142.93.111.202

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized connection attempt detected from IP address 142.93.111.202 to port 10001 [T]	2020-08-29 21:52:36

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.111.178	attackbots	142.93.111.178 - - \[06/Aug/2020:17:22:55 +0200\] "POST /wp-login.php HTTP/1.1" 200 9954 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 142.93.111.178 - - \[06/Aug/2020:19:10:12 +0200\] "POST /wp-login.php HTTP/1.1" 200 10019 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2020-08-07 03:28:12
142.93.111.178	attackspambots	WordPress login Brute force / Web App Attack on client site.	2020-02-24 02:44:22
142.93.111.24	attack	Dec 16 22:56:49 debian-2gb-nbg1-2 kernel: \[186192.138285\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=142.93.111.24 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=7927 PROTO=TCP SPT=40675 DPT=8332 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-17 08:54:47
142.93.111.5	attack	6 failed attempt(s) in the last 24h	2019-11-15 07:41:55

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.111.202
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24838
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.111.202.			IN	A

;; AUTHORITY SECTION:
.			179	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082900 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Aug 29 21:52:29 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

202.111.93.142.in-addr.arpa domain name pointer scanner51-swordsec.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
202.111.93.142.in-addr.arpa	name = scanner51-swordsec.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
89.163.224.233	attackspam	01/29/2020-16:20:23.045678 89.163.224.233 Protocol: 6 ET SCAN Potential SSH Scan	2020-01-30 05:46:52
49.234.12.123	attackspam	Unauthorized connection attempt detected from IP address 49.234.12.123 to port 2220 [J]	2020-01-30 05:13:58
197.188.207.89	attack	2019-09-23 19:37:41 1iCSHL-00023g-Uz SMTP connection from $\[197.188.207.89\]$ \[197.188.207.89\]:41716 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-09-23 19:37:48 1iCSHT-00023m-P7 SMTP connection from $\[197.188.207.89\]$ \[197.188.207.89\]:41782 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-09-23 19:37:53 1iCSHX-00023u-Tw SMTP connection from $\[197.188.207.89\]$ \[197.188.207.89\]:41846 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-30 05:06:15
92.118.38.40	attackspam	Jan 29 22:20:31 srv01 postfix/smtpd\[20140\]: warning: unknown\[92.118.38.40\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 29 22:20:54 srv01 postfix/smtpd\[20140\]: warning: unknown\[92.118.38.40\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 29 22:21:02 srv01 postfix/smtpd\[20144\]: warning: unknown\[92.118.38.40\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 29 22:21:03 srv01 postfix/smtpd\[20140\]: warning: unknown\[92.118.38.40\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 29 22:21:28 srv01 postfix/smtpd\[20144\]: warning: unknown\[92.118.38.40\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-01-30 05:31:17
59.36.143.162	attackspambots	Unauthorized connection attempt detected from IP address 59.36.143.162 to port 2220 [J]	2020-01-30 05:33:00
222.186.175.163	attackspam	Jan 29 22:39:26 v22018076622670303 sshd\[3764\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.163 user=root Jan 29 22:39:28 v22018076622670303 sshd\[3764\]: Failed password for root from 222.186.175.163 port 65270 ssh2 Jan 29 22:39:31 v22018076622670303 sshd\[3764\]: Failed password for root from 222.186.175.163 port 65270 ssh2 ...	2020-01-30 05:43:03
120.24.159.38	attackbotsspam	Port 1433 Scan	2020-01-30 05:33:23
73.36.232.192	attack	$f2bV_matches	2020-01-30 05:05:28
104.244.78.197	attackbotsspam	Unauthorized connection attempt detected from IP address 104.244.78.197 to port 22 [J]	2020-01-30 05:46:30
185.12.177.229	attack	Fail2Ban Ban Triggered	2020-01-30 05:02:32
92.118.37.97	attack	firewall-block, port(s): 33890/tcp	2020-01-30 05:42:30
197.184.42.91	attackspambots	2019-04-20 14:32:37 H=$\[197.184.42.91\]$ \[197.184.42.91\]:41528 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-04-20 14:33:48 H=$\[197.184.42.91\]$ \[197.184.42.91\]:41886 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-04-20 14:34:26 H=$\[197.184.42.91\]$ \[197.184.42.91\]:42087 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-01-30 05:15:43
51.91.198.99	attackspam	Jan 29 21:47:05 main sshd[29690]: Failed password for invalid user dheemant from 51.91.198.99 port 60982 ssh2	2020-01-30 05:15:19
222.186.30.218	attackbots	29.01.2020 21:46:49 SSH access blocked by firewall	2020-01-30 05:42:02
5.188.95.75	attack	5.188.95.75 - - [29/Jan/2020:22:20:51 +0100] "GET /awstats.pl?config=oraux.pnzone.net&lang=en&output=main HTTP/1.1" 404 280 "https://oraux.pnzone.net/" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.26 Safari/537.36 Core/1.63.5083.400 QQBrowser/10.0.972.400"	2020-01-30 05:27:02

最近上报的IP列表

37.151.154.220	27.100.13.186	27.100.13.172	1.192.90.228
222.186.160.4	209.97.164.248	200.194.28.251	189.209.252.193
187.162.10.180	187.162.5.159	185.48.149.184	171.103.162.170
101.203.80.189	165.232.114.0	165.22.93.11	164.90.188.235
140.148.249.16	139.207.109.108	137.59.44.23	134.209.231.66