5.45.107.204 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): netcup GmbH

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Apr 28 15:27:45 ns381471 sshd[15971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.45.107.204 Apr 28 15:27:47 ns381471 sshd[15971]: Failed password for invalid user sysgames from 5.45.107.204 port 51229 ssh2	2020-04-29 02:15:46

类型

评论内容

时间

attackbots

Apr 28 15:27:45 ns381471 sshd[15971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.45.107.204
Apr 28 15:27:47 ns381471 sshd[15971]: Failed password for invalid user sysgames from 5.45.107.204 port 51229 ssh2

2020-04-29 02:15:46

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.45.107.204
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39217
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.45.107.204.			IN	A

;; AUTHORITY SECTION:
.			331	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042801 1800 900 604800 86400

;; Query time: 140 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 29 02:15:42 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

204.107.45.5.in-addr.arpa domain name pointer zaphod.schuelerbuero.de.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
204.107.45.5.in-addr.arpa	name = zaphod.schuelerbuero.de.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
202.169.62.187	attackbotsspam	Nov 10 06:55:24 ws22vmsma01 sshd[41163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.169.62.187 Nov 10 06:55:26 ws22vmsma01 sshd[41163]: Failed password for invalid user pankaj from 202.169.62.187 port 38975 ssh2 ...	2019-11-10 18:15:40
85.204.246.240	attackbots	SS5,WP GET /wp-login.php?b=b0fcfc GET /en/wp-login.php?b=b0fcfc	2019-11-10 17:52:47
185.53.88.33	attackbots	\[2019-11-10 04:21:04\] NOTICE\[2601\] chan_sip.c: Registration from '"1000" \' failed for '185.53.88.33:5347' - Wrong password \[2019-11-10 04:21:04\] SECURITY\[2634\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-10T04:21:04.141-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="1000",SessionID="0x7fdf2c73c4b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.33/5347",Challenge="11e139a4",ReceivedChallenge="11e139a4",ReceivedHash="dbd22d76f5f6f69cc02420f5c0e5ec3d" \[2019-11-10 04:21:04\] NOTICE\[2601\] chan_sip.c: Registration from '"1000" \' failed for '185.53.88.33:5347' - Wrong password \[2019-11-10 04:21:04\] SECURITY\[2634\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-10T04:21:04.247-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="1000",SessionID="0x7fdf2ca50d88",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/1	2019-11-10 18:02:32
106.12.220.218	attackbots	SSH authentication failure x 6 reported by Fail2Ban ...	2019-11-10 18:21:26
37.45.70.89	attackspam	failed_logins	2019-11-10 18:11:47
212.30.52.243	attackbots	Nov 10 09:39:28 root sshd[24640]: Failed password for root from 212.30.52.243 port 42735 ssh2 Nov 10 09:43:30 root sshd[24693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.30.52.243 Nov 10 09:43:32 root sshd[24693]: Failed password for invalid user jill from 212.30.52.243 port 33654 ssh2 ...	2019-11-10 17:53:50
37.59.58.142	attackspam	(sshd) Failed SSH login from 37.59.58.142 (FR/France/ns3002311.ip-37-59-58.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Nov 10 09:21:13 s1 sshd[18115]: Failed password for root from 37.59.58.142 port 52354 ssh2 Nov 10 09:33:32 s1 sshd[18360]: Failed password for root from 37.59.58.142 port 56536 ssh2 Nov 10 09:37:53 s1 sshd[18465]: Failed password for root from 37.59.58.142 port 36862 ssh2 Nov 10 09:42:04 s1 sshd[18550]: Invalid user teamspeak3 from 37.59.58.142 port 45428 Nov 10 09:42:06 s1 sshd[18550]: Failed password for invalid user teamspeak3 from 37.59.58.142 port 45428 ssh2	2019-11-10 18:08:29
49.235.189.191	attackspambots	$f2bV_matches	2019-11-10 18:05:12
