129.144.9.93 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Oracle Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2020-09-26T12:10:38.495359dreamphreak.com sshd[425417]: Invalid user whmcs from 129.144.9.93 port 31964 2020-09-26T12:10:40.316504dreamphreak.com sshd[425417]: Failed password for invalid user whmcs from 129.144.9.93 port 31964 ssh2 ...	2020-09-27 03:28:50
attack	Sep 26 14:15:34 hosting sshd[23525]: Invalid user editor from 129.144.9.93 port 61073 Sep 26 14:15:34 hosting sshd[23525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=oc-129-144-9-93.compute.oraclecloud.com Sep 26 14:15:34 hosting sshd[23525]: Invalid user editor from 129.144.9.93 port 61073 Sep 26 14:15:36 hosting sshd[23525]: Failed password for invalid user editor from 129.144.9.93 port 61073 ssh2 Sep 26 14:21:36 hosting sshd[24147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=oc-129-144-9-93.compute.oraclecloud.com user=root Sep 26 14:21:38 hosting sshd[24147]: Failed password for root from 129.144.9.93 port 47515 ssh2 ...	2020-09-26 19:26:39
attack	Sep 22 22:01:48 root sshd[31976]: Invalid user benjamin from 129.144.9.93 ...	2020-09-23 03:16:11
attack	Sep 22 10:45:45 mail sshd[15467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.9.93	2020-09-22 19:26:27
attackbotsspam	Invalid user beatriz from 129.144.9.93 port 26300	2020-08-25 22:12:51
attackbotsspam	sshd: Failed password for .... from 129.144.9.93 port 11368 ssh2	2020-07-31 19:22:09
attack	Jul 15 01:07:58 ift sshd\[34454\]: Invalid user tgn from 129.144.9.93Jul 15 01:08:01 ift sshd\[34454\]: Failed password for invalid user tgn from 129.144.9.93 port 63127 ssh2Jul 15 01:11:22 ift sshd\[35284\]: Failed password for invalid user admin from 129.144.9.93 port 32052 ssh2Jul 15 01:14:45 ift sshd\[35631\]: Invalid user caesar from 129.144.9.93Jul 15 01:14:48 ift sshd\[35631\]: Failed password for invalid user caesar from 129.144.9.93 port 56497 ssh2 ...	2020-07-15 06:48:55
attack	Jul 11 12:55:52 mail sshd[48933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.9.93 Jul 11 12:55:55 mail sshd[48933]: Failed password for invalid user juan from 129.144.9.93 port 13535 ssh2 ...	2020-07-13 01:08:18
attack	Jul 11 15:46:45 ip-172-31-62-245 sshd\[30864\]: Invalid user atena from 129.144.9.93\ Jul 11 15:46:47 ip-172-31-62-245 sshd\[30864\]: Failed password for invalid user atena from 129.144.9.93 port 55698 ssh2\ Jul 11 15:50:33 ip-172-31-62-245 sshd\[30893\]: Invalid user www from 129.144.9.93\ Jul 11 15:50:35 ip-172-31-62-245 sshd\[30893\]: Failed password for invalid user www from 129.144.9.93 port 26482 ssh2\ Jul 11 15:54:20 ip-172-31-62-245 sshd\[30925\]: Invalid user sheba from 129.144.9.93\	2020-07-12 00:04:29
attackspam	Invalid user grid from 129.144.9.93 port 58710	2020-07-05 16:55:35
attack	Invalid user osm from 129.144.9.93 port 47090	2020-06-18 03:08:07
attackspambots	Jun 17 14:05:24 prod4 sshd\[6137\]: Invalid user caesar from 129.144.9.93 Jun 17 14:05:26 prod4 sshd\[6137\]: Failed password for invalid user caesar from 129.144.9.93 port 61890 ssh2 Jun 17 14:13:03 prod4 sshd\[8792\]: Failed password for root from 129.144.9.93 port 60941 ssh2 ...	2020-06-17 20:44:53
attackbotsspam	Jun 11 01:00:54 lukav-desktop sshd\[24687\]: Invalid user test from 129.144.9.93 Jun 11 01:00:54 lukav-desktop sshd\[24687\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.9.93 Jun 11 01:00:55 lukav-desktop sshd\[24687\]: Failed password for invalid user test from 129.144.9.93 port 37220 ssh2 Jun 11 01:04:42 lukav-desktop sshd\[24723\]: Invalid user bigman from 129.144.9.93 Jun 11 01:04:42 lukav-desktop sshd\[24723\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.9.93	2020-06-11 07:22:03
attackspambots	$f2bV_matches	2020-06-01 14:14:38
attackspambots	Invalid user bretto from 129.144.9.93 port 26627	2020-05-31 00:56:04
attack	May 25 04:58:30 mockhub sshd[13351]: Failed password for root from 129.144.9.93 port 56653 ssh2 ...	2020-05-25 22:16:18
attack	Invalid user bd from 129.144.9.93 port 41764	2020-04-30 04:02:43

