134.73.5.17 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Global Frag Networks

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	TCP src-port=57594 dst-port=25 Listed on barracuda spam-sorbs truncate-gbudb (93)	2020-06-22 01:45:43

相同子网IP讨论:

IP	类型	评论内容	时间
134.73.5.54	attackbotsspam	Invalid user miguel from 134.73.5.54 port 57516	2020-10-13 23:20:07
134.73.5.54	attackspam	Oct 13 02:04:55 Tower sshd[18749]: Connection from 134.73.5.54 port 59616 on 192.168.10.220 port 22 rdomain "" Oct 13 02:04:55 Tower sshd[18749]: Invalid user test from 134.73.5.54 port 59616 Oct 13 02:04:55 Tower sshd[18749]: error: Could not get shadow information for NOUSER Oct 13 02:04:55 Tower sshd[18749]: Failed password for invalid user test from 134.73.5.54 port 59616 ssh2 Oct 13 02:04:55 Tower sshd[18749]: Received disconnect from 134.73.5.54 port 59616:11: Bye Bye [preauth] Oct 13 02:04:55 Tower sshd[18749]: Disconnected from invalid user test 134.73.5.54 port 59616 [preauth]	2020-10-13 14:37:14
134.73.5.54	attackbotsspam	Oct 12 22:21:32 plex-server sshd[743819]: Invalid user za from 134.73.5.54 port 40072 Oct 12 22:21:32 plex-server sshd[743819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.5.54 Oct 12 22:21:32 plex-server sshd[743819]: Invalid user za from 134.73.5.54 port 40072 Oct 12 22:21:34 plex-server sshd[743819]: Failed password for invalid user za from 134.73.5.54 port 40072 ssh2 Oct 12 22:25:12 plex-server sshd[745582]: Invalid user gunnar from 134.73.5.54 port 33346 ...	2020-10-13 07:17:31
134.73.5.191	attackbots	(sshd) Failed SSH login from 134.73.5.191 (US/United States/oc0h.husbandshow.pw): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 8 12:29:26 server sshd[32125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.5.191 user=root Oct 8 12:29:28 server sshd[32125]: Failed password for root from 134.73.5.191 port 52662 ssh2 Oct 8 12:36:10 server sshd[1755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.5.191 user=root Oct 8 12:36:12 server sshd[1755]: Failed password for root from 134.73.5.191 port 58074 ssh2 Oct 8 12:37:49 server sshd[2143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.5.191 user=root	2020-10-09 02:16:41
134.73.5.191	attackbotsspam	2020-10-08T13:01:22.947869billing sshd[4108]: Failed password for root from 134.73.5.191 port 47200 ssh2 2020-10-08T13:03:47.625521billing sshd[9642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.5.191 user=root 2020-10-08T13:03:49.872048billing sshd[9642]: Failed password for root from 134.73.5.191 port 54128 ssh2 ...	2020-10-08 18:14:10
134.73.5.5	attackspambots	$f2bV_matches	2020-10-04 06:09:39
134.73.5.5	attackbotsspam	2020-10-02T05:11:35.733611srv.ecualinux.com sshd[3273]: Invalid user foo from 134.73.5.5 port 53460 2020-10-02T05:11:35.737895srv.ecualinux.com sshd[3273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.5.5 2020-10-02T05:11:35.733611srv.ecualinux.com sshd[3273]: Invalid user foo from 134.73.5.5 port 53460 2020-10-02T05:11:37.479157srv.ecualinux.com sshd[3273]: Failed password for invalid user foo from 134.73.5.5 port 53460 ssh2 2020-10-02T05:15:11.622961srv.ecualinux.com sshd[3601]: Invalid user adminixxxr from 134.73.5.5 port 50928 2020-10-02T05:15:11.626732srv.ecualinux.com sshd[3601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.5.5 2020-10-02T05:15:11.622961srv.ecualinux.com sshd[3601]: Invalid user adminixxxr from 134.73.5.5 port 50928 2020-10-02T05:15:13.352433srv.ecualinux.com sshd[3601]: Failed password for invalid user adminixxxr from 134.73.5.5 port 50928 ssh2 2020........ ------------------------------	2020-10-03 22:11:15
134.73.56.96	attackspam	SSH invalid-user multiple login try	2020-06-23 22:17:27
134.73.5.117	attackbotsspam	Jun 18 15:10:41 PorscheCustomer sshd[26586]: Failed password for root from 134.73.5.117 port 60914 ssh2 Jun 18 15:12:17 PorscheCustomer sshd[26637]: Failed password for root from 134.73.5.117 port 55252 ssh2 ...	2020-06-18 21:27:53
134.73.5.117	attackspambots	2020-06-18T06:54:57.851182vps751288.ovh.net sshd\[18697\]: Invalid user arch from 134.73.5.117 port 56008 2020-06-18T06:54:57.856003vps751288.ovh.net sshd\[18697\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=itentitat.com 2020-06-18T06:54:59.361920vps751288.ovh.net sshd\[18697\]: Failed password for invalid user arch from 134.73.5.117 port 56008 ssh2 2020-06-18T06:58:32.051169vps751288.ovh.net sshd\[18762\]: Invalid user redmine from 134.73.5.117 port 47942 2020-06-18T06:58:32.060811vps751288.ovh.net sshd\[18762\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=itentitat.com	2020-06-18 15:35:04
134.73.56.115	attack	Invalid user pjh from 134.73.56.115 port 57252	2020-06-18 07:33:59
134.73.5.117	attackbots	2020-06-17 13:54:23.229479-0500 localhost sshd[99585]: Failed password for invalid user mysqluser from 134.73.5.117 port 51248 ssh2	2020-06-18 03:45:10
134.73.5.117	attackbotsspam	Jun 17 06:57:30 sso sshd[20682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.5.117 Jun 17 06:57:32 sso sshd[20682]: Failed password for invalid user tms from 134.73.5.117 port 48766 ssh2 ...	2020-06-17 13:32:42
134.73.56.115	attackspambots	Jun 10 18:24:57 lnxded63 sshd[32007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.56.115 Jun 10 18:24:57 lnxded63 sshd[32007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.56.115	2020-06-11 00:30:39
134.73.56.115	attackbots	May 26 19:21:54 journals sshd\[3928\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.56.115 user=root May 26 19:21:56 journals sshd\[3928\]: Failed password for root from 134.73.56.115 port 41692 ssh2 May 26 19:24:16 journals sshd\[4160\]: Invalid user admin from 134.73.56.115 May 26 19:24:16 journals sshd\[4160\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.56.115 May 26 19:24:18 journals sshd\[4160\]: Failed password for invalid user admin from 134.73.56.115 port 52094 ssh2 ...	2020-05-27 02:04:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.73.5.17
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32824
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.73.5.17.			IN	A

