45.64.139.181 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Bangladesh

运营商(isp): ZX Online Ltd ISP of Bangladesh

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Oct 2 00:08:50 mail01 postfix/postscreen[12956]: CONNECT from [45.64.139.181]:54715 to [94.130.181.95]:25 Oct 2 00:08:50 mail01 postfix/dnsblog[12957]: addr 45.64.139.181 listed by domain bl.blocklist.de as 127.0.0.9 Oct 2 00:08:50 mail01 postfix/dnsblog[12959]: addr 45.64.139.181 listed by domain zen.spamhaus.org as 127.0.0.3 Oct 2 00:08:50 mail01 postfix/dnsblog[12959]: addr 45.64.139.181 listed by domain zen.spamhaus.org as 127.0.0.11 Oct 2 00:08:50 mail01 postfix/dnsblog[12959]: addr 45.64.139.181 listed by domain zen.spamhaus.org as 127.0.0.4 Oct 2 00:08:50 mail01 postfix/dnsblog[12958]: addr 45.64.139.181 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Oct 2 00:08:50 mail01 postfix/postscreen[12956]: PREGREET 20 after 0.79 from [45.64.139.181]:54715: EHLO luserverglass.hostname Oct 2 00:08:50 mail01 postfix/postscreen[12956]: DNSBL rank 5 for [45.64.139.181]:54715 Oct x@x Oct x@x Oct 2 00:08:52 mail01 postfix/postscreen[12956]: HANGUP after 2 from [45......... -------------------------------	2019-10-04 06:01:19

类型

评论内容

时间

attack

Oct  2 00:08:50 mail01 postfix/postscreen[12956]: CONNECT from [45.64.139.181]:54715 to [94.130.181.95]:25
Oct  2 00:08:50 mail01 postfix/dnsblog[12957]: addr 45.64.139.181 listed by domain bl.blocklist.de as 127.0.0.9
Oct  2 00:08:50 mail01 postfix/dnsblog[12959]: addr 45.64.139.181 listed by domain zen.spamhaus.org as 127.0.0.3
Oct  2 00:08:50 mail01 postfix/dnsblog[12959]: addr 45.64.139.181 listed by domain zen.spamhaus.org as 127.0.0.11
Oct  2 00:08:50 mail01 postfix/dnsblog[12959]: addr 45.64.139.181 listed by domain zen.spamhaus.org as 127.0.0.4
Oct  2 00:08:50 mail01 postfix/dnsblog[12958]: addr 45.64.139.181 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2
Oct  2 00:08:50 mail01 postfix/postscreen[12956]: PREGREET 20 after 0.79 from [45.64.139.181]:54715: EHLO luserverglass.hostname

Oct  2 00:08:50 mail01 postfix/postscreen[12956]: DNSBL rank 5 for [45.64.139.181]:54715
Oct x@x
Oct x@x
Oct  2 00:08:52 mail01 postfix/postscreen[12956]: HANGUP after 2 from [45.........
-------------------------------

2019-10-04 06:01:19

相同子网IP讨论:

IP	类型	评论内容	时间
45.64.139.180	attackbotsspam	spam	2020-02-29 18:19:56
45.64.139.234	attack	Sending SPAM email	2020-02-06 23:34:12
45.64.139.180	attackbots	spam	2020-01-10 20:51:57
45.64.139.134	attackspam	Unauthorized connection attempt from IP address 45.64.139.134 on Port 445(SMB)	2019-12-20 05:26:54
45.64.139.178	attackspam	email spam	2019-12-17 20:14:28
45.64.139.177	attackspam	postfix (unknown user, SPF fail or relay access denied)	2019-12-14 18:18:19
45.64.139.179	attackbotsspam	[Aegis] @ 2019-10-30 03:55:40 0000 -> Multiple attempts to send e-mail from invalid/unknown sender domain.	2019-10-30 12:51:54
45.64.139.178	attackspambots	Absender hat Spam-Falle ausgel?st	2019-07-04 20:41:11

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.64.139.181
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8483
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.64.139.181.			IN	A

;; AUTHORITY SECTION:
.			119	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100301 1800 900 604800 86400

