45.136.108.119

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): ComTrade LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	firewall-block, port(s): 62/tcp, 108/tcp, 172/tcp, 266/tcp, 286/tcp, 298/tcp, 307/tcp, 328/tcp, 364/tcp, 413/tcp, 663/tcp, 920/tcp, 1151/tcp, 1172/tcp, 1316/tcp	2020-01-08 00:12:57
attackbots	Jan 4 06:43:54 debian-2gb-nbg1-2 kernel: \[375959.475522\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.119 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=12502 PROTO=TCP SPT=41365 DPT=676 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-04 14:14:24
attackbots	Jan 3 10:50:15 debian-2gb-nbg1-2 kernel: \[304342.429866\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.119 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=4913 PROTO=TCP SPT=44434 DPT=685 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-03 18:15:09
attackbots	Jan 1 16:13:49 debian-2gb-nbg1-2 kernel: \[150960.805638\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.119 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=40795 PROTO=TCP SPT=44793 DPT=419 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-01 23:26:38
attackspam	Scanning random ports - tries to find possible vulnerable services	2020-01-01 16:17:25
attackbots	Dec 30 00:34:44 debian-2gb-nbg1-2 kernel: \[1315194.581897\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.119 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=7771 PROTO=TCP SPT=54602 DPT=611 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-30 07:46:34
attackbots	Dec 29 16:09:29 debian-2gb-nbg1-2 kernel: \[1284880.896705\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.119 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=269 PROTO=TCP SPT=54602 DPT=188 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-30 00:05:39
attack	Dec 28 11:20:17 h2177944 kernel: \[727115.083986\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.119 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=23210 PROTO=TCP SPT=44885 DPT=152 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 28 11:20:17 h2177944 kernel: \[727115.084001\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.119 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=23210 PROTO=TCP SPT=44885 DPT=152 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 28 11:53:39 h2177944 kernel: \[729117.099195\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.119 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=10632 PROTO=TCP SPT=44885 DPT=311 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 28 11:53:39 h2177944 kernel: \[729117.099207\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.119 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=10632 PROTO=TCP SPT=44885 DPT=311 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 28 11:59:09 h2177944 kernel: \[729447.233164\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.119 DST=85.214.117.9 LEN	2019-12-28 19:06:10
attack	Dec 28 07:02:06 debian-2gb-nbg1-2 kernel: \[1165645.429880\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.119 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=50229 PROTO=TCP SPT=40250 DPT=707 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-28 14:23:45
attackspam	Dec 27 17:01:45 debian-2gb-nbg1-2 kernel: \[1115228.272509\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.119 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=10783 PROTO=TCP SPT=40250 DPT=1026 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-28 00:25:23
attackbotsspam	Dec 26 08:01:10 debian-2gb-nbg1-2 kernel: \[996400.287259\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.119 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=25044 PROTO=TCP SPT=47824 DPT=446 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-26 15:04:28
attackspambots	Dec 26 06:39:41 debian-2gb-nbg1-2 kernel: \[991512.244711\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.119 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=10829 PROTO=TCP SPT=47824 DPT=417 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-26 13:52:31
attackspam	Dec 25 19:00:39 h2177944 kernel: \[495578.576920\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.119 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=43423 PROTO=TCP SPT=47824 DPT=739 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 25 19:00:39 h2177944 kernel: \[495578.576935\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.119 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=43423 PROTO=TCP SPT=47824 DPT=739 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 25 19:22:10 h2177944 kernel: \[496869.383994\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.119 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=56800 PROTO=TCP SPT=47824 DPT=157 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 25 19:22:10 h2177944 kernel: \[496869.384009\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.119 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=56800 PROTO=TCP SPT=47824 DPT=157 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 25 19:36:21 h2177944 kernel: \[497720.054700\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.119 DST=85.214.117.9 LEN	2019-12-26 02:51:55
attackspam	Dec 24 16:34:55 debian-2gb-nbg1-2 kernel: \[854435.095665\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.119 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=23800 PROTO=TCP SPT=44131 DPT=438 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-25 01:03:23
attack	Excessive Port-Scanning	2019-12-24 23:23:22

相同子网IP讨论:

