134.209.147.73

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Invalid user taeyoung from 134.209.147.73 port 52688	2020-03-20 04:28:25
attackbots	Mar 18 08:24:40 silence02 sshd[1299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.147.73 Mar 18 08:24:42 silence02 sshd[1299]: Failed password for invalid user dave from 134.209.147.73 port 49842 ssh2 Mar 18 08:30:02 silence02 sshd[1545]: Failed password for root from 134.209.147.73 port 60996 ssh2	2020-03-18 19:41:53

类型

评论内容

时间

attack

Invalid user taeyoung from 134.209.147.73 port 52688

2020-03-20 04:28:25

attackbots

Mar 18 08:24:40 silence02 sshd[1299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.147.73
Mar 18 08:24:42 silence02 sshd[1299]: Failed password for invalid user dave from 134.209.147.73 port 49842 ssh2
Mar 18 08:30:02 silence02 sshd[1545]: Failed password for root from 134.209.147.73 port 60996 ssh2

2020-03-18 19:41:53

相同子网IP讨论:

IP	类型	评论内容	时间
134.209.147.198	attackbotsspam	hit -> srv3:22	2020-05-01 15:41:59
134.209.147.198	attackbots	Apr 13 10:57:22 web8 sshd\[9107\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.147.198 user=root Apr 13 10:57:24 web8 sshd\[9107\]: Failed password for root from 134.209.147.198 port 50682 ssh2 Apr 13 11:01:58 web8 sshd\[11601\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.147.198 user=root Apr 13 11:02:00 web8 sshd\[11601\]: Failed password for root from 134.209.147.198 port 59032 ssh2 Apr 13 11:06:28 web8 sshd\[13988\]: Invalid user vrich from 134.209.147.198	2020-04-13 20:55:49
134.209.147.198	attackbots	Apr 10 20:27:51 dev0-dcde-rnet sshd[27889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.147.198 Apr 10 20:27:53 dev0-dcde-rnet sshd[27889]: Failed password for invalid user admin from 134.209.147.198 port 41102 ssh2 Apr 10 20:40:48 dev0-dcde-rnet sshd[28017]: Failed password for root from 134.209.147.198 port 35520 ssh2	2020-04-11 04:34:39
134.209.147.198	attack	Apr 10 06:58:28 pve sshd[10277]: Failed password for root from 134.209.147.198 port 52986 ssh2 Apr 10 07:03:10 pve sshd[11037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.147.198 Apr 10 07:03:12 pve sshd[11037]: Failed password for invalid user postgres from 134.209.147.198 port 53242 ssh2	2020-04-10 15:05:53
134.209.147.198	attack	k+ssh-bruteforce	2020-04-08 01:51:41
134.209.147.198	attack	Apr 6 15:44:34 eventyay sshd[16424]: Failed password for root from 134.209.147.198 port 40898 ssh2 Apr 6 15:49:21 eventyay sshd[16604]: Failed password for root from 134.209.147.198 port 57956 ssh2 ...	2020-04-06 21:57:05
134.209.147.198	attack	Mar 28 07:15:43 mail sshd[8511]: Invalid user wqk from 134.209.147.198 Mar 28 07:15:43 mail sshd[8511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.147.198 Mar 28 07:15:43 mail sshd[8511]: Invalid user wqk from 134.209.147.198 Mar 28 07:15:44 mail sshd[8511]: Failed password for invalid user wqk from 134.209.147.198 port 46536 ssh2 Mar 28 07:21:30 mail sshd[10072]: Invalid user tiffie from 134.209.147.198 ...	2020-03-28 16:25:53
134.209.147.198	attackbotsspam	Mar 23 06:18:46 localhost sshd\[25711\]: Invalid user ad from 134.209.147.198 port 46134 Mar 23 06:18:46 localhost sshd\[25711\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.147.198 Mar 23 06:18:48 localhost sshd\[25711\]: Failed password for invalid user ad from 134.209.147.198 port 46134 ssh2	2020-03-23 13:20:48
134.209.147.198	attackbotsspam	Mar 20 22:59:37 lock-38 sshd[95916]: Invalid user walter from 134.209.147.198 port 38260 Mar 20 22:59:37 lock-38 sshd[95916]: Failed password for invalid user walter from 134.209.147.198 port 38260 ssh2 Mar 20 23:08:41 lock-38 sshd[96014]: Invalid user sanya from 134.209.147.198 port 51872 Mar 20 23:08:41 lock-38 sshd[96014]: Invalid user sanya from 134.209.147.198 port 51872 Mar 20 23:08:41 lock-38 sshd[96014]: Failed password for invalid user sanya from 134.209.147.198 port 51872 ssh2 ...	2020-03-21 07:29:26
134.209.147.198	attack	(sshd) Failed SSH login from 134.209.147.198 (IN/India/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 13 16:16:54 ubnt-55d23 sshd[16874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.147.198 user=root Mar 13 16:16:55 ubnt-55d23 sshd[16874]: Failed password for root from 134.209.147.198 port 53186 ssh2	2020-03-13 23:24:36
134.209.147.198	attackspambots	Feb 28 00:15:37 plusreed sshd[2282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.147.198 user=root Feb 28 00:15:38 plusreed sshd[2282]: Failed password for root from 134.209.147.198 port 40510 ssh2 ...	2020-02-28 13:29:01
134.209.147.198	attack	2020-02-16T23:47:38.4242681495-001 sshd[36184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.147.198 2020-02-16T23:47:38.4157031495-001 sshd[36184]: Invalid user liwei from 134.209.147.198 port 43034 2020-02-16T23:47:40.7405751495-001 sshd[36184]: Failed password for invalid user liwei from 134.209.147.198 port 43034 ssh2 2020-02-17T00:48:58.3146281495-001 sshd[39588]: Invalid user taniac from 134.209.147.198 port 51234 2020-02-17T00:48:58.3183821495-001 sshd[39588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.147.198 2020-02-17T00:48:58.3146281495-001 sshd[39588]: Invalid user taniac from 134.209.147.198 port 51234 2020-02-17T00:49:00.8301901495-001 sshd[39588]: Failed password for invalid user taniac from 134.209.147.198 port 51234 ssh2 2020-02-17T00:50:34.0486661495-001 sshd[39659]: Invalid user bind from 134.209.147.198 port 50642 2020-02-17T00:50:34.0572331495-001 sshd[39659]: pa ...	2020-02-17 16:51:09
134.209.147.69	attack	RDP Bruteforce	2020-01-29 17:33:24
134.209.147.198	attackbotsspam	Jan 10 11:00:19 firewall sshd[12054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.147.198 user=root Jan 10 11:00:21 firewall sshd[12054]: Failed password for root from 134.209.147.198 port 40584 ssh2 Jan 10 11:02:53 firewall sshd[12150]: Invalid user zabbix from 134.209.147.198 ...	2020-01-11 01:25:17
134.209.147.198	attack	Unauthorized connection attempt detected from IP address 134.209.147.198 to port 2220 [J]	2020-01-07 13:05:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.147.73
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11115
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.147.73.			IN	A

