必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): Shymkent

省份(region): Shymkent

国家(country): Kazakhstan

运营商(isp): JSC Kazakhtelecom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
类型 评论内容 时间
attackbots
Unauthorized connection attempt detected from IP address 2.134.188.93 to port 23 [J]
2020-02-03 05:05:10
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.134.188.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47387
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.134.188.93.			IN	A

;; AUTHORITY SECTION:
.			400	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020201 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 05:05:01 CST 2020
;; MSG SIZE  rcvd: 116
HOST信息:
93.188.134.2.in-addr.arpa domain name pointer 2.134.188.93.megaline.telecom.kz.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
93.188.134.2.in-addr.arpa	name = 2.134.188.93.megaline.telecom.kz.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
191.248.237.237 attack
Attempt to attack host OS, exploiting network vulnerabilities, on 03-11-2019 05:50:21.
2019-11-03 18:25:42
88.247.184.18 attack
Automatic report - Banned IP Access
2019-11-03 18:58:52
185.153.197.68 attack
Nov  3 06:39:55 h2177944 kernel: \[5635280.692933\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.153.197.68 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=59782 PROTO=TCP SPT=59706 DPT=22222 WINDOW=1024 RES=0x00 SYN URGP=0 
Nov  3 06:42:46 h2177944 kernel: \[5635451.807778\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.153.197.68 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=19867 PROTO=TCP SPT=59705 DPT=33896 WINDOW=1024 RES=0x00 SYN URGP=0 
Nov  3 06:49:07 h2177944 kernel: \[5635832.344097\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.153.197.68 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=58931 PROTO=TCP SPT=59702 DPT=2222 WINDOW=1024 RES=0x00 SYN URGP=0 
Nov  3 06:49:39 h2177944 kernel: \[5635865.087131\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.153.197.68 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=44998 PROTO=TCP SPT=59706 DPT=3340 WINDOW=1024 RES=0x00 SYN URGP=0 
Nov  3 06:49:46 h2177944 kernel: \[5635871.638083\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.153.197.68 DST=85.21
2019-11-03 18:58:27
95.18.157.105 attackbots
5555/tcp
[2019-11-03]1pkt
2019-11-03 18:34:26
240e:f7:4f01:c::3 attackspambots
240e:00f7:4f01:000c:0000:0000:0000:0003 was recorded 21 times by 2 hosts attempting to connect to the following ports: 34567,10243,8112,20000,3299,9090,40000,33338,5009,1880,5985,10134,9030,8088,5672,9944. Incident counter (4h, 24h, all-time): 21, 135, 320
2019-11-03 18:19:18
51.254.211.232 attack
2019-11-03T07:00:02.565860shield sshd\[11712\]: Invalid user P@\$\$W0Rd1 from 51.254.211.232 port 33264
2019-11-03T07:00:02.571642shield sshd\[11712\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=server1.webforce-code.fr
2019-11-03T07:00:04.317125shield sshd\[11712\]: Failed password for invalid user P@\$\$W0Rd1 from 51.254.211.232 port 33264 ssh2
2019-11-03T07:03:48.774752shield sshd\[12319\]: Invalid user Z!X@C\#V\$B%N\^ from 51.254.211.232 port 43212
2019-11-03T07:03:48.780484shield sshd\[12319\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=server1.webforce-code.fr
2019-11-03 18:51:14
106.12.21.124 attackbotsspam
Nov  2 21:29:42 hanapaa sshd\[6543\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.21.124  user=root
Nov  2 21:29:44 hanapaa sshd\[6543\]: Failed password for root from 106.12.21.124 port 60868 ssh2
Nov  2 21:34:48 hanapaa sshd\[6944\]: Invalid user dspace from 106.12.21.124
Nov  2 21:34:48 hanapaa sshd\[6944\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.21.124
Nov  2 21:34:50 hanapaa sshd\[6944\]: Failed password for invalid user dspace from 106.12.21.124 port 42088 ssh2
2019-11-03 18:23:41
80.78.240.76 attackbots
Nov  3 05:45:10 localhost sshd[14674]: Failed password for root from 80.78.240.76 port 59538 ssh2
Nov  3 05:48:55 localhost sshd[14812]: Invalid user hadoop from 80.78.240.76 port 50443
Nov  3 05:48:55 localhost sshd[14812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.78.240.76 
Nov  3 05:48:55 localhost sshd[14812]: Invalid user hadoop from 80.78.240.76 port 50443
Nov  3 05:48:57 localhost sshd[14812]: Failed password for invalid user hadoop from 80.78.240.76 port 50443 ssh2
2019-11-03 18:52:54
112.85.42.232 attack
2019-11-03T10:22:33.329321abusebot-2.cloudsearch.cf sshd\[16854\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.232  user=root
2019-11-03 18:36:49
136.169.243.176 attack
Attempt to attack host OS, exploiting network vulnerabilities, on 03-11-2019 05:50:19.
2019-11-03 18:30:34
145.239.88.184 attackspam
Nov  3 11:15:57 SilenceServices sshd[23407]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.88.184
Nov  3 11:15:59 SilenceServices sshd[23407]: Failed password for invalid user calvin from 145.239.88.184 port 37038 ssh2
Nov  3 11:19:39 SilenceServices sshd[24498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.88.184
2019-11-03 18:37:44
138.68.12.43 attackspambots
Nov  2 22:03:21 tdfoods sshd\[16572\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43  user=root
Nov  2 22:03:23 tdfoods sshd\[16572\]: Failed password for root from 138.68.12.43 port 35576 ssh2
Nov  2 22:08:22 tdfoods sshd\[17093\]: Invalid user spence from 138.68.12.43
Nov  2 22:08:22 tdfoods sshd\[17093\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43
Nov  2 22:08:24 tdfoods sshd\[17093\]: Failed password for invalid user spence from 138.68.12.43 port 44896 ssh2
2019-11-03 18:54:24
78.189.11.48 attackspam
Unauthorised access (Nov  3) SRC=78.189.11.48 LEN=52 TTL=111 ID=11842 DF TCP DPT=445 WINDOW=8192 SYN
2019-11-03 18:55:38
62.73.1.198 attackspam
Nov  3 11:01:05 ns41 sshd[6074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.73.1.198
Nov  3 11:01:05 ns41 sshd[6074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.73.1.198
2019-11-03 18:40:28
118.89.247.74 attack
Nov  3 07:00:08 work-partkepr sshd\[14723\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.247.74  user=root
Nov  3 07:00:10 work-partkepr sshd\[14723\]: Failed password for root from 118.89.247.74 port 53814 ssh2
...
2019-11-03 18:33:30

最近上报的IP列表

190.83.139.21 221.221.116.9 68.183.104.51 176.27.75.35
227.71.174.155 154.240.232.171 109.163.236.223 166.77.144.91
153.236.50.131 181.18.187.32 13.86.112.175 110.23.22.192
24.193.148.64 220.216.42.40 39.170.0.169 201.34.105.134
212.137.199.205 254.118.243.111 61.254.83.152 84.251.221.211