93.99.134.132 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Czech Republic

运营商(isp): V - Data S.R.O. Vysoke Myto

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Distributed brute force attack	2020-07-31 16:47:22

相同子网IP讨论:

IP	类型	评论内容	时间
93.99.134.28	attackbots	failed_logins	2020-09-19 01:54:05
93.99.134.28	attackspambots	failed_logins	2020-09-18 17:51:33
93.99.134.28	attackbotsspam	(CZ/Czechia/-) SMTP Bruteforcing attempts	2020-09-18 08:05:17
93.99.134.148	attackbotsspam	Brute force attempt	2020-08-30 08:02:10
93.99.134.28	attackspambots	(smtpauth) Failed SMTP AUTH login from 93.99.134.28 (CZ/Czechia/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-07-07 11:21:01 plain authenticator failed for ([93.99.134.28]) [93.99.134.28]: 535 Incorrect authentication data (set_id=info@beshelsa.com)	2020-07-07 17:20:57
93.99.134.28	attackbotsspam	Jun 18 13:50:56 mail.srvfarm.net postfix/smtps/smtpd[1469501]: warning: unknown[93.99.134.28]: SASL PLAIN authentication failed: Jun 18 13:50:56 mail.srvfarm.net postfix/smtps/smtpd[1469501]: lost connection after AUTH from unknown[93.99.134.28] Jun 18 13:52:52 mail.srvfarm.net postfix/smtps/smtpd[1472204]: warning: unknown[93.99.134.28]: SASL PLAIN authentication failed: Jun 18 13:52:52 mail.srvfarm.net postfix/smtps/smtpd[1472204]: lost connection after AUTH from unknown[93.99.134.28] Jun 18 13:59:23 mail.srvfarm.net postfix/smtpd[1474820]: warning: unknown[93.99.134.28]: SASL PLAIN authentication failed:	2020-06-19 00:13:54
93.99.134.148	attack	Jun 13 22:57:19 mail.srvfarm.net postfix/smtpd[1295659]: warning: unknown[93.99.134.148]: SASL PLAIN authentication failed: Jun 13 22:57:19 mail.srvfarm.net postfix/smtpd[1295659]: lost connection after AUTH from unknown[93.99.134.148] Jun 13 22:59:52 mail.srvfarm.net postfix/smtpd[1295659]: lost connection after CONNECT from unknown[93.99.134.148] Jun 13 23:05:58 mail.srvfarm.net postfix/smtps/smtpd[1295672]: warning: unknown[93.99.134.148]: SASL PLAIN authentication failed: Jun 13 23:05:58 mail.srvfarm.net postfix/smtps/smtpd[1295672]: lost connection after AUTH from unknown[93.99.134.148]	2020-06-14 08:07:11
93.99.134.46	attack	Jun 5 17:02:20 mail.srvfarm.net postfix/smtps/smtpd[3138301]: warning: unknown[93.99.134.46]: SASL PLAIN authentication failed: Jun 5 17:02:20 mail.srvfarm.net postfix/smtps/smtpd[3138301]: lost connection after AUTH from unknown[93.99.134.46] Jun 5 17:03:28 mail.srvfarm.net postfix/smtps/smtpd[3138301]: warning: unknown[93.99.134.46]: SASL PLAIN authentication failed: Jun 5 17:03:28 mail.srvfarm.net postfix/smtps/smtpd[3138301]: lost connection after AUTH from unknown[93.99.134.46] Jun 5 17:10:44 mail.srvfarm.net postfix/smtpd[3150167]: warning: unknown[93.99.134.46]: SASL PLAIN authentication failed: Jun 5 17:10:44 mail.srvfarm.net postfix/smtpd[3150167]: lost connection after AUTH from unknown[93.99.134.46]	2020-06-08 00:15:13

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 93.99.134.132
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4033
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;93.99.134.132.			IN	A

