134.209.152.42

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
134.209.152.201	attackbots	Jun 11 01:07:14 plusreed sshd[27997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.152.201 user=root Jun 11 01:07:16 plusreed sshd[27997]: Failed password for root from 134.209.152.201 port 38480 ssh2 Jun 11 01:10:52 plusreed sshd[28934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.152.201 user=root Jun 11 01:10:55 plusreed sshd[28934]: Failed password for root from 134.209.152.201 port 44996 ssh2 Jun 11 01:14:27 plusreed sshd[29743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.152.201 user=root Jun 11 01:14:29 plusreed sshd[29743]: Failed password for root from 134.209.152.201 port 51408 ssh2 ...	2020-06-11 14:37:46
134.209.152.120	attackbotsspam	xmlrpc attack	2020-06-02 03:59:01
134.209.152.114	attackbotsspam	May 2 15:50:23 h1946882 sshd[19541]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D134.= 209.152.114=20 May 2 15:50:25 h1946882 sshd[19541]: Failed password for invalid user = praktikant from 134.209.152.114 port 58696 ssh2 May 2 15:50:25 h1946882 sshd[19541]: Received disconnect from 134.209.= 152.114: 11: Bye Bye [preauth] May 2 15:55:02 h1946882 sshd[19564]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D134.= 209.152.114=20 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=134.209.152.114	2020-05-03 04:27:17
134.209.152.176	attack	Mar 11 20:13:12 meumeu sshd[1893]: Failed password for root from 134.209.152.176 port 56868 ssh2 Mar 11 20:15:09 meumeu sshd[2215]: Failed password for root from 134.209.152.176 port 47450 ssh2 ...	2020-03-12 04:03:35
134.209.152.90	attack	[munged]::443 134.209.152.90 - - [10/Mar/2020:10:23:56 +0100] "POST /[munged]: HTTP/1.1" 200 6625 "-" "-" [munged]::443 134.209.152.90 - - [10/Mar/2020:10:24:07 +0100] "POST /[munged]: HTTP/1.1" 200 6490 "-" "-" [munged]::443 134.209.152.90 - - [10/Mar/2020:10:24:23 +0100] "POST /[munged]: HTTP/1.1" 200 6487 "-" "-" [munged]::443 134.209.152.90 - - [10/Mar/2020:10:24:40 +0100] "POST /[munged]: HTTP/1.1" 200 6490 "-" "-" [munged]::443 134.209.152.90 - - [10/Mar/2020:10:24:55 +0100] "POST /[munged]: HTTP/1.1" 200 6489 "-" "-" [munged]::443 134.209.152.90 - - [10/Mar/2020:10:25:11 +0100] "POST /[munged]: HTTP/1.1" 200 6490 "-" "-" [munged]::443 134.209.152.90 - - [10/Mar/2020:10:25:28 +0100] "POST /[munged]: HTTP/1.1" 200 6488 "-" "-" [munged]::443 134.209.152.90 - - [10/Mar/2020:10:25:43 +0100] "POST /[munged]: HTTP/1.1" 200 6493 "-" "-" [munged]::443 134.209.152.90 - - [10/Mar/2020:10:25:59 +0100] "POST /[munged]: HTTP/1.1" 200 6490 "-" "-" [munged]::443 134.209.152.90 - - [10/Mar/2020:10:26:15 +0100] "POST /[	2020-03-10 19:20:57
