134.96.41.138 - IPInfo

基本信息:

城市(city): Homburg

省份(region): Saarland

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.96.41.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50218
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.96.41.138.			IN	A

;; AUTHORITY SECTION:
.			149	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030902 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 10 05:19:33 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 138.41.96.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.41.96.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
141.98.80.204	attackbots	Unauthorised access (Jan 9) SRC=141.98.80.204 LEN=40 TTL=248 ID=35770 TCP DPT=3389 WINDOW=1024 SYN	2020-01-09 22:21:49
218.92.0.173	attackbots	Jan 9 15:31:16 amit sshd\[28405\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.173 user=root Jan 9 15:31:18 amit sshd\[28405\]: Failed password for root from 218.92.0.173 port 15230 ssh2 Jan 9 15:31:36 amit sshd\[2093\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.173 user=root ...	2020-01-09 22:42:54
182.160.114.26	attackbots	Unauthorized connection attempt detected from IP address 182.160.114.26 to port 445	2020-01-09 22:21:19
200.59.69.63	attack	Telnet/23 MH Probe, BF, Hack -	2020-01-09 22:58:02
186.150.151.131	attackspambots	Telnet/23 MH Probe, BF, Hack -	2020-01-09 22:20:41
110.249.223.39	attack	"SSH brute force auth login attempt."	2020-01-09 22:29:10
110.229.220.81	attackbots	CN_APNIC-HM_<177>1578575368 [1:2026731:3] ET WEB_SERVER ThinkPHP RCE Exploitation Attempt [Classification: Attempted Administrator Privilege Gain] [Priority: 1] {TCP} 110.229.220.81:55687	2020-01-09 22:57:42
124.156.109.210	attackspam	Jan 9 14:16:11 haigwepa sshd[4752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.109.210 Jan 9 14:16:13 haigwepa sshd[4752]: Failed password for invalid user moodle from 124.156.109.210 port 46668 ssh2 ...	2020-01-09 22:28:52
191.96.25.228	attackspambots	Telnet/23 MH Probe, BF, Hack -	2020-01-09 22:33:53
221.126.225.184	attack	Jan 9 15:50:00 srv206 sshd[22207]: Invalid user vqe from 221.126.225.184 ...	2020-01-09 23:01:27
167.71.91.228	attack	2020-01-09T08:04:29.1696531495-001 sshd[43913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.91.228 2020-01-09T08:04:29.1661951495-001 sshd[43913]: Invalid user test from 167.71.91.228 port 34334 2020-01-09T08:04:31.2880871495-001 sshd[43913]: Failed password for invalid user test from 167.71.91.228 port 34334 ssh2 2020-01-09T09:06:20.6071691495-001 sshd[46384]: Invalid user qta from 167.71.91.228 port 53442 2020-01-09T09:06:20.6114161495-001 sshd[46384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.91.228 2020-01-09T09:06:20.6071691495-001 sshd[46384]: Invalid user qta from 167.71.91.228 port 53442 2020-01-09T09:06:22.8547461495-001 sshd[46384]: Failed password for invalid user qta from 167.71.91.228 port 53442 ssh2 2020-01-09T09:09:12.4730221495-001 sshd[46485]: Invalid user QAZ from 167.71.91.228 port 51744 2020-01-09T09:09:12.4827961495-001 sshd[46485]: pam_unix(sshd:auth): authentic ...	2020-01-09 22:48:21
188.138.187.105	attackspambots	[ThuJan0914:09:54.5722512020][:error][pid16607:tid47483121682176][client188.138.187.105:62864][client188.138.187.105]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\(DisableifyouwanttoallowMSIE6\)"][severity"WARNING"][hostname"giornaledelticino.ch"][uri"/"][unique_id"XhcmIs@eW8kD26s1WI0z5wAAABE"][ThuJan0914:09:55.8322392020][:error][pid9661:tid47483090163456][client188.138.187.105:62910][client188.138.187.105]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\(Disableifyo	2020-01-09 22:32:08
222.186.42.4	attackbots	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.4 user=root Failed password for root from 222.186.42.4 port 18986 ssh2 Failed password for root from 222.186.42.4 port 18986 ssh2 Failed password for root from 222.186.42.4 port 18986 ssh2 Failed password for root from 222.186.42.4 port 18986 ssh2	2020-01-09 22:36:06
222.186.15.10	attack	Unauthorized connection attempt detected from IP address 222.186.15.10 to port 22 [T]	2020-01-09 22:41:31
45.33.70.146	attackspambots	Syn flood / slowloris	2020-01-09 22:49:46

最近上报的IP列表

18.246.143.176	220.21.113.207	93.220.200.137	92.16.80.1
38.117.252.111	121.150.110.170	61.72.253.169	51.140.13.27
62.181.125.67	14.232.54.0	197.183.240.171	69.126.15.162
220.124.83.187	54.204.145.36	176.193.181.145	8.29.167.232
99.186.223.69	73.169.109.111	87.2.132.187	86.5.36.224