134.209.239.42

基本信息:

城市(city): Frankfurt am Main

省份(region): Hessen

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
134.209.239.87	attack	masters-of-media.de 134.209.239.87 \[18/Nov/2019:18:21:33 +0100\] "POST /wp-login.php HTTP/1.1" 200 6492 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" masters-of-media.de 134.209.239.87 \[18/Nov/2019:18:21:33 +0100\] "POST /wp-login.php HTTP/1.1" 200 6451 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" masters-of-media.de 134.209.239.87 \[18/Nov/2019:18:21:33 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 4104 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-19 06:08:57
134.209.239.87	attack	134.209.239.87 - - \[18/Nov/2019:12:06:15 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 134.209.239.87 - - \[18/Nov/2019:12:06:16 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-11-18 21:28:00
134.209.239.87	attackbots	www.goldgier.de 134.209.239.87 \[15/Nov/2019:09:13:48 +0100\] "POST /wp-login.php HTTP/1.1" 200 8729 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.goldgier.de 134.209.239.87 \[15/Nov/2019:09:13:50 +0100\] "POST /wp-login.php HTTP/1.1" 200 8729 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.goldgier.de 134.209.239.87 \[15/Nov/2019:09:13:51 +0100\] "POST /wp-login.php HTTP/1.1" 200 8729 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-15 17:28:23
134.209.239.87	attack	WordPress login Brute force / Web App Attack on client site.	2019-10-18 17:07:34
134.209.239.87	attackbots	Wordpress Admin Login attack	2019-10-16 18:48:37
134.209.239.68	attack	DATE:2019-06-26_05:47:58, IP:134.209.239.68, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-06-26 17:03:40

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.239.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21430
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;134.209.239.42.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025102301 1800 900 604800 86400

;; Query time: 149 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 24 05:30:54 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

b'Host 42.239.209.134.in-addr.arpa. not found: 3(NXDOMAIN)
'

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.239.209.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
216.155.94.51	attackbotsspam	Unauthorized connection attempt detected from IP address 216.155.94.51 to port 2220 [J]	2020-01-22 04:59:23
185.187.112.44	attackbots	Jan 21 21:00:02 hgb10502 sshd[8110]: Invalid user lo from 185.187.112.44 port 33742 Jan 21 21:00:04 hgb10502 sshd[8110]: Failed password for invalid user lo from 185.187.112.44 port 33742 ssh2 Jan 21 21:00:04 hgb10502 sshd[8110]: Received disconnect from 185.187.112.44 port 33742:11: Bye Bye [preauth] Jan 21 21:00:04 hgb10502 sshd[8110]: Disconnected from 185.187.112.44 port 33742 [preauth] Jan 21 21:05:27 hgb10502 sshd[8698]: Invalid user [vicserver] from 185.187.112.44 port 54966 Jan 21 21:05:28 hgb10502 sshd[8698]: Failed password for invalid user [vicserver] from 185.187.112.44 port 54966 ssh2 Jan 21 21:05:28 hgb10502 sshd[8698]: Received disconnect from 185.187.112.44 port 54966:11: Bye Bye [preauth] Jan 21 21:05:28 hgb10502 sshd[8698]: Disconnected from 185.187.112.44 port 54966 [preauth] Jan 21 21:07:55 hgb10502 sshd[8979]: User r.r from 185.187.112.44 not allowed because not listed in AllowUsers Jan 21 21:07:55 hgb10502 sshd[8979]: pam_unix(sshd:auth): authentic........ -------------------------------	2020-01-22 05:05:47
134.73.85.12	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-22 04:36:13
202.124.204.5	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-22 04:39:41
182.151.22.36	attack	Unauthorized connection attempt detected from IP address 182.151.22.36 to port 2220 [J]	2020-01-22 04:55:08
118.70.187.225	attackbotsspam	Jan 21 15:00:36 * sshd[13119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.70.187.225 Jan 21 15:00:38 * sshd[13119]: Failed password for invalid user 1p2o3i from 118.70.187.225 port 41331 ssh2	2020-01-22 04:50:50
190.84.208.2	attackspam	Honeypot attack, port: 81, PTR: dynamic-ip-190842082.cable.net.co.	2020-01-22 04:34:22
222.186.15.10	attackbots	Jan 21 21:36:42 h2177944 sshd\[20076\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.10 user=root Jan 21 21:36:44 h2177944 sshd\[20076\]: Failed password for root from 222.186.15.10 port 39716 ssh2 Jan 21 21:36:46 h2177944 sshd\[20076\]: Failed password for root from 222.186.15.10 port 39716 ssh2 Jan 21 21:36:49 h2177944 sshd\[20076\]: Failed password for root from 222.186.15.10 port 39716 ssh2 ...	2020-01-22 04:37:18
111.93.232.66	attackspambots	Honeypot attack, port: 445, PTR: uflexltd.com.	2020-01-22 04:34:43
179.127.85.79	attack	Unauthorized connection attempt detected from IP address 179.127.85.79 to port 5555 [J]	2020-01-22 04:26:30
143.208.185.83	attackbotsspam	Caught in portsentry honeypot	2020-01-22 04:47:04
203.195.133.17	attackbots	Unauthorized connection attempt detected from IP address 203.195.133.17 to port 2220 [J]	2020-01-22 04:44:44
96.69.11.243	attackspam	Honeypot attack, port: 81, PTR: 96-69-11-243-static.hfc.comcastbusiness.net.	2020-01-22 04:29:42
67.205.174.230	attackspam	2020-01-21T13:26:33.468030xentho-1 sshd[702842]: Invalid user postgres from 67.205.174.230 port 44484 2020-01-21T13:26:33.477646xentho-1 sshd[702842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.174.230 2020-01-21T13:26:33.468030xentho-1 sshd[702842]: Invalid user postgres from 67.205.174.230 port 44484 2020-01-21T13:26:36.030368xentho-1 sshd[702842]: Failed password for invalid user postgres from 67.205.174.230 port 44484 ssh2 2020-01-21T13:28:58.059880xentho-1 sshd[702889]: Invalid user air from 67.205.174.230 port 39754 2020-01-21T13:28:58.065978xentho-1 sshd[702889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.174.230 2020-01-21T13:28:58.059880xentho-1 sshd[702889]: Invalid user air from 67.205.174.230 port 39754 2020-01-21T13:29:00.192402xentho-1 sshd[702889]: Failed password for invalid user air from 67.205.174.230 port 39754 ssh2 2020-01-21T13:31:21.187583xentho-1 sshd[702931]: ...	2020-01-22 04:39:09
79.137.33.20	attackspam	Unauthorized connection attempt detected from IP address 79.137.33.20 to port 2220 [J]	2020-01-22 04:27:26

最近上报的IP列表

59.82.135.135	54.48.40.35	118.48.249.229	51.158.54.10
3.83.240.53	59.82.83.241	59.82.135.46	176.65.149.253
59.82.83.27	59.82.83.219	59.82.83.64	59.82.83.29
59.82.135.164	54.235.42.72	44.203.38.131	20.64.105.47
59.82.135.2	59.82.83.226	59.82.83.210	59.82.83.172