93.174.89.20 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: Incrediserve Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Excessive Port-Scanning	2020-08-27 05:56:07
attack	Port scan: Attack repeated for 24 hours	2020-08-06 07:59:39
attackbotsspam	TCP (SYN) 93.174.89.20:55647 -> port 3417, len 44	2020-08-04 01:11:20
attackspambots	firewall-block, port(s): 3440/tcp	2020-08-02 22:13:18
attackbots	TCP (SYN) 93.174.89.20:47062 -> port 59241, len 44	2020-07-24 01:17:25
attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 85 - port: 59208 proto: tcp cat: Misc Attackbytes: 60	2020-07-22 06:37:08
attackbots	[portscan] Port scan	2020-07-16 04:01:22
attackbotsspam	Port scan on 17 port(s): 19519 19650 19681 19706 19755 19768 19950 20605 20901 21019 21101 21286 21407 21455 21606 21629 21717	2020-07-13 07:41:19
attackspam	Port scan on 9 port(s): 20207 20499 20670 20689 20754 20783 20787 21182 21197	2020-07-11 21:11:39
attack	TCP port : 38978	2020-07-07 22:40:27
attackspam	firewall-block, port(s): 8/tcp, 45/tcp, 68/tcp	2020-06-01 04:07:30
attack	May 31 06:11:13 debian-2gb-nbg1-2 kernel: \[13157050.766328\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=93.174.89.20 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=23517 PROTO=TCP SPT=43769 DPT=50 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-31 12:25:38
attack	SmallBizIT.US 3 packets to tcp(23,28,64)	2020-05-29 13:07:16
attack	ET CINS Active Threat Intelligence Poor Reputation IP group 90 - port: 63 proto: TCP cat: Misc Attack	2020-05-27 14:19:47
attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-05-25 21:10:52

Comments on same subnet:

IP	Type	Details	Datetime
93.174.89.55	attackspam	TCP (SYN) 93.174.89.55:41704 -> port 48722, len 44	2020-10-13 20:34:17
93.174.89.55	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 83 - port: 48522 proto: tcp cat: Misc Attackbytes: 60	2020-10-13 12:06:47
93.174.89.55	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 83 - port: 48322 proto: tcp cat: Misc Attackbytes: 60	2020-10-13 04:56:40
93.174.89.55	attack	29622/tcp 29522/tcp 29422/tcp... [2020-07-31/09-30]657pkt,215pt.(tcp)	2020-10-01 07:41:23
93.174.89.55	attackspambots	firewall-block, port(s): 29522/tcp	2020-10-01 00:10:34
93.174.89.55	attack	SIP/5060 Probe, BF, Hack -	2020-09-30 16:32:21
93.174.89.54	attackbotsspam	TCP (SYN) 93.174.89.54:46763 -> port 443, len 40	2020-08-27 00:37:10
93.174.89.55	attackspambots	" "	2020-08-27 00:15:33
93.174.89.111	attackbots	Criminal breakin attempts.	2020-08-16 18:03:00
93.174.89.55	attackspambots	Port scanning [4 denied]	2020-08-15 14:52:14
93.174.89.55	attack	Unauthorized connection attempt detected from IP address 93.174.89.55 to port 4214 [T]	2020-08-14 03:52:26
93.174.89.53	attackspam	Aug 13 05:55:11 [-] [-]: client @0x7f8bfc101910 93.174.89.53#40067 (pizzaseo.com): query (cache) 'pizzaseo.com/RRSIG/IN' denied	2020-08-13 13:36:01
93.174.89.55	attackspambots	Unauthorized connection attempt detected from IP address 93.174.89.55 to port 4202 [T]	2020-08-11 07:24:58
93.174.89.55	attackbotsspam	08/05/2020-16:21:04.076859 93.174.89.55 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-08-06 04:32:31
93.174.89.55	attackbotsspam	Port Scan detected from 93.174.89.55 (NL/Netherlands/North Holland/Amsterdam/no-reverse-dns-configured.com). 4 hits in the last 240 seconds	2020-08-02 12:50:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 93.174.89.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47440
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;93.174.89.20.			IN	A

;; AUTHORITY SECTION:
.			251	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052500 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 25 21:10:40 CST 2020
;; MSG SIZE  rcvd: 116

