134.209.75.77 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Dec 8 13:34:37 plusreed sshd[6081]: Invalid user watte from 134.209.75.77 ...	2019-12-09 02:45:57
attackspambots	Nov 30 21:19:03 ovpn sshd[16584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.75.77 user=r.r Nov 30 21:19:05 ovpn sshd[16584]: Failed password for r.r from 134.209.75.77 port 48176 ssh2 Nov 30 21:19:05 ovpn sshd[16584]: Received disconnect from 134.209.75.77 port 48176:11: Bye Bye [preauth] Nov 30 21:19:05 ovpn sshd[16584]: Disconnected from 134.209.75.77 port 48176 [preauth] Nov 30 21:41:17 ovpn sshd[22078]: Invalid user goverment from 134.209.75.77 Nov 30 21:41:17 ovpn sshd[22078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.75.77 Nov 30 21:41:20 ovpn sshd[22078]: Failed password for invalid user goverment from 134.209.75.77 port 45932 ssh2 Nov 30 21:41:20 ovpn sshd[22078]: Received disconnect from 134.209.75.77 port 45932:11: Bye Bye [preauth] Nov 30 21:41:20 ovpn sshd[22078]: Disconnected from 134.209.75.77 port 45932 [preauth] ........ ----------------------------------------------- https://www.block	2019-12-01 06:46:19

类型

评论内容

时间

attack

Dec  8 13:34:37 plusreed sshd[6081]: Invalid user watte from 134.209.75.77
...

2019-12-09 02:45:57

attackspambots

Nov 30 21:19:03 ovpn sshd[16584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.75.77  user=r.r
Nov 30 21:19:05 ovpn sshd[16584]: Failed password for r.r from 134.209.75.77 port 48176 ssh2
Nov 30 21:19:05 ovpn sshd[16584]: Received disconnect from 134.209.75.77 port 48176:11: Bye Bye [preauth]
Nov 30 21:19:05 ovpn sshd[16584]: Disconnected from 134.209.75.77 port 48176 [preauth]
Nov 30 21:41:17 ovpn sshd[22078]: Invalid user goverment from 134.209.75.77
Nov 30 21:41:17 ovpn sshd[22078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.75.77
Nov 30 21:41:20 ovpn sshd[22078]: Failed password for invalid user goverment from 134.209.75.77 port 45932 ssh2
Nov 30 21:41:20 ovpn sshd[22078]: Received disconnect from 134.209.75.77 port 45932:11: Bye Bye [preauth]
Nov 30 21:41:20 ovpn sshd[22078]: Disconnected from 134.209.75.77 port 45932 [preauth]

........
-----------------------------------------------
https://www.block

2019-12-01 06:46:19

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.75.77
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59562
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.75.77.			IN	A

;; AUTHORITY SECTION:
.			497	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019113002 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 01 06:46:16 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

