134.122.64.201

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Aug 29 09:21:49 vps647732 sshd[19959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.64.201 Aug 29 09:21:51 vps647732 sshd[19959]: Failed password for invalid user lefty from 134.122.64.201 port 51266 ssh2 ...	2020-08-29 15:43:05
attackspam	Aug 28 15:39:03 dhoomketu sshd[2717181]: Invalid user bsp from 134.122.64.201 port 49418 Aug 28 15:39:03 dhoomketu sshd[2717181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.64.201 Aug 28 15:39:03 dhoomketu sshd[2717181]: Invalid user bsp from 134.122.64.201 port 49418 Aug 28 15:39:05 dhoomketu sshd[2717181]: Failed password for invalid user bsp from 134.122.64.201 port 49418 ssh2 Aug 28 15:42:31 dhoomketu sshd[2717313]: Invalid user pc from 134.122.64.201 port 57012 ...	2020-08-28 18:15:22
attackbots	2020-08-27T11:27:09.603940dreamphreak.com sshd[150862]: Invalid user support from 134.122.64.201 port 40008 2020-08-27T11:27:11.798587dreamphreak.com sshd[150862]: Failed password for invalid user support from 134.122.64.201 port 40008 ssh2 ...	2020-08-28 02:41:00
attackbots	SSH login attempts.	2020-08-22 19:34:34
attack	Invalid user nagios from 134.122.64.201 port 43318	2020-08-21 17:52:14
attack	2020-08-05T17:15:32.299713mail.broermann.family sshd[23845]: Failed password for root from 134.122.64.201 port 37246 ssh2 2020-08-05T17:19:23.007024mail.broermann.family sshd[23981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.64.201 user=root 2020-08-05T17:19:24.798214mail.broermann.family sshd[23981]: Failed password for root from 134.122.64.201 port 49284 ssh2 2020-08-05T17:23:12.778275mail.broermann.family sshd[24134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.64.201 user=root 2020-08-05T17:23:15.141705mail.broermann.family sshd[24134]: Failed password for root from 134.122.64.201 port 33090 ssh2 ...	2020-08-06 01:41:56
attackbots	Jul 30 11:23:45 ovpn sshd\[7154\]: Invalid user cloud from 134.122.64.201 Jul 30 11:23:45 ovpn sshd\[7154\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.64.201 Jul 30 11:23:47 ovpn sshd\[7154\]: Failed password for invalid user cloud from 134.122.64.201 port 36020 ssh2 Jul 30 11:37:08 ovpn sshd\[10491\]: Invalid user wenyan from 134.122.64.201 Jul 30 11:37:08 ovpn sshd\[10491\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.64.201	2020-07-30 17:43:34
attackspambots	SSH Invalid Login	2020-07-27 07:01:48
attackspam	Jul 19 13:21:53 vps333114 sshd[1203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.64.201 Jul 19 13:21:55 vps333114 sshd[1203]: Failed password for invalid user adeus from 134.122.64.201 port 38212 ssh2 ...	2020-07-19 21:58:41
attackbots	Jul 17 13:50:30 ws24vmsma01 sshd[28701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.64.201 Jul 17 13:50:32 ws24vmsma01 sshd[28701]: Failed password for invalid user dstserver from 134.122.64.201 port 50880 ssh2 ...	2020-07-18 02:30:44
attackspam	Bruteforce detected by fail2ban	2020-07-17 00:50:25
attackspam	Jul 16 15:46:19 gw1 sshd[30025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.64.201 Jul 16 15:46:20 gw1 sshd[30025]: Failed password for invalid user demo from 134.122.64.201 port 40974 ssh2 ...	2020-07-16 18:50:22
