134.209.95.4 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	firewall-block, port(s): 53413/udp	2019-07-02 07:40:32

相同子网IP讨论:

IP	类型	评论内容	时间
134.209.95.102	attackspambots	Honeypot attack, port: 4567, PTR: PTR record not found	2020-06-21 07:03:03
134.209.95.125	attackspambots	Port Scan	2020-05-29 23:17:37
134.209.95.125	attackspambots	May 27 13:50:17 debian-2gb-nbg1-2 kernel: \[12839011.829150\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=134.209.95.125 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=8657 PROTO=TCP SPT=50618 DPT=10885 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-28 02:04:44
134.209.95.125	attack	" "	2020-05-24 19:58:56
134.209.95.75	attackbots	Apr 14 08:15:05 prod4 sshd\[27045\]: Failed password for root from 134.209.95.75 port 45262 ssh2 Apr 14 08:15:05 prod4 sshd\[27052\]: Invalid user admin from 134.209.95.75 Apr 14 08:15:07 prod4 sshd\[27052\]: Failed password for invalid user admin from 134.209.95.75 port 51064 ssh2 ...	2020-04-14 14:49:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.95.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20390
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.95.4.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070102 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 02 07:40:27 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 4.95.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 4.95.209.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
41.21.200.254	attack	Sep 24 09:30:43 venus sshd\[5008\]: Invalid user siva from 41.21.200.254 port 55512 Sep 24 09:30:43 venus sshd\[5008\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.21.200.254 Sep 24 09:30:45 venus sshd\[5008\]: Failed password for invalid user siva from 41.21.200.254 port 55512 ssh2 ...	2019-09-24 20:04:24
51.159.17.204	attackspam	Sep 23 20:37:06 sachi sshd\[5373\]: Invalid user vpn from 51.159.17.204 Sep 23 20:37:06 sachi sshd\[5373\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.159.17.204 Sep 23 20:37:08 sachi sshd\[5373\]: Failed password for invalid user vpn from 51.159.17.204 port 58020 ssh2 Sep 23 20:41:22 sachi sshd\[5807\]: Invalid user 12qwaszx from 51.159.17.204 Sep 23 20:41:22 sachi sshd\[5807\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.159.17.204	2019-09-24 20:06:40
94.191.77.31	attack	Sep 23 17:43:32 sachi sshd\[22071\]: Invalid user kim from 94.191.77.31 Sep 23 17:43:32 sachi sshd\[22071\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.77.31 Sep 23 17:43:34 sachi sshd\[22071\]: Failed password for invalid user kim from 94.191.77.31 port 52552 ssh2 Sep 23 17:47:32 sachi sshd\[22437\]: Invalid user allotest from 94.191.77.31 Sep 23 17:47:32 sachi sshd\[22437\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.77.31	2019-09-24 20:16:03
167.71.215.72	attackspam	Sep 24 01:47:33 plusreed sshd[3794]: Invalid user 1122334455 from 167.71.215.72 ...	2019-09-24 19:50:43
5.196.75.47	attack	Sep 24 06:28:19 SilenceServices sshd[30487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.75.47 Sep 24 06:28:21 SilenceServices sshd[30487]: Failed password for invalid user openerp2015 from 5.196.75.47 port 58966 ssh2 Sep 24 06:32:48 SilenceServices sshd[31680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.75.47	2019-09-24 19:54:33
197.248.2.43	attackbotsspam	Sep 24 07:03:26 microserver sshd[44245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.2.43 user=root Sep 24 07:03:28 microserver sshd[44245]: Failed password for root from 197.248.2.43 port 59532 ssh2 Sep 24 07:09:45 microserver sshd[45008]: Invalid user library from 197.248.2.43 port 52016 Sep 24 07:09:45 microserver sshd[45008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.2.43 Sep 24 07:09:47 microserver sshd[45008]: Failed password for invalid user library from 197.248.2.43 port 52016 ssh2 Sep 24 07:22:13 microserver sshd[46850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.2.43 user=root Sep 24 07:22:15 microserver sshd[46850]: Failed password for root from 197.248.2.43 port 37005 ssh2 Sep 24 07:28:35 microserver sshd[47564]: Invalid user bash from 197.248.2.43 port 57735 Sep 24 07:28:35 microserver sshd[47564]: pam_unix(sshd:auth): authentication fail	2019-09-24 20:13:54
