134.209.239.42

基本信息:

城市(city): Frankfurt am Main

省份(region): Hessen

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
134.209.239.87	attack	masters-of-media.de 134.209.239.87 \[18/Nov/2019:18:21:33 +0100\] "POST /wp-login.php HTTP/1.1" 200 6492 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" masters-of-media.de 134.209.239.87 \[18/Nov/2019:18:21:33 +0100\] "POST /wp-login.php HTTP/1.1" 200 6451 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" masters-of-media.de 134.209.239.87 \[18/Nov/2019:18:21:33 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 4104 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-11-19 06:08:57
134.209.239.87	attack	134.209.239.87 - - \[18/Nov/2019:12:06:15 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 134.209.239.87 - - \[18/Nov/2019:12:06:16 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2019-11-18 21:28:00
134.209.239.87	attackbots	www.goldgier.de 134.209.239.87 \[15/Nov/2019:09:13:48 +0100\] "POST /wp-login.php HTTP/1.1" 200 8729 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" www.goldgier.de 134.209.239.87 \[15/Nov/2019:09:13:50 +0100\] "POST /wp-login.php HTTP/1.1" 200 8729 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" www.goldgier.de 134.209.239.87 \[15/Nov/2019:09:13:51 +0100\] "POST /wp-login.php HTTP/1.1" 200 8729 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-11-15 17:28:23
134.209.239.87	attack	WordPress login Brute force / Web App Attack on client site.	2019-10-18 17:07:34
134.209.239.87	attackbots	Wordpress Admin Login attack	2019-10-16 18:48:37
134.209.239.68	attack	DATE:2019-06-26_05:47:58, IP:134.209.239.68, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-06-26 17:03:40

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.239.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21430
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;134.209.239.42.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025102301 1800 900 604800 86400

;; Query time: 149 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 24 05:30:54 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

b'Host 42.239.209.134.in-addr.arpa. not found: 3(NXDOMAIN)
'

