89.42.93.173 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Romania

运营商(isp): Tennet Telecom SRL

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	[portscan] tcp/1433 [MsSQL] in spfbl.net:'listed' *(RWIN=8192)(10151156)	2019-10-16 01:13:05

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 89.42.93.173
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6565
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;89.42.93.173.			IN	A

;; AUTHORITY SECTION:
.			411	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101500 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 16 01:12:48 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

173.93.42.89.in-addr.arpa domain name pointer static-89-42-93-173.

NSLOOKUP信息:

173.93.42.89.in-addr.arpa	name = static-89-42-93-173.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.46.18.99	attack	Jun 7 22:20:10 PorscheCustomer sshd[20124]: Failed password for root from 185.46.18.99 port 56312 ssh2 Jun 7 22:22:05 PorscheCustomer sshd[20203]: Failed password for root from 185.46.18.99 port 57608 ssh2 ...	2020-06-08 07:43:46
183.136.225.45	attack	Jun 8 02:52:50 debian kernel: [476528.609181] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=183.136.225.45 DST=89.252.131.35 LEN=44 TOS=0x00 PREC=0x00 TTL=110 ID=48992 PROTO=TCP SPT=46540 DPT=8000 WINDOW=29200 RES=0x00 SYN URGP=0	2020-06-08 07:58:04
139.198.16.242	attackspam	Jun 1 16:37:36 dax sshd[9442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.16.242 user=r.r Jun 1 16:37:39 dax sshd[9442]: Failed password for r.r from 139.198.16.242 port 54460 ssh2 Jun 1 16:37:40 dax sshd[9442]: Received disconnect from 139.198.16.242: 11: Bye Bye [preauth] Jun 1 16:53:33 dax sshd[11661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.16.242 user=r.r Jun 1 16:53:35 dax sshd[11661]: Failed password for r.r from 139.198.16.242 port 60034 ssh2 Jun 1 16:53:35 dax sshd[11661]: Received disconnect from 139.198.16.242: 11: Bye Bye [preauth] Jun 1 16:59:47 dax sshd[12579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.16.242 user=r.r Jun 1 16:59:49 dax sshd[12579]: Failed password for r.r from 139.198.16.242 port 32940 ssh2 Jun 1 16:59:50 dax sshd[12579]: Received disconnect from 139.198.16.242: 11: ........ -------------------------------	2020-06-08 07:51:17
179.43.156.126	attack	tried to spam in our blog comments: Официальный сайт Гидра - гарантирует анонимность на нашем сайте. Свободный доступ к hydra onion без TOR браузера. Рабочее зеркало Гидра hydra.center оригинальная ссылка на сайт рабочее зеркало гидры вход на сайт в обход блокировки hydra2web.com Официальная ссылка на зеркало гидры в обход блокировки без тор соединения, Конкурс на площадке!!! Успей принять участие!	2020-06-08 08:06:15
162.243.140.139	attackbotsspam	Port scan: Attack repeated for 24 hours	2020-06-08 07:49:29
194.1.168.36	attackspambots	web-1 [ssh_2] SSH Attack	2020-06-08 07:41:48
49.88.112.111	attack	Jun 7 16:33:56 dignus sshd[20203]: Failed password for root from 49.88.112.111 port 34946 ssh2 Jun 7 16:33:58 dignus sshd[20203]: Failed password for root from 49.88.112.111 port 34946 ssh2 Jun 7 16:34:32 dignus sshd[20268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.111 user=root Jun 7 16:34:34 dignus sshd[20268]: Failed password for root from 49.88.112.111 port 21718 ssh2 Jun 7 16:34:36 dignus sshd[20268]: Failed password for root from 49.88.112.111 port 21718 ssh2 ...	2020-06-08 07:53:50
138.0.191.122	attackbotsspam	138.0.191.122 (BR/Brazil/138-0-191-122.dynamic.wntelecom.net.br), 5 distributed smtpauth attacks on account [ichelle.bradleym@phpc.ca] in the last 3600 secs	2020-06-08 08:10:49
140.246.191.130	attackspambots	21647/tcp 20390/tcp [2020-05-31/06-07]2pkt	2020-06-08 07:45:57
64.227.116.27	attackbots	CMS (WordPress or Joomla) login attempt.	2020-06-08 07:51:46
109.159.194.226	attack	Jun 7 22:16:30 server sshd[14114]: Failed password for root from 109.159.194.226 port 37684 ssh2 Jun 7 22:20:10 server sshd[14487]: Failed password for root from 109.159.194.226 port 42078 ssh2 ...	2020-06-08 07:46:09
182.184.66.153	attackspambots	Automatic report - Port Scan Attack	2020-06-08 07:44:04
46.151.72.70	attackspam	Jun 7 22:11:39 mail.srvfarm.net postfix/smtpd[361177]: warning: unknown[46.151.72.70]: SASL PLAIN authentication failed: Jun 7 22:11:39 mail.srvfarm.net postfix/smtpd[361177]: lost connection after AUTH from unknown[46.151.72.70] Jun 7 22:13:55 mail.srvfarm.net postfix/smtpd[361232]: warning: unknown[46.151.72.70]: SASL PLAIN authentication failed: Jun 7 22:13:55 mail.srvfarm.net postfix/smtpd[361232]: lost connection after AUTH from unknown[46.151.72.70] Jun 7 22:14:59 mail.srvfarm.net postfix/smtpd[346367]: warning: unknown[46.151.72.70]: SASL PLAIN authentication failed:	2020-06-08 08:03:09
61.219.171.213	attackspambots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-08 07:37:43
185.59.122.70	attackbotsspam	185.59.122.70 (CZ/Czechia/u185-59-122-70.cust.futurenet.cz), 5 distributed smtpauth attacks on account [ichelle.bradleym] in the last 3600 secs	2020-06-08 08:05:56

最近上报的IP列表

202.29.221.102	201.242.117.57	201.46.38.22	188.170.176.26
187.190.26.138	180.247.219.93	180.211.162.238	185.58.84.72
180.166.10.19	208.208.228.125	77.48.141.241	24.60.22.37
171.31.18.42	63.251.242.218	180.92.194.253	140.239.244.162
6.223.242.219	68.67.160.127	78.148.206.25	179.83.196.84