45.136.108.122

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): ComTrade LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Jan 5 14:13:11 debian-2gb-nbg1-2 kernel: \[489314.064610\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.122 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=22959 PROTO=TCP SPT=55294 DPT=4378 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-05 21:23:14
attackspam	Jan 3 11:21:17 debian-2gb-nbg1-2 kernel: \[306204.946704\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.122 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=53387 PROTO=TCP SPT=44359 DPT=5046 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-03 20:38:24
attackbotsspam	Dec 28 11:17:51 mc1 kernel: \[1687063.311477\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.122 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=61930 PROTO=TCP SPT=44842 DPT=5135 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 28 11:23:24 mc1 kernel: \[1687396.581594\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.122 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=10067 PROTO=TCP SPT=44842 DPT=4741 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 28 11:26:56 mc1 kernel: \[1687608.364677\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.122 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=34728 PROTO=TCP SPT=44842 DPT=5656 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-12-28 18:30:30
attack	Dec 27 17:22:58 h2177944 kernel: \[662488.338498\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.122 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=43752 PROTO=TCP SPT=40344 DPT=4397 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 27 17:22:58 h2177944 kernel: \[662488.338510\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.122 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=43752 PROTO=TCP SPT=40344 DPT=4397 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 27 17:33:59 h2177944 kernel: \[663149.374321\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.122 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=62702 PROTO=TCP SPT=40344 DPT=5349 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 27 17:33:59 h2177944 kernel: \[663149.374334\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.122 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=62702 PROTO=TCP SPT=40344 DPT=5349 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 27 17:53:22 h2177944 kernel: \[664311.409716\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.122 DST=85.214.117.9	2019-12-28 00:58:41
attack	Dec 26 18:46:19 debian-2gb-nbg1-2 kernel: \[1035107.538055\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.122 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=29606 PROTO=TCP SPT=52508 DPT=5657 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-27 02:18:34
attack	Dec 26 06:34:48 debian-2gb-nbg1-2 kernel: \[991218.848148\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.122 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=46778 PROTO=TCP SPT=48244 DPT=5512 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-26 13:42:13
attack	Dec 25 18:31:00 debian-2gb-nbg1-2 kernel: \[947793.421270\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.122 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=11101 PROTO=TCP SPT=48244 DPT=4871 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-26 01:51:23
attackspambots	firewall-block, port(s): 4594/tcp, 4711/tcp, 4727/tcp, 4739/tcp, 4749/tcp, 4765/tcp, 4864/tcp, 4982/tcp, 5011/tcp, 5270/tcp, 5299/tcp, 5313/tcp, 5331/tcp, 5430/tcp, 5589/tcp, 5676/tcp	2019-12-25 16:27:03

相同子网IP讨论:

IP	类型	评论内容	时间
45.136.108.22	attackspambots	45.136.108.22 - - [31/Aug/2020:07:28:26 -0500] "- / HTTP/1.0" 400 219 000 0 0 0 15 282 0 0 0 NONE FIN FIN ERR_INVALID_REQ	2020-09-01 04:38:43
45.136.108.22	attack	Unauthorized connection attempt from IP address 45.136.108.22 on port 993	2020-08-29 02:06:36
45.136.108.24	attackspambots	SSH login attempts.	2020-08-22 23:35:58
45.136.108.22	attackspambots	Fail2Ban Ban Triggered	2020-08-19 09:11:16
45.136.108.65	attack	[14/Aug/2020:05:14:56 -0400] "\x03" Blank UA	2020-08-16 04:36:35
45.136.108.67	attack	Unauthorized connection attempt detected from IP address 45.136.108.67 to port 2261 [T]	2020-08-16 04:36:18
45.136.108.24	attackspam	Unauthorized connection attempt detected from IP address 45.136.108.24 to port 4453 [T]	2020-08-14 02:36:09
45.136.108.65	attackbotsspam	Unauthorized connection attempt detected from IP address 45.136.108.65 to port 968 [T]	2020-08-14 02:12:50
45.136.108.66	attackbotsspam	Unauthorized connection attempt detected from IP address 45.136.108.66 to port 1723 [T]	2020-08-14 02:12:33
45.136.108.68	attack	Unauthorized connection attempt detected from IP address 45.136.108.68 to port 3424 [T]	2020-08-14 02:12:09
45.136.108.22	attackbotsspam	Port scan detected	2020-08-14 01:49:56
45.136.108.67	attackspambots	Unauthorized connection attempt detected from IP address 45.136.108.67 to port 2925 [T]	2020-08-14 01:49:28
45.136.108.62	attack	Unauthorized connection attempt detected from IP address 45.136.108.62 to port 9055 [T]	2020-08-14 01:07:35
45.136.108.80	attackspambots	2020-08-12T12:42:42Z - RDP login failed multiple times. (45.136.108.80)	2020-08-12 22:09:08
45.136.108.18	attack	RDP brute forcing (r)	2020-08-04 21:39:59

