134.175.68.129

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Fail2Ban Ban Triggered	2020-06-15 17:25:33
attack	Invalid user rtkit from 134.175.68.129 port 55702	2020-04-30 04:00:50
attackbots	Apr 19 13:57:34 vserver sshd\[12268\]: Invalid user qd from 134.175.68.129Apr 19 13:57:36 vserver sshd\[12268\]: Failed password for invalid user qd from 134.175.68.129 port 33228 ssh2Apr 19 14:05:08 vserver sshd\[12381\]: Invalid user br from 134.175.68.129Apr 19 14:05:11 vserver sshd\[12381\]: Failed password for invalid user br from 134.175.68.129 port 40404 ssh2 ...	2020-04-19 20:53:41
attack	Wordpress malicious attack:[sshd]	2020-04-18 14:20:21
attackbots	SSH brute force attempt @ 2020-04-09 18:33:10	2020-04-10 05:10:08
attackspambots	Apr 1 18:35:33 vps sshd[3594]: Failed password for root from 134.175.68.129 port 47094 ssh2 Apr 1 18:47:03 vps sshd[4285]: Failed password for root from 134.175.68.129 port 48760 ssh2 ...	2020-04-02 02:41:55
attack	Mar 28 05:08:40 itv-usvr-02 sshd[1882]: Invalid user gyh from 134.175.68.129 port 49640 Mar 28 05:08:40 itv-usvr-02 sshd[1882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.68.129 Mar 28 05:08:40 itv-usvr-02 sshd[1882]: Invalid user gyh from 134.175.68.129 port 49640 Mar 28 05:08:42 itv-usvr-02 sshd[1882]: Failed password for invalid user gyh from 134.175.68.129 port 49640 ssh2 Mar 28 05:14:25 itv-usvr-02 sshd[2168]: Invalid user ejv from 134.175.68.129 port 33080	2020-03-28 06:58:41
attack	Mar 19 02:14:31 srv206 sshd[12491]: Invalid user andrew from 134.175.68.129 ...	2020-03-19 09:58:30
attack	SASL PLAIN auth failed: ruser=...	2020-03-07 09:11:10
attackbotsspam	Feb 22 21:44:05 gw1 sshd[10967]: Failed password for root from 134.175.68.129 port 36530 ssh2 ...	2020-02-23 03:02:57
attack	Feb 22 20:26:38 gw1 sshd[8599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.68.129 Feb 22 20:26:40 gw1 sshd[8599]: Failed password for invalid user teste from 134.175.68.129 port 47492 ssh2 ...	2020-02-22 23:28:22
attackbotsspam	SSH Bruteforce attack	2020-02-20 03:18:47
attackspambots	Feb 18 14:01:40 hpm sshd\[998\]: Invalid user MYUSER from 134.175.68.129 Feb 18 14:01:40 hpm sshd\[998\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.68.129 Feb 18 14:01:42 hpm sshd\[998\]: Failed password for invalid user MYUSER from 134.175.68.129 port 54428 ssh2 Feb 18 14:05:11 hpm sshd\[1332\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.68.129 user=bin Feb 18 14:05:13 hpm sshd\[1332\]: Failed password for bin from 134.175.68.129 port 55112 ssh2	2020-02-19 08:30:52
attackbots	Unauthorized connection attempt detected from IP address 134.175.68.129 to port 2220 [J]	2020-02-03 16:32:32
attack	Jan 8 13:26:16 gw1 sshd[9562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.68.129 Jan 8 13:26:18 gw1 sshd[9562]: Failed password for invalid user lu from 134.175.68.129 port 46362 ssh2 ...	2020-01-08 17:28:24
attackbots	ssh intrusion attempt	2020-01-04 18:46:07
attackbots	Jan 2 21:09:17 h2177944 sshd\[2115\]: Invalid user jedit from 134.175.68.129 port 60606 Jan 2 21:09:17 h2177944 sshd\[2115\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.68.129 Jan 2 21:09:18 h2177944 sshd\[2115\]: Failed password for invalid user jedit from 134.175.68.129 port 60606 ssh2 Jan 2 21:16:41 h2177944 sshd\[2467\]: Invalid user ba from 134.175.68.129 port 50258 ...	2020-01-03 06:45:08
attackspam	Dec 27 14:35:58 game-panel sshd[18536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.68.129 Dec 27 14:36:00 game-panel sshd[18536]: Failed password for invalid user yasukawa from 134.175.68.129 port 50440 ssh2 Dec 27 14:40:11 game-panel sshd[18774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.68.129	2019-12-27 22:42:05
attack	2019-11-12T15:15:18.596565abusebot-5.cloudsearch.cf sshd\[15690\]: Invalid user asterisk444 from 134.175.68.129 port 56266	2019-11-12 23:41:34

相同子网IP讨论:

IP	类型	评论内容	时间
134.175.68.1	attack	SSH login attempts with user root at 2020-01-02.	2020-01-03 02:48:30

