122.200.93.71 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Longtel Networks & Technologies Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Portscan or hack attempt detected by psad/fwsnort	2020-06-13 19:33:31
attack	Portscan or hack attempt detected by psad/fwsnort	2020-01-27 23:52:34

相同子网IP讨论:

IP	类型	评论内容	时间
122.200.93.11	attackspambots	Apr 7 17:43:13 NPSTNNYC01T sshd[23246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.200.93.11 Apr 7 17:43:16 NPSTNNYC01T sshd[23246]: Failed password for invalid user resin from 122.200.93.11 port 35264 ssh2 Apr 7 17:46:29 NPSTNNYC01T sshd[24154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.200.93.11 ...	2020-04-08 05:54:43
122.200.93.11	attackbots	SSH login attempts.	2020-03-27 22:33:31
122.200.93.11	attackbots	2020-03-22T05:39:39.095798struts4.enskede.local sshd\[30338\]: Invalid user davide from 122.200.93.11 port 60582 2020-03-22T05:39:39.103509struts4.enskede.local sshd\[30338\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.200.93.11 2020-03-22T05:39:41.412865struts4.enskede.local sshd\[30338\]: Failed password for invalid user davide from 122.200.93.11 port 60582 ssh2 2020-03-22T05:44:09.474617struts4.enskede.local sshd\[30430\]: Invalid user suva from 122.200.93.11 port 36434 2020-03-22T05:44:09.481186struts4.enskede.local sshd\[30430\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.200.93.11 ...	2020-03-22 16:01:08
122.200.93.11	attackbots	Mar 20 08:00:57 vps46666688 sshd[2978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.200.93.11 Mar 20 08:00:58 vps46666688 sshd[2978]: Failed password for invalid user design from 122.200.93.11 port 57710 ssh2 ...	2020-03-20 20:49:52
122.200.93.11	attackbots	Feb 24 21:45:30 XXX sshd[8791]: Invalid user tom from 122.200.93.11 port 51306	2020-02-25 08:04:21
122.200.93.11	attack	$f2bV_matches	2020-02-08 15:44:28
122.200.93.50	attackbots	firewall-block, port(s): 1433/tcp	2020-01-25 17:18:51
122.200.93.22	attack	SIP/5060 Probe, BF, Hack -	2019-12-28 00:37:55
122.200.93.45	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-22 01:08:40
122.200.93.50	attackbots	" "	2019-10-14 22:33:13

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.200.93.71
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51295
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.200.93.71.			IN	A

;; AUTHORITY SECTION:
.			505	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012700 1800 900 604800 86400

