45.55.38.39 - IPInfo

基本信息:

城市(city): Clifton

省份(region): New Jersey

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 28 - port: 15592 proto: TCP cat: Misc Attack	2020-06-07 01:41:42
attack	TCP (SYN) 45.55.38.39:52533 -> port 26927, len 44	2020-06-06 09:20:30
attackspambots	10924/tcp 441/tcp 17554/tcp... [2020-04-12/05-21]87pkt,31pt.(tcp)	2020-05-22 07:44:01
attack	ET CINS Active Threat Intelligence Poor Reputation IP group 28 - port: 26429 proto: TCP cat: Misc Attack	2020-05-15 04:24:57
attackbotsspam	Fail2Ban Ban Triggered	2020-04-24 02:58:14
attack	Dec 13 19:11:18 sachi sshd\[11121\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 user=root Dec 13 19:11:20 sachi sshd\[11121\]: Failed password for root from 45.55.38.39 port 37552 ssh2 Dec 13 19:19:32 sachi sshd\[11817\]: Invalid user medias from 45.55.38.39 Dec 13 19:19:32 sachi sshd\[11817\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Dec 13 19:19:33 sachi sshd\[11817\]: Failed password for invalid user medias from 45.55.38.39 port 41011 ssh2	2019-12-14 13:34:00
attackspambots	Dec 9 19:22:14 cvbnet sshd[13093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Dec 9 19:22:16 cvbnet sshd[13093]: Failed password for invalid user payan from 45.55.38.39 port 59020 ssh2 ...	2019-12-10 03:05:43
attackbotsspam	Dec 6 06:51:47 meumeu sshd[17756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Dec 6 06:51:50 meumeu sshd[17756]: Failed password for invalid user gerynowicz from 45.55.38.39 port 41403 ssh2 Dec 6 06:57:28 meumeu sshd[18640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 ...	2019-12-06 14:08:42
attackspambots	Dec 5 08:15:44 zeus sshd[29273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Dec 5 08:15:47 zeus sshd[29273]: Failed password for invalid user borders from 45.55.38.39 port 35495 ssh2 Dec 5 08:24:15 zeus sshd[29509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Dec 5 08:24:18 zeus sshd[29509]: Failed password for invalid user misra from 45.55.38.39 port 40810 ssh2	2019-12-05 16:28:41
attackspambots	Invalid user myron from 45.55.38.39 port 49777	2019-11-28 21:40:29
attackbotsspam	Fail2Ban Ban Triggered	2019-11-20 01:22:00
attack	2019-11-10T09:35:37.779656shield sshd\[12464\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 user=root 2019-11-10T09:35:39.892828shield sshd\[12464\]: Failed password for root from 45.55.38.39 port 33384 ssh2 2019-11-10T09:39:35.905555shield sshd\[13260\]: Invalid user user from 45.55.38.39 port 52238 2019-11-10T09:39:35.909726shield sshd\[13260\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 2019-11-10T09:39:37.696532shield sshd\[13260\]: Failed password for invalid user user from 45.55.38.39 port 52238 ssh2	2019-11-10 18:15:27
attackbotsspam	$f2bV_matches	2019-11-09 20:15:40
attackbotsspam	Nov 4 01:26:14 server sshd\[30757\]: Invalid user fh from 45.55.38.39 Nov 4 01:26:14 server sshd\[30757\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Nov 4 01:26:16 server sshd\[30757\]: Failed password for invalid user fh from 45.55.38.39 port 48022 ssh2 Nov 4 01:30:25 server sshd\[31894\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 user=root Nov 4 01:30:27 server sshd\[31894\]: Failed password for root from 45.55.38.39 port 41577 ssh2 ...	2019-11-04 07:02:15
attackspam	Nov 3 06:52:54 dedicated sshd[7705]: Invalid user cn from 45.55.38.39 port 52965	2019-11-03 16:26:35
attackspam	Nov 3 04:59:09 dedicated sshd[21334]: Invalid user root@1234567890 from 45.55.38.39 port 58155	2019-11-03 12:12:27
attackspam	Oct 31 13:44:25 venus sshd\[11163\]: Invalid user tiatenlorli from 45.55.38.39 port 50262 Oct 31 13:44:25 venus sshd\[11163\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Oct 31 13:44:28 venus sshd\[11163\]: Failed password for invalid user tiatenlorli from 45.55.38.39 port 50262 ssh2 ...	2019-10-31 21:57:45