相同子网IP讨论:

IP	类型	评论内容	时间
129.144.9.88	attack	Mar 1 07:29:58 dillonfme sshd\[11471\]: Invalid user qy from 129.144.9.88 port 34956 Mar 1 07:29:58 dillonfme sshd\[11471\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.9.88 Mar 1 07:29:59 dillonfme sshd\[11471\]: Failed password for invalid user qy from 129.144.9.88 port 34956 ssh2 Mar 1 07:31:40 dillonfme sshd\[11695\]: Invalid user ix from 129.144.9.88 port 47132 Mar 1 07:31:40 dillonfme sshd\[11695\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.9.88 ...	2019-12-24 06:15:36
129.144.9.201	attack	vps1:sshd-InvalidUser	2019-08-22 04:01:06
129.144.9.201	attackspam	Aug 15 12:47:20 hcbbdb sshd\[25360\]: Invalid user sn0wcat from 129.144.9.201 Aug 15 12:47:20 hcbbdb sshd\[25360\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=oc-129-144-9-201.compute.oraclecloud.com Aug 15 12:47:22 hcbbdb sshd\[25360\]: Failed password for invalid user sn0wcat from 129.144.9.201 port 27614 ssh2 Aug 15 12:52:00 hcbbdb sshd\[25921\]: Invalid user moses from 129.144.9.201 Aug 15 12:52:00 hcbbdb sshd\[25921\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=oc-129-144-9-201.compute.oraclecloud.com	2019-08-15 20:58:38
129.144.9.88	attack	Jan 3 10:49:51 motanud sshd\[26431\]: Invalid user teamspeak from 129.144.9.88 port 48527 Jan 3 10:49:51 motanud sshd\[26431\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.9.88 Jan 3 10:49:53 motanud sshd\[26431\]: Failed password for invalid user teamspeak from 129.144.9.88 port 48527 ssh2	2019-08-04 14:36:55
129.144.9.201	attackbotsspam	Invalid user brix from 129.144.9.201 port 58545	2019-07-13 19:26:16

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.144.9.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6535
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.144.9.93.			IN	A

;; AUTHORITY SECTION:
.			542	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042902 1800 900 604800 86400

;; Query time: 130 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 30 04:02:40 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