attackbots	Jul 12 15:37:55 vps sshd[6270]: Failed password for invalid user gaoxinchen from 134.122.64.201 port 52640 ssh2 Jul 12 15:40:52 vps sshd[22746]: Invalid user xiaowenjing from 134.122.64.201 port 49554 Jul 12 15:40:52 vps sshd[22746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.64.201 Jul 12 15:40:54 vps sshd[22746]: Failed password for invalid user xiaowenjing from 134.122.64.201 port 49554 ssh2 Jul 12 15:43:59 vps sshd[34555]: Invalid user admin from 134.122.64.201 port 46468 ...	2020-07-12 23:14:50
attackspambots	Jun 25 14:24:18 kmh-wmh-003-nbg03 sshd[14849]: Invalid user percy from 134.122.64.201 port 60904 Jun 25 14:24:18 kmh-wmh-003-nbg03 sshd[14849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.64.201 Jun 25 14:24:21 kmh-wmh-003-nbg03 sshd[14849]: Failed password for invalid user percy from 134.122.64.201 port 60904 ssh2 Jun 25 14:24:21 kmh-wmh-003-nbg03 sshd[14849]: Received disconnect from 134.122.64.201 port 60904:11: Bye Bye [preauth] Jun 25 14:24:21 kmh-wmh-003-nbg03 sshd[14849]: Disconnected from 134.122.64.201 port 60904 [preauth] Jun 25 14:44:31 kmh-wmh-003-nbg03 sshd[16929]: Invalid user test from 134.122.64.201 port 47502 Jun 25 14:44:31 kmh-wmh-003-nbg03 sshd[16929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.64.201 Jun 25 14:44:33 kmh-wmh-003-nbg03 sshd[16929]: Failed password for invalid user test from 134.122.64.201 port 47502 ssh2 Jun 25 14:44:33 kmh-wmh-003........ -------------------------------	2020-06-29 07:54:15
attackspam	Jun 25 14:24:18 kmh-wmh-003-nbg03 sshd[14849]: Invalid user percy from 134.122.64.201 port 60904 Jun 25 14:24:18 kmh-wmh-003-nbg03 sshd[14849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.64.201 Jun 25 14:24:21 kmh-wmh-003-nbg03 sshd[14849]: Failed password for invalid user percy from 134.122.64.201 port 60904 ssh2 Jun 25 14:24:21 kmh-wmh-003-nbg03 sshd[14849]: Received disconnect from 134.122.64.201 port 60904:11: Bye Bye [preauth] Jun 25 14:24:21 kmh-wmh-003-nbg03 sshd[14849]: Disconnected from 134.122.64.201 port 60904 [preauth] Jun 25 14:44:31 kmh-wmh-003-nbg03 sshd[16929]: Invalid user test from 134.122.64.201 port 47502 Jun 25 14:44:31 kmh-wmh-003-nbg03 sshd[16929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.64.201 Jun 25 14:44:33 kmh-wmh-003-nbg03 sshd[16929]: Failed password for invalid user test from 134.122.64.201 port 47502 ssh2 Jun 25 14:44:33 kmh-wmh-003........ -------------------------------	2020-06-27 02:34:17
attack	Jun 25 14:24:18 kmh-wmh-003-nbg03 sshd[14849]: Invalid user percy from 134.122.64.201 port 60904 Jun 25 14:24:18 kmh-wmh-003-nbg03 sshd[14849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.64.201 Jun 25 14:24:21 kmh-wmh-003-nbg03 sshd[14849]: Failed password for invalid user percy from 134.122.64.201 port 60904 ssh2 Jun 25 14:24:21 kmh-wmh-003-nbg03 sshd[14849]: Received disconnect from 134.122.64.201 port 60904:11: Bye Bye [preauth] Jun 25 14:24:21 kmh-wmh-003-nbg03 sshd[14849]: Disconnected from 134.122.64.201 port 60904 [preauth] Jun 25 14:44:31 kmh-wmh-003-nbg03 sshd[16929]: Invalid user test from 134.122.64.201 port 47502 Jun 25 14:44:31 kmh-wmh-003-nbg03 sshd[16929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.64.201 Jun 25 14:44:33 kmh-wmh-003-nbg03 sshd[16929]: Failed password for invalid user test from 134.122.64.201 port 47502 ssh2 Jun 25 14:44:33 kmh-wmh-003........ -------------------------------	2020-06-26 13:16:40

