134.122.19.128

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	2020-04-03T05:56:32.883804vfs-server-01 sshd\[31667\]: Invalid user ubnt from 134.122.19.128 port 52744 2020-04-03T05:56:33.666983vfs-server-01 sshd\[31670\]: Invalid user admin from 134.122.19.128 port 54360 2020-04-03T05:56:35.253114vfs-server-01 sshd\[31674\]: Invalid user 1234 from 134.122.19.128 port 57256	2020-04-03 12:28:39

类型

评论内容

时间

attackspam

2020-04-03T05:56:32.883804vfs-server-01 sshd\[31667\]: Invalid user ubnt from 134.122.19.128 port 52744
2020-04-03T05:56:33.666983vfs-server-01 sshd\[31670\]: Invalid user admin from 134.122.19.128 port 54360
2020-04-03T05:56:35.253114vfs-server-01 sshd\[31674\]: Invalid user 1234 from 134.122.19.128 port 57256

2020-04-03 12:28:39

相同子网IP讨论:

IP	类型	评论内容	时间
134.122.19.151	attack	Seems to be part of a bot attack on login	2020-07-18 07:06:01
134.122.19.126	attackspam	trying to access non-authorized port	2020-06-02 08:03:00
134.122.19.102	attackbots	2020-04-15T20:11:40.735348rocketchat.forhosting.nl sshd[8551]: Invalid user nuxeo from 134.122.19.102 port 35670 2020-04-15T20:11:42.984514rocketchat.forhosting.nl sshd[8551]: Failed password for invalid user nuxeo from 134.122.19.102 port 35670 ssh2 2020-04-15T20:17:03.021534rocketchat.forhosting.nl sshd[8682]: Invalid user tidb from 134.122.19.102 port 50326 ...	2020-04-16 03:24:14

类型

评论内容

时间

134.122.19.151

attack

Seems to be part of a bot attack on login

2020-07-18 07:06:01

134.122.19.126

attackspam

trying to access non-authorized port

2020-06-02 08:03:00

134.122.19.102

attackbots

2020-04-15T20:11:40.735348rocketchat.forhosting.nl sshd[8551]: Invalid user nuxeo from 134.122.19.102 port 35670
2020-04-15T20:11:42.984514rocketchat.forhosting.nl sshd[8551]: Failed password for invalid user nuxeo from 134.122.19.102 port 35670 ssh2
2020-04-15T20:17:03.021534rocketchat.forhosting.nl sshd[8682]: Invalid user tidb from 134.122.19.102 port 50326
...

2020-04-16 03:24:14

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.122.19.128
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5081
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.122.19.128.			IN	A

;; AUTHORITY SECTION:
.			301	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040202 1800 900 604800 86400