Host info

20.89.174.93.in-addr.arpa domain name pointer no-reverse-dns-configured.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.89.174.93.in-addr.arpa	name = no-reverse-dns-configured.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.77.107.96	attackspam	Brute force blocker - service: proftpd1 - aantal: 36 - Tue Apr 17 03:10:17 2018	2020-03-09 03:26:27
27.18.152.13	attack	Brute force blocker - service: proftpd1, proftpd2 - aantal: 60 - Sun Apr 15 08:40:15 2018	2020-03-09 03:47:53
212.204.111.32	attackbots	Jan 2 11:32:11 ms-srv sshd[49549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.204.111.32 user=root Jan 2 11:32:13 ms-srv sshd[49549]: Failed password for invalid user root from 212.204.111.32 port 55862 ssh2	2020-03-09 03:28:17
212.164.228.99	attackspambots	Jun 4 01:50:24 ms-srv sshd[62311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.164.228.99 Jun 4 01:50:26 ms-srv sshd[62311]: Failed password for invalid user ftp from 212.164.228.99 port 5430 ssh2	2020-03-09 03:48:07
42.227.160.130	attackspambots	Brute force blocker - service: proftpd1 - aantal: 33 - Mon Apr 16 09:40:16 2018	2020-03-09 03:37:23
222.186.175.163	attack	2020-03-08T15:34:39.257917xentho-1 sshd[299773]: Failed password for root from 222.186.175.163 port 15656 ssh2 2020-03-08T15:34:32.868204xentho-1 sshd[299773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.163 user=root 2020-03-08T15:34:34.841913xentho-1 sshd[299773]: Failed password for root from 222.186.175.163 port 15656 ssh2 2020-03-08T15:34:39.257917xentho-1 sshd[299773]: Failed password for root from 222.186.175.163 port 15656 ssh2 2020-03-08T15:34:43.207481xentho-1 sshd[299773]: Failed password for root from 222.186.175.163 port 15656 ssh2 2020-03-08T15:34:32.868204xentho-1 sshd[299773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.163 user=root 2020-03-08T15:34:34.841913xentho-1 sshd[299773]: Failed password for root from 222.186.175.163 port 15656 ssh2 2020-03-08T15:34:39.257917xentho-1 sshd[299773]: Failed password for root from 222.186.175.163 port 15656 ssh2 2020-0 ...	2020-03-09 03:40:42
113.196.220.153	attack	Honeypot attack, port: 81, PTR: 113.196.220.153.ll.static.sparqnet.net.	2020-03-09 03:49:08
157.230.210.224	attackspambots	157.230.210.224 - - [08/Mar/2020:14:59:09 +0100] "GET /wp-login.php HTTP/1.1" 200 6353 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.230.210.224 - - [08/Mar/2020:14:59:10 +0100] "POST /wp-login.php HTTP/1.1" 200 7126 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.230.210.224 - - [08/Mar/2020:17:41:48 +0100] "GET /wp-login.php HTTP/1.1" 200 5347 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-03-09 04:00:35
106.54.242.120	attackspam	Mar 8 20:24:08 sd-53420 sshd\[17869\]: Invalid user zhangkai from 106.54.242.120 Mar 8 20:24:08 sd-53420 sshd\[17869\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 Mar 8 20:24:11 sd-53420 sshd\[17869\]: Failed password for invalid user zhangkai from 106.54.242.120 port 57010 ssh2 Mar 8 20:26:54 sd-53420 sshd\[18229\]: Invalid user danielle from 106.54.242.120 Mar 8 20:26:54 sd-53420 sshd\[18229\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 ...	2020-03-09 03:34:02
212.143.47.164	attackbots	Nov 6 02:44:24 ms-srv sshd[24557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.143.47.164 user=root Nov 6 02:44:26 ms-srv sshd[24557]: Failed password for invalid user root from 212.143.47.164 port 56071 ssh2	2020-03-09 03:59:20
212.156.17.218	attackbotsspam	Nov 7 16:20:02 ms-srv sshd[56555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.156.17.218 user=root Nov 7 16:20:03 ms-srv sshd[56555]: Failed password for invalid user root from 212.156.17.218 port 36418 ssh2	2020-03-09 03:50:25
125.38.183.154	attackbots	Brute force blocker - service: proftpd1, proftpd2 - aantal: 76 - Sun Apr 15 08:30:16 2018	2020-03-09 03:46:46
117.95.201.131	attack	Brute force blocker - service: proftpd1 - aantal: 68 - Mon Apr 16 01:00:16 2018	2020-03-09 03:54:50
202.77.107.50	attack	Unauthorized connection attempt from IP address 202.77.107.50 on Port 445(SMB)	2020-03-09 03:38:51
212.145.242.222	attack	Apr 25 11:41:11 ms-srv sshd[48344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.145.242.222 Apr 25 11:41:13 ms-srv sshd[48344]: Failed password for invalid user user from 212.145.242.222 port 49913 ssh2	2020-03-09 03:56:31

Recently Reported IPs

116.114.95.89	107.158.163.151	45.254.33.124	122.252.224.43
156.195.152.164	81.42.250.190	180.127.125.9	190.161.150.22
125.121.116.116	186.226.169.240	171.211.7.193	152.0.194.2
51.89.165.2	222.247.4.128	170.246.98.62	117.87.85.41
97.74.24.114	60.161.152.64	182.227.147.122	175.143.52.101