必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attackbotsspam
Oct  6 18:51:56 router sshd[24181]: Failed password for root from 134.209.148.107 port 46336 ssh2
Oct  6 18:52:49 router sshd[24183]: Failed password for root from 134.209.148.107 port 56478 ssh2
...
2020-10-07 02:13:06
attackbotsspam
[N3.H3.VM3] Port Scanner Detected Blocked by UFW
2020-10-06 18:08:51
attackspambots
[N1.H1.VM1] Port Scanner Detected Blocked by UFW
2020-09-30 03:43:16
attackbotsspam
[N3.H3.VM3] Port Scanner Detected Blocked by UFW
2020-09-29 19:49:18
attackspambots
 TCP (SYN) 134.209.148.107:44843 -> port 24561, len 44
2020-09-11 23:00:06
attackspam
Port scan denied
2020-09-11 15:04:50
attack
13978/tcp 2841/tcp 19528/tcp...
[2020-07-10/09-10]190pkt,72pt.(tcp)
2020-09-11 07:17:31
attackspam
Aug 23 11:38:05 PorscheCustomer sshd[10368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107
Aug 23 11:38:07 PorscheCustomer sshd[10368]: Failed password for invalid user zn from 134.209.148.107 port 52346 ssh2
Aug 23 11:39:31 PorscheCustomer sshd[10404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107
...
2020-08-23 18:05:59
attack
TCP port : 25791
2020-08-22 18:49:24
attackspam
2020-08-19T16:48:15.283554server.mjenks.net sshd[3507142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107
2020-08-19T16:48:15.276367server.mjenks.net sshd[3507142]: Invalid user szd from 134.209.148.107 port 59392
2020-08-19T16:48:17.967383server.mjenks.net sshd[3507142]: Failed password for invalid user szd from 134.209.148.107 port 59392 ssh2
2020-08-19T16:52:17.263658server.mjenks.net sshd[3507575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107  user=root
2020-08-19T16:52:19.169542server.mjenks.net sshd[3507575]: Failed password for root from 134.209.148.107 port 38798 ssh2
...
2020-08-20 08:42:45
attackspambots
Aug 19 21:26:38 pornomens sshd\[26061\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107  user=root
Aug 19 21:26:40 pornomens sshd\[26061\]: Failed password for root from 134.209.148.107 port 40294 ssh2
Aug 19 21:33:27 pornomens sshd\[26112\]: Invalid user mort from 134.209.148.107 port 48678
Aug 19 21:33:27 pornomens sshd\[26112\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107
...
2020-08-20 03:39:40
attackspam
Aug 19 00:51:57 rotator sshd\[30371\]: Failed password for root from 134.209.148.107 port 48254 ssh2Aug 19 00:54:14 rotator sshd\[30389\]: Failed password for root from 134.209.148.107 port 55288 ssh2Aug 19 00:56:23 rotator sshd\[31160\]: Invalid user mee from 134.209.148.107Aug 19 00:56:25 rotator sshd\[31160\]: Failed password for invalid user mee from 134.209.148.107 port 34098 ssh2Aug 19 00:58:38 rotator sshd\[31169\]: Invalid user courses from 134.209.148.107Aug 19 00:58:40 rotator sshd\[31169\]: Failed password for invalid user courses from 134.209.148.107 port 41142 ssh2
...
2020-08-19 07:35:56
attackspambots
firewall-block, port(s): 13059/tcp
2020-08-15 02:48:55
attack
SSH Brute Force
2020-08-13 09:52:07
attackbotsspam
firewall-block, port(s): 16314/tcp
2020-08-08 16:28:09
attackspambots
Port scan: Attack repeated for 24 hours
2020-08-07 06:30:47
attackspam
Port Scan
...
2020-07-31 02:31:26
attack
Jul 27 00:06:40 fhem-rasp sshd[31201]: Invalid user refat from 134.209.148.107 port 52570
...
2020-07-27 08:06:18
attack
 TCP (SYN) 134.209.148.107:43335 -> port 4433, len 44
2020-07-21 00:44:48
attack
Invalid user joseph from 134.209.148.107 port 49244
2020-07-18 20:12:12
attackspambots
Jul 13 21:02:11 mout sshd[19229]: Invalid user oem from 134.209.148.107 port 57944
Jul 13 21:02:13 mout sshd[19229]: Failed password for invalid user oem from 134.209.148.107 port 57944 ssh2
Jul 13 21:02:15 mout sshd[19229]: Disconnected from invalid user oem 134.209.148.107 port 57944 [preauth]
2020-07-14 03:19:10
attackbotsspam
Jul 11 09:59:59 PorscheCustomer sshd[8281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107
Jul 11 10:00:01 PorscheCustomer sshd[8281]: Failed password for invalid user marlo from 134.209.148.107 port 51800 ssh2
Jul 11 10:02:18 PorscheCustomer sshd[8321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107
...
2020-07-11 16:04:21
attackbotsspam
07/09/2020-12:11:35.797235 134.209.148.107 Protocol: 6 ET SCAN NMAP -sS window 1024
2020-07-10 00:15:27
attackbots
scans 2 times in preceeding hours on the ports (in chronological order) 19921 30183
2020-07-08 21:10:27
attackspambots
firewall-block, port(s): 28048/tcp
2020-07-05 08:18:20
attack
TCP port : 5989
2020-07-01 01:30:20
attack
Fail2Ban Ban Triggered
2020-06-23 15:50:56
attack
Invalid user toor from 134.209.148.107 port 48802
2020-06-06 18:28:54
attack
web-1 [ssh] SSH Attack
2020-06-04 02:14:46
attackbotsspam
" "
2020-06-02 01:37:48
相同子网IP讨论:
IP 类型 评论内容 时间
134.209.148.148 attackbots
Mar  2 15:19:57 xxxxxxx7446550 sshd[19084]: Invalid user postgres from 134.209.148.148
Mar  2 15:19:57 xxxxxxx7446550 sshd[19084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.148 
Mar  2 15:19:59 xxxxxxx7446550 sshd[19084]: Failed password for invalid user postgres from 134.209.148.148 port 50092 ssh2
Mar  2 15:19:59 xxxxxxx7446550 sshd[19085]: Received disconnect from 134.209.148.148: 11: Normal Shutdown
Mar  2 15:23:45 xxxxxxx7446550 sshd[19884]: Invalid user farbe-bfi1234 from 134.209.148.148
Mar  2 15:23:45 xxxxxxx7446550 sshd[19884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.148 
Mar  2 15:23:47 xxxxxxx7446550 sshd[19884]: Failed password for invalid user farbe-bfi1234 from 134.209.148.148 port 47848 ssh2
Mar  2 15:23:47 xxxxxxx7446550 sshd[19885]: Received disconnect from 134.209.148.148: 11: Normal Shutdown


