134.73.5.5 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): LayerHost

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	$f2bV_matches	2020-10-04 06:09:39
attackbotsspam	2020-10-02T05:11:35.733611srv.ecualinux.com sshd[3273]: Invalid user foo from 134.73.5.5 port 53460 2020-10-02T05:11:35.737895srv.ecualinux.com sshd[3273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.5.5 2020-10-02T05:11:35.733611srv.ecualinux.com sshd[3273]: Invalid user foo from 134.73.5.5 port 53460 2020-10-02T05:11:37.479157srv.ecualinux.com sshd[3273]: Failed password for invalid user foo from 134.73.5.5 port 53460 ssh2 2020-10-02T05:15:11.622961srv.ecualinux.com sshd[3601]: Invalid user adminixxxr from 134.73.5.5 port 50928 2020-10-02T05:15:11.626732srv.ecualinux.com sshd[3601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.5.5 2020-10-02T05:15:11.622961srv.ecualinux.com sshd[3601]: Invalid user adminixxxr from 134.73.5.5 port 50928 2020-10-02T05:15:13.352433srv.ecualinux.com sshd[3601]: Failed password for invalid user adminixxxr from 134.73.5.5 port 50928 ssh2 2020........ ------------------------------	2020-10-03 22:11:15

类型

评论内容

时间

attackspambots

$f2bV_matches

2020-10-04 06:09:39

attackbotsspam

2020-10-02T05:11:35.733611srv.ecualinux.com sshd[3273]: Invalid user foo from 134.73.5.5 port 53460
2020-10-02T05:11:35.737895srv.ecualinux.com sshd[3273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.5.5
2020-10-02T05:11:35.733611srv.ecualinux.com sshd[3273]: Invalid user foo from 134.73.5.5 port 53460
2020-10-02T05:11:37.479157srv.ecualinux.com sshd[3273]: Failed password for invalid user foo from 134.73.5.5 port 53460 ssh2
2020-10-02T05:15:11.622961srv.ecualinux.com sshd[3601]: Invalid user adminixxxr from 134.73.5.5 port 50928
2020-10-02T05:15:11.626732srv.ecualinux.com sshd[3601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.5.5
2020-10-02T05:15:11.622961srv.ecualinux.com sshd[3601]: Invalid user adminixxxr from 134.73.5.5 port 50928
2020-10-02T05:15:13.352433srv.ecualinux.com sshd[3601]: Failed password for invalid user adminixxxr from 134.73.5.5 port 50928 ssh2
2020........
------------------------------

2020-10-03 22:11:15

相同子网IP讨论:

