134.73.129.122

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): EliDC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	2019-07-28T11:29:06.218162abusebot-2.cloudsearch.cf sshd\[27606\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.129.122 user=root	2019-07-28 21:21:00
attackspam	Jul 18 03:14:52 [munged] sshd[553]: Invalid user dad from 134.73.129.122 port 41466 Jul 18 03:14:52 [munged] sshd[553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.129.122	2019-07-18 17:20:40

类型

评论内容

时间

attackspam

2019-07-28T11:29:06.218162abusebot-2.cloudsearch.cf sshd\[27606\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.129.122  user=root

2019-07-28 21:21:00

attackspam

Jul 18 03:14:52 [munged] sshd[553]: Invalid user dad from 134.73.129.122 port 41466
Jul 18 03:14:52 [munged] sshd[553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.129.122

2019-07-18 17:20:40

相同子网IP讨论:

IP	类型	评论内容	时间
134.73.129.2	attackbotsspam	Aug 16 00:26:46 MK-Soft-VM7 sshd\[5700\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.129.2 user=root Aug 16 00:26:48 MK-Soft-VM7 sshd\[5700\]: Failed password for root from 134.73.129.2 port 45102 ssh2 Aug 16 00:31:16 MK-Soft-VM7 sshd\[5746\]: Invalid user client from 134.73.129.2 port 43024 ...	2019-08-16 09:43:59
134.73.129.2	attack	Aug 13 12:47:30 plex sshd[2174]: Invalid user mc from 134.73.129.2 port 58614	2019-08-13 19:11:20
134.73.129.111	attackbotsspam	Brute force SMTP login attempted. ...	2019-08-10 05:00:58
134.73.129.125	attackspambots	Brute force SMTP login attempted. ...	2019-08-10 05:00:23
134.73.129.127	attackbots	Brute force SMTP login attempted. ...	2019-08-10 05:00:06
134.73.129.130	attackbots	Brute force SMTP login attempted. ...	2019-08-10 04:59:48
134.73.129.134	attackbotsspam	Brute force SMTP login attempted. ...	2019-08-10 04:58:31
134.73.129.143	attack	Brute force SMTP login attempted. ...	2019-08-10 04:56:39
134.73.129.154	attack	Brute force SMTP login attempted. ...	2019-08-10 04:56:15
134.73.129.156	attackbots	Brute force SMTP login attempted. ...	2019-08-10 04:55:12
134.73.129.161	attackspam	Brute force SMTP login attempted. ...	2019-08-10 04:54:40
134.73.129.162	attack	Brute force SMTP login attempted. ...	2019-08-10 04:54:03
134.73.129.170	attackbotsspam	Brute force SMTP login attempted. ...	2019-08-10 04:53:15
134.73.129.173	attackbotsspam	Brute force SMTP login attempted. ...	2019-08-10 04:52:24
134.73.129.190	attack	Brute force SMTP login attempted. ...	2019-08-10 04:51:23

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.73.129.122
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43273
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.73.129.122.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 18 17:20:31 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 122.129.73.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 122.129.73.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
87.246.7.12	attackbots	(smtpauth) Failed SMTP AUTH login from 87.246.7.12 (BG/Bulgaria/12.0-255.7.246.87.in-addr.arpa): 10 in the last 300 secs	2020-04-03 13:36:17
222.186.31.166	attackbotsspam	Apr 3 06:54:51 ovpn sshd\[28599\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.166 user=root Apr 3 06:54:53 ovpn sshd\[28599\]: Failed password for root from 222.186.31.166 port 20288 ssh2 Apr 3 06:54:55 ovpn sshd\[28599\]: Failed password for root from 222.186.31.166 port 20288 ssh2 Apr 3 06:54:58 ovpn sshd\[28599\]: Failed password for root from 222.186.31.166 port 20288 ssh2 Apr 3 07:01:24 ovpn sshd\[30196\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.166 user=root	2020-04-03 13:23:41
189.79.103.129	attackbots	trying to access non-authorized port	2020-04-03 13:50:01
103.56.206.231	attackspambots	$f2bV_matches	2020-04-03 13:43:16
218.92.0.172	attack	$f2bV_matches	2020-04-03 13:12:29
62.234.145.195	attackspambots	2020-04-03T05:54:14.979572centos sshd[1774]: Failed password for root from 62.234.145.195 port 41880 ssh2 2020-04-03T06:00:44.314901centos sshd[2216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.145.195 user=root 2020-04-03T06:00:46.882149centos sshd[2216]: Failed password for root from 62.234.145.195 port 52536 ssh2 ...	2020-04-03 13:27:50
92.63.194.90	attackbots	Invalid user 1234 from 92.63.194.90 port 48350	2020-04-03 13:59:34
121.134.32.124	attackspambots	Fail2Ban - SSH Bruteforce Attempt	2020-04-03 13:56:36
178.128.72.80	attack	Apr 3 10:26:23 gw1 sshd[26994]: Failed password for root from 178.128.72.80 port 55002 ssh2 ...	2020-04-03 13:37:02
177.125.164.225	attackspambots	[PY] (sshd) Failed SSH login from 177.125.164.225 (BR/Brazil/225-164-125-177-static.clickturbo.com.br): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 3 00:00:55 svr sshd[1626390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.125.164.225 user=root Apr 3 00:00:57 svr sshd[1626390]: Failed password for root from 177.125.164.225 port 52422 ssh2 Apr 3 00:05:35 svr sshd[1628111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.125.164.225 user=root Apr 3 00:05:36 svr sshd[1628111]: Failed password for root from 177.125.164.225 port 35872 ssh2 Apr 3 00:10:13 svr sshd[1629841]: Invalid user lbq from 177.125.164.225 port 47606	2020-04-03 13:53:42
37.187.181.182	attackspam	2020-04-03T05:40:27.116181homeassistant sshd[13857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.181.182 user=root 2020-04-03T05:40:29.376390homeassistant sshd[13857]: Failed password for root from 37.187.181.182 port 39856 ssh2 ...	2020-04-03 13:47:30
161.35.20.215	attack	RDP Bruteforce	2020-04-03 13:28:56
220.135.14.101	attack	Icarus honeypot on github	2020-04-03 13:28:27
218.92.0.165	attack	web-1 [ssh] SSH Attack	2020-04-03 13:57:25
175.24.105.180	attackbots	2020-04-03T03:51:58.958451shield sshd\[9412\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.105.180 user=root 2020-04-03T03:52:01.314837shield sshd\[9412\]: Failed password for root from 175.24.105.180 port 46876 ssh2 2020-04-03T03:53:43.630338shield sshd\[10032\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.105.180 user=root 2020-04-03T03:53:46.067132shield sshd\[10032\]: Failed password for root from 175.24.105.180 port 36956 ssh2 2020-04-03T03:55:33.853903shield sshd\[10568\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.105.180 user=root	2020-04-03 13:22:09

最近上报的IP列表

88.231.167.247	37.187.75.110	82.63.7.169	104.144.167.109
77.37.159.71	176.218.39.242	72.4.100.22	113.182.123.109
45.119.208.235	46.227.162.98	219.80.217.209	200.174.156.62
92.54.200.66	61.73.3.183	37.21.2.206	66.90.170.217
52.178.199.25	177.124.185.27	183.128.183.34	120.15.10.41