94.91.142.203 - IPInfo

基本信息:

城市(city): Genoa

省份(region): Regione Liguria

国家(country): Italy

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.91.142.203
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45855
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;94.91.142.203.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024122000 1800 900 604800 86400

;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 20 20:46:25 CST 2024
;; MSG SIZE  rcvd: 106

HOST信息:

203.142.91.94.in-addr.arpa domain name pointer host-94-91-142-203.business.telecomitalia.it.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
203.142.91.94.in-addr.arpa	name = host-94-91-142-203.business.telecomitalia.it.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
193.233.141.132	attackspambots	0,84-01/27 [bc01/m23] PostRequest-Spammer scoring: zurich	2020-09-28 22:54:44
192.241.214.210	attack	Metasploit VxWorks WDB Agent Scanner Detection	2020-09-28 23:17:21
183.82.121.81	attackspam	SSH Brute Force	2020-09-28 23:23:23
149.56.45.139	attackbots	$f2bV_matches	2020-09-28 23:17:52
92.118.160.1	attack	SSH login attempts.	2020-09-28 23:24:51
206.189.143.91	attack	Sep 28 15:44:56 ajax sshd[4993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.143.91 Sep 28 15:44:59 ajax sshd[4993]: Failed password for invalid user informix from 206.189.143.91 port 43906 ssh2	2020-09-28 23:09:25
216.218.206.74	attack	srv02 Mass scanning activity detected Target: 873(rsync) ..	2020-09-28 22:58:50
68.183.28.215	attack	Sep 28 15:12:32 ip-172-31-42-142 sshd\[25755\]: Failed password for root from 68.183.28.215 port 50922 ssh2\ Sep 28 15:12:37 ip-172-31-42-142 sshd\[25758\]: Failed password for root from 68.183.28.215 port 34434 ssh2\ Sep 28 15:12:43 ip-172-31-42-142 sshd\[25760\]: Failed password for root from 68.183.28.215 port 46242 ssh2\ Sep 28 15:12:47 ip-172-31-42-142 sshd\[25762\]: Invalid user admin from 68.183.28.215\ Sep 28 15:12:49 ip-172-31-42-142 sshd\[25762\]: Failed password for invalid user admin from 68.183.28.215 port 58000 ssh2\	2020-09-28 23:24:17
222.186.42.137	attackbotsspam	Sep 28 15:00:33 rush sshd[30678]: Failed password for root from 222.186.42.137 port 33055 ssh2 Sep 28 15:00:42 rush sshd[30681]: Failed password for root from 222.186.42.137 port 63448 ssh2 ...	2020-09-28 23:01:07
183.62.25.218	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-28 23:14:28
78.128.113.121	attack	2020-09-28 17:09:15 dovecot_login authenticator failed for $ip-113-121.4vendeta.com.$ \[78.128.113.121\]: 535 Incorrect authentication data $set_id=german@sensecell.de$ 2020-09-28 17:09:22 dovecot_login authenticator failed for $ip-113-121.4vendeta.com.$ \[78.128.113.121\]: 535 Incorrect authentication data 2020-09-28 17:09:31 dovecot_login authenticator failed for $ip-113-121.4vendeta.com.$ \[78.128.113.121\]: 535 Incorrect authentication data 2020-09-28 17:09:35 dovecot_login authenticator failed for $ip-113-121.4vendeta.com.$ \[78.128.113.121\]: 535 Incorrect authentication data 2020-09-28 17:09:47 dovecot_login authenticator failed for $ip-113-121.4vendeta.com.$ \[78.128.113.121\]: 535 Incorrect authentication data ...	2020-09-28 23:15:48
195.161.162.46	attackbots	Time: Mon Sep 28 12:01:14 2020 +0000 IP: 195.161.162.46 (RU/Russia/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 28 11:43:11 48-1 sshd[38968]: Invalid user toor from 195.161.162.46 port 43263 Sep 28 11:43:13 48-1 sshd[38968]: Failed password for invalid user toor from 195.161.162.46 port 43263 ssh2 Sep 28 11:57:20 48-1 sshd[40352]: Invalid user rachel from 195.161.162.46 port 38214 Sep 28 11:57:22 48-1 sshd[40352]: Failed password for invalid user rachel from 195.161.162.46 port 38214 ssh2 Sep 28 12:01:08 48-1 sshd[40635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.161.162.46 user=root	2020-09-28 23:05:38
45.126.125.190	attackbotsspam	Time: Sun Sep 27 08:07:00 2020 +0000 IP: 45.126.125.190 (HK/Hong Kong/webvalue01.locawize.com) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 27 07:58:50 1 sshd[17372]: Invalid user sammy from 45.126.125.190 port 36082 Sep 27 07:58:53 1 sshd[17372]: Failed password for invalid user sammy from 45.126.125.190 port 36082 ssh2 Sep 27 08:04:30 1 sshd[17680]: Invalid user svn from 45.126.125.190 port 51652 Sep 27 08:04:32 1 sshd[17680]: Failed password for invalid user svn from 45.126.125.190 port 51652 ssh2 Sep 27 08:06:56 1 sshd[17774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.126.125.190 user=mail	2020-09-28 23:22:54
177.79.64.41	attackspam	177.79.64.41 (BR/Brazil/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 27 16:38:13 server4 sshd[23740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.108.46 user=root Sep 27 16:09:59 server4 sshd[5813]: Failed password for root from 82.64.132.50 port 59946 ssh2 Sep 27 16:28:51 server4 sshd[17584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.83.16.140 user=root Sep 27 16:16:40 server4 sshd[10243]: Failed password for root from 177.79.64.41 port 12665 ssh2 Sep 27 16:16:39 server4 sshd[10243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.79.64.41 user=root Sep 27 16:28:53 server4 sshd[17584]: Failed password for root from 154.83.16.140 port 47326 ssh2 IP Addresses Blocked: 128.199.108.46 (SG/Singapore/-) 82.64.132.50 (FR/France/-) 154.83.16.140 (US/United States/-)	2020-09-28 22:44:03
184.105.247.211	attack	Port scan: Attack repeated for 24 hours	2020-09-28 23:06:34

最近上报的IP列表

183.2.202.222	125.182.207.238	164.63.121.252	157.29.76.176
163.161.125.223	182.76.136.254	44.218.151.8	58.99.235.28
30.161.56.99	2.6.201.137	15.45.12.123	205.10.104.228
243.101.249.20	219.200.110.34	172.136.165.89	4.124.179.151
244.35.255.63	100.191.177.51	24.212.98.2	214.214.161.66