45.122.138.67 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Shanghai Huajuan Information Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt detected from IP address 45.122.138.67 to port 1433 [J]	2020-01-29 10:12:16

Comments on same subnet:

IP	Type	Details	Datetime
45.122.138.7	attackbotsspam	Unauthorized connection attempt detected from IP address 45.122.138.7 to port 1433 [J]	2020-01-29 05:23:52
45.122.138.7	attackbots	SIP/5060 Probe, BF, Hack -	2019-12-30 21:25:00
45.122.138.22	attack	Dec 29 18:12:37 ws22vmsma01 sshd[222802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 Dec 29 18:12:39 ws22vmsma01 sshd[222802]: Failed password for invalid user ubnt from 45.122.138.22 port 48709 ssh2 ...	2019-12-30 06:28:14
45.122.138.22	attack	2019-12-27T23:51:12.745531shield sshd\[5830\]: Invalid user ervin from 45.122.138.22 port 59069 2019-12-27T23:51:12.748817shield sshd\[5830\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 2019-12-27T23:51:15.045338shield sshd\[5830\]: Failed password for invalid user ervin from 45.122.138.22 port 59069 ssh2 2019-12-27T23:54:04.214561shield sshd\[6635\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 user=root 2019-12-27T23:54:06.791896shield sshd\[6635\]: Failed password for root from 45.122.138.22 port 41868 ssh2	2019-12-28 07:58:59
45.122.138.22	attackbotsspam	Dec 10 14:03:43 vibhu-HP-Z238-Microtower-Workstation sshd\[28411\]: Invalid user 1qaz@WSX from 45.122.138.22 Dec 10 14:03:43 vibhu-HP-Z238-Microtower-Workstation sshd\[28411\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 Dec 10 14:03:45 vibhu-HP-Z238-Microtower-Workstation sshd\[28411\]: Failed password for invalid user 1qaz@WSX from 45.122.138.22 port 55968 ssh2 Dec 10 14:10:11 vibhu-HP-Z238-Microtower-Workstation sshd\[29473\]: Invalid user pluto from 45.122.138.22 Dec 10 14:10:11 vibhu-HP-Z238-Microtower-Workstation sshd\[29473\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 ...	2019-12-10 18:47:08
45.122.138.22	attackspambots	Dec 4 16:58:18 plusreed sshd[11157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.138.22 user=root Dec 4 16:58:20 plusreed sshd[11157]: Failed password for root from 45.122.138.22 port 57114 ssh2 ...	2019-12-05 06:05:19
45.122.138.22	attackbotsspam	$f2bV_matches	2019-12-02 19:57:29
45.122.138.22	attack	Nov 23 18:47:07 hosting sshd[16063]: Invalid user dorotea from 45.122.138.22 port 47184 ...	2019-11-24 00:43:46
45.122.138.22	attackspambots	Automatic report - SSH Brute-Force Attack	2019-11-19 06:42:29
45.122.138.81	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/45.122.138.81/ HK - 1H : (18) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : HK NAME ASN : ASN132742 IP : 45.122.138.81 CIDR : 45.122.138.0/24 PREFIX COUNT : 79 UNIQUE IP COUNT : 37888 WYKRYTE ATAKI Z ASN132742 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-17 20:52:50 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-18 04:30:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.122.138.67
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23136
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.122.138.67.			IN	A

