134.209.196.169

基本信息:

城市(city): Amsterdam

省份(region): North Holland

国家(country): Netherlands

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2019-09-08 14:42:56
attackspam	Brute forcing Wordpress login	2019-08-13 12:43:12
attack	Automatic report - Web App Attack	2019-07-09 20:30:27
attack	WordPress wp-login brute force :: 134.209.196.169 0.164 BYPASS [05/Jul/2019:13:20:34 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-07-05 13:16:06
attack	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	2019-07-01 09:17:04

相同子网IP讨论:

IP	类型	评论内容	时间
134.209.196.85	attack	08/22/2019-15:38:26.648896 134.209.196.85 Protocol: 6 ET SCAN Potential SSH Scan	2019-08-23 03:39:56

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.196.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10951
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.196.169.		IN	A

;; AUTHORITY SECTION:
.			3372	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040801 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 09 03:01:11 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 169.196.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 169.196.209.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
49.232.2.12	attack	Invalid user simona from 49.232.2.12 port 48796	2020-06-05 13:40:05
45.143.223.195	attackspambots	Jun 5 06:57:06 debian kernel: [231988.968613] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=45.143.223.195 DST=89.252.131.35 LEN=52 TOS=0x02 PREC=0x00 TTL=116 ID=3671 DF PROTO=TCP SPT=59034 DPT=25 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0	2020-06-05 13:26:17
167.172.121.115	attack	Jun 5 06:57:39 server sshd[34218]: Failed password for root from 167.172.121.115 port 33036 ssh2 Jun 5 07:01:16 server sshd[37481]: Failed password for root from 167.172.121.115 port 37438 ssh2 Jun 5 07:04:58 server sshd[40495]: Failed password for root from 167.172.121.115 port 41838 ssh2	2020-06-05 13:25:36
158.69.123.134	attack	Jun 5 01:32:04 plusreed sshd[31021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.123.134 user=redis Jun 5 01:32:05 plusreed sshd[31021]: Failed password for redis from 158.69.123.134 port 53592 ssh2 ...	2020-06-05 13:45:14
140.143.134.86	attackbotsspam	Jun 5 06:36:10 vps647732 sshd[1546]: Failed password for root from 140.143.134.86 port 38831 ssh2 ...	2020-06-05 13:53:57
95.167.139.66	attackspam	Wordpress malicious attack:[sshd]	2020-06-05 13:19:14
222.186.173.154	attackbotsspam	Jun 5 02:26:51 firewall sshd[24299]: Failed password for root from 222.186.173.154 port 10020 ssh2 Jun 5 02:26:54 firewall sshd[24299]: Failed password for root from 222.186.173.154 port 10020 ssh2 Jun 5 02:26:57 firewall sshd[24299]: Failed password for root from 222.186.173.154 port 10020 ssh2 ...	2020-06-05 13:37:40
192.241.211.215	attack	Jun 5 05:42:29 nas sshd[10710]: Failed password for root from 192.241.211.215 port 50597 ssh2 Jun 5 05:50:38 nas sshd[11036]: Failed password for root from 192.241.211.215 port 36266 ssh2 Jun 5 05:57:00 nas sshd[11108]: Failed password for root from 192.241.211.215 port 37955 ssh2 ...	2020-06-05 13:28:23
164.163.99.10	attackbotsspam	Brute-force attempt banned	2020-06-05 13:50:50
176.227.202.95	attackbots	Port Scan detected! ...	2020-06-05 13:43:35
219.159.200.34	attack	Port probing on unauthorized port 23	2020-06-05 13:15:38
129.226.53.203	attackbotsspam	Jun 5 06:59:12 minden010 sshd[19768]: Failed password for root from 129.226.53.203 port 46006 ssh2 Jun 5 07:03:09 minden010 sshd[22141]: Failed password for root from 129.226.53.203 port 33332 ssh2 ...	2020-06-05 13:43:53
45.224.162.4	attack	Jun 5 05:34:52 mail.srvfarm.net postfix/smtps/smtpd[2916352]: warning: unknown[45.224.162.4]: SASL PLAIN authentication failed: Jun 5 05:34:53 mail.srvfarm.net postfix/smtps/smtpd[2916352]: lost connection after AUTH from unknown[45.224.162.4] Jun 5 05:39:54 mail.srvfarm.net postfix/smtps/smtpd[2917583]: warning: unknown[45.224.162.4]: SASL PLAIN authentication failed: Jun 5 05:39:54 mail.srvfarm.net postfix/smtps/smtpd[2917583]: lost connection after AUTH from unknown[45.224.162.4] Jun 5 05:40:54 mail.srvfarm.net postfix/smtps/smtpd[2917584]: lost connection after CONNECT from unknown[45.224.162.4]	2020-06-05 13:55:48
101.91.218.193	attackspambots	Jun 5 07:11:16 PorscheCustomer sshd[15300]: Failed password for root from 101.91.218.193 port 53486 ssh2 Jun 5 07:15:52 PorscheCustomer sshd[15360]: Failed password for root from 101.91.218.193 port 59400 ssh2 ...	2020-06-05 13:37:55
110.229.220.187	attackspam	php vulnerability probing	2020-06-05 13:47:35

最近上报的IP列表

119.97.79.153	51.254.49.108	178.46.14.203	113.160.172.77
60.190.56.8	157.44.195.140	58.186.139.10	46.173.211.190
116.209.160.18	202.131.106.50	1.52.124.4	190.196.121.52
104.131.175.31	202.65.154.106	185.149.233.249	122.178.153.95
190.85.85.213	165.225.38.254	189.126.192.50	89.223.92.140