必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
134.209.148.107 attackbotsspam
Oct  6 18:51:56 router sshd[24181]: Failed password for root from 134.209.148.107 port 46336 ssh2
Oct  6 18:52:49 router sshd[24183]: Failed password for root from 134.209.148.107 port 56478 ssh2
...
2020-10-07 02:13:06
134.209.148.107 attackbotsspam
[N3.H3.VM3] Port Scanner Detected Blocked by UFW
2020-10-06 18:08:51
134.209.148.107 attackspambots
[N1.H1.VM1] Port Scanner Detected Blocked by UFW
2020-09-30 03:43:16
134.209.148.107 attackbotsspam
[N3.H3.VM3] Port Scanner Detected Blocked by UFW
2020-09-29 19:49:18
134.209.148.107 attackspambots
 TCP (SYN) 134.209.148.107:44843 -> port 24561, len 44
2020-09-11 23:00:06
134.209.148.107 attackspam
Port scan denied
2020-09-11 15:04:50
134.209.148.107 attack
13978/tcp 2841/tcp 19528/tcp...
[2020-07-10/09-10]190pkt,72pt.(tcp)
2020-09-11 07:17:31
134.209.148.107 attackspam
Aug 23 11:38:05 PorscheCustomer sshd[10368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107
Aug 23 11:38:07 PorscheCustomer sshd[10368]: Failed password for invalid user zn from 134.209.148.107 port 52346 ssh2
Aug 23 11:39:31 PorscheCustomer sshd[10404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107
...
2020-08-23 18:05:59
134.209.148.107 attack
TCP port : 25791
2020-08-22 18:49:24
134.209.148.107 attackspam
2020-08-19T16:48:15.283554server.mjenks.net sshd[3507142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107
2020-08-19T16:48:15.276367server.mjenks.net sshd[3507142]: Invalid user szd from 134.209.148.107 port 59392
2020-08-19T16:48:17.967383server.mjenks.net sshd[3507142]: Failed password for invalid user szd from 134.209.148.107 port 59392 ssh2
2020-08-19T16:52:17.263658server.mjenks.net sshd[3507575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107  user=root
2020-08-19T16:52:19.169542server.mjenks.net sshd[3507575]: Failed password for root from 134.209.148.107 port 38798 ssh2
...
2020-08-20 08:42:45
134.209.148.107 attackspambots
Aug 19 21:26:38 pornomens sshd\[26061\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107  user=root
Aug 19 21:26:40 pornomens sshd\[26061\]: Failed password for root from 134.209.148.107 port 40294 ssh2
Aug 19 21:33:27 pornomens sshd\[26112\]: Invalid user mort from 134.209.148.107 port 48678
Aug 19 21:33:27 pornomens sshd\[26112\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107
...
2020-08-20 03:39:40
134.209.148.107 attackspam
Aug 19 00:51:57 rotator sshd\[30371\]: Failed password for root from 134.209.148.107 port 48254 ssh2Aug 19 00:54:14 rotator sshd\[30389\]: Failed password for root from 134.209.148.107 port 55288 ssh2Aug 19 00:56:23 rotator sshd\[31160\]: Invalid user mee from 134.209.148.107Aug 19 00:56:25 rotator sshd\[31160\]: Failed password for invalid user mee from 134.209.148.107 port 34098 ssh2Aug 19 00:58:38 rotator sshd\[31169\]: Invalid user courses from 134.209.148.107Aug 19 00:58:40 rotator sshd\[31169\]: Failed password for invalid user courses from 134.209.148.107 port 41142 ssh2
...
2020-08-19 07:35:56
134.209.148.107 attackspambots
firewall-block, port(s): 13059/tcp
2020-08-15 02:48:55
134.209.148.107 attack
SSH Brute Force
2020-08-13 09:52:07
134.209.148.107 attackbotsspam
firewall-block, port(s): 16314/tcp
2020-08-08 16:28:09
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.148.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44171
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;134.209.148.103.		IN	A

