119.118.22.93 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
119.118.22.151	attack	Unauthorized connection attempt detected from IP address 119.118.22.151 to port 999 [J]	2020-03-02 21:00:27
119.118.22.232	attack	[Wed Sep 25 10:55:05.094727 2019] [:error] [pid 25530:tid 140164544657152] [client 119.118.22.232:42178] [client 119.118.22.232] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.1.1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "792"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.1.1"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/normal_login.js"] [unique_id "XYrlGbOU0eqZhpNuV9g9WwAAAMI"] ...	2019-09-25 13:24:32

类型

评论内容

时间

119.118.22.151

attack

Unauthorized connection attempt detected from IP address 119.118.22.151 to port 999 [J]

2020-03-02 21:00:27

119.118.22.232

attack

[Wed Sep 25 10:55:05.094727 2019] [:error] [pid 25530:tid 140164544657152] [client 119.118.22.232:42178] [client 119.118.22.232] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.1.1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "792"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.1.1"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/normal_login.js"] [unique_id "XYrlGbOU0eqZhpNuV9g9WwAAAMI"]
...

2019-09-25 13:24:32

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.118.22.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44652
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;119.118.22.93.			IN	A

;; AUTHORITY SECTION:
.			288	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 17:55:13 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 93.22.118.119.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 93.22.118.119.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
94.98.197.243	attack	2019-09-16 14:21:55 1i9q0w-0005uZ-LZ SMTP connection from \(\[94.98.197.243\]\) \[94.98.197.243\]:13234 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-09-16 14:22:00 1i9q10-0005uf-GU SMTP connection from \(\[94.98.197.243\]\) \[94.98.197.243\]:13254 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-09-16 14:22:02 1i9q13-0005un-Tk SMTP connection from \(\[94.98.197.243\]\) \[94.98.197.243\]:59151 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2019-10-24 20:08:09
94.83.6.74	attackspam	2019-04-20 16:51:48 1hHrLI-00053r-A9 SMTP connection from host74-6-static.83-94-b.business.telecomitalia.it \[94.83.6.74\]:14118 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-04-20 16:52:44 1hHrMB-00054j-VM SMTP connection from host74-6-static.83-94-b.business.telecomitalia.it \[94.83.6.74\]:5196 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-04-20 16:53:12 1hHrMd-00055E-7l SMTP connection from host74-6-static.83-94-b.business.telecomitalia.it \[94.83.6.74\]:22737 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2019-10-24 20:15:32
77.222.134.186	attackspam	Oct 24 11:59:42 work-partkepr sshd\[28962\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.222.134.186 user=root Oct 24 11:59:44 work-partkepr sshd\[28962\]: Failed password for root from 77.222.134.186 port 48488 ssh2 ...	2019-10-24 20:36:51
94.69.229.74	attackspambots	2019-01-27 23:20:12 H=ppp-94-69-229-74.home.otenet.gr \[94.69.229.74\]:11223 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-01-27 23:20:47 H=ppp-94-69-229-74.home.otenet.gr \[94.69.229.74\]:42110 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-01-27 23:21:07 H=ppp-94-69-229-74.home.otenet.gr \[94.69.229.74\]:55448 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2019-10-24 20:24:30
51.68.70.142	attackspam	Oct 24 13:59:54 srv206 sshd[26643]: Invalid user kcs from 51.68.70.142 Oct 24 13:59:54 srv206 sshd[26643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.ip-51-68-70.eu Oct 24 13:59:54 srv206 sshd[26643]: Invalid user kcs from 51.68.70.142 Oct 24 13:59:56 srv206 sshd[26643]: Failed password for invalid user kcs from 51.68.70.142 port 37664 ssh2 ...	2019-10-24 20:14:05
