城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): DigitalOcean LLC
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Data Center/Web Hosting/Transit
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackbotsspam | Oct 6 18:51:56 router sshd[24181]: Failed password for root from 134.209.148.107 port 46336 ssh2 Oct 6 18:52:49 router sshd[24183]: Failed password for root from 134.209.148.107 port 56478 ssh2 ... |
2020-10-07 02:13:06 |
| attackbotsspam | [N3.H3.VM3] Port Scanner Detected Blocked by UFW |
2020-10-06 18:08:51 |
| attackspambots | [N1.H1.VM1] Port Scanner Detected Blocked by UFW |
2020-09-30 03:43:16 |
| attackbotsspam | [N3.H3.VM3] Port Scanner Detected Blocked by UFW |
2020-09-29 19:49:18 |
| attackspambots |
|
2020-09-11 23:00:06 |
| attackspam | Port scan denied |
2020-09-11 15:04:50 |
| attack | 13978/tcp 2841/tcp 19528/tcp... [2020-07-10/09-10]190pkt,72pt.(tcp) |
2020-09-11 07:17:31 |
| attackspam | Aug 23 11:38:05 PorscheCustomer sshd[10368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107 Aug 23 11:38:07 PorscheCustomer sshd[10368]: Failed password for invalid user zn from 134.209.148.107 port 52346 ssh2 Aug 23 11:39:31 PorscheCustomer sshd[10404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107 ... |
2020-08-23 18:05:59 |
| attack | TCP port : 25791 |
2020-08-22 18:49:24 |
| attackspam | 2020-08-19T16:48:15.283554server.mjenks.net sshd[3507142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107 2020-08-19T16:48:15.276367server.mjenks.net sshd[3507142]: Invalid user szd from 134.209.148.107 port 59392 2020-08-19T16:48:17.967383server.mjenks.net sshd[3507142]: Failed password for invalid user szd from 134.209.148.107 port 59392 ssh2 2020-08-19T16:52:17.263658server.mjenks.net sshd[3507575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107 user=root 2020-08-19T16:52:19.169542server.mjenks.net sshd[3507575]: Failed password for root from 134.209.148.107 port 38798 ssh2 ... |
2020-08-20 08:42:45 |
| attackspambots | Aug 19 21:26:38 pornomens sshd\[26061\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107 user=root Aug 19 21:26:40 pornomens sshd\[26061\]: Failed password for root from 134.209.148.107 port 40294 ssh2 Aug 19 21:33:27 pornomens sshd\[26112\]: Invalid user mort from 134.209.148.107 port 48678 Aug 19 21:33:27 pornomens sshd\[26112\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107 ... |
2020-08-20 03:39:40 |
| attackspam | Aug 19 00:51:57 rotator sshd\[30371\]: Failed password for root from 134.209.148.107 port 48254 ssh2Aug 19 00:54:14 rotator sshd\[30389\]: Failed password for root from 134.209.148.107 port 55288 ssh2Aug 19 00:56:23 rotator sshd\[31160\]: Invalid user mee from 134.209.148.107Aug 19 00:56:25 rotator sshd\[31160\]: Failed password for invalid user mee from 134.209.148.107 port 34098 ssh2Aug 19 00:58:38 rotator sshd\[31169\]: Invalid user courses from 134.209.148.107Aug 19 00:58:40 rotator sshd\[31169\]: Failed password for invalid user courses from 134.209.148.107 port 41142 ssh2 ... |
2020-08-19 07:35:56 |
| attackspambots | firewall-block, port(s): 13059/tcp |
2020-08-15 02:48:55 |
| attack | SSH Brute Force |
2020-08-13 09:52:07 |
| attackbotsspam | firewall-block, port(s): 16314/tcp |
2020-08-08 16:28:09 |
| attackspambots | Port scan: Attack repeated for 24 hours |
2020-08-07 06:30:47 |
| attackspam | Port Scan ... |
2020-07-31 02:31:26 |
| attack | Jul 27 00:06:40 fhem-rasp sshd[31201]: Invalid user refat from 134.209.148.107 port 52570 ... |
2020-07-27 08:06:18 |
| attack |
|
2020-07-21 00:44:48 |
| attack | Invalid user joseph from 134.209.148.107 port 49244 |
2020-07-18 20:12:12 |
| attackspambots | Jul 13 21:02:11 mout sshd[19229]: Invalid user oem from 134.209.148.107 port 57944 Jul 13 21:02:13 mout sshd[19229]: Failed password for invalid user oem from 134.209.148.107 port 57944 ssh2 Jul 13 21:02:15 mout sshd[19229]: Disconnected from invalid user oem 134.209.148.107 port 57944 [preauth] |
