134.209.22.22 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	134.209.22.22 - - [21/Jun/2019:11:19:43 +0200] "POST [munged]wp-login.php HTTP/1.1" 444 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 0.000	2019-06-21 19:44:29

相同子网IP讨论:

IP	类型	评论内容	时间
134.209.223.106	attackbots	Port Scan ...	2020-09-18 22:20:33
134.209.223.106	attack	Port Scan ...	2020-09-18 14:35:44
134.209.223.106	attack	Auto Detect Rule! proto TCP (SYN), 134.209.223.106:59985->gjan.info:21, len 40	2020-09-18 04:52:34
134.209.22.239	attack	" "	2020-08-31 17:07:10
134.209.22.239	attackspam	Port Scan detected! ...	2020-08-30 13:07:36
134.209.228.253	attack	Aug 20 08:08:50 cho sshd[1119932]: Failed password for root from 134.209.228.253 port 38796 ssh2 Aug 20 08:12:38 cho sshd[1120324]: Invalid user andrea from 134.209.228.253 port 46516 Aug 20 08:12:38 cho sshd[1120324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.228.253 Aug 20 08:12:38 cho sshd[1120324]: Invalid user andrea from 134.209.228.253 port 46516 Aug 20 08:12:40 cho sshd[1120324]: Failed password for invalid user andrea from 134.209.228.253 port 46516 ssh2 ...	2020-08-20 15:26:20
134.209.228.253	attack	Aug 19 00:47:09 vpn01 sshd[10467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.228.253 Aug 19 00:47:11 vpn01 sshd[10467]: Failed password for invalid user sb from 134.209.228.253 port 43792 ssh2 ...	2020-08-19 07:57:25
134.209.228.253	attackspambots	Aug 14 02:10:15 web1 sshd\[28661\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.228.253 user=root Aug 14 02:10:18 web1 sshd\[28661\]: Failed password for root from 134.209.228.253 port 42812 ssh2 Aug 14 02:14:05 web1 sshd\[28971\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.228.253 user=root Aug 14 02:14:07 web1 sshd\[28971\]: Failed password for root from 134.209.228.253 port 52650 ssh2 Aug 14 02:18:00 web1 sshd\[29275\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.228.253 user=root	2020-08-15 04:39:46
134.209.228.253	attack	Aug 3 20:48:36 localhost sshd[9499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.228.253 user=root Aug 3 20:48:38 localhost sshd[9499]: Failed password for root from 134.209.228.253 port 55766 ssh2 Aug 3 20:52:16 localhost sshd[9909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.228.253 user=root Aug 3 20:52:18 localhost sshd[9909]: Failed password for root from 134.209.228.253 port 39082 ssh2 Aug 3 20:55:59 localhost sshd[10333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.228.253 user=root Aug 3 20:56:01 localhost sshd[10333]: Failed password for root from 134.209.228.253 port 50628 ssh2 ...	2020-08-04 07:56:19
134.209.228.253	attackbots	Jul 31 14:11:16 fhem-rasp sshd[14346]: Failed password for root from 134.209.228.253 port 33920 ssh2 Jul 31 14:11:16 fhem-rasp sshd[14346]: Disconnected from authenticating user root 134.209.228.253 port 33920 [preauth] ...	2020-07-31 20:34:52
134.209.220.69	attack	Exploited Host.	2020-07-26 03:18:21
134.209.228.253	attackspam	Invalid user yyh from 134.209.228.253 port 59744	2020-07-24 15:17:31
134.209.228.253	attack	Banned for a week because repeated abuses, for example SSH, but not only	2020-07-20 05:20:21
134.209.228.253	attackbotsspam	Jul 16 17:43:20 vps-51d81928 sshd[5171]: Invalid user aayush from 134.209.228.253 port 37602 Jul 16 17:43:20 vps-51d81928 sshd[5171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.228.253 Jul 16 17:43:20 vps-51d81928 sshd[5171]: Invalid user aayush from 134.209.228.253 port 37602 Jul 16 17:43:23 vps-51d81928 sshd[5171]: Failed password for invalid user aayush from 134.209.228.253 port 37602 ssh2 Jul 16 17:47:01 vps-51d81928 sshd[5232]: Invalid user atm from 134.209.228.253 port 52324 ...	2020-07-17 04:39:28
134.209.228.253	attack	Several Attack	2020-07-17 00:49:41