93.9.144.129.in-addr.arpa domain name pointer oc-129-144-9-93.compute.oraclecloud.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
93.9.144.129.in-addr.arpa	name = oc-129-144-9-93.compute.oraclecloud.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.222.209.40	attackbotsspam	Jul 1 11:54:54 mail postfix/smtpd\[7354\]: warning: unknown\[185.222.209.40\]: SASL PLAIN authentication failed: \ Jul 1 11:57:22 mail postfix/smtpd\[6496\]: warning: unknown\[185.222.209.40\]: SASL PLAIN authentication failed: \ Jul 1 12:28:23 mail postfix/smtpd\[8270\]: warning: unknown\[185.222.209.40\]: SASL PLAIN authentication failed: \ Jul 1 12:28:33 mail postfix/smtpd\[7983\]: warning: unknown\[185.222.209.40\]: SASL PLAIN authentication failed: \	2019-07-01 19:46:06
177.8.244.38	attackspam	ssh failed login	2019-07-01 19:43:15
184.105.139.68	attack	11211/tcp 7547/tcp 445/tcp... [2019-05-01/06-30]33pkt,17pt.(tcp),1pt.(udp)	2019-07-01 20:29:28
77.40.34.46	attack	Jul 1 08:45:11 ncomp postfix/smtpd[2754]: warning: unknown[77.40.34.46]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 1 08:47:23 ncomp postfix/smtpd[2762]: warning: unknown[77.40.34.46]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 1 08:49:30 ncomp postfix/smtpd[2769]: warning: unknown[77.40.34.46]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-01 20:21:48
104.131.128.245	attack	[portscan] Port scan	2019-07-01 19:53:31
218.92.0.195	attackbots	2019-07-01T12:06:08.968311abusebot-3.cloudsearch.cf sshd\[5851\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.195 user=root	2019-07-01 20:17:46
5.235.194.34	attackbots	Jul 1 05:28:23 xxxxxxx0 sshd[16263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.235.194.34 user=r.r Jul 1 05:28:26 xxxxxxx0 sshd[16263]: Failed password for r.r from 5.235.194.34 port 41993 ssh2 Jul 1 05:28:28 xxxxxxx0 sshd[16263]: Failed password for r.r from 5.235.194.34 port 41993 ssh2 Jul 1 05:28:30 xxxxxxx0 sshd[16263]: Failed password for r.r from 5.235.194.34 port 41993 ssh2 Jul 1 05:28:32 xxxxxxx0 sshd[16263]: Failed password for r.r from 5.235.194.34 port 41993 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=5.235.194.34	2019-07-01 19:55:21
190.96.172.101	attackspambots	Brute force attempt	2019-07-01 20:02:16
46.101.149.230	attackspambots	Jul 1 10:59:27 MK-Soft-VM4 sshd\[22510\]: Invalid user hadoop from 46.101.149.230 port 35968 Jul 1 10:59:27 MK-Soft-VM4 sshd\[22510\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.149.230 Jul 1 10:59:29 MK-Soft-VM4 sshd\[22510\]: Failed password for invalid user hadoop from 46.101.149.230 port 35968 ssh2 ...	2019-07-01 20:12:53
153.126.215.150	attackspam	Jul 1 13:29:37 giegler sshd[13103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.126.215.150 Jul 1 13:29:37 giegler sshd[13103]: Invalid user hekz from 153.126.215.150 port 53720 Jul 1 13:29:40 giegler sshd[13103]: Failed password for invalid user hekz from 153.126.215.150 port 53720 ssh2 Jul 1 13:31:26 giegler sshd[13130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.126.215.150 user=mysql Jul 1 13:31:28 giegler sshd[13130]: Failed password for mysql from 153.126.215.150 port 34155 ssh2	2019-07-01 19:48:12
200.55.198.147	attack	$f2bV_matches	2019-07-01 19:58:56
164.138.19.1	attack	2019-07-01 05:23:28 H=linux20.sgnetway.net [164.138.19.1]:55688 I=[10.100.18.25]:25 sender verify fail for : Unrouteable address 2019-07-01 x@x 2019-07-01 05:23:28 unexpected disconnection while reading SMTP command from linux20.sgnetway.net [164.138.19.1]:55688 I=[10.100.18.25]:25 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=164.138.19.1	2019-07-01 19:49:59
94.231.165.71	attack	Mail sent to address harvested from public web site	2019-07-01 19:49:11
185.254.120.5	attackspambots	RDP Bruteforce	2019-07-01 19:48:47
103.194.184.74	attackbots	Brute forcing RDP port 3389	2019-07-01 20:03:40

最近上报的IP列表

173.242.100.102	162.243.144.159	113.246.49.36	183.232.65.85
162.243.136.15	171.224.181.74	200.84.192.184	51.83.70.93
222.189.82.110	94.138.75.122	89.255.231.253	27.72.90.109
181.196.89.31	125.48.101.231	104.245.227.183	106.12.40.115
40.137.130.181	206.189.147.137	95.24.21.33	223.15.165.155