134.209.85.8 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Netherlands

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	13.05.2020 14:35:46 - Login Fail on hMailserver Detected by ELinOX-hMail-A2F	2020-05-14 00:43:52

相同子网IP讨论:

IP	类型	评论内容	时间
134.209.85.29	attackbots	22/tcp 22/tcp [2019-09-19/20]2pkt	2019-09-21 07:08:13
134.209.85.41	attackspambots	Invalid user admin from 134.209.85.41 port 43394	2019-08-23 22:20:45

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.85.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36401
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.85.8.			IN	A

;; AUTHORITY SECTION:
.			195	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051300 1800 900 604800 86400

;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 14 00:43:48 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 8.85.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 8.85.209.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
138.99.80.106	attack	May 20 17:44:44 mail.srvfarm.net postfix/smtps/smtpd[1510924]: warning: unknown[138.99.80.106]: SASL PLAIN authentication failed: May 20 17:44:45 mail.srvfarm.net postfix/smtps/smtpd[1510924]: lost connection after AUTH from unknown[138.99.80.106] May 20 17:48:19 mail.srvfarm.net postfix/smtpd[1514143]: warning: unknown[138.99.80.106]: SASL PLAIN authentication failed: May 20 17:48:19 mail.srvfarm.net postfix/smtpd[1514143]: lost connection after AUTH from unknown[138.99.80.106] May 20 17:52:17 mail.srvfarm.net postfix/smtps/smtpd[1508891]: warning: unknown[138.99.80.106]: SASL PLAIN authentication failed:	2020-05-21 00:56:41
188.92.213.198	attackbotsspam	May 20 17:50:00 mail.srvfarm.net postfix/smtpd[1512864]: warning: unknown[188.92.213.198]: SASL PLAIN authentication failed: May 20 17:50:00 mail.srvfarm.net postfix/smtpd[1512864]: lost connection after AUTH from unknown[188.92.213.198] May 20 17:53:34 mail.srvfarm.net postfix/smtps/smtpd[1510940]: warning: unknown[188.92.213.198]: SASL PLAIN authentication failed: May 20 17:53:34 mail.srvfarm.net postfix/smtps/smtpd[1510940]: lost connection after AUTH from unknown[188.92.213.198] May 20 17:54:44 mail.srvfarm.net postfix/smtpd[1509542]: warning: unknown[188.92.213.198]: SASL PLAIN authentication failed:	2020-05-21 00:52:38
24.38.95.46	attackbotsspam	Lines containing failures of 24.38.95.46 May 20 17:52:48 www sshd[4212]: Invalid user wmr from 24.38.95.46 port 14767 May 20 17:52:48 www sshd[4212]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.38.95.46 May 20 17:52:50 www sshd[4212]: Failed password for invalid user wmr from 24.38.95.46 port 14767 ssh2 May 20 17:52:50 www sshd[4212]: Received disconnect from 24.38.95.46 port 14767:11: Bye Bye [preauth] May 20 17:52:50 www sshd[4212]: Disconnected from invalid user wmr 24.38.95.46 port 14767 [preauth] May 20 17:56:36 www sshd[4662]: Invalid user dof from 24.38.95.46 port 50760 May 20 17:56:36 www sshd[4662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.38.95.46 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=24.38.95.46	2020-05-21 00:31:17
222.186.15.115	attackbots	Fail2Ban Ban Triggered (2)	2020-05-21 00:43:24
63.83.75.74	attack	May 20 17:56:39 mail.srvfarm.net postfix/smtpd[1512554]: NOQUEUE: reject: RCPT from unknown[63.83.75.74]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= May 20 17:57:24 mail.srvfarm.net postfix/smtpd[1512862]: NOQUEUE: reject: RCPT from unknown[63.83.75.74]: 554 5.7.1 Service unavailable; Client host [63.83.75.74] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?63.83.75.74; from= to= proto=ESMTP helo= May 20 17:57:24 mail.srvfarm.net postfix/smtpd[1514146]: NOQUEUE: reject: RCPT from unknown[63.83.75.74]: 554 5.7.1 Service unavailable; Client host [63.83.75.74] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?63.83.75.74; from= to= proto=ESMTP he	2020-05-21 01:02:20
