122.200.93.11 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Longtel Networks & Technologies Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Apr 7 17:43:13 NPSTNNYC01T sshd[23246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.200.93.11 Apr 7 17:43:16 NPSTNNYC01T sshd[23246]: Failed password for invalid user resin from 122.200.93.11 port 35264 ssh2 Apr 7 17:46:29 NPSTNNYC01T sshd[24154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.200.93.11 ...	2020-04-08 05:54:43
attackbots	SSH login attempts.	2020-03-27 22:33:31
attackbots	2020-03-22T05:39:39.095798struts4.enskede.local sshd\[30338\]: Invalid user davide from 122.200.93.11 port 60582 2020-03-22T05:39:39.103509struts4.enskede.local sshd\[30338\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.200.93.11 2020-03-22T05:39:41.412865struts4.enskede.local sshd\[30338\]: Failed password for invalid user davide from 122.200.93.11 port 60582 ssh2 2020-03-22T05:44:09.474617struts4.enskede.local sshd\[30430\]: Invalid user suva from 122.200.93.11 port 36434 2020-03-22T05:44:09.481186struts4.enskede.local sshd\[30430\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.200.93.11 ...	2020-03-22 16:01:08
attackbots	Mar 20 08:00:57 vps46666688 sshd[2978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.200.93.11 Mar 20 08:00:58 vps46666688 sshd[2978]: Failed password for invalid user design from 122.200.93.11 port 57710 ssh2 ...	2020-03-20 20:49:52
attackbots	Feb 24 21:45:30 XXX sshd[8791]: Invalid user tom from 122.200.93.11 port 51306	2020-02-25 08:04:21
attack	$f2bV_matches	2020-02-08 15:44:28

相同子网IP讨论:

IP	类型	评论内容	时间
122.200.93.71	attackspambots	Portscan or hack attempt detected by psad/fwsnort	2020-06-13 19:33:31
122.200.93.71	attack	Portscan or hack attempt detected by psad/fwsnort	2020-01-27 23:52:34
122.200.93.50	attackbots	firewall-block, port(s): 1433/tcp	2020-01-25 17:18:51
122.200.93.22	attack	SIP/5060 Probe, BF, Hack -	2019-12-28 00:37:55
122.200.93.45	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-22 01:08:40
122.200.93.50	attackbots	" "	2019-10-14 22:33:13

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.200.93.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60501
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.200.93.11.			IN	A

;; AUTHORITY SECTION:
.			133	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020800 1800 900 604800 86400

