45.55.38.39 - IPInfo

基本信息:

城市(city): Clifton

省份(region): New Jersey

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 28 - port: 15592 proto: TCP cat: Misc Attack	2020-06-07 01:41:42
attack	TCP (SYN) 45.55.38.39:52533 -> port 26927, len 44	2020-06-06 09:20:30
attackspambots	10924/tcp 441/tcp 17554/tcp... [2020-04-12/05-21]87pkt,31pt.(tcp)	2020-05-22 07:44:01
attack	ET CINS Active Threat Intelligence Poor Reputation IP group 28 - port: 26429 proto: TCP cat: Misc Attack	2020-05-15 04:24:57
attackbotsspam	Fail2Ban Ban Triggered	2020-04-24 02:58:14
attack	Dec 13 19:11:18 sachi sshd\[11121\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 user=root Dec 13 19:11:20 sachi sshd\[11121\]: Failed password for root from 45.55.38.39 port 37552 ssh2 Dec 13 19:19:32 sachi sshd\[11817\]: Invalid user medias from 45.55.38.39 Dec 13 19:19:32 sachi sshd\[11817\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Dec 13 19:19:33 sachi sshd\[11817\]: Failed password for invalid user medias from 45.55.38.39 port 41011 ssh2	2019-12-14 13:34:00
attackspambots	Dec 9 19:22:14 cvbnet sshd[13093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Dec 9 19:22:16 cvbnet sshd[13093]: Failed password for invalid user payan from 45.55.38.39 port 59020 ssh2 ...	2019-12-10 03:05:43
attackbotsspam	Dec 6 06:51:47 meumeu sshd[17756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Dec 6 06:51:50 meumeu sshd[17756]: Failed password for invalid user gerynowicz from 45.55.38.39 port 41403 ssh2 Dec 6 06:57:28 meumeu sshd[18640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 ...	2019-12-06 14:08:42
attackspambots	Dec 5 08:15:44 zeus sshd[29273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Dec 5 08:15:47 zeus sshd[29273]: Failed password for invalid user borders from 45.55.38.39 port 35495 ssh2 Dec 5 08:24:15 zeus sshd[29509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Dec 5 08:24:18 zeus sshd[29509]: Failed password for invalid user misra from 45.55.38.39 port 40810 ssh2	2019-12-05 16:28:41
attackspambots	Invalid user myron from 45.55.38.39 port 49777	2019-11-28 21:40:29
attackbotsspam	Fail2Ban Ban Triggered	2019-11-20 01:22:00
attack	2019-11-10T09:35:37.779656shield sshd\[12464\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 user=root 2019-11-10T09:35:39.892828shield sshd\[12464\]: Failed password for root from 45.55.38.39 port 33384 ssh2 2019-11-10T09:39:35.905555shield sshd\[13260\]: Invalid user user from 45.55.38.39 port 52238 2019-11-10T09:39:35.909726shield sshd\[13260\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 2019-11-10T09:39:37.696532shield sshd\[13260\]: Failed password for invalid user user from 45.55.38.39 port 52238 ssh2	2019-11-10 18:15:27
attackbotsspam	$f2bV_matches	2019-11-09 20:15:40
attackbotsspam	Nov 4 01:26:14 server sshd\[30757\]: Invalid user fh from 45.55.38.39 Nov 4 01:26:14 server sshd\[30757\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Nov 4 01:26:16 server sshd\[30757\]: Failed password for invalid user fh from 45.55.38.39 port 48022 ssh2 Nov 4 01:30:25 server sshd\[31894\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 user=root Nov 4 01:30:27 server sshd\[31894\]: Failed password for root from 45.55.38.39 port 41577 ssh2 ...	2019-11-04 07:02:15
attackspam	Nov 3 06:52:54 dedicated sshd[7705]: Invalid user cn from 45.55.38.39 port 52965	2019-11-03 16:26:35
attackspam	Nov 3 04:59:09 dedicated sshd[21334]: Invalid user root@1234567890 from 45.55.38.39 port 58155	2019-11-03 12:12:27
attackspam	Oct 31 13:44:25 venus sshd\[11163\]: Invalid user tiatenlorli from 45.55.38.39 port 50262 Oct 31 13:44:25 venus sshd\[11163\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Oct 31 13:44:28 venus sshd\[11163\]: Failed password for invalid user tiatenlorli from 45.55.38.39 port 50262 ssh2 ...	2019-10-31 21:57:45