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.136.108.122
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47111
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.136.108.122.			IN	A

;; AUTHORITY SECTION:
.			243	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122500 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 25 16:26:58 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 122.108.136.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 122.108.136.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
104.248.117.234	attackbots	Jul 12 02:35:11 dedicated sshd[23169]: Invalid user dev from 104.248.117.234 port 48184	2019-07-12 08:47:12
157.55.39.29	attack	Automatic report - Web App Attack	2019-07-12 08:20:22
170.150.186.220	attack	12.07.2019 02:07:41 - Login Fail on hMailserver Detected by ELinOX-hMail-A2F	2019-07-12 08:19:51
197.54.170.255	attackbots	DATE:2019-07-12_02:06:13, IP:197.54.170.255, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-07-12 08:57:22
70.21.211.226	attack	Lines containing failures of 70.21.211.226 2019-07-11T20:16:24.116017+02:00 raspi1 sshd[29958]: Bad protocol version identification '' from 70.21.211.226 port 59330 2019-07-11T20:16:47.482231+02:00 raspi1 sshd[29960]: Invalid user ubnt from 70.21.211.226 2019-07-11T20:16:55.460324+02:00 raspi1 sshd[29962]: Invalid user cisco from 70.21.211.226 2019-07-11T20:16:55.635352+02:00 raspi1 sshd[29962]: Connection closed by 70.21.211.226 port 50116 [preauth] 2019-07-11T20:16:56.452622+02:00 raspi1 sshd[29964]: Invalid user pi from 70.21.211.226 2019-07-11T20:16:58.472835+02:00 raspi1 sshd[29964]: Connection closed by 70.21.211.226 port 35886 [preauth] 2019-07-11T20:17:10.449070+02:00 raspi1 sshd[29966]: Connection closed by 70.21.211.226 port 40510 [preauth] 2019-07-11T20:17:43.624671+02:00 raspi1 sshd[29968]: Connection closed by 70.21.211.226 port 46172 [preauth] 2019-07-11T20:17:55.283411+02:00 raspi1 sshd[29973]: Connection closed by 70.21.211.226 port 54930 [preauth] 2019-0........ ------------------------------	2019-07-12 08:24:22
168.126.101.166	attackspam	20 attempts against mh-ssh on steel.magehost.pro	2019-07-12 08:50:20
142.93.18.15	attackbotsspam	Jul 11 20:07:27 plusreed sshd[19795]: Invalid user edu from 142.93.18.15 ...	2019-07-12 08:21:28
34.77.106.203	attackbotsspam	port scan and connect, tcp 22 (ssh)	2019-07-12 08:22:31
37.59.100.22	attackspam	2019-07-12T02:23:20.577984cavecanem sshd[551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.100.22 user=nagios 2019-07-12T02:23:22.519840cavecanem sshd[551]: Failed password for nagios from 37.59.100.22 port 55604 ssh2 2019-07-12T02:28:02.859625cavecanem sshd[1704]: Invalid user postgres from 37.59.100.22 port 56341 2019-07-12T02:28:02.861848cavecanem sshd[1704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.100.22 2019-07-12T02:28:02.859625cavecanem sshd[1704]: Invalid user postgres from 37.59.100.22 port 56341 2019-07-12T02:28:04.518500cavecanem sshd[1704]: Failed password for invalid user postgres from 37.59.100.22 port 56341 ssh2 2019-07-12T02:32:56.934150cavecanem sshd[2960]: Invalid user ww from 37.59.100.22 port 57079 2019-07-12T02:32:56.936664cavecanem sshd[2960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.100.22 2019-07-12T02:32:5 ...	2019-07-12 08:34:38
