134.209.5.144 - IPInfo

基本信息:

城市(city): Santa Clara

省份(region): California

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
134.209.57.3	attackspambots	2020-10-12T03:45:26.084604hostname sshd[43664]: Failed password for root from 134.209.57.3 port 35410 ssh2 ...	2020-10-13 02:20:12
134.209.57.3	attackbotsspam	(sshd) Failed SSH login from 134.209.57.3 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 12 04:38:53 optimus sshd[16215]: Invalid user ashlyn from 134.209.57.3 Oct 12 04:38:53 optimus sshd[16215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.57.3 Oct 12 04:38:55 optimus sshd[16215]: Failed password for invalid user ashlyn from 134.209.57.3 port 56552 ssh2 Oct 12 04:42:27 optimus sshd[17449]: Invalid user svn from 134.209.57.3 Oct 12 04:42:27 optimus sshd[17449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.57.3	2020-10-12 17:45:39
134.209.58.167	attackbots	134.209.58.167 - - [23/Sep/2020:15:07:23 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.58.167 - - [23/Sep/2020:15:18:57 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-23 22:44:29
134.209.58.167	attack	134.209.58.167 - - [23/Sep/2020:06:53:32 +0100] "POST /wp-login.php HTTP/1.1" 200 2346 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.58.167 - - [23/Sep/2020:06:53:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2325 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.58.167 - - [23/Sep/2020:06:53:44 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-23 15:01:10
134.209.58.167	attackspambots	134.209.58.167 - - [22/Sep/2020:19:17:55 +0100] "POST /wp-login.php HTTP/1.1" 200 2252 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.58.167 - - [22/Sep/2020:19:18:07 +0100] "POST /wp-login.php HTTP/1.1" 200 2183 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.58.167 - - [22/Sep/2020:19:18:13 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-23 06:53:12
134.209.57.3	attackbotsspam	2020-09-19T10:47:58.4387311495-001 sshd[18664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.57.3 user=root 2020-09-19T10:48:00.6047531495-001 sshd[18664]: Failed password for root from 134.209.57.3 port 43112 ssh2 2020-09-19T10:50:26.0007301495-001 sshd[18775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.57.3 user=root 2020-09-19T10:50:28.0133451495-001 sshd[18775]: Failed password for root from 134.209.57.3 port 54356 ssh2 2020-09-19T10:53:00.3549651495-001 sshd[18885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.57.3 user=root 2020-09-19T10:53:01.9809031495-001 sshd[18885]: Failed password for root from 134.209.57.3 port 37378 ssh2 ...	2020-09-19 23:36:44
134.209.57.3	attackspambots	2020-09-19T01:26:02+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-09-19 15:26:49
134.209.57.3	attack	Failed password for root from 134.209.57.3 port 44252	2020-09-19 07:00:34
134.209.57.3	attackbots	Repeated brute force against a port	2020-09-16 22:05:53
134.209.57.3	attackbots	2020-09-16T01:08:36.1587691495-001 sshd[43919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.57.3 user=root 2020-09-16T01:08:37.7959481495-001 sshd[43919]: Failed password for root from 134.209.57.3 port 57974 ssh2 2020-09-16T01:12:52.1092581495-001 sshd[44120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.57.3 user=root 2020-09-16T01:12:54.5591831495-001 sshd[44120]: Failed password for root from 134.209.57.3 port 42250 ssh2 2020-09-16T01:17:01.9618281495-001 sshd[44286]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.57.3 user=root 2020-09-16T01:17:03.2579031495-001 sshd[44286]: Failed password for root from 134.209.57.3 port 54748 ssh2 ...	2020-09-16 14:35:37
134.209.57.3	attackbots	Sep 15 22:06:40 [-] sshd[29290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.57.3 user=root Sep 15 22:06:41 [-] sshd[29290]: Failed password for invalid user root from 134.209.57.3 port 54272 ssh2 Sep 15 22:11:33 [-] sshd[29604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.57.3 user=root	2020-09-16 06:25:51
134.209.57.3	attackspam	Sep 15 13:01:41 ovpn sshd\[13295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.57.3 user=root Sep 15 13:01:44 ovpn sshd\[13295\]: Failed password for root from 134.209.57.3 port 52710 ssh2 Sep 15 13:07:39 ovpn sshd\[14730\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.57.3 user=root Sep 15 13:07:41 ovpn sshd\[14730\]: Failed password for root from 134.209.57.3 port 50116 ssh2 Sep 15 13:12:27 ovpn sshd\[15900\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.57.3 user=root	2020-09-15 21:33:52
134.209.57.3	attack	pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.57.3 user=root Failed password for root from 134.209.57.3 port 59196 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.57.3 user=root Failed password for root from 134.209.57.3 port 41560 ssh2 Invalid user shiori from 134.209.57.3 port 52148	2020-09-15 13:31:59
134.209.57.3	attackspam	Sep 14 19:19:58 ip-172-31-16-56 sshd\[1326\]: Invalid user admin from 134.209.57.3\ Sep 14 19:20:00 ip-172-31-16-56 sshd\[1326\]: Failed password for invalid user admin from 134.209.57.3 port 34914 ssh2\ Sep 14 19:24:10 ip-172-31-16-56 sshd\[1448\]: Failed password for root from 134.209.57.3 port 49092 ssh2\ Sep 14 19:28:16 ip-172-31-16-56 sshd\[1536\]: Invalid user first from 134.209.57.3\ Sep 14 19:28:17 ip-172-31-16-56 sshd\[1536\]: Failed password for invalid user first from 134.209.57.3 port 35048 ssh2\	2020-09-15 05:44:07
134.209.57.3	attackbotsspam	134.209.57.3 (US/United States/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 11 09:39:17 jbs1 sshd[27037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.171.133.10 user=root Sep 11 09:22:32 jbs1 sshd[21317]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.57.3 user=root Sep 11 09:41:25 jbs1 sshd[27782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.1.207 user=root Sep 11 09:28:36 jbs1 sshd[23550]: Failed password for root from 51.255.35.41 port 33340 ssh2 Sep 11 09:39:19 jbs1 sshd[27037]: Failed password for root from 190.171.133.10 port 36338 ssh2 Sep 11 09:22:34 jbs1 sshd[21317]: Failed password for root from 134.209.57.3 port 35080 ssh2 IP Addresses Blocked: 190.171.133.10 (CL/Chile/-)	2020-09-12 02:27:14