attackbotsspam	2019-10-25T22:24:58.749101scmdmz1 sshd\[19813\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 user=root 2019-10-25T22:25:00.419512scmdmz1 sshd\[19813\]: Failed password for root from 45.55.38.39 port 46864 ssh2 2019-10-25T22:28:42.200353scmdmz1 sshd\[20233\]: Invalid user ubnt from 45.55.38.39 port 38381 ...	2019-10-26 05:19:25
attackbotsspam	Automatic report - Banned IP Access	2019-10-21 04:07:06
attack	Invalid user 123 from 45.55.38.39 port 48661	2019-10-13 04:28:31
attackbots	Oct 6 07:26:12 localhost sshd\[49070\]: Invalid user Chicken@123 from 45.55.38.39 port 50549 Oct 6 07:26:12 localhost sshd\[49070\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Oct 6 07:26:14 localhost sshd\[49070\]: Failed password for invalid user Chicken@123 from 45.55.38.39 port 50549 ssh2 Oct 6 07:30:19 localhost sshd\[49217\]: Invalid user Jelszo from 45.55.38.39 port 42237 Oct 6 07:30:19 localhost sshd\[49217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 ...	2019-10-06 19:00:48
attackbots	2019-09-29T15:46:40.120066tmaserv sshd\[3103\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 2019-09-29T15:46:42.198739tmaserv sshd\[3103\]: Failed password for invalid user ub from 45.55.38.39 port 34296 ssh2 2019-09-29T15:59:37.038966tmaserv sshd\[3845\]: Invalid user admin from 45.55.38.39 port 38714 2019-09-29T15:59:37.044884tmaserv sshd\[3845\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 2019-09-29T15:59:39.128852tmaserv sshd\[3845\]: Failed password for invalid user admin from 45.55.38.39 port 38714 ssh2 2019-09-29T16:04:13.298640tmaserv sshd\[4150\]: Invalid user dimitri from 45.55.38.39 port 59012 ...	2019-09-29 21:05:12
attack	Sep 28 15:03:09 mail sshd\[30576\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Sep 28 15:03:11 mail sshd\[30576\]: Failed password for invalid user elio from 45.55.38.39 port 42124 ssh2 Sep 28 15:07:30 mail sshd\[30986\]: Invalid user viper from 45.55.38.39 port 34191 Sep 28 15:07:30 mail sshd\[30986\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Sep 28 15:07:32 mail sshd\[30986\]: Failed password for invalid user viper from 45.55.38.39 port 34191 ssh2	2019-09-29 03:50:48
attack	Sep 21 12:01:04 webhost01 sshd[9804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Sep 21 12:01:06 webhost01 sshd[9804]: Failed password for invalid user uc from 45.55.38.39 port 34516 ssh2 ...	2019-09-21 13:44:35
attackbots	Invalid user travel from 45.55.38.39 port 33938	2019-09-21 01:50:54
attack	2019-09-09T21:24:54.539146abusebot-8.cloudsearch.cf sshd\[19036\]: Invalid user admin from 45.55.38.39 port 49784	2019-09-10 05:57:48
attackbotsspam	Sep 6 16:00:39 lnxmysql61 sshd[5506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39	2019-09-07 07:21:43
attack	Sep 5 12:31:02 sachi sshd\[1038\]: Invalid user webadmin from 45.55.38.39 Sep 5 12:31:02 sachi sshd\[1038\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Sep 5 12:31:04 sachi sshd\[1038\]: Failed password for invalid user webadmin from 45.55.38.39 port 41638 ssh2 Sep 5 12:35:26 sachi sshd\[1415\]: Invalid user ubuntu from 45.55.38.39 Sep 5 12:35:26 sachi sshd\[1415\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39	2019-09-06 07:04:35
attackbots	Aug 28 05:13:00 hb sshd\[8474\]: Invalid user 123456 from 45.55.38.39 Aug 28 05:13:00 hb sshd\[8474\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Aug 28 05:13:02 hb sshd\[8474\]: Failed password for invalid user 123456 from 45.55.38.39 port 33289 ssh2 Aug 28 05:17:10 hb sshd\[8896\]: Invalid user 123 from 45.55.38.39 Aug 28 05:17:10 hb sshd\[8896\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39	2019-08-28 13:47:58
attackbots	Aug 26 14:39:26 web1 sshd\[16106\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 user=root Aug 26 14:39:27 web1 sshd\[16106\]: Failed password for root from 45.55.38.39 port 43799 ssh2 Aug 26 14:43:35 web1 sshd\[16504\]: Invalid user quinton from 45.55.38.39 Aug 26 14:43:35 web1 sshd\[16504\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Aug 26 14:43:37 web1 sshd\[16504\]: Failed password for invalid user quinton from 45.55.38.39 port 38835 ssh2	2019-08-27 11:48:31

