200.69.199.93 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Argentina

运营商(isp): NSS S.A.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Port probing on unauthorized port 40765	2020-04-28 19:05:51

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.69.199.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42615
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.69.199.93.			IN	A

;; AUTHORITY SECTION:
.			281	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042800 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 28 19:05:48 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 93.199.69.200.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 93.199.69.200.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.173.154	attackbots	Aug 14 22:25:36 dignus sshd[15891]: Failed password for root from 222.186.173.154 port 36592 ssh2 Aug 14 22:25:39 dignus sshd[15891]: Failed password for root from 222.186.173.154 port 36592 ssh2 Aug 14 22:25:43 dignus sshd[15891]: Failed password for root from 222.186.173.154 port 36592 ssh2 Aug 14 22:25:46 dignus sshd[15891]: Failed password for root from 222.186.173.154 port 36592 ssh2 Aug 14 22:25:50 dignus sshd[15891]: Failed password for root from 222.186.173.154 port 36592 ssh2 ...	2020-08-15 13:34:42
187.102.17.92	attackspam	Aug 15 02:02:58 mail.srvfarm.net postfix/smtps/smtpd[944894]: warning: unknown[187.102.17.92]: SASL PLAIN authentication failed: Aug 15 02:02:59 mail.srvfarm.net postfix/smtps/smtpd[944894]: lost connection after AUTH from unknown[187.102.17.92] Aug 15 02:06:04 mail.srvfarm.net postfix/smtps/smtpd[945248]: warning: unknown[187.102.17.92]: SASL PLAIN authentication failed: Aug 15 02:06:05 mail.srvfarm.net postfix/smtps/smtpd[945248]: lost connection after AUTH from unknown[187.102.17.92] Aug 15 02:10:33 mail.srvfarm.net postfix/smtps/smtpd[963474]: warning: unknown[187.102.17.92]: SASL PLAIN authentication failed:	2020-08-15 13:45:49
189.127.37.28	attackbots	Aug 15 01:51:51 mail.srvfarm.net postfix/smtps/smtpd[944894]: warning: unknown[189.127.37.28]: SASL PLAIN authentication failed: Aug 15 01:51:51 mail.srvfarm.net postfix/smtps/smtpd[944894]: lost connection after AUTH from unknown[189.127.37.28] Aug 15 01:53:34 mail.srvfarm.net postfix/smtps/smtpd[944623]: warning: unknown[189.127.37.28]: SASL PLAIN authentication failed: Aug 15 01:53:35 mail.srvfarm.net postfix/smtps/smtpd[944623]: lost connection after AUTH from unknown[189.127.37.28] Aug 15 01:59:19 mail.srvfarm.net postfix/smtps/smtpd[950235]: warning: unknown[189.127.37.28]: SASL PLAIN authentication failed:	2020-08-15 13:44:22
141.98.80.67	attack	2020-08-15 07:25:53 dovecot_login authenticator failed for $\[141.98.80.67\]$ \[141.98.80.67\]: 535 Incorrect authentication data $set_id=marco.schroeder@jugend-ohne-grenzen.net$ 2020-08-15 07:26:00 dovecot_login authenticator failed for $\[141.98.80.67\]$ \[141.98.80.67\]: 535 Incorrect authentication data 2020-08-15 07:26:09 dovecot_login authenticator failed for $\[141.98.80.67\]$ \[141.98.80.67\]: 535 Incorrect authentication data 2020-08-15 07:26:13 dovecot_login authenticator failed for $\[141.98.80.67\]$ \[141.98.80.67\]: 535 Incorrect authentication data 2020-08-15 07:26:25 dovecot_login authenticator failed for $\[141.98.80.67\]$ \[141.98.80.67\]: 535 Incorrect authentication data 2020-08-15 07:26:30 dovecot_login authenticator failed for $\[141.98.80.67\]$ \[141.98.80.67\]: 535 Incorrect authentication data 2020-08-15 07:26:35 dovecot_login authenticator failed for $\[141.98.80.67\]$ \[141.98.80.67\]: 535 Incorrect authentication data ...	2020-08-15 13:49:51
103.25.134.193	attackbotsspam	Aug 15 01:47:06 mail.srvfarm.net postfix/smtpd[947315]: warning: unknown[103.25.134.193]: SASL PLAIN authentication failed: Aug 15 01:47:06 mail.srvfarm.net postfix/smtpd[947315]: lost connection after AUTH from unknown[103.25.134.193] Aug 15 01:47:15 mail.srvfarm.net postfix/smtps/smtpd[930972]: warning: unknown[103.25.134.193]: SASL PLAIN authentication failed: Aug 15 01:47:15 mail.srvfarm.net postfix/smtps/smtpd[930972]: lost connection after AUTH from unknown[103.25.134.193] Aug 15 01:47:30 mail.srvfarm.net postfix/smtps/smtpd[944622]: lost connection after AUTH from unknown[103.25.134.193]	2020-08-15 13:52:29