IP	类型	评论内容	时间
134.73.5.54	attackbotsspam	Invalid user miguel from 134.73.5.54 port 57516	2020-10-13 23:20:07
134.73.5.54	attackspam	Oct 13 02:04:55 Tower sshd[18749]: Connection from 134.73.5.54 port 59616 on 192.168.10.220 port 22 rdomain "" Oct 13 02:04:55 Tower sshd[18749]: Invalid user test from 134.73.5.54 port 59616 Oct 13 02:04:55 Tower sshd[18749]: error: Could not get shadow information for NOUSER Oct 13 02:04:55 Tower sshd[18749]: Failed password for invalid user test from 134.73.5.54 port 59616 ssh2 Oct 13 02:04:55 Tower sshd[18749]: Received disconnect from 134.73.5.54 port 59616:11: Bye Bye [preauth] Oct 13 02:04:55 Tower sshd[18749]: Disconnected from invalid user test 134.73.5.54 port 59616 [preauth]	2020-10-13 14:37:14
134.73.5.54	attackbotsspam	Oct 12 22:21:32 plex-server sshd[743819]: Invalid user za from 134.73.5.54 port 40072 Oct 12 22:21:32 plex-server sshd[743819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.5.54 Oct 12 22:21:32 plex-server sshd[743819]: Invalid user za from 134.73.5.54 port 40072 Oct 12 22:21:34 plex-server sshd[743819]: Failed password for invalid user za from 134.73.5.54 port 40072 ssh2 Oct 12 22:25:12 plex-server sshd[745582]: Invalid user gunnar from 134.73.5.54 port 33346 ...	2020-10-13 07:17:31
134.73.5.191	attackbots	(sshd) Failed SSH login from 134.73.5.191 (US/United States/oc0h.husbandshow.pw): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 8 12:29:26 server sshd[32125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.5.191 user=root Oct 8 12:29:28 server sshd[32125]: Failed password for root from 134.73.5.191 port 52662 ssh2 Oct 8 12:36:10 server sshd[1755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.5.191 user=root Oct 8 12:36:12 server sshd[1755]: Failed password for root from 134.73.5.191 port 58074 ssh2 Oct 8 12:37:49 server sshd[2143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.5.191 user=root	2020-10-09 02:16:41
134.73.5.191	attackbotsspam	2020-10-08T13:01:22.947869billing sshd[4108]: Failed password for root from 134.73.5.191 port 47200 ssh2 2020-10-08T13:03:47.625521billing sshd[9642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.5.191 user=root 2020-10-08T13:03:49.872048billing sshd[9642]: Failed password for root from 134.73.5.191 port 54128 ssh2 ...	2020-10-08 18:14:10
134.73.56.96	attackspam	SSH invalid-user multiple login try	2020-06-23 22:17:27
134.73.5.17	attack	TCP src-port=57594 dst-port=25 Listed on barracuda spam-sorbs truncate-gbudb (93)	2020-06-22 01:45:43
134.73.5.117	attackbotsspam	Jun 18 15:10:41 PorscheCustomer sshd[26586]: Failed password for root from 134.73.5.117 port 60914 ssh2 Jun 18 15:12:17 PorscheCustomer sshd[26637]: Failed password for root from 134.73.5.117 port 55252 ssh2 ...	2020-06-18 21:27:53
134.73.5.117	attackspambots	2020-06-18T06:54:57.851182vps751288.ovh.net sshd\[18697\]: Invalid user arch from 134.73.5.117 port 56008 2020-06-18T06:54:57.856003vps751288.ovh.net sshd\[18697\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=itentitat.com 2020-06-18T06:54:59.361920vps751288.ovh.net sshd\[18697\]: Failed password for invalid user arch from 134.73.5.117 port 56008 ssh2 2020-06-18T06:58:32.051169vps751288.ovh.net sshd\[18762\]: Invalid user redmine from 134.73.5.117 port 47942 2020-06-18T06:58:32.060811vps751288.ovh.net sshd\[18762\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=itentitat.com	2020-06-18 15:35:04
134.73.56.115	attack	Invalid user pjh from 134.73.56.115 port 57252	2020-06-18 07:33:59
134.73.5.117	attackbots	2020-06-17 13:54:23.229479-0500 localhost sshd[99585]: Failed password for invalid user mysqluser from 134.73.5.117 port 51248 ssh2	2020-06-18 03:45:10
134.73.5.117	attackbotsspam	Jun 17 06:57:30 sso sshd[20682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.5.117 Jun 17 06:57:32 sso sshd[20682]: Failed password for invalid user tms from 134.73.5.117 port 48766 ssh2 ...	2020-06-17 13:32:42
134.73.56.115	attackspambots	Jun 10 18:24:57 lnxded63 sshd[32007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.56.115 Jun 10 18:24:57 lnxded63 sshd[32007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.56.115	2020-06-11 00:30:39
134.73.56.115	attackbots	May 26 19:21:54 journals sshd\[3928\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.56.115 user=root May 26 19:21:56 journals sshd\[3928\]: Failed password for root from 134.73.56.115 port 41692 ssh2 May 26 19:24:16 journals sshd\[4160\]: Invalid user admin from 134.73.56.115 May 26 19:24:16 journals sshd\[4160\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.56.115 May 26 19:24:18 journals sshd\[4160\]: Failed password for invalid user admin from 134.73.56.115 port 52094 ssh2 ...	2020-05-27 02:04:02
134.73.56.115	attackspambots	Apr 25 06:04:49 h2040555 sshd[12690]: Invalid user carl from 134.73.56.115 Apr 25 06:04:49 h2040555 sshd[12690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.56.115 Apr 25 06:04:51 h2040555 sshd[12690]: Failed password for invalid user carl from 134.73.56.115 port 46672 ssh2 Apr 25 06:04:51 h2040555 sshd[12690]: Received disconnect from 134.73.56.115: 11: Bye Bye [preauth] Apr 25 06:12:29 h2040555 sshd[12834]: Invalid user sales from 134.73.56.115 Apr 25 06:12:29 h2040555 sshd[12834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.56.115 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=134.73.56.115	2020-04-27 03:09:09

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.73.5.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32729
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.73.5.5.			IN	A

;; AUTHORITY SECTION:
.			127	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020100300 1800 900 604800 86400

;; Query time: 86 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 03 13:55:27 CST 2020
;; MSG SIZE  rcvd: 114

HOST信息:

