45.80.65.21 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Russian Federation

运营商(isp): Data Centre Solutions Limited Liability Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Feb 9 14:04:07 hpm sshd\[2786\]: Invalid user tst from 45.80.65.21 Feb 9 14:04:07 hpm sshd\[2786\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.21 Feb 9 14:04:09 hpm sshd\[2786\]: Failed password for invalid user tst from 45.80.65.21 port 57008 ssh2 Feb 9 14:07:13 hpm sshd\[3139\]: Invalid user elo from 45.80.65.21 Feb 9 14:07:13 hpm sshd\[3139\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.21	2020-02-10 08:09:35

类型

评论内容

时间

attack

Feb  9 14:04:07 hpm sshd\[2786\]: Invalid user tst from 45.80.65.21
Feb  9 14:04:07 hpm sshd\[2786\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.21
Feb  9 14:04:09 hpm sshd\[2786\]: Failed password for invalid user tst from 45.80.65.21 port 57008 ssh2
Feb  9 14:07:13 hpm sshd\[3139\]: Invalid user elo from 45.80.65.21
Feb  9 14:07:13 hpm sshd\[3139\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.21

2020-02-10 08:09:35

相同子网IP讨论:

IP	类型	评论内容	时间
45.80.65.82	attackspambots	Invalid user mike from 45.80.65.82 port 38116	2020-10-04 06:25:55
45.80.65.82	attackbotsspam	2020-10-03T12:34:29.313181abusebot.cloudsearch.cf sshd[26610]: Invalid user svnroot from 45.80.65.82 port 35392 2020-10-03T12:34:29.318278abusebot.cloudsearch.cf sshd[26610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.82 2020-10-03T12:34:29.313181abusebot.cloudsearch.cf sshd[26610]: Invalid user svnroot from 45.80.65.82 port 35392 2020-10-03T12:34:32.001366abusebot.cloudsearch.cf sshd[26610]: Failed password for invalid user svnroot from 45.80.65.82 port 35392 ssh2 2020-10-03T12:40:20.408356abusebot.cloudsearch.cf sshd[26641]: Invalid user mcserver from 45.80.65.82 port 41802 2020-10-03T12:40:20.414330abusebot.cloudsearch.cf sshd[26641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.82 2020-10-03T12:40:20.408356abusebot.cloudsearch.cf sshd[26641]: Invalid user mcserver from 45.80.65.82 port 41802 2020-10-03T12:40:22.951649abusebot.cloudsearch.cf sshd[26641]: Failed password for inva ...	2020-10-03 22:30:46
45.80.65.82	attack	Sep 15 20:03:34 router sshd[9140]: Failed password for root from 45.80.65.82 port 51044 ssh2 Sep 15 20:09:32 router sshd[9226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.82 Sep 15 20:09:34 router sshd[9226]: Failed password for invalid user guillaume from 45.80.65.82 port 35604 ssh2 ...	2020-09-16 02:43:58
45.80.65.82	attack	Sep 14 22:40:55 php1 sshd\[8683\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.82 user=root Sep 14 22:40:57 php1 sshd\[8683\]: Failed password for root from 45.80.65.82 port 58698 ssh2 Sep 14 22:46:34 php1 sshd\[9181\]: Invalid user admin from 45.80.65.82 Sep 14 22:46:34 php1 sshd\[9181\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.82 Sep 14 22:46:37 php1 sshd\[9181\]: Failed password for invalid user admin from 45.80.65.82 port 42856 ssh2	2020-09-15 18:42:22
45.80.65.82	attackbotsspam	web-1 [ssh] SSH Attack	2020-08-18 19:03:58
45.80.65.82	attack	Jul 29 14:24:28 minden010 sshd[19051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.82 Jul 29 14:24:30 minden010 sshd[19051]: Failed password for invalid user fujino from 45.80.65.82 port 36040 ssh2 Jul 29 14:30:49 minden010 sshd[21234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.82 ...	2020-07-29 21:08:23
45.80.65.82	attack	Unauthorized SSH login attempts	2020-07-27 05:10:35
45.80.65.82	attackbots	Invalid user kanishk from 45.80.65.82 port 38362	2020-07-18 23:33:27
45.80.65.82	attackspam	(sshd) Failed SSH login from 45.80.65.82 (RU/Russia/-): 5 in the last 3600 secs	2020-07-17 15:43:41
45.80.65.82	attackbots	Jul 16 10:15:14 Host-KLAX-C sshd[20620]: Invalid user general from 45.80.65.82 port 52096 ...	2020-07-17 04:41:52
45.80.65.82	attackbotsspam	$f2bV_matches	2020-07-10 23:21:54
45.80.65.82	attackspam	Jun 30 17:30:04 ns381471 sshd[22839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.82 Jun 30 17:30:06 ns381471 sshd[22839]: Failed password for invalid user oc from 45.80.65.82 port 45404 ssh2	2020-06-30 23:31:21
45.80.65.82	attack	Jun 25 14:48:44 xeon sshd[60351]: Failed password for invalid user test from 45.80.65.82 port 34528 ssh2	2020-06-25 23:41:58
45.80.65.82	attack	(sshd) Failed SSH login from 45.80.65.82 (RU/Russia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 15 23:07:03 amsweb01 sshd[14765]: Invalid user ts from 45.80.65.82 port 35952 Jun 15 23:07:05 amsweb01 sshd[14765]: Failed password for invalid user ts from 45.80.65.82 port 35952 ssh2 Jun 15 23:22:02 amsweb01 sshd[16660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.82 user=root Jun 15 23:22:04 amsweb01 sshd[16660]: Failed password for root from 45.80.65.82 port 33344 ssh2 Jun 15 23:27:16 amsweb01 sshd[17441]: Invalid user chenwk from 45.80.65.82 port 60332	2020-06-16 06:51:52
45.80.65.82	attackspam	" "	2020-06-08 18:03:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.80.65.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44522
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.80.65.21.			IN	A

