45.136.108.155

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): ComTrade LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Dec 23 10:14:26 h2177944 kernel: \[291241.899926\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.155 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=41456 PROTO=TCP SPT=45840 DPT=1001 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 23 10:14:26 h2177944 kernel: \[291241.899942\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.155 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=41456 PROTO=TCP SPT=45840 DPT=1001 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 23 10:16:19 h2177944 kernel: \[291355.695323\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.155 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=23851 PROTO=TCP SPT=45840 DPT=790 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 23 10:16:19 h2177944 kernel: \[291355.695338\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.155 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=23851 PROTO=TCP SPT=45840 DPT=790 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 23 10:28:20 h2177944 kernel: \[292076.284520\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.155 DST=85.214.117.9 L	2019-12-23 17:40:35
attackbotsspam	Dec 23 07:08:34 debian-2gb-nbg1-2 kernel: \[734061.435806\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.155 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=37249 PROTO=TCP SPT=45840 DPT=942 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-23 14:14:40
attackspambots	4 attempts last 24 Hours	2019-12-20 21:24:16
attackbotsspam	Dec 18 10:00:19 h2177944 kernel: \[9534603.514907\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.155 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=24566 PROTO=TCP SPT=46617 DPT=205 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 18 10:07:35 h2177944 kernel: \[9535039.290724\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.155 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=30728 PROTO=TCP SPT=46617 DPT=715 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 18 10:18:42 h2177944 kernel: \[9535706.240494\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.155 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=20574 PROTO=TCP SPT=46617 DPT=1365 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 18 10:32:23 h2177944 kernel: \[9536527.127806\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.155 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=7977 PROTO=TCP SPT=46617 DPT=408 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 18 10:47:00 h2177944 kernel: \[9537404.464724\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.155 DST=85.214.117.	2019-12-18 18:01:10

相同子网IP讨论:

IP	类型	评论内容	时间
45.136.108.22	attackspambots	45.136.108.22 - - [31/Aug/2020:07:28:26 -0500] "- / HTTP/1.0" 400 219 000 0 0 0 15 282 0 0 0 NONE FIN FIN ERR_INVALID_REQ	2020-09-01 04:38:43
45.136.108.22	attack	Unauthorized connection attempt from IP address 45.136.108.22 on port 993	2020-08-29 02:06:36
45.136.108.24	attackspambots	SSH login attempts.	2020-08-22 23:35:58
45.136.108.22	attackspambots	Fail2Ban Ban Triggered	2020-08-19 09:11:16
45.136.108.65	attack	[14/Aug/2020:05:14:56 -0400] "\x03" Blank UA	2020-08-16 04:36:35
45.136.108.67	attack	Unauthorized connection attempt detected from IP address 45.136.108.67 to port 2261 [T]	2020-08-16 04:36:18
45.136.108.24	attackspam	Unauthorized connection attempt detected from IP address 45.136.108.24 to port 4453 [T]	2020-08-14 02:36:09
45.136.108.65	attackbotsspam	Unauthorized connection attempt detected from IP address 45.136.108.65 to port 968 [T]	2020-08-14 02:12:50
45.136.108.66	attackbotsspam	Unauthorized connection attempt detected from IP address 45.136.108.66 to port 1723 [T]	2020-08-14 02:12:33
45.136.108.68	attack	Unauthorized connection attempt detected from IP address 45.136.108.68 to port 3424 [T]	2020-08-14 02:12:09
45.136.108.22	attackbotsspam	Port scan detected	2020-08-14 01:49:56
45.136.108.67	attackspambots	Unauthorized connection attempt detected from IP address 45.136.108.67 to port 2925 [T]	2020-08-14 01:49:28
45.136.108.62	attack	Unauthorized connection attempt detected from IP address 45.136.108.62 to port 9055 [T]	2020-08-14 01:07:35
45.136.108.80	attackspambots	2020-08-12T12:42:42Z - RDP login failed multiple times. (45.136.108.80)	2020-08-12 22:09:08
45.136.108.18	attack	RDP brute forcing (r)	2020-08-04 21:39:59

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.136.108.155
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45994
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.136.108.155.			IN	A

;; AUTHORITY SECTION:
.			392	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121800 1800 900 604800 86400

