45.122.138.22 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Shanghai Huajuan Information Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Dec 29 18:12:37 ws22vmsma01 sshd[222802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 Dec 29 18:12:39 ws22vmsma01 sshd[222802]: Failed password for invalid user ubnt from 45.122.138.22 port 48709 ssh2 ...	2019-12-30 06:28:14
attack	2019-12-27T23:51:12.745531shield sshd\[5830\]: Invalid user ervin from 45.122.138.22 port 59069 2019-12-27T23:51:12.748817shield sshd\[5830\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 2019-12-27T23:51:15.045338shield sshd\[5830\]: Failed password for invalid user ervin from 45.122.138.22 port 59069 ssh2 2019-12-27T23:54:04.214561shield sshd\[6635\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 user=root 2019-12-27T23:54:06.791896shield sshd\[6635\]: Failed password for root from 45.122.138.22 port 41868 ssh2	2019-12-28 07:58:59
attackbotsspam	Dec 10 14:03:43 vibhu-HP-Z238-Microtower-Workstation sshd\[28411\]: Invalid user 1qaz@WSX from 45.122.138.22 Dec 10 14:03:43 vibhu-HP-Z238-Microtower-Workstation sshd\[28411\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 Dec 10 14:03:45 vibhu-HP-Z238-Microtower-Workstation sshd\[28411\]: Failed password for invalid user 1qaz@WSX from 45.122.138.22 port 55968 ssh2 Dec 10 14:10:11 vibhu-HP-Z238-Microtower-Workstation sshd\[29473\]: Invalid user pluto from 45.122.138.22 Dec 10 14:10:11 vibhu-HP-Z238-Microtower-Workstation sshd\[29473\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 ...	2019-12-10 18:47:08
attackspambots	Dec 4 16:58:18 plusreed sshd[11157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 user=root Dec 4 16:58:20 plusreed sshd[11157]: Failed password for root from 45.122.138.22 port 57114 ssh2 ...	2019-12-05 06:05:19
attackbotsspam	$f2bV_matches	2019-12-02 19:57:29
attack	Nov 23 18:47:07 hosting sshd[16063]: Invalid user dorotea from 45.122.138.22 port 47184 ...	2019-11-24 00:43:46
attackspambots	Automatic report - SSH Brute-Force Attack	2019-11-19 06:42:29

相同子网IP讨论:

IP	类型	评论内容	时间
45.122.138.67	attackbots	Unauthorized connection attempt detected from IP address 45.122.138.67 to port 1433 [J]	2020-01-29 10:12:16
45.122.138.7	attackbotsspam	Unauthorized connection attempt detected from IP address 45.122.138.7 to port 1433 [J]	2020-01-29 05:23:52
45.122.138.7	attackbots	SIP/5060 Probe, BF, Hack -	2019-12-30 21:25:00
45.122.138.81	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/45.122.138.81/ HK - 1H : (18) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : HK NAME ASN : ASN132742 IP : 45.122.138.81 CIDR : 45.122.138.0/24 PREFIX COUNT : 79 UNIQUE IP COUNT : 37888 WYKRYTE ATAKI Z ASN132742 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-17 20:52:50 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-18 04:30:42

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.122.138.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63768
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.122.138.22.			IN	A

;; AUTHORITY SECTION:
.			401	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111801 1800 900 604800 86400