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.5.144
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36057
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.5.144.			IN	A

;; AUTHORITY SECTION:
.			3234	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040400 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu Apr 04 23:35:59 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 144.5.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 144.5.209.134.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
182.74.179.66	attackspam	TCP (SYN) 182.74.179.66:45580 -> port 445, len 44	2020-09-28 20:22:30
113.161.160.8	attack	TCP ports : 445 / 1433	2020-09-28 20:31:34
51.210.107.40	attack	SSH bruteforce	2020-09-28 20:58:49
85.185.149.28	attack	Invalid user guest from 85.185.149.28 port 36696	2020-09-28 20:34:52
46.185.138.163	attackspambots	Invalid user test from 46.185.138.163 port 51782	2020-09-28 20:43:42
43.226.238.12	attackbotsspam	SSH login attempts.	2020-09-28 21:01:24
23.224.245.199	attack	Sep 28 14:42:42 PorscheCustomer sshd[27045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.224.245.199 Sep 28 14:42:44 PorscheCustomer sshd[27045]: Failed password for invalid user ts from 23.224.245.199 port 60614 ssh2 Sep 28 14:47:33 PorscheCustomer sshd[27121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.224.245.199 ...	2020-09-28 20:48:33
187.188.90.141	attack	Bruteforce detected by fail2ban	2020-09-28 20:37:43
182.61.3.157	attack	Invalid user teste from 182.61.3.157 port 58650	2020-09-28 20:38:14
106.12.199.30	attack	Invalid user claudio from 106.12.199.30 port 41208	2020-09-28 20:44:48
45.145.185.207	attackspambots	Sep 28 09:41:54 OPSO sshd\[21341\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.145.185.207 user=root Sep 28 09:41:57 OPSO sshd\[21341\]: Failed password for root from 45.145.185.207 port 57416 ssh2 Sep 28 09:43:33 OPSO sshd\[21725\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.145.185.207 user=root Sep 28 09:43:35 OPSO sshd\[21725\]: Failed password for root from 45.145.185.207 port 34486 ssh2 Sep 28 09:45:11 OPSO sshd\[22246\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.145.185.207 user=root	2020-09-28 20:37:31
1.186.57.150	attackbotsspam	(sshd) Failed SSH login from 1.186.57.150 (IN/India/sitmng.ac.in): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD	2020-09-28 20:39:53
189.91.7.186	attackspambots	Brute-Force	2020-09-28 20:21:58
193.228.91.105	attack	Sep 28 11:22:01 internal-server-tf sshd\[7650\]: Invalid user oracle from 193.228.91.105Sep 28 11:22:38 internal-server-tf sshd\[7662\]: Invalid user postgres from 193.228.91.105 ...	2020-09-28 20:40:15
118.189.74.228	attackbots	Sep 28 09:30:50 hidden sshd[30219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.189.74.228 Sep 28 09:30:53 hidden sshd[30219]: Failed password for invalid user ark from 118.189.74.228 port 49494 ssh2 Sep 28 09:35:04 hidden sshd[30335]: Invalid user alex from 118.189.74.228 port 44298	2020-09-28 20:31:03

最近上报的IP列表

120.89.106.238	67.26.43.254	170.150.226.106	222.127.23.82
219.144.245.34	201.196.150.22	89.248.171.174	68.183.202.244
218.29.114.151	213.85.31.143	221.210.120.153	79.190.48.166
78.85.205.158	35.239.132.125	79.10.53.113	41.160.85.162
179.228.83.207	103.112.84.4	193.32.161.60	200.233.212.215