;; Query time: 138 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 08 15:44:15 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 11.93.200.122.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 11.93.200.122.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
218.255.86.106	attack	2020-09-08T10:54:24.816586shield sshd\[20521\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.255.86.106 user=root 2020-09-08T10:54:27.072784shield sshd\[20521\]: Failed password for root from 218.255.86.106 port 40784 ssh2 2020-09-08T10:58:53.146918shield sshd\[20745\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.255.86.106 user=root 2020-09-08T10:58:54.996838shield sshd\[20745\]: Failed password for root from 218.255.86.106 port 41768 ssh2 2020-09-08T11:03:18.208001shield sshd\[21049\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.255.86.106 user=root	2020-09-08 19:04:17
180.76.160.220	attackbotsspam	(sshd) Failed SSH login from 180.76.160.220 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 7 12:40:04 server sshd[26253]: Invalid user admin from 180.76.160.220 port 56460 Sep 7 12:40:07 server sshd[26253]: Failed password for invalid user admin from 180.76.160.220 port 56460 ssh2 Sep 7 12:44:17 server sshd[27211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.160.220 user=root Sep 7 12:44:19 server sshd[27211]: Failed password for root from 180.76.160.220 port 37040 ssh2 Sep 7 12:47:27 server sshd[27922]: Invalid user james from 180.76.160.220 port 39674	2020-09-08 18:48:05
78.128.113.120	attackbots	Sep 8 12:27:04 relay postfix/smtpd\[18713\]: warning: unknown\[78.128.113.120\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 12:27:22 relay postfix/smtpd\[19188\]: warning: unknown\[78.128.113.120\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 12:27:38 relay postfix/smtpd\[15893\]: warning: unknown\[78.128.113.120\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 12:27:50 relay postfix/smtpd\[10297\]: warning: unknown\[78.128.113.120\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 12:31:58 relay postfix/smtpd\[18716\]: warning: unknown\[78.128.113.120\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-08 18:44:44
106.13.232.79	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 99 - port: 20323 proto: tcp cat: Misc Attackbytes: 60	2020-09-08 19:15:43
102.41.153.100	attackspambots	Mirai and Reaper Exploitation Traffic , PTR: host-102.41.153.100.tedata.net.	2020-09-08 19:23:51
139.59.29.252	attackbotsspam	srv.marc-hoffrichter.de:443 139.59.29.252 - - [07/Sep/2020:18:47:32 +0200] "GET / HTTP/1.1" 403 5565 "-" "Go-http-client/1.1"	2020-09-08 18:46:42
222.179.101.18	attackspam	20/9/8@02:20:50: FAIL: IoT-SSH address from=222.179.101.18 ...	2020-09-08 18:49:35
183.98.42.232	attack	Sep 7 17:58:01 v26 sshd[30733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.98.42.232 user=r.r Sep 7 17:58:03 v26 sshd[30733]: Failed password for r.r from 183.98.42.232 port 54254 ssh2 Sep 7 17:58:03 v26 sshd[30733]: Received disconnect from 183.98.42.232 port 54254:11: Bye Bye [preauth] Sep 7 17:58:03 v26 sshd[30733]: Disconnected from 183.98.42.232 port 54254 [preauth] Sep 7 17:58:57 v26 sshd[30843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.98.42.232 user=r.r Sep 7 17:59:00 v26 sshd[30843]: Failed password for r.r from 183.98.42.232 port 53214 ssh2 Sep 7 17:59:00 v26 sshd[30843]: Received disconnect from 183.98.42.232 port 53214:11: Bye Bye [preauth] Sep 7 17:59:00 v26 sshd[30843]: Disconnected from 183.98.42.232 port 53214 [preauth] Sep 7 17:59:33 v26 sshd[30903]: Invalid user nocWF from 183.98.42.232 port 42364 Sep 7 17:59:33 v26 sshd[30903]: pam_unix(sshd........ -------------------------------	2020-09-08 19:00:48
201.11.159.50	attack	Portscan detected	2020-09-08 18:53:45
74.106.249.155	attackbotsspam	TCP (SYN) 74.106.249.155:48227 -> port 3389, len 44	2020-09-08 18:53:12
107.180.111.12	attackspambots	Automatic report - XMLRPC Attack	2020-09-08 18:57:21
37.152.181.57	attackbots	Sep 8 12:33:53 abendstille sshd\[15966\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.152.181.57 user=root Sep 8 12:33:55 abendstille sshd\[15966\]: Failed password for root from 37.152.181.57 port 36068 ssh2 Sep 8 12:36:40 abendstille sshd\[18943\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.152.181.57 user=root Sep 8 12:36:43 abendstille sshd\[18943\]: Failed password for root from 37.152.181.57 port 45078 ssh2 Sep 8 12:39:31 abendstille sshd\[21920\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.152.181.57 user=root ...	2020-09-08 18:43:05
157.230.33.158	attack	2020-09-08 12:18:54,872 fail2ban.actions: WARNING [ssh] Ban 157.230.33.158	2020-09-08 19:23:12
77.0.218.36	attackspam	Scanning	2020-09-08 18:45:13
95.110.229.194	attack	Sep 8 00:52:12 vps-51d81928 sshd[292825]: Invalid user castro from 95.110.229.194 port 40288 Sep 8 00:52:12 vps-51d81928 sshd[292825]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.110.229.194 Sep 8 00:52:12 vps-51d81928 sshd[292825]: Invalid user castro from 95.110.229.194 port 40288 Sep 8 00:52:15 vps-51d81928 sshd[292825]: Failed password for invalid user castro from 95.110.229.194 port 40288 ssh2 Sep 8 00:55:24 vps-51d81928 sshd[292865]: Invalid user ashley from 95.110.229.194 port 37456 ...	2020-09-08 19:18:22

最近上报的IP列表

175.153.255.140	113.22.199.0	36.72.213.235	110.137.162.42
203.35.81.149	63.184.96.72	116.105.132.181	51.158.113.27
103.79.169.157	212.203.64.194	222.65.220.191	45.177.93.168
66.151.211.218	216.104.34.118	189.41.215.109	91.230.255.63
123.241.57.252	46.118.57.105	220.179.88.154	103.90.206.75