81.45.56.199 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Spain

运营商(isp): Telefonica de Espana Sau

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	2020-03-05T15:08:08.076551shield sshd\[10735\]: Invalid user v from 81.45.56.199 port 55374 2020-03-05T15:08:08.080590shield sshd\[10735\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.red-81-45-56.staticip.rima-tde.net 2020-03-05T15:08:10.085909shield sshd\[10735\]: Failed password for invalid user v from 81.45.56.199 port 55374 ssh2 2020-03-05T15:13:51.015215shield sshd\[12050\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.red-81-45-56.staticip.rima-tde.net user=root 2020-03-05T15:13:52.968282shield sshd\[12050\]: Failed password for root from 81.45.56.199 port 34682 ssh2	2020-03-05 23:48:46
attackspam	Unauthorized connection attempt detected from IP address 81.45.56.199 to port 2220 [J]	2020-02-05 01:19:35
attack	ssh brute force	2020-01-14 16:44:46
attackbots	$f2bV_matches	2020-01-11 18:54:46
attack	Unauthorized connection attempt detected from IP address 81.45.56.199 to port 2220 [J]	2020-01-06 21:41:18
attack	Invalid user shihhsiung from 81.45.56.199 port 39438	2019-12-31 17:31:23
attackspam	Dec 25 15:45:45 localhost sshd[35632]: Failed password for invalid user ubuntu from 81.45.56.199 port 35108 ssh2 Dec 25 15:50:29 localhost sshd[35893]: Failed password for invalid user server from 81.45.56.199 port 41196 ssh2 Dec 25 15:52:59 localhost sshd[35997]: Failed password for invalid user admin from 81.45.56.199 port 36030 ssh2	2019-12-26 01:54:33
attackspambots	Dec 20 08:39:00 eventyay sshd[12537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199 Dec 20 08:39:02 eventyay sshd[12537]: Failed password for invalid user mandrake91 from 81.45.56.199 port 37986 ssh2 Dec 20 08:41:27 eventyay sshd[12626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199 ...	2019-12-20 19:33:09
attack	Dec 19 18:55:39 localhost sshd[51072]: Failed password for root from 81.45.56.199 port 36834 ssh2 Dec 19 19:02:15 localhost sshd[51254]: Failed password for invalid user 123 from 81.45.56.199 port 58722 ssh2 Dec 19 19:07:43 localhost sshd[51345]: Failed password for invalid user karademir from 81.45.56.199 port 37092 ssh2	2019-12-20 02:41:19
attackbots	Dec 17 20:07:41 php1 sshd\[10049\]: Invalid user vmuser from 81.45.56.199 Dec 17 20:07:41 php1 sshd\[10049\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.red-81-45-56.staticip.rima-tde.net Dec 17 20:07:44 php1 sshd\[10049\]: Failed password for invalid user vmuser from 81.45.56.199 port 50084 ssh2 Dec 17 20:13:22 php1 sshd\[11048\]: Invalid user service from 81.45.56.199 Dec 17 20:13:22 php1 sshd\[11048\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.red-81-45-56.staticip.rima-tde.net	2019-12-18 14:27:14
attack	fail2ban	2019-12-14 19:20:05
attackbotsspam	Dec 13 23:44:33 pi sshd\[28694\]: Failed password for root from 81.45.56.199 port 35672 ssh2 Dec 13 23:50:38 pi sshd\[29026\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199 user=root Dec 13 23:50:40 pi sshd\[29026\]: Failed password for root from 81.45.56.199 port 44518 ssh2 Dec 13 23:56:34 pi sshd\[29387\]: Invalid user waloff from 81.45.56.199 port 53370 Dec 13 23:56:34 pi sshd\[29387\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199 ...	2019-12-14 08:03:09
attackbotsspam	Dec 10 05:06:46 hpm sshd\[3604\]: Invalid user vcsa from 81.45.56.199 Dec 10 05:06:46 hpm sshd\[3604\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.red-81-45-56.staticip.rima-tde.net Dec 10 05:06:49 hpm sshd\[3604\]: Failed password for invalid user vcsa from 81.45.56.199 port 45318 ssh2 Dec 10 05:13:02 hpm sshd\[4309\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.red-81-45-56.staticip.rima-tde.net user=root Dec 10 05:13:04 hpm sshd\[4309\]: Failed password for root from 81.45.56.199 port 54120 ssh2	2019-12-10 23:25:13