;; Query time: 204 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 18 18:01:06 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 155.108.136.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 155.108.136.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
62.235.248.214	attackspambots	Apr 9 05:49:08 Ubuntu-1404-trusty-64-minimal sshd\[10364\]: Invalid user postgres from 62.235.248.214 Apr 9 05:49:08 Ubuntu-1404-trusty-64-minimal sshd\[10364\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.235.248.214 Apr 9 05:49:10 Ubuntu-1404-trusty-64-minimal sshd\[10364\]: Failed password for invalid user postgres from 62.235.248.214 port 43298 ssh2 Apr 9 05:56:26 Ubuntu-1404-trusty-64-minimal sshd\[13486\]: Invalid user ftpuser from 62.235.248.214 Apr 9 05:56:26 Ubuntu-1404-trusty-64-minimal sshd\[13486\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.235.248.214	2020-04-09 12:32:43
106.54.242.239	attack	Apr 9 05:56:29 vpn01 sshd[4199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.239 Apr 9 05:56:30 vpn01 sshd[4199]: Failed password for invalid user admin from 106.54.242.239 port 47398 ssh2 ...	2020-04-09 12:26:46
95.128.139.99	attackspam	Automatic report - Port Scan Attack	2020-04-09 12:48:22
202.188.101.106	attackbots	Apr 9 05:39:58 cvbnet sshd[10621]: Failed password for root from 202.188.101.106 port 60687 ssh2 Apr 9 05:56:28 cvbnet sshd[10787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.188.101.106 ...	2020-04-09 12:29:19
203.135.20.36	attackspambots	Apr 9 03:52:27 game-panel sshd[12651]: Failed password for root from 203.135.20.36 port 40866 ssh2 Apr 9 03:54:31 game-panel sshd[12744]: Failed password for root from 203.135.20.36 port 54124 ssh2	2020-04-09 12:25:22
137.74.166.77	attack	Apr 9 00:49:11 ws12vmsma01 sshd[13554]: Failed password for invalid user dbus from 137.74.166.77 port 56832 ssh2 Apr 9 00:59:03 ws12vmsma01 sshd[15025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.ip-137-74-166.eu user=root Apr 9 00:59:05 ws12vmsma01 sshd[15025]: Failed password for root from 137.74.166.77 port 51200 ssh2 ...	2020-04-09 12:39:24
14.29.232.191	attackspam	Apr 9 00:56:53 ws22vmsma01 sshd[74905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.232.191 Apr 9 00:56:54 ws22vmsma01 sshd[74905]: Failed password for invalid user work from 14.29.232.191 port 50451 ssh2 ...	2020-04-09 12:04:12
167.114.226.137	attackbots	Apr 8 17:57:54 web9 sshd\[12265\]: Invalid user postgres from 167.114.226.137 Apr 8 17:57:54 web9 sshd\[12265\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.226.137 Apr 8 17:57:56 web9 sshd\[12265\]: Failed password for invalid user postgres from 167.114.226.137 port 50018 ssh2 Apr 8 18:01:18 web9 sshd\[12713\]: Invalid user minecraft from 167.114.226.137 Apr 8 18:01:18 web9 sshd\[12713\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.226.137	2020-04-09 12:43:03
103.235.167.239	attack	Automatic report - Port Scan Attack	2020-04-09 12:11:52
220.229.67.71	attackspambots	Honeypot Attack, Port 23	2020-04-09 12:46:21
118.89.108.152	attack	Apr 9 05:31:05 h2646465 sshd[1758]: Invalid user zyg from 118.89.108.152 Apr 9 05:31:05 h2646465 sshd[1758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.108.152 Apr 9 05:31:05 h2646465 sshd[1758]: Invalid user zyg from 118.89.108.152 Apr 9 05:31:07 h2646465 sshd[1758]: Failed password for invalid user zyg from 118.89.108.152 port 35330 ssh2 Apr 9 05:52:11 h2646465 sshd[4429]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.108.152 user=root Apr 9 05:52:12 h2646465 sshd[4429]: Failed password for root from 118.89.108.152 port 36402 ssh2 Apr 9 05:56:12 h2646465 sshd[5031]: Invalid user teamspeak3 from 118.89.108.152 Apr 9 05:56:12 h2646465 sshd[5031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.108.152 Apr 9 05:56:12 h2646465 sshd[5031]: Invalid user teamspeak3 from 118.89.108.152 Apr 9 05:56:14 h2646465 sshd[5031]: Failed password for invalid user teams	2020-04-09 12:43:25
118.89.249.95	attackspam	Apr 9 06:51:37 lukav-desktop sshd\[32512\]: Invalid user deploy from 118.89.249.95 Apr 9 06:51:37 lukav-desktop sshd\[32512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.249.95 Apr 9 06:51:40 lukav-desktop sshd\[32512\]: Failed password for invalid user deploy from 118.89.249.95 port 41056 ssh2 Apr 9 06:56:33 lukav-desktop sshd\[14247\]: Invalid user user from 118.89.249.95 Apr 9 06:56:33 lukav-desktop sshd\[14247\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.249.95	2020-04-09 12:23:24
213.158.10.101	attackspam	detected by Fail2Ban	2020-04-09 12:37:04
61.178.223.164	attackspambots	Apr 9 05:56:50 santamaria sshd\[904\]: Invalid user systest from 61.178.223.164 Apr 9 05:56:50 santamaria sshd\[904\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.178.223.164 Apr 9 05:56:52 santamaria sshd\[904\]: Failed password for invalid user systest from 61.178.223.164 port 40164 ssh2 ...	2020-04-09 12:05:25
51.38.235.200	attackbotsspam	Apr 9 05:48:26 h1745522 sshd[10554]: Invalid user ubuntu from 51.38.235.200 port 42674 Apr 9 05:48:26 h1745522 sshd[10554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.235.200 Apr 9 05:48:26 h1745522 sshd[10554]: Invalid user ubuntu from 51.38.235.200 port 42674 Apr 9 05:48:29 h1745522 sshd[10554]: Failed password for invalid user ubuntu from 51.38.235.200 port 42674 ssh2 Apr 9 05:52:31 h1745522 sshd[10757]: Invalid user postgres from 51.38.235.200 port 52822 Apr 9 05:52:31 h1745522 sshd[10757]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.235.200 Apr 9 05:52:31 h1745522 sshd[10757]: Invalid user postgres from 51.38.235.200 port 52822 Apr 9 05:52:33 h1745522 sshd[10757]: Failed password for invalid user postgres from 51.38.235.200 port 52822 ssh2 Apr 9 05:56:34 h1745522 sshd[10905]: Invalid user admin from 51.38.235.200 port 34732 ...	2020-04-09 12:23:45

最近上报的IP列表

139.59.8.10	124.193.185.98	52.184.28.215	208.115.215.38
189.156.110.161	82.165.121.115	122.95.127.146	40.92.65.34
113.204.39.51	14.186.194.25	159.138.233.54	45.162.77.70
202.88.235.210	104.203.132.2	103.232.242.230	125.26.214.31
31.173.83.60	51.38.71.174	110.77.170.224	144.91.90.245