45.55.38.39 - IPInfo

基本信息:

城市(city): Clifton

省份(region): New Jersey

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 28 - port: 15592 proto: TCP cat: Misc Attack	2020-06-07 01:41:42
attack	TCP (SYN) 45.55.38.39:52533 -> port 26927, len 44	2020-06-06 09:20:30
attackspambots	10924/tcp 441/tcp 17554/tcp... [2020-04-12/05-21]87pkt,31pt.(tcp)	2020-05-22 07:44:01
attack	ET CINS Active Threat Intelligence Poor Reputation IP group 28 - port: 26429 proto: TCP cat: Misc Attack	2020-05-15 04:24:57
attackbotsspam	Fail2Ban Ban Triggered	2020-04-24 02:58:14
attack	Dec 13 19:11:18 sachi sshd\[11121\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 user=root Dec 13 19:11:20 sachi sshd\[11121\]: Failed password for root from 45.55.38.39 port 37552 ssh2 Dec 13 19:19:32 sachi sshd\[11817\]: Invalid user medias from 45.55.38.39 Dec 13 19:19:32 sachi sshd\[11817\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Dec 13 19:19:33 sachi sshd\[11817\]: Failed password for invalid user medias from 45.55.38.39 port 41011 ssh2	2019-12-14 13:34:00
attackspambots	Dec 9 19:22:14 cvbnet sshd[13093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Dec 9 19:22:16 cvbnet sshd[13093]: Failed password for invalid user payan from 45.55.38.39 port 59020 ssh2 ...	2019-12-10 03:05:43
attackbotsspam	Dec 6 06:51:47 meumeu sshd[17756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Dec 6 06:51:50 meumeu sshd[17756]: Failed password for invalid user gerynowicz from 45.55.38.39 port 41403 ssh2 Dec 6 06:57:28 meumeu sshd[18640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 ...	2019-12-06 14:08:42
attackspambots	Dec 5 08:15:44 zeus sshd[29273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Dec 5 08:15:47 zeus sshd[29273]: Failed password for invalid user borders from 45.55.38.39 port 35495 ssh2 Dec 5 08:24:15 zeus sshd[29509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Dec 5 08:24:18 zeus sshd[29509]: Failed password for invalid user misra from 45.55.38.39 port 40810 ssh2	2019-12-05 16:28:41
attackspambots	Invalid user myron from 45.55.38.39 port 49777	2019-11-28 21:40:29
attackbotsspam	Fail2Ban Ban Triggered	2019-11-20 01:22:00
attack	2019-11-10T09:35:37.779656shield sshd\[12464\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 user=root 2019-11-10T09:35:39.892828shield sshd\[12464\]: Failed password for root from 45.55.38.39 port 33384 ssh2 2019-11-10T09:39:35.905555shield sshd\[13260\]: Invalid user user from 45.55.38.39 port 52238 2019-11-10T09:39:35.909726shield sshd\[13260\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 2019-11-10T09:39:37.696532shield sshd\[13260\]: Failed password for invalid user user from 45.55.38.39 port 52238 ssh2	2019-11-10 18:15:27
attackbotsspam	$f2bV_matches	2019-11-09 20:15:40
attackbotsspam	Nov 4 01:26:14 server sshd\[30757\]: Invalid user fh from 45.55.38.39 Nov 4 01:26:14 server sshd\[30757\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Nov 4 01:26:16 server sshd\[30757\]: Failed password for invalid user fh from 45.55.38.39 port 48022 ssh2 Nov 4 01:30:25 server sshd\[31894\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 user=root Nov 4 01:30:27 server sshd\[31894\]: Failed password for root from 45.55.38.39 port 41577 ssh2 ...	2019-11-04 07:02:15
attackspam	Nov 3 06:52:54 dedicated sshd[7705]: Invalid user cn from 45.55.38.39 port 52965	2019-11-03 16:26:35
attackspam	Nov 3 04:59:09 dedicated sshd[21334]: Invalid user root@1234567890 from 45.55.38.39 port 58155	2019-11-03 12:12:27
attackspam	Oct 31 13:44:25 venus sshd\[11163\]: Invalid user tiatenlorli from 45.55.38.39 port 50262 Oct 31 13:44:25 venus sshd\[11163\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Oct 31 13:44:28 venus sshd\[11163\]: Failed password for invalid user tiatenlorli from 45.55.38.39 port 50262 ssh2 ...	2019-10-31 21:57:45
