: Invalid user mannozzi from 45.55.15.134 Dec 21 23:41:40 wbs sshd\[13514\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 Dec 21 23:41:42 wbs sshd\[13514\]: Failed password for invalid user mannozzi from 45.55.15.134 port 56243 ssh2 Dec 21 23:46:57 wbs sshd\[14005\]: Invalid user wwwadmin from 45.55.15.134 Dec 21 23:46:57 wbs sshd\[14005\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134	2019-12-22 22:35:05
attackbotsspam	Dec 21 17:54:00 localhost sshd\[32353\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 user=news Dec 21 17:54:02 localhost sshd\[32353\]: Failed password for news from 45.55.15.134 port 54414 ssh2 Dec 21 18:06:11 localhost sshd\[32602\]: Invalid user coar from 45.55.15.134 port 34849 ...	2019-12-22 03:06:51
attackspam	Dec 18 11:13:08 plusreed sshd[9618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 user=root Dec 18 11:13:10 plusreed sshd[9618]: Failed password for root from 45.55.15.134 port 44804 ssh2 ...	2019-12-19 00:16:22
attackspam	Dec 15 11:56:26 ns382633 sshd\[30363\]: Invalid user guest from 45.55.15.134 port 49958 Dec 15 11:56:26 ns382633 sshd\[30363\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 Dec 15 11:56:28 ns382633 sshd\[30363\]: Failed password for invalid user guest from 45.55.15.134 port 49958 ssh2 Dec 15 12:04:35 ns382633 sshd\[31521\]: Invalid user guest from 45.55.15.134 port 42730 Dec 15 12:04:35 ns382633 sshd\[31521\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134	2019-12-15 22:09:55
attack	Dec 14 10:31:15 meumeu sshd[19678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 Dec 14 10:31:17 meumeu sshd[19678]: Failed password for invalid user hancel from 45.55.15.134 port 35840 ssh2 Dec 14 10:36:53 meumeu sshd[20388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 ...	2019-12-14 17:37:02
attackspam	Dec 13 14:51:36 eddieflores sshd\[10868\]: Invalid user village from 45.55.15.134 Dec 13 14:51:36 eddieflores sshd\[10868\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 Dec 13 14:51:37 eddieflores sshd\[10868\]: Failed password for invalid user village from 45.55.15.134 port 43460 ssh2 Dec 13 14:57:24 eddieflores sshd\[11394\]: Invalid user sunshower from 45.55.15.134 Dec 13 14:57:24 eddieflores sshd\[11394\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134	2019-12-14 09:02:36
attackspambots	Dec 9 07:39:28 zeus sshd[20903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 Dec 9 07:39:30 zeus sshd[20903]: Failed password for invalid user peiser from 45.55.15.134 port 56097 ssh2 Dec 9 07:45:11 zeus sshd[21071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 Dec 9 07:45:13 zeus sshd[21071]: Failed password for invalid user shuoich from 45.55.15.134 port 60351 ssh2	2019-12-09 15:47:33
attackspam	Nov 24 07:56:10 web1 sshd\[14561\]: Invalid user domalde from 45.55.15.134 Nov 24 07:56:10 web1 sshd\[14561\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 Nov 24 07:56:11 web1 sshd\[14561\]: Failed password for invalid user domalde from 45.55.15.134 port 35550 ssh2 Nov 24 08:02:34 web1 sshd\[15149\]: Invalid user barnhart from 45.55.15.134 Nov 24 08:02:34 web1 sshd\[15149\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134	2019-11-25 02:15:24
attackspam	Nov 17 17:58:01 sd-53420 sshd\[3761\]: User root from 45.55.15.134 not allowed because none of user's groups are listed in AllowGroups Nov 17 17:58:01 sd-53420 sshd\[3761\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 user=root Nov 17 17:58:04 sd-53420 sshd\[3761\]: Failed password for invalid user root from 45.55.15.134 port 33637 ssh2 Nov 17 18:02:32 sd-53420 sshd\[5052\]: User root from 45.55.15.134 not allowed because none of user's groups are listed in AllowGroups Nov 17 18:02:32 sd-53420 sshd\[5052\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 user=root ...	2019-11-18 06:20:04
