134.73.129.194

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): EliDC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Automatic report - SSH Brute-Force Attack	2019-07-17 20:12:11

相同子网IP讨论:

IP	类型	评论内容	时间
134.73.129.2	attackbotsspam	Aug 16 00:26:46 MK-Soft-VM7 sshd\[5700\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.129.2 user=root Aug 16 00:26:48 MK-Soft-VM7 sshd\[5700\]: Failed password for root from 134.73.129.2 port 45102 ssh2 Aug 16 00:31:16 MK-Soft-VM7 sshd\[5746\]: Invalid user client from 134.73.129.2 port 43024 ...	2019-08-16 09:43:59
134.73.129.2	attack	Aug 13 12:47:30 plex sshd[2174]: Invalid user mc from 134.73.129.2 port 58614	2019-08-13 19:11:20
134.73.129.111	attackbotsspam	Brute force SMTP login attempted. ...	2019-08-10 05:00:58
134.73.129.125	attackspambots	Brute force SMTP login attempted. ...	2019-08-10 05:00:23
134.73.129.127	attackbots	Brute force SMTP login attempted. ...	2019-08-10 05:00:06
134.73.129.130	attackbots	Brute force SMTP login attempted. ...	2019-08-10 04:59:48
134.73.129.134	attackbotsspam	Brute force SMTP login attempted. ...	2019-08-10 04:58:31
134.73.129.143	attack	Brute force SMTP login attempted. ...	2019-08-10 04:56:39
134.73.129.154	attack	Brute force SMTP login attempted. ...	2019-08-10 04:56:15
134.73.129.156	attackbots	Brute force SMTP login attempted. ...	2019-08-10 04:55:12
134.73.129.161	attackspam	Brute force SMTP login attempted. ...	2019-08-10 04:54:40
134.73.129.162	attack	Brute force SMTP login attempted. ...	2019-08-10 04:54:03
134.73.129.170	attackbotsspam	Brute force SMTP login attempted. ...	2019-08-10 04:53:15
134.73.129.173	attackbotsspam	Brute force SMTP login attempted. ...	2019-08-10 04:52:24
134.73.129.190	attack	Brute force SMTP login attempted. ...	2019-08-10 04:51:23