;; AUTHORITY SECTION:
.			470	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062101 1800 900 604800 86400

;; Query time: 135 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 22 01:45:37 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

17.5.73.134.in-addr.arpa domain name pointer njaa.fk38ui.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
17.5.73.134.in-addr.arpa	name = njaa.fk38ui.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
45.82.122.19	attackspambots	Repeated brute force against a port	2020-05-16 13:38:37
187.162.92.76	attackspambots	Automatic report - Port Scan Attack	2020-05-16 14:11:59
218.92.0.212	attackspam	2020-05-16T05:54:37.741228afi-git.jinr.ru sshd[12807]: Failed password for root from 218.92.0.212 port 58595 ssh2 2020-05-16T05:54:41.539400afi-git.jinr.ru sshd[12807]: Failed password for root from 218.92.0.212 port 58595 ssh2 2020-05-16T05:54:44.751116afi-git.jinr.ru sshd[12807]: Failed password for root from 218.92.0.212 port 58595 ssh2 2020-05-16T05:54:44.751271afi-git.jinr.ru sshd[12807]: error: maximum authentication attempts exceeded for root from 218.92.0.212 port 58595 ssh2 [preauth] 2020-05-16T05:54:44.751285afi-git.jinr.ru sshd[12807]: Disconnecting: Too many authentication failures [preauth] ...	2020-05-16 14:08:01
200.72.247.114	attackspam	20/5/12@08:51:29: FAIL: Alarm-Network address from=200.72.247.114 20/5/12@08:51:29: FAIL: Alarm-Network address from=200.72.247.114 ...	2020-05-16 13:46:36
116.196.124.159	attackspambots	May 16 04:52:16 home sshd[28109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.124.159 May 16 04:52:19 home sshd[28109]: Failed password for invalid user years from 116.196.124.159 port 51485 ssh2 May 16 04:58:01 home sshd[28957]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.124.159 ...	2020-05-16 13:31:43
61.74.118.139	attack	May 15 22:54:45 ny01 sshd[2947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.74.118.139 May 15 22:54:47 ny01 sshd[2947]: Failed password for invalid user newuser from 61.74.118.139 port 52082 ssh2 May 15 22:57:05 ny01 sshd[3643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.74.118.139	2020-05-16 14:03:19
128.199.204.164	attackspam	k+ssh-bruteforce	2020-05-16 13:53:05
222.186.180.8	attackbotsspam	Brute-force attempt banned	2020-05-16 14:11:39
195.155.169.44	attackspam	Port scan denied	2020-05-16 14:11:05
221.231.211.51	attackbotsspam	1433/tcp [2020-05-15]1pkt	2020-05-16 14:12:29
112.85.42.180	attackbotsspam	May 16 04:44:40 srv-ubuntu-dev3 sshd[32163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.180 user=root May 16 04:44:42 srv-ubuntu-dev3 sshd[32163]: Failed password for root from 112.85.42.180 port 36039 ssh2 May 16 04:44:45 srv-ubuntu-dev3 sshd[32163]: Failed password for root from 112.85.42.180 port 36039 ssh2 May 16 04:44:40 srv-ubuntu-dev3 sshd[32163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.180 user=root May 16 04:44:42 srv-ubuntu-dev3 sshd[32163]: Failed password for root from 112.85.42.180 port 36039 ssh2 May 16 04:44:45 srv-ubuntu-dev3 sshd[32163]: Failed password for root from 112.85.42.180 port 36039 ssh2 May 16 04:44:40 srv-ubuntu-dev3 sshd[32163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.180 user=root May 16 04:44:42 srv-ubuntu-dev3 sshd[32163]: Failed password for root from 112.85.42.180 port 36039 ssh2 M ...	2020-05-16 13:56:18
122.224.232.66	attackbotsspam	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-05-16 13:36:53
95.181.176.249	attack	Automatic report - Banned IP Access	2020-05-16 13:27:37
93.174.93.195	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 87 - port: 40718 proto: UDP cat: Misc Attack	2020-05-16 14:06:54
165.227.42.106	attack	Invalid user amavis from 165.227.42.106 port 46124	2020-05-16 14:01:43

最近上报的IP列表

78.101.17.228	115.68.238.59	88.169.26.23	61.139.23.69
170.0.56.29	120.31.135.195	116.203.231.59	80.12.242.124
95.43.57.107	119.96.85.98	150.136.101.56	41.224.246.224
171.237.70.59	111.119.185.27	50.2.185.139	168.90.227.90
116.3.206.155	88.240.9.89	90.126.241.175	5.251.15.138