134.119.1.117 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): domainfactory GmbH

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	$f2bV_matches	2020-04-05 06:52:09
attack	$f2bV_matches	2020-04-05 05:39:42

相同子网IP讨论:

IP	类型	评论内容	时间
134.119.189.180	attack	137 packets to port 21	2020-09-14 22:29:10
134.119.189.180	attackbots	[HOST2] Port Scan detected	2020-09-14 14:20:46
134.119.189.180	attackbotsspam	[HOST2] Port Scan detected	2020-09-14 06:18:49
134.119.192.229	attack	Aug 3 14:05:44 rocket sshd[27279]: Failed password for root from 134.119.192.229 port 59440 ssh2 Aug 3 14:09:49 rocket sshd[27779]: Failed password for root from 134.119.192.229 port 43178 ssh2 ...	2020-08-04 01:33:30
134.119.192.244	attackbots	TCP (SYN) 134.119.192.244:60777 -> port 445, len 52	2020-07-25 05:06:25
134.119.192.227	attackspambots	Invalid user trial from 134.119.192.227 port 39762	2020-07-23 03:08:14
134.119.191.9	attackbots	Jul 9 14:05:34 debian-2gb-nbg1-2 kernel: \[16554928.161685\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=134.119.191.9 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=43965 PROTO=TCP SPT=43890 DPT=17408 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-10 00:58:52
134.119.180.47	attackspambots	port scan and connect, tcp 80 (http)	2020-07-02 04:16:21
134.119.191.9	attackbots	TCP (SYN) 134.119.191.9:44218 -> port 29496, len 44	2020-06-30 22:21:46
134.119.192.227	attackspam	2020-06-29T19:49:37.089953abusebot-3.cloudsearch.cf sshd[29674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.119.192.227 user=root 2020-06-29T19:49:39.286243abusebot-3.cloudsearch.cf sshd[29674]: Failed password for root from 134.119.192.227 port 44272 ssh2 2020-06-29T19:49:41.643459abusebot-3.cloudsearch.cf sshd[29678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.119.192.227 user=root 2020-06-29T19:49:43.724209abusebot-3.cloudsearch.cf sshd[29678]: Failed password for root from 134.119.192.227 port 38766 ssh2 2020-06-29T19:49:46.471138abusebot-3.cloudsearch.cf sshd[29680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.119.192.227 user=root 2020-06-29T19:49:48.235959abusebot-3.cloudsearch.cf sshd[29680]: Failed password for root from 134.119.192.227 port 33266 ssh2 2020-06-29T19:49:51.398056abusebot-3.cloudsearch.cf sshd[29682]: pam_unix(sshd: ...	2020-06-30 04:10:07
134.119.184.170	attackspambots	proto=tcp . spt=53393 . dpt=465 . src=134.119.184.170 . dst=xx.xx.4.1 . Found on Blocklist de (144)	2020-06-29 20:46:39
134.119.192.227	attackspam	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-06-29T03:59:27Z and 2020-06-29T04:00:20Z	2020-06-29 12:40:12
134.119.192.230	attack	" "	2020-06-25 16:04:30
134.119.192.227	attackspam	Jun 23 22:54:11 vpn01 sshd[7019]: Failed password for root from 134.119.192.227 port 52504 ssh2 ...	2020-06-24 05:17:55
134.119.192.227	attackbots	Auto Fail2Ban report, multiple SSH login attempts.	2020-06-21 18:24:49

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.119.1.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37185
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.119.1.117.			IN	A

;; AUTHORITY SECTION:
.			442	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040402 1800 900 604800 86400

;; Query time: 149 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 05 05:39:39 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