相同子网IP讨论:

IP	类型	评论内容	时间
134.122.64.219	attackspambots	" "	2020-10-06 06:38:05
134.122.64.219	attackbotsspam	" "	2020-10-05 22:45:09
134.122.64.219	attackbots	" "	2020-10-05 14:39:53
134.122.64.219	attackbots	Invalid user test2 from 134.122.64.219 port 40164	2020-09-22 23:10:03
134.122.64.219	attack	<6 unauthorized SSH connections	2020-09-22 15:14:15
134.122.64.219	attack	Time: Mon Sep 21 22:18:03 2020 +0000 IP: 134.122.64.219 (US/United States/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 21 22:05:45 3 sshd[21609]: Invalid user ftptest from 134.122.64.219 port 34376 Sep 21 22:05:46 3 sshd[21609]: Failed password for invalid user ftptest from 134.122.64.219 port 34376 ssh2 Sep 21 22:14:30 3 sshd[23708]: Invalid user salman from 134.122.64.219 port 45598 Sep 21 22:14:33 3 sshd[23708]: Failed password for invalid user salman from 134.122.64.219 port 45598 ssh2 Sep 21 22:17:59 3 sshd[24552]: Invalid user colin from 134.122.64.219 port 54772	2020-09-22 07:15:59
134.122.64.181	attack	SSHD brute force attack detected by fail2ban	2020-09-04 03:00:59
134.122.64.181	attack	SSHD brute force attack detected by fail2ban	2020-09-03 18:31:38
134.122.64.181	attack	Port 22 Scan, PTR: None	2020-09-02 21:43:22
134.122.64.181	attackbotsspam	...	2020-09-02 06:37:34
134.122.64.59	attackbots	[2020-03-20 01:11:53] NOTICE[1148][C-000139b8] chan_sip.c: Call from '' (134.122.64.59:60182) to extension '99646812420995' rejected because extension not found in context 'public'. [2020-03-20 01:11:53] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-20T01:11:53.532-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="99646812420995",SessionID="0x7fd82c43c848",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/134.122.64.59/60182",ACLName="no_extension_match" [2020-03-20 01:13:47] NOTICE[1148][C-000139bb] chan_sip.c: Call from '' (134.122.64.59:55827) to extension '99746812420995' rejected because extension not found in context 'public'. [2020-03-20 01:13:47] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-20T01:13:47.451-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="99746812420995",SessionID="0x7fd82cc669d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/134. ...	2020-03-20 18:37:39
134.122.64.59	attackspambots	[2020-03-12 00:42:19] NOTICE[1148][C-00010e17] chan_sip.c: Call from '' (134.122.64.59:65023) to extension '201146812111443' rejected because extension not found in context 'public'. [2020-03-12 00:42:19] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-12T00:42:19.936-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="201146812111443",SessionID="0x7fd82c530768",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/134.122.64.59/65023",ACLName="no_extension_match" [2020-03-12 00:47:16] NOTICE[1148][C-00010e1b] chan_sip.c: Call from '' (134.122.64.59:51018) to extension '101146812111443' rejected because extension not found in context 'public'. [2020-03-12 00:47:16] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-12T00:47:16.942-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="101146812111443",SessionID="0x7fd82c3f03d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/ ...	2020-03-12 13:00:42

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.122.64.201
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42883
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.122.64.201.			IN	A