attackbotsspam	2019-10-25T22:24:58.749101scmdmz1 sshd\[19813\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 user=root 2019-10-25T22:25:00.419512scmdmz1 sshd\[19813\]: Failed password for root from 45.55.38.39 port 46864 ssh2 2019-10-25T22:28:42.200353scmdmz1 sshd\[20233\]: Invalid user ubnt from 45.55.38.39 port 38381 ...	2019-10-26 05:19:25
attackbotsspam	Automatic report - Banned IP Access	2019-10-21 04:07:06
attack	Invalid user 123 from 45.55.38.39 port 48661	2019-10-13 04:28:31
attackbots	Oct 6 07:26:12 localhost sshd\[49070\]: Invalid user Chicken@123 from 45.55.38.39 port 50549 Oct 6 07:26:12 localhost sshd\[49070\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Oct 6 07:26:14 localhost sshd\[49070\]: Failed password for invalid user Chicken@123 from 45.55.38.39 port 50549 ssh2 Oct 6 07:30:19 localhost sshd\[49217\]: Invalid user Jelszo from 45.55.38.39 port 42237 Oct 6 07:30:19 localhost sshd\[49217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 ...	2019-10-06 19:00:48
attackbots	2019-09-29T15:46:40.120066tmaserv sshd\[3103\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 2019-09-29T15:46:42.198739tmaserv sshd\[3103\]: Failed password for invalid user ub from 45.55.38.39 port 34296 ssh2 2019-09-29T15:59:37.038966tmaserv sshd\[3845\]: Invalid user admin from 45.55.38.39 port 38714 2019-09-29T15:59:37.044884tmaserv sshd\[3845\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 2019-09-29T15:59:39.128852tmaserv sshd\[3845\]: Failed password for invalid user admin from 45.55.38.39 port 38714 ssh2 2019-09-29T16:04:13.298640tmaserv sshd\[4150\]: Invalid user dimitri from 45.55.38.39 port 59012 ...	2019-09-29 21:05:12
attack	Sep 28 15:03:09 mail sshd\[30576\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Sep 28 15:03:11 mail sshd\[30576\]: Failed password for invalid user elio from 45.55.38.39 port 42124 ssh2 Sep 28 15:07:30 mail sshd\[30986\]: Invalid user viper from 45.55.38.39 port 34191 Sep 28 15:07:30 mail sshd\[30986\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Sep 28 15:07:32 mail sshd\[30986\]: Failed password for invalid user viper from 45.55.38.39 port 34191 ssh2	2019-09-29 03:50:48
attack	Sep 21 12:01:04 webhost01 sshd[9804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Sep 21 12:01:06 webhost01 sshd[9804]: Failed password for invalid user uc from 45.55.38.39 port 34516 ssh2 ...	2019-09-21 13:44:35
attackbots	Invalid user travel from 45.55.38.39 port 33938	2019-09-21 01:50:54
attack	2019-09-09T21:24:54.539146abusebot-8.cloudsearch.cf sshd\[19036\]: Invalid user admin from 45.55.38.39 port 49784	2019-09-10 05:57:48
attackbotsspam	Sep 6 16:00:39 lnxmysql61 sshd[5506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39	2019-09-07 07:21:43
attack	Sep 5 12:31:02 sachi sshd\[1038\]: Invalid user webadmin from 45.55.38.39 Sep 5 12:31:02 sachi sshd\[1038\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Sep 5 12:31:04 sachi sshd\[1038\]: Failed password for invalid user webadmin from 45.55.38.39 port 41638 ssh2 Sep 5 12:35:26 sachi sshd\[1415\]: Invalid user ubuntu from 45.55.38.39 Sep 5 12:35:26 sachi sshd\[1415\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39	2019-09-06 07:04:35
attackbots	Aug 28 05:13:00 hb sshd\[8474\]: Invalid user 123456 from 45.55.38.39 Aug 28 05:13:00 hb sshd\[8474\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Aug 28 05:13:02 hb sshd\[8474\]: Failed password for invalid user 123456 from 45.55.38.39 port 33289 ssh2 Aug 28 05:17:10 hb sshd\[8896\]: Invalid user 123 from 45.55.38.39 Aug 28 05:17:10 hb sshd\[8896\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39	2019-08-28 13:47:58
attackbots	Aug 26 14:39:26 web1 sshd\[16106\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 user=root Aug 26 14:39:27 web1 sshd\[16106\]: Failed password for root from 45.55.38.39 port 43799 ssh2 Aug 26 14:43:35 web1 sshd\[16504\]: Invalid user quinton from 45.55.38.39 Aug 26 14:43:35 web1 sshd\[16504\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Aug 26 14:43:37 web1 sshd\[16504\]: Failed password for invalid user quinton from 45.55.38.39 port 38835 ssh2	2019-08-27 11:48:31