117.1.119.134.in-addr.arpa domain name pointer j333290.servers.jiffybox.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
117.1.119.134.in-addr.arpa	name = j333290.servers.jiffybox.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
123.201.158.194	attack	Aug 27 02:06:48 hpm sshd\[13282\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.201.158.194 user=root Aug 27 02:06:50 hpm sshd\[13282\]: Failed password for root from 123.201.158.194 port 47699 ssh2 Aug 27 02:11:52 hpm sshd\[13754\]: Invalid user sontra from 123.201.158.194 Aug 27 02:11:53 hpm sshd\[13754\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.201.158.194 Aug 27 02:11:55 hpm sshd\[13754\]: Failed password for invalid user sontra from 123.201.158.194 port 47953 ssh2	2019-08-28 02:01:36
23.129.64.200	attackbots	Automated report - ssh fail2ban: Aug 27 18:00:58 wrong password, user=root, port=44317, ssh2 Aug 27 18:01:03 wrong password, user=root, port=44317, ssh2 Aug 27 18:01:07 wrong password, user=root, port=44317, ssh2 Aug 27 18:01:11 wrong password, user=root, port=44317, ssh2	2019-08-28 02:13:11
5.9.2.244	attackbots	\[2019-08-27 09:45:31\] SECURITY\[1837\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-27T09:45:31.000-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="912055759070",SessionID="0x7f7b301a9308",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/5.9.2.244/64140",ACLName="no_extension_match" \[2019-08-27 09:49:38\] SECURITY\[1837\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-27T09:49:38.272-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="0012055759070",SessionID="0x7f7b30683818",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/5.9.2.244/58984",ACLName="no_extension_match" \[2019-08-27 09:53:37\] SECURITY\[1837\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-27T09:53:37.288-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00012055759070",SessionID="0x7f7b301a9308",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/5.9.2.244/52732",ACLName="no_extension_match" ...	2019-08-28 02:25:33
51.158.117.227	attack	Aug 27 10:03:22 debian sshd\[5561\]: Invalid user user from 51.158.117.227 port 49638 Aug 27 10:03:22 debian sshd\[5561\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.117.227 Aug 27 10:03:24 debian sshd\[5561\]: Failed password for invalid user user from 51.158.117.227 port 49638 ssh2 ...	2019-08-28 02:06:58
171.224.177.63	attack	Unauthorized connection attempt from IP address 171.224.177.63 on Port 445(SMB)	2019-08-28 01:49:18
157.32.46.32	attackspambots	Unauthorized connection attempt from IP address 157.32.46.32 on Port 445(SMB)	2019-08-28 02:17:08
51.83.78.67	attackbots	Aug 27 15:26:43 h2177944 sshd\[7129\]: Invalid user karl from 51.83.78.67 port 58186 Aug 27 15:26:43 h2177944 sshd\[7129\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.78.67 Aug 27 15:26:45 h2177944 sshd\[7129\]: Failed password for invalid user karl from 51.83.78.67 port 58186 ssh2 Aug 27 15:30:47 h2177944 sshd\[7302\]: Invalid user relay from 51.83.78.67 port 46858 Aug 27 15:30:47 h2177944 sshd\[7302\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.78.67 ...	2019-08-28 02:27:32
116.226.249.233	attack	Unauthorized connection attempt from IP address 116.226.249.233 on Port 445(SMB)	2019-08-28 02:19:23
197.50.187.128	attackbotsspam	Unauthorized connection attempt from IP address 197.50.187.128 on Port 445(SMB)	2019-08-28 02:01:07
60.18.68.246	attackbots	Unauthorised access (Aug 27) SRC=60.18.68.246 LEN=40 TTL=49 ID=49031 TCP DPT=8080 WINDOW=60498 SYN Unauthorised access (Aug 27) SRC=60.18.68.246 LEN=40 TTL=49 ID=59492 TCP DPT=8080 WINDOW=60498 SYN	2019-08-28 02:05:42
101.51.162.220	attackbots	Unauthorized connection attempt from IP address 101.51.162.220 on Port 445(SMB)	2019-08-28 01:42:41
5.232.29.43	attackbots	Unauthorized connection attempt from IP address 5.232.29.43 on Port 445(SMB)	2019-08-28 02:14:43
186.103.175.158	attack	$f2bV_matches	2019-08-28 01:51:40
117.240.142.131	attack	Unauthorized connection attempt from IP address 117.240.142.131 on Port 445(SMB)	2019-08-28 02:24:30
131.108.244.44	attackbots	Brute force attempt	2019-08-28 02:18:47

最近上报的IP列表

168.16.222.240	69.121.82.86	95.107.45.174	70.167.79.99
177.162.8.159	54.145.16.148	86.233.239.114	42.2.34.147
80.234.50.75	200.80.207.122	72.248.74.0	79.92.18.1
110.151.211.236	44.211.38.117	177.53.40.132	204.149.86.101
37.84.151.142	183.212.166.95	208.255.100.175	37.182.51.224