222.93.5.22 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Jiangsu Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Lines containing failures of 222.93.5.22 Jul 19 19:00:30 siirappi sshd[14983]: Bad protocol version identification '' from 222.93.5.22 port 37922 Jul 19 19:00:37 siirappi sshd[14997]: Invalid user nexthink from 222.93.5.22 port 38404 Jul 19 19:00:38 siirappi sshd[14997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.93.5.22 Jul 19 19:00:40 siirappi sshd[14997]: Failed password for invalid user nexthink from 222.93.5.22 port 38404 ssh2 Jul 19 19:00:41 siirappi sshd[14997]: Connection closed by invalid user nexthink 222.93.5.22 port 38404 [preauth] Jul 19 19:00:47 siirappi sshd[15005]: Invalid user osbash from 222.93.5.22 port 41808 Jul 19 19:00:49 siirappi sshd[15005]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.93.5.22 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=222.93.5.22	2020-07-20 03:53:33

类型

评论内容

时间

attackspam

Lines containing failures of 222.93.5.22
Jul 19 19:00:30 siirappi sshd[14983]: Bad protocol version identification '' from 222.93.5.22 port 37922
Jul 19 19:00:37 siirappi sshd[14997]: Invalid user nexthink from 222.93.5.22 port 38404
Jul 19 19:00:38 siirappi sshd[14997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.93.5.22 
Jul 19 19:00:40 siirappi sshd[14997]: Failed password for invalid user nexthink from 222.93.5.22 port 38404 ssh2
Jul 19 19:00:41 siirappi sshd[14997]: Connection closed by invalid user nexthink 222.93.5.22 port 38404 [preauth]
Jul 19 19:00:47 siirappi sshd[15005]: Invalid user osbash from 222.93.5.22 port 41808
Jul 19 19:00:49 siirappi sshd[15005]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.93.5.22 


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=222.93.5.22

2020-07-20 03:53:33

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.93.5.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14916
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;222.93.5.22.			IN	A