attackspambots	Nov 11 09:18:46 server sshd\[10115\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 user=games Nov 11 09:18:48 server sshd\[10115\]: Failed password for games from 45.55.15.134 port 53808 ssh2 Nov 11 09:30:24 server sshd\[13441\]: Invalid user interchange from 45.55.15.134 Nov 11 09:30:24 server sshd\[13441\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 Nov 11 09:30:26 server sshd\[13441\]: Failed password for invalid user interchange from 45.55.15.134 port 43662 ssh2 ...	2019-11-11 14:48:15
attackbotsspam	Nov 10 00:07:08 OneL sshd\[32086\]: Invalid user de from 45.55.15.134 port 53946 Nov 10 00:07:08 OneL sshd\[32086\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 Nov 10 00:07:10 OneL sshd\[32086\]: Failed password for invalid user de from 45.55.15.134 port 53946 ssh2 Nov 10 00:11:57 OneL sshd\[32236\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 user=root Nov 10 00:11:59 OneL sshd\[32236\]: Failed password for root from 45.55.15.134 port 44808 ssh2 ...	2019-11-10 09:04:19
attackspam	Nov 9 22:05:05 OneL sshd\[28590\]: Invalid user janitor from 45.55.15.134 port 57229 Nov 9 22:05:05 OneL sshd\[28590\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 Nov 9 22:05:07 OneL sshd\[28590\]: Failed password for invalid user janitor from 45.55.15.134 port 57229 ssh2 Nov 9 22:10:13 OneL sshd\[28807\]: Invalid user snagg from 45.55.15.134 port 48094 Nov 9 22:10:13 OneL sshd\[28807\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 ...	2019-11-10 06:15:22
attackbotsspam	2019-10-30T23:02:22.359613abusebot-3.cloudsearch.cf sshd\[2270\]: Invalid user connie from 45.55.15.134 port 35302	2019-10-31 07:31:17
attackbotsspam	$f2bV_matches	2019-10-28 18:48:33
attackbotsspam	Oct 27 10:26:38 server sshd\[30587\]: Invalid user ubuntu from 45.55.15.134 Oct 27 10:26:38 server sshd\[30587\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 Oct 27 10:26:40 server sshd\[30587\]: Failed password for invalid user ubuntu from 45.55.15.134 port 59933 ssh2 Oct 27 10:38:51 server sshd\[1774\]: Invalid user ubuntu from 45.55.15.134 Oct 27 10:38:51 server sshd\[1774\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 ...	2019-10-27 19:40:19
attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/45.55.15.134/ NL - 1H : (25) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : NL NAME ASN : ASN14061 IP : 45.55.15.134 CIDR : 45.55.0.0/19 PREFIX COUNT : 490 UNIQUE IP COUNT : 1963008 WYKRYTE ATAKI Z ASN14061 : 1H - 1 3H - 1 6H - 4 12H - 5 24H - 11 DateTime : 2019-10-13 06:03:25 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery	2019-10-13 16:59:38
attack	2019-10-08T17:49:27.759922shield sshd\[705\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 user=root 2019-10-08T17:49:29.455966shield sshd\[705\]: Failed password for root from 45.55.15.134 port 51369 ssh2 2019-10-08T17:54:24.703441shield sshd\[1458\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 user=root 2019-10-08T17:54:26.504910shield sshd\[1458\]: Failed password for root from 45.55.15.134 port 43110 ssh2 2019-10-08T17:59:26.804839shield sshd\[2221\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 user=root	2019-10-09 02:12:58
attack	Sep 16 00:13:08 lcdev sshd\[26916\]: Invalid user melquior from 45.55.15.134 Sep 16 00:13:08 lcdev sshd\[26916\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 Sep 16 00:13:10 lcdev sshd\[26916\]: Failed password for invalid user melquior from 45.55.15.134 port 44793 ssh2 Sep 16 00:18:27 lcdev sshd\[27527\]: Invalid user albert from 45.55.15.134 Sep 16 00:18:27 lcdev sshd\[27527\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134	2019-09-16 18:23:10
attackbots	Sep 15 09:24:50 core sshd[5641]: Invalid user rodica from 45.55.15.134 port 45363 Sep 15 09:24:52 core sshd[5641]: Failed password for invalid user rodica from 45.55.15.134 port 45363 ssh2 ...	2019-09-15 18:19:47