attackbots	Dec 5 07:33:50 sauna sshd[87415]: Failed password for root from 81.45.56.199 port 51172 ssh2 ...	2019-12-05 13:41:57
attack	Dec 4 19:22:03 localhost sshd\[70630\]: Invalid user choong from 81.45.56.199 port 42414 Dec 4 19:22:03 localhost sshd\[70630\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199 Dec 4 19:22:05 localhost sshd\[70630\]: Failed password for invalid user choong from 81.45.56.199 port 42414 ssh2 Dec 4 19:28:06 localhost sshd\[70798\]: Invalid user 123456 from 81.45.56.199 port 52952 Dec 4 19:28:06 localhost sshd\[70798\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199 ...	2019-12-05 03:46:29
attackspam	Dec 2 01:13:28 v22018076622670303 sshd\[2681\]: Invalid user arakawa from 81.45.56.199 port 54554 Dec 2 01:13:28 v22018076622670303 sshd\[2681\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199 Dec 2 01:13:30 v22018076622670303 sshd\[2681\]: Failed password for invalid user arakawa from 81.45.56.199 port 54554 ssh2 ...	2019-12-02 08:21:19
attackbots	Oct 31 16:28:22 meumeu sshd[6652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199 Oct 31 16:28:24 meumeu sshd[6652]: Failed password for invalid user vacchacarya from 81.45.56.199 port 37800 ssh2 Oct 31 16:34:48 meumeu sshd[7682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199 ...	2019-12-01 08:21:02
attackbotsspam	Nov 27 18:32:48 ny01 sshd[27727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199 Nov 27 18:32:50 ny01 sshd[27727]: Failed password for invalid user snapper from 81.45.56.199 port 50130 ssh2 Nov 27 18:39:30 ny01 sshd[28367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199	2019-11-28 07:46:39
attackspam	Nov 21 14:59:37 vps46666688 sshd[5738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199 Nov 21 14:59:39 vps46666688 sshd[5738]: Failed password for invalid user admin from 81.45.56.199 port 55592 ssh2 ...	2019-11-22 02:09:37
attackspambots	SSH Bruteforce	2019-11-17 20:00:11
attackspam	Oct 29 02:20:51 web1 sshd[27586]: Invalid user smmsp from 81.45.56.199 Oct 29 02:20:53 web1 sshd[27586]: Failed password for invalid user smmsp from 81.45.56.199 port 33080 ssh2 Oct 29 02:20:53 web1 sshd[27586]: Received disconnect from 81.45.56.199: 11: Bye Bye [preauth] Oct 29 02:37:13 web1 sshd[28928]: Failed password for r.r from 81.45.56.199 port 52834 ssh2 Oct 29 02:37:13 web1 sshd[28928]: Received disconnect from 81.45.56.199: 11: Bye Bye [preauth] Oct 29 02:41:18 web1 sshd[29353]: Invalid user odoo from 81.45.56.199 Oct 29 02:41:20 web1 sshd[29353]: Failed password for invalid user odoo from 81.45.56.199 port 35946 ssh2 Oct 29 02:41:20 web1 sshd[29353]: Received disconnect from 81.45.56.199: 11: Bye Bye [preauth] Oct 29 02:45:38 web1 sshd[29744]: Failed password for r.r from 81.45.56.199 port 47296 ssh2 Oct 29 02:45:38 web1 sshd[29744]: Received disconnect from 81.45.56.199: 11: Bye Bye [preauth] Oct 29 02:50:16 web1 sshd[30094]: Invalid user netbank from 81.45......... -------------------------------	2019-11-03 06:13:56
attackspambots	2019-10-29T05:59:24.467469 sshd[8948]: Invalid user qaz123$%^ from 81.45.56.199 port 54758 2019-10-29T05:59:24.480158 sshd[8948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199 2019-10-29T05:59:24.467469 sshd[8948]: Invalid user qaz123$%^ from 81.45.56.199 port 54758 2019-10-29T05:59:26.827963 sshd[8948]: Failed password for invalid user qaz123$%^ from 81.45.56.199 port 54758 ssh2 2019-10-29T06:04:17.352204 sshd[9049]: Invalid user consultant from 81.45.56.199 port 37874 ...	2019-10-29 14:41:01