相同子网IP讨论:

IP	类型	评论内容	时间
45.55.38.214	attack	[MK-VM4] Blocked by UFW	2020-06-20 18:46:38
45.55.38.214	attackspambots	[Tue May 19 20:42:35.704921 2020] [:error] [pid 65425] [client 45.55.38.214:46148] [client 45.55.38.214] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "91"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "200.132.59.214"] [uri "/"] [unique_id "XsRu6xWXqa@P1X@JQcmibgAAAAU"] ...	2020-05-20 13:14:29
45.55.38.214	attackbots	Scanning an empty webserver with deny all robots.txt	2020-05-13 06:21:04
45.55.38.3	attackspam	SSH login attempts with user root.	2019-11-30 05:06:06

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.38.39
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39536
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.38.39.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080901 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 09 23:53:54 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 39.38.55.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 39.38.55.45.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
104.248.122.143	attackspam	Invalid user gkg from 104.248.122.143 port 54094	2020-02-11 17:13:51
36.75.140.72	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-11 17:32:24
82.62.153.15	attackspambots	Feb 11 06:04:39 srv-ubuntu-dev3 sshd[105261]: Invalid user yip from 82.62.153.15 Feb 11 06:04:39 srv-ubuntu-dev3 sshd[105261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.62.153.15 Feb 11 06:04:39 srv-ubuntu-dev3 sshd[105261]: Invalid user yip from 82.62.153.15 Feb 11 06:04:41 srv-ubuntu-dev3 sshd[105261]: Failed password for invalid user yip from 82.62.153.15 port 58466 ssh2 Feb 11 06:07:39 srv-ubuntu-dev3 sshd[105752]: Invalid user bmc from 82.62.153.15 Feb 11 06:07:39 srv-ubuntu-dev3 sshd[105752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.62.153.15 Feb 11 06:07:39 srv-ubuntu-dev3 sshd[105752]: Invalid user bmc from 82.62.153.15 Feb 11 06:07:40 srv-ubuntu-dev3 sshd[105752]: Failed password for invalid user bmc from 82.62.153.15 port 54331 ssh2 Feb 11 06:10:37 srv-ubuntu-dev3 sshd[106219]: Invalid user km from 82.62.153.15 ...	2020-02-11 17:20:51
61.63.177.92	attack	Honeypot attack, port: 81, PTR: 92-177.63.61-savecom.	2020-02-11 17:25:39
2.203.118.55	attackspambots	proto=tcp . spt=999 . dpt=25 . Found on Alienvault (94)	2020-02-11 17:37:08
51.77.210.216	attackbotsspam	Feb 10 20:12:47 sachi sshd\[22846\]: Invalid user wdf from 51.77.210.216 Feb 10 20:12:47 sachi sshd\[22846\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.ip-51-77-210.eu Feb 10 20:12:49 sachi sshd\[22846\]: Failed password for invalid user wdf from 51.77.210.216 port 47806 ssh2 Feb 10 20:15:00 sachi sshd\[23036\]: Invalid user ifk from 51.77.210.216 Feb 10 20:15:00 sachi sshd\[23036\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.ip-51-77-210.eu	2020-02-11 17:36:29
223.205.219.184	attackspam	Honeypot hit.	2020-02-11 17:17:44
139.219.1.73	attack	ssh failed login	2020-02-11 17:37:39
180.250.216.242	attack	1581396745 - 02/11/2020 05:52:25 Host: 180.250.216.242/180.250.216.242 Port: 445 TCP Blocked	2020-02-11 17:38:44
79.113.13.253	attackbotsspam	Honeypot attack, port: 81, PTR: 79-113-13-253.rdsnet.ro.	2020-02-11 17:11:53
121.11.111.230	attack	ssh failed login	2020-02-11 17:28:25
112.109.92.6	attackspambots	1581396774 - 02/11/2020 05:52:54 Host: 112.109.92.6/112.109.92.6 Port: 445 TCP Blocked	2020-02-11 17:14:48
174.138.44.30	attackspam	Feb 11 06:39:25 dedicated sshd[20713]: Invalid user bpe from 174.138.44.30 port 60572	2020-02-11 17:22:34
170.246.115.106	attackbotsspam	Automatic report - XMLRPC Attack	2020-02-11 17:45:49
51.68.18.102	attackbots	Feb 11 09:01:11 game-panel sshd[11467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.18.102 Feb 11 09:01:13 game-panel sshd[11467]: Failed password for invalid user nagios from 51.68.18.102 port 50292 ssh2 Feb 11 09:05:23 game-panel sshd[11667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.18.102	2020-02-11 17:06:24

最近上报的IP列表

118.144.137.98	199.77.19.205	110.209.70.47	104.168.188.82
194.216.181.200	91.149.157.185	55.198.203.115	146.116.250.19
73.66.23.91	132.29.99.57	76.240.82.40	70.40.220.109
192.49.5.121	78.224.231.214	31.189.27.215	85.222.178.203
187.85.214.57	169.60.205.217	205.62.38.40	191.126.195.176