93.244.189.2 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): Deutsche Telekom AG

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	" "	2019-07-02 14:41:06

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 93.244.189.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21201
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;93.244.189.2.			IN	A

;; AUTHORITY SECTION:
.			2991	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070200 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 02 14:40:58 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

2.189.244.93.in-addr.arpa domain name pointer p5DF4BD02.dip0.t-ipconnect.de.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
2.189.244.93.in-addr.arpa	name = p5DF4BD02.dip0.t-ipconnect.de.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
107.172.108.142	attackbotsspam	Nov 8 15:05:00 spandau postfix/smtpd[7513]: warning: hostname yellowpages.com does not resolve to address 107.172.108.142 Nov 8 15:05:00 spandau postfix/smtpd[7513]: connect from unknown[107.172.108.142] Nov x@x Nov 8 15:05:02 spandau postfix/smtpd[7513]: disconnect from unknown[107.172.108.142] Nov 8 15:34:10 spandau postfix/smtpd[8165]: warning: hostname yellowpages.com does not resolve to address 107.172.108.142 Nov 8 15:34:10 spandau postfix/smtpd[8165]: connect from unknown[107.172.108.142] Nov x@x Nov 8 15:34:12 spandau postfix/smtpd[8165]: disconnect from unknown[107.172.108.142] Nov 8 15:36:57 spandau postfix/smtpd[9300]: warning: hostname yellowpages.com does not resolve to address 107.172.108.142 Nov 8 15:36:57 spandau postfix/smtpd[9300]: connect from unknown[107.172.108.142] Nov x@x Nov 8 15:36:58 spandau postfix/smtpd[9300]: disconnect from unknown[107.172.108.142] Nov 8 15:39:34 spandau postfix/smtpd[9463]: warning: hostname yellowpages.com does ........ -------------------------------	2019-11-09 02:17:58
222.112.65.55	attack	Automatic report - Banned IP Access	2019-11-09 02:41:57
83.121.155.98	attack	[portscan] Port scan	2019-11-09 02:12:45
106.13.204.251	attackspambots	Nov 8 15:29:48 bouncer sshd\[5173\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.204.251 user=root Nov 8 15:29:50 bouncer sshd\[5173\]: Failed password for root from 106.13.204.251 port 42102 ssh2 Nov 8 15:36:27 bouncer sshd\[5194\]: Invalid user dovecot from 106.13.204.251 port 50776 ...	2019-11-09 02:28:35
87.98.253.31	attackspambots	" "	2019-11-09 02:36:00
202.157.176.95	attack	Nov 8 18:33:17 vserver sshd\[1082\]: Invalid user supervisor from 202.157.176.95Nov 8 18:33:19 vserver sshd\[1082\]: Failed password for invalid user supervisor from 202.157.176.95 port 50114 ssh2Nov 8 18:37:42 vserver sshd\[1112\]: Failed password for root from 202.157.176.95 port 41233 ssh2Nov 8 18:41:41 vserver sshd\[1175\]: Invalid user cardini from 202.157.176.95 ...	2019-11-09 02:27:40
51.68.251.201	attack	Nov 8 19:07:56 MK-Soft-VM6 sshd[26206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.251.201 Nov 8 19:07:58 MK-Soft-VM6 sshd[26206]: Failed password for invalid user ksb from 51.68.251.201 port 40354 ssh2 ...	2019-11-09 02:08:08
222.110.158.109	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/222.110.158.109/ KR - 1H : (32) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : KR NAME ASN : ASN4766 IP : 222.110.158.109 CIDR : 222.110.152.0/21 PREFIX COUNT : 8136 UNIQUE IP COUNT : 44725248 ATTACKS DETECTED ASN4766 : 1H - 2 3H - 2 6H - 3 12H - 6 24H - 11 DateTime : 2019-11-08 15:35:58 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-11-09 02:39:06
144.217.83.201	attackspam	Nov 8 18:54:39 lnxded63 sshd[24707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.83.201 Nov 8 18:54:41 lnxded63 sshd[24707]: Failed password for invalid user ts from 144.217.83.201 port 33600 ssh2 Nov 8 19:03:44 lnxded63 sshd[25796]: Failed password for root from 144.217.83.201 port 43810 ssh2	2019-11-09 02:17:26
201.6.253.64	attack	Autoban 201.6.253.64 AUTH/CONNECT	2019-11-09 02:26:40
46.105.124.52	attack	2019-11-08 02:08:05 server sshd[7953]: Failed password for invalid user root from 46.105.124.52 port 47308 ssh2	2019-11-09 02:44:46
2.92.205.51	attack	Unauthorised access (Nov 8) SRC=2.92.205.51 LEN=52 TTL=116 ID=13119 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Nov 8) SRC=2.92.205.51 LEN=52 TTL=116 ID=6091 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-09 02:30:01
59.126.69.60	attackbots	Nov 8 17:13:21 server sshd\[31914\]: Invalid user ftpuser from 59.126.69.60 Nov 8 17:13:21 server sshd\[31914\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59-126-69-60.hinet-ip.hinet.net Nov 8 17:13:23 server sshd\[31914\]: Failed password for invalid user ftpuser from 59.126.69.60 port 54540 ssh2 Nov 8 17:35:54 server sshd\[5343\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59-126-69-60.hinet-ip.hinet.net user=root Nov 8 17:35:56 server sshd\[5343\]: Failed password for root from 59.126.69.60 port 44976 ssh2 ...	2019-11-09 02:40:44
181.48.225.126	attack	Lines containing failures of 181.48.225.126 Nov 8 10:46:10 jarvis sshd[9548]: Invalid user spark from 181.48.225.126 port 43860 Nov 8 10:46:10 jarvis sshd[9548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.225.126 Nov 8 10:46:12 jarvis sshd[9548]: Failed password for invalid user spark from 181.48.225.126 port 43860 ssh2 Nov 8 10:46:14 jarvis sshd[9548]: Received disconnect from 181.48.225.126 port 43860:11: Bye Bye [preauth] Nov 8 10:46:14 jarvis sshd[9548]: Disconnected from invalid user spark 181.48.225.126 port 43860 [preauth] Nov 8 11:07:01 jarvis sshd[13815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.225.126 user=r.r Nov 8 11:07:03 jarvis sshd[13815]: Failed password for r.r from 181.48.225.126 port 53654 ssh2 Nov 8 11:07:05 jarvis sshd[13815]: Received disconnect from 181.48.225.126 port 53654:11: Bye Bye [preauth] Nov 8 11:07:05 jarvis sshd[13815]: D........ ------------------------------	2019-11-09 02:42:31
103.86.37.45	attackbots	11/08/2019-15:36:04.152193 103.86.37.45 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-11-09 02:36:57

最近上报的IP列表

109.237.92.155	118.16.162.232	109.237.92.154	114.232.219.194
125.165.180.122	191.193.187.200	61.0.34.237	180.121.90.191
123.201.57.70	116.104.91.164	168.187.18.73	157.230.246.217
75.119.196.29	91.239.125.108	30.221.103.238	186.139.247.124
13.238.201.8	113.161.90.135	189.90.46.84	84.54.201.18