;; AUTHORITY SECTION:
.			282	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012802 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 10:12:10 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 67.138.122.45.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 67.138.122.45.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.218.7.227	attackspambots	Feb 11 15:06:38 [host] sshd[14973]: Invalid user v Feb 11 15:06:38 [host] sshd[14973]: pam_unix(sshd: Feb 11 15:06:39 [host] sshd[14973]: Failed passwor	2020-02-11 23:56:14
31.40.41.36	attackspambots	Unauthorized connection attempt detected from IP address 31.40.41.36 to port 445	2020-02-11 23:22:01
167.114.207.75	attackbotsspam	2020-02-10T14:07:41.1127991495-001 sshd[50233]: Invalid user vrs from 167.114.207.75 port 48884 2020-02-10T14:07:41.1162631495-001 sshd[50233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.207.75 2020-02-10T14:07:41.1127991495-001 sshd[50233]: Invalid user vrs from 167.114.207.75 port 48884 2020-02-10T14:07:43.4502611495-001 sshd[50233]: Failed password for invalid user vrs from 167.114.207.75 port 48884 ssh2 2020-02-10T14:12:23.0160781495-001 sshd[50836]: Invalid user eok from 167.114.207.75 port 59592 2020-02-10T14:12:23.0243411495-001 sshd[50836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.207.75 2020-02-10T14:12:23.0160781495-001 sshd[50836]: Invalid user eok from 167.114.207.75 port 59592 2020-02-10T14:12:24.7370671495-001 sshd[50836]: Failed password for invalid user eok from 167.114.207.75 port 59592 ssh2 2020-02-10T14:15:49.1366961495-001 sshd[51060]: Invalid u........ ------------------------------	2020-02-12 00:08:29
46.21.106.229	attack	Feb 11 11:01:31 clarabelen sshd[30629]: reveeclipse mapping checking getaddrinfo for 46-21-106-229-static.glesys.net [46.21.106.229] failed - POSSIBLE BREAK-IN ATTEMPT! Feb 11 11:01:31 clarabelen sshd[30629]: Invalid user yfv from 46.21.106.229 Feb 11 11:01:31 clarabelen sshd[30629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.21.106.229 Feb 11 11:01:33 clarabelen sshd[30629]: Failed password for invalid user yfv from 46.21.106.229 port 56356 ssh2 Feb 11 11:01:33 clarabelen sshd[30629]: Received disconnect from 46.21.106.229: 11: Bye Bye [preauth] Feb 11 11:20:36 clarabelen sshd[398]: reveeclipse mapping checking getaddrinfo for 46-21-106-229-static.glesys.net [46.21.106.229] failed - POSSIBLE BREAK-IN ATTEMPT! Feb 11 11:20:36 clarabelen sshd[398]: Invalid user hcu from 46.21.106.229 Feb 11 11:20:36 clarabelen sshd[398]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.21.106.229 ........ -------------------------------	2020-02-11 23:43:57
182.72.66.134	attackbotsspam	20/2/11@08:46:39: FAIL: Alarm-Network address from=182.72.66.134 ...	2020-02-12 00:07:17
89.165.109.57	attack	Automatic report - Port Scan Attack	2020-02-11 23:19:49
78.187.3.102	attack	Unauthorized connection attempt detected from IP address 78.187.3.102 to port 445	2020-02-12 00:08:02
151.233.201.249	attackspam	DATE:2020-02-11 14:46:00, IP:151.233.201.249, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-02-11 23:29:00
193.112.54.66	attackspambots	Feb 11 05:10:46 hpm sshd\[2751\]: Invalid user hiz from 193.112.54.66 Feb 11 05:10:46 hpm sshd\[2751\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.54.66 Feb 11 05:10:48 hpm sshd\[2751\]: Failed password for invalid user hiz from 193.112.54.66 port 28200 ssh2 Feb 11 05:14:47 hpm sshd\[3157\]: Invalid user plq from 193.112.54.66 Feb 11 05:14:47 hpm sshd\[3157\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.54.66	2020-02-11 23:30:33
213.207.196.50	attackbotsspam	Unauthorized connection attempt from IP address 213.207.196.50 on Port 445(SMB)	2020-02-11 23:49:13
94.179.129.93	attack	ssh failed login	2020-02-12 00:00:06
80.66.81.148	attackspam	2020-02-11 16:43:54 dovecot_login authenticator failed for $\[80.66.81.148\]$ \[80.66.81.148\]: 535 Incorrect authentication data $set_id=postmaster@nophost.com$ 2020-02-11 16:44:04 dovecot_login authenticator failed for $\[80.66.81.148\]$ \[80.66.81.148\]: 535 Incorrect authentication data 2020-02-11 16:44:20 dovecot_login authenticator failed for $\[80.66.81.148\]$ \[80.66.81.148\]: 535 Incorrect authentication data 2020-02-11 16:44:25 dovecot_login authenticator failed for $\[80.66.81.148\]$ \[80.66.81.148\]: 535 Incorrect authentication data 2020-02-11 16:44:38 dovecot_login authenticator failed for $\[80.66.81.148\]$ \[80.66.81.148\]: 535 Incorrect authentication data	2020-02-11 23:49:43
185.238.44.38	attackspambots	postfix	2020-02-12 00:03:21
79.166.53.102	attack	Telnet Server BruteForce Attack	2020-02-11 23:29:59
139.59.7.76	attackbots	Failed password for invalid user ydx from 139.59.7.76 port 49882 ssh2 Invalid user roc from 139.59.7.76 port 47342 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.7.76 Failed password for invalid user roc from 139.59.7.76 port 47342 ssh2 Invalid user sfk from 139.59.7.76 port 44802	2020-02-11 23:21:23

Recently Reported IPs

177.188.225.98	170.81.18.72	163.114.32.0	150.255.1.234
124.235.138.199	123.191.144.225	123.179.6.23	121.130.13.3
119.39.46.199	89.168.123.37	118.81.227.224	118.81.84.175
5.126.67.25	116.252.0.63	115.133.20.232	114.35.118.111
110.177.82.11	245.72.121.43	106.45.0.171	103.79.164.83