66.55.71.146	attackbotsspam	Sep 24 15:25:55 webhost01 sshd[849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.55.71.146 Sep 24 15:25:57 webhost01 sshd[849]: Failed password for invalid user koln from 66.55.71.146 port 50200 ssh2 ...	2019-09-24 19:56:31
78.100.18.81	attackbots	Sep 24 07:07:25 taivassalofi sshd[104117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.100.18.81 Sep 24 07:07:27 taivassalofi sshd[104117]: Failed password for invalid user password321 from 78.100.18.81 port 46573 ssh2 ...	2019-09-24 20:03:31
129.204.22.64	attackbots	$f2bV_matches	2019-09-24 19:42:34
139.59.105.141	attackspam	Sep 24 12:42:04 ns3110291 sshd\[28023\]: Invalid user potsdam from 139.59.105.141 Sep 24 12:42:04 ns3110291 sshd\[28023\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.105.141 Sep 24 12:42:06 ns3110291 sshd\[28023\]: Failed password for invalid user potsdam from 139.59.105.141 port 49710 ssh2 Sep 24 12:46:37 ns3110291 sshd\[28472\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.105.141 user=root Sep 24 12:46:40 ns3110291 sshd\[28472\]: Failed password for root from 139.59.105.141 port 34738 ssh2 ...	2019-09-24 19:58:34
129.204.109.127	attack	Sep 24 05:48:11 ns41 sshd[896]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.109.127	2019-09-24 19:47:32
86.34.182.50	attackspam	SSH Brute-Force reported by Fail2Ban	2019-09-24 20:10:07
46.101.127.49	attackspam	Sep 24 13:20:23 nextcloud sshd\[28486\]: Invalid user ftp from 46.101.127.49 Sep 24 13:20:23 nextcloud sshd\[28486\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.127.49 Sep 24 13:20:25 nextcloud sshd\[28486\]: Failed password for invalid user ftp from 46.101.127.49 port 38120 ssh2 ...	2019-09-24 19:45:36
89.42.31.221	attack	Sep 23 21:30:52 web1 sshd\[5233\]: Invalid user clark from 89.42.31.221 Sep 23 21:30:52 web1 sshd\[5233\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.42.31.221 Sep 23 21:30:53 web1 sshd\[5233\]: Failed password for invalid user clark from 89.42.31.221 port 57718 ssh2 Sep 23 21:37:22 web1 sshd\[5859\]: Invalid user alex from 89.42.31.221 Sep 23 21:37:22 web1 sshd\[5859\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.42.31.221	2019-09-24 20:17:38
177.92.60.116	attack	Sep 24 06:09:32 nandi sshd[3212]: reveeclipse mapping checking getaddrinfo for 116.60.92.177.dynamic.copel.net [177.92.60.116] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 24 06:09:32 nandi sshd[3212]: Invalid user pi from 177.92.60.116 Sep 24 06:09:32 nandi sshd[3209]: reveeclipse mapping checking getaddrinfo for 116.60.92.177.dynamic.copel.net [177.92.60.116] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 24 06:09:32 nandi sshd[3209]: Invalid user pi from 177.92.60.116 Sep 24 06:09:32 nandi sshd[3212]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.92.60.116 Sep 24 06:09:32 nandi sshd[3209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.92.60.116 Sep 24 06:09:34 nandi sshd[3212]: Failed password for invalid user pi from 177.92.60.116 port 10650 ssh2 Sep 24 06:09:34 nandi sshd[3209]: Failed password for invalid user pi from 177.92.60.116 port 32996 ssh2 Sep 24 06:09:35 nandi sshd[3209]: Co........ -------------------------------	2019-09-24 19:57:56

最近上报的IP列表

178.128.27.125	208.80.162.121	177.236.56.13	92.112.24.188
203.110.90.195	179.49.57.154	165.22.93.91	129.211.52.70
49.236.214.79	217.31.39.82	34.201.172.84	185.101.160.67
95.192.67.236	178.128.3.152	215.34.138.155	223.141.77.133
93.224.3.215	192.202.199.222	119.127.110.21	150.133.141.60