;; AUTHORITY SECTION:
.			361	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020073100 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jul 31 16:47:47 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 132.134.99.93.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 132.134.99.93.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
156.251.174.83	attack	Jan 13 15:20:55 pi sshd[11573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.251.174.83 Jan 13 15:20:57 pi sshd[11573]: Failed password for invalid user yzq from 156.251.174.83 port 47834 ssh2	2020-03-13 21:03:46
77.247.110.94	attackbots	[2020-03-13 09:09:23] NOTICE[1148][C-0001122c] chan_sip.c: Call from '' (77.247.110.94:61779) to extension '01790900113011101148585359060' rejected because extension not found in context 'public'. [2020-03-13 09:09:23] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-13T09:09:23.215-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01790900113011101148585359060",SessionID="0x7fd82ca712e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.94/61779",ACLName="no_extension_match" [2020-03-13 09:09:38] NOTICE[1148][C-0001122d] chan_sip.c: Call from '' (77.247.110.94:59980) to extension '0500118901148717079038' rejected because extension not found in context 'public'. [2020-03-13 09:09:38] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-13T09:09:38.501-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="0500118901148717079038",SessionID="0x7fd82c530768",LocalAddress="IPV4/UDP/19 ...	2020-03-13 21:10:53
185.46.18.82	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-13 21:17:45
154.92.14.46	attackbots	Jan 28 20:52:02 pi sshd[30158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.92.14.46 Jan 28 20:52:03 pi sshd[30158]: Failed password for invalid user cloudtest from 154.92.14.46 port 47500 ssh2	2020-03-13 21:31:27
156.205.196.168	attackspam	Jan 16 12:46:02 pi sshd[3769]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.205.196.168 Jan 16 12:46:04 pi sshd[3769]: Failed password for invalid user monitor from 156.205.196.168 port 57075 ssh2	2020-03-13 21:20:11
187.75.177.206	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/187.75.177.206/ BR - 1H : (85) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN27699 IP : 187.75.177.206 CIDR : 187.75.0.0/16 PREFIX COUNT : 267 UNIQUE IP COUNT : 6569728 ATTACKS DETECTED ASN27699 : 1H - 5 3H - 14 6H - 14 12H - 14 24H - 14 DateTime : 2020-03-13 13:48:58 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2020-03-13 21:07:06
154.83.29.6	attack	Invalid user userftp from 154.83.29.6 port 41060	2020-03-13 21:36:28
156.96.153.17	attackspambots	Jan 20 23:58:42 pi sshd[9408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.96.153.17 Jan 20 23:58:43 pi sshd[9408]: Failed password for invalid user gp from 156.96.153.17 port 35416 ssh2	2020-03-13 21:01:12
156.222.190.15	attack	Jan 11 12:40:33 pi sshd[29232]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.222.190.15 Jan 11 12:40:35 pi sshd[29232]: Failed password for invalid user admin from 156.222.190.15 port 34022 ssh2	2020-03-13 21:17:05
156.196.9.156	attackspam	Jan 4 17:51:02 pi sshd[4479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.196.9.156 Jan 4 17:51:03 pi sshd[4479]: Failed password for invalid user admin from 156.196.9.156 port 54888 ssh2	2020-03-13 21:25:33
192.171.62.226	attack	Hits on port : 445	2020-03-13 21:03:28
93.136.117.25	attackbots	Honeypot attack, port: 445, PTR: 93-136-117-25.adsl.net.t-com.hr.	2020-03-13 20:58:47
138.197.145.26	attackspambots	5x Failed Password	2020-03-13 21:10:11
155.138.203.20	attack	Feb 3 04:06:54 pi sshd[900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.138.203.20 Feb 3 04:06:56 pi sshd[900]: Failed password for invalid user z from 155.138.203.20 port 42398 ssh2	2020-03-13 21:26:16
103.66.96.254	attackbotsspam	Mar 13 13:54:10 localhost sshd\[17461\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.66.96.254 user=root Mar 13 13:54:12 localhost sshd\[17461\]: Failed password for root from 103.66.96.254 port 51970 ssh2 Mar 13 13:58:42 localhost sshd\[17759\]: Invalid user git_user from 103.66.96.254 Mar 13 13:58:42 localhost sshd\[17759\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.66.96.254 Mar 13 13:58:45 localhost sshd\[17759\]: Failed password for invalid user git_user from 103.66.96.254 port 23665 ssh2 ...	2020-03-13 21:15:28

最近上报的IP列表

30.41.100.69	41.61.216.180	30.204.121.132	52.226.18.47
31.61.2.49	150.201.127.248	10.65.245.167	47.190.27.254
8.60.18.216	242.30.100.145	217.26.140.37	1.55.204.208
189.79.123.26	23.90.28.215	61.2.180.130	23.99.205.174
203.205.55.127	77.49.101.63	107.175.66.99	117.210.188.252