56.104.182.94 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 56.104.182.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37555
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;56.104.182.94.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011100 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 11 22:45:41 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 94.182.104.56.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 94.182.104.56.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
110.249.179.14	attackbots	DATE:2019-11-25 07:28:39, IP:110.249.179.14, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2019-11-25 16:43:08
132.232.43.115	attackspam	Nov 25 09:08:20 DAAP sshd[31297]: Invalid user mysql from 132.232.43.115 port 39970 Nov 25 09:08:20 DAAP sshd[31297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.43.115 Nov 25 09:08:20 DAAP sshd[31297]: Invalid user mysql from 132.232.43.115 port 39970 Nov 25 09:08:21 DAAP sshd[31297]: Failed password for invalid user mysql from 132.232.43.115 port 39970 ssh2 Nov 25 09:16:13 DAAP sshd[31444]: Invalid user yaccob from 132.232.43.115 port 47948 ...	2019-11-25 16:46:27
51.75.160.215	attack	$f2bV_matches	2019-11-25 16:45:32
90.225.57.209	attack	90.225.57.209 was recorded 5 times by 1 hosts attempting to connect to the following ports: 51413. Incident counter (4h, 24h, all-time): 5, 5, 5	2019-11-25 17:19:01
207.253.93.157	attackspambots	207.253.93.157 was recorded 5 times by 1 hosts attempting to connect to the following ports: 51413. Incident counter (4h, 24h, all-time): 5, 5, 5	2019-11-25 16:48:44
162.226.73.199	attack	162.226.73.199 was recorded 5 times by 1 hosts attempting to connect to the following ports: 51413. Incident counter (4h, 24h, all-time): 5, 5, 5	2019-11-25 16:58:34
185.53.88.76	attackspambots	\[2019-11-25 03:33:17\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-25T03:33:17.061-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="011441519470402",SessionID="0x7f26c4276ea8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.76/55058",ACLName="no_extension_match" \[2019-11-25 03:33:19\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-25T03:33:19.220-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="011442922550332",SessionID="0x7f26c49cf608",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.76/65378",ACLName="no_extension_match" \[2019-11-25 03:33:26\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-25T03:33:26.546-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="901146406820581",SessionID="0x7f26c4b7dbd8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.76/54633",ACLName="no_extens	2019-11-25 16:52:52
14.116.253.142	attackbotsspam	2019-11-25T07:28:48.645290hub.schaetter.us sshd\[8778\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.253.142 user=root 2019-11-25T07:28:50.404922hub.schaetter.us sshd\[8778\]: Failed password for root from 14.116.253.142 port 59623 ssh2 2019-11-25T07:37:16.958281hub.schaetter.us sshd\[8858\]: Invalid user server from 14.116.253.142 port 48728 2019-11-25T07:37:16.977606hub.schaetter.us sshd\[8858\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.253.142 2019-11-25T07:37:19.143556hub.schaetter.us sshd\[8858\]: Failed password for invalid user server from 14.116.253.142 port 48728 ssh2 ...	2019-11-25 16:44:33
36.74.177.73	attack	Fail2Ban - FTP Abuse Attempt	2019-11-25 16:49:49
139.59.180.53	attackspam	SSH bruteforce (Triggered fail2ban)	2019-11-25 17:14:10
37.14.240.100	attackbotsspam	Automatic report - SSH Brute-Force Attack	2019-11-25 17:19:53
40.124.4.131	attack	2019-11-25T08:37:48.616754abusebot-8.cloudsearch.cf sshd\[25805\]: Invalid user applmgr from 40.124.4.131 port 44036	2019-11-25 16:49:33
192.34.61.49	attackbots	Nov 24 22:46:20 hanapaa sshd\[26438\]: Invalid user arabele from 192.34.61.49 Nov 24 22:46:20 hanapaa sshd\[26438\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.34.61.49 Nov 24 22:46:21 hanapaa sshd\[26438\]: Failed password for invalid user arabele from 192.34.61.49 port 34185 ssh2 Nov 24 22:52:34 hanapaa sshd\[26945\]: Invalid user public321 from 192.34.61.49 Nov 24 22:52:34 hanapaa sshd\[26945\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.34.61.49	2019-11-25 16:55:06
195.154.112.212	attackspambots	Nov 24 21:36:50 ACSRAD auth.info sshd[8133]: Invalid user starlyn from 195.154.112.212 port 44968 Nov 24 21:36:50 ACSRAD auth.info sshd[8133]: Failed password for invalid user starlyn from 195.154.112.212 port 44968 ssh2 Nov 24 21:36:50 ACSRAD auth.info sshd[8133]: Received disconnect from 195.154.112.212 port 44968:11: Bye Bye [preauth] Nov 24 21:36:50 ACSRAD auth.info sshd[8133]: Disconnected from 195.154.112.212 port 44968 [preauth] Nov 24 21:36:50 ACSRAD auth.notice sshguard[3276]: Attack from "195.154.112.212" on service 100 whostnameh danger 10. Nov 24 21:36:50 ACSRAD auth.notice sshguard[3276]: Attack from "195.154.112.212" on service 100 whostnameh danger 10. Nov 24 21:36:50 ACSRAD auth.notice sshguard[3276]: Attack from "195.154.112.212" on service 100 whostnameh danger 10. Nov 24 21:36:50 ACSRAD auth.warn sshguard[3276]: Blocking "195.154.112.212/32" forever (3 attacks in 0 secs, after 2 abuses over 1237 secs.) ........ ----------------------------------------------- https://www.blocklist.de/en/vi	2019-11-25 17:17:35
182.71.188.10	attack	Nov 25 06:44:39 ns382633 sshd\[1108\]: Invalid user vettese from 182.71.188.10 port 55220 Nov 25 06:44:39 ns382633 sshd\[1108\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.71.188.10 Nov 25 06:44:42 ns382633 sshd\[1108\]: Failed password for invalid user vettese from 182.71.188.10 port 55220 ssh2 Nov 25 07:27:42 ns382633 sshd\[8905\]: Invalid user serverpilot from 182.71.188.10 port 34238 Nov 25 07:27:42 ns382633 sshd\[8905\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.71.188.10	2019-11-25 17:14:41

最近上报的IP列表

46.74.60.253	235.179.253.171	117.177.51.74	49.145.1.111
47.23.215.14	85.208.86.79	143.35.175.153	48.42.116.29
148.189.55.121	4.60.236.154	160.222.108.111	231.95.22.12
4.26.169.41	13.117.213.181	140.190.153.123	252.16.113.85
88.53.167.95	29.100.53.155	205.136.111.177	247.135.22.37