45.122.138.22 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Shanghai Huajuan Information Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Dec 29 18:12:37 ws22vmsma01 sshd[222802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 Dec 29 18:12:39 ws22vmsma01 sshd[222802]: Failed password for invalid user ubnt from 45.122.138.22 port 48709 ssh2 ...	2019-12-30 06:28:14
attack	2019-12-27T23:51:12.745531shield sshd\[5830\]: Invalid user ervin from 45.122.138.22 port 59069 2019-12-27T23:51:12.748817shield sshd\[5830\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 2019-12-27T23:51:15.045338shield sshd\[5830\]: Failed password for invalid user ervin from 45.122.138.22 port 59069 ssh2 2019-12-27T23:54:04.214561shield sshd\[6635\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 user=root 2019-12-27T23:54:06.791896shield sshd\[6635\]: Failed password for root from 45.122.138.22 port 41868 ssh2	2019-12-28 07:58:59
attackbotsspam	Dec 10 14:03:43 vibhu-HP-Z238-Microtower-Workstation sshd\[28411\]: Invalid user 1qaz@WSX from 45.122.138.22 Dec 10 14:03:43 vibhu-HP-Z238-Microtower-Workstation sshd\[28411\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 Dec 10 14:03:45 vibhu-HP-Z238-Microtower-Workstation sshd\[28411\]: Failed password for invalid user 1qaz@WSX from 45.122.138.22 port 55968 ssh2 Dec 10 14:10:11 vibhu-HP-Z238-Microtower-Workstation sshd\[29473\]: Invalid user pluto from 45.122.138.22 Dec 10 14:10:11 vibhu-HP-Z238-Microtower-Workstation sshd\[29473\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 ...	2019-12-10 18:47:08
attackspambots	Dec 4 16:58:18 plusreed sshd[11157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 user=root Dec 4 16:58:20 plusreed sshd[11157]: Failed password for root from 45.122.138.22 port 57114 ssh2 ...	2019-12-05 06:05:19
attackbotsspam	$f2bV_matches	2019-12-02 19:57:29
attack	Nov 23 18:47:07 hosting sshd[16063]: Invalid user dorotea from 45.122.138.22 port 47184 ...	2019-11-24 00:43:46
attackspambots	Automatic report - SSH Brute-Force Attack	2019-11-19 06:42:29

相同子网IP讨论:

IP	类型	评论内容	时间
45.122.138.67	attackbots	Unauthorized connection attempt detected from IP address 45.122.138.67 to port 1433 [J]	2020-01-29 10:12:16
45.122.138.7	attackbotsspam	Unauthorized connection attempt detected from IP address 45.122.138.7 to port 1433 [J]	2020-01-29 05:23:52
45.122.138.7	attackbots	SIP/5060 Probe, BF, Hack -	2019-12-30 21:25:00
45.122.138.81	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/45.122.138.81/ HK - 1H : (18) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : HK NAME ASN : ASN132742 IP : 45.122.138.81 CIDR : 45.122.138.0/24 PREFIX COUNT : 79 UNIQUE IP COUNT : 37888 WYKRYTE ATAKI Z ASN132742 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-17 20:52:50 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-18 04:30:42

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.122.138.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63768
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.122.138.22.			IN	A

;; AUTHORITY SECTION:
.			401	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111801 1800 900 604800 86400

;; Query time: 585 msec
;; SERVER: 183.60.82.98#53(183.60.82.98)
;; WHEN: Tue Nov 19 06:46:07 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 22.138.122.45.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 22.138.122.45.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
159.65.189.115	attack	Fail2Ban Ban Triggered	2020-04-18 03:17:17
115.86.78.180	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-04-18 03:13:20
138.197.158.118	attackbots	web-1 [ssh] SSH Attack	2020-04-18 03:06:03
92.53.65.40	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 87 - port: 1965 proto: TCP cat: Misc Attack	2020-04-18 02:50:40
185.176.27.14	attackspambots	04/17/2020-15:02:22.292564 185.176.27.14 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-04-18 03:08:24
183.17.231.226	attack	1587120707 - 04/17/2020 12:51:47 Host: 183.17.231.226/183.17.231.226 Port: 445 TCP Blocked	2020-04-18 03:14:55
222.186.15.115	attack	2020-04-17T21:07:36.894273sd-86998 sshd[910]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.115 user=root 2020-04-17T21:07:38.960348sd-86998 sshd[910]: Failed password for root from 222.186.15.115 port 32200 ssh2 2020-04-17T21:07:41.732732sd-86998 sshd[910]: Failed password for root from 222.186.15.115 port 32200 ssh2 2020-04-17T21:07:36.894273sd-86998 sshd[910]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.115 user=root 2020-04-17T21:07:38.960348sd-86998 sshd[910]: Failed password for root from 222.186.15.115 port 32200 ssh2 2020-04-17T21:07:41.732732sd-86998 sshd[910]: Failed password for root from 222.186.15.115 port 32200 ssh2 2020-04-17T21:07:36.894273sd-86998 sshd[910]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.115 user=root 2020-04-17T21:07:38.960348sd-86998 sshd[910]: Failed password for root from 222.186.15.115 p ...	2020-04-18 03:14:10
167.99.124.75	attackspambots	DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks UA removed	2020-04-18 03:18:39
185.141.213.134	attackspam	$f2bV_matches	2020-04-18 03:02:51
221.229.218.50	attackbotsspam	Apr 17 16:16:03 marvibiene sshd[19097]: Invalid user ie from 221.229.218.50 port 35923 Apr 17 16:16:03 marvibiene sshd[19097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.229.218.50 Apr 17 16:16:03 marvibiene sshd[19097]: Invalid user ie from 221.229.218.50 port 35923 Apr 17 16:16:06 marvibiene sshd[19097]: Failed password for invalid user ie from 221.229.218.50 port 35923 ssh2 ...	2020-04-18 02:56:45
123.157.115.253	attackspambots	DATE:2020-04-17 14:00:06, IP:123.157.115.253, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-04-18 03:15:37
103.6.55.90	attackbots	(mod_security) mod_security (id:20000010) triggered by 103.6.55.90 (ID/Indonesia/-): 5 in the last 300 secs	2020-04-18 02:58:52
154.204.27.162	attack	Apr 17 21:24:09 vmd17057 sshd[6339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.204.27.162 Apr 17 21:24:11 vmd17057 sshd[6339]: Failed password for invalid user mf from 154.204.27.162 port 43242 ssh2 ...	2020-04-18 03:29:49
180.248.32.187	attack	Automatic report - Port Scan Attack	2020-04-18 02:57:11
43.226.153.29	attackspam	Apr 17 21:24:12 vpn01 sshd[5797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.226.153.29 Apr 17 21:24:13 vpn01 sshd[5797]: Failed password for invalid user iq from 43.226.153.29 port 35906 ssh2 ...	2020-04-18 03:26:09

最近上报的IP列表

177.75.137.75	14.231.29.205	168.232.14.164	88.129.208.43
14.186.146.185	39.107.64.158	171.221.101.79	123.20.10.62
229.197.167.49	168.121.4.210	116.113.28.190	211.61.143.209
143.12.146.236	42.239.160.154	31.163.174.16	78.14.139.217
101.51.9.189	119.74.70.175	41.41.98.164	45.65.222.97