134.209.4.129 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	RDP_Brute_Force	2019-10-21 23:08:06

相同子网IP讨论:

IP	类型	评论内容	时间
134.209.41.198	attackbotsspam	Invalid user trade from 134.209.41.198 port 46274	2020-10-13 21:24:44
134.209.41.198	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-10-13T01:15:06Z and 2020-10-13T01:21:20Z	2020-10-13 12:51:22
134.209.41.198	attackbots	Oct 12 20:43:28 ip-172-31-42-142 sshd\[20930\]: Invalid user angelo from 134.209.41.198\ Oct 12 20:43:29 ip-172-31-42-142 sshd\[20930\]: Failed password for invalid user angelo from 134.209.41.198 port 38844 ssh2\ Oct 12 20:46:37 ip-172-31-42-142 sshd\[20940\]: Invalid user ei from 134.209.41.198\ Oct 12 20:46:39 ip-172-31-42-142 sshd\[20940\]: Failed password for invalid user ei from 134.209.41.198 port 44534 ssh2\ Oct 12 20:49:53 ip-172-31-42-142 sshd\[20949\]: Failed password for root from 134.209.41.198 port 50218 ssh2\	2020-10-13 05:39:14
134.209.41.198	attackbotsspam	Sep 13 11:31:51 game-panel sshd[2836]: Failed password for root from 134.209.41.198 port 60160 ssh2 Sep 13 11:35:21 game-panel sshd[3023]: Failed password for root from 134.209.41.198 port 36980 ssh2	2020-09-13 22:06:28
134.209.41.198	attack	Sep 13 06:46:51 piServer sshd[29283]: Failed password for root from 134.209.41.198 port 45108 ssh2 Sep 13 06:51:06 piServer sshd[29628]: Failed password for root from 134.209.41.198 port 32778 ssh2 ...	2020-09-13 14:01:21
134.209.41.198	attackspam	Sep 12 23:27:08 cp sshd[20608]: Failed password for root from 134.209.41.198 port 34222 ssh2 Sep 12 23:31:39 cp sshd[22993]: Failed password for root from 134.209.41.198 port 38372 ssh2 Sep 12 23:33:05 cp sshd[23862]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.41.198	2020-09-13 05:46:27
134.209.41.198	attackbotsspam	Sep 3 22:33:10 localhost sshd[1637898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.41.198 user=root Sep 3 22:33:12 localhost sshd[1637898]: Failed password for root from 134.209.41.198 port 35330 ssh2 ...	2020-09-04 00:22:24
134.209.41.198	attack	Port Scan detected from 134.209.41.198 (US/United States/California/Bakersfield/-). 4 hits in the last 250 seconds	2020-09-03 15:50:41
134.209.41.198	attackbotsspam	(sshd) Failed SSH login from 134.209.41.198 (US/United States/-): 5 in the last 3600 secs	2020-09-03 07:59:04
134.209.41.198	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-31T12:28:04Z and 2020-08-31T12:34:49Z	2020-08-31 23:31:07
134.209.41.198	attack	2020-08-24T20:18:58+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-08-25 06:05:34
134.209.41.198	attackspam	Jul 29 05:34:40 hcbbdb sshd\[16752\]: Invalid user lcx from 134.209.41.198 Jul 29 05:34:40 hcbbdb sshd\[16752\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.41.198 Jul 29 05:34:42 hcbbdb sshd\[16752\]: Failed password for invalid user lcx from 134.209.41.198 port 47312 ssh2 Jul 29 05:38:47 hcbbdb sshd\[17209\]: Invalid user jp from 134.209.41.198 Jul 29 05:38:47 hcbbdb sshd\[17209\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.41.198	2020-07-29 14:00:57
134.209.41.198	attackspambots	Exploited Host.	2020-07-26 03:15:43
134.209.41.198	attackbots	Jul 22 19:57:54 ns382633 sshd\[2081\]: Invalid user lui from 134.209.41.198 port 38644 Jul 22 19:57:54 ns382633 sshd\[2081\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.41.198 Jul 22 19:57:57 ns382633 sshd\[2081\]: Failed password for invalid user lui from 134.209.41.198 port 38644 ssh2 Jul 22 20:09:23 ns382633 sshd\[4090\]: Invalid user candelaria from 134.209.41.198 port 37068 Jul 22 20:09:23 ns382633 sshd\[4090\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.41.198	2020-07-23 04:03:17
134.209.41.198	attack	Jul 11 14:49:42 ws26vmsma01 sshd[207105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.41.198 Jul 11 14:49:43 ws26vmsma01 sshd[207105]: Failed password for invalid user test from 134.209.41.198 port 54670 ssh2 ...	2020-07-12 00:03:15

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.4.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25779
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.4.129.			IN	A

;; AUTHORITY SECTION:
.			457	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102100 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 21 23:08:01 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 129.4.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 129.4.209.134.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
190.16.102.150	attack	SSH Invalid Login	2020-06-18 06:41:45
160.16.137.121	attack	Invalid user q3server from 160.16.137.121 port 37230	2020-06-18 06:26:32
193.228.91.103	attack	Jun 17 06:41:18 : SSH login attempts with invalid user	2020-06-18 06:22:31
113.172.141.215	attackbotsspam	Invalid user admin from 113.172.141.215 port 49659	2020-06-18 06:07:45
128.199.217.104	attack	Invalid user santosh from 128.199.217.104 port 60215	2020-06-18 06:05:08
3.230.143.72	attackbotsspam	SASL PLAIN auth failed: ruser=...	2020-06-18 06:19:37
106.13.146.59	attack	$f2bV_matches	2020-06-18 06:10:28
63.250.33.231	attackbotsspam	Invalid user mji from 63.250.33.231 port 36776	2020-06-18 06:13:24
139.199.84.186	attack	Invalid user phpmyadmin from 139.199.84.186 port 62188	2020-06-18 06:04:42
186.4.233.17	attackspambots	Invalid user 6 from 186.4.233.17 port 37706	2020-06-18 06:24:18
125.213.128.175	attack	Jun 18 01:41:11 journals sshd\[106910\]: Invalid user ky from 125.213.128.175 Jun 18 01:41:11 journals sshd\[106910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.213.128.175 Jun 18 01:41:14 journals sshd\[106910\]: Failed password for invalid user ky from 125.213.128.175 port 37034 ssh2 Jun 18 01:43:53 journals sshd\[107213\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.213.128.175 user=root Jun 18 01:43:56 journals sshd\[107213\]: Failed password for root from 125.213.128.175 port 55164 ssh2 ...	2020-06-18 06:45:35
113.172.181.79	attack	Invalid user admin from 113.172.181.79 port 42107	2020-06-18 06:47:01
121.101.133.37	attackbotsspam	137. On Jun 17 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 121.101.133.37.	2020-06-18 06:46:27
58.87.97.166	attackbots	Invalid user test from 58.87.97.166 port 47836	2020-06-18 06:33:22
187.188.175.60	attackspambots	Invalid user 6 from 187.188.175.60 port 53276	2020-06-18 06:42:20

最近上报的IP列表

184.56.131.101	124.243.38.84	8.124.194.83	189.78.59.225
222.186.130.42	194.67.194.146	123.52.16.178	49.112.190.25
178.175.132.165	102.164.151.223	212.156.77.122	211.72.23.87
88.118.215.157	182.185.158.12	5.141.128.208	117.91.249.101
171.109.158.61	113.11.37.175	218.19.136.84	18.189.170.233