Host 5.5.73.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 5.5.73.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
128.199.98.170	attack	Dec 8 16:37:34 cp sshd[7187]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.98.170	2019-12-09 01:33:32
195.154.242.206	attackbotsspam	$f2bV_matches	2019-12-09 01:17:51
190.8.80.42	attackspambots	Dec 8 18:04:55 minden010 sshd[23955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.8.80.42 Dec 8 18:04:57 minden010 sshd[23955]: Failed password for invalid user treier from 190.8.80.42 port 37910 ssh2 Dec 8 18:11:34 minden010 sshd[29146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.8.80.42 ...	2019-12-09 01:24:03
204.42.253.132	attackbots	scan z	2019-12-09 01:15:49
185.143.223.104	attackbotsspam	2019-12-08T18:26:43.995781+01:00 lumpi kernel: [1115952.618474] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=185.143.223.104 DST=78.46.199.189 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=31241 PROTO=TCP SPT=41622 DPT=9991 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-12-09 01:44:18
119.29.170.202	attackbots	Dec 8 07:14:04 auw2 sshd\[8782\]: Invalid user Oracle123456 from 119.29.170.202 Dec 8 07:14:04 auw2 sshd\[8782\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.170.202 Dec 8 07:14:06 auw2 sshd\[8782\]: Failed password for invalid user Oracle123456 from 119.29.170.202 port 37940 ssh2 Dec 8 07:20:28 auw2 sshd\[9349\]: Invalid user rensheng from 119.29.170.202 Dec 8 07:20:28 auw2 sshd\[9349\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.170.202	2019-12-09 01:25:50
159.203.90.161	attackbots	" "	2019-12-09 01:33:05
83.97.24.10	attackspambots	Dec 8 22:51:45 areeb-Workstation sshd[22493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.97.24.10 Dec 8 22:51:47 areeb-Workstation sshd[22493]: Failed password for invalid user schjefstad from 83.97.24.10 port 34130 ssh2 ...	2019-12-09 01:41:43
91.167.34.221	attackbots	Unauthorized access to SSH at 8/Dec/2019:14:54:33 +0000. Received: (SSH-2.0-OpenSSH_6.7p1 Raspbian-5+deb8u3)	2019-12-09 01:53:30
159.203.111.100	attackbotsspam	Dec 8 07:32:46 kapalua sshd\[29168\]: Invalid user 12345 from 159.203.111.100 Dec 8 07:32:46 kapalua sshd\[29168\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.111.100 Dec 8 07:32:48 kapalua sshd\[29168\]: Failed password for invalid user 12345 from 159.203.111.100 port 60357 ssh2 Dec 8 07:40:43 kapalua sshd\[30090\]: Invalid user watauchi from 159.203.111.100 Dec 8 07:40:43 kapalua sshd\[30090\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.111.100	2019-12-09 01:41:00
111.230.241.245	attack	Too many connections or unauthorized access detected from Arctic banned ip	2019-12-09 01:35:41
51.83.98.52	attack	Dec 8 11:06:32 ny01 sshd[23110]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.98.52 Dec 8 11:06:34 ny01 sshd[23110]: Failed password for invalid user asdf0000 from 51.83.98.52 port 58622 ssh2 Dec 8 11:11:59 ny01 sshd[23712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.98.52	2019-12-09 01:38:21
132.145.16.205	attackbots	Dec 8 07:17:35 auw2 sshd\[9093\]: Invalid user postgres from 132.145.16.205 Dec 8 07:17:35 auw2 sshd\[9093\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.16.205 Dec 8 07:17:37 auw2 sshd\[9093\]: Failed password for invalid user postgres from 132.145.16.205 port 33556 ssh2 Dec 8 07:23:09 auw2 sshd\[9622\]: Invalid user postgres from 132.145.16.205 Dec 8 07:23:09 auw2 sshd\[9622\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.16.205	2019-12-09 01:43:22
211.35.76.241	attackbotsspam	2019-12-08T17:23:49.733845abusebot-3.cloudsearch.cf sshd\[23977\]: Invalid user kaessmayer from 211.35.76.241 port 41325	2019-12-09 01:38:57
119.29.197.54	attack	Dec 8 17:26:14 zeus sshd[21961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.197.54 Dec 8 17:26:16 zeus sshd[21961]: Failed password for invalid user sasuke from 119.29.197.54 port 54572 ssh2 Dec 8 17:33:18 zeus sshd[22164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.197.54 Dec 8 17:33:20 zeus sshd[22164]: Failed password for invalid user guest from 119.29.197.54 port 52882 ssh2	2019-12-09 01:48:39

最近上报的IP列表

131.203.55.49	16.78.212.214	67.253.9.3	160.153.229.246
109.121.243.21	191.113.58.188	57.204.216.57	117.41.251.111
91.222.239.107	223.204.237.24	118.24.122.226	57.148.99.15
215.40.112.210	203.213.9.65	18.222.187.40	192.4.183.21
204.10.141.130	104.131.127.29	94.102.49.93	194.63.177.46