2.134.122.138 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Kazakhstan

运营商(isp): Kazakhtelecom

主机名(hostname): unknown

机构(organization): JSC Kazakhtelecom

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.134.122.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26202
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.134.122.138.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 29 00:36:36 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

138.122.134.2.in-addr.arpa domain name pointer 2.134.122.138.megaline.telecom.kz.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
138.122.134.2.in-addr.arpa	name = 2.134.122.138.megaline.telecom.kz.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
51.91.239.11	attackspam	51.91.239.11 - - [09/Sep/2020:13:23:57 +0200] "POST /wp-login.php HTTP/1.1" 200 10631 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.91.239.11 - - [09/Sep/2020:13:23:59 +0200] "POST /wp-login.php HTTP/1.1" 200 10639 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.91.239.11 - - [09/Sep/2020:13:24:01 +0200] "POST /wp-login.php HTTP/1.1" 200 10637 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.91.239.11 - - [09/Sep/2020:13:24:02 +0200] "POST /wp-login.php HTTP/1.1" 200 10644 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.91.239.11 - - [09/Sep/2020:13:24:04 +0200] "POST /wp-login.php HTTP/1.1" 200 10642 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-10 01:24:40
49.255.93.10	attack	Sep 8 20:39:24 PorscheCustomer sshd[30710]: Failed password for root from 49.255.93.10 port 33170 ssh2 Sep 8 20:46:45 PorscheCustomer sshd[30867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.255.93.10 Sep 8 20:46:47 PorscheCustomer sshd[30867]: Failed password for invalid user webmaster from 49.255.93.10 port 46458 ssh2 ...	2020-09-10 01:27:58
72.42.170.60	attackspambots	Invalid user aleksey from 72.42.170.60 port 35284	2020-09-10 01:40:49
70.88.133.182	attack	70.88.133.182 - - [09/Sep/2020:10:42:49 +0200] "GET /wp-login.php HTTP/1.1" 200 8712 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 70.88.133.182 - - [09/Sep/2020:10:42:51 +0200] "POST /wp-login.php HTTP/1.1" 200 8942 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 70.88.133.182 - - [09/Sep/2020:10:42:52 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-10 01:29:26
111.229.57.21	attackbots	Sep 9 18:42:17 markkoudstaal sshd[6268]: Failed password for root from 111.229.57.21 port 46256 ssh2 Sep 9 18:48:34 markkoudstaal sshd[7972]: Failed password for root from 111.229.57.21 port 50840 ssh2 ...	2020-09-10 01:11:06
167.172.238.159	attack	Sep 9 10:32:07 master sshd[4760]: Failed password for root from 167.172.238.159 port 53546 ssh2	2020-09-10 01:23:39
106.12.82.80	attackspambots	Sep 9 07:04:29 web9 sshd\[514\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.82.80 user=root Sep 9 07:04:31 web9 sshd\[514\]: Failed password for root from 106.12.82.80 port 60064 ssh2 Sep 9 07:08:09 web9 sshd\[966\]: Invalid user public from 106.12.82.80 Sep 9 07:08:09 web9 sshd\[966\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.82.80 Sep 9 07:08:11 web9 sshd\[966\]: Failed password for invalid user public from 106.12.82.80 port 45782 ssh2	2020-09-10 01:11:34
31.171.152.105	attackbotsspam	(From contact1@theonlinepublishers.com) Hello, we are The Online Publishers (TOP) and want to introduce ourselves to you. TOP is an established comprehensive global online hub. We connect clients to expert freelancers in all facets of the world of digital marketing such as writers, journalists, bloggers, authors, advertisers, publishers, social media influencers, backlinks managers, Vloggers/video marketers and reviewers… A few of the many services we offer are content creation and placement, publishing, advertising, online translation, and social media management. We also have two full online libraries, one of photographs and the other of eBooks and informative resources. Save money and time by using TOP services. Rather than having to search for multiple providers of various tasks, we are a one-stop-shop. We have all the services you will ever need right here. For a complete list, check out our website https://www.theonlinepublishers.com TOP can help any business surge ahead of its competition and	2020-09-10 01:10:21
186.119.116.226	attackbotsspam	$f2bV_matches	2020-09-10 01:22:24
14.232.60.196	attack	1599583800 - 09/08/2020 18:50:00 Host: 14.232.60.196/14.232.60.196 Port: 445 TCP Blocked	2020-09-10 01:03:49
103.78.181.169	attackbotsspam	srvr2: (mod_security) mod_security (id:920350) triggered by 103.78.181.169 (IN/-/-): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/08 18:49:12 [error] 548013#0: 348010 [client 103.78.181.169] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159958375219.019831"] [ref "o0,15v21,15"], client: 103.78.181.169, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-09-10 01:36:14
51.79.74.209	attackspam	Sep 9 19:35:10 jane sshd[32007]: Failed password for root from 51.79.74.209 port 58592 ssh2 ...	2020-09-10 01:39:19
139.199.44.125	attackspambots	(sshd) Failed SSH login from 139.199.44.125 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 9 04:24:13 optimus sshd[3626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.44.125 user=root Sep 9 04:24:15 optimus sshd[3626]: Failed password for root from 139.199.44.125 port 42892 ssh2 Sep 9 04:27:24 optimus sshd[4442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.44.125 user=root Sep 9 04:27:26 optimus sshd[4442]: Failed password for root from 139.199.44.125 port 35242 ssh2 Sep 9 04:33:16 optimus sshd[5914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.44.125 user=root	2020-09-10 01:47:22
103.226.216.96	attackspam	RDP brute force attack detected by fail2ban	2020-09-10 01:44:50
103.236.115.162	attackspambots	Sep 8 10:52:25 online-web-1 sshd[1149061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.236.115.162 user=r.r Sep 8 10:52:27 online-web-1 sshd[1149061]: Failed password for r.r from 103.236.115.162 port 52080 ssh2 Sep 8 10:52:27 online-web-1 sshd[1149061]: Received disconnect from 103.236.115.162 port 52080:11: Bye Bye [preauth] Sep 8 10:52:27 online-web-1 sshd[1149061]: Disconnected from 103.236.115.162 port 52080 [preauth] Sep 8 11:03:18 online-web-1 sshd[1151762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.236.115.162 user=r.r Sep 8 11:03:21 online-web-1 sshd[1151762]: Failed password for r.r from 103.236.115.162 port 40406 ssh2 Sep 8 11:03:21 online-web-1 sshd[1151762]: Received disconnect from 103.236.115.162 port 40406:11: Bye Bye [preauth] Sep 8 11:03:21 online-web-1 sshd[1151762]: Disconnected from 103.236.115.162 port 40406 [preauth] Sep 8 11:06:39 online-w........ -------------------------------	2020-09-10 01:36:50

最近上报的IP列表

52.60.73.56	141.119.23.6	23.210.58.1	76.116.151.62
183.63.211.251	150.196.116.132	55.162.220.196	100.163.252.40
59.145.243.203	136.126.207.200	174.108.54.216	23.248.172.213
51.10.166.227	193.245.87.88	94.9.216.207	73.211.195.119
216.152.37.119	203.25.64.193	119.147.213.220	55.107.113.61