2020-07-14 03:19:10 |
| attackbotsspam | Jul 11 09:59:59 PorscheCustomer sshd[8281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107 Jul 11 10:00:01 PorscheCustomer sshd[8281]: Failed password for invalid user marlo from 134.209.148.107 port 51800 ssh2 Jul 11 10:02:18 PorscheCustomer sshd[8321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107 ... |
2020-07-11 16:04:21 |
| attackbotsspam | 07/09/2020-12:11:35.797235 134.209.148.107 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-07-10 00:15:27 |
| attackbots | scans 2 times in preceeding hours on the ports (in chronological order) 19921 30183 |
2020-07-08 21:10:27 |
| attackspambots | firewall-block, port(s): 28048/tcp |
2020-07-05 08:18:20 |
| attack | TCP port : 5989 |
2020-07-01 01:30:20 |
| attack | Fail2Ban Ban Triggered |
2020-06-23 15:50:56 |
| attack | Invalid user toor from 134.209.148.107 port 48802 |
2020-06-06 18:28:54 |
| attack | web-1 [ssh] SSH Attack |
2020-06-04 02:14:46 |
| attackbotsspam | " " |
2020-06-02 01:37:48 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 134.209.148.148 | attackbots | Mar 2 15:19:57 xxxxxxx7446550 sshd[19084]: Invalid user postgres from 134.209.148.148 Mar 2 15:19:57 xxxxxxx7446550 sshd[19084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.148 Mar 2 15:19:59 xxxxxxx7446550 sshd[19084]: Failed password for invalid user postgres from 134.209.148.148 port 50092 ssh2 Mar 2 15:19:59 xxxxxxx7446550 sshd[19085]: Received disconnect from 134.209.148.148: 11: Normal Shutdown Mar 2 15:23:45 xxxxxxx7446550 sshd[19884]: Invalid user farbe-bfi1234 from 134.209.148.148 Mar 2 15:23:45 xxxxxxx7446550 sshd[19884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.148 Mar 2 15:23:47 xxxxxxx7446550 sshd[19884]: Failed password for invalid user farbe-bfi1234 from 134.209.148.148 port 47848 ssh2 Mar 2 15:23:47 xxxxxxx7446550 sshd[19885]: Received disconnect from 134.209.148.148: 11: Normal Shutdown ........ ----------------------------------------------- https://www.blocklist.de/ |
2020-03-08 05:41:12 |
| 134.209.148.109 | attack | Automatic report - XMLRPC Attack |
2020-02-25 16:37:19 |
| 134.209.148.227 | attackspam | 2019-04-11 16:04:31 1hEaJa-0003i6-SD SMTP connection from silky.msolutioncode.com \(broad.criccrowd.icu\) \[134.209.148.227\]:49068 I=\[193.107.90.29\]:25 closed by DROP in ACL 2019-04-11 16:05:37 1hEaKf-0003jp-86 SMTP connection from silky.msolutioncode.com \(other.criccrowd.icu\) \[134.209.148.227\]:49562 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-04-11 16:06:55 1hEaLv-0003kw-0s SMTP connection from silky.msolutioncode.com \(spade.criccrowd.icu\) \[134.209.148.227\]:46689 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-04-12 15:48:59 1hEwY7-0008Sw-Kh SMTP connection from silky.msolutioncode.com \(harsh.criccrowd.icu\) \[134.209.148.227\]:43193 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-04-12 15:49:25 1hEwYX-0008Tq-AM SMTP connection from silky.msolutioncode.com \(stew.criccrowd.icu\) \[134.209.148.227\]:53901 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-04-12 15:49:47 1hEwYt-0008Uk-9M SMTP connection from silky.msolutioncode.com \(garnish.criccrowd.icu\) \[13 ... |
2020-02-05 03:49:03 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.148.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7807
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.148.107. IN A
;; AUTHORITY SECTION:
. 424 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020020401 1800 900 604800 86400
;; Query time: 47 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 15:41:05 CST 2020
;; MSG SIZE rcvd: 119Host 107.148.209.134.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 107.148.209.134.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 223.17.161.175 | attackbots | Sep 23 12:01:54 sip sshd[7406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.17.161.175 Sep 23 12:01:56 sip sshd[7406]: Failed password for invalid user pi from 223.17.161.175 port 34670 ssh2 Sep 23 16:05:39 sip sshd[7722]: Failed password for root from 223.17.161.175 port 44320 ssh2 |
