134.73.129.122

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): EliDC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	2019-07-28T11:29:06.218162abusebot-2.cloudsearch.cf sshd\[27606\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.129.122 user=root	2019-07-28 21:21:00
attackspam	Jul 18 03:14:52 [munged] sshd[553]: Invalid user dad from 134.73.129.122 port 41466 Jul 18 03:14:52 [munged] sshd[553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.129.122	2019-07-18 17:20:40

类型

评论内容

时间

attackspam

2019-07-28T11:29:06.218162abusebot-2.cloudsearch.cf sshd\[27606\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.129.122  user=root

2019-07-28 21:21:00

attackspam

Jul 18 03:14:52 [munged] sshd[553]: Invalid user dad from 134.73.129.122 port 41466
Jul 18 03:14:52 [munged] sshd[553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.129.122

2019-07-18 17:20:40

相同子网IP讨论:

IP	类型	评论内容	时间
134.73.129.2	attackbotsspam	Aug 16 00:26:46 MK-Soft-VM7 sshd\[5700\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.129.2 user=root Aug 16 00:26:48 MK-Soft-VM7 sshd\[5700\]: Failed password for root from 134.73.129.2 port 45102 ssh2 Aug 16 00:31:16 MK-Soft-VM7 sshd\[5746\]: Invalid user client from 134.73.129.2 port 43024 ...	2019-08-16 09:43:59
134.73.129.2	attack	Aug 13 12:47:30 plex sshd[2174]: Invalid user mc from 134.73.129.2 port 58614	2019-08-13 19:11:20
134.73.129.111	attackbotsspam	Brute force SMTP login attempted. ...	2019-08-10 05:00:58
134.73.129.125	attackspambots	Brute force SMTP login attempted. ...	2019-08-10 05:00:23
134.73.129.127	attackbots	Brute force SMTP login attempted. ...	2019-08-10 05:00:06
134.73.129.130	attackbots	Brute force SMTP login attempted. ...	2019-08-10 04:59:48
134.73.129.134	attackbotsspam	Brute force SMTP login attempted. ...	2019-08-10 04:58:31
134.73.129.143	attack	Brute force SMTP login attempted. ...	2019-08-10 04:56:39
134.73.129.154	attack	Brute force SMTP login attempted. ...	2019-08-10 04:56:15
134.73.129.156	attackbots	Brute force SMTP login attempted. ...	2019-08-10 04:55:12
134.73.129.161	attackspam	Brute force SMTP login attempted. ...	2019-08-10 04:54:40
134.73.129.162	attack	Brute force SMTP login attempted. ...	2019-08-10 04:54:03
134.73.129.170	attackbotsspam	Brute force SMTP login attempted. ...	2019-08-10 04:53:15
134.73.129.173	attackbotsspam	Brute force SMTP login attempted. ...	2019-08-10 04:52:24
134.73.129.190	attack	Brute force SMTP login attempted. ...	2019-08-10 04:51:23