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.22.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55349
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.22.22.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062100 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jun 21 19:44:21 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 22.22.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 22.22.209.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
121.17.149.70	attackspam	Unauthorised access (Aug 29) SRC=121.17.149.70 LEN=40 TTL=49 ID=16212 TCP DPT=8080 WINDOW=31574 SYN Unauthorised access (Aug 29) SRC=121.17.149.70 LEN=40 TTL=49 ID=49907 TCP DPT=8080 WINDOW=35813 SYN Unauthorised access (Aug 29) SRC=121.17.149.70 LEN=40 TTL=49 ID=23634 TCP DPT=8080 WINDOW=42999 SYN Unauthorised access (Aug 29) SRC=121.17.149.70 LEN=40 TTL=49 ID=39824 TCP DPT=8080 WINDOW=22791 SYN Unauthorised access (Aug 28) SRC=121.17.149.70 LEN=40 TTL=49 ID=47931 TCP DPT=8080 WINDOW=35813 SYN	2019-08-30 08:44:28
54.38.242.233	attackbotsspam	(sshd) Failed SSH login from 54.38.242.233 (FR/France/-/-/233.ip-54-38-242.eu/[AS16276 OVH SAS]): 1 in the last 3600 secs	2019-08-30 08:33:08
179.106.81.244	attack	$f2bV_matches	2019-08-30 08:07:59
106.75.34.206	attackbotsspam	Aug 29 13:45:13 lcdev sshd\[6301\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.34.206 user=backup Aug 29 13:45:14 lcdev sshd\[6301\]: Failed password for backup from 106.75.34.206 port 42502 ssh2 Aug 29 13:49:39 lcdev sshd\[6720\]: Invalid user nagios from 106.75.34.206 Aug 29 13:49:39 lcdev sshd\[6720\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.34.206 Aug 29 13:49:41 lcdev sshd\[6720\]: Failed password for invalid user nagios from 106.75.34.206 port 55370 ssh2	2019-08-30 08:51:22
41.210.128.37	attackbots	Invalid user helen from 41.210.128.37 port 37502	2019-08-30 08:20:05
160.16.138.99	attackspambots	Aug 29 14:12:19 lcprod sshd\[20169\]: Invalid user ricki from 160.16.138.99 Aug 29 14:12:19 lcprod sshd\[20169\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tk2-405-43595.vs.sakura.ne.jp Aug 29 14:12:21 lcprod sshd\[20169\]: Failed password for invalid user ricki from 160.16.138.99 port 34724 ssh2 Aug 29 14:16:54 lcprod sshd\[20633\]: Invalid user barbara123 from 160.16.138.99 Aug 29 14:16:54 lcprod sshd\[20633\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tk2-405-43595.vs.sakura.ne.jp	2019-08-30 08:32:33
190.217.71.15	attackbotsspam	Aug 29 19:58:50 vps200512 sshd\[6522\]: Invalid user sander from 190.217.71.15 Aug 29 19:58:50 vps200512 sshd\[6522\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.217.71.15 Aug 29 19:58:52 vps200512 sshd\[6522\]: Failed password for invalid user sander from 190.217.71.15 port 43928 ssh2 Aug 29 20:03:15 vps200512 sshd\[6611\]: Invalid user ralf from 190.217.71.15 Aug 29 20:03:15 vps200512 sshd\[6611\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.217.71.15	2019-08-30 08:05:38
134.175.141.166	attackbotsspam	Invalid user tracy from 134.175.141.166 port 46653	2019-08-30 08:15:23
167.71.217.70	attackbotsspam	Invalid user lovegaku from 167.71.217.70 port 56046	2019-08-30 08:35:27
138.68.48.118	attackspam	Aug 30 01:13:35 h2177944 sshd\[1455\]: Invalid user antonio from 138.68.48.118 port 57042 Aug 30 01:13:35 h2177944 sshd\[1455\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.48.118 Aug 30 01:13:37 h2177944 sshd\[1455\]: Failed password for invalid user antonio from 138.68.48.118 port 57042 ssh2 Aug 30 01:23:16 h2177944 sshd\[1776\]: Invalid user test2 from 138.68.48.118 port 33880 ...	2019-08-30 08:09:06
51.15.212.48	attackspam	Aug 29 13:46:46 auw2 sshd\[10804\]: Invalid user elaine from 51.15.212.48 Aug 29 13:46:46 auw2 sshd\[10804\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.212.48 Aug 29 13:46:48 auw2 sshd\[10804\]: Failed password for invalid user elaine from 51.15.212.48 port 37166 ssh2 Aug 29 13:50:56 auw2 sshd\[11159\]: Invalid user 12345678 from 51.15.212.48 Aug 29 13:50:56 auw2 sshd\[11159\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.212.48	2019-08-30 08:06:01
35.232.92.131	attackbots	Aug 29 22:25:18 plex sshd[8278]: Invalid user truman from 35.232.92.131 port 43724	2019-08-30 08:05:08
83.48.89.147	attack	Aug 29 14:01:56 web1 sshd\[5886\]: Invalid user crimson from 83.48.89.147 Aug 29 14:01:56 web1 sshd\[5886\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.48.89.147 Aug 29 14:01:57 web1 sshd\[5886\]: Failed password for invalid user crimson from 83.48.89.147 port 33450 ssh2 Aug 29 14:06:15 web1 sshd\[6301\]: Invalid user martinho from 83.48.89.147 Aug 29 14:06:15 web1 sshd\[6301\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.48.89.147	2019-08-30 08:18:30
139.199.186.58	attack	Aug 30 02:43:12 www2 sshd\[11168\]: Invalid user bran from 139.199.186.58Aug 30 02:43:14 www2 sshd\[11168\]: Failed password for invalid user bran from 139.199.186.58 port 54626 ssh2Aug 30 02:47:28 www2 sshd\[11656\]: Invalid user demo from 139.199.186.58 ...	2019-08-30 08:14:59
134.209.12.162	attackbots	Aug 29 13:59:54 kapalua sshd\[11729\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.12.162 user=root Aug 29 13:59:55 kapalua sshd\[11729\]: Failed password for root from 134.209.12.162 port 58682 ssh2 Aug 29 14:03:54 kapalua sshd\[12092\]: Invalid user adrian from 134.209.12.162 Aug 29 14:03:54 kapalua sshd\[12092\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.12.162 Aug 29 14:03:56 kapalua sshd\[12092\]: Failed password for invalid user adrian from 134.209.12.162 port 47690 ssh2	2019-08-30 08:17:58

最近上报的IP列表

5.11.59.84	109.194.166.197	235.193.78.87	67.25.7.26
58.22.105.97	142.187.89.136	182.74.38.250	133.161.111.45
220.247.174.162	41.254.9.128	183.24.213.125	60.169.94.134
178.165.73.87	49.69.155.127	149.210.107.197	79.99.188.17
111.83.162.132	57.166.76.49	192.42.116.27	89.238.139.205