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.73.129.194
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28253
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.73.129.194.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 17 20:12:04 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 194.129.73.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 194.129.73.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
104.248.227.130	attack	Aug 11 09:31:51 webhost01 sshd[23416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.227.130 Aug 11 09:31:53 webhost01 sshd[23416]: Failed password for invalid user git from 104.248.227.130 port 34674 ssh2 ...	2019-08-11 13:55:07
45.55.243.124	attackbots	2019-08-10T22:20:27.176600abusebot-3.cloudsearch.cf sshd\[25484\]: Invalid user sales10 from 45.55.243.124 port 38338	2019-08-11 14:34:12
145.131.25.254	attack	REQUESTED PAGE: /wp-login.php	2019-08-11 14:09:59
196.38.70.24	attack	Aug 10 21:45:57 xtremcommunity sshd\[10679\]: Invalid user user001 from 196.38.70.24 port 59679 Aug 10 21:45:57 xtremcommunity sshd\[10679\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.38.70.24 Aug 10 21:45:59 xtremcommunity sshd\[10679\]: Failed password for invalid user user001 from 196.38.70.24 port 59679 ssh2 Aug 10 21:51:17 xtremcommunity sshd\[10864\]: Invalid user ww from 196.38.70.24 port 52450 Aug 10 21:51:17 xtremcommunity sshd\[10864\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.38.70.24 ...	2019-08-11 14:11:25
137.74.213.138	attackbots	EventTime:Sun Aug 11 08:20:34 AEST 2019,Protocol:UDP,VendorEventCode:RT_FLOW_SESSION_DENY,TargetPort:53,SourceIP:137.74.213.138,SourcePort:54515	2019-08-11 14:08:21
191.53.58.161	attack	Aug 11 00:17:07 xeon postfix/smtpd[18163]: warning: unknown[191.53.58.161]: SASL PLAIN authentication failed: authentication failure	2019-08-11 14:51:02
116.196.83.174	attackbots	Aug 11 06:35:53 mail sshd\[21595\]: Failed password for invalid user rios from 116.196.83.174 port 55776 ssh2 Aug 11 06:52:05 mail sshd\[21828\]: Invalid user wxl from 116.196.83.174 port 48448 ...	2019-08-11 13:56:39
156.216.149.169	attackspam	Automatic report - Port Scan Attack	2019-08-11 14:24:03
80.93.213.132	attackbotsspam	SMB Server BruteForce Attack	2019-08-11 14:21:59
162.218.64.59	attackspambots	Aug 11 06:30:40 vps647732 sshd[20923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.218.64.59 Aug 11 06:30:42 vps647732 sshd[20923]: Failed password for invalid user openerp from 162.218.64.59 port 39833 ssh2 ...	2019-08-11 14:09:27
89.248.160.193	attackbotsspam	Scanning (more than 2 packets) random ports - tries to find possible vulnerable services	2019-08-11 14:45:52
61.19.22.217	attack	Aug 11 03:25:45 OPSO sshd\[1753\]: Invalid user ignite from 61.19.22.217 port 60470 Aug 11 03:25:45 OPSO sshd\[1753\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.19.22.217 Aug 11 03:25:48 OPSO sshd\[1753\]: Failed password for invalid user ignite from 61.19.22.217 port 60470 ssh2 Aug 11 03:30:58 OPSO sshd\[2295\]: Invalid user uftp from 61.19.22.217 port 56768 Aug 11 03:30:58 OPSO sshd\[2295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.19.22.217	2019-08-11 14:29:55
148.64.98.84	attack	firewall-block, port(s): 23/tcp	2019-08-11 14:34:52
194.30.100.154	attackspambots	Aug 11 06:47:14 our-server-hostname postfix/smtpd[28276]: connect from unknown[194.30.100.154] Aug x@x Aug 11 06:47:17 our-server-hostname postfix/smtpd[28276]: disconnect from unknown[194.30.100.154] Aug 11 06:49:08 our-server-hostname postfix/smtpd[330]: connect from unknown[194.30.100.154] Aug x@x Aug 11 06:49:11 our-server-hostname postfix/smtpd[330]: disconnect from unknown[194.30.100.154] Aug 11 06:52:06 our-server-hostname postfix/smtpd[1475]: connect from unknown[194.30.100.154] Aug x@x Aug 11 06:52:09 our-server-hostname postfix/smtpd[1475]: disconnect from unknown[194.30.100.154] Aug 11 06:52:47 our-server-hostname postfix/smtpd[32117]: connect from unknown[194.30.100.154] Aug x@x Aug 11 06:52:51 our-server-hostname postfix/smtpd[32117]: disconnect from unknown[194.30.100.154] Aug 11 06:53:46 our-server-hostname postfix/smtpd[1802]: connect from unknown[194.30.100.154] Aug x@x Aug 11 06:53:49 our-server-hostname postfix/smtpd[1802]: disconnect from unknown[194........ -------------------------------	2019-08-11 13:55:56
219.92.245.170	attackbots	Mar 3 02:14:00 motanud sshd\[19242\]: Invalid user user from 219.92.245.170 port 51490 Mar 3 02:14:00 motanud sshd\[19242\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.92.245.170 Mar 3 02:14:02 motanud sshd\[19242\]: Failed password for invalid user user from 219.92.245.170 port 51490 ssh2	2019-08-11 14:21:31

最近上报的IP列表

2003:e5:670c:8900:958e:9b33:2682:5d9d	197.1.159.148	116.11.159.23	27.72.170.175
189.91.77.161	122.2.1.115	191.53.252.168	192.200.207.2
102.129.175.242	212.8.243.42	102.141.240.139	59.53.213.225
117.179.173.110	33.40.55.86	1.85.85.40	218.150.220.206
56.26.2.171	190.153.144.198	49.248.44.3	220.132.60.136