attackbotsspam	2019-10-25T22:24:58.749101scmdmz1 sshd\[19813\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 user=root 2019-10-25T22:25:00.419512scmdmz1 sshd\[19813\]: Failed password for root from 45.55.38.39 port 46864 ssh2 2019-10-25T22:28:42.200353scmdmz1 sshd\[20233\]: Invalid user ubnt from 45.55.38.39 port 38381 ...	2019-10-26 05:19:25
attackbotsspam	Automatic report - Banned IP Access	2019-10-21 04:07:06
attack	Invalid user 123 from 45.55.38.39 port 48661	2019-10-13 04:28:31
attackbots	Oct 6 07:26:12 localhost sshd\[49070\]: Invalid user Chicken@123 from 45.55.38.39 port 50549 Oct 6 07:26:12 localhost sshd\[49070\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Oct 6 07:26:14 localhost sshd\[49070\]: Failed password for invalid user Chicken@123 from 45.55.38.39 port 50549 ssh2 Oct 6 07:30:19 localhost sshd\[49217\]: Invalid user Jelszo from 45.55.38.39 port 42237 Oct 6 07:30:19 localhost sshd\[49217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 ...	2019-10-06 19:00:48
attackbots	2019-09-29T15:46:40.120066tmaserv sshd\[3103\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 2019-09-29T15:46:42.198739tmaserv sshd\[3103\]: Failed password for invalid user ub from 45.55.38.39 port 34296 ssh2 2019-09-29T15:59:37.038966tmaserv sshd\[3845\]: Invalid user admin from 45.55.38.39 port 38714 2019-09-29T15:59:37.044884tmaserv sshd\[3845\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 2019-09-29T15:59:39.128852tmaserv sshd\[3845\]: Failed password for invalid user admin from 45.55.38.39 port 38714 ssh2 2019-09-29T16:04:13.298640tmaserv sshd\[4150\]: Invalid user dimitri from 45.55.38.39 port 59012 ...	2019-09-29 21:05:12
attack	Sep 28 15:03:09 mail sshd\[30576\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Sep 28 15:03:11 mail sshd\[30576\]: Failed password for invalid user elio from 45.55.38.39 port 42124 ssh2 Sep 28 15:07:30 mail sshd\[30986\]: Invalid user viper from 45.55.38.39 port 34191 Sep 28 15:07:30 mail sshd\[30986\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Sep 28 15:07:32 mail sshd\[30986\]: Failed password for invalid user viper from 45.55.38.39 port 34191 ssh2	2019-09-29 03:50:48
attack	Sep 21 12:01:04 webhost01 sshd[9804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Sep 21 12:01:06 webhost01 sshd[9804]: Failed password for invalid user uc from 45.55.38.39 port 34516 ssh2 ...	2019-09-21 13:44:35
attackbots	Invalid user travel from 45.55.38.39 port 33938	2019-09-21 01:50:54
attack	2019-09-09T21:24:54.539146abusebot-8.cloudsearch.cf sshd\[19036\]: Invalid user admin from 45.55.38.39 port 49784	2019-09-10 05:57:48
attackbotsspam	Sep 6 16:00:39 lnxmysql61 sshd[5506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39	2019-09-07 07:21:43
attack	Sep 5 12:31:02 sachi sshd\[1038\]: Invalid user webadmin from 45.55.38.39 Sep 5 12:31:02 sachi sshd\[1038\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Sep 5 12:31:04 sachi sshd\[1038\]: Failed password for invalid user webadmin from 45.55.38.39 port 41638 ssh2 Sep 5 12:35:26 sachi sshd\[1415\]: Invalid user ubuntu from 45.55.38.39 Sep 5 12:35:26 sachi sshd\[1415\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39	2019-09-06 07:04:35
attackbots	Aug 28 05:13:00 hb sshd\[8474\]: Invalid user 123456 from 45.55.38.39 Aug 28 05:13:00 hb sshd\[8474\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Aug 28 05:13:02 hb sshd\[8474\]: Failed password for invalid user 123456 from 45.55.38.39 port 33289 ssh2 Aug 28 05:17:10 hb sshd\[8896\]: Invalid user 123 from 45.55.38.39 Aug 28 05:17:10 hb sshd\[8896\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39	2019-08-28 13:47:58
attackbots	Aug 26 14:39:26 web1 sshd\[16106\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 user=root Aug 26 14:39:27 web1 sshd\[16106\]: Failed password for root from 45.55.38.39 port 43799 ssh2 Aug 26 14:43:35 web1 sshd\[16504\]: Invalid user quinton from 45.55.38.39 Aug 26 14:43:35 web1 sshd\[16504\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Aug 26 14:43:37 web1 sshd\[16504\]: Failed password for invalid user quinton from 45.55.38.39 port 38835 ssh2	2019-08-27 11:48:31