198.50.183.49	attackspam	(From projobnetwork1@outlook.com) I came across your website and just wanted to reach out to see if you're hiring? If so, I'd like to extend an offer to post to top job sites like ZipRecruiter, Glassdoor, TopUSAJobs, and more at no cost for two weeks. Here are some of the key benefits: -- Post to top job sites with one click -- Manage all candidates in one place -- No cost for two weeks You can post your job openings now by going to our website below: >> TryProJob [dot] com * Please use offer code 987FREE -- Expires Soon * Thanks for your time, Ryan C. Pro Job Network 10451 Twin Rivers Rd #279 Columbia, MD 21044 To OPT OUT, please email ryanc [at] pjnmail [dot] com with "REMOVE drmattjoseph.com" in the subject line.	2019-11-10 18:12:26
159.65.88.161	attackspambots	Nov 10 11:56:16 gw1 sshd[8292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.88.161 Nov 10 11:56:19 gw1 sshd[8292]: Failed password for invalid user compras from 159.65.88.161 port 34812 ssh2 ...	2019-11-10 18:16:58
89.36.210.223	attack	Nov 9 20:43:24 sachi sshd\[11111\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.36.210.223 user=root Nov 9 20:43:26 sachi sshd\[11111\]: Failed password for root from 89.36.210.223 port 36918 ssh2 Nov 9 20:47:20 sachi sshd\[11482\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.36.210.223 user=root Nov 9 20:47:22 sachi sshd\[11482\]: Failed password for root from 89.36.210.223 port 45778 ssh2 Nov 9 20:51:09 sachi sshd\[11835\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.36.210.223 user=root	2019-11-10 18:04:59
222.186.180.147	attackbotsspam	Nov 10 05:23:30 xentho sshd[16225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root Nov 10 05:23:32 xentho sshd[16225]: Failed password for root from 222.186.180.147 port 4928 ssh2 Nov 10 05:23:34 xentho sshd[16225]: Failed password for root from 222.186.180.147 port 4928 ssh2 Nov 10 05:23:30 xentho sshd[16225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root Nov 10 05:23:32 xentho sshd[16225]: Failed password for root from 222.186.180.147 port 4928 ssh2 Nov 10 05:23:34 xentho sshd[16225]: Failed password for root from 222.186.180.147 port 4928 ssh2 Nov 10 05:23:30 xentho sshd[16225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root Nov 10 05:23:32 xentho sshd[16225]: Failed password for root from 222.186.180.147 port 4928 ssh2 Nov 10 05:23:34 xentho sshd[16225]: Failed password for root f ...	2019-11-10 18:26:18
185.143.223.81	attack	Nov 10 09:56:17 h2177944 kernel: \[6251750.875937\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.143.223.81 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=17556 PROTO=TCP SPT=53588 DPT=2207 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 10 10:07:41 h2177944 kernel: \[6252435.424221\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.143.223.81 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=43449 PROTO=TCP SPT=53588 DPT=62817 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 10 10:07:57 h2177944 kernel: \[6252450.973972\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.143.223.81 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=42693 PROTO=TCP SPT=53588 DPT=41807 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 10 10:24:42 h2177944 kernel: \[6253456.309303\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.143.223.81 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=25053 PROTO=TCP SPT=53588 DPT=39618 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 10 10:26:26 h2177944 kernel: \[6253559.858001\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.143.223.81 DST=85.2	2019-11-10 17:57:39
49.88.112.110	attackbots	Nov 10 10:47:39 mail sshd[19002]: Failed password for root from 49.88.112.110 port 24322 ssh2 Nov 10 10:47:42 mail sshd[19002]: Failed password for root from 49.88.112.110 port 24322 ssh2 Nov 10 10:47:45 mail sshd[19002]: Failed password for root from 49.88.112.110 port 24322 ssh2	2019-11-10 17:55:56
46.105.16.246	attack	$f2bV_matches	2019-11-10 18:18:00

最近上报的IP列表

216.6.78.50	63.239.129.138	60.101.69.99	8.88.224.207
122.30.232.38	94.25.175.174	158.61.164.136	47.19.74.148
93.98.253.165	106.31.16.89	187.189.178.31	193.60.157.63
145.201.17.231	54.215.6.203	108.174.8.22	69.227.233.68
187.199.207.128	184.233.104.56	135.179.7.188	188.79.167.165