122.200.93.11 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Longtel Networks & Technologies Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Apr 7 17:43:13 NPSTNNYC01T sshd[23246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.200.93.11 Apr 7 17:43:16 NPSTNNYC01T sshd[23246]: Failed password for invalid user resin from 122.200.93.11 port 35264 ssh2 Apr 7 17:46:29 NPSTNNYC01T sshd[24154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.200.93.11 ...	2020-04-08 05:54:43
attackbots	SSH login attempts.	2020-03-27 22:33:31
attackbots	2020-03-22T05:39:39.095798struts4.enskede.local sshd\[30338\]: Invalid user davide from 122.200.93.11 port 60582 2020-03-22T05:39:39.103509struts4.enskede.local sshd\[30338\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.200.93.11 2020-03-22T05:39:41.412865struts4.enskede.local sshd\[30338\]: Failed password for invalid user davide from 122.200.93.11 port 60582 ssh2 2020-03-22T05:44:09.474617struts4.enskede.local sshd\[30430\]: Invalid user suva from 122.200.93.11 port 36434 2020-03-22T05:44:09.481186struts4.enskede.local sshd\[30430\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.200.93.11 ...	2020-03-22 16:01:08
attackbots	Mar 20 08:00:57 vps46666688 sshd[2978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.200.93.11 Mar 20 08:00:58 vps46666688 sshd[2978]: Failed password for invalid user design from 122.200.93.11 port 57710 ssh2 ...	2020-03-20 20:49:52
attackbots	Feb 24 21:45:30 XXX sshd[8791]: Invalid user tom from 122.200.93.11 port 51306	2020-02-25 08:04:21
attack	$f2bV_matches	2020-02-08 15:44:28

相同子网IP讨论:

IP	类型	评论内容	时间
122.200.93.71	attackspambots	Portscan or hack attempt detected by psad/fwsnort	2020-06-13 19:33:31
122.200.93.71	attack	Portscan or hack attempt detected by psad/fwsnort	2020-01-27 23:52:34
122.200.93.50	attackbots	firewall-block, port(s): 1433/tcp	2020-01-25 17:18:51
122.200.93.22	attack	SIP/5060 Probe, BF, Hack -	2019-12-28 00:37:55
122.200.93.45	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-22 01:08:40
122.200.93.50	attackbots	" "	2019-10-14 22:33:13

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.200.93.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60501
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.200.93.11.			IN	A

;; AUTHORITY SECTION:
.			133	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020800 1800 900 604800 86400

