45.122.138.22 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Shanghai Huajuan Information Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Dec 29 18:12:37 ws22vmsma01 sshd[222802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 Dec 29 18:12:39 ws22vmsma01 sshd[222802]: Failed password for invalid user ubnt from 45.122.138.22 port 48709 ssh2 ...	2019-12-30 06:28:14
attack	2019-12-27T23:51:12.745531shield sshd\[5830\]: Invalid user ervin from 45.122.138.22 port 59069 2019-12-27T23:51:12.748817shield sshd\[5830\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 2019-12-27T23:51:15.045338shield sshd\[5830\]: Failed password for invalid user ervin from 45.122.138.22 port 59069 ssh2 2019-12-27T23:54:04.214561shield sshd\[6635\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 user=root 2019-12-27T23:54:06.791896shield sshd\[6635\]: Failed password for root from 45.122.138.22 port 41868 ssh2	2019-12-28 07:58:59
attackbotsspam	Dec 10 14:03:43 vibhu-HP-Z238-Microtower-Workstation sshd\[28411\]: Invalid user 1qaz@WSX from 45.122.138.22 Dec 10 14:03:43 vibhu-HP-Z238-Microtower-Workstation sshd\[28411\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 Dec 10 14:03:45 vibhu-HP-Z238-Microtower-Workstation sshd\[28411\]: Failed password for invalid user 1qaz@WSX from 45.122.138.22 port 55968 ssh2 Dec 10 14:10:11 vibhu-HP-Z238-Microtower-Workstation sshd\[29473\]: Invalid user pluto from 45.122.138.22 Dec 10 14:10:11 vibhu-HP-Z238-Microtower-Workstation sshd\[29473\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 ...	2019-12-10 18:47:08
attackspambots	Dec 4 16:58:18 plusreed sshd[11157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 user=root Dec 4 16:58:20 plusreed sshd[11157]: Failed password for root from 45.122.138.22 port 57114 ssh2 ...	2019-12-05 06:05:19
attackbotsspam	$f2bV_matches	2019-12-02 19:57:29
attack	Nov 23 18:47:07 hosting sshd[16063]: Invalid user dorotea from 45.122.138.22 port 47184 ...	2019-11-24 00:43:46
attackspambots	Automatic report - SSH Brute-Force Attack	2019-11-19 06:42:29

相同子网IP讨论:

IP	类型	评论内容	时间
45.122.138.67	attackbots	Unauthorized connection attempt detected from IP address 45.122.138.67 to port 1433 [J]	2020-01-29 10:12:16
45.122.138.7	attackbotsspam	Unauthorized connection attempt detected from IP address 45.122.138.7 to port 1433 [J]	2020-01-29 05:23:52
45.122.138.7	attackbots	SIP/5060 Probe, BF, Hack -	2019-12-30 21:25:00
45.122.138.81	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/45.122.138.81/ HK - 1H : (18) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : HK NAME ASN : ASN132742 IP : 45.122.138.81 CIDR : 45.122.138.0/24 PREFIX COUNT : 79 UNIQUE IP COUNT : 37888 WYKRYTE ATAKI Z ASN132742 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-17 20:52:50 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-18 04:30:42

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.122.138.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63768
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.122.138.22.			IN	A

;; AUTHORITY SECTION:
.			401	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111801 1800 900 604800 86400

;; Query time: 585 msec
;; SERVER: 183.60.82.98#53(183.60.82.98)
;; WHEN: Tue Nov 19 06:46:07 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 22.138.122.45.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 22.138.122.45.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
112.85.42.120	attackspambots	(sshd) Failed SSH login from 112.85.42.120 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 8 15:46:08 optimus sshd[10864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.120 user=root Oct 8 15:46:08 optimus sshd[10860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.120 user=root Oct 8 15:46:08 optimus sshd[10861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.120 user=root Oct 8 15:46:08 optimus sshd[10857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.120 user=root Oct 8 15:46:08 optimus sshd[10854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.120 user=root	2020-10-09 03:56:41
112.85.42.85	attackspam	Oct 8 20:10:22 rush sshd[25138]: Failed password for root from 112.85.42.85 port 20086 ssh2 Oct 8 20:10:35 rush sshd[25138]: Failed password for root from 112.85.42.85 port 20086 ssh2 Oct 8 20:10:35 rush sshd[25138]: error: maximum authentication attempts exceeded for root from 112.85.42.85 port 20086 ssh2 [preauth] ...	2020-10-09 04:10:57
188.246.224.126	attack	Found on Alienvault / proto=6 . srcport=43522 . dstport=1000 . (154)	2020-10-09 03:57:51
195.201.117.103	attack	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2020-10-09 04:10:26
27.66.72.56	attackspambots	Port probing on unauthorized port 23	2020-10-09 04:13:03
77.37.162.17	attackspam	Oct 8 17:04:39 v2202009116398126984 sshd[2205041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=broadband-77-37-162-17.ip.moscow.rt.ru user=root Oct 8 17:04:40 v2202009116398126984 sshd[2205041]: Failed password for root from 77.37.162.17 port 50726 ssh2 ...	2020-10-09 03:58:37
78.180.51.216	attack	Port probing on unauthorized port 445	2020-10-09 04:29:21
116.255.161.148	attack	2020-10-08T19:07:49+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-10-09 04:03:14
112.85.42.194	attackbotsspam	Oct 8 17:56:37 vm0 sshd[10913]: Failed password for root from 112.85.42.194 port 55590 ssh2 ...	2020-10-09 03:59:47
116.100.7.212	attackspam	Unauthorized connection attempt detected from IP address 116.100.7.212 to port 23 [T]	2020-10-09 04:25:04
161.97.75.168	attackspam	bruteforce, ssh, scan port	2020-10-09 04:20:39
66.207.69.154	attackspam	Oct 8 20:19:54 gw1 sshd[26139]: Failed password for root from 66.207.69.154 port 53832 ssh2 ...	2020-10-09 04:03:58
220.173.167.164	attackbots	1433/tcp 1433/tcp [2020-10-07]2pkt	2020-10-09 03:53:52
78.68.94.193	attackspambots	TCP (SYN) 78.68.94.193:45754 -> port 23, len 44	2020-10-09 04:23:27
138.197.222.141	attack	Port scan: Attack repeated for 24 hours	2020-10-09 03:53:30

最近上报的IP列表

177.75.137.75	14.231.29.205	168.232.14.164	88.129.208.43
14.186.146.185	39.107.64.158	171.221.101.79	123.20.10.62
229.197.167.49	168.121.4.210	116.113.28.190	211.61.143.209
143.12.146.236	42.239.160.154	31.163.174.16	78.14.139.217
101.51.9.189	119.74.70.175	41.41.98.164	45.65.222.97