相同子网IP讨论:

IP	类型	评论内容	时间
45.55.38.214	attack	[MK-VM4] Blocked by UFW	2020-06-20 18:46:38
45.55.38.214	attackspambots	[Tue May 19 20:42:35.704921 2020] [:error] [pid 65425] [client 45.55.38.214:46148] [client 45.55.38.214] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "91"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "200.132.59.214"] [uri "/"] [unique_id "XsRu6xWXqa@P1X@JQcmibgAAAAU"] ...	2020-05-20 13:14:29
45.55.38.214	attackbots	Scanning an empty webserver with deny all robots.txt	2020-05-13 06:21:04
45.55.38.3	attackspam	SSH login attempts with user root.	2019-11-30 05:06:06

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.38.39
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39536
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.38.39.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080901 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 09 23:53:54 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 39.38.55.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 39.38.55.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
46.101.44.220	attack	Oct 6 05:54:58 icinga sshd[5552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.44.220 Oct 6 05:55:00 icinga sshd[5552]: Failed password for invalid user abc@2018 from 46.101.44.220 port 41828 ssh2 ...	2019-10-06 12:35:43
92.63.194.121	attack	SSH bruteforce	2019-10-06 12:55:44
76.73.206.90	attackspambots	2019-10-06T04:46:50.509062shield sshd\[23234\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.73.206.90 user=root 2019-10-06T04:46:52.061599shield sshd\[23234\]: Failed password for root from 76.73.206.90 port 8513 ssh2 2019-10-06T04:51:09.187579shield sshd\[23853\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.73.206.90 user=root 2019-10-06T04:51:10.965478shield sshd\[23853\]: Failed password for root from 76.73.206.90 port 42268 ssh2 2019-10-06T04:55:26.530253shield sshd\[24384\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.73.206.90 user=root	2019-10-06 12:59:51
14.140.81.162	attackspambots	CloudCIX Reconnaissance Scan Detected, PTR: 14.140.81.162.static-pune.vsnl.net.in.	2019-10-06 13:13:33
203.150.165.63	attackbots	CloudCIX Reconnaissance Scan Detected, PTR: 63.165.150.203.sta.inet.co.th.	2019-10-06 13:11:50
159.203.193.241	attackbotsspam	Unauthorized SSH login attempts	2019-10-06 13:10:06
51.254.95.139	attackspambots	Oct 6 05:38:30 mail sshd[19941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.95.139 user=root Oct 6 05:38:33 mail sshd[19941]: Failed password for root from 51.254.95.139 port 49786 ssh2 Oct 6 05:50:50 mail sshd[21473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.95.139 user=root Oct 6 05:50:52 mail sshd[21473]: Failed password for root from 51.254.95.139 port 36380 ssh2 Oct 6 05:54:50 mail sshd[21896]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.95.139 user=root Oct 6 05:54:52 mail sshd[21896]: Failed password for root from 51.254.95.139 port 53564 ssh2 ...	2019-10-06 12:40:30
