134.73.129.194

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): EliDC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Automatic report - SSH Brute-Force Attack	2019-07-17 20:12:11

相同子网IP讨论:

IP	类型	评论内容	时间
134.73.129.2	attackbotsspam	Aug 16 00:26:46 MK-Soft-VM7 sshd\[5700\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.129.2 user=root Aug 16 00:26:48 MK-Soft-VM7 sshd\[5700\]: Failed password for root from 134.73.129.2 port 45102 ssh2 Aug 16 00:31:16 MK-Soft-VM7 sshd\[5746\]: Invalid user client from 134.73.129.2 port 43024 ...	2019-08-16 09:43:59
134.73.129.2	attack	Aug 13 12:47:30 plex sshd[2174]: Invalid user mc from 134.73.129.2 port 58614	2019-08-13 19:11:20
134.73.129.111	attackbotsspam	Brute force SMTP login attempted. ...	2019-08-10 05:00:58
134.73.129.125	attackspambots	Brute force SMTP login attempted. ...	2019-08-10 05:00:23
134.73.129.127	attackbots	Brute force SMTP login attempted. ...	2019-08-10 05:00:06
134.73.129.130	attackbots	Brute force SMTP login attempted. ...	2019-08-10 04:59:48
134.73.129.134	attackbotsspam	Brute force SMTP login attempted. ...	2019-08-10 04:58:31
134.73.129.143	attack	Brute force SMTP login attempted. ...	2019-08-10 04:56:39
134.73.129.154	attack	Brute force SMTP login attempted. ...	2019-08-10 04:56:15
134.73.129.156	attackbots	Brute force SMTP login attempted. ...	2019-08-10 04:55:12
134.73.129.161	attackspam	Brute force SMTP login attempted. ...	2019-08-10 04:54:40
134.73.129.162	attack	Brute force SMTP login attempted. ...	2019-08-10 04:54:03
134.73.129.170	attackbotsspam	Brute force SMTP login attempted. ...	2019-08-10 04:53:15
134.73.129.173	attackbotsspam	Brute force SMTP login attempted. ...	2019-08-10 04:52:24
134.73.129.190	attack	Brute force SMTP login attempted. ...	2019-08-10 04:51:23

