必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): ComTrade LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:
类型 评论内容 时间
attackspambots
Honeypot attack, port: 4848, PTR: PTR record not found
2019-12-28 22:19:55
attackspambots
45.136.109.173 was recorded 5 times by 3 hosts attempting to connect to the following ports: 5565,6886,10510,10370,5800. Incident counter (4h, 24h, all-time): 5, 33, 1407
2019-11-24 02:53:24
attackbots
Unauthorised access (Nov 23) SRC=45.136.109.173 LEN=40 TTL=248 ID=16636 TCP DPT=3306 WINDOW=1024 SYN
2019-11-23 21:03:11
attackspam
45.136.109.173 was recorded 12 times by 3 hosts attempting to connect to the following ports: 45054,7002,5551,25652,6050,33555,5445,389,6036,10635,10860. Incident counter (4h, 24h, all-time): 12, 84, 1031
2019-11-18 06:30:16
attack
45.136.109.173 was recorded 12 times by 3 hosts attempting to connect to the following ports: 7744,33555,55888,101,63063,4494,4473,27872,2305,5389,29029. Incident counter (4h, 24h, all-time): 12, 57, 923
2019-11-17 01:34:06
attack
45.136.109.173 was recorded 5 times by 2 hosts attempting to connect to the following ports: 1800,1385,3306,9540,4900. Incident counter (4h, 24h, all-time): 5, 36, 142
2019-11-04 22:12:12
attack
Multiport scan : 63 ports scanned 1119 1455 1777 1995 2130 2244 2350 2485 2545 3328 3545 4040 4265 4457 4493 5001 5220 5460 5547 6185 7590 7766 7778 8135 8185 8222 8250 8265 8383 8889 8900 9235 9440 9955 9978 10230 10245 10465 10550 10580 15451 16000 20500 20902 21312 22111 25852 29792 30003 31000 31513 32032 33033 33350 33891 33894 40300 47074 51000 53053 56789 60900 62026
2019-10-31 03:36:29
相同子网IP讨论:
IP 类型 评论内容 时间
45.136.109.219 attackspambots
ET CINS Active Threat Intelligence Poor Reputation IP group 26 - port: 6000 proto: tcp cat: Misc Attackbytes: 60
2020-08-19 23:39:13
45.136.109.219 attackspam
slow and persistent scanner
2020-08-17 20:34:11
45.136.109.251 attackbotsspam
Port scanning [3 denied]
2020-08-14 14:18:15
45.136.109.219 attackbots
 TCP (SYN) 45.136.109.219:50230 -> port 53, len 44
2020-08-07 08:11:38
45.136.109.219 attackbotsspam
[Tue Aug 04 17:47:28 2020] - DDoS Attack From IP: 45.136.109.219 Port: 41096
2020-08-06 18:31:50
45.136.109.219 attack
 TCP (SYN) 45.136.109.219:43869 -> port 53, len 44
2020-08-05 23:34:34
45.136.109.158 attack
Unauthorized connection attempt detected from IP address 45.136.109.158 to port 3389
2020-07-22 15:39:59
45.136.109.87 attack
BruteForce RDP attempts from 45.136.109.175
2020-07-17 14:21:12
45.136.109.158 attack
SmallBizIT.US 2 packets to tcp(3389,3391)
2020-07-07 12:28:14
45.136.109.158 attackbots
Unauthorized connection attempt detected from IP address 45.136.109.158 to port 4489 [T]
2020-07-05 22:47:55
45.136.109.175 attackspambots
Icarus honeypot on github
2020-07-02 08:25:18
45.136.109.251 attackbots
Multiport scan : 15 ports scanned 2888 3381 3382 3402 3420 3501 3502 4003 4018 5909 7926 8093 9000 9261 9833
2020-06-21 07:47:48
45.136.109.219 attackbots
ET CINS Active Threat Intelligence Poor Reputation IP group 27 - port: 6389 proto: TCP cat: Misc Attack
2020-06-06 08:47:05
45.136.109.222 attackspam
Mar 22 03:57:09 src: 45.136.109.222 signature match: "BACKDOOR NetSphere Connection attempt" (sid: 100044) tcp port: 30100
2020-03-22 12:01:46
45.136.109.222 attackbotsspam
Mar 18 22:14:16 src: 45.136.109.222 signature match: "BACKDOOR Subseven connection attempt" (sid: 100207) tcp port: 27374
2020-03-19 06:22:33
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.136.109.173
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8963
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.136.109.173.			IN	A

