必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): ComTrade LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:
类型 评论内容 时间
attack
massive Port Scans
2019-11-07 13:54:26
attackspam
Port scan on 5 port(s): 6227 6425 6517 6774 6790
2019-09-21 07:25:44
相同子网IP讨论:
IP 类型 评论内容 时间
45.136.109.219 attackspambots
ET CINS Active Threat Intelligence Poor Reputation IP group 26 - port: 6000 proto: tcp cat: Misc Attackbytes: 60
2020-08-19 23:39:13
45.136.109.219 attackspam
slow and persistent scanner
2020-08-17 20:34:11
45.136.109.251 attackbotsspam
Port scanning [3 denied]
2020-08-14 14:18:15
45.136.109.219 attackbots
 TCP (SYN) 45.136.109.219:50230 -> port 53, len 44
2020-08-07 08:11:38
45.136.109.219 attackbotsspam
[Tue Aug 04 17:47:28 2020] - DDoS Attack From IP: 45.136.109.219 Port: 41096
2020-08-06 18:31:50
45.136.109.219 attack
 TCP (SYN) 45.136.109.219:43869 -> port 53, len 44
2020-08-05 23:34:34
45.136.109.158 attack
Unauthorized connection attempt detected from IP address 45.136.109.158 to port 3389
2020-07-22 15:39:59
45.136.109.87 attack
BruteForce RDP attempts from 45.136.109.175
2020-07-17 14:21:12
45.136.109.158 attack
SmallBizIT.US 2 packets to tcp(3389,3391)
2020-07-07 12:28:14
45.136.109.158 attackbots
Unauthorized connection attempt detected from IP address 45.136.109.158 to port 4489 [T]
2020-07-05 22:47:55
45.136.109.175 attackspambots
Icarus honeypot on github
2020-07-02 08:25:18
45.136.109.251 attackbots
Multiport scan : 15 ports scanned 2888 3381 3382 3402 3420 3501 3502 4003 4018 5909 7926 8093 9000 9261 9833
2020-06-21 07:47:48
45.136.109.219 attackbots
ET CINS Active Threat Intelligence Poor Reputation IP group 27 - port: 6389 proto: TCP cat: Misc Attack
2020-06-06 08:47:05
45.136.109.222 attackspam
Mar 22 03:57:09 src: 45.136.109.222 signature match: "BACKDOOR NetSphere Connection attempt" (sid: 100044) tcp port: 30100
2020-03-22 12:01:46
45.136.109.222 attackbotsspam
Mar 18 22:14:16 src: 45.136.109.222 signature match: "BACKDOOR Subseven connection attempt" (sid: 100207) tcp port: 27374
2020-03-19 06:22:33
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.136.109.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48959
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.136.109.138.			IN	A

;; AUTHORITY SECTION:
.			591	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092002 1800 900 604800 86400