;; AUTHORITY SECTION:
.			209	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071901 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jul 20 03:53:30 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 22.5.93.222.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 22.5.93.222.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
179.191.237.186	attack	Unauthorized connection attempt from IP address 179.191.237.186 on Port 445(SMB)	2020-08-03 23:48:48
124.39.135.87	attack	Aug 3 12:39:10 our-server-hostname sshd[12250]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124x39x135x87.ap124.ftth.ucom.ne.jp user=r.r Aug 3 12:39:11 our-server-hostname sshd[12250]: Failed password for r.r from 124.39.135.87 port 25324 ssh2 Aug 3 12:50:40 our-server-hostname sshd[16209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124x39x135x87.ap124.ftth.ucom.ne.jp user=r.r Aug 3 12:50:41 our-server-hostname sshd[16209]: Failed password for r.r from 124.39.135.87 port 33542 ssh2 Aug 3 12:54:54 our-server-hostname sshd[17425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124x39x135x87.ap124.ftth.ucom.ne.jp user=r.r Aug 3 12:54:56 our-server-hostname sshd[17425]: Failed password for r.r from 124.39.135.87 port 25337 ssh2 Aug 3 12:59:04 our-server-hostname sshd[18291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eu........ -------------------------------	2020-08-03 23:55:12
222.186.42.213	attackspambots	2020-08-03T18:23:30.799251lavrinenko.info sshd[10663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.213 user=root 2020-08-03T18:23:32.536562lavrinenko.info sshd[10663]: Failed password for root from 222.186.42.213 port 56507 ssh2 2020-08-03T18:23:30.799251lavrinenko.info sshd[10663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.213 user=root 2020-08-03T18:23:32.536562lavrinenko.info sshd[10663]: Failed password for root from 222.186.42.213 port 56507 ssh2 2020-08-03T18:23:39.935326lavrinenko.info sshd[10663]: Failed password for root from 222.186.42.213 port 56507 ssh2 ...	2020-08-03 23:28:40
152.136.150.115	attack	Aug 3 17:18:26 vm1 sshd[11094]: Failed password for root from 152.136.150.115 port 38146 ssh2 ...	2020-08-03 23:29:11
45.13.59.133	attackspambots	Aug 3 07:21:35 www sshd[21648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.13.59.133 user=r.r Aug 3 07:21:37 www sshd[21648]: Failed password for r.r from 45.13.59.133 port 52844 ssh2 Aug 3 07:21:37 www sshd[21648]: Received disconnect from 45.13.59.133: 11: Bye Bye [preauth] Aug 3 07:26:14 www sshd[21803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.13.59.133 user=r.r Aug 3 07:26:15 www sshd[21803]: Failed password for r.r from 45.13.59.133 port 45534 ssh2 Aug 3 07:26:15 www sshd[21803]: Received disconnect from 45.13.59.133: 11: Bye Bye [preauth] Aug 3 07:30:19 www sshd[22009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.13.59.133 user=r.r Aug 3 07:30:21 www sshd[22009]: Failed password for r.r from 45.13.59.133 port 33322 ssh2 Aug 3 07:30:21 www sshd[22009]: Received disconnect from 45.13.59.133: 11: Bye Bye [preaut........ -------------------------------	2020-08-03 23:59:36
222.186.30.167	attackspam	Aug 3 17:37:17 eventyay sshd[17459]: Failed password for root from 222.186.30.167 port 50829 ssh2 Aug 3 17:37:34 eventyay sshd[17467]: Failed password for root from 222.186.30.167 port 12274 ssh2 ...	2020-08-03 23:38:16
50.246.133.188	attack	Aug 3 14:04:37 ns382633 sshd\[17793\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.246.133.188 user=root Aug 3 14:04:39 ns382633 sshd\[17793\]: Failed password for root from 50.246.133.188 port 50438 ssh2 Aug 3 14:17:06 ns382633 sshd\[20417\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.246.133.188 user=root Aug 3 14:17:09 ns382633 sshd\[20417\]: Failed password for root from 50.246.133.188 port 56350 ssh2 Aug 3 14:24:58 ns382633 sshd\[21488\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.246.133.188 user=root	2020-08-03 23:40:23
160.16.127.211	attackbots	2020-08-03T15:07:26.921805shield sshd\[4418\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tk2-239-29457.vs.sakura.ne.jp user=root 2020-08-03T15:07:28.326328shield sshd\[4418\]: Failed password for root from 160.16.127.211 port 45808 ssh2 2020-08-03T15:08:23.409570shield sshd\[4757\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tk2-239-29457.vs.sakura.ne.jp user=root 2020-08-03T15:08:24.970134shield sshd\[4757\]: Failed password for root from 160.16.127.211 port 59338 ssh2 2020-08-03T15:09:20.851325shield sshd\[5073\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tk2-239-29457.vs.sakura.ne.jp user=root	2020-08-03 23:46:23
109.135.26.1	attackbots	Aug 3 14:17:23 server dovecot: imap-login: Aborted login (auth failed, 1 attempts in 4 secs): user=, method=PLAIN, rip=109.135.26.1, lip=172.104.140.148, session= Aug 3 14:17:42 server dovecot: imap-login: Aborted login (auth failed, 1 attempts in 14 secs): user=, method=PLAIN, rip=109.135.26.1, lip=172.104.140.148, session= Aug 3 14:17:51 server dovecot: imap-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=109.135.26.1, lip=172.104.140.148, session= Aug 3 14:17:56 server dovecot: imap-login: Aborted login (auth failed, 1 attempts in 5 secs): user=, method=PLAIN, rip=109.135.26.1, lip=172.104.140.148, session= Aug 3 14:18:10 server dovecot: imap-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=109.135.26.1, lip=172.104.140.148, sessio ...	2020-08-03 23:25:00
167.172.186.32	attackspambots	167.172.186.32 - - [03/Aug/2020:15:27:01 +0100] "POST /wp-login.php HTTP/1.1" 200 1996 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.172.186.32 - - [03/Aug/2020:15:27:03 +0100] "POST /wp-login.php HTTP/1.1" 200 2000 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.172.186.32 - - [03/Aug/2020:15:27:04 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-03 23:45:45
198.27.79.180	attackspambots	2020-08-03T17:18:50.379035mail.broermann.family sshd[10127]: Failed password for root from 198.27.79.180 port 56726 ssh2 2020-08-03T17:21:33.373207mail.broermann.family sshd[10222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.27.79.180 user=root 2020-08-03T17:21:35.717445mail.broermann.family sshd[10222]: Failed password for root from 198.27.79.180 port 50734 ssh2 2020-08-03T17:24:15.797465mail.broermann.family sshd[10368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.27.79.180 user=root 2020-08-03T17:24:18.046817mail.broermann.family sshd[10368]: Failed password for root from 198.27.79.180 port 44740 ssh2 ...	2020-08-03 23:45:27
177.207.251.18	attackbotsspam	Aug 3 17:25:33 OPSO sshd\[24686\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.207.251.18 user=root Aug 3 17:25:35 OPSO sshd\[24686\]: Failed password for root from 177.207.251.18 port 58383 ssh2 Aug 3 17:30:09 OPSO sshd\[25743\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.207.251.18 user=root Aug 3 17:30:10 OPSO sshd\[25743\]: Failed password for root from 177.207.251.18 port 20425 ssh2 Aug 3 17:34:34 OPSO sshd\[26504\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.207.251.18 user=root	2020-08-03 23:54:53
46.245.21.130	attack	W 31101,/var/log/nginx/access.log,-,-	2020-08-03 23:21:53
38.122.16.146	attackspambots	Dovecot Invalid User Login Attempt.	2020-08-03 23:26:36
136.49.109.217	attackspambots	2020-08-03T12:31:40.420268vps1033 sshd[32211]: Invalid user ts3_server from 136.49.109.217 port 38818 2020-08-03T12:31:40.425437vps1033 sshd[32211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.49.109.217 2020-08-03T12:31:40.420268vps1033 sshd[32211]: Invalid user ts3_server from 136.49.109.217 port 38818 2020-08-03T12:31:42.780451vps1033 sshd[32211]: Failed password for invalid user ts3_server from 136.49.109.217 port 38818 ssh2 2020-08-03T12:35:23.365748vps1033 sshd[7665]: Invalid user Cxsdew from 136.49.109.217 port 50684 ...	2020-08-03 23:57:59

最近上报的IP列表

172.105.22.217	222.107.156.227	221.2.220.158	75.103.21.214
86.120.224.36	60.186.218.220	162.243.128.52	213.126.157.195
242.52.217.83	38.145.90.198	213.163.119.47	193.178.229.186
218.58.107.74	18.191.51.123	27.72.102.191	183.165.60.198
45.43.36.191	218.164.61.119	54.36.109.237	41.63.184.166