;; AUTHORITY SECTION:
.			312	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062502 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 26 13:16:36 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 201.64.122.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 201.64.122.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
180.242.182.29	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-17 20:22:30
197.49.109.98	attack	DATE:2020-09-16 19:00:22, IP:197.49.109.98, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-09-17 20:28:36
159.89.197.1	attackspambots	Sep 17 14:20:54 abendstille sshd\[7416\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.197.1 user=root Sep 17 14:20:56 abendstille sshd\[7416\]: Failed password for root from 159.89.197.1 port 57882 ssh2 Sep 17 14:25:34 abendstille sshd\[11986\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.197.1 user=root Sep 17 14:25:36 abendstille sshd\[11986\]: Failed password for root from 159.89.197.1 port 40144 ssh2 Sep 17 14:30:10 abendstille sshd\[17230\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.197.1 user=root ...	2020-09-17 20:32:43
117.3.141.49	attack	Unauthorized connection attempt from IP address 117.3.141.49 on Port 445(SMB)	2020-09-17 20:24:40
117.196.198.5	attackbotsspam	Unauthorized connection attempt from IP address 117.196.198.5 on Port 445(SMB)	2020-09-17 20:33:51
189.152.5.160	attackbots	Unauthorized connection attempt from IP address 189.152.5.160 on Port 445(SMB)	2020-09-17 20:26:09
106.13.126.15	attackbots	2020-09-17T09:03:38.048129abusebot-5.cloudsearch.cf sshd[22865]: Invalid user deploy from 106.13.126.15 port 59936 2020-09-17T09:03:38.056471abusebot-5.cloudsearch.cf sshd[22865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.126.15 2020-09-17T09:03:38.048129abusebot-5.cloudsearch.cf sshd[22865]: Invalid user deploy from 106.13.126.15 port 59936 2020-09-17T09:03:40.534284abusebot-5.cloudsearch.cf sshd[22865]: Failed password for invalid user deploy from 106.13.126.15 port 59936 ssh2 2020-09-17T09:08:30.998131abusebot-5.cloudsearch.cf sshd[22933]: Invalid user asterisk from 106.13.126.15 port 60770 2020-09-17T09:08:31.005942abusebot-5.cloudsearch.cf sshd[22933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.126.15 2020-09-17T09:08:30.998131abusebot-5.cloudsearch.cf sshd[22933]: Invalid user asterisk from 106.13.126.15 port 60770 2020-09-17T09:08:33.041946abusebot-5.cloudsearch.cf sshd[22933 ...	2020-09-17 20:15:09
193.169.252.206	attack	Sep 17 11:44:02 h2829583 postfix/smtpd[11460]: lost connection after EHLO from unknown[193.169.252.206] Sep 17 12:00:49 h2829583 postfix/smtpd[11574]: lost connection after EHLO from unknown[193.169.252.206]	2020-09-17 20:05:54
123.194.79.187	attackspam	Sep 16 18:05:07 ssh2 sshd[64979]: User root from 123-194-79-187.dynamic.kbronet.com.tw not allowed because not listed in AllowUsers Sep 16 18:05:08 ssh2 sshd[64979]: Failed password for invalid user root from 123.194.79.187 port 34486 ssh2 Sep 16 18:05:08 ssh2 sshd[64979]: Connection closed by invalid user root 123.194.79.187 port 34486 [preauth] ...	2020-09-17 20:03:46
201.151.150.125	attack	Unauthorized connection attempt from IP address 201.151.150.125 on Port 445(SMB)	2020-09-17 20:05:29
201.238.247.234	attackbots	Unauthorized connection attempt from IP address 201.238.247.234 on Port 445(SMB)	2020-09-17 20:18:14
114.33.31.190	attack	1600275739 - 09/16/2020 19:02:19 Host: 114.33.31.190/114.33.31.190 Port: 23 TCP Blocked ...	2020-09-17 20:06:26
185.220.102.244	attack	Sep 17 08:36:18 firewall sshd[6583]: Failed password for root from 185.220.102.244 port 26572 ssh2 Sep 17 08:36:21 firewall sshd[6583]: Failed password for root from 185.220.102.244 port 26572 ssh2 Sep 17 08:36:25 firewall sshd[6583]: Failed password for root from 185.220.102.244 port 26572 ssh2 ...	2020-09-17 20:07:05
113.252.189.174	attack	Sep 16 14:02:16 logopedia-1vcpu-1gb-nyc1-01 sshd[353529]: Failed password for root from 113.252.189.174 port 53225 ssh2 ...	2020-09-17 20:07:29
200.80.149.68	attackspambots	Unauthorized connection attempt from IP address 200.80.149.68 on Port 445(SMB)	2020-09-17 20:28:09

最近上报的IP列表

77.88.5.33	64.227.50.96	223.204.246.3	177.203.150.26
47.254.43.7	40.92.253.95	47.254.36.89	47.254.24.77
47.254.22.192	47.254.47.223	47.254.35.118	138.68.236.156
64.64.231.27	177.139.102.174	106.52.251.24	117.247.83.151
58.47.77.87	113.190.104.57	34.217.28.117	114.104.226.51