134.209.158.24

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Invalid user git from 134.209.158.24 port 38918	2020-03-19 05:14:38

相同子网IP讨论:

IP	类型	评论内容	时间
134.209.158.114	botsattackproxy	Bot attacker IP	2025-07-11 12:53:52
134.209.158.21	attack	Unauthorized connection attempt from IP address 134.209.158.21 on Port 445(SMB)	2020-08-08 02:02:22
134.209.158.156	attackspambots	Failed password for root from 134.209.158.156 port 37280 ssh2 Invalid user jnode from 134.209.158.156 port 54698 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.158.156 Failed password for invalid user jnode from 134.209.158.156 port 54698 ssh2 Invalid user liqingxuan from 134.209.158.156 port 43922	2020-03-08 21:51:35
134.209.158.156	attackspam	Unauthorized connection attempt detected from IP address 134.209.158.156 to port 2220 [J]	2020-02-03 18:05:46
134.209.158.0	attack	RDP Bruteforce	2020-02-03 13:42:11
134.209.158.77	attackbotsspam	Microsoft-Windows-Security-Auditing	2019-09-23 06:25:07
134.209.158.32	attackbots	Invalid user fake from 134.209.158.32 port 54760	2019-08-23 15:24:29

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.158.24
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60746
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.158.24.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042801 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 29 02:52:19 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 24.158.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 24.158.209.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
36.156.158.207	attack	Jun 17 16:19:14 jumpserver sshd[115692]: Invalid user cent from 36.156.158.207 port 56415 Jun 17 16:19:17 jumpserver sshd[115692]: Failed password for invalid user cent from 36.156.158.207 port 56415 ssh2 Jun 17 16:22:16 jumpserver sshd[115731]: Invalid user dwi from 36.156.158.207 port 42716 ...	2020-06-18 00:58:26
37.187.12.126	attackspambots	Jun 17 18:45:59 vps647732 sshd[3856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.12.126 Jun 17 18:46:01 vps647732 sshd[3856]: Failed password for invalid user ftp from 37.187.12.126 port 41618 ssh2 ...	2020-06-18 00:51:31
45.55.214.64	attackspambots	Jun 17 16:54:25 ip-172-31-62-245 sshd\[29074\]: Failed password for root from 45.55.214.64 port 57506 ssh2\ Jun 17 16:57:25 ip-172-31-62-245 sshd\[29128\]: Invalid user adk from 45.55.214.64\ Jun 17 16:57:27 ip-172-31-62-245 sshd\[29128\]: Failed password for invalid user adk from 45.55.214.64 port 57670 ssh2\ Jun 17 17:00:26 ip-172-31-62-245 sshd\[29167\]: Invalid user sammy from 45.55.214.64\ Jun 17 17:00:28 ip-172-31-62-245 sshd\[29167\]: Failed password for invalid user sammy from 45.55.214.64 port 57834 ssh2\	2020-06-18 01:04:20
167.99.162.47	attack	2020-06-17T16:18:28.720388shield sshd\[8160\]: Invalid user admin from 167.99.162.47 port 48018 2020-06-17T16:18:28.725313shield sshd\[8160\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.162.47 2020-06-17T16:18:30.106634shield sshd\[8160\]: Failed password for invalid user admin from 167.99.162.47 port 48018 ssh2 2020-06-17T16:22:00.782121shield sshd\[8964\]: Invalid user mort from 167.99.162.47 port 48882 2020-06-17T16:22:00.785642shield sshd\[8964\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.162.47	2020-06-18 01:12:22
59.14.34.130	attackbotsspam	Jun 17 16:44:52 vh1 sshd[29570]: Invalid user admin from 59.14.34.130 Jun 17 16:44:52 vh1 sshd[29570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.14.34.130 Jun 17 16:44:53 vh1 sshd[29570]: Failed password for invalid user admin from 59.14.34.130 port 59202 ssh2 Jun 17 16:44:54 vh1 sshd[29571]: Received disconnect from 59.14.34.130: 11: Bye Bye Jun 17 16:59:39 vh1 sshd[30376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.14.34.130 user=r.r Jun 17 16:59:41 vh1 sshd[30376]: Failed password for r.r from 59.14.34.130 port 55936 ssh2 Jun 17 16:59:41 vh1 sshd[30377]: Received disconnect from 59.14.34.130: 11: Bye Bye Jun 17 17:03:36 vh1 sshd[30607]: Invalid user ghostname from 59.14.34.130 Jun 17 17:03:36 vh1 sshd[30607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.14.34.130 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=5	2020-06-18 01:03:08