64.225.64.215	attackspam	"Unauthorized connection attempt on SSHD detected"	2020-08-15 13:27:07
5.188.206.194	attackspambots	2020-08-15 06:26:05 dovecot_login authenticator failed for $\[5.188.206.194\]$ \[5.188.206.194\]: 535 Incorrect authentication data $set_id=forum@darkrp.com$ 2020-08-15 06:26:14 dovecot_login authenticator failed for $\[5.188.206.194\]$ \[5.188.206.194\]: 535 Incorrect authentication data 2020-08-15 06:26:25 dovecot_login authenticator failed for $\[5.188.206.194\]$ \[5.188.206.194\]: 535 Incorrect authentication data 2020-08-15 06:26:33 dovecot_login authenticator failed for $\[5.188.206.194\]$ \[5.188.206.194\]: 535 Incorrect authentication data 2020-08-15 06:26:46 dovecot_login authenticator failed for $\[5.188.206.194\]$ \[5.188.206.194\]: 535 Incorrect authentication data 2020-08-15 06:26:53 dovecot_login authenticator failed for $\[5.188.206.194\]$ \[5.188.206.194\]: 535 Incorrect authentication data 2020-08-15 06:27:00 dovecot_login authenticator failed for $\[5.188.206.194\]$ \[5.188.206.194\]: 535 Incorrect authentication data 2020-08-15 06:27:07 dovecot_login ...	2020-08-15 13:16:19
121.66.38.237	attack	Aug 15 05:56:35 mout sshd[20787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.66.38.237 user=pi Aug 15 05:56:37 mout sshd[20787]: Failed password for pi from 121.66.38.237 port 45507 ssh2 Aug 15 05:56:37 mout sshd[20787]: Connection closed by authenticating user pi 121.66.38.237 port 45507 [preauth]	2020-08-15 13:31:48
81.200.48.8	attack	Lottery scam	2020-08-15 13:26:00
163.172.117.227	attack	php WP PHPmyadamin ABUSE blocked for 12h	2020-08-15 13:22:56
124.205.119.183	attackspam	$f2bV_matches	2020-08-15 13:25:22
180.71.58.82	attack	Invalid user admin41626321 from 180.71.58.82 port 46232	2020-08-15 13:30:56
106.53.114.5	attack	(sshd) Failed SSH login from 106.53.114.5 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 15 06:43:12 amsweb01 sshd[23068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.114.5 user=root Aug 15 06:43:14 amsweb01 sshd[23068]: Failed password for root from 106.53.114.5 port 49678 ssh2 Aug 15 06:54:45 amsweb01 sshd[24504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.114.5 user=root Aug 15 06:54:47 amsweb01 sshd[24504]: Failed password for root from 106.53.114.5 port 50912 ssh2 Aug 15 07:03:57 amsweb01 sshd[25754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.114.5 user=root	2020-08-15 13:31:15
195.154.250.192	attackbots	195.154.250.192 - - [15/Aug/2020:04:56:50 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1865 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 195.154.250.192 - - [15/Aug/2020:04:56:51 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1857 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 195.154.250.192 - - [15/Aug/2020:04:56:51 +0100] "POST /wp/xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-15 13:22:40
201.55.180.233	attackspambots	Aug 15 01:44:22 mail.srvfarm.net postfix/smtpd[947289]: warning: 201-55-180-233.witelecom.com.br[201.55.180.233]: SASL PLAIN authentication failed: Aug 15 01:44:23 mail.srvfarm.net postfix/smtpd[947289]: lost connection after AUTH from 201-55-180-233.witelecom.com.br[201.55.180.233] Aug 15 01:49:09 mail.srvfarm.net postfix/smtpd[947294]: warning: 201-55-180-233.witelecom.com.br[201.55.180.233]: SASL PLAIN authentication failed: Aug 15 01:49:09 mail.srvfarm.net postfix/smtpd[947294]: lost connection after AUTH from 201-55-180-233.witelecom.com.br[201.55.180.233] Aug 15 01:50:17 mail.srvfarm.net postfix/smtpd[948604]: warning: 201-55-180-233.witelecom.com.br[201.55.180.233]: SASL PLAIN authentication failed:	2020-08-15 13:42:06

最近上报的IP列表

101.108.139.91	170.254.34.66	1.4.226.132	190.153.114.139
183.80.67.235	180.249.41.108	52.0.143.176	114.48.111.242
46.24.251.34	159.197.230.48	110.139.253.201	187.140.177.222
198.173.178.30	113.200.121.186	2.178.98.166	83.118.194.4
222.212.126.238	211.180.246.111	111.125.241.20	74.91.117.3