134.209.29.116

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United Kingdom

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-10-23 04:30:46

相同子网IP讨论:

IP	类型	评论内容	时间
134.209.29.245	attackbots	Lines containing failures of 134.209.29.245 Jul 26 22:47:49 kmh-wmh-001-nbg01 sshd[310]: Did not receive identification string from 134.209.29.245 port 46478 Jul 26 22:48:05 kmh-wmh-001-nbg01 sshd[383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.29.245 user=r.r Jul 26 22:48:08 kmh-wmh-001-nbg01 sshd[383]: Failed password for r.r from 134.209.29.245 port 46292 ssh2 Jul 26 22:48:10 kmh-wmh-001-nbg01 sshd[383]: Received disconnect from 134.209.29.245 port 46292:11: Normal Shutdown, Thank you for playing [preauth] Jul 26 22:48:10 kmh-wmh-001-nbg01 sshd[383]: Disconnected from authenticating user r.r 134.209.29.245 port 46292 [preauth] Jul 26 22:48:40 kmh-wmh-001-nbg01 sshd[385]: Invalid user test from 134.209.29.245 port 43272 Jul 26 22:48:40 kmh-wmh-001-nbg01 sshd[385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.29.245 Jul 26 22:48:42 kmh-wmh-001-nbg01 sshd[385]: Fail........ ------------------------------	2020-07-27 06:11:32
134.209.29.118	attack	134.209.29.118 was recorded 6 times by 6 hosts attempting to connect to the following ports: 5900. Incident counter (4h, 24h, all-time): 6, 9, 9	2019-11-07 19:23:45
134.209.29.183	attackspambots	[portscan] tcp/23 [TELNET] in spfbl.net:'listed' *(RWIN=65535)(10151156)	2019-10-16 02:26:29
134.209.29.180	attackspam	Sep 29 03:48:33 plusreed sshd[23480]: Invalid user oracle from 134.209.29.180 ...	2019-09-29 17:08:35
134.209.29.180	attackbots	F2B jail: sshd. Time: 2019-09-29 01:44:25, Reported by: VKReport	2019-09-29 08:53:31
134.209.29.180	attackspam	Sep 9 11:33:33 php1 sshd\[21585\]: Invalid user webmaster from 134.209.29.180 Sep 9 11:33:33 php1 sshd\[21585\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.29.180 Sep 9 11:33:35 php1 sshd\[21585\]: Failed password for invalid user webmaster from 134.209.29.180 port 57977 ssh2 Sep 9 11:39:15 php1 sshd\[22382\]: Invalid user nextcloud from 134.209.29.180 Sep 9 11:39:15 php1 sshd\[22382\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.29.180	2019-09-10 05:51:03
134.209.29.180	attackbots	2019-07-25T12:12:13.675254enmeeting.mahidol.ac.th sshd\[14708\]: Invalid user mqm from 134.209.29.180 port 36475 2019-07-25T12:12:13.694436enmeeting.mahidol.ac.th sshd\[14708\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.29.180 2019-07-25T12:12:15.954920enmeeting.mahidol.ac.th sshd\[14708\]: Failed password for invalid user mqm from 134.209.29.180 port 36475 ssh2 ...	2019-07-25 14:11:09

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.29.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30892
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.29.116.			IN	A

;; AUTHORITY SECTION:
.			452	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102201 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 23 04:30:43 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 116.29.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 116.29.209.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
154.8.223.122	attackbots	Brute force SMTP login attempts.	2019-11-14 17:35:40
168.90.90.98	attackbotsspam	Scanning random ports - tries to find possible vulnerable services	2019-11-14 17:44:11
78.175.254.80	attackbotsspam	" "	2019-11-14 17:34:53
58.220.217.38	attackbots	11/14/2019-07:26:20.619575 58.220.217.38 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-11-14 17:53:43
184.105.139.67	attackspam	Scanning random ports - tries to find possible vulnerable services	2019-11-14 17:38:25
210.217.24.226	attackspam	Nov 14 06:26:29 thevastnessof sshd[18567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.217.24.226 ...	2019-11-14 17:47:02
23.247.70.73	attackbotsspam	SASL Brute Force	2019-11-14 17:37:47
183.142.28.228	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/183.142.28.228/ CN - 1H : (821) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 183.142.28.228 CIDR : 183.140.0.0/14 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 ATTACKS DETECTED ASN4134 : 1H - 34 3H - 77 6H - 158 12H - 290 24H - 371 DateTime : 2019-11-14 07:26:39 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-14 17:41:05
24.41.138.67	attackspam	Automatic report - Port Scan Attack	2019-11-14 17:55:32
175.18.219.187	attackspambots	Honeypot attack, port: 23, PTR: 187.219.18.175.adsl-pool.jlccptt.net.cn.	2019-11-14 17:50:11
112.222.29.147	attack	Nov 14 10:34:46 vps691689 sshd[24278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.222.29.147 Nov 14 10:34:48 vps691689 sshd[24278]: Failed password for invalid user lamot from 112.222.29.147 port 37740 ssh2 ...	2019-11-14 17:48:42
212.64.67.116	attack	Nov 14 06:40:58 124388 sshd[26088]: Invalid user dovecot from 212.64.67.116 port 43312 Nov 14 06:40:58 124388 sshd[26088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.67.116 Nov 14 06:40:58 124388 sshd[26088]: Invalid user dovecot from 212.64.67.116 port 43312 Nov 14 06:41:00 124388 sshd[26088]: Failed password for invalid user dovecot from 212.64.67.116 port 43312 ssh2 Nov 14 06:45:24 124388 sshd[26118]: Invalid user esther from 212.64.67.116 port 51424	2019-11-14 17:20:19
206.167.33.12	attack	Nov 14 09:07:03 l02a sshd[32144]: Invalid user web2 from 206.167.33.12 Nov 14 09:07:03 l02a sshd[32144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.167.33.12 Nov 14 09:07:03 l02a sshd[32144]: Invalid user web2 from 206.167.33.12 Nov 14 09:07:05 l02a sshd[32144]: Failed password for invalid user web2 from 206.167.33.12 port 43402 ssh2	2019-11-14 17:39:05
170.130.187.46	attackbots	UTC: 2019-11-13 port: 21/tcp	2019-11-14 17:27:56
51.77.156.223	attackbots	Nov 14 09:35:46 minden010 sshd[27788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.156.223 Nov 14 09:35:47 minden010 sshd[27788]: Failed password for invalid user danell from 51.77.156.223 port 49260 ssh2 Nov 14 09:39:58 minden010 sshd[1031]: Failed password for root from 51.77.156.223 port 37480 ssh2 ...	2019-11-14 17:38:50

最近上报的IP列表

138.6.235.157	238.70.91.229	6.178.1.219	211.75.214.59
68.183.186.62	185.25.206.130	77.122.17.211	133.123.4.170
51.158.181.29	61.83.55.1	117.114.144.162	104.92.102.82
115.124.124.19	106.13.8.103	94.176.207.66	86.108.13.195
191.252.204.14	45.252.249.240	109.160.108.147	194.187.175.68