134.209.169.202

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Port scanning [2 denied]	2020-08-12 16:33:39
attack	Port scan denied	2020-07-14 00:29:09
attackspambots	3786/tcp 32647/tcp 21450/tcp... [2020-04-20/06-15]142pkt,49pt.(tcp)	2020-06-15 18:05:26

相同子网IP讨论:

IP	类型	评论内容	时间
134.209.169.22	attackbots	Unauthorized connection attempt detected from IP address 134.209.169.22 to port 3389 [T]	2020-06-24 01:05:09
134.209.169.132	attackspambots	Hacking	2020-04-22 13:44:20
134.209.169.239	attackbots	trying to access non-authorized port	2020-04-06 01:28:09
134.209.169.2	attackspambots	SSH login attempts with user root at 2020-02-05.	2020-02-06 17:09:22
134.209.169.189	attack	PBX: blocked for too many failed authentications; User-Agent: 3CXPhoneSystem	2019-10-23 17:07:57
134.209.169.72	attackbotsspam	Aug 20 14:49:12 web8 sshd\[3590\]: Invalid user mythtv from 134.209.169.72 Aug 20 14:49:12 web8 sshd\[3590\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.169.72 Aug 20 14:49:14 web8 sshd\[3590\]: Failed password for invalid user mythtv from 134.209.169.72 port 47722 ssh2 Aug 20 14:53:53 web8 sshd\[5940\]: Invalid user jena from 134.209.169.72 Aug 20 14:53:53 web8 sshd\[5940\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.169.72	2019-08-20 23:03:41
134.209.169.127	attack	Splunk® : port scan detected: Aug 16 22:59:13 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=134.209.169.127 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=254 ID=54321 PROTO=TCP SPT=34310 DPT=8088 WINDOW=65535 RES=0x00 SYN URGP=0	2019-08-17 12:18:22
134.209.169.72	attack	Aug 16 22:37:03 web8 sshd\[4894\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.169.72 user=root Aug 16 22:37:05 web8 sshd\[4894\]: Failed password for root from 134.209.169.72 port 33465 ssh2 Aug 16 22:41:25 web8 sshd\[7025\]: Invalid user zhangl from 134.209.169.72 Aug 16 22:41:25 web8 sshd\[7025\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.169.72 Aug 16 22:41:28 web8 sshd\[7025\]: Failed password for invalid user zhangl from 134.209.169.72 port 57578 ssh2	2019-08-17 06:55:03
134.209.169.72	attack	Aug 16 20:44:15 yabzik sshd[17359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.169.72 Aug 16 20:44:17 yabzik sshd[17359]: Failed password for invalid user analytics from 134.209.169.72 port 58500 ssh2 Aug 16 20:48:44 yabzik sshd[18989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.169.72	2019-08-17 02:21:49
134.209.169.72	attackbots	2019-08-15T19:22:50.308224 sshd[26995]: Invalid user jorge from 134.209.169.72 port 50546 2019-08-15T19:22:50.322338 sshd[26995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.169.72 2019-08-15T19:22:50.308224 sshd[26995]: Invalid user jorge from 134.209.169.72 port 50546 2019-08-15T19:22:51.823060 sshd[26995]: Failed password for invalid user jorge from 134.209.169.72 port 50546 ssh2 2019-08-15T19:27:10.988036 sshd[27028]: Invalid user prog from 134.209.169.72 port 46764 ...	2019-08-16 02:23:47
134.209.169.72	attackbots	Aug 14 20:14:14 fr01 sshd[576]: Invalid user fujimoto from 134.209.169.72 ...	2019-08-15 03:59:21
134.209.169.72	attackspambots	Aug 11 01:09:44 lnxmail61 sshd[17768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.169.72 Aug 11 01:09:44 lnxmail61 sshd[17768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.169.72	2019-08-11 07:52:23
134.209.169.72	attack	Aug 9 22:09:56 OPSO sshd\[21903\]: Invalid user Passw0rd from 134.209.169.72 port 53389 Aug 9 22:09:56 OPSO sshd\[21903\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.169.72 Aug 9 22:09:59 OPSO sshd\[21903\]: Failed password for invalid user Passw0rd from 134.209.169.72 port 53389 ssh2 Aug 9 22:14:32 OPSO sshd\[22512\]: Invalid user asam from 134.209.169.72 port 49967 Aug 9 22:14:32 OPSO sshd\[22512\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.169.72	2019-08-10 04:19:12
134.209.169.72	attackbots	Jul 13 19:22:48 plusreed sshd[20835]: Invalid user mt from 134.209.169.72 ...	2019-07-14 08:35:01