attack	Sep 12 05:48:14 auw2 sshd\[13659\]: Invalid user leinad from 45.55.15.134 Sep 12 05:48:14 auw2 sshd\[13659\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 Sep 12 05:48:15 auw2 sshd\[13659\]: Failed password for invalid user leinad from 45.55.15.134 port 59463 ssh2 Sep 12 05:56:15 auw2 sshd\[14336\]: Invalid user 123123123 from 45.55.15.134 Sep 12 05:56:15 auw2 sshd\[14336\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134	2019-09-13 07:07:50
attack	Sep 10 06:08:31 vmd17057 sshd\[20416\]: Invalid user test from 45.55.15.134 port 42308 Sep 10 06:08:31 vmd17057 sshd\[20416\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 Sep 10 06:08:33 vmd17057 sshd\[20416\]: Failed password for invalid user test from 45.55.15.134 port 42308 ssh2 ...	2019-09-10 15:05:13
attackbots	2019-09-04T15:08:35.840126abusebot-8.cloudsearch.cf sshd\[20209\]: Invalid user acacia from 45.55.15.134 port 42313	2019-09-04 23:13:04
attackspam	Sep 4 02:30:15 friendsofhawaii sshd\[4045\]: Invalid user him from 45.55.15.134 Sep 4 02:30:15 friendsofhawaii sshd\[4045\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 Sep 4 02:30:17 friendsofhawaii sshd\[4045\]: Failed password for invalid user him from 45.55.15.134 port 60085 ssh2 Sep 4 02:36:00 friendsofhawaii sshd\[4524\]: Invalid user ky from 45.55.15.134 Sep 4 02:36:00 friendsofhawaii sshd\[4524\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134	2019-09-04 20:45:19
attackspam	Aug 29 21:39:08 hcbbdb sshd\[10654\]: Invalid user radio from 45.55.15.134 Aug 29 21:39:08 hcbbdb sshd\[10654\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134 Aug 29 21:39:10 hcbbdb sshd\[10654\]: Failed password for invalid user radio from 45.55.15.134 port 57503 ssh2 Aug 29 21:45:33 hcbbdb sshd\[11309\]: Invalid user support from 45.55.15.134 Aug 29 21:45:33 hcbbdb sshd\[11309\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.15.134	2019-08-30 05:49:45

相同子网IP讨论:

IP	类型	评论内容	时间
45.55.156.19	attackbots	SSH Bruteforce Attempt on Honeypot	2020-10-09 07:35:29
45.55.156.19	attack	SSH Bruteforce Attempt on Honeypot	2020-10-09 00:07:14
45.55.156.19	attack	Oct 8 04:04:23 nextcloud sshd\[1006\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.156.19 user=root Oct 8 04:04:25 nextcloud sshd\[1006\]: Failed password for root from 45.55.156.19 port 40040 ssh2 Oct 8 04:08:07 nextcloud sshd\[4414\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.156.19 user=root	2020-10-08 16:02:36
45.55.157.158	attackspam	Port probing on unauthorized port 22	2020-10-07 04:22:50
45.55.157.158	attackbots	Oct 6 10:38:51 abendstille sshd\[8748\]: Invalid user postgres from 45.55.157.158 Oct 6 10:38:51 abendstille sshd\[8748\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.157.158 Oct 6 10:38:54 abendstille sshd\[8748\]: Failed password for invalid user postgres from 45.55.157.158 port 36520 ssh2 Oct 6 10:38:59 abendstille sshd\[8805\]: Invalid user postgres from 45.55.157.158 Oct 6 10:38:59 abendstille sshd\[8805\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.157.158 ...	2020-10-06 20:26:28
45.55.157.158	attackbots	Oct 6 00:01:08 OPSO sshd\[29277\]: Invalid user postgres from 45.55.157.158 port 38142 Oct 6 00:01:08 OPSO sshd\[29277\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.157.158 Oct 6 00:01:10 OPSO sshd\[29277\]: Failed password for invalid user postgres from 45.55.157.158 port 38142 ssh2 Oct 6 00:01:13 OPSO sshd\[29280\]: Invalid user postgres from 45.55.157.158 port 38819 Oct 6 00:01:13 OPSO sshd\[29280\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.157.158	2020-10-06 12:05:59
45.55.156.19	attack	Sep 27 20:58:20 h2427292 sshd\[28746\]: Invalid user dev1 from 45.55.156.19 Sep 27 20:58:20 h2427292 sshd\[28746\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.156.19 Sep 27 20:58:22 h2427292 sshd\[28746\]: Failed password for invalid user dev1 from 45.55.156.19 port 32956 ssh2 ...	2020-09-28 02:58:27
