134.255.234.103

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): ACTIVE-SERVERS.COM

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-14 01:11:16

相同子网IP讨论:

IP	类型	评论内容	时间
134.255.234.21	attackspam	Failed password for invalid user blake from 134.255.234.21 port 39890 ssh2	2020-06-30 13:28:58
134.255.234.21	attack	SSH Login Bruteforce	2020-06-17 23:12:51
134.255.234.161	attack	Attempted connection to ports 80, 8080.	2020-05-07 21:38:35
134.255.234.21	attackbotsspam	Tried sshing with brute force.	2020-05-04 23:06:09
134.255.234.125	attackbots	[Wed Mar 11 09:03:35 2020 GMT] Support xxxx.com [URIBL_INV], Subject: xxxx.com #err3/11/2020 9:03:32 - Mail Quota Full. Purge Notice	2020-03-12 02:29:30
134.255.234.21	attackspambots	2020-03-08T08:18:40.767672linuxbox-skyline sshd[41199]: Invalid user finance from 134.255.234.21 port 52630 ...	2020-03-09 00:38:16
134.255.234.21	attack	Dec 23 10:35:17 microserver sshd[37855]: Invalid user abdulrahma from 134.255.234.21 port 50510 Dec 23 10:35:17 microserver sshd[37855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.255.234.21 Dec 23 10:35:19 microserver sshd[37855]: Failed password for invalid user abdulrahma from 134.255.234.21 port 50510 ssh2 Dec 23 10:41:09 microserver sshd[38648]: Invalid user research from 134.255.234.21 port 35530 Dec 23 10:41:09 microserver sshd[38648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.255.234.21 Dec 23 10:52:50 microserver sshd[40244]: Invalid user nfs from 134.255.234.21 port 60472 Dec 23 10:52:50 microserver sshd[40244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.255.234.21 Dec 23 10:52:52 microserver sshd[40244]: Failed password for invalid user nfs from 134.255.234.21 port 60472 ssh2 Dec 23 10:57:49 microserver sshd[40998]: Invalid user schroeder from 134.255.2	2019-12-23 19:10:24
134.255.234.104	attack	CloudCIX Reconnaissance Scan Detected, PTR: rs-zap440620-1.zap-srv.com.	2019-11-06 20:38:49
134.255.234.104	attackbots	CloudCIX Reconnaissance Scan Detected, PTR: rs-zap440620-1.zap-srv.com.	2019-09-30 19:18:07
134.255.234.104	attackspambots	Sep 21 06:20:54 game-panel sshd[22677]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.255.234.104 Sep 21 06:20:57 game-panel sshd[22677]: Failed password for invalid user oracle from 134.255.234.104 port 39560 ssh2 Sep 21 06:23:14 game-panel sshd[22753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.255.234.104	2019-09-21 14:38:08
134.255.234.104	attack	[Aegis] @ 2019-09-09 16:19:18 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-09-10 08:12:49
134.255.234.104	attack	Sep 7 14:32:31 s64-1 sshd[23637]: Failed password for mysql from 134.255.234.104 port 48712 ssh2 Sep 7 14:33:00 s64-1 sshd[23640]: Failed password for mysql from 134.255.234.104 port 40298 ssh2 ...	2019-09-07 23:54:24
134.255.234.104	attackbotsspam	Aug 23 19:44:55 minden010 sshd[22677]: Failed password for root from 134.255.234.104 port 58670 ssh2 Aug 23 19:48:21 minden010 sshd[23924]: Failed password for root from 134.255.234.104 port 54252 ssh2 ...	2019-08-24 01:57:32
134.255.234.104	attack	Invalid user root1 from 134.255.234.104 port 35186	2019-08-23 14:32:09

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.255.234.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9023
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.255.234.103.		IN	A

;; AUTHORITY SECTION:
.			507	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121300 1800 900 604800 86400

;; Query time: 86 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Dec 14 01:11:06 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