相同子网IP讨论:

IP	类型	评论内容	时间
45.55.38.214	attack	[MK-VM4] Blocked by UFW	2020-06-20 18:46:38
45.55.38.214	attackspambots	[Tue May 19 20:42:35.704921 2020] [:error] [pid 65425] [client 45.55.38.214:46148] [client 45.55.38.214] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "91"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "200.132.59.214"] [uri "/"] [unique_id "XsRu6xWXqa@P1X@JQcmibgAAAAU"] ...	2020-05-20 13:14:29
45.55.38.214	attackbots	Scanning an empty webserver with deny all robots.txt	2020-05-13 06:21:04
45.55.38.3	attackspam	SSH login attempts with user root.	2019-11-30 05:06:06

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.38.39
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39536
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.38.39.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080901 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 09 23:53:54 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 39.38.55.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 39.38.55.45.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
122.252.229.20	attackbots	Multiple failed RDP login attempts	2019-07-06 05:46:03
185.176.26.18	attackspambots	05.07.2019 21:57:12 Connection to port 1900 blocked by firewall	2019-07-06 06:05:22
151.237.188.154	attack	Unauthorized access detected from banned ip	2019-07-06 06:15:15
172.92.92.136	attackbotsspam	Jul 5 22:43:38 rpi sshd[10464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.92.92.136 Jul 5 22:43:40 rpi sshd[10464]: Failed password for invalid user r00t from 172.92.92.136 port 36588 ssh2	2019-07-06 05:39:23
67.207.81.44	attack	port scan and connect, tcp 22 (ssh)	2019-07-06 06:17:26
185.49.65.57	attackspambots	[portscan] Port scan	2019-07-06 05:51:53
209.85.210.66	attack	DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=uF22bEX1/cP8jOoa0YnJI66pir4/+qdIo/5XhZyAoIU=; b=YQQGkQXrRIbYYtcVad6x41gv5eCBfopUlLingreVFAl80ruFv4lCPyMdQO9fW1Kolc WvFfdlaH1jQYx81GjAPI2nzXAWRHcIcBg2e5MeTOOkM2pETRzypuzKfzpV6OKeWAPenk HdoicpqtQkst2pre9fs2gaHlFvocZEcW44lxusDJgHS3mv0pH5LnXBi/hoL3tSNKmY8W CNcV8uWm/Jn5NaeFj47QPGBGHJP0Ev/u2gh53d4TeOp5cc7FnbMPF27NERlyQuBpG3XX knxrECbreaMbiFPqEUHWTz3RllncoBryVr0hAITXhRXzEuHWvJHL58KaDWyIjDXdtwG9 NwdQ==	2019-07-06 06:19:33
140.143.56.61	attackspam	Jul 5 20:56:27 OPSO sshd\[22857\]: Invalid user ariane from 140.143.56.61 port 36086 Jul 5 20:56:27 OPSO sshd\[22857\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.56.61 Jul 5 20:56:29 OPSO sshd\[22857\]: Failed password for invalid user ariane from 140.143.56.61 port 36086 ssh2 Jul 5 20:59:02 OPSO sshd\[22934\]: Invalid user chad from 140.143.56.61 port 32970 Jul 5 20:59:02 OPSO sshd\[22934\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.56.61	2019-07-06 06:01:17
181.63.248.235	attack	Jul 5 21:05:14 fr01 sshd[20527]: Invalid user wpyan from 181.63.248.235 Jul 5 21:05:14 fr01 sshd[20527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.63.248.235 Jul 5 21:05:14 fr01 sshd[20527]: Invalid user wpyan from 181.63.248.235 Jul 5 21:05:16 fr01 sshd[20527]: Failed password for invalid user wpyan from 181.63.248.235 port 33152 ssh2 ...	2019-07-06 05:56:53
218.92.0.199	attackspam	Jul 5 23:29:08 dev sshd\[15553\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.199 user=root Jul 5 23:29:09 dev sshd\[15553\]: Failed password for root from 218.92.0.199 port 11249 ssh2 ...	2019-07-06 05:49:27
185.216.140.17	attack	Brute forcing RDP port 3389	2019-07-06 05:37:49
168.228.150.167	attackbots	failed_logins	2019-07-06 05:44:32
109.99.199.201	attackbots	2019-07-05T21:00:51Z - RDP login failed multiple times. (109.99.199.201)	2019-07-06 05:41:31
183.150.35.46	attackspam	SASL broute force	2019-07-06 05:51:05
87.27.223.155	attack	Jul 5 21:05:17 fr01 sshd[20529]: Invalid user oscar from 87.27.223.155 Jul 5 21:05:17 fr01 sshd[20529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.27.223.155 Jul 5 21:05:17 fr01 sshd[20529]: Invalid user oscar from 87.27.223.155 Jul 5 21:05:18 fr01 sshd[20529]: Failed password for invalid user oscar from 87.27.223.155 port 36458 ssh2 ...	2019-07-06 05:43:16

最近上报的IP列表

118.144.137.98	199.77.19.205	110.209.70.47	104.168.188.82
194.216.181.200	91.149.157.185	55.198.203.115	146.116.250.19
73.66.23.91	132.29.99.57	76.240.82.40	70.40.220.109
192.49.5.121	78.224.231.214	31.189.27.215	85.222.178.203
187.85.214.57	169.60.205.217	205.62.38.40	191.126.195.176