49.89.189.22	attackspambots	2019-07-11T20:05:51.958755stt-1.[munged] kernel: [6921572.996593] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:aa:c1:08:00 SRC=49.89.189.22 DST=[mungedIP1] LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=55294 PROTO=TCP SPT=51752 DPT=23 WINDOW=46168 RES=0x00 SYN URGP=0 2019-07-11T20:06:27.566595stt-1.[munged] kernel: [6921608.604312] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:aa:c1:08:00 SRC=49.89.189.22 DST=[mungedIP1] LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=55294 PROTO=TCP SPT=51752 DPT=23 WINDOW=46168 RES=0x00 SYN URGP=0 2019-07-11T20:06:29.439267stt-1.[munged] kernel: [6921610.476969] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:aa:c1:08:00 SRC=49.89.189.22 DST=[mungedIP1] LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=55294 PROTO=TCP SPT=51752 DPT=23 WINDOW=46168 RES=0x00 SYN URGP=0	2019-07-12 08:47:29
59.9.31.195	attackspambots	Jul 12 02:32:40 dedicated sshd[22931]: Invalid user gi from 59.9.31.195 port 54926	2019-07-12 08:52:06
142.93.203.108	attackbots	Jul 12 02:27:07 s64-1 sshd[1867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.203.108 Jul 12 02:27:08 s64-1 sshd[1867]: Failed password for invalid user indigo from 142.93.203.108 port 55696 ssh2 Jul 12 02:32:12 s64-1 sshd[1908]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.203.108 ...	2019-07-12 08:43:03
203.183.40.240	attackbots	Jul 11 20:07:31 plusreed sshd[19821]: Invalid user erwin from 203.183.40.240 ...	2019-07-12 08:17:32
211.24.155.116	attack	Jul 12 02:52:12 tuxlinux sshd[63064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.24.155.116 user=root Jul 12 02:52:13 tuxlinux sshd[63064]: Failed password for root from 211.24.155.116 port 38600 ssh2 Jul 12 02:52:12 tuxlinux sshd[63064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.24.155.116 user=root Jul 12 02:52:13 tuxlinux sshd[63064]: Failed password for root from 211.24.155.116 port 38600 ssh2 ...	2019-07-12 08:54:00
112.85.42.186	attackspambots	Jul 12 02:26:41 mail sshd\[10814\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.186 user=root Jul 12 02:26:43 mail sshd\[10814\]: Failed password for root from 112.85.42.186 port 57666 ssh2 Jul 12 02:26:45 mail sshd\[10814\]: Failed password for root from 112.85.42.186 port 57666 ssh2 Jul 12 02:26:48 mail sshd\[10814\]: Failed password for root from 112.85.42.186 port 57666 ssh2 Jul 12 02:28:11 mail sshd\[11155\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.186 user=root	2019-07-12 08:39:50

最近上报的IP列表

114.1.197.70	56.103.214.68	83.97.20.187	35.206.157.68
190.186.64.8	17.74.231.248	36.92.100.109	90.185.10.156
130.241.87.61	49.37.131.237	55.172.212.2	169.227.239.230
237.169.83.49	207.119.182.244	141.165.213.93	186.185.254.82
109.115.127.230	115.151.54.173	14.248.84.183	27.78.117.148