103.234.255.134.in-addr.arpa domain name pointer vps-zap393318-1.zap-srv.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
103.234.255.134.in-addr.arpa	name = vps-zap393318-1.zap-srv.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
14.63.194.162	attackbotsspam	Nov 11 12:28:08 OPSO sshd\[7295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.194.162 user=root Nov 11 12:28:10 OPSO sshd\[7295\]: Failed password for root from 14.63.194.162 port 10587 ssh2 Nov 11 12:32:40 OPSO sshd\[8088\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.194.162 user=root Nov 11 12:32:42 OPSO sshd\[8088\]: Failed password for root from 14.63.194.162 port 47589 ssh2 Nov 11 12:37:09 OPSO sshd\[9008\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.194.162 user=root	2019-11-11 22:28:17
118.89.237.20	attackspam	Nov 11 13:19:39 server sshd\[7914\]: Invalid user angel from 118.89.237.20 Nov 11 13:19:39 server sshd\[7914\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.237.20 Nov 11 13:19:41 server sshd\[7914\]: Failed password for invalid user angel from 118.89.237.20 port 43314 ssh2 Nov 11 13:50:20 server sshd\[18135\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.237.20 user=root Nov 11 13:50:22 server sshd\[18135\]: Failed password for root from 118.89.237.20 port 51928 ssh2 ...	2019-11-11 22:32:55
72.38.244.195	attack	POP	2019-11-11 22:46:03
221.148.45.168	attackbots	detected by Fail2Ban	2019-11-11 23:04:45
167.99.187.187	attackbotsspam	167.99.187.187 - - \[11/Nov/2019:15:45:20 +0100\] "POST /wp-login.php HTTP/1.0" 200 4604 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 167.99.187.187 - - \[11/Nov/2019:15:45:27 +0100\] "POST /wp-login.php HTTP/1.0" 200 4410 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 167.99.187.187 - - \[11/Nov/2019:15:45:39 +0100\] "POST /wp-login.php HTTP/1.0" 200 4408 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-11 23:12:30
14.46.58.160	attackspambots	Automatic report - Port Scan Attack	2019-11-11 22:38:48
119.96.227.19	attack	Nov 11 04:57:03 php1 sshd\[31575\]: Invalid user tigresse from 119.96.227.19 Nov 11 04:57:03 php1 sshd\[31575\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.96.227.19 Nov 11 04:57:05 php1 sshd\[31575\]: Failed password for invalid user tigresse from 119.96.227.19 port 44044 ssh2 Nov 11 05:02:39 php1 sshd\[32065\]: Invalid user bbbbbbbbbb from 119.96.227.19 Nov 11 05:02:39 php1 sshd\[32065\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.96.227.19	2019-11-11 23:04:19
146.164.21.68	attack	SSH bruteforce (Triggered fail2ban)	2019-11-11 22:50:37
85.93.20.146	attackspam	191111 3:41:29 \[Warning\] Access denied for user 'root'@'85.93.20.146' \(using password: YES\) 191111 8:05:25 \[Warning\] Access denied for user 'root'@'85.93.20.146' \(using password: YES\) 191111 9:35:14 \[Warning\] Access denied for user 'root'@'85.93.20.146' \(using password: YES\) ...	2019-11-11 23:03:03
78.154.187.134	attack	Automatic report - Banned IP Access	2019-11-11 23:09:30
112.15.38.218	attack	Nov 11 09:08:11 em3 sshd[9041]: Invalid user spanhostnamez from 112.15.38.218 Nov 11 09:08:11 em3 sshd[9041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.15.38.218 Nov 11 09:08:13 em3 sshd[9041]: Failed password for invalid user spanhostnamez from 112.15.38.218 port 41836 ssh2 Nov 11 09:25:52 em3 sshd[9484]: Invalid user jekins from 112.15.38.218 Nov 11 09:25:52 em3 sshd[9484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.15.38.218 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=112.15.38.218	2019-11-11 22:54:43
45.227.254.30	attackspambots	firewall-block, port(s): 6001/tcp	2019-11-11 22:38:09
207.154.218.16	attackbotsspam	Nov 11 04:42:07 hanapaa sshd\[15101\]: Invalid user test6666 from 207.154.218.16 Nov 11 04:42:07 hanapaa sshd\[15101\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.218.16 Nov 11 04:42:09 hanapaa sshd\[15101\]: Failed password for invalid user test6666 from 207.154.218.16 port 53420 ssh2 Nov 11 04:45:52 hanapaa sshd\[15410\]: Invalid user test999 from 207.154.218.16 Nov 11 04:45:52 hanapaa sshd\[15410\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.218.16	2019-11-11 22:59:53
35.188.242.129	attackbots	Nov 11 04:57:26 php1 sshd\[31596\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.188.242.129 user=root Nov 11 04:57:28 php1 sshd\[31596\]: Failed password for root from 35.188.242.129 port 37816 ssh2 Nov 11 05:03:23 php1 sshd\[32151\]: Invalid user dewayne from 35.188.242.129 Nov 11 05:03:23 php1 sshd\[32151\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.188.242.129 Nov 11 05:03:25 php1 sshd\[32151\]: Failed password for invalid user dewayne from 35.188.242.129 port 47048 ssh2	2019-11-11 23:03:33
14.232.33.36	attackspam	Unauthorized connection attempt from IP address 14.232.33.36 on Port 445(SMB)	2019-11-11 23:10:07

最近上报的IP列表

1.160.90.42	34.240.3.65	27.54.163.10	124.122.156.68
234.24.247.182	109.195.211.54	231.88.114.170	95.180.131.132
113.182.64.5	113.53.74.34	43.160.64.189	53.200.139.166
187.208.25.85	46.22.104.238	89.248.167.133	66.207.158.22
124.129.107.252	224.92.129.50	14.92.170.154	186.245.57.21