94.69.230.172	attack	2019-09-17 01:27:43 1iA0PB-0001rL-Qg SMTP connection from ppp-94-69-230-172.home.otenet.gr \[94.69.230.172\]:50762 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-09-17 01:27:57 1iA0PR-0001rm-NA SMTP connection from ppp-94-69-230-172.home.otenet.gr \[94.69.230.172\]:50290 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-09-17 01:28:02 1iA0PZ-0001s0-BH SMTP connection from ppp-94-69-230-172.home.otenet.gr \[94.69.230.172\]:56812 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2019-10-24 20:24:12
94.63.64.94	attack	2019-02-27 16:17:15 H=94.64.63.94.rev.vodafone.pt \[94.63.64.94\]:28766 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-02-27 16:17:25 H=94.64.63.94.rev.vodafone.pt \[94.63.64.94\]:28908 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-02-27 16:17:32 H=94.64.63.94.rev.vodafone.pt \[94.63.64.94\]:29008 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2019-10-24 20:40:22
94.96.44.54	attackspam	2019-07-06 16:26:07 1hjlde-0001Ui-Oe SMTP connection from \(\[94.96.44.54\]\) \[94.96.44.54\]:8877 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-06 16:26:22 1hjldu-0001Ut-7Y SMTP connection from \(\[94.96.44.54\]\) \[94.96.44.54\]:9035 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-06 16:26:32 1hjle3-0001V1-Eu SMTP connection from \(\[94.96.44.54\]\) \[94.96.44.54\]:15820 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2019-10-24 20:15:05
218.56.110.203	attackbots	Oct 24 15:22:33 server sshd\[15048\]: Invalid user apache2 from 218.56.110.203 port 29470 Oct 24 15:22:33 server sshd\[15048\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.56.110.203 Oct 24 15:22:35 server sshd\[15048\]: Failed password for invalid user apache2 from 218.56.110.203 port 29470 ssh2 Oct 24 15:32:09 server sshd\[13368\]: Invalid user nicarao from 218.56.110.203 port 45727 Oct 24 15:32:09 server sshd\[13368\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.56.110.203	2019-10-24 20:39:38
94.63.35.110	attackbots	2019-01-19 06:05:46 H=110.35.63.94.rev.vodafone.pt \[94.63.35.110\]:16632 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-01-19 06:05:51 H=110.35.63.94.rev.vodafone.pt \[94.63.35.110\]:10297 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-01-19 06:05:57 H=110.35.63.94.rev.vodafone.pt \[94.63.35.110\]:16756 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2019-10-24 20:41:31
88.255.183.34	attackspambots	Unauthorized connection attempt from IP address 88.255.183.34 on Port 445(SMB)	2019-10-24 20:01:40
94.73.40.154	attack	2019-10-24 03:11:48 1iNRfH-000871-B1 SMTP connection from \(\[94.73.40.154\]\) \[94.73.40.154\]:59184 I=\[193.107.90.29\]:25 closed by DROP in ACL 2019-10-24 03:11:52 1iNRfL-000876-Lv SMTP connection from \(\[94.73.40.154\]\) \[94.73.40.154\]:59256 I=\[193.107.90.29\]:25 closed by DROP in ACL 2019-10-24 03:11:57 1iNRfP-00087B-TO SMTP connection from \(\[94.73.40.154\]\) \[94.73.40.154\]:59306 I=\[193.107.90.29\]:25 closed by DROP in ACL ...	2019-10-24 20:20:20
112.91.150.123	attackspam	2019-10-24T14:10:44.401804scmdmz1 sshd\[9255\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.150.123 user=root 2019-10-24T14:10:46.547300scmdmz1 sshd\[9255\]: Failed password for root from 112.91.150.123 port 58888 ssh2 2019-10-24T14:15:59.300444scmdmz1 sshd\[9613\]: Invalid user earleen from 112.91.150.123 port 47461 ...	2019-10-24 20:16:22
94.63.82.123	attackspam	2019-01-26 22:15:09 H=123.82.63.94.rev.vodafone.pt \[94.63.82.123\]:48648 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-01-26 22:15:50 H=123.82.63.94.rev.vodafone.pt \[94.63.82.123\]:48998 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-01-26 22:16:15 H=123.82.63.94.rev.vodafone.pt \[94.63.82.123\]:49212 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2019-10-24 20:40:07
116.110.117.42	attackbotsspam	Oct 24 17:33:51 areeb-Workstation sshd[11367]: Failed password for root from 116.110.117.42 port 24428 ssh2 ...	2019-10-24 20:06:42

最近上报的IP列表

119.118.23.11	119.118.23.13	119.118.23.129	119.118.23.111
119.118.23.138	119.118.23.146	119.118.23.191	119.118.23.157
119.118.23.204	119.118.23.235	119.118.23.214	119.118.23.27
119.118.23.228	119.118.23.7	119.118.23.8	116.52.118.221
119.118.23.92	119.118.23.98	119.118.230.49	119.118.230.106