;; AUTHORITY SECTION:
.			590	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019103001 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 31 03:36:25 CST 2019
;; MSG SIZE  rcvd: 118
HOST信息:
Host 173.109.136.45.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 173.109.136.45.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
180.244.39.49 attack
Oct 21 21:35:24 nbi-636 sshd[21585]: Invalid user tomcat from 180.244.39.49 port 55282
Oct 21 21:35:26 nbi-636 sshd[21585]: Failed password for invalid user tomcat from 180.244.39.49 port 55282 ssh2
Oct 21 21:35:26 nbi-636 sshd[21585]: Received disconnect from 180.244.39.49 port 55282:11: Bye Bye [preauth]
Oct 21 21:35:26 nbi-636 sshd[21585]: Disconnected from 180.244.39.49 port 55282 [preauth]
Oct 21 21:53:20 nbi-636 sshd[25009]: User r.r from 180.244.39.49 not allowed because not listed in AllowUsers
Oct 21 21:53:20 nbi-636 sshd[25009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.244.39.49  user=r.r
Oct 21 21:53:21 nbi-636 sshd[25009]: Failed password for invalid user r.r from 180.244.39.49 port 40264 ssh2
Oct 21 21:53:21 nbi-636 sshd[25009]: Received disconnect from 180.244.39.49 port 40264:11: Bye Bye [preauth]
Oct 21 21:53:21 nbi-636 sshd[25009]: Disconnected from 180.244.39.49 port 40264 [preauth]
Oct 21 21:56:40 nbi........
-------------------------------
2019-10-22 07:44:35
111.59.93.76 attackspambots
Oct 22 00:14:02 bouncer sshd\[8794\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.59.93.76  user=root
Oct 22 00:14:04 bouncer sshd\[8794\]: Failed password for root from 111.59.93.76 port 64476 ssh2
Oct 22 00:14:06 bouncer sshd\[8796\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.59.93.76  user=root
...
2019-10-22 07:58:06
171.15.196.47 attack
Unauthorized connection attempt from IP address 171.15.196.47 on Port 445(SMB)
2019-10-22 07:52:53
201.219.236.100 attackspambots
2019-10-21 x@x
2019-10-21 21:42:00 unexpected disconnection while reading SMTP command from ip-100-236-219-201.nextelmovil.cl [201.219.236.100]:28062 I=[10.100.18.22]:25 (error: Connection reset by peer)
2019-10-21 x@x


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=201.219.236.100
2019-10-22 07:51:04
49.235.107.14 attack
Oct 21 21:53:48 vps sshd[9243]: Failed password for root from 49.235.107.14 port 49625 ssh2
Oct 21 22:02:15 vps sshd[9590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.107.14 
Oct 21 22:02:17 vps sshd[9590]: Failed password for invalid user 1709527xxx from 49.235.107.14 port 57205 ssh2
...
2019-10-22 07:50:20
198.71.241.47 attackspam
WordPress login Brute force / Web App Attack on client site.
2019-10-22 07:27:34
119.57.120.107 attackspam
Oct 21 23:45:52 server1 postfix/smtpd\[27443\]: warning: unknown\[119.57.120.107\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\
Oct 21 23:46:06 server1 postfix/smtpd\[27443\]: warning: unknown\[119.57.120.107\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\
Oct 21 23:46:25 server1 postfix/smtpd\[27443\]: warning: unknown\[119.57.120.107\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\
2019-10-22 07:57:52
86.62.74.243 attackspam
Unauthorized connection attempt from IP address 86.62.74.243 on Port 445(SMB)
2019-10-22 07:44:19
129.211.113.29 attack
Oct 21 22:48:30 server sshd\[1781\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.113.29  user=root
Oct 21 22:48:32 server sshd\[1781\]: Failed password for root from 129.211.113.29 port 59550 ssh2
Oct 21 22:58:36 server sshd\[4142\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.113.29  user=root
Oct 21 22:58:38 server sshd\[4142\]: Failed password for root from 129.211.113.29 port 44746 ssh2
Oct 21 23:02:44 server sshd\[5184\]: Invalid user login from 129.211.113.29
Oct 21 23:02:44 server sshd\[5184\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.113.29 
...
2019-10-22 07:35:30
120.92.78.9 attack
Oct 22 00:27:12 markkoudstaal sshd[24452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.78.9
Oct 22 00:27:14 markkoudstaal sshd[24452]: Failed password for invalid user test2 from 120.92.78.9 port 31781 ssh2
Oct 22 00:32:24 markkoudstaal sshd[24901]: Failed password for root from 120.92.78.9 port 51018 ssh2
2019-10-22 07:38:09
212.64.7.134 attackspam
Oct 21 01:57:57 *** sshd[29161]: Failed password for invalid user adidas from 212.64.7.134 port 45062 ssh2
2019-10-22 07:59:31
46.244.254.143 attack
2019-10-21 x@x
2019-10-21 21:22:44 unexpected disconnection while reading SMTP command from ppp-46-244-254-143.dynamic.mnet-online.de [46.244.254.143]:12465 I=[10.100.18.22]:25 (error: Connection reset by peer)
2019-10-21 x@x


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=46.244.254.143
2019-10-22 07:26:51
222.252.30.63 attack
Unauthorized connection attempt from IP address 222.252.30.63 on Port 445(SMB)
2019-10-22 07:59:04
50.115.172.147 attack
Honeypot attack, port: 23, PTR: PTR record not found
2019-10-22 07:46:19
157.245.129.1 attackspam
Honeypot attack, port: 23, PTR: PTR record not found
2019-10-22 07:34:08

最近上报的IP列表

71.124.125.116 57.13.137.219 212.106.115.126 222.127.33.86
68.253.216.82 42.157.73.70 106.122.135.108 13.127.69.35
13.215.120.14 254.42.249.164 6.24.147.38 131.140.104.220
61.123.232.2 238.51.228.145 125.214.56.112 48.7.152.121
210.71.199.251 16.83.248.13 197.239.87.51 56.39.159.167