;; AUTHORITY SECTION:
.			132	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 05:55:17 CST 2022
;; MSG SIZE  rcvd: 108
HOST信息:
Host 103.148.209.134.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 103.148.209.134.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
192.3.15.162 attack
Aug 31 19:20:35 ns sshd[10531]: Connection from 192.3.15.162 port 59640 on 134.119.39.98 port 22
Aug 31 19:20:35 ns sshd[10531]: Did not receive identification string from 192.3.15.162 port 59640
Aug 31 19:20:40 ns sshd[11599]: Connection from 192.3.15.162 port 34989 on 134.119.39.98 port 22
Aug 31 19:20:40 ns sshd[11599]: Invalid user ansible from 192.3.15.162 port 34989
Aug 31 19:20:40 ns sshd[11599]: Failed password for invalid user ansible from 192.3.15.162 port 34989 ssh2
Aug 31 19:20:41 ns sshd[11599]: Received disconnect from 192.3.15.162 port 34989:11: Normal Shutdown, Thank you for playing [preauth]
Aug 31 19:20:41 ns sshd[11599]: Disconnected from 192.3.15.162 port 34989 [preauth]
Aug 31 19:20:46 ns sshd[13982]: Connection from 192.3.15.162 port 36918 on 134.119.39.98 port 22
Aug 31 19:20:47 ns sshd[13982]: User r.r from 192.3.15.162 not allowed because not listed in AllowUsers
Aug 31 19:20:47 ns sshd[13982]: Failed password for invalid user r.r from 192.3.15.........
-------------------------------
2020-09-07 07:49:54
77.240.156.234 attack
Sep  1 06:44:40 georgia postfix/smtpd[40206]: connect from unknown[77.240.156.234]
Sep  1 06:44:40 georgia postfix/smtpd[40206]: lost connection after CONNECT from unknown[77.240.156.234]
Sep  1 06:44:40 georgia postfix/smtpd[40206]: disconnect from unknown[77.240.156.234] commands=0/0
Sep  1 06:44:51 georgia postfix/smtpd[40204]: connect from unknown[77.240.156.234]
Sep  1 06:44:51 georgia postfix/smtpd[40204]: lost connection after CONNECT from unknown[77.240.156.234]
Sep  1 06:44:51 georgia postfix/smtpd[40204]: disconnect from unknown[77.240.156.234] commands=0/0
Sep  1 06:45:01 georgia postfix/smtpd[45769]: connect from unknown[77.240.156.234]
Sep  1 06:45:01 georgia postfix/smtpd[45769]: lost connection after CONNECT from unknown[77.240.156.234]
Sep  1 06:45:01 georgia postfix/smtpd[45769]: disconnect from unknown[77.240.156.234] commands=0/0
Sep  1 06:45:13 georgia postfix/smtpd[40204]: connect from unknown[77.240.156.234]
Sep  1 06:45:13 georgia postfix/smtpd[40........
-------------------------------
2020-09-07 07:36:33
94.102.49.109 attackbots
Sep  6 16:49:40   TCP Attack: SRC=94.102.49.109 DST=[Masked] LEN=40 TOS=0x08 PREC=0x20 TTL=246  PROTO=TCP SPT=54628 DPT=43917 WINDOW=1024 RES=0x00 SYN URGP=0
2020-09-07 07:50:40
81.68.118.120 attack
invalid user postgres from 81.68.118.120 port 58128 ssh2
2020-09-07 07:25:23
119.29.53.107 attackbots
SSH login attempts.
2020-09-07 07:40:27
218.161.87.155 attack
Unwanted checking 80 or 443 port
...
2020-09-07 07:51:44
35.229.141.62 attackbotsspam
2020-09-06T20:37:32.079300vps-d63064a2 sshd[16380]: Invalid user nx from 35.229.141.62 port 60180
2020-09-06T20:37:33.820423vps-d63064a2 sshd[16380]: Failed password for invalid user nx from 35.229.141.62 port 60180 ssh2
2020-09-06T20:44:38.318776vps-d63064a2 sshd[16452]: Invalid user server from 35.229.141.62 port 34785
2020-09-06T20:44:38.330464vps-d63064a2 sshd[16452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.229.141.62
2020-09-06T20:44:38.318776vps-d63064a2 sshd[16452]: Invalid user server from 35.229.141.62 port 34785
2020-09-06T20:44:40.878494vps-d63064a2 sshd[16452]: Failed password for invalid user server from 35.229.141.62 port 34785 ssh2
...
2020-09-07 07:55:59
109.227.63.3 attack
Sep  7 01:19:31 cp sshd[18915]: Failed password for root from 109.227.63.3 port 48048 ssh2
Sep  7 01:23:30 cp sshd[21090]: Failed password for root from 109.227.63.3 port 50879 ssh2
Sep  7 01:27:20 cp sshd[23228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.227.63.3
2020-09-07 07:35:48
221.127.29.183 attackbots
Honeypot attack, port: 5555, PTR: PTR record not found
2020-09-07 07:49:38
106.75.165.127 attack
firewall-block, port(s): 853/tcp
2020-09-07 07:50:23
141.98.81.141 attack
Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-06T23:09:39Z
2020-09-07 07:20:45
60.2.10.190 attackspambots
2020-09-07T01:33:20.737403snf-827550 sshd[15986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.2.10.190  user=root
2020-09-07T01:33:22.644199snf-827550 sshd[15986]: Failed password for root from 60.2.10.190 port 52350 ssh2
2020-09-07T01:36:21.672880snf-827550 sshd[15994]: Invalid user kawarada from 60.2.10.190 port 37352
...
2020-09-07 07:47:42
95.111.254.1 attackspam
Flask-IPban - exploit URL requested:/wp-login.php
2020-09-07 07:45:31
207.46.13.56 attackbots
SQL Injection
2020-09-07 07:39:35
103.75.209.51 attackspam
Honeypot attack, port: 445, PTR: ip-103-75-209-51.moratelindo.net.id.
2020-09-07 07:23:21

最近上报的IP列表

134.209.146.35 134.209.148.117 134.209.148.125 134.209.146.4
134.209.148.126 134.209.148.132 134.209.148.145 134.209.148.170
134.209.148.165 118.173.116.108 134.209.148.18 134.209.148.52
134.209.149.232 134.209.149.197 134.209.15.101 134.209.15.143
134.209.15.162 134.209.150.15 134.209.150.142 134.209.150.203