134.236.107.39

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): CAT Telecom Public Company Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-04 21:34:26,663 INFO [amun_request_handler] PortScan Detected on Port: 445 (134.236.107.39)	2019-07-05 10:38:01

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.236.107.39
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56263
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.236.107.39.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070401 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 05 10:37:54 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 39.107.236.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 39.107.236.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
46.38.145.5	attack	2020-06-30T10:04:15.331270linuxbox-skyline auth[400734]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=grad-bot rhost=46.38.145.5 ...	2020-07-01 01:14:41
165.227.51.249	attack	Brute-force attempt banned	2020-07-01 00:50:38
69.243.180.163	attackbots	Jun 30 15:21:18 server2 sshd\[29960\]: Invalid user admin from 69.243.180.163 Jun 30 15:21:20 server2 sshd\[29962\]: User root from c-69-243-180-163.hsd1.il.comcast.net not allowed because not listed in AllowUsers Jun 30 15:21:21 server2 sshd\[29964\]: Invalid user admin from 69.243.180.163 Jun 30 15:21:22 server2 sshd\[29968\]: Invalid user admin from 69.243.180.163 Jun 30 15:21:23 server2 sshd\[29970\]: Invalid user admin from 69.243.180.163 Jun 30 15:21:24 server2 sshd\[29972\]: User apache from c-69-243-180-163.hsd1.il.comcast.net not allowed because not listed in AllowUsers	2020-07-01 00:44:37
62.109.19.125	attackbotsspam	Jun 30 14:18:18 minden010 sshd[15747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.109.19.125 Jun 30 14:18:20 minden010 sshd[15747]: Failed password for invalid user testadmin from 62.109.19.125 port 42834 ssh2 Jun 30 14:21:45 minden010 sshd[17003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.109.19.125 ...	2020-07-01 00:32:49
212.47.241.15	attackspam	Automatic report BANNED IP	2020-07-01 00:43:15
148.70.14.121	attackbotsspam	Unauthorized connection attempt detected from IP address 148.70.14.121 to port 9151	2020-07-01 00:51:30
187.12.167.85	attackbots	Jun 30 14:21:06 ArkNodeAT sshd\[8185\]: Invalid user ubuntu from 187.12.167.85 Jun 30 14:21:06 ArkNodeAT sshd\[8185\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.12.167.85 Jun 30 14:21:08 ArkNodeAT sshd\[8185\]: Failed password for invalid user ubuntu from 187.12.167.85 port 33386 ssh2	2020-07-01 00:49:45
165.22.249.248	attackspambots	SSH Brute-Force attacks	2020-07-01 00:37:21
182.68.116.27	attackspam	Lines containing failures of 182.68.116.27 Jun 30 14:11:55 shared11 sshd[3680]: Did not receive identification string from 182.68.116.27 port 51497 Jun 30 14:11:59 shared11 sshd[3681]: Invalid user noc from 182.68.116.27 port 51833 Jun 30 14:11:59 shared11 sshd[3681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.68.116.27 Jun 30 14:12:01 shared11 sshd[3681]: Failed password for invalid user noc from 182.68.116.27 port 51833 ssh2 Jun 30 14:12:01 shared11 sshd[3681]: Connection closed by invalid user noc 182.68.116.27 port 51833 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=182.68.116.27	2020-07-01 00:55:36
138.68.94.142	attack	Jun 30 16:14:59 scw-tender-jepsen sshd[16406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.94.142 Jun 30 16:15:01 scw-tender-jepsen sshd[16406]: Failed password for invalid user admin from 138.68.94.142 port 38711 ssh2	2020-07-01 01:15:29
5.135.164.201	attackbotsspam	Jun 30 17:54:16 inter-technics sshd[2511]: Invalid user dge from 5.135.164.201 port 60354 Jun 30 17:54:16 inter-technics sshd[2511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.164.201 Jun 30 17:54:16 inter-technics sshd[2511]: Invalid user dge from 5.135.164.201 port 60354 Jun 30 17:54:18 inter-technics sshd[2511]: Failed password for invalid user dge from 5.135.164.201 port 60354 ssh2 Jun 30 17:57:26 inter-technics sshd[2776]: Invalid user hans from 5.135.164.201 port 58844 ...	2020-07-01 00:34:17
106.13.173.137	attackbots	2020-06-30 14:21:13,569 fail2ban.actions: WARNING [ssh] Ban 106.13.173.137	2020-07-01 01:00:46
51.195.53.6	attackbotsspam	Jun 30 15:23:45 localhost sshd\[1288\]: Invalid user stu1 from 51.195.53.6 port 38996 Jun 30 15:23:45 localhost sshd\[1288\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.195.53.6 Jun 30 15:23:47 localhost sshd\[1288\]: Failed password for invalid user stu1 from 51.195.53.6 port 38996 ssh2 ...	2020-07-01 00:46:28
100.14.110.8	attackspam	Jun 30 14:11:29 olgosrv01 sshd[27763]: Invalid user admin from 100.14.110.8 Jun 30 14:11:29 olgosrv01 sshd[27763]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=pool-100-14-110-8.phlapa.fios.verizon.net Jun 30 14:11:31 olgosrv01 sshd[27763]: Failed password for invalid user admin from 100.14.110.8 port 36652 ssh2 Jun 30 14:11:31 olgosrv01 sshd[27763]: Received disconnect from 100.14.110.8: 11: Bye Bye [preauth] Jun 30 14:11:32 olgosrv01 sshd[27765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=pool-100-14-110-8.phlapa.fios.verizon.net user=r.r Jun 30 14:11:34 olgosrv01 sshd[27765]: Failed password for r.r from 100.14.110.8 port 36768 ssh2 Jun 30 14:11:34 olgosrv01 sshd[27765]: Received disconnect from 100.14.110.8: 11: Bye Bye [preauth] Jun 30 14:11:35 olgosrv01 sshd[27767]: Invalid user admin from 100.14.110.8 Jun 30 14:11:35 olgosrv01 sshd[27767]: pam_unix(sshd:auth): authentication........ -------------------------------	2020-07-01 00:32:12
45.227.255.4	attack	2020-06-30T17:44:17.914615mail.broermann.family sshd[23323]: Failed password for invalid user oracle from 45.227.255.4 port 6270 ssh2 2020-06-30T17:44:18.280538mail.broermann.family sshd[23327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.227.255.4 user=root 2020-06-30T17:44:20.031573mail.broermann.family sshd[23327]: Failed password for root from 45.227.255.4 port 42756 ssh2 2020-06-30T17:44:20.562818mail.broermann.family sshd[23331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.227.255.4 user=root 2020-06-30T17:44:22.253590mail.broermann.family sshd[23331]: Failed password for root from 45.227.255.4 port 10768 ssh2 ...	2020-07-01 00:30:41

最近上报的IP列表

185.68.153.36	187.108.44.214	101.101.166.63	168.228.148.146
201.62.75.211	195.201.112.4	103.207.38.157	84.201.163.39
122.152.173.25	84.235.57.61	89.185.74.232	160.215.36.107
75.190.170.236	234.55.157.153	56.167.113.209	228.108.13.31
23.113.248.103	208.58.129.131	203.193.135.51	68.183.174.206