94.100.221.22 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Ukraine

运营商(isp): Ukrainian Newest Telecommunication Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 94.100.221.22 to port 80 [J]	2020-02-05 17:27:18
attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/94.100.221.22/ UA - 1H : (79) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : UA NAME ASN : ASN41165 IP : 94.100.221.22 CIDR : 94.100.208.0/20 PREFIX COUNT : 5 UNIQUE IP COUNT : 10752 WYKRYTE ATAKI Z ASN41165 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 INFO : SERVER - ABB - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-09-22 05:50:06

类型

评论内容

时间

attack

Unauthorized connection attempt detected from IP address 94.100.221.22 to port 80 [J]

2020-02-05 17:27:18

attack

IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/94.100.221.22/ 
 UA - 1H : (79)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : UA 
 NAME ASN : ASN41165 
 
 IP : 94.100.221.22 
 
 CIDR : 94.100.208.0/20 
 
 PREFIX COUNT : 5 
 
 UNIQUE IP COUNT : 10752 
 
 
 WYKRYTE ATAKI Z ASN41165 :  
  1H - 1 
  3H - 1 
  6H - 1 
 12H - 1 
 24H - 1 
 
 INFO : SERVER - ABB - Looking for resource vulnerabilities Detected and Blocked by ADMIN  - data recovery

2019-09-22 05:50:06

相同子网IP讨论:

IP	类型	评论内容	时间
94.100.221.203	attackbotsspam	DATE:2020-05-05 13:36:54, IP:94.100.221.203, PORT:ssh SSH brute force auth (docker-dc)	2020-05-05 21:29:22
94.100.221.203	attackbots	May 4 09:27:24 NPSTNNYC01T sshd[5247]: Failed password for root from 94.100.221.203 port 52372 ssh2 May 4 09:32:25 NPSTNNYC01T sshd[5675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.100.221.203 May 4 09:32:27 NPSTNNYC01T sshd[5675]: Failed password for invalid user hduser from 94.100.221.203 port 35668 ssh2 ...	2020-05-04 21:38:50
94.100.221.203	attackbots	hit -> srv3:22	2020-05-01 15:51:15
94.100.221.203	attack	Apr 26 06:37:41 vps46666688 sshd[12119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.100.221.203 Apr 26 06:37:43 vps46666688 sshd[12119]: Failed password for invalid user vmail from 94.100.221.203 port 59028 ssh2 ...	2020-04-26 19:56:18
94.100.221.203	attack	2020-04-23T05:48:26.161404vps773228.ovh.net sshd[19135]: Failed password for root from 94.100.221.203 port 58014 ssh2 2020-04-23T05:53:09.055397vps773228.ovh.net sshd[19190]: Invalid user admin from 94.100.221.203 port 43830 2020-04-23T05:53:09.077714vps773228.ovh.net sshd[19190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.100.221.203 2020-04-23T05:53:09.055397vps773228.ovh.net sshd[19190]: Invalid user admin from 94.100.221.203 port 43830 2020-04-23T05:53:11.483556vps773228.ovh.net sshd[19190]: Failed password for invalid user admin from 94.100.221.203 port 43830 ssh2 ...	2020-04-23 14:41:30

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.100.221.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28140
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.100.221.22.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092100 1800 900 604800 86400

;; Query time: 835 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 22 05:50:03 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

22.221.100.94.in-addr.arpa domain name pointer 94.100.221.22.untc.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
22.221.100.94.in-addr.arpa	name = 94.100.221.22.untc.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
172.81.243.232	attackspam	Sep 13 12:02:48 web1 sshd\[3509\]: Invalid user cpanel from 172.81.243.232 Sep 13 12:02:48 web1 sshd\[3509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.243.232 Sep 13 12:02:50 web1 sshd\[3509\]: Failed password for invalid user cpanel from 172.81.243.232 port 40428 ssh2 Sep 13 12:06:48 web1 sshd\[3850\]: Invalid user services from 172.81.243.232 Sep 13 12:06:48 web1 sshd\[3850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.243.232	2019-09-14 06:12:01
88.84.200.139	attack	Sep 14 01:04:30 site1 sshd\[23076\]: Invalid user nvidia from 88.84.200.139Sep 14 01:04:32 site1 sshd\[23076\]: Failed password for invalid user nvidia from 88.84.200.139 port 52907 ssh2Sep 14 01:08:20 site1 sshd\[23226\]: Invalid user jack from 88.