;; Query time: 845 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 21 07:25:41 CST 2019
;; MSG SIZE  rcvd: 118
HOST信息:
Host 138.109.136.45.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.109.136.45.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
104.168.218.121 attackspam
Mar  8 04:37:11 hanapaa sshd\[3882\]: Invalid user eleve from 104.168.218.121
Mar  8 04:37:11 hanapaa sshd\[3882\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.168.218.121
Mar  8 04:37:13 hanapaa sshd\[3882\]: Failed password for invalid user eleve from 104.168.218.121 port 37724 ssh2
Mar  8 04:41:28 hanapaa sshd\[4215\]: Invalid user backupuser from 104.168.218.121
Mar  8 04:41:28 hanapaa sshd\[4215\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.168.218.121
2020-03-08 22:47:30
188.158.145.70 attackbots
Honeypot attack, port: 5555, PTR: adsl-188-158-145-70.sabanet.ir.
2020-03-08 22:40:10
222.186.3.249 attack
2020-03-08T15:09:14.294597scmdmz1 sshd[8633]: Failed password for root from 222.186.3.249 port 18445 ssh2
2020-03-08T15:09:16.329191scmdmz1 sshd[8633]: Failed password for root from 222.186.3.249 port 18445 ssh2
2020-03-08T15:09:18.303294scmdmz1 sshd[8633]: Failed password for root from 222.186.3.249 port 18445 ssh2
...
2020-03-08 22:13:42
46.142.5.67 attack
Telnet Server BruteForce Attack
2020-03-08 22:46:07
95.216.169.49 attack
As always with hetzner 
/modules/autoupgrade/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
/modules/checkout/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
/modules/ps_facetedsearch/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
/modules/gamification/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
2020-03-08 22:26:31
216.155.94.51 attack
Jul 24 05:22:23 ms-srv sshd[14274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.155.94.51
Jul 24 05:22:25 ms-srv sshd[14274]: Failed password for invalid user todd from 216.155.94.51 port 33449 ssh2
2020-03-08 22:50:21
167.114.24.176 attackbots
Honeypot attack, port: 389, PTR: giles.onyphe.io.
2020-03-08 22:15:45
128.199.142.138 attack
(sshd) Failed SSH login from 128.199.142.138 (SG/Singapore/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar  8 14:09:14 amsweb01 sshd[24658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.142.138  user=root
Mar  8 14:09:16 amsweb01 sshd[24658]: Failed password for root from 128.199.142.138 port 60148 ssh2
Mar  8 14:15:06 amsweb01 sshd[25209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.142.138  user=root
Mar  8 14:15:08 amsweb01 sshd[25209]: Failed password for root from 128.199.142.138 port 56668 ssh2
Mar  8 14:18:29 amsweb01 sshd[25611]: Invalid user ts from 128.199.142.138 port 60342
2020-03-08 22:30:49
222.186.42.7 attackbots
03/08/2020-10:15:13.480121 222.186.42.7 Protocol: 6 ET SCAN Potential SSH Scan
2020-03-08 22:21:06
177.126.137.139 attackspam
Automatic report - Port Scan Attack
2020-03-08 22:11:44
216.218.134.12 attackspam
Aug 16 13:41:38 ms-srv sshd[30911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.218.134.12
Aug 16 13:41:40 ms-srv sshd[30911]: Failed password for invalid user admin from 216.218.134.12 port 44879 ssh2
2020-03-08 22:41:26
106.52.114.162 attackspambots
Automatic report - SSH Brute-Force Attack
2020-03-08 22:33:16
185.53.88.201 attackbots
[2020-03-08 10:00:30] NOTICE[1148][C-0000fe1f] chan_sip.c: Call from '' (185.53.88.201:51456) to extension '01146650553727' rejected because extension not found in context 'public'.
[2020-03-08 10:00:30] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-08T10:00:30.882-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146650553727",SessionID="0x7fd82cdb8718",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.201/51456",ACLName="no_extension_match"
[2020-03-08 10:00:32] NOTICE[1148][C-0000fe20] chan_sip.c: Call from '' (185.53.88.201:58033) to extension '01146971500864' rejected because extension not found in context 'public'.
[2020-03-08 10:00:32] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-08T10:00:32.393-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146971500864",SessionID="0x7fd82c530768",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.
...
2020-03-08 22:15:31
165.227.104.253 attackbots
Mar  8 16:10:02 server sshd\[14491\]: Invalid user admin2 from 165.227.104.253
Mar  8 16:10:02 server sshd\[14491\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.104.253 
Mar  8 16:10:04 server sshd\[14491\]: Failed password for invalid user admin2 from 165.227.104.253 port 47271 ssh2
Mar  8 16:18:34 server sshd\[16306\]: Invalid user admin2 from 165.227.104.253
Mar  8 16:18:34 server sshd\[16306\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.104.253 
...
2020-03-08 22:25:50
216.218.139.75 attack
Jan 18 23:55:42 ms-srv sshd[50605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.218.139.75  user=root
Jan 18 23:55:43 ms-srv sshd[50605]: Failed password for invalid user root from 216.218.139.75 port 60406 ssh2
2020-03-08 22:40:56

最近上报的IP列表

152.208.53.76 139.212.219.5 118.187.5.163 94.50.161.24
141.47.14.135 89.101.42.159 31.4.245.150 95.9.158.94
94.100.7.215 45.136.109.136 217.15.146.197 49.231.15.109
197.51.226.82 165.22.10.160 191.32.226.232 190.171.216.114
189.57.26.18 190.48.118.163 189.176.94.18 188.128.73.58