203.147.76.146	attackbots	Dovecot Invalid User Login Attempt.	2020-05-21 01:11:58
222.186.175.23	attack	May 20 19:10:23 vps639187 sshd\[26998\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.23 user=root May 20 19:10:25 vps639187 sshd\[26998\]: Failed password for root from 222.186.175.23 port 55534 ssh2 May 20 19:10:27 vps639187 sshd\[26998\]: Failed password for root from 222.186.175.23 port 55534 ssh2 ...	2020-05-21 01:17:43
191.53.195.69	attackspam	May 20 17:47:54 mail.srvfarm.net postfix/smtpd[1514145]: warning: unknown[191.53.195.69]: SASL PLAIN authentication failed: May 20 17:47:54 mail.srvfarm.net postfix/smtpd[1514145]: lost connection after AUTH from unknown[191.53.195.69] May 20 17:49:33 mail.srvfarm.net postfix/smtps/smtpd[1509531]: warning: unknown[191.53.195.69]: SASL PLAIN authentication failed: May 20 17:52:16 mail.srvfarm.net postfix/smtps/smtpd[1510931]: warning: unknown[191.53.195.69]: SASL PLAIN authentication failed: May 20 17:52:17 mail.srvfarm.net postfix/smtps/smtpd[1510931]: lost connection after AUTH from unknown[191.53.195.69]	2020-05-21 00:51:37
187.111.36.144	attack	May 20 17:47:25 mail.srvfarm.net postfix/smtpd[1514146]: warning: unknown[187.111.36.144]: SASL PLAIN authentication failed: May 20 17:47:26 mail.srvfarm.net postfix/smtpd[1514146]: lost connection after AUTH from unknown[187.111.36.144] May 20 17:48:46 mail.srvfarm.net postfix/smtpd[1512861]: warning: unknown[187.111.36.144]: SASL PLAIN authentication failed: May 20 17:48:46 mail.srvfarm.net postfix/smtpd[1512861]: lost connection after AUTH from unknown[187.111.36.144] May 20 17:49:20 mail.srvfarm.net postfix/smtpd[1512878]: warning: unknown[187.111.36.144]: SASL PLAIN authentication failed:	2020-05-21 01:04:35
194.31.244.42	attackspam	firewall-block, port(s): 5250/tcp	2020-05-21 00:47:27
211.252.87.97	attack	May 20 18:05:45 jane sshd[26805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.252.87.97 May 20 18:05:47 jane sshd[26805]: Failed password for invalid user osx from 211.252.87.97 port 42960 ssh2 ...	2020-05-21 00:44:33
162.243.142.72	attackbotsspam	firewall-block, port(s): 7574/tcp	2020-05-21 01:07:14
213.233.179.200	attackspam	"Found User-Agent associated with security scanner - Matched Data: zgrab found within REQUEST_HEADERS:User-Agent: mozilla/5.0 zgrab/0.x"	2020-05-21 00:49:47
177.190.88.230	attackbots	May 20 17:37:10 mail.srvfarm.net postfix/smtps/smtpd[1509545]: warning: 177-190-88-230.adsnet-telecom.net.br[177.190.88.230]: SASL PLAIN authentication failed: May 20 17:44:44 mail.srvfarm.net postfix/smtpd[1512880]: warning: 177-190-88-230.adsnet-telecom.net.br[177.190.88.230]: SASL PLAIN authentication failed: May 20 17:44:45 mail.srvfarm.net postfix/smtpd[1512880]: lost connection after AUTH from 177-190-88-230.adsnet-telecom.net.br[177.190.88.230] May 20 17:45:41 mail.srvfarm.net postfix/smtps/smtpd[1512857]: warning: 177-190-88-230.adsnet-telecom.net.br[177.190.88.230]: SASL PLAIN authentication failed: May 20 17:45:42 mail.srvfarm.net postfix/smtps/smtpd[1512857]: lost connection after AUTH from 177-190-88-230.adsnet-telecom.net.br[177.190.88.230]	2020-05-21 01:06:20
51.178.16.172	attackbotsspam	May 20 12:29:39 ny01 sshd[21918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.16.172 May 20 12:29:40 ny01 sshd[21918]: Failed password for invalid user uey from 51.178.16.172 port 36368 ssh2 May 20 12:31:36 ny01 sshd[22147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.16.172	2020-05-21 00:47:14

最近上报的IP列表

103.207.36.177	101.142.17.227	113.173.254.64	115.58.199.230
113.163.179.3	27.72.101.134	116.55.117.204	222.252.50.237
151.26.94.18	14.182.229.11	197.238.61.162	212.119.45.191
177.205.131.217	168.121.218.188	35.242.230.219	123.185.92.85
56.225.250.29	110.137.101.75	72.173.243.135	122.118.96.182