134.209.128.61

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.128.61
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13088
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;134.209.128.61.			IN	A

;; AUTHORITY SECTION:
.			186	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 05:55:05 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 61.128.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 61.128.209.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
165.22.215.192	attack	Sep 21 11:18:34 host1 sshd[381940]: Failed password for root from 165.22.215.192 port 50316 ssh2 Sep 21 11:22:38 host1 sshd[382248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.215.192 user=root Sep 21 11:22:40 host1 sshd[382248]: Failed password for root from 165.22.215.192 port 50040 ssh2 Sep 21 11:22:38 host1 sshd[382248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.215.192 user=root Sep 21 11:22:40 host1 sshd[382248]: Failed password for root from 165.22.215.192 port 50040 ssh2 ...	2020-09-21 17:30:32
43.227.22.139	attackspam	Unauthorised access (Sep 20) SRC=43.227.22.139 LEN=52 TTL=114 ID=49041 DF TCP DPT=445 WINDOW=8192 SYN	2020-09-21 17:14:17
124.180.32.34	attackspambots	(sshd) Failed SSH login from 124.180.32.34 (AU/Australia/cpe-124-180-32-34.ab01.act.asp.telstra.net): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 20 12:58:01 internal2 sshd[3092]: Invalid user ubnt from 124.180.32.34 port 46615 Sep 20 12:59:15 internal2 sshd[4103]: Invalid user admin from 124.180.32.34 port 47148 Sep 20 12:59:18 internal2 sshd[4123]: Invalid user admin from 124.180.32.34 port 47169	2020-09-21 17:39:37
61.7.240.185	attackspambots	"Unauthorized connection attempt on SSHD detected"	2020-09-21 17:20:57
111.229.176.206	attackspam	Sep 21 11:05:02 ourumov-web sshd\[8646\]: Invalid user deploy from 111.229.176.206 port 35980 Sep 21 11:05:02 ourumov-web sshd\[8646\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.176.206 Sep 21 11:05:05 ourumov-web sshd\[8646\]: Failed password for invalid user deploy from 111.229.176.206 port 35980 ssh2 ...	2020-09-21 17:40:17
46.101.165.62	attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 25 - port: 17233 proto: tcp cat: Misc Attackbytes: 60	2020-09-21 17:40:36
114.119.166.88	attack	[Sun Sep 20 23:59:58.592498 2020] [:error] [pid 23424:tid 140117914142464] [client 114.119.166.88:55004] [client 114.119.166.88] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/coreruleset-3.3.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "756"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.3.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/agroklimatologi/kalender-tanam/3394-kalender-tanam-katam-terpadu-papua/kalender-tanam-katam-terpadu-provinsi-papua/kalender-tanam-katam-terpadu-kabupaten-boven-digoel-provinsi-papua"] [unique_id "X2eKjohylJRSFCTJL2z-LwAAAGM"] ...	2020-09-21 17:12:46
156.54.164.97	attackspam	(sshd) Failed SSH login from 156.54.164.97 (IT/Italy/-): 5 in the last 3600 secs	2020-09-21 17:24:47
123.19.163.188	attack	1600621160 - 09/20/2020 18:59:20 Host: 123.19.163.188/123.19.163.188 Port: 445 TCP Blocked	2020-09-21 17:45:57
106.12.84.83	attackspam	(sshd) Failed SSH login from 106.12.84.83 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 21 11:31:42 ns1 sshd[1914366]: Invalid user ubuntu from 106.12.84.83 port 50900 Sep 21 11:31:43 ns1 sshd[1914366]: Failed password for invalid user ubuntu from 106.12.84.83 port 50900 ssh2 Sep 21 11:35:42 ns1 sshd[1915601]: Invalid user ftpuser from 106.12.84.83 port 35068 Sep 21 11:35:44 ns1 sshd[1915601]: Failed password for invalid user ftpuser from 106.12.84.83 port 35068 ssh2 Sep 21 11:38:27 ns1 sshd[1916462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.84.83 user=root	2020-09-21 17:42:36
35.178.204.187	attackbots	35.178.204.187 - - [21/Sep/2020:08:12:19 +0100] "POST /wp-login.php HTTP/1.1" 200 1908 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.178.204.187 - - [21/Sep/2020:08:12:19 +0100] "POST /wp-login.php HTTP/1.1" 200 1880 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.178.204.187 - - [21/Sep/2020:08:12:19 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-21 17:15:59
218.92.0.208	attackbotsspam	Brute-force attempt banned	2020-09-21 17:48:23
68.183.96.194	attackbots	2020-09-20 UTC: (31x) - admin,deploy,ftp,ftpadmin,guest,hadoop,jira,prueba,root(17x),test,test123,ubuntu,user,www(2x)	2020-09-21 17:48:01
89.248.160.139	attackspam	TCP (SYN) 89.248.160.139:57871 -> port 18089, len 44	2020-09-21 17:51:56
191.232.195.8	attackbots	Sep 21 12:22:11 journals sshd\[78593\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.232.195.8 user=root Sep 21 12:22:13 journals sshd\[78593\]: Failed password for root from 191.232.195.8 port 51376 ssh2 Sep 21 12:27:10 journals sshd\[79164\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.232.195.8 user=root Sep 21 12:27:12 journals sshd\[79164\]: Failed password for root from 191.232.195.8 port 34662 ssh2 Sep 21 12:32:04 journals sshd\[79940\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.232.195.8 user=root ...	2020-09-21 17:46:41

最近上报的IP列表

118.173.115.68	134.209.130.135	134.209.129.67	134.209.130.144
134.209.13.16	134.209.13.153	134.209.130.190	118.173.115.77
134.209.134.38	134.209.131.70	134.209.13.25	134.209.130.112
134.209.13.215	134.209.136.122	134.209.136.219	118.173.115.80
134.209.136.221	134.209.136.200	134.209.136.233	134.209.136.54