2.134.3.106 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Kazakhstan

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
2.134.32.134	attackspambots	2019-10-23 19:56:55 1iNKsQ-000421-Qp SMTP connection from \(2.134.32.134.megaline.telecom.kz\) \[2.134.32.134\]:19700 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-10-23 19:57:02 1iNKsX-00042A-CO SMTP connection from \(2.134.32.134.megaline.telecom.kz\) \[2.134.32.134\]:19756 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-10-23 19:57:07 1iNKsc-00042j-JG SMTP connection from \(2.134.32.134.megaline.telecom.kz\) \[2.134.32.134\]:19784 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-30 02:09:42
2.134.37.244	attack	CloudCIX Reconnaissance Scan Detected, PTR: 2.134.37.244.megaline.telecom.kz.	2019-12-30 23:14:10

类型

评论内容

时间

2.134.32.134

attackspambots

2019-10-23 19:56:55 1iNKsQ-000421-Qp SMTP connection from \(2.134.32.134.megaline.telecom.kz\) \[2.134.32.134\]:19700 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-10-23 19:57:02 1iNKsX-00042A-CO SMTP connection from \(2.134.32.134.megaline.telecom.kz\) \[2.134.32.134\]:19756 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-10-23 19:57:07 1iNKsc-00042j-JG SMTP connection from \(2.134.32.134.megaline.telecom.kz\) \[2.134.32.134\]:19784 I=\[193.107.88.166\]:25 closed by DROP in ACL
...

2020-01-30 02:09:42

2.134.37.244

attack

CloudCIX Reconnaissance Scan Detected, PTR: 2.134.37.244.megaline.telecom.kz.

2019-12-30 23:14:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.134.3.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2620
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.134.3.106.			IN	A

;; AUTHORITY SECTION:
.			87	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 16:26:11 CST 2022
;; MSG SIZE  rcvd: 104

HOST信息:

106.3.134.2.in-addr.arpa domain name pointer 2.134.3.106.megaline.telecom.kz.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
106.3.134.2.in-addr.arpa	name = 2.134.3.106.megaline.telecom.kz.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
116.58.239.143	attackbots	trying to access non-authorized port	2020-08-13 20:42:43
188.162.252.179	attack	20/8/13@08:20:10: FAIL: Alarm-Network address from=188.162.252.179 20/8/13@08:20:10: FAIL: Alarm-Network address from=188.162.252.179 ...	2020-08-13 21:12:04
103.114.104.68	attackbots	Aug 13 12:20:07 ip-172-31-16-56 sshd\[3291\]: Invalid user user from 103.114.104.68\ Aug 13 12:20:09 ip-172-31-16-56 sshd\[3291\]: Failed password for invalid user user from 103.114.104.68 port 51084 ssh2\ Aug 13 12:20:13 ip-172-31-16-56 sshd\[3294\]: Invalid user admin from 103.114.104.68\ Aug 13 12:20:15 ip-172-31-16-56 sshd\[3294\]: Failed password for invalid user admin from 103.114.104.68 port 52339 ssh2\ Aug 13 12:20:20 ip-172-31-16-56 sshd\[3296\]: Invalid user admin from 103.114.104.68\	2020-08-13 21:03:48
188.131.178.32	attackbots	Aug 13 15:05:13 vps647732 sshd[664]: Failed password for root from 188.131.178.32 port 35878 ssh2 ...	2020-08-13 21:12:33
91.246.213.216	attackspam	"SMTP brute force auth login attempt."	2020-08-13 21:19:13
218.92.0.165	attackbots	Aug 13 15:02:27 ip40 sshd[31601]: Failed password for root from 218.92.0.165 port 54042 ssh2 Aug 13 15:02:31 ip40 sshd[31601]: Failed password for root from 218.92.0.165 port 54042 ssh2 ...	2020-08-13 21:17:07
185.56.80.222	attack	2020-08-13 07:19:47.006143-0500 localhost screensharingd[73552]: Authentication: FAILED :: User Name: N/A :: Viewer Address: 185.56.80.222 :: Type: VNC DES	2020-08-13 21:21:15
133.130.97.166	attackbotsspam	(sshd) Failed SSH login from 133.130.97.166 (JP/Japan/v133-130-97-166.a026.g.tyo1.static.cnode.io): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 13 15:01:46 s1 sshd[9027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.97.166 user=root Aug 13 15:01:47 s1 sshd[9027]: Failed password for root from 133.130.97.166 port 38692 ssh2 Aug 13 15:16:06 s1 sshd[10466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.97.166 user=root Aug 13 15:16:08 s1 sshd[10466]: Failed password for root from 133.130.97.166 port 44336 ssh2 Aug 13 15:20:33 s1 sshd[10657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.97.166 user=root	2020-08-13 20:48:02
14.231.171.223	attackbotsspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-08-13 20:47:20
51.68.224.53	attackbots	"Unauthorized connection attempt on SSHD detected"	2020-08-13 21:11:24
92.185.97.221	attackspambots	20/8/13@08:20:27: FAIL: Alarm-Network address from=92.185.97.221 ...	2020-08-13 20:56:32
54.38.70.93	attackbotsspam	Aug 13 15:20:21 hosting sshd[19956]: Invalid user pASSWorD from 54.38.70.93 port 47044 ...	2020-08-13 21:01:35
202.134.154.38	attack	firewall-block, port(s): 23/tcp	2020-08-13 20:58:11
91.92.128.171	attack	0,22-01/29 [bc01/m45] PostRequest-Spammer scoring: Lusaka01	2020-08-13 21:15:08
45.129.33.10	attackspambots	[H1] Blocked by UFW	2020-08-13 21:19:27

最近上报的IP列表

117.84.156.254	77.252.26.70	223.88.194.177	103.238.71.226
222.218.107.94	195.76.177.154	89.143.121.212	181.199.146.39
177.134.164.191	139.28.235.245	103.134.98.49	118.181.189.203
221.231.28.4	49.206.49.255	188.143.4.68	103.76.82.189
20.124.213.36	116.55.41.77	51.211.65.131	167.172.66.25