45.55.156.19	attackbots	2020-09-26 UTC: (32x) - admin,chris,contab,dani,deploy,devuser,dolphin,enc,ftpuser,hadoop,it,john,karen,liferay,lucia,nproc,paulo,root(8x),sg,sonar,test,tibco,wang,workflow,xiaoming	2020-09-27 19:06:45
45.55.156.19	attackspambots	Sep 26 21:13:21 rush sshd[3993]: Failed password for root from 45.55.156.19 port 42814 ssh2 Sep 26 21:17:20 rush sshd[4169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.156.19 Sep 26 21:17:22 rush sshd[4169]: Failed password for invalid user minecraft from 45.55.156.19 port 52962 ssh2 ...	2020-09-27 06:42:06
45.55.156.19	attackbots	Sep 26 14:42:25 vps647732 sshd[31234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.156.19 Sep 26 14:42:28 vps647732 sshd[31234]: Failed password for invalid user workflow from 45.55.156.19 port 50360 ssh2 ...	2020-09-26 23:06:13
45.55.156.19	attack	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-09-26 14:54:11
45.55.157.158	attackbots	2020-09-23T13:39:19.429744abusebot-4.cloudsearch.cf sshd[6844]: Invalid user postgres from 45.55.157.158 port 40950 2020-09-23T13:39:19.436687abusebot-4.cloudsearch.cf sshd[6844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.157.158 2020-09-23T13:39:19.429744abusebot-4.cloudsearch.cf sshd[6844]: Invalid user postgres from 45.55.157.158 port 40950 2020-09-23T13:39:21.663291abusebot-4.cloudsearch.cf sshd[6844]: Failed password for invalid user postgres from 45.55.157.158 port 40950 ssh2 2020-09-23T13:39:24.470479abusebot-4.cloudsearch.cf sshd[6846]: Invalid user postgres from 45.55.157.158 port 41368 2020-09-23T13:39:24.476476abusebot-4.cloudsearch.cf sshd[6846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.157.158 2020-09-23T13:39:24.470479abusebot-4.cloudsearch.cf sshd[6846]: Invalid user postgres from 45.55.157.158 port 41368 2020-09-23T13:39:26.723144abusebot-4.cloudsearch.cf sshd[6846]: ...	2020-09-23 22:30:22
45.55.157.158	attackbotsspam	$f2bV_matches	2020-09-23 06:39:37
45.55.156.19	attackspambots	Sep 7 03:02:10 dignus sshd[22231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.156.19 user=root Sep 7 03:02:12 dignus sshd[22231]: Failed password for root from 45.55.156.19 port 35764 ssh2 Sep 7 03:05:55 dignus sshd[22441]: Invalid user at from 45.55.156.19 port 40546 Sep 7 03:05:55 dignus sshd[22441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.156.19 Sep 7 03:05:57 dignus sshd[22441]: Failed password for invalid user at from 45.55.156.19 port 40546 ssh2 ...	2020-09-07 23:16:52
45.55.156.19	attackbotsspam	Sep 7 08:33:49 lnxweb61 sshd[14909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.156.19 Sep 7 08:33:49 lnxweb61 sshd[14909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.156.19	2020-09-07 14:52:33

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.15.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10350
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.15.134.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019060401 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jun 05 11:11:20 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 134.15.55.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 134.15.55.45.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
62.234.133.230	attackbots	SSH brutforce	2019-10-19 00:58:25
124.41.211.27	attack	2019-10-18T14:27:04.242672abusebot-5.cloudsearch.cf sshd\[21177\]: Invalid user test from 124.41.211.27 port 53546	2019-10-19 01:07:45
81.22.45.107	attackbotsspam	Oct 18 18:55:25 mc1 kernel: \[2704088.966456\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=37279 PROTO=TCP SPT=42658 DPT=12852 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 18 19:00:33 mc1 kernel: \[2704396.888184\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=13652 PROTO=TCP SPT=42658 DPT=12610 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 18 19:03:11 mc1 kernel: \[2704554.887232\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=14763 PROTO=TCP SPT=42658 DPT=12958 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-19 01:13:10