;; Query time: 140 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 27 23:52:22 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 71.93.200.122.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 71.93.200.122.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
193.42.118.91	attack	Scanning and Vuln Attempts	2019-10-15 16:01:36
106.251.67.78	attackbotsspam	Oct 15 05:49:15 vps647732 sshd[29303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.251.67.78 Oct 15 05:49:17 vps647732 sshd[29303]: Failed password for invalid user P@55w0rd!@# from 106.251.67.78 port 58070 ssh2 ...	2019-10-15 15:45:10
218.92.0.190	attackbotsspam	2019-10-14T15:45:40.029895Z \[cowrie.ssh.factory.CowrieSSHFactory\] New connection: 218.92.0.190:63995 $107.175.91.48:22$ \[session: cae45a18b0be\] 2019-10-14T15:46:32.470304Z \[cowrie.ssh.factory.CowrieSSHFactory\] New connection: 218.92.0.190:37538 $107.175.91.48:22$ \[session: c1dbceae3b63\] 2019-10-14T15:47:17.023449Z \[cowrie.ssh.factory.CowrieSSHFactory\] New connection: 218.92.0.190:60049 $107.175.91.48:22$ \[session: 33bd8079202b\] 2019-10-14T15:47:58.187757Z \[cowrie.ssh.factory.CowrieSSHFactory\] New connection: 218.92.0.190:54844 $107.175.91.48:22$ \[session: 83b12d4cd6b5\] 2019-10-14T15:48:42.764514Z \[cowrie.ssh.factory.CowrieSSHFactory\] New connection: 218.92.0.190:15690 $107.175.91.48:22$ \[session: 79ca9d9c11a1\] 2019-10-14T15:49:28.643264Z \[cowrie.ssh.factory.CowrieSSHFactory\] New connection: 218.92.0.190:48905 $107.175.91.48:22$ \[session: ced160b8e6cb\] 2019-10-14T15:50:15.247689Z \[cowrie.ssh.factory.CowrieSSHFactory\] New connection: 218.92.0.190:314 ...	2019-10-15 16:12:57
206.189.30.229	attackspam	Oct 14 21:40:37 php1 sshd\[29422\]: Invalid user sn123 from 206.189.30.229 Oct 14 21:40:37 php1 sshd\[29422\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.30.229 Oct 14 21:40:39 php1 sshd\[29422\]: Failed password for invalid user sn123 from 206.189.30.229 port 39958 ssh2 Oct 14 21:43:59 php1 sshd\[30093\]: Invalid user testwww123 from 206.189.30.229 Oct 14 21:43:59 php1 sshd\[30093\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.30.229	2019-10-15 15:59:51
144.217.164.104	attack	Automatic report - Port Scan	2019-10-15 15:43:44
117.6.78.253	attackspambots	Lines containing failures of 117.6.78.253 Oct 14 19:31:39 shared05 sshd[750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.6.78.253 user=r.r Oct 14 19:31:42 shared05 sshd[750]: Failed password for r.r from 117.6.78.253 port 32784 ssh2 Oct 14 19:31:42 shared05 sshd[750]: Received disconnect from 117.6.78.253 port 32784:11: Bye Bye [preauth] Oct 14 19:31:42 shared05 sshd[750]: Disconnected from authenticating user r.r 117.6.78.253 port 32784 [preauth] Oct 14 19:45:04 shared05 sshd[5369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.6.78.253 user=r.r Oct 14 19:45:06 shared05 sshd[5369]: Failed password for r.r from 117.6.78.253 port 34298 ssh2 Oct 14 19:45:07 shared05 sshd[5369]: Received disconnect from 117.6.78.253 port 34298:11: Bye Bye [preauth] Oct 14 19:45:07 shared05 sshd[5369]: Disconnected from authenticating user r.r 117.6.78.253 port 34298 [preauth] Oct 14 19:49:41 sha........ ------------------------------	2019-10-15 15:47:20
140.143.197.232	attackspambots	Oct 15 08:56:03 vmanager6029 sshd\[1454\]: Invalid user 1234 from 140.143.197.232 port 53370 Oct 15 08:56:03 vmanager6029 sshd\[1454\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.197.232 Oct 15 08:56:04 vmanager6029 sshd\[1454\]: Failed password for invalid user 1234 from 140.143.197.232 port 53370 ssh2	2019-10-15 15:44:24
198.71.238.5	attack	198.71.238.5 - - \[15/Oct/2019:05:48:46 +0200\] "GET /printthread.php\?tid=1321%20and%201%3D1 HTTP/1.1" 200 4494 "-" "-" 198.71.238.5 - - \[15/Oct/2019:05:48:47 +0200\] "GET /printthread.php\?tid=1321%20and%201%3E1 HTTP/1.1" 200 4491 "-" "-" 198.71.238.5 - - \[15/Oct/2019:05:48:47 +0200\] "GET /printthread.php\?tid=1321%27%20and%20%27x%27%3D%27x HTTP/1.1" 200 4493 "-" "-"	2019-10-15 16:02:59
181.40.81.198	attackspam	2019-10-15T07:28:09.328611abusebot-3.cloudsearch.cf sshd\[23768\]: Invalid user composer from 181.40.81.198 port 33809	2019-10-15 15:53:00
13.81.69.78	attackbots	Oct 15 09:51:32 vps647732 sshd[2975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.81.69.78 Oct 15 09:51:34 vps647732 sshd[2975]: Failed password for invalid user hadoop from 13.81.69.78 port 50784 ssh2 ...	2019-10-15 15:58:44
213.32.67.160	attackbots	ssh brute force	2019-10-15 15:47:59
50.21.182.207	attackbots	Oct 15 06:41:41 game-panel sshd[28836]: Failed password for root from 50.21.182.207 port 47614 ssh2 Oct 15 06:46:04 game-panel sshd[29007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.21.182.207 Oct 15 06:46:06 game-panel sshd[29007]: Failed password for invalid user wyan from 50.21.182.207 port 59626 ssh2	2019-10-15 15:54:59
200.72.249.139	attackspam	Oct 15 05:43:49 DAAP sshd[16851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.72.249.139 user=root Oct 15 05:43:51 DAAP sshd[16851]: Failed password for root from 200.72.249.139 port 59897 ssh2 Oct 15 05:48:38 DAAP sshd[16863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.72.249.139 user=root Oct 15 05:48:40 DAAP sshd[16863]: Failed password for root from 200.72.249.139 port 52823 ssh2 ...	2019-10-15 16:08:38
191.252.195.141	attackbots	Oct 15 05:49:18 vmanager6029 sshd\[30140\]: Invalid user aisha from 191.252.195.141 port 56874 Oct 15 05:49:18 vmanager6029 sshd\[30140\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.252.195.141 Oct 15 05:49:20 vmanager6029 sshd\[30140\]: Failed password for invalid user aisha from 191.252.195.141 port 56874 ssh2	2019-10-15 15:41:57
195.22.26.192	attackspam	Scanning and Vuln Attempts	2019-10-15 15:45:29

最近上报的IP列表

190.66.53.120	69.162.107.106	42.119.222.208	219.244.16.226
221.162.231.203	23.99.198.187	193.70.101.171	122.186.134.160
190.66.6.163	180.245.36.160	232.161.110.164	31.170.37.126
210.64.193.175	217.11.29.10	13.144.229.47	188.12.249.144
229.58.253.51	209.10.60.251	173.186.165.134	251.199.159.220