109.93.200.120

基本信息:

城市(city): Kovacica

省份(region): Vojvodina

国家(country): Serbia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): TELEKOM SRBIJA a.d.

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.93.200.120
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5991
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;109.93.200.120.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072201 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 23 03:26:13 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

120.200.93.109.in-addr.arpa domain name pointer 109-93-200-120.dynamic.isp.telekom.rs.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
120.200.93.109.in-addr.arpa	name = 109-93-200-120.dynamic.isp.telekom.rs.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
165.227.124.168	attack	Aug 15 09:11:25 ws22vmsma01 sshd[176935]: Failed password for root from 165.227.124.168 port 34536 ssh2 ...	2020-08-15 20:42:02
159.65.127.42	attackspambots	159.65.127.42 - - [15/Aug/2020:13:25:22 +0100] "POST /wp-login.php HTTP/1.1" 200 1795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.65.127.42 - - [15/Aug/2020:13:25:28 +0100] "POST /wp-login.php HTTP/1.1" 200 1792 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.65.127.42 - - [15/Aug/2020:13:25:35 +0100] "POST /wp-login.php HTTP/1.1" 200 1794 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-15 20:46:19
5.188.62.147	attack	5.188.62.147 - - [15/Aug/2020:13:25:19 +0100] "POST /wp-login.php HTTP/1.1" 200 1969 "-" "Mozilla/5.0 (Windows NT 6.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36" 5.188.62.147 - - [15/Aug/2020:13:25:20 +0100] "POST /wp-login.php HTTP/1.1" 200 1967 "-" "Mozilla/5.0 (Windows NT 6.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36" 5.188.62.147 - - [15/Aug/2020:13:25:21 +0100] "POST /wp-login.php HTTP/1.1" 200 1969 "-" "Mozilla/5.0 (Windows NT 6.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36" ...	2020-08-15 20:57:18
20.39.190.185	attack	Aug 11 19:03:08 h2034429 sshd[2146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.39.190.185 user=r.r Aug 11 19:03:11 h2034429 sshd[2146]: Failed password for r.r from 20.39.190.185 port 37770 ssh2 Aug 11 19:03:11 h2034429 sshd[2146]: Received disconnect from 20.39.190.185 port 37770:11: Bye Bye [preauth] Aug 11 19:03:11 h2034429 sshd[2146]: Disconnected from 20.39.190.185 port 37770 [preauth] Aug 11 19:22:37 h2034429 sshd[2413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.39.190.185 user=r.r Aug 11 19:22:39 h2034429 sshd[2413]: Failed password for r.r from 20.39.190.185 port 42428 ssh2 Aug 11 19:22:39 h2034429 sshd[2413]: Received disconnect from 20.39.190.185 port 42428:11: Bye Bye [preauth] Aug 11 19:22:39 h2034429 sshd[2413]: Disconnected from 20.39.190.185 port 42428 [preauth] Aug 11 19:25:44 h2034429 sshd[2475]: pam_unix(sshd:auth): authentication failure; logname= uid=0........ -------------------------------	2020-08-15 20:21:13
222.186.190.17	attackspam	Aug 15 12:14:55 vps-51d81928 sshd[644376]: Failed password for root from 222.186.190.17 port 26306 ssh2 Aug 15 12:15:48 vps-51d81928 sshd[644391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.17 user=root Aug 15 12:15:49 vps-51d81928 sshd[644391]: Failed password for root from 222.186.190.17 port 49292 ssh2 Aug 15 12:16:40 vps-51d81928 sshd[644393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.17 user=root Aug 15 12:16:43 vps-51d81928 sshd[644393]: Failed password for root from 222.186.190.17 port 55006 ssh2 ...	2020-08-15 20:17:05
185.172.111.221	attack	Unauthorised access (Aug 15) SRC=185.172.111.221 LEN=40 TTL=53 ID=13003 TCP DPT=8080 WINDOW=46923 SYN Unauthorised access (Aug 13) SRC=185.172.111.221 LEN=40 TTL=53 ID=34227 TCP DPT=8080 WINDOW=31720 SYN Unauthorised access (Aug 12) SRC=185.172.111.221 LEN=40 TTL=53 ID=36865 TCP DPT=8080 WINDOW=31720 SYN Unauthorised access (Aug 12) SRC=185.172.111.221 LEN=40 TTL=53 ID=24705 TCP DPT=8080 WINDOW=46923 SYN Unauthorised access (Aug 12) SRC=185.172.111.221 LEN=40 TTL=53 ID=5523 TCP DPT=8080 WINDOW=31720 SYN Unauthorised access (Aug 12) SRC=185.172.111.221 LEN=40 TTL=53 ID=39167 TCP DPT=8080 WINDOW=46923 SYN Unauthorised access (Aug 9) SRC=185.172.111.221 LEN=40 TTL=53 ID=60189 TCP DPT=8080 WINDOW=31720 SYN Unauthorised access (Aug 9) SRC=185.172.111.221 LEN=40 TTL=53 ID=24166 TCP DPT=8080 WINDOW=46923 SYN	2020-08-15 20:43:25
46.188.90.104	attackbots	Aug 15 06:50:17 serwer sshd\[29192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.188.90.104 user=root Aug 15 06:50:19 serwer sshd\[29192\]: Failed password for root from 46.188.90.104 port 48678 ssh2 Aug 15 06:52:44 serwer sshd\[30852\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.188.90.104 user=root ...	2020-08-15 20:37:42
62.1.90.42	attackbots	Port Scan detected! ...	2020-08-15 20:25:09
46.101.179.164	attackspambots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-08-15 20:44:47
14.143.187.242	attackspambots	2020-08-15T12:41:47.047884shield sshd\[19685\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.143.187.242 user=root 2020-08-15T12:41:48.177799shield sshd\[19685\]: Failed password for root from 14.143.187.242 port 46580 ssh2 2020-08-15T12:46:35.742451shield sshd\[19990\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.143.187.242 user=root 2020-08-15T12:46:37.880862shield sshd\[19990\]: Failed password for root from 14.143.187.242 port 42089 ssh2 2020-08-15T12:51:24.961867shield sshd\[20227\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.143.187.242 user=root	2020-08-15 21:00:41
219.78.62.112	attackspam	" "	2020-08-15 20:16:25
49.88.65.83	attack	spam	2020-08-15 20:47:32
124.239.148.63	attack	Aug 15 14:38:49 vmd36147 sshd[28969]: Failed password for root from 124.239.148.63 port 28791 ssh2 Aug 15 14:42:17 vmd36147 sshd[4413]: Failed password for root from 124.239.148.63 port 40426 ssh2 ...	2020-08-15 20:51:27
173.252.95.112	attackbotsspam	[Sat Aug 15 19:25:56.354856 2020] [:error] [pid 1165:tid 140592558245632] [client 173.252.95.112:49236] [client 173.252.95.112] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/image-loader-worker-v3.js"] [unique_id "XzfUVOniW-eKEEIJLUNKMQABwwA"] ...	2020-08-15 20:32:24
95.71.124.178	attackspambots	Automatic report - Banned IP Access	2020-08-15 20:20:10

最近上报的IP列表

156.35.55.139	24.230.201.168	3.124.184.184	128.148.243.106
81.62.68.98	156.211.126.204	185.178.211.146	207.29.243.5
72.46.117.143	217.128.191.234	73.240.69.239	24.193.26.130
210.137.190.80	12.252.55.65	101.124.244.176	71.227.57.241
84.165.50.124	50.94.164.30	95.247.77.244	105.84.119.203