182.91.7.105	attackbots	exploiting IMAP to bypass MFA on Office 365, G Suite accounts	2020-06-18 00:45:58
139.59.57.2	attackbots	2020-06-17T18:43:55+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-06-18 00:49:18
194.180.224.130	attack	Jun 17 16:39:15 localhost sshd[29302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.180.224.130 user=root Jun 17 16:39:17 localhost sshd[29302]: Failed password for root from 194.180.224.130 port 33844 ssh2 Jun 17 16:39:37 localhost sshd[29344]: Invalid user admin from 194.180.224.130 port 37398 Jun 17 16:39:37 localhost sshd[29344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.180.224.130 Jun 17 16:39:37 localhost sshd[29344]: Invalid user admin from 194.180.224.130 port 37398 Jun 17 16:39:40 localhost sshd[29344]: Failed password for invalid user admin from 194.180.224.130 port 37398 ssh2 ...	2020-06-18 00:48:08
118.24.114.205	attack	2020-06-17T17:09:03.665666shield sshd\[17379\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.114.205 user=root 2020-06-17T17:09:05.367594shield sshd\[17379\]: Failed password for root from 118.24.114.205 port 52764 ssh2 2020-06-17T17:11:05.769460shield sshd\[17718\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.114.205 user=root 2020-06-17T17:11:07.886929shield sshd\[17718\]: Failed password for root from 118.24.114.205 port 46110 ssh2 2020-06-17T17:13:14.005126shield sshd\[18017\]: Invalid user na from 118.24.114.205 port 39456 2020-06-17T17:13:14.008051shield sshd\[18017\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.114.205	2020-06-18 01:23:05
159.203.30.50	attackspambots	Brute-force attempt banned	2020-06-18 01:12:07
37.211.60.215	attackbots	IP blocked	2020-06-18 00:39:34
154.85.35.253	attackspam	Jun 17 18:09:38 ns382633 sshd\[18073\]: Invalid user user from 154.85.35.253 port 46880 Jun 17 18:09:38 ns382633 sshd\[18073\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.85.35.253 Jun 17 18:09:40 ns382633 sshd\[18073\]: Failed password for invalid user user from 154.85.35.253 port 46880 ssh2 Jun 17 18:22:35 ns382633 sshd\[20633\]: Invalid user admin from 154.85.35.253 port 39590 Jun 17 18:22:35 ns382633 sshd\[20633\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.85.35.253	2020-06-18 00:38:33
107.178.118.112	attackbotsspam	Jun 17 17:40:55 vh1 sshd[31982]: Address 107.178.118.112 maps to we.love.servers.at.ioflood.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 17 17:40:55 vh1 sshd[31982]: Invalid user danny from 107.178.118.112 Jun 17 17:40:55 vh1 sshd[31982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.178.118.112 Jun 17 17:40:57 vh1 sshd[31982]: Failed password for invalid user danny from 107.178.118.112 port 55864 ssh2 Jun 17 17:40:57 vh1 sshd[31983]: Received disconnect from 107.178.118.112: 11: Bye Bye Jun 17 18:04:40 vh1 sshd[538]: Address 107.178.118.112 maps to we.love.servers.at.ioflood.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 17 18:04:40 vh1 sshd[538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.178.118.112 user=r.r Jun 17 18:04:42 vh1 sshd[538]: Failed password for r.r from 107.178.118.112 port 38466 ssh2 Jun 17........ -------------------------------	2020-06-18 01:15:18
185.220.100.245	attackspam	SSH brute-force attempt	2020-06-18 01:01:24
139.219.234.171	attack	Jun 17 23:21:49 webhost01 sshd[13351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.234.171 Jun 17 23:21:51 webhost01 sshd[13351]: Failed password for invalid user sml from 139.219.234.171 port 10112 ssh2 ...	2020-06-18 01:21:24

最近上报的IP列表

175.101.105.138	81.171.156.172	175.101.60.16	51.15.117.190
109.252.62.3	52.247.48.100	27.223.78.164	176.43.139.137
162.243.150.138	199.87.154.255	81.109.142.136	198.108.67.40
186.226.169.76	167.99.221.150	255.134.149.19	37.41.133.236
148.190.216.233	60.174.63.86	5.28.214.130	132.194.19.232