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.175.68.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59547
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.175.68.129.			IN	A

;; AUTHORITY SECTION:
.			385	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111200 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 12 23:41:27 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

129.68.175.134.in-addr.arpa has no PTR record

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 129.68.175.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
219.94.99.133	attack	Nov 27 23:56:22 cp sshd[19000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.94.99.133	2019-11-28 09:14:28
122.51.91.158	attackspam	...	2019-11-28 09:05:40
129.158.73.231	attack	SSH-BruteForce	2019-11-28 09:09:28
176.31.250.171	attack	Nov 27 17:56:08 plusreed sshd[21828]: Invalid user ssssss from 176.31.250.171 ...	2019-11-28 09:19:19
128.14.134.170	attackspambots	port scan and connect, tcp 8443 (https-alt)	2019-11-28 09:22:41
202.29.33.74	attackspambots	Nov 27 13:32:30 sachi sshd\[8026\]: Invalid user szolt from 202.29.33.74 Nov 27 13:32:30 sachi sshd\[8026\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.33.74 Nov 27 13:32:32 sachi sshd\[8026\]: Failed password for invalid user szolt from 202.29.33.74 port 39334 ssh2 Nov 27 13:39:49 sachi sshd\[8709\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.33.74 user=root Nov 27 13:39:51 sachi sshd\[8709\]: Failed password for root from 202.29.33.74 port 47436 ssh2	2019-11-28 09:12:16
45.82.153.136	attackspambots	Nov 28 01:38:20 relay postfix/smtpd\[28507\]: warning: unknown\[45.82.153.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 28 01:38:33 relay postfix/smtpd\[28994\]: warning: unknown\[45.82.153.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 28 01:40:59 relay postfix/smtpd\[22439\]: warning: unknown\[45.82.153.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 28 01:41:17 relay postfix/smtpd\[22439\]: warning: unknown\[45.82.153.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 28 01:43:02 relay postfix/smtpd\[19553\]: warning: unknown\[45.82.153.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-28 09:08:24
222.186.175.148	attackbots	Nov 28 01:56:58 mail sshd[829]: Failed password for root from 222.186.175.148 port 1592 ssh2 Nov 28 01:57:02 mail sshd[829]: Failed password for root from 222.186.175.148 port 1592 ssh2 Nov 28 01:57:06 mail sshd[829]: Failed password for root from 222.186.175.148 port 1592 ssh2 Nov 28 01:57:09 mail sshd[829]: Failed password for root from 222.186.175.148 port 1592 ssh2	2019-11-28 09:06:37
113.160.104.69	attackbotsspam	2019-11-27 16:55:42 H=(customer.worldstream.nl) [113.160.104.69]:60791 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11, 127.0.0.4) (https://www.spamhaus.org/query/ip/113.160.104.69) 2019-11-27 16:55:42 H=(customer.worldstream.nl) [113.160.104.69]:60791 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11, 127.0.0.4) (https://www.spamhaus.org/query/ip/113.160.104.69) 2019-11-27 16:55:43 H=(customer.worldstream.nl) [113.160.104.69]:60791 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11, 127.0.0.4) (https://www.spamhaus.org/query/ip/113.160.104.69) ...	2019-11-28 09:27:59
106.12.56.143	attackbots	3x Failed Password	2019-11-28 09:12:39
109.70.100.27	attackbotsspam	WordPress login Brute force / Web App Attack on client site.	2019-11-28 09:29:48
110.145.25.35	attackspambots	Nov 28 01:59:15 OPSO sshd\[8252\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.145.25.35 user=root Nov 28 01:59:17 OPSO sshd\[8252\]: Failed password for root from 110.145.25.35 port 37347 ssh2 Nov 28 02:08:36 OPSO sshd\[10157\]: Invalid user danny from 110.145.25.35 port 55499 Nov 28 02:08:36 OPSO sshd\[10157\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.145.25.35 Nov 28 02:08:38 OPSO sshd\[10157\]: Failed password for invalid user danny from 110.145.25.35 port 55499 ssh2	2019-11-28 09:28:15
123.31.43.40	attackspam	xmlrpc attack	2019-11-28 09:26:44
218.92.0.173	attackbots	sshd jail - ssh hack attempt	2019-11-28 09:08:56
104.248.126.170	attack	Nov 27 07:04:04 XXX sshd[32694]: Invalid user guest from 104.248.126.170 port 44254	2019-11-28 09:30:57

最近上报的IP列表

180.118.42.128	42.237.43.252	162.211.205.30	111.231.238.188
182.121.32.50	42.233.190.98	89.221.249.102	68.196.16.160
34.232.107.203	123.8.5.92	95.65.164.193	156.135.29.203
178.123.152.210	156.236.97.3	185.143.223.177	78.47.114.131
212.237.62.122	115.49.196.29	90.224.11.107	42.238.191.73