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.239.209.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
159.89.49.238	attackbotsspam	2020-08-22T22:38:27.127371centos sshd[1045]: Invalid user xiaohui from 159.89.49.238 port 53944 2020-08-22T22:38:29.189066centos sshd[1045]: Failed password for invalid user xiaohui from 159.89.49.238 port 53944 ssh2 2020-08-22T22:43:04.092256centos sshd[1428]: Invalid user zhengzhou from 159.89.49.238 port 33468 ...	2020-08-23 05:27:24
185.234.219.230	attackspam	Aug 9 17:43:52 hidden postfix/postscreen[20533]: DNSBL rank 6 for [185.234.219.230]:64864	2020-08-23 05:26:12
165.227.35.46	attackbotsspam	Aug 22 23:02:01 cosmoit sshd[26802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.35.46	2020-08-23 05:26:44
193.35.51.20	attackspambots	2020-08-22 23:49:46 dovecot_login authenticator failed for $\[193.35.51.20\]$ \[193.35.51.20\]: 535 Incorrect authentication data $set_id=harald.schueller@jugend-ohne-grenzen.net$ 2020-08-22 23:49:53 dovecot_login authenticator failed for $\[193.35.51.20\]$ \[193.35.51.20\]: 535 Incorrect authentication data 2020-08-22 23:50:02 dovecot_login authenticator failed for $\[193.35.51.20\]$ \[193.35.51.20\]: 535 Incorrect authentication data 2020-08-22 23:50:18 dovecot_login authenticator failed for $\[193.35.51.20\]$ \[193.35.51.20\]: 535 Incorrect authentication data 2020-08-22 23:50:22 dovecot_login authenticator failed for $\[193.35.51.20\]$ \[193.35.51.20\]: 535 Incorrect authentication data 2020-08-22 23:50:28 dovecot_login authenticator failed for $\[193.35.51.20\]$ \[193.35.51.20\]: 535 Incorrect authentication data 2020-08-22 23:50:35 dovecot_login authenticator failed for $\[193.35.51.20\]$ \[193.35.51.20\]: 535 Incorrect authentication data 2020-08-22 23:50:40 dove ...	2020-08-23 05:52:27
218.92.0.206	attack	Aug 22 21:33:10 onepixel sshd[2919239]: Failed password for root from 218.92.0.206 port 53831 ssh2 Aug 22 21:33:12 onepixel sshd[2919239]: Failed password for root from 218.92.0.206 port 53831 ssh2 Aug 22 21:33:14 onepixel sshd[2919239]: Failed password for root from 218.92.0.206 port 53831 ssh2 Aug 22 21:33:55 onepixel sshd[2919328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.206 user=root Aug 22 21:33:57 onepixel sshd[2919328]: Failed password for root from 218.92.0.206 port 18971 ssh2	2020-08-23 05:43:27
191.33.193.192	attackbots	Automatic report - Port Scan Attack	2020-08-23 05:30:29
95.173.161.167	attackbots	95.173.161.167 - - [22/Aug/2020:21:17:53 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 95.173.161.167 - - [22/Aug/2020:21:17:55 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 95.173.161.167 - - [22/Aug/2020:21:17:57 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 95.173.161.167 - - [22/Aug/2020:21:17:59 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 95.173.161.167 - - [22/Aug/2020:21:18:00 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-08-23 05:22:09
49.234.212.177	attack	Aug 23 00:33:17 lukav-desktop sshd\[30627\]: Invalid user cvr from 49.234.212.177 Aug 23 00:33:17 lukav-desktop sshd\[30627\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.212.177 Aug 23 00:33:19 lukav-desktop sshd\[30627\]: Failed password for invalid user cvr from 49.234.212.177 port 42322 ssh2 Aug 23 00:38:48 lukav-desktop sshd\[32510\]: Invalid user testtest from 49.234.212.177 Aug 23 00:38:48 lukav-desktop sshd\[32510\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.212.177	2020-08-23 05:49:06
73.195.75.247	attackbotsspam	2020-08-22T23:58:51.798484mail.standpoint.com.ua sshd[27567]: Failed password for developer from 73.195.75.247 port 52816 ssh2 2020-08-22T23:58:54.036430mail.standpoint.com.ua sshd[27567]: Failed password for developer from 73.195.75.247 port 52816 ssh2 2020-08-22T23:58:56.019784mail.standpoint.com.ua sshd[27567]: Failed password for developer from 73.195.75.247 port 52816 ssh2 2020-08-22T23:58:58.277674mail.standpoint.com.ua sshd[27567]: Failed password for developer from 73.195.75.247 port 52816 ssh2 2020-08-22T23:59:01.158572mail.standpoint.com.ua sshd[27567]: Failed password for developer from 73.195.75.247 port 52816 ssh2 ...	2020-08-23 05:23:35
218.92.0.250	attack	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-08-23 05:23:52
14.33.45.230	attackbots	$f2bV_matches	2020-08-23 05:36:00
185.234.219.12	attackspam	Aug 22 22:33:34 h2829583 postfix/smtpd[18488]: lost connection after EHLO from unknown[185.234.219.12] Aug 22 22:37:35 h2829583 postfix/smtpd[18510]: lost connection after EHLO from unknown[185.234.219.12]	2020-08-23 05:38:45
218.92.0.195	attackspambots	Aug 22 23:33:38 santamaria sshd\[13947\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.195 user=root Aug 22 23:33:40 santamaria sshd\[13947\]: Failed password for root from 218.92.0.195 port 62516 ssh2 Aug 22 23:34:38 santamaria sshd\[13954\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.195 user=root ...	2020-08-23 05:46:29
192.241.237.91	attack	Aug 21 03:55:05 hidden postfix/postscreen[10908]: DNSBL rank 4 for [192.241.237.91]:41712	2020-08-23 05:24:06
129.226.176.5	attack	Invalid user tang from 129.226.176.5 port 35738	2020-08-23 05:39:36

最近上报的IP列表

59.82.135.135	54.48.40.35	118.48.249.229	51.158.54.10
3.83.240.53	59.82.83.241	59.82.135.46	176.65.149.253
59.82.83.27	59.82.83.219	59.82.83.64	59.82.83.29
59.82.135.164	54.235.42.72	44.203.38.131	20.64.105.47
59.82.135.2	59.82.83.226	59.82.83.210	59.82.83.172