77.75.209.134.in-addr.arpa domain name pointer testepm.ailti.com.br.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
77.75.209.134.in-addr.arpa	name = testepm.ailti.com.br.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
13.231.198.126	attack	Aug 20 08:57:45 lcdev sshd\[16085\]: Invalid user susanne from 13.231.198.126 Aug 20 08:57:45 lcdev sshd\[16085\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-13-231-198-126.ap-northeast-1.compute.amazonaws.com Aug 20 08:57:46 lcdev sshd\[16085\]: Failed password for invalid user susanne from 13.231.198.126 port 10902 ssh2 Aug 20 09:02:17 lcdev sshd\[16499\]: Invalid user log from 13.231.198.126 Aug 20 09:02:17 lcdev sshd\[16499\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-13-231-198-126.ap-northeast-1.compute.amazonaws.com	2019-08-21 03:25:58
43.227.66.159	attackspambots	Aug 20 09:50:25 kapalua sshd\[8193\]: Invalid user march from 43.227.66.159 Aug 20 09:50:25 kapalua sshd\[8193\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.227.66.159 Aug 20 09:50:27 kapalua sshd\[8193\]: Failed password for invalid user march from 43.227.66.159 port 51194 ssh2 Aug 20 09:54:48 kapalua sshd\[8615\]: Invalid user dorine from 43.227.66.159 Aug 20 09:54:48 kapalua sshd\[8615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.227.66.159	2019-08-21 04:09:10
80.233.63.70	attack	Probing for vulnerable services	2019-08-21 04:01:32
98.221.132.191	attackbotsspam	Aug 20 14:33:37 ny01 sshd[32058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.221.132.191 Aug 20 14:33:39 ny01 sshd[32058]: Failed password for invalid user alimov from 98.221.132.191 port 42534 ssh2 Aug 20 14:38:04 ny01 sshd[32508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.221.132.191	2019-08-21 03:54:48
203.121.116.11	attackbotsspam	SSH Brute-Forcing (ownc)	2019-08-21 04:23:37
81.93.88.31	attackbots	2019-08-20 09:50:19 H=(lumpress.it) [81.93.88.31]:50105 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/81.93.88.31) 2019-08-20 09:50:20 H=(lumpress.it) [81.93.88.31]:50105 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/81.93.88.31) 2019-08-20 09:50:22 H=(lumpress.it) [81.93.88.31]:50105 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/81.93.88.31) ...	2019-08-21 04:03:06
152.249.113.13	attackspambots	Automatic report - Port Scan Attack	2019-08-21 03:55:07
114.220.10.53	attackbotsspam	SASL broute force	2019-08-21 04:03:46
49.88.112.85	attack	Aug 21 00:56:26 vibhu-HP-Z238-Microtower-Workstation sshd\[1255\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.85 user=root Aug 21 00:56:27 vibhu-HP-Z238-Microtower-Workstation sshd\[1255\]: Failed password for root from 49.88.112.85 port 55342 ssh2 Aug 21 00:56:35 vibhu-HP-Z238-Microtower-Workstation sshd\[1257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.85 user=root Aug 21 00:56:37 vibhu-HP-Z238-Microtower-Workstation sshd\[1257\]: Failed password for root from 49.88.112.85 port 12874 ssh2 Aug 21 00:56:44 vibhu-HP-Z238-Microtower-Workstation sshd\[1263\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.85 user=root ...	2019-08-21 03:30:43
106.12.28.203	attackspambots	Aug 20 21:22:30 srv206 sshd[7090]: Invalid user gutenberg from 106.12.28.203 Aug 20 21:22:30 srv206 sshd[7090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.28.203 Aug 20 21:22:30 srv206 sshd[7090]: Invalid user gutenberg from 106.12.28.203 Aug 20 21:22:32 srv206 sshd[7090]: Failed password for invalid user gutenberg from 106.12.28.203 port 33302 ssh2 ...	2019-08-21 03:49:42
91.134.240.73	attack	Aug 20 21:39:36 vps691689 sshd[3628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.240.73 Aug 20 21:39:38 vps691689 sshd[3628]: Failed password for invalid user gpu from 91.134.240.73 port 59722 ssh2 ...	2019-08-21 03:55:52
178.128.242.233	attackspambots	Aug 20 05:18:50 friendsofhawaii sshd\[25093\]: Invalid user stef from 178.128.242.233 Aug 20 05:18:50 friendsofhawaii sshd\[25093\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.242.233 Aug 20 05:18:52 friendsofhawaii sshd\[25093\]: Failed password for invalid user stef from 178.128.242.233 port 58810 ssh2 Aug 20 05:22:59 friendsofhawaii sshd\[25507\]: Invalid user al from 178.128.242.233 Aug 20 05:22:59 friendsofhawaii sshd\[25507\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.242.233	2019-08-21 03:54:08
202.126.208.122	attackbots	Aug 20 18:39:12 [munged] sshd[29932]: Invalid user cyrus from 202.126.208.122 port 54766 Aug 20 18:39:12 [munged] sshd[29932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.126.208.122	2019-08-21 03:42:03
132.232.128.93	attackbotsspam	port scan and connect, tcp 6379 (redis)	2019-08-21 04:17:04
115.146.126.209	attack	2019-08-20T20:04:16.811916abusebot-6.cloudsearch.cf sshd\[10358\]: Invalid user zini from 115.146.126.209 port 38654	2019-08-21 04:21:33

最近上报的IP列表

1.52.211.223	109.121.136.19	167.71.135.207	49.68.94.209
213.186.35.114	106.54.53.10	51.15.161.203	27.221.22.162
91.201.246.180	82.49.115.58	101.109.250.73	36.68.111.23
63.81.87.165	49.69.55.37	114.5.241.252	176.115.93.53
125.86.186.220	189.210.117.213	189.210.114.135	84.241.4.184