134.209.152.176	attack	Feb 27 20:24:04 server sshd\[12917\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.152.176 Feb 27 20:24:05 server sshd\[12917\]: Failed password for invalid user sole from 134.209.152.176 port 39996 ssh2 Feb 28 07:55:09 server sshd\[12295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.152.176 user=root Feb 28 07:55:11 server sshd\[12295\]: Failed password for root from 134.209.152.176 port 35346 ssh2 Feb 28 07:56:11 server sshd\[12386\]: Invalid user ntps from 134.209.152.176 Feb 28 07:56:11 server sshd\[12386\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.152.176 ...	2020-02-28 14:05:49
134.209.152.176	attack	2020-02-26T23:08:17.292163shield sshd\[27300\]: Invalid user wangqiang from 134.209.152.176 port 38514 2020-02-26T23:08:17.296111shield sshd\[27300\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.152.176 2020-02-26T23:08:18.550636shield sshd\[27300\]: Failed password for invalid user wangqiang from 134.209.152.176 port 38514 ssh2 2020-02-26T23:09:12.755457shield sshd\[27428\]: Invalid user ts3bot from 134.209.152.176 port 46340 2020-02-26T23:09:12.760368shield sshd\[27428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.152.176	2020-02-27 07:57:51
134.209.152.176	attackbots	2020-02-05T05:51:15.961034 sshd[17501]: Invalid user runitf from 134.209.152.176 port 34008 2020-02-05T05:51:15.975083 sshd[17501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.152.176 2020-02-05T05:51:15.961034 sshd[17501]: Invalid user runitf from 134.209.152.176 port 34008 2020-02-05T05:51:18.498729 sshd[17501]: Failed password for invalid user runitf from 134.209.152.176 port 34008 ssh2 2020-02-05T05:54:38.765225 sshd[17585]: Invalid user fen from 134.209.152.176 port 38244 ...	2020-02-05 13:47:36
134.209.152.176	attack	2020-01-23T00:15:59.072087shield sshd\[27411\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.152.176 user=root 2020-01-23T00:16:01.102016shield sshd\[27411\]: Failed password for root from 134.209.152.176 port 60372 ssh2 2020-01-23T00:18:33.172288shield sshd\[27827\]: Invalid user helpdesk from 134.209.152.176 port 55672 2020-01-23T00:18:33.180504shield sshd\[27827\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.152.176 2020-01-23T00:18:34.684831shield sshd\[27827\]: Failed password for invalid user helpdesk from 134.209.152.176 port 55672 ssh2	2020-01-23 09:13:19
134.209.152.176	attackbotsspam	SSH Login Bruteforce	2020-01-12 01:04:23
134.209.152.176	attackspam	Dec 27 14:50:48 h2177944 sshd\[2380\]: Failed password for invalid user yoyo from 134.209.152.176 port 53340 ssh2 Dec 27 15:51:12 h2177944 sshd\[5263\]: Invalid user nobody123 from 134.209.152.176 port 60712 Dec 27 15:51:12 h2177944 sshd\[5263\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.152.176 Dec 27 15:51:14 h2177944 sshd\[5263\]: Failed password for invalid user nobody123 from 134.209.152.176 port 60712 ssh2 ...	2019-12-28 00:39:07
134.209.152.90	attack	Automatic report - XMLRPC Attack	2019-12-26 19:53:24
134.209.152.90	attack	[21/Dec/2019:19:11:17 +0100] Web-Request: "GET /wp-login.php", User-Agent: "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-12-22 02:53:17
134.209.152.90	attackbotsspam	Automatic report - XMLRPC Attack	2019-12-21 20:17:46
134.209.152.176	attack	ssh failed login	2019-12-18 21:06:33

