193.93.2.92 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
193.93.237.1	attackspam	Automatic report - Banned IP Access	2020-09-21 01:34:52
193.93.237.1	attackbots	Automatic report - Banned IP Access	2020-09-20 17:33:32
193.93.238.172	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-22 19:56:18
193.93.238.210	attackspambots	Unauthorized connection attempt detected from IP address 193.93.238.210 to port 88 [J]	2020-01-19 18:34:26
193.93.219.102	attackspambots	email spam	2019-12-19 20:10:11
193.93.237.251	attackspambots	[Sun Nov 17 04:23:37.438335 2019] [:error] [pid 55680] [client 193.93.237.251] ModSecurity: Access denied with code 400 (phase 2). Match of "eq 0" against "REQBODY_ERROR" required. [file "/etc/modsecurity/modsecurity.conf"] [line "54"] [id "200001"] [msg "Failed to parse request body."] [data "XML parser error: XML: Failed parsing document."] [severity "CRITICAL"] [hostname "200.132.59.202"] [uri "/editBlackAndWhiteList"] [unique_id "XdDnaX8AAAEAANmAjcEAAAAA"] ...	2019-11-17 18:28:42
193.93.219.102	attackspam	email spam	2019-11-05 22:24:01
193.93.219.102	attackspambots	proto=tcp . spt=60151 . dpt=25 . (Found on Blocklist de Oct 31) (764)	2019-11-01 06:22:17
193.93.237.201	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-23 22:24:10
193.93.253.53	attackspambots	15.10.2019 14:25:36 - FTP-Server Bruteforce - Detected by FTP-Monster (https://www.elinox.de/FTP-Monster)	2019-10-16 01:39:38
193.93.238.172	attackspam	SMB Server BruteForce Attack	2019-09-24 20:45:00
193.93.219.102	attack	Aug 13 12:23:49 mail postfix/postscreen[55353]: PREGREET 36 after 0.72 from [193.93.219.102]:54089: EHLO ip-193-93-219-102.astra.in.ua ...	2019-08-14 05:33:38
193.93.219.102	attackspam	Unauthorized connection attempt from IP address 193.93.219.102 on Port 25(SMTP)	2019-07-26 15:25:30
193.93.231.247	attackbots	Unauthorized connection attempt from IP address 193.93.231.247 on Port 445(SMB)	2019-07-08 11:20:04

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 193.93.2.92
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9648
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;193.93.2.92.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020400 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 04 14:16:16 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 92.2.93.193.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 92.2.93.193.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
189.208.63.38	attack	Automatic report - Port Scan Attack	2020-04-26 04:25:54
200.195.171.74	attackbots	Invalid user vx from 200.195.171.74 port 43436	2020-04-26 04:13:09
122.51.196.151	attackbotsspam	Apr 25 23:15:20 pkdns2 sshd\[49050\]: Invalid user anish from 122.51.196.151Apr 25 23:15:23 pkdns2 sshd\[49050\]: Failed password for invalid user anish from 122.51.196.151 port 47732 ssh2Apr 25 23:19:26 pkdns2 sshd\[49204\]: Invalid user temp from 122.51.196.151Apr 25 23:19:28 pkdns2 sshd\[49204\]: Failed password for invalid user temp from 122.51.196.151 port 38336 ssh2Apr 25 23:23:32 pkdns2 sshd\[49395\]: Invalid user balavira from 122.51.196.151Apr 25 23:23:35 pkdns2 sshd\[49395\]: Failed password for invalid user balavira from 122.51.196.151 port 57172 ssh2 ...	2020-04-26 04:28:09
37.187.113.229	attack	2020-04-25T12:23:28.459115shield sshd\[18961\]: Invalid user randy from 37.187.113.229 port 47862 2020-04-25T12:23:28.462849shield sshd\[18961\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns328430.ip-37-187-113.eu 2020-04-25T12:23:30.429234shield sshd\[18961\]: Failed password for invalid user randy from 37.187.113.229 port 47862 ssh2 2020-04-25T12:30:15.551138shield sshd\[20357\]: Invalid user biology from 37.187.113.229 port 60116 2020-04-25T12:30:15.555429shield sshd\[20357\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns328430.ip-37-187-113.eu	2020-04-26 04:22:24
112.35.77.101	attackbots	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-04-26 04:29:52
189.173.30.89	attack	Unauthorized connection attempt detected from IP address 189.173.30.89 to port 4567	2020-04-26 04:22:04
111.67.206.4	attack	SSH brute force attempt	2020-04-26 04:11:08
94.247.179.224	attackspam	Apr 25 19:27:55 vmd48417 sshd[11221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.247.179.224	2020-04-26 04:27:47
178.154.200.123	attackspambots	[Sun Apr 26 03:28:29.915510 2020] [:error] [pid 4636:tid 140006048405248] [client 178.154.200.123:34050] [client 178.154.200.123] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XqSdbVUh@3zwuUEMiFVzyQAAAkk"] ...	2020-04-26 04:37:35
180.76.101.244	attack	Apr 25 16:11:11 plex sshd[13952]: Invalid user joey from 180.76.101.244 port 39730	2020-04-26 04:18:07
165.227.15.44	attackspam	" "	2020-04-26 04:10:04
187.33.235.50	attackbotsspam	Unauthorized connection attempt from IP address 187.33.235.50 on Port 445(SMB)	2020-04-26 04:09:35
93.119.204.108	attackbotsspam	DATE:2020-04-25 14:10:05, IP:93.119.204.108, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-04-26 04:19:38
193.112.19.70	attack	SSH Bruteforce attempt	2020-04-26 04:28:57
87.251.74.240	attack	04/25/2020-15:50:31.391012 87.251.74.240 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-04-26 04:19:51

Recently Reported IPs

182.186.129.149	144.34.157.12	216.4.154.99	92.88.30.14
63.127.104.208	175.213.220.6	162.127.139.70	92.57.0.207
238.106.190.106	25.105.164.207	69.52.20.122	143.0.238.176
91.246.59.67	17.123.174.119	10.131.117.142	84.84.65.224
174.124.209.179	36.216.119.122	32.49.1.158	10.60.115.76