;; Query time: 138 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 08 15:44:15 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 11.93.200.122.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 11.93.200.122.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
2.25.144.144	attackspam	2019-06-22 04:46:04 1heW2S-0008Md-Eh SMTP connection from $\[2.25.144.144\]$ \[2.25.144.144\]:41235 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-22 04:46:25 1heW2m-0008Mx-C6 SMTP connection from $\[2.25.144.144\]$ \[2.25.144.144\]:41314 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-22 04:46:41 1heW34-0008NC-3z SMTP connection from $\[2.25.144.144\]$ \[2.25.144.144\]:41381 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-30 01:37:47
2.89.161.60	attackbotsspam	2019-03-12 21:54:41 1h3oQ4-0007em-FG SMTP connection from $\[2.89.161.60\]$ \[2.89.161.60\]:40684 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-03-12 21:54:52 1h3oQF-0007fL-Ou SMTP connection from $\[2.89.161.60\]$ \[2.89.161.60\]:40793 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-03-12 21:54:58 1h3oQM-0007fS-E9 SMTP connection from $\[2.89.161.60\]$ \[2.89.161.60\]:40874 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-30 01:17:59
124.120.205.248	attack	Invalid user admin from 124.120.205.248 port 63802	2020-01-30 01:42:29
2.81.210.139	attackbots	2019-10-23 19:31:55 1iNKUE-0003Iv-6n SMTP connection from bl20-210-139.dsl.telepac.pt \[2.81.210.139\]:58359 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-10-23 19:32:14 1iNKUX-0003JB-9c SMTP connection from bl20-210-139.dsl.telepac.pt \[2.81.210.139\]:57107 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-10-23 19:32:28 1iNKUl-0003JN-9T SMTP connection from bl20-210-139.dsl.telepac.pt \[2.81.210.139\]:65263 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-30 01:25:24
2.90.211.197	attackbotsspam	2019-07-08 18:07:17 1hkWAd-0005Fv-Db SMTP connection from $\[2.90.211.197\]$ \[2.90.211.197\]:16475 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 18:07:25 1hkWAl-0005G0-PJ SMTP connection from $\[2.90.211.197\]$ \[2.90.211.197\]:16569 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 18:07:33 1hkWAt-0005GD-Ni SMTP connection from $\[2.90.211.197\]$ \[2.90.211.197\]:16636 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-30 01:12:02
86.57.192.26	attackspambots	Unauthorized connection attempt detected from IP address 86.57.192.26 to port 1433 [J]	2020-01-30 01:46:30
2.29.44.147	attackspambots	2019-03-11 17:25:07 1h3Nje-0000Zq-U7 SMTP connection from $\[2.29.44.147\]$ \[2.29.44.147\]:32469 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-03-11 17:25:18 1h3Njp-0000Zx-QN SMTP connection from $\[2.29.44.147\]$ \[2.29.44.147\]:32561 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-03-11 17:25:25 1h3Njw-0000a8-VQ SMTP connection from $\[2.29.44.147\]$ \[2.29.44.147\]:32632 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-03-13 01:28:05 H=$\[2.29.44.147\]$ \[2.29.44.147\]:18405 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-03-13 01:28:27 H=$\[2.29.44.147\]$ \[2.29.44.147\]:18600 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-03-13 01:28:43 H=$\[2.29.44.147\]$ \[2.29.44.147\]:18758 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-01-30 01:34:58
78.95.179.238	attackspambots	445/tcp [2020-01-29]1pkt	2020-01-30 01:50:14
2.24.17.34	attackbotsspam	2019-07-07 13:13:22 1hk56g-0006ZJ-9e SMTP connection from $\[2.24.17.34\]$ \[2.24.17.34\]:34958 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-07 13:13:29 1hk56m-0006ZM-7n SMTP connection from $\[2.24.17.34\]$ \[2.24.17.34\]:34996 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-07 13:13:34 1hk56r-0006ZR-Fk SMTP connection from $\[2.24.17.34\]$ \[2.24.17.34\]:35034 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-30 01:42:07
2.226.12.12	attackbots	2019-03-11 10:19:00 1h3H5H-0001ks-Id SMTP connection from 2-226-12-12.ip178.fastwebnet.it \[2.226.12.12\]:58544 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-03-11 10:19:35 1h3H5p-0001lz-VK SMTP connection from 2-226-12-12.ip178.fastwebnet.it \[2.226.12.12\]:60475 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-03-11 10:20:30 1h3H6f-0001ox-MW SMTP connection from 2-226-12-12.ip178.fastwebnet.it \[2.226.12.12\]:57502 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-30 01:47:33
75.16.168.140	attackbots	Unauthorized connection attempt detected from IP address 75.16.168.140 to port 23 [J]	2020-01-30 01:24:54
187.178.144.67	attack	23/tcp 23/tcp 23/tcp... [2020-01-29]4pkt,1pt.(tcp)	2020-01-30 01:38:41
2.38.227.149	attackspam	2019-07-05 21:43:25 1hjU79-0000Ir-Ts SMTP connection from net-2-38-227-149.cust.vodafonedsl.it \[2.38.227.149\]:10053 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-05 21:43:28 1hjU7D-0000Iv-Oa SMTP connection from net-2-38-227-149.cust.vodafonedsl.it \[2.38.227.149\]:10088 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-05 21:43:30 1hjU7G-0000Iw-Cy SMTP connection from net-2-38-227-149.cust.vodafonedsl.it \[2.38.227.149\]:10102 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-30 01:29:52
181.30.28.46	attackbotsspam	Jan 29 14:40:10 email sshd\[8567\]: Invalid user admin from 181.30.28.46 Jan 29 14:40:10 email sshd\[8567\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.30.28.46 Jan 29 14:40:12 email sshd\[8567\]: Failed password for invalid user admin from 181.30.28.46 port 48360 ssh2 Jan 29 14:41:11 email sshd\[8759\]: Invalid user bye from 181.30.28.46 Jan 29 14:41:11 email sshd\[8759\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.30.28.46 ...	2020-01-30 01:41:03
78.128.113.132	attack	Jan 28 23:38:08 xzibhostname postfix/smtpd[17268]: warning: hostname ip-113-132.4vendeta.com does not resolve to address 78.128.113.132: Name or service not known Jan 28 23:38:08 xzibhostname postfix/smtpd[17268]: connect from unknown[78.128.113.132] Jan 28 23:38:09 xzibhostname postfix/smtpd[17268]: warning: unknown[78.128.113.132]: SASL LOGIN authentication failed: authentication failure Jan 28 23:38:10 xzibhostname postfix/smtpd[17268]: lost connection after AUTH from unknown[78.128.113.132] Jan 28 23:38:10 xzibhostname postfix/smtpd[17268]: disconnect from unknown[78.128.113.132] Jan 28 23:38:10 xzibhostname postfix/smtpd[23500]: warning: hostname ip-113-132.4vendeta.com does not resolve to address 78.128.113.132: Name or service not known Jan 28 23:38:10 xzibhostname postfix/smtpd[23500]: connect from unknown[78.128.113.132] Jan 28 23:38:11 xzibhostname postfix/smtpd[23500]: warning: unknown[78.128.113.132]: SASL LOGIN authentication failed: authentication failure ........ -------------------------------	2020-01-30 01:48:36

最近上报的IP列表

175.153.255.140	113.22.199.0	36.72.213.235	110.137.162.42
203.35.81.149	63.184.96.72	116.105.132.181	51.158.113.27
103.79.169.157	212.203.64.194	222.65.220.191	45.177.93.168
66.151.211.218	216.104.34.118	189.41.215.109	91.230.255.63
123.241.57.252	46.118.57.105	220.179.88.154	103.90.206.75