........
-----------------------------------------------
https://www.blocklist.de/
2020-03-08 05:41:12
134.209.148.109 attack
Automatic report - XMLRPC Attack
2020-02-25 16:37:19
134.209.148.227 attackspam
2019-04-11 16:04:31 1hEaJa-0003i6-SD SMTP connection from silky.msolutioncode.com \(broad.criccrowd.icu\) \[134.209.148.227\]:49068 I=\[193.107.90.29\]:25 closed by DROP in ACL
2019-04-11 16:05:37 1hEaKf-0003jp-86 SMTP connection from silky.msolutioncode.com \(other.criccrowd.icu\) \[134.209.148.227\]:49562 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-04-11 16:06:55 1hEaLv-0003kw-0s SMTP connection from silky.msolutioncode.com \(spade.criccrowd.icu\) \[134.209.148.227\]:46689 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-04-12 15:48:59 1hEwY7-0008Sw-Kh SMTP connection from silky.msolutioncode.com \(harsh.criccrowd.icu\) \[134.209.148.227\]:43193 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-04-12 15:49:25 1hEwYX-0008Tq-AM SMTP connection from silky.msolutioncode.com \(stew.criccrowd.icu\) \[134.209.148.227\]:53901 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-04-12 15:49:47 1hEwYt-0008Uk-9M SMTP connection from silky.msolutioncode.com \(garnish.criccrowd.icu\) \[13
...
2020-02-05 03:49:03
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.148.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7807
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.148.107.		IN	A

;; AUTHORITY SECTION:
.			424	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020401 1800 900 604800 86400

;; Query time: 47 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 15:41:05 CST 2020
;; MSG SIZE  rcvd: 119
HOST信息:
Host 107.148.209.134.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 107.148.209.134.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
60.250.67.47 attackspam
Jun  1 14:43:13 PorscheCustomer sshd[12552]: Failed password for root from 60.250.67.47 port 52632 ssh2
Jun  1 14:47:00 PorscheCustomer sshd[12651]: Failed password for root from 60.250.67.47 port 57200 ssh2
...
2020-06-01 20:54:16
203.147.80.102 attackspam
Dovecot Invalid User Login Attempt.
2020-06-01 20:24:17
34.93.121.248 attackspam
Jun  1 13:57:18 xeon sshd[15249]: Failed password for root from 34.93.121.248 port 54376 ssh2
2020-06-01 20:20:40
201.158.20.70 attackspambots
Fail2Ban Ban Triggered
2020-06-01 20:47:08
200.92.102.203 attackspambots
Jun  1 14:06:28 vmi345603 sshd[14634]: Failed password for root from 200.92.102.203 port 38596 ssh2
...
2020-06-01 20:26:28
124.239.168.74 attackspambots
Jun  1 14:07:03 xeon sshd[16067]: Failed password for root from 124.239.168.74 port 41864 ssh2
2020-06-01 20:21:17
222.186.15.62 attackbots
2020-06-01T14:17:03.005351sd-86998 sshd[15996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.62  user=root
2020-06-01T14:17:05.405814sd-86998 sshd[15996]: Failed password for root from 222.186.15.62 port 47291 ssh2
2020-06-01T14:17:07.759312sd-86998 sshd[15996]: Failed password for root from 222.186.15.62 port 47291 ssh2
2020-06-01T14:17:03.005351sd-86998 sshd[15996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.62  user=root
2020-06-01T14:17:05.405814sd-86998 sshd[15996]: Failed password for root from 222.186.15.62 port 47291 ssh2
2020-06-01T14:17:07.759312sd-86998 sshd[15996]: Failed password for root from 222.186.15.62 port 47291 ssh2
2020-06-01T14:17:03.005351sd-86998 sshd[15996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.62  user=root
2020-06-01T14:17:05.405814sd-86998 sshd[15996]: Failed password for root from 222.186
...
2020-06-01 20:24:00
81.19.249.98 attack
firewall-block, port(s): 17816/tcp
2020-06-01 20:18:30
106.12.221.86 attackspam
Jun  1 02:39:15 serwer sshd\[1066\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.221.86  user=root
Jun  1 02:39:18 serwer sshd\[1066\]: Failed password for root from 106.12.221.86 port 38568 ssh2
Jun  1 02:41:20 serwer sshd\[1373\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.221.86  user=root
Jun  1 02:41:23 serwer sshd\[1373\]: Failed password for root from 106.12.221.86 port 58886 ssh2
Jun  1 02:43:33 serwer sshd\[1571\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.221.86  user=root
Jun  1 02:43:36 serwer sshd\[1571\]: Failed password for root from 106.12.221.86 port 51004 ssh2
Jun  1 02:47:58 serwer sshd\[2077\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.221.86  user=root
Jun  1 02:48:00 serwer sshd\[2077\]: Failed password for root from 106.12.221.86 port 43298 ssh2