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.169.202
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58899
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.169.202.		IN	A

;; AUTHORITY SECTION:
.			462	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051800 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 18 23:38:26 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 202.169.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 202.169.209.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.13.97.37	attack	$f2bV_matches	2020-01-24 04:40:09
190.77.226.147	attackspam	VE__<177>1579795406 [1:2010935:3] ET SCAN Suspicious inbound to MSSQL port 1433 [Classification: Potentially Bad Traffic] [Priority: 2] {TCP} 190.77.226.147:26343	2020-01-24 04:55:42
189.238.60.55	attackspam	Lines containing failures of 189.238.60.55 Jan 23 13:48:55 zabbix sshd[1678]: Invalid user testuser from 189.238.60.55 port 52497 Jan 23 13:48:55 zabbix sshd[1678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.238.60.55 Jan 23 13:48:57 zabbix sshd[1678]: Failed password for invalid user testuser from 189.238.60.55 port 52497 ssh2 Jan 23 13:48:57 zabbix sshd[1678]: Received disconnect from 189.238.60.55 port 52497:11: Bye Bye [preauth] Jan 23 13:48:57 zabbix sshd[1678]: Disconnected from invalid user testuser 189.238.60.55 port 52497 [preauth] Jan 23 14:35:12 zabbix sshd[8356]: Invalid user csgo from 189.238.60.55 port 55654 Jan 23 14:35:12 zabbix sshd[8356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.238.60.55 Jan 23 14:35:13 zabbix sshd[8356]: Failed password for invalid user csgo from 189.238.60.55 port 55654 ssh2 Jan 23 14:35:13 zabbix sshd[8356]: Received disconnect from 1........ ------------------------------	2020-01-24 04:32:29
104.245.145.123	attackspam	(From gormly.henrietta@outlook.com) Who would I communicate with at your company about your internet business listing? It may be unverified, incorrect or not listed at all on the voice search platforms such as Alexa, Siri, Bixby and Google Home. I can send you the breakdown (free/no obligation) report to show you. Let me know what email address/person to forward it over to? Send your reply here: debbiesilver2112@gmail.com Regards, Debbie Silver	2020-01-24 04:49:56
94.102.56.215	attackspam	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-01-24 04:47:35
35.195.238.142	attackspambots	Unauthorized connection attempt detected from IP address 35.195.238.142 to port 2220 [J]	2020-01-24 04:31:38
157.245.157.248	attackspambots	Invalid user al from 157.245.157.248 port 51304	2020-01-24 04:34:28
186.136.207.241	attack	Invalid user qc from 186.136.207.241 port 48502	2020-01-24 04:41:15
103.218.242.10	attack	Jan 23 18:57:33 meumeu sshd[24235]: Failed password for root from 103.218.242.10 port 45376 ssh2 Jan 23 19:00:17 meumeu sshd[24670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.218.242.10 Jan 23 19:00:20 meumeu sshd[24670]: Failed password for invalid user l from 103.218.242.10 port 39906 ssh2 ...	2020-01-24 04:30:53
212.51.70.254	attackbots	Telnetd brute force attack detected by fail2ban	2020-01-24 04:26:25
157.245.58.40	attack	20 attempts against mh_ha-misbehave-ban on air	2020-01-24 04:44:35
167.71.43.249	attack	$f2bV_matches	2020-01-24 04:27:43
221.150.22.210	attackbotsspam	Jan 23 20:11:21 thevastnessof sshd[26761]: Failed password for invalid user admin from 221.150.22.210 port 56208 ssh2 ...	2020-01-24 04:54:42
68.183.48.14	attackspam	xmlrpc attack	2020-01-24 04:54:05
197.251.221.164	attackspam	unauthorized connection attempt	2020-01-24 04:23:19

最近上报的IP列表

162.243.140.88	161.117.52.244	159.65.66.103	157.245.186.28
104.248.121.227	162.243.144.233	45.143.220.179	103.129.211.18
91.82.85.154	1.114.114.2	64.60.220.194	130.91.189.168
72.80.108.61	126.91.87.145	187.88.237.90	137.146.98.205
98.253.243.124	201.232.159.123	157.237.210.206	63.250.78.104