;; AUTHORITY SECTION:
.			567	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020400 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 22:34:42 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 21.65.80.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 21.65.80.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
35.186.145.141	attackspambots	ssh failed login	2019-11-21 08:22:56
85.234.137.174	attackspam	CloudCIX Reconnaissance Scan Detected, PTR: 85-234-137-174.static.as29550.net.	2019-11-21 08:20:51
103.45.102.252	attackbots	Nov 21 00:37:55 vps01 sshd[30286]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.102.252 Nov 21 00:37:57 vps01 sshd[30286]: Failed password for invalid user umlor from 103.45.102.252 port 32818 ssh2 Nov 21 00:41:46 vps01 sshd[30288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.102.252	2019-11-21 08:03:59
188.225.83.121	attack	Multiport scan : 28 ports scanned 123 555 1003 1212 1250 2017 2214 2227 2323 3003 3316 3338 3351 4123 4242 4412 4991 5151 5588 5960 9033 11114 19000 33801 33861 33870 39000 45389	2019-11-21 08:24:22
162.241.37.220	attack	Nov 20 23:37:09 dedicated sshd[24313]: Invalid user 456 from 162.241.37.220 port 48700	2019-11-21 07:52:12
51.255.106.85	attackspam	Automatic report - XMLRPC Attack	2019-11-21 08:01:58
192.144.164.167	attackspambots	Nov 21 00:37:19 MK-Soft-VM6 sshd[26189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.164.167 Nov 21 00:37:22 MK-Soft-VM6 sshd[26189]: Failed password for invalid user megawh from 192.144.164.167 port 43166 ssh2 ...	2019-11-21 08:08:26
222.233.53.132	attackbotsspam	Nov 21 00:12:31 lnxmail61 sshd[26085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.233.53.132 Nov 21 00:12:31 lnxmail61 sshd[26085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.233.53.132	2019-11-21 07:55:07
77.222.103.41	attack	$f2bV_matches	2019-11-21 07:56:52
49.233.80.64	attackbotsspam	Nov 20 13:57:06 kapalua sshd\[30697\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.80.64 user=root Nov 20 13:57:08 kapalua sshd\[30697\]: Failed password for root from 49.233.80.64 port 60900 ssh2 Nov 20 14:01:36 kapalua sshd\[31060\]: Invalid user ernestine from 49.233.80.64 Nov 20 14:01:36 kapalua sshd\[31060\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.80.64 Nov 20 14:01:38 kapalua sshd\[31060\]: Failed password for invalid user ernestine from 49.233.80.64 port 59680 ssh2	2019-11-21 08:14:33
222.82.237.238	attack	2019-11-20T17:26:35.2402711495-001 sshd\[3041\]: Failed password for mail from 222.82.237.238 port 12245 ssh2 2019-11-20T18:29:03.9862331495-001 sshd\[5309\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.82.237.238 user=ftp 2019-11-20T18:29:06.2077471495-001 sshd\[5309\]: Failed password for ftp from 222.82.237.238 port 38532 ssh2 2019-11-20T18:32:39.2857731495-001 sshd\[5468\]: Invalid user duconge from 222.82.237.238 port 53364 2019-11-20T18:32:39.2887911495-001 sshd\[5468\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.82.237.238 2019-11-20T18:32:41.8269661495-001 sshd\[5468\]: Failed password for invalid user duconge from 222.82.237.238 port 53364 ssh2 ...	2019-11-21 07:54:10
94.191.62.170	attack	Nov 21 00:40:36 h2177944 sshd\[21233\]: Invalid user ki@123 from 94.191.62.170 port 41824 Nov 21 00:40:36 h2177944 sshd\[21233\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.62.170 Nov 21 00:40:38 h2177944 sshd\[21233\]: Failed password for invalid user ki@123 from 94.191.62.170 port 41824 ssh2 Nov 21 00:44:49 h2177944 sshd\[21289\]: Invalid user rootadministrator from 94.191.62.170 port 51244 ...	2019-11-21 07:59:04
201.184.40.141	attackspambots	Mail sent to address hacked/leaked from Gamigo	2019-11-21 08:10:00
5.39.88.4	attack	Nov 21 02:29:41 hosting sshd[2523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3045808.ip-5-39-88.eu user=root Nov 21 02:29:43 hosting sshd[2523]: Failed password for root from 5.39.88.4 port 34810 ssh2 ...	2019-11-21 08:16:37
121.169.232.232	attack	SSH bruteforce	2019-11-21 08:17:06

最近上报的IP列表

14.172.201.162	14.171.89.115	95.215.68.90	14.171.254.21
9.87.62.155	51.178.48.207	220.98.18.20	7.127.40.16
137.189.109.88	133.180.171.139	59.41.154.247	84.140.69.100
198.50.110.98	56.248.170.193	101.206.5.162	80.210.243.132
71.171.78.33	14.171.235.189	159.211.248.34	21.68.91.39