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.73.129.122
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43273
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.73.129.122.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 18 17:20:31 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 122.129.73.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 122.129.73.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
43.226.40.124	attackbots	Invalid user rewe from 43.226.40.124 port 40546	2019-08-30 11:50:41
51.255.174.215	attackbots	Aug 30 04:01:05 db sshd\[5945\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=215.ip-51-255-174.eu user=ftp Aug 30 04:01:07 db sshd\[5945\]: Failed password for ftp from 51.255.174.215 port 35045 ssh2 Aug 30 04:06:11 db sshd\[5999\]: Invalid user admin from 51.255.174.215 Aug 30 04:06:11 db sshd\[5999\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=215.ip-51-255-174.eu Aug 30 04:06:13 db sshd\[5999\]: Failed password for invalid user admin from 51.255.174.215 port 56884 ssh2 ...	2019-08-30 12:02:46
113.236.205.227	attackspambots	Unauthorised access (Aug 29) SRC=113.236.205.227 LEN=40 TTL=49 ID=35691 TCP DPT=8080 WINDOW=13607 SYN	2019-08-30 11:26:24
59.70.192.13	attack	$f2bV_matches	2019-08-30 11:45:43
185.74.39.44	attackspam	Hits on port : 8080	2019-08-30 12:06:06
201.251.156.11	attack	Aug 30 05:42:44 cp sshd[24467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.251.156.11 Aug 30 05:42:46 cp sshd[24467]: Failed password for invalid user liliana from 201.251.156.11 port 46019 ssh2 Aug 30 05:48:07 cp sshd[28374]: Failed password for root from 201.251.156.11 port 40496 ssh2	2019-08-30 11:53:34
106.75.91.43	attackspambots	SSH Brute-Force attacks	2019-08-30 11:48:00
106.38.120.189	attack	RDP Scan	2019-08-30 11:33:33
186.224.164.163	attackspambots	Excessive failed login attempts on port 587	2019-08-30 11:43:50
80.211.239.102	attackbotsspam	Aug 29 15:16:45 lcprod sshd\[26534\]: Invalid user nagios from 80.211.239.102 Aug 29 15:16:45 lcprod sshd\[26534\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.239.102 Aug 29 15:16:47 lcprod sshd\[26534\]: Failed password for invalid user nagios from 80.211.239.102 port 45966 ssh2 Aug 29 15:20:53 lcprod sshd\[26927\]: Invalid user honey from 80.211.239.102 Aug 29 15:20:53 lcprod sshd\[26927\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.239.102	2019-08-30 11:30:55
203.205.28.170	attackbots	(Aug 30) LEN=40 TTL=47 ID=1691 TCP DPT=8080 WINDOW=22532 SYN (Aug 29) LEN=40 TTL=46 ID=36409 TCP DPT=8080 WINDOW=22532 SYN (Aug 29) LEN=40 TTL=46 ID=54482 TCP DPT=8080 WINDOW=22532 SYN (Aug 29) LEN=40 TTL=46 ID=64874 TCP DPT=8080 WINDOW=22532 SYN (Aug 28) LEN=40 TTL=46 ID=28553 TCP DPT=8080 WINDOW=22532 SYN (Aug 28) LEN=40 TTL=46 ID=16746 TCP DPT=8080 WINDOW=22532 SYN (Aug 28) LEN=40 TTL=46 ID=31183 TCP DPT=8080 WINDOW=22532 SYN (Aug 26) LEN=40 TTL=46 ID=31356 TCP DPT=8080 WINDOW=22532 SYN (Aug 25) LEN=40 TTL=46 ID=52921 TCP DPT=8080 WINDOW=22532 SYN (Aug 25) LEN=40 TTL=46 ID=53698 TCP DPT=8080 WINDOW=22532 SYN	2019-08-30 11:39:48
158.69.113.76	attackspam	$f2bV_matches	2019-08-30 11:38:20
138.219.220.235	attackbotsspam	Aug 29 22:16:21 xeon postfix/smtpd[37542]: warning: unknown[138.219.220.235]: SASL PLAIN authentication failed: authentication failure	2019-08-30 12:06:42
207.93.25.10	attackspam	Hits on port : 8080	2019-08-30 11:59:31
68.183.160.63	attack	2019-08-30T03:16:12.032738abusebot.cloudsearch.cf sshd\[18536\]: Invalid user tidb from 68.183.160.63 port 34170	2019-08-30 11:45:23

最近上报的IP列表

88.231.167.247	37.187.75.110	82.63.7.169	104.144.167.109
77.37.159.71	176.218.39.242	72.4.100.22	113.182.123.109
45.119.208.235	46.227.162.98	219.80.217.209	200.174.156.62
92.54.200.66	61.73.3.183	37.21.2.206	66.90.170.217
52.178.199.25	177.124.185.27	183.128.183.34	120.15.10.41