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.73.129.194
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28253
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.73.129.194.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 17 20:12:04 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 194.129.73.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 194.129.73.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
213.184.249.95	attackspam	Apr 26 20:37:02 scw-6657dc sshd[14708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.184.249.95 Apr 26 20:37:02 scw-6657dc sshd[14708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.184.249.95 Apr 26 20:37:04 scw-6657dc sshd[14708]: Failed password for invalid user test2 from 213.184.249.95 port 39244 ssh2 ...	2020-04-27 07:41:01
203.205.37.224	attackspambots	Lines containing failures of 203.205.37.224 Apr 24 13:10:40 penfold sshd[2408]: Invalid user agent from 203.205.37.224 port 50358 Apr 24 13:10:40 penfold sshd[2408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.205.37.224 Apr 24 13:10:41 penfold sshd[2408]: Failed password for invalid user agent from 203.205.37.224 port 50358 ssh2 Apr 24 13:10:42 penfold sshd[2408]: Received disconnect from 203.205.37.224 port 50358:11: Bye Bye [preauth] Apr 24 13:10:42 penfold sshd[2408]: Disconnected from invalid user agent 203.205.37.224 port 50358 [preauth] Apr 24 13:13:46 penfold sshd[2759]: Invalid user admin from 203.205.37.224 port 35206 Apr 24 13:13:46 penfold sshd[2759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.205.37.224 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=203.205.37.224	2020-04-27 07:53:53
95.213.194.166	attack	Apr 27 02:04:50 pkdns2 sshd\[56047\]: Address 95.213.194.166 maps to lizetto.ru, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Apr 27 02:04:50 pkdns2 sshd\[56047\]: Invalid user mk from 95.213.194.166Apr 27 02:04:52 pkdns2 sshd\[56047\]: Failed password for invalid user mk from 95.213.194.166 port 46808 ssh2Apr 27 02:09:08 pkdns2 sshd\[56248\]: Address 95.213.194.166 maps to lizetto.ru, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Apr 27 02:09:08 pkdns2 sshd\[56248\]: Invalid user ifc from 95.213.194.166Apr 27 02:09:09 pkdns2 sshd\[56248\]: Failed password for invalid user ifc from 95.213.194.166 port 56496 ssh2 ...	2020-04-27 07:21:27
140.143.183.71	attackspambots	Apr 26 20:33:50 vlre-nyc-1 sshd\[11038\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.183.71 user=root Apr 26 20:33:52 vlre-nyc-1 sshd\[11038\]: Failed password for root from 140.143.183.71 port 34530 ssh2 Apr 26 20:36:30 vlre-nyc-1 sshd\[11102\]: Invalid user matthew from 140.143.183.71 Apr 26 20:36:30 vlre-nyc-1 sshd\[11102\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.183.71 Apr 26 20:36:31 vlre-nyc-1 sshd\[11102\]: Failed password for invalid user matthew from 140.143.183.71 port 44804 ssh2 ...	2020-04-27 07:58:09
3.22.194.250	attack	mue-0 : Trying access unauthorized files=>/images/jdownloads/screenshots/update.php()	2020-04-27 07:34:19
129.211.171.24	attackbotsspam	Invalid user ajp from 129.211.171.24 port 48404	2020-04-27 07:29:03
95.71.16.62	attackspambots	Apr 27 05:56:29 webhost01 sshd[2836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.71.16.62 Apr 27 05:56:31 webhost01 sshd[2836]: Failed password for invalid user crew from 95.71.16.62 port 54392 ssh2 ...	2020-04-27 07:46:56
106.13.201.158	attackspambots	2020-04-26T22:34:55.103398vps751288.ovh.net sshd\[1130\]: Invalid user git from 106.13.201.158 port 40650 2020-04-26T22:34:55.112675vps751288.ovh.net sshd\[1130\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.201.158 2020-04-26T22:34:57.002995vps751288.ovh.net sshd\[1130\]: Failed password for invalid user git from 106.13.201.158 port 40650 ssh2 2020-04-26T22:37:11.077443vps751288.ovh.net sshd\[1170\]: Invalid user andrew from 106.13.201.158 port 42640 2020-04-26T22:37:11.083212vps751288.ovh.net sshd\[1170\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.201.158	2020-04-27 07:35:08
185.234.217.66	attack	Apr 27 00:55:05 web01.agentur-b-2.de postfix/smtpd[1678962]: warning: unknown[185.234.217.66]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 27 00:55:05 web01.agentur-b-2.de postfix/smtpd[1678962]: lost connection after AUTH from unknown[185.234.217.66] Apr 27 00:58:09 web01.agentur-b-2.de postfix/smtpd[1682789]: warning: unknown[185.234.217.66]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 27 00:58:09 web01.agentur-b-2.de postfix/smtpd[1682789]: lost connection after AUTH from unknown[185.234.217.66] Apr 27 01:00:15 web01.agentur-b-2.de postfix/smtpd[1683273]: warning: unknown[185.234.217.66]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 27 01:00:15 web01.agentur-b-2.de postfix/smtpd[1683273]: lost connection after AUTH from unknown[185.234.217.66]	2020-04-27 07:49:18
37.228.137.244	attackspambots	Apr 27 01:15:00 Invalid user noc from 37.228.137.244 port 44312	2020-04-27 07:51:55
102.134.112.57	attackspambots	Apr 26 20:58:53 marvibiene sshd[22292]: Invalid user user from 102.134.112.57 port 54992 Apr 26 20:58:53 marvibiene sshd[22292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.134.112.57 Apr 26 20:58:53 marvibiene sshd[22292]: Invalid user user from 102.134.112.57 port 54992 Apr 26 20:58:55 marvibiene sshd[22292]: Failed password for invalid user user from 102.134.112.57 port 54992 ssh2 ...	2020-04-27 07:50:22
141.98.9.160	attackspam	Apr 27 06:50:54 webhost01 sshd[3969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.160 Apr 27 06:50:56 webhost01 sshd[3969]: Failed password for invalid user user from 141.98.9.160 port 46517 ssh2 ...	2020-04-27 07:52:40
5.189.161.234	attackbots	20 attempts against mh-misbehave-ban on twig	2020-04-27 07:52:13
180.166.117.254	attackbotsspam	Invalid user raf from 180.166.117.254 port 19095	2020-04-27 07:27:08
194.99.22.105	attackbots	trying to access non-authorized port	2020-04-27 07:23:16

最近上报的IP列表

2003:e5:670c:8900:958e:9b33:2682:5d9d	197.1.159.148	116.11.159.23	27.72.170.175
189.91.77.161	122.2.1.115	191.53.252.168	192.200.207.2
102.129.175.242	212.8.243.42	102.141.240.139	59.53.213.225
117.179.173.110	33.40.55.86	1.85.85.40	218.150.220.206
56.26.2.171	190.153.144.198	49.248.44.3	220.132.60.136