5.39.74.233	attackbots	fail2ban honeypot	2019-10-19 00:59:29
41.139.184.66	attackspambots	Email IMAP login failure	2019-10-19 00:59:06
181.177.244.68	attackbots	Oct 18 01:49:04 auw2 sshd\[4133\]: Invalid user admin789!@\# from 181.177.244.68 Oct 18 01:49:04 auw2 sshd\[4133\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.177.244.68 Oct 18 01:49:06 auw2 sshd\[4133\]: Failed password for invalid user admin789!@\# from 181.177.244.68 port 43369 ssh2 Oct 18 01:53:19 auw2 sshd\[4521\]: Invalid user tomcat12345 from 181.177.244.68 Oct 18 01:53:19 auw2 sshd\[4521\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.177.244.68	2019-10-19 01:05:46
152.32.130.99	attack	2019-10-18T05:09:43.6964101495-001 sshd\[45018\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.32.130.99 user=root 2019-10-18T05:09:45.5262871495-001 sshd\[45018\]: Failed password for root from 152.32.130.99 port 54682 ssh2 2019-10-18T05:30:39.0795951495-001 sshd\[45817\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.32.130.99 user=root 2019-10-18T05:30:41.3359711495-001 sshd\[45817\]: Failed password for root from 152.32.130.99 port 41762 ssh2 2019-10-18T05:34:39.5821991495-001 sshd\[45986\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.32.130.99 user=root 2019-10-18T05:34:41.7835961495-001 sshd\[45986\]: Failed password for root from 152.32.130.99 port 52642 ssh2 ...	2019-10-19 00:49:55
79.187.192.249	attack	Oct 18 14:20:20 legacy sshd[9588]: Failed password for root from 79.187.192.249 port 55154 ssh2 Oct 18 14:24:17 legacy sshd[9690]: Failed password for root from 79.187.192.249 port 46082 ssh2 ...	2019-10-19 00:40:23
122.177.141.65	attackspambots	122.177.141.65 - - [18/Oct/2019:07:37:27 -0400] "GET /?page=products&action=..%2fetc%2fpasswd%00&manufacturerID=61&productID=4701-RIM&linkID=16812 HTTP/1.1" 200 17418 "https://exitdevice.com/?page=products&action=..%2fetc%2fpasswd%00&manufacturerID=61&productID=4701-RIM&linkID=16812" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ...	2019-10-19 00:34:09
62.234.66.145	attack	Oct 18 13:37:18 * sshd[30912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.66.145 Oct 18 13:37:20 * sshd[30912]: Failed password for invalid user com from 62.234.66.145 port 44858 ssh2	2019-10-19 00:40:47
200.84.98.135	attackspambots	10/18/2019-07:36:28.813307 200.84.98.135 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-10-19 01:06:54
154.118.141.90	attackspam	Oct 18 15:56:25 hosting sshd[6373]: Invalid user purple123 from 154.118.141.90 port 41691 ...	2019-10-19 00:32:25
126.3.21.67	attackspam	BURG,WP GET /wp-login.php	2019-10-19 01:14:27
193.112.4.36	attack	Oct 18 20:05:20 server sshd\[24789\]: User root from 193.112.4.36 not allowed because listed in DenyUsers Oct 18 20:05:20 server sshd\[24789\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.4.36 user=root Oct 18 20:05:22 server sshd\[24789\]: Failed password for invalid user root from 193.112.4.36 port 56016 ssh2 Oct 18 20:11:43 server sshd\[24127\]: Invalid user openbravo from 193.112.4.36 port 36686 Oct 18 20:11:43 server sshd\[24127\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.4.36	2019-10-19 01:12:11
92.25.222.124	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/92.25.222.124/ GB - 1H : (78) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : GB NAME ASN : ASN13285 IP : 92.25.222.124 CIDR : 92.24.0.0/14 PREFIX COUNT : 35 UNIQUE IP COUNT : 3565824 WYKRYTE ATAKI Z ASN13285 : 1H - 1 3H - 2 6H - 3 12H - 5 24H - 11 DateTime : 2019-10-18 13:36:15 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-19 01:12:49

最近上报的IP列表

143.64.54.12	235.248.114.163	23.231.32.23	234.212.221.70
49.84.67.182	173.212.198.205	73.32.167.33	16.110.60.25
6.187.72.66	58.59.14.195	144.248.211.39	216.132.131.100
107.174.236.1	232.163.37.255	165.139.124.185	200.83.101.22
150.129.63.20	104.244.77.199	81.245.70.205	109.123.117.237