IP	类型	评论内容	时间
45.136.108.22	attackspambots	45.136.108.22 - - [31/Aug/2020:07:28:26 -0500] "- / HTTP/1.0" 400 219 000 0 0 0 15 282 0 0 0 NONE FIN FIN ERR_INVALID_REQ	2020-09-01 04:38:43
45.136.108.22	attack	Unauthorized connection attempt from IP address 45.136.108.22 on port 993	2020-08-29 02:06:36
45.136.108.24	attackspambots	SSH login attempts.	2020-08-22 23:35:58
45.136.108.22	attackspambots	Fail2Ban Ban Triggered	2020-08-19 09:11:16
45.136.108.65	attack	[14/Aug/2020:05:14:56 -0400] "\x03" Blank UA	2020-08-16 04:36:35
45.136.108.67	attack	Unauthorized connection attempt detected from IP address 45.136.108.67 to port 2261 [T]	2020-08-16 04:36:18
45.136.108.24	attackspam	Unauthorized connection attempt detected from IP address 45.136.108.24 to port 4453 [T]	2020-08-14 02:36:09
45.136.108.65	attackbotsspam	Unauthorized connection attempt detected from IP address 45.136.108.65 to port 968 [T]	2020-08-14 02:12:50
45.136.108.66	attackbotsspam	Unauthorized connection attempt detected from IP address 45.136.108.66 to port 1723 [T]	2020-08-14 02:12:33
45.136.108.68	attack	Unauthorized connection attempt detected from IP address 45.136.108.68 to port 3424 [T]	2020-08-14 02:12:09
45.136.108.22	attackbotsspam	Port scan detected	2020-08-14 01:49:56
45.136.108.67	attackspambots	Unauthorized connection attempt detected from IP address 45.136.108.67 to port 2925 [T]	2020-08-14 01:49:28
45.136.108.62	attack	Unauthorized connection attempt detected from IP address 45.136.108.62 to port 9055 [T]	2020-08-14 01:07:35
45.136.108.80	attackspambots	2020-08-12T12:42:42Z - RDP login failed multiple times. (45.136.108.80)	2020-08-12 22:09:08
45.136.108.18	attack	RDP brute forcing (r)	2020-08-04 21:39:59

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.136.108.119
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47291
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.136.108.119.			IN	A

;; AUTHORITY SECTION:
.			481	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122401 1800 900 604800 86400

;; Query time: 98 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 24 23:23:18 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 119.108.136.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 119.108.136.45.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
45.55.6.42	attack	Port Scan detected from 45.55.6.42 (US/United States/California/San Francisco/-). 4 hits in the last 85 seconds	2020-04-21 21:22:26
46.41.117.97	attackbots	Invalid user nagesh from 46.41.117.97 port 59994	2020-04-21 21:21:44
46.153.126.187	attackbotsspam	Invalid user cx from 46.153.126.187 port 32741	2020-04-21 21:21:25
211.193.60.137	attackspam	Invalid user ye from 211.193.60.137 port 50444	2020-04-21 21:33:09
180.168.141.246	attack	Apr 21 15:47:30 vps333114 sshd[22846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.141.246 Apr 21 15:47:32 vps333114 sshd[22846]: Failed password for invalid user admin from 180.168.141.246 port 47584 ssh2 ...	2020-04-21 21:45:34
82.177.95.234	attackbots	Invalid user hp from 82.177.95.234 port 34936	2020-04-21 21:08:33
51.77.230.49	attackspambots	Invalid user qh from 51.77.230.49 port 53298	2020-04-21 21:15:58
210.186.122.28	attackbotsspam	Invalid user admin from 210.186.122.28 port 45901	2020-04-21 21:33:47
69.28.235.203	attackspam	Invalid user rt from 69.28.235.203 port 56022	2020-04-21 21:11:18
51.178.2.79	attack	Invalid user ftpuser from 51.178.2.79 port 49922	2020-04-21 21:14:22
223.83.138.104	attackspam	Invalid user testftp from 223.83.138.104 port 54438	2020-04-21 21:29:05
91.207.40.45	attack	Invalid user ftpuser1 from 91.207.40.45 port 56936	2020-04-21 21:06:50
50.244.37.249	attack	Invalid user hl from 50.244.37.249 port 36372	2020-04-21 21:17:36
46.218.7.227	attackbots	Invalid user ea from 46.218.7.227 port 45480	2020-04-21 21:20:50
84.45.251.243	attackspambots	(sshd) Failed SSH login from 84.45.251.243 (GB/United Kingdom/Durham/Willington/84-45-251-243.static.enta.net/[AS8468 Entanet]): 1 in the last 3600 secs	2020-04-21 21:07:57

最近上报的IP列表

103.223.5.212	101.99.14.176	144.217.136.227	197.25.166.43
210.175.50.124	212.109.29.46	187.28.47.90	46.35.157.113
177.71.62.85	95.38.208.68	114.39.6.27	93.90.167.55
80.252.158.171	159.44.137.45	14.184.251.199	181.177.119.38
5.234.235.73	107.93.58.146	252.24.93.79	181.11.220.126