;; Query time: 123 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 03 12:28:36 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 128.19.122.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 128.19.122.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
129.226.122.195	attackbotsspam	SSH bruteforce	2019-12-06 23:53:24
45.248.78.180	attackbots	TCP Port Scanning	2019-12-06 23:29:47
182.52.130.19	attack	2323/tcp [2019-12-06]1pkt	2019-12-06 23:30:21
190.96.49.189	attackbots	Dec 6 16:45:08 andromeda sshd\[38343\]: Invalid user bourahla from 190.96.49.189 port 55606 Dec 6 16:45:08 andromeda sshd\[38343\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.96.49.189 Dec 6 16:45:10 andromeda sshd\[38343\]: Failed password for invalid user bourahla from 190.96.49.189 port 55606 ssh2	2019-12-07 00:12:42
58.8.170.169	attackspambots	58.8.170.169 - - \[06/Dec/2019:15:50:20 +0100\] "POST /wp-login.php HTTP/1.0" 200 7411 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 58.8.170.169 - - \[06/Dec/2019:15:50:25 +0100\] "POST /wp-login.php HTTP/1.0" 200 7226 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 58.8.170.169 - - \[06/Dec/2019:15:50:31 +0100\] "POST /wp-login.php HTTP/1.0" 200 7223 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-12-07 00:10:19
180.250.115.93	attackspambots	Dec 6 10:33:48 TORMINT sshd\[7521\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.250.115.93 user=root Dec 6 10:33:50 TORMINT sshd\[7521\]: Failed password for root from 180.250.115.93 port 40420 ssh2 Dec 6 10:40:53 TORMINT sshd\[8113\]: Invalid user admin from 180.250.115.93 Dec 6 10:40:54 TORMINT sshd\[8113\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.250.115.93 ...	2019-12-06 23:49:19
178.124.161.75	attack	Dec 6 15:50:57 nextcloud sshd\[31561\]: Invalid user host from 178.124.161.75 Dec 6 15:50:57 nextcloud sshd\[31561\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.124.161.75 Dec 6 15:50:59 nextcloud sshd\[31561\]: Failed password for invalid user host from 178.124.161.75 port 60610 ssh2 ...	2019-12-06 23:37:38
118.170.19.44	attack	5555/tcp [2019-12-06]1pkt	2019-12-06 23:41:38
132.232.118.214	attackbotsspam	Dec 6 16:53:24 nextcloud sshd\[9635\]: Invalid user \~!@\# from 132.232.118.214 Dec 6 16:53:24 nextcloud sshd\[9635\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.118.214 Dec 6 16:53:25 nextcloud sshd\[9635\]: Failed password for invalid user \~!@\# from 132.232.118.214 port 46046 ssh2 ...	2019-12-06 23:54:44
125.215.207.40	attack	Dec 6 18:13:59 server sshd\[9618\]: Invalid user towney from 125.215.207.40 Dec 6 18:13:59 server sshd\[9618\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.215.207.40 Dec 6 18:14:01 server sshd\[9618\]: Failed password for invalid user towney from 125.215.207.40 port 47048 ssh2 Dec 6 18:24:34 server sshd\[12649\]: Invalid user crigger from 125.215.207.40 Dec 6 18:24:34 server sshd\[12649\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.215.207.40 ...	2019-12-06 23:38:27
105.73.90.24	attackspambots	Dec 6 16:40:28 mail sshd[30920]: Failed password for root from 105.73.90.24 port 3348 ssh2 Dec 6 16:46:23 mail sshd[1499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=105.73.90.24 Dec 6 16:46:24 mail sshd[1499]: Failed password for invalid user sheraton from 105.73.90.24 port 3349 ssh2	2019-12-06 23:52:21
148.235.57.183	attackbotsspam	Dec 6 05:05:47 wbs sshd\[11314\]: Invalid user nfs from 148.235.57.183 Dec 6 05:05:47 wbs sshd\[11314\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.235.57.183 Dec 6 05:05:49 wbs sshd\[11314\]: Failed password for invalid user nfs from 148.235.57.183 port 37293 ssh2 Dec 6 05:13:39 wbs sshd\[12185\]: Invalid user server from 148.235.57.183 Dec 6 05:13:39 wbs sshd\[12185\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.235.57.183	2019-12-06 23:34:41
104.45.148.101	attackspambots	Dec 6 17:01:19 legacy sshd[21453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.45.148.101 Dec 6 17:01:21 legacy sshd[21453]: Failed password for invalid user norena from 104.45.148.101 port 60738 ssh2 Dec 6 17:07:37 legacy sshd[21683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.45.148.101 ...	2019-12-07 00:09:25
181.41.216.141	attackbots	Dec 6 15:50:53 relay postfix/smtpd\[28556\]: NOQUEUE: reject: RCPT from unknown\[181.41.216.141\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[181.41.216.131\]\> Dec 6 15:50:53 relay postfix/smtpd\[28556\]: NOQUEUE: reject: RCPT from unknown\[181.41.216.141\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[181.41.216.131\]\> Dec 6 15:50:53 relay postfix/smtpd\[28556\]: NOQUEUE: reject: RCPT from unknown\[181.41.216.141\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[181.41.216.131\]\> Dec 6 15:50:53 relay postfix/smtpd\[28556\]: NOQUEUE: reject: RCPT from unknown\[181.41.216.141\]: 554 5.7.1 \: Relay access denied\; from=\	2019-12-06 23:41:06
120.92.159.155	attackspam	RDP Bruteforce	2019-12-07 00:12:00

最近上报的IP列表

49.218.109.104	126.137.197.53	136.220.92.215	60.153.152.3
167.91.246.181	124.119.240.144	183.152.113.186	109.18.21.195
157.33.39.196	218.143.120.57	65.124.15.74	159.65.110.91
37.237.59.18	185.200.37.109	212.174.9.218	122.114.159.17
152.168.236.22	196.195.99.131	45.157.151.29	156.213.25.137