134.119.142.218

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.119.142.218
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35996
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;134.119.142.218.		IN	A

;; AUTHORITY SECTION:
.			369	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 136 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 05:48:13 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

Host 218.142.119.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 218.142.119.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
69.94.131.147	attackbots	Mar 5 19:38:23 web01 postfix/smtpd[21982]: connect from animated.avyatm.com[69.94.131.147] Mar 5 19:38:23 web01 postfix/smtpd[23371]: connect from animated.avyatm.com[69.94.131.147] Mar 5 19:38:24 web01 policyd-spf[23374]: None; identhostnamey=helo; client-ip=69.94.131.147; helo=animated.ccdeexam.com; envelope-from=x@x Mar 5 19:38:24 web01 policyd-spf[23038]: None; identhostnamey=helo; client-ip=69.94.131.147; helo=animated.ccdeexam.com; envelope-from=x@x Mar 5 19:38:24 web01 policyd-spf[23038]: Pass; identhostnamey=mailfrom; client-ip=69.94.131.147; helo=animated.ccdeexam.com; envelope-from=x@x Mar 5 19:38:24 web01 policyd-spf[23374]: Pass; identhostnamey=mailfrom; client-ip=69.94.131.147; helo=animated.ccdeexam.com; envelope-from=x@x Mar x@x Mar x@x Mar 5 19:38:24 web01 postfix/smtpd[21982]: disconnect from animated.avyatm.com[69.94.131.147] Mar 5 19:38:24 web01 postfix/smtpd[23371]: disconnect from animated.avyatm.com[69.94.131.147] Mar 5 19:44:50 web01 post........ -------------------------------	2020-03-06 18:46:08
206.189.132.8	attackspam	Mar 6 12:43:27 server sshd\[13125\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.132.8 user=saslauth Mar 6 12:43:29 server sshd\[13125\]: Failed password for saslauth from 206.189.132.8 port 47406 ssh2 Mar 6 12:51:12 server sshd\[14659\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.132.8 user=root Mar 6 12:51:14 server sshd\[14659\]: Failed password for root from 206.189.132.8 port 55596 ssh2 Mar 6 12:54:46 server sshd\[14971\]: Invalid user kafka from 206.189.132.8 Mar 6 12:54:46 server sshd\[14971\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.132.8 ...	2020-03-06 18:19:43
141.8.183.63	attack	[Fri Mar 06 14:23:56.304877 2020] [:error] [pid 16916:tid 140037601617664] [client 141.8.183.63:44237] [client 141.8.183.63] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XmH6jJNz2TgPD0DjwKXs9QAAAUs"] ...	2020-03-06 18:31:05
178.128.13.87	attackspam	2020-03-06T10:18:15.204700shield sshd\[26559\]: Invalid user kafka from 178.128.13.87 port 34550 2020-03-06T10:18:15.210406shield sshd\[26559\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.13.87 2020-03-06T10:18:17.338717shield sshd\[26559\]: Failed password for invalid user kafka from 178.128.13.87 port 34550 ssh2 2020-03-06T10:20:44.717097shield sshd\[26996\]: Invalid user test2 from 178.128.13.87 port 46006 2020-03-06T10:20:44.721575shield sshd\[26996\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.13.87	2020-03-06 18:24:37
195.154.87.159	attack	xmlrpc attack	2020-03-06 18:27:12
80.211.177.143	attack	Mar 6 08:28:09 amit sshd\[23635\]: Invalid user justin from 80.211.177.143 Mar 6 08:28:09 amit sshd\[23635\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.177.143 Mar 6 08:28:12 amit sshd\[23635\]: Failed password for invalid user justin from 80.211.177.143 port 37582 ssh2 ...	2020-03-06 18:30:43
178.210.157.148	attack	unauthorized connection attempt	2020-03-06 18:17:46
222.186.169.192	attackbots	Mar 6 05:47:01 NPSTNNYC01T sshd[1791]: Failed password for root from 222.186.169.192 port 38648 ssh2 Mar 6 05:47:14 NPSTNNYC01T sshd[1791]: error: maximum authentication attempts exceeded for root from 222.186.169.192 port 38648 ssh2 [preauth] Mar 6 05:47:20 NPSTNNYC01T sshd[1822]: Failed password for root from 222.186.169.192 port 38026 ssh2 ...	2020-03-06 18:53:50
118.170.185.193	attackbots	1583470285 - 03/06/2020 05:51:25 Host: 118.170.185.193/118.170.185.193 Port: 445 TCP Blocked	2020-03-06 18:30:19
45.146.202.179	attackbots	Mar 6 05:41:04 mail.srvfarm.net postfix/smtpd[1922939]: NOQUEUE: reject: RCPT from unknown[45.146.202.179]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 05:41:04 mail.srvfarm.net postfix/smtpd[1923012]: NOQUEUE: reject: RCPT from unknown[45.146.202.179]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 05:41:04 mail.srvfarm.net postfix/smtpd[1923660]: NOQUEUE: reject: RCPT from unknown[45.146.202.179]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 05:41:15 mail.srvfarm.net postfix/smtpd[1924638]: NOQUEUE: reject: RCPT from unknown[45.1	2020-03-06 18:48:06
45.82.34.191	attackspambots	Mar 6 05:29:23 mail.srvfarm.net postfix/smtpd[1923012]: NOQUEUE: reject: RCPT from unknown[45.82.34.191]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 05:30:30 mail.srvfarm.net postfix/smtpd[1924591]: NOQUEUE: reject: RCPT from unknown[45.82.34.191]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 05:31:17 mail.srvfarm.net postfix/smtpd[1924585]: NOQUEUE: reject: RCPT from unknown[45.82.34.191]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 05:33:14 mail.srvfarm.net postfix/smtpd[1924	2020-03-06 18:50:39
69.94.134.193	attackspam	Email Subject: 'Tragödien durch Lichteffekten – Schütze deine Augen am Lenkrad auf neue Weise'	2020-03-06 18:45:40
134.73.51.136	attack	Mar 6 06:46:53 mail.srvfarm.net postfix/smtpd[1950405]: NOQUEUE: reject: RCPT from unknown[134.73.51.136]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 06:51:09 mail.srvfarm.net postfix/smtpd[1943893]: NOQUEUE: reject: RCPT from unknown[134.73.51.136]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 06:51:09 mail.srvfarm.net postfix/smtpd[1948399]: NOQUEUE: reject: RCPT from unknown[134.73.51.136]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 06:54:23 mail.srvfarm.net postfi	2020-03-06 18:35:56
112.85.42.189	attackbotsspam	DATE:2020-03-06 10:51:50, IP:112.85.42.189, PORT:ssh SSH brute force auth on honeypot server (epe-honey1-hq)	2020-03-06 18:21:43
148.72.23.181	attackbotsspam	WordPress login Brute force / Web App Attack on client site.	2020-03-06 18:23:22

最近上报的IP列表

134.119.136.112	134.119.141.154	134.119.142.240	134.119.176.103
134.119.176.19	134.119.162.242	134.119.17.126	134.119.174.160
118.172.95.232	134.119.176.24	134.119.176.20	134.119.176.21
134.119.176.29	134.119.176.25	134.119.178.201	134.119.176.67
134.119.178.246	134.119.178.42	118.172.95.237	134.119.179.154