;; Query time: 206 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 04 06:01:16 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 181.139.64.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 181.139.64.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
178.128.55.67	attack	Aug 1 08:32:23 plex sshd[26922]: Invalid user jonas from 178.128.55.67 port 45142	2019-08-01 14:44:42
206.189.139.160	attackspambots	Aug 1 05:53:03 MK-Soft-VM6 sshd\[4430\]: Invalid user taras from 206.189.139.160 port 56606 Aug 1 05:53:03 MK-Soft-VM6 sshd\[4430\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.139.160 Aug 1 05:53:05 MK-Soft-VM6 sshd\[4430\]: Failed password for invalid user taras from 206.189.139.160 port 56606 ssh2 ...	2019-08-01 14:53:18
122.114.199.5	attackspam	$f2bV_matches	2019-08-01 14:45:00
104.248.187.152	attackbotsspam	Tried sshing with brute force.	2019-08-01 14:46:43
118.121.204.109	attack	Aug 1 08:54:53 dedicated sshd[23275]: Invalid user ts3server from 118.121.204.109 port 37520	2019-08-01 15:04:00
111.231.225.80	attack	Aug 1 05:31:22 v22018076622670303 sshd\[24083\]: Invalid user stalin from 111.231.225.80 port 56354 Aug 1 05:31:22 v22018076622670303 sshd\[24083\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.225.80 Aug 1 05:31:24 v22018076622670303 sshd\[24083\]: Failed password for invalid user stalin from 111.231.225.80 port 56354 ssh2 ...	2019-08-01 14:35:29
159.203.115.76	attackspambots	Aug 1 08:25:33 vpn01 sshd\[12198\]: Invalid user tamara from 159.203.115.76 Aug 1 08:25:33 vpn01 sshd\[12198\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.115.76 Aug 1 08:25:35 vpn01 sshd\[12198\]: Failed password for invalid user tamara from 159.203.115.76 port 56722 ssh2	2019-08-01 14:32:35
112.85.42.194	attackbots	Aug 1 12:15:08 areeb-Workstation sshd\[24610\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.194 user=root Aug 1 12:15:10 areeb-Workstation sshd\[24610\]: Failed password for root from 112.85.42.194 port 22554 ssh2 Aug 1 12:15:12 areeb-Workstation sshd\[24610\]: Failed password for root from 112.85.42.194 port 22554 ssh2 ...	2019-08-01 14:50:29
209.17.96.226	attack	2019-08-01T03:29:00.008Z CLOSE host=209.17.96.226 port=60295 fd=4 time=32.034 bytes=503 ...	2019-08-01 15:17:04
193.150.109.152	attackbots	Aug 1 08:41:34 ubuntu-2gb-nbg1-dc3-1 sshd[31819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.150.109.152 Aug 1 08:41:36 ubuntu-2gb-nbg1-dc3-1 sshd[31819]: Failed password for invalid user ftpserver from 193.150.109.152 port 2323 ssh2 ...	2019-08-01 14:54:57
200.1.221.204	attackbots	libpam_shield report: forced login attempt	2019-08-01 15:20:01
186.213.145.64	attackspam	Aug 1 09:31:43 yabzik sshd[4696]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.213.145.64 Aug 1 09:31:44 yabzik sshd[4696]: Failed password for invalid user emelia from 186.213.145.64 port 55487 ssh2 Aug 1 09:37:25 yabzik sshd[6621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.213.145.64	2019-08-01 14:43:38
1.203.115.64	attackspambots	Jul 29 01:56:02 xb3 sshd[6390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.203.115.64 user=r.r Jul 29 01:56:04 xb3 sshd[6390]: Failed password for r.r from 1.203.115.64 port 44457 ssh2 Jul 29 01:56:04 xb3 sshd[6390]: Received disconnect from 1.203.115.64: 11: Bye Bye [preauth] Jul 29 02:15:08 xb3 sshd[20430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.203.115.64 user=r.r Jul 29 02:15:10 xb3 sshd[20430]: Failed password for r.r from 1.203.115.64 port 33464 ssh2 Jul 29 02:15:10 xb3 sshd[20430]: Received disconnect from 1.203.115.64: 11: Bye Bye [preauth] Jul 29 02:17:36 xb3 sshd[5979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.203.115.64 user=r.r Jul 29 02:17:38 xb3 sshd[5979]: Failed password for r.r from 1.203.115.64 port 45134 ssh2 Jul 29 02:17:39 xb3 sshd[5979]: Received disconnect from 1.203.115.64: 11: Bye Bye [preauth] Jul........ -------------------------------	2019-08-01 15:15:18
219.129.32.1	attackbotsspam	Jul 29 02:08:00 nandi sshd[2154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.129.32.1 user=r.r Jul 29 02:08:03 nandi sshd[2154]: Failed password for r.r from 219.129.32.1 port 57856 ssh2 Jul 29 02:08:03 nandi sshd[2154]: Received disconnect from 219.129.32.1: 11: Bye Bye [preauth] Jul 29 02:27:46 nandi sshd[10179]: Connection closed by 219.129.32.1 [preauth] Jul 29 02:31:12 nandi sshd[12081]: Connection closed by 219.129.32.1 [preauth] Jul 29 02:34:40 nandi sshd[13503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.129.32.1 user=r.r Jul 29 02:34:42 nandi sshd[13503]: Failed password for r.r from 219.129.32.1 port 35392 ssh2 Jul 29 02:34:43 nandi sshd[13503]: Received disconnect from 219.129.32.1: 11: Bye Bye [preauth] Jul 29 02:36:18 nandi sshd[14559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.129.32.1 user=r.r Jul 29 02:36:........ -------------------------------	2019-08-01 14:29:51
201.251.156.11	attackbots	Automated report - ssh fail2ban: Aug 1 07:53:38 wrong password, user=te, port=33406, ssh2 Aug 1 08:24:07 authentication failure Aug 1 08:24:09 wrong password, user=marwan, port=51978, ssh2	2019-08-01 14:54:37

最近上报的IP列表

213.191.103.151	149.181.178.133	31.255.151.105	88.238.5.118
3.96.195.73	81.36.171.213	73.181.230.231	108.84.193.217
80.43.131.161	207.62.46.219	190.14.39.120	62.94.144.69
23.253.216.84	236.142.134.71	220.196.218.81	35.31.70.51
169.29.145.237	161.159.91.14	64.90.40.247	121.242.47.156