...
2020-06-01 20:55:17
123.20.12.209 attack
SSH fail RA
2020-06-01 20:54:38
106.12.56.41 attack
Jun  1 00:26:09 serwer sshd\[19363\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.56.41  user=root
Jun  1 00:26:11 serwer sshd\[19363\]: Failed password for root from 106.12.56.41 port 32916 ssh2
Jun  1 00:33:27 serwer sshd\[20024\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.56.41  user=root
Jun  1 00:33:29 serwer sshd\[20024\]: Failed password for root from 106.12.56.41 port 50042 ssh2
Jun  1 00:35:36 serwer sshd\[20302\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.56.41  user=root
Jun  1 00:35:38 serwer sshd\[20302\]: Failed password for root from 106.12.56.41 port 48698 ssh2
Jun  1 00:37:36 serwer sshd\[20447\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.56.41  user=root
Jun  1 00:37:38 serwer sshd\[20447\]: Failed password for root from 106.12.56.41 port 47336 ssh2

...
2020-06-01 20:32:16
94.23.38.191 attackbots
Jun  1 14:07:48 ourumov-web sshd\[15243\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.38.191  user=root
Jun  1 14:07:50 ourumov-web sshd\[15243\]: Failed password for root from 94.23.38.191 port 56856 ssh2
Jun  1 14:11:07 ourumov-web sshd\[15548\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.38.191  user=root
...
2020-06-01 20:44:08
106.12.29.220 attackspam
May 31 19:50:17 serwer sshd\[22707\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.29.220  user=root
May 31 19:50:18 serwer sshd\[22707\]: Failed password for root from 106.12.29.220 port 58768 ssh2
May 31 19:58:02 serwer sshd\[23331\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.29.220  user=root
May 31 19:58:03 serwer sshd\[23331\]: Failed password for root from 106.12.29.220 port 43020 ssh2
May 31 20:00:36 serwer sshd\[23698\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.29.220  user=root
May 31 20:00:38 serwer sshd\[23698\]: Failed password for root from 106.12.29.220 port 48232 ssh2
May 31 20:03:08 serwer sshd\[23915\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.29.220  user=root
May 31 20:03:09 serwer sshd\[23915\]: Failed password for root from 106.12.29.220 port 534
...
2020-06-01 20:41:03
2.139.220.30 attackbotsspam
Jun  1 14:02:04 vps687878 sshd\[16025\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.220.30  user=root
Jun  1 14:02:06 vps687878 sshd\[16025\]: Failed password for root from 2.139.220.30 port 56244 ssh2
Jun  1 14:05:44 vps687878 sshd\[16446\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.220.30  user=root
Jun  1 14:05:46 vps687878 sshd\[16446\]: Failed password for root from 2.139.220.30 port 60746 ssh2
Jun  1 14:09:22 vps687878 sshd\[16862\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.220.30  user=root
...
2020-06-01 20:18:51
54.36.241.186 attackbots
$f2bV_matches
2020-06-01 20:26:07

最近上报的IP列表

150.239.30.166 213.220.25.72 163.142.135.30 185.162.131.27
82.108.176.227 245.106.215.180 243.135.105.153 21.71.147.229
69.122.9.70 206.109.150.214 37.32.115.14 2.233.119.49
218.103.128.177 202.28.217.11 194.75.150.227 187.102.57.21
185.172.35.84 185.146.3.165 177.126.141.171 175.180.167.63