2020-09-23 23:18:15 |
| 14.29.210.146 | attack | Sep 23 00:32:26 ajax sshd[18531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.210.146 Sep 23 00:32:27 ajax sshd[18531]: Failed password for invalid user neeraj from 14.29.210.146 port 57926 ssh2 |
2020-09-23 23:22:52 |
| 118.70.131.201 | attackspam | Unauthorized connection attempt from IP address 118.70.131.201 on Port 445(SMB) |
2020-09-23 23:22:32 |
| 112.85.42.102 | attack | Sep 23 15:01:47 vps-51d81928 sshd[327978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.102 user=root Sep 23 15:01:49 vps-51d81928 sshd[327978]: Failed password for root from 112.85.42.102 port 26183 ssh2 Sep 23 15:01:47 vps-51d81928 sshd[327978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.102 user=root Sep 23 15:01:49 vps-51d81928 sshd[327978]: Failed password for root from 112.85.42.102 port 26183 ssh2 Sep 23 15:01:52 vps-51d81928 sshd[327978]: Failed password for root from 112.85.42.102 port 26183 ssh2 ... |
2020-09-23 23:03:55 |
| 37.59.224.39 | attack | Sep 22 02:32:28 serwer sshd\[356\]: Invalid user wt from 37.59.224.39 port 49435 Sep 22 02:32:28 serwer sshd\[356\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.224.39 Sep 22 02:32:30 serwer sshd\[356\]: Failed password for invalid user wt from 37.59.224.39 port 49435 ssh2 Sep 22 05:43:47 serwer sshd\[24165\]: Invalid user scott from 37.59.224.39 port 35058 Sep 22 05:43:47 serwer sshd\[24165\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.224.39 Sep 22 05:43:49 serwer sshd\[24165\]: Failed password for invalid user scott from 37.59.224.39 port 35058 ssh2 Sep 22 05:47:09 serwer sshd\[24590\]: Invalid user vladimir from 37.59.224.39 port 39201 Sep 22 05:47:09 serwer sshd\[24590\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.224.39 Sep 22 05:47:11 serwer sshd\[24590\]: Failed password for invalid user vladimir from 37.59.224.39 port ... |
2020-09-23 23:21:38 |
| 139.186.73.140 | attackspambots | Invalid user ftpuser from 139.186.73.140 port 46564 |
2020-09-23 23:22:12 |
| 3.91.28.244 | attackspam | [portscan] Port scan |
2020-09-23 23:25:05 |
| 178.151.65.138 | attackspam | Sep 23 09:00:19 scw-focused-cartwright sshd[20741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.151.65.138 Sep 23 09:00:21 scw-focused-cartwright sshd[20741]: Failed password for invalid user pi from 178.151.65.138 port 44202 ssh2 |
2020-09-23 22:52:19 |
| 172.113.183.83 | attackspambots | (sshd) Failed SSH login from 172.113.183.83 (US/United States/cpe-172-113-183-83.socal.res.rr.com): 5 in the last 3600 secs |
2020-09-23 22:58:29 |
| 42.113.203.204 | attackspam | Unauthorized connection attempt from IP address 42.113.203.204 on Port 445(SMB) |
2020-09-23 23:14:01 |
| 157.230.244.147 | attackspambots | firewall-block, port(s): 28359/tcp |
2020-09-23 22:56:33 |
| 51.68.123.192 | attackspambots | Sep 23 11:05:13 mail sshd\[22709\]: Invalid user oracle from 51.68.123.192 Sep 23 11:05:13 mail sshd\[22709\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.123.192 ... |
2020-09-23 23:13:38 |
| 142.93.216.97 | attackspam | SSH Brute Force |
2020-09-23 23:16:31 |
| 117.247.226.29 | attackspambots | Invalid user ftpsecure from 117.247.226.29 port 43206 |
2020-09-23 23:08:53 |
| 46.101.195.156 | attackspam | Time: Wed Sep 23 05:16:58 2020 +0000 IP: 46.101.195.156 (DE/Germany/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 23 04:59:43 3 sshd[17081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.195.156 user=root Sep 23 04:59:45 3 sshd[17081]: Failed password for root from 46.101.195.156 port 53460 ssh2 Sep 23 05:12:53 3 sshd[13075]: Invalid user ubuntu from 46.101.195.156 port 50378 Sep 23 05:12:55 3 sshd[13075]: Failed password for invalid user ubuntu from 46.101.195.156 port 50378 ssh2 Sep 23 05:16:56 3 sshd[21731]: Invalid user user1 from 46.101.195.156 port 46176 |
2020-09-23 22:57:44 |