45.55.61.198 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
45.55.61.114	attack	C1,WP GET /suche/wp-login.php	2020-10-11 02:56:06
45.55.61.114	attackbots	45.55.61.114 - - [10/Oct/2020:12:32:10 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [10/Oct/2020:12:32:11 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [10/Oct/2020:12:32:12 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-10 18:44:37
45.55.61.114	attackspambots	45.55.61.114 - - [30/Sep/2020:03:32:27 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [30/Sep/2020:03:32:28 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [30/Sep/2020:03:32:30 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-30 09:51:12
45.55.61.114	attackbots	45.55.61.114 - - [29/Sep/2020:18:49:41 +0200] "GET /wp-login.php HTTP/1.1" 200 8712 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [29/Sep/2020:18:49:43 +0200] "POST /wp-login.php HTTP/1.1" 200 8942 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [29/Sep/2020:18:49:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-30 02:42:42
45.55.61.114	attackspambots	45.55.61.114 - - [29/Sep/2020:11:41:07 +0100] "POST /wp-login.php HTTP/1.1" 200 2141 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [29/Sep/2020:11:41:08 +0100] "POST /wp-login.php HTTP/1.1" 200 2125 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [29/Sep/2020:11:41:08 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-29 18:45:44
45.55.61.114	attack	45.55.61.114 - - [20/Sep/2020:15:30:23 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [20/Sep/2020:15:54:41 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-20 21:58:33
45.55.61.114	attackspam	CMS (WordPress or Joomla) login attempt.	2020-09-20 13:51:36
45.55.61.114	attackbots	45.55.61.114 - - [19/Sep/2020:19:40:00 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [19/Sep/2020:19:40:02 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [19/Sep/2020:19:40:03 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-20 05:51:32
45.55.61.114	attackspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-03 15:12:09
45.55.61.114	attackbotsspam	45.55.61.114 - - \[03/Sep/2020:01:06:39 +0200\] "POST /wp-login.php HTTP/1.0" 200 8744 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - \[03/Sep/2020:01:06:40 +0200\] "POST /wp-login.php HTTP/1.0" 200 8746 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - \[03/Sep/2020:01:06:42 +0200\] "POST /wp-login.php HTTP/1.0" 200 8742 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-09-03 07:24:40
45.55.61.114	attackbotsspam	45.55.61.114 - - [16/Aug/2020:05:30:59 +0100] "POST /wp-login.php HTTP/1.1" 200 2213 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [16/Aug/2020:05:31:00 +0100] "POST /wp-login.php HTTP/1.1" 200 2234 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [16/Aug/2020:05:31:01 +0100] "POST /wp-login.php HTTP/1.1" 200 2233 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-16 16:53:33
45.55.61.114	attackspambots	45.55.61.114 - - [10/Aug/2020:04:55:59 +0200] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [10/Aug/2020:04:55:59 +0200] "POST /wp-login.php HTTP/1.1" 200 2031 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [10/Aug/2020:04:55:59 +0200] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [10/Aug/2020:04:56:00 +0200] "POST /wp-login.php HTTP/1.1" 200 2007 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [10/Aug/2020:04:56:00 +0200] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [10/Aug/2020:04:56:00 +0200] "POST /wp-login.php HTTP/1.1" 200 2008 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/6 ...	2020-08-10 12:16:11
45.55.61.114	attack	Automatic report - XMLRPC Attack	2020-08-06 01:40:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.61.198
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36701
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.55.61.198.			IN	A