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.152.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61742
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;134.209.152.42.			IN	A

;; AUTHORITY SECTION:
.			456	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 48 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 11:41:05 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 42.152.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.152.209.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
104.236.124.45	attack	Failed password for invalid user ftpadmin from 104.236.124.45 port 60673 ssh2	2020-06-17 18:35:59
27.128.168.225	attack	Invalid user kd from 27.128.168.225 port 33303	2020-06-17 17:53:37
106.12.52.229	attack	SSH brute-force: detected 16 distinct username(s) / 17 distinct password(s) within a 24-hour window.	2020-06-17 18:31:05
45.55.214.64	attack	2020-06-17T11:59:15+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-06-17 18:31:18
103.145.12.176	attackspambots	[2020-06-17 05:44:36] NOTICE[1273] chan_sip.c: Registration from '"515" ' failed for '103.145.12.176:5226' - Wrong password [2020-06-17 05:44:36] SECURITY[1288] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-06-17T05:44:36.389-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="515",SessionID="0x7f31c02ff098",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.145.12.176/5226",Challenge="48fb8749",ReceivedChallenge="48fb8749",ReceivedHash="79418fc4d53acce777604fffbbc753ca" [2020-06-17 05:44:36] NOTICE[1273] chan_sip.c: Registration from '"515" ' failed for '103.145.12.176:5226' - Wrong password [2020-06-17 05:44:36] SECURITY[1288] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-06-17T05:44:36.403-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="515",SessionID="0x7f31c00226f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.1 ...	2020-06-17 18:14:28
180.167.195.167	attack	Jun 17 02:38:12 santamaria sshd\[26083\]: Invalid user nagios from 180.167.195.167 Jun 17 02:38:12 santamaria sshd\[26083\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.167.195.167 Jun 17 02:38:14 santamaria sshd\[26083\]: Failed password for invalid user nagios from 180.167.195.167 port 31065 ssh2 Jun 17 02:41:28 santamaria sshd\[26131\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.167.195.167 user=root Jun 17 02:41:31 santamaria sshd\[26131\]: Failed password for root from 180.167.195.167 port 64582 ssh2 Jun 17 02:44:41 santamaria sshd\[26232\]: Invalid user deploy from 180.167.195.167 Jun 17 02:44:41 santamaria sshd\[26232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.167.195.167 Jun 17 02:44:43 santamaria sshd\[26232\]: Failed password for invalid user deploy from 180.167.195.167 port 40996 ssh2 ...	2020-06-17 18:33:43
45.166.87.1	attackspam	Unauthorized connection attempt detected from IP address 45.166.87.1 to port 445	2020-06-17 17:53:18
82.48.214.254	attackspam	Invalid user dev from 82.48.214.254 port 53921	2020-06-17 18:21:14
113.124.92.47	attackspam	Email login attempts - bad mail account name (SMTP)	2020-06-17 18:08:49
52.168.86.108	attack	Invalid user www from 52.168.86.108 port 43006	2020-06-17 18:25:17
129.211.65.70	attackspam	Jun 17 15:25:48 dhoomketu sshd[819578]: Failed password for root from 129.211.65.70 port 40466 ssh2 Jun 17 15:29:49 dhoomketu sshd[819610]: Invalid user chy from 129.211.65.70 port 55860 Jun 17 15:29:49 dhoomketu sshd[819610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.65.70 Jun 17 15:29:49 dhoomketu sshd[819610]: Invalid user chy from 129.211.65.70 port 55860 Jun 17 15:29:51 dhoomketu sshd[819610]: Failed password for invalid user chy from 129.211.65.70 port 55860 ssh2 ...	2020-06-17 18:27:02
185.143.72.23	attack	Jun 17 10:56:24 nlmail01.srvfarm.net postfix/smtpd[343617]: warning: unknown[185.143.72.23]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 10:57:14 nlmail01.srvfarm.net postfix/smtpd[344349]: warning: unknown[185.143.72.23]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 10:58:09 nlmail01.srvfarm.net postfix/smtpd[344349]: warning: unknown[185.143.72.23]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 10:59:03 nlmail01.srvfarm.net postfix/smtpd[343617]: warning: unknown[185.143.72.23]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 11:00:09 nlmail01.srvfarm.net postfix/smtpd[343617]: warning: unknown[185.143.72.23]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-06-17 17:58:47
124.207.165.138	attackspambots	Invalid user prueba from 124.207.165.138 port 60166	2020-06-17 18:20:09
125.124.35.82	attackspambots	Jun 17 10:50:37 sso sshd[16723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.35.82 Jun 17 10:50:39 sso sshd[16723]: Failed password for invalid user appluat from 125.124.35.82 port 59330 ssh2 ...	2020-06-17 17:59:18
94.102.50.137	attackspam	ET DROP Dshield Block Listed Source group 1 - port: 60206 proto: TCP cat: Misc Attack	2020-06-17 18:22:47

最近上报的IP列表

134.209.152.128	134.209.152.116	134.209.153.142	134.209.154.119
134.209.154.58	134.209.155.132	134.209.156.223	134.209.156.27
134.209.153.206	134.209.157.238	134.209.157.75	134.209.158.212
134.209.159.1	134.209.159.135	134.209.154.170	134.209.158.252
134.209.16.158	134.209.159.202	134.209.162.151	134.209.159.161

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表