211.157.2.92	attackbots	2019-10-06T00:15:53.1702431495-001 sshd\[26197\]: Invalid user abcd@123 from 211.157.2.92 port 61510 2019-10-06T00:15:53.1733001495-001 sshd\[26197\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.157.2.92 2019-10-06T00:15:55.1272451495-001 sshd\[26197\]: Failed password for invalid user abcd@123 from 211.157.2.92 port 61510 ssh2 2019-10-06T00:20:05.7353691495-001 sshd\[26582\]: Invalid user Nullen_1233 from 211.157.2.92 port 14337 2019-10-06T00:20:05.7401391495-001 sshd\[26582\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.157.2.92 2019-10-06T00:20:07.2878751495-001 sshd\[26582\]: Failed password for invalid user Nullen_1233 from 211.157.2.92 port 14337 ssh2 ...	2019-10-06 12:44:53
222.186.175.169	attackspam	Oct 6 06:53:34 dcd-gentoo sshd[24886]: User root from 222.186.175.169 not allowed because none of user's groups are listed in AllowGroups Oct 6 06:53:39 dcd-gentoo sshd[24886]: error: PAM: Authentication failure for illegal user root from 222.186.175.169 Oct 6 06:53:34 dcd-gentoo sshd[24886]: User root from 222.186.175.169 not allowed because none of user's groups are listed in AllowGroups Oct 6 06:53:39 dcd-gentoo sshd[24886]: error: PAM: Authentication failure for illegal user root from 222.186.175.169 Oct 6 06:53:34 dcd-gentoo sshd[24886]: User root from 222.186.175.169 not allowed because none of user's groups are listed in AllowGroups Oct 6 06:53:39 dcd-gentoo sshd[24886]: error: PAM: Authentication failure for illegal user root from 222.186.175.169 Oct 6 06:53:39 dcd-gentoo sshd[24886]: Failed keyboard-interactive/pam for invalid user root from 222.186.175.169 port 41826 ssh2 ...	2019-10-06 12:54:00
14.230.168.102	attackbots	Automatic report - Banned IP Access	2019-10-06 13:12:23
185.153.198.161	attackspam	Connection by 185.153.198.161 on port: 15000 got caught by honeypot at 10/5/2019 9:20:03 PM	2019-10-06 13:08:34
104.199.251.248	attack	Oct 6 04:52:56 www_kotimaassa_fi sshd[10096]: Failed password for root from 104.199.251.248 port 52904 ssh2 ...	2019-10-06 13:10:59
125.2.89.193	attackspambots	Unauthorised access (Oct 6) SRC=125.2.89.193 LEN=40 TTL=55 ID=25577 TCP DPT=8080 WINDOW=61668 SYN	2019-10-06 12:57:59
120.14.107.23	attackbots	Unauthorised access (Oct 6) SRC=120.14.107.23 LEN=40 TTL=49 ID=18953 TCP DPT=8080 WINDOW=10881 SYN Unauthorised access (Oct 6) SRC=120.14.107.23 LEN=40 TTL=49 ID=38436 TCP DPT=8080 WINDOW=28617 SYN	2019-10-06 13:03:48
94.191.108.218	attackbotsspam	Oct 6 06:44:09 s64-1 sshd[8244]: Failed password for root from 94.191.108.218 port 35510 ssh2 Oct 6 06:48:26 s64-1 sshd[8301]: Failed password for root from 94.191.108.218 port 36776 ssh2 ...	2019-10-06 13:00:16

最近上报的IP列表

118.144.137.98	199.77.19.205	110.209.70.47	104.168.188.82
194.216.181.200	91.149.157.185	55.198.203.115	146.116.250.19
73.66.23.91	132.29.99.57	76.240.82.40	70.40.220.109
192.49.5.121	78.224.231.214	31.189.27.215	85.222.178.203
187.85.214.57	169.60.205.217	205.62.38.40	191.126.195.176