;; AUTHORITY SECTION:
.			324	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031800 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 18 19:41:45 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 73.147.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 73.147.209.134.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
120.25.201.41	attack	Unauthorized connection attempt detected from IP address 120.25.201.41 to port 1433	2020-01-01 04:59:40
31.148.120.236	attackspambots	Unauthorized connection attempt detected from IP address 31.148.120.236 to port 80	2020-01-01 04:50:03
223.71.167.163	attack	Unauthorized connection attempt detected from IP address 223.71.167.163 to port 8005	2020-01-01 04:51:23
111.42.66.142	attackbots	Unauthorized connection attempt detected from IP address 111.42.66.142 to port 81	2020-01-01 04:41:33
1.52.63.193	attackspambots	Unauthorized connection attempt detected from IP address 1.52.63.193 to port 139	2020-01-01 05:05:22
218.92.0.201	attackbots	Unauthorized connection attempt detected from IP address 218.92.0.201 to port 22	2020-01-01 04:53:22
49.145.197.19	attackspambots	Unauthorized connection attempt detected from IP address 49.145.197.19 to port 445	2020-01-01 04:47:43
106.75.84.197	attack	Unauthorized connection attempt detected from IP address 106.75.84.197 to port 5007	2020-01-01 04:42:42
60.179.77.24	attackspam	Unauthorised access (Dec 31) SRC=60.179.77.24 LEN=44 TTL=52 ID=24967 TCP DPT=8080 WINDOW=13197 SYN	2020-01-01 05:10:43
5.8.18.173	attackspambots	OS-WINDOWS Microsoft Windows Terminal server RDP over non-standard port attempt to Port 80	2020-01-01 04:50:54
106.75.2.200	attack	Unauthorized connection attempt detected from IP address 106.75.2.200 to port 119	2020-01-01 04:43:51
179.153.41.167	attack	Fail2Ban Ban Triggered	2020-01-01 04:56:22
183.80.176.155	attack	Unauthorized connection attempt detected from IP address 183.80.176.155 to port 23	2020-01-01 04:55:06
60.4.205.49	attackbotsspam	Unauthorized connection attempt detected from IP address 60.4.205.49 to port 23	2020-01-01 04:46:24
83.146.92.194	attackspam	Unauthorized connection attempt detected from IP address 83.146.92.194 to port 445	2020-01-01 05:03:10

最近上报的IP列表

182.115.131.101	110.94.203.66	10.70.72.0	116.97.82.165
222.84.254.207	66.249.76.33	209.132.252.16	118.163.49.39
113.175.221.52	200.20.231.1	114.67.72.164	51.159.30.16
49.234.163.124	62.196.125.250	116.106.217.75	203.192.210.70
77.40.100.66	188.121.0.52	86.57.182.147	45.139.186.58