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.45.56.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52742
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;81.45.56.199.			IN	A

;; AUTHORITY SECTION:
.			174	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102801 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 29 08:52:38 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

199.56.45.81.in-addr.arpa domain name pointer 199.red-81-45-56.staticip.rima-tde.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
199.56.45.81.in-addr.arpa	name = 199.red-81-45-56.staticip.rima-tde.net.

Authoritative answers can be found from:

IP	类型	评论内容	时间
174.138.27.165	attackbots	Sep 30 22:37:37 DAAP sshd[1807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.27.165 user=root Sep 30 22:37:40 DAAP sshd[1807]: Failed password for root from 174.138.27.165 port 43600 ssh2 Sep 30 22:43:46 DAAP sshd[1977]: Invalid user 123456 from 174.138.27.165 port 44280 Sep 30 22:43:46 DAAP sshd[1977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.27.165 Sep 30 22:43:46 DAAP sshd[1977]: Invalid user 123456 from 174.138.27.165 port 44280 Sep 30 22:43:48 DAAP sshd[1977]: Failed password for invalid user 123456 from 174.138.27.165 port 44280 ssh2 ...	2020-10-01 06:08:17
60.215.165.254	attackspam	Port Scan detected! ...	2020-10-01 05:59:52
106.13.233.4	attackbotsspam	SSH Invalid Login	2020-10-01 06:05:36
138.197.146.132	attackbots	138.197.146.132 - - [30/Sep/2020:23:11:08 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [30/Sep/2020:23:11:10 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [30/Sep/2020:23:11:11 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-01 05:49:46
85.209.0.251	attack	Sep 27 08:52:56 : SSH login attempts with invalid user	2020-10-01 06:16:34
129.211.74.252	attackspam	DATE:2020-09-30 23:26:00,IP:129.211.74.252,MATCHES:10,PORT:ssh	2020-10-01 06:15:59
123.171.6.137	attackspam	[MK-VM2] Blocked by UFW	2020-10-01 06:12:17
41.184.36.6	attackbotsspam	Invalid user a from 41.184.36.6 port 50101	2020-10-01 05:45:51
185.175.93.14	attackbots	TCP (SYN) 185.175.93.14:58142 -> port 7655, len 44	2020-10-01 05:48:54
192.241.237.210	attackbots	TCP (SYN) 192.241.237.210:44877 -> port 389, len 44	2020-10-01 06:18:26
45.142.120.93	attackspam	Sep 30 09:43:10 mail postfix/smtpd\[10884\]: warning: unknown\[45.142.120.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Sep 30 09:43:10 mail postfix/smtpd\[10938\]: warning: unknown\[45.142.120.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Sep 30 09:43:11 mail postfix/smtpd\[10927\]: warning: unknown\[45.142.120.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Sep 30 10:13:20 mail postfix/smtpd\[11915\]: warning: unknown\[45.142.120.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-10-01 06:04:00
59.124.90.113	attackspam	Brute-force attempt banned	2020-10-01 05:51:57
213.141.157.220	attackspambots	SSH login attempts.	2020-10-01 05:44:48
92.43.161.66	attackbotsspam	Icarus honeypot on github	2020-10-01 05:49:06
161.35.232.146	attackbotsspam	C1,WP GET /suche/wp-login.php	2020-10-01 05:45:08

最近上报的IP列表

125.45.231.26	87.205.115.51	217.68.210.96	113.190.173.31
77.174.14.5	220.149.241.72	84.10.81.220	137.215.52.40
90.176.169.233	189.177.65.50	74.22.186.49	115.159.92.54
134.73.51.214	91.188.193.145	157.91.97.240	204.236.78.225
10.168.220.113	45.182.159.201	186.125.240.218	60.176.245.98