;; Query time: 585 msec
;; SERVER: 183.60.82.98#53(183.60.82.98)
;; WHEN: Tue Nov 19 06:46:07 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 22.138.122.45.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 22.138.122.45.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
165.227.5.206	attackspam	Jan 9 08:16:59 vpn sshd[20847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.5.206 Jan 9 08:17:01 vpn sshd[20847]: Failed password for invalid user rails from 165.227.5.206 port 42948 ssh2 Jan 9 08:20:10 vpn sshd[20885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.5.206	2019-07-19 10:52:05
37.49.225.93	attackbotsspam	Tried sshing with brute force.	2019-07-19 11:04:35
165.84.191.236	attack	Sep 24 03:00:52 vpn sshd[25047]: Invalid user production from 165.84.191.236 Sep 24 03:00:52 vpn sshd[25047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.84.191.236 Sep 24 03:00:55 vpn sshd[25047]: Failed password for invalid user production from 165.84.191.236 port 8320 ssh2 Sep 24 03:04:15 vpn sshd[25052]: Invalid user log from 165.84.191.236 Sep 24 03:04:15 vpn sshd[25052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.84.191.236	2019-07-19 10:22:53
159.89.199.195	attackbotsspam	159.89.199.195 - - [19/Jul/2019:01:15:44 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.199.195 - - [19/Jul/2019:01:15:46 +0200] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.199.195 - - [19/Jul/2019:01:15:47 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.199.195 - - [19/Jul/2019:01:15:53 +0200] "POST /wp-login.php HTTP/1.1" 200 1607 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.199.195 - - [19/Jul/2019:01:15:54 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.199.195 - - [19/Jul/2019:01:15:59 +0200] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-07-19 11:06:39
165.227.97.108	attackspam	Jul 19 02:10:39 marvibiene sshd[11482]: Invalid user aris from 165.227.97.108 port 60920 Jul 19 02:10:39 marvibiene sshd[11482]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.97.108 Jul 19 02:10:39 marvibiene sshd[11482]: Invalid user aris from 165.227.97.108 port 60920 Jul 19 02:10:41 marvibiene sshd[11482]: Failed password for invalid user aris from 165.227.97.108 port 60920 ssh2 ...	2019-07-19 10:34:56
116.62.217.151	attackspam	Port scan on 1 port(s): 53	2019-07-19 10:22:29
61.163.2.246	attack	Disconnected $auth failed, 1 attempts in 7 secs$:	2019-07-19 10:43:10
165.227.53.51	attack	Mar 20 19:39:23 vpn sshd[32051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.53.51 Mar 20 19:39:24 vpn sshd[32051]: Failed password for invalid user pawel from 165.227.53.51 port 59586 ssh2 Mar 20 19:43:55 vpn sshd[32077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.53.51	2019-07-19 10:49:34
80.67.53.93	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 19:25:54,469 INFO [amun_request_handler] PortScan Detected on Port: 445 (80.67.53.93)	2019-07-19 10:36:03
165.227.9.145	attack	Jan 11 06:13:18 vpn sshd[14315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.9.145 Jan 11 06:13:20 vpn sshd[14315]: Failed password for invalid user iag from 165.227.9.145 port 48452 ssh2 Jan 11 06:16:47 vpn sshd[14322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.9.145	2019-07-19 10:40:53
37.216.242.186	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 03:07:19,636 INFO [shellcode_manager] (37.216.242.186) no match, writing hexdump (d64c6572b920ff7490c24e2ff733d33b :2163032) - MS17010 (EternalBlue)	2019-07-19 10:26:59
46.198.213.221	attackspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-19 10:50:12
166.62.116.127	attackbotsspam	Mar 19 03:44:32 vpn sshd[21443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.62.116.127 Mar 19 03:44:33 vpn sshd[21443]: Failed password for invalid user admin from 166.62.116.127 port 40600 ssh2 Mar 19 03:49:42 vpn sshd[21466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.62.116.127	2019-07-19 10:19:29
165.227.69.188	attackspambots	Mar 25 15:37:04 vpn sshd[11529]: Failed password for root from 165.227.69.188 port 43816 ssh2 Mar 25 15:41:23 vpn sshd[11555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.69.188 Mar 25 15:41:25 vpn sshd[11555]: Failed password for invalid user sya from 165.227.69.188 port 52730 ssh2	2019-07-19 10:45:19
165.227.62.195	attackspambots	Feb 27 16:06:49 vpn sshd[518]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.62.195 Feb 27 16:06:52 vpn sshd[518]: Failed password for invalid user x from 165.227.62.195 port 46274 ssh2 Feb 27 16:08:12 vpn sshd[522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.62.195	2019-07-19 10:47:20

最近上报的IP列表

177.75.137.75	14.231.29.205	168.232.14.164	88.129.208.43
14.186.146.185	39.107.64.158	171.221.101.79	123.20.10.62
229.197.167.49	168.121.4.210	116.113.28.190	211.61.143.209
143.12.146.236	42.239.160.154	31.163.174.16	78.14.139.217
101.51.9.189	119.74.70.175	41.41.98.164	45.65.222.97