;; AUTHORITY SECTION:
.			441	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091401 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 15 04:01:31 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 198.61.55.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 198.61.55.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
176.44.43.210	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 27-01-2020 09:55:14.	2020-01-27 20:25:13
104.248.150.69	attackspambots	Jan 27 13:52:30 MK-Soft-Root2 sshd[12344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.69 Jan 27 13:52:32 MK-Soft-Root2 sshd[12344]: Failed password for invalid user tylor from 104.248.150.69 port 48398 ssh2 ...	2020-01-27 20:55:25
2a03:b0c0:2:f0::244:a001	attack	Fail2Ban Ban Triggered	2020-01-27 20:23:57
83.222.181.213	attackspambots	Honeypot attack, port: 445, PTR: net4-ip213.linkbg.com.	2020-01-27 21:09:45
185.27.232.212	attackbotsspam	Unauthorized connection attempt detected from IP address 185.27.232.212 to port 5555 [J]	2020-01-27 20:58:30
201.249.59.205	attackbots	Jan 27 19:20:52 webhost01 sshd[12247]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.249.59.205 Jan 27 19:20:54 webhost01 sshd[12247]: Failed password for invalid user demo from 201.249.59.205 port 39230 ssh2 ...	2020-01-27 21:00:59
200.122.249.203	attackbots	Unauthorized connection attempt detected from IP address 200.122.249.203 to port 2220 [J]	2020-01-27 20:54:12
179.124.34.8	attack	Unauthorized connection attempt detected from IP address 179.124.34.8 to port 2220 [J]	2020-01-27 20:48:26
94.137.113.66	attackbotsspam	Jan 27 02:54:30 php1 sshd\[28070\]: Invalid user ding from 94.137.113.66 Jan 27 02:54:30 php1 sshd\[28070\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.137.113.66 Jan 27 02:54:32 php1 sshd\[28070\]: Failed password for invalid user ding from 94.137.113.66 port 50642 ssh2 Jan 27 02:59:27 php1 sshd\[28434\]: Invalid user admin1 from 94.137.113.66 Jan 27 02:59:27 php1 sshd\[28434\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.137.113.66	2020-01-27 21:05:17
218.92.0.191	attack	Jan 27 13:06:16 dcd-gentoo sshd[16399]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Jan 27 13:06:18 dcd-gentoo sshd[16399]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Jan 27 13:06:16 dcd-gentoo sshd[16399]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Jan 27 13:06:18 dcd-gentoo sshd[16399]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Jan 27 13:06:16 dcd-gentoo sshd[16399]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Jan 27 13:06:18 dcd-gentoo sshd[16399]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Jan 27 13:06:18 dcd-gentoo sshd[16399]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.191 port 17867 ssh2 ...	2020-01-27 20:30:31
103.75.1.121	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-27 20:24:20
68.183.133.156	attackspam	Jan 27 00:51:28 server sshd\[3229\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.133.156 Jan 27 00:51:30 server sshd\[3229\]: Failed password for invalid user prestashop from 68.183.133.156 port 43166 ssh2 Jan 27 12:54:53 server sshd\[16249\]: Invalid user german from 68.183.133.156 Jan 27 12:54:53 server sshd\[16249\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.133.156 Jan 27 12:54:56 server sshd\[16249\]: Failed password for invalid user german from 68.183.133.156 port 54648 ssh2 ...	2020-01-27 20:45:55
66.249.155.245	attack	Jan 27 12:45:46 server sshd\[14293\]: Invalid user apn from 66.249.155.245 Jan 27 12:45:46 server sshd\[14293\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.249.155.245 Jan 27 12:45:47 server sshd\[14293\]: Failed password for invalid user apn from 66.249.155.245 port 60116 ssh2 Jan 27 13:00:58 server sshd\[18082\]: Invalid user heriberto from 66.249.155.245 Jan 27 13:00:58 server sshd\[18082\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.249.155.245 ...	2020-01-27 20:37:55
66.249.64.208	attackspam	Automatic report - Banned IP Access	2020-01-27 20:48:49
59.120.1.133	attackspambots	Jan 27 12:02:28 mout sshd[23198]: Invalid user bernardo from 59.120.1.133 port 36451	2020-01-27 20:29:30

最近上报的IP列表

113.57.119.236	77.188.241.81	78.108.108.110	45.142.213.71
101.229.175.135	165.165.159.38	138.117.123.70	45.55.50.177
178.46.215.134	23.230.21.101	47.243.75.202	202.137.17.151
92.144.146.1	111.172.234.244	50.201.51.250	47.242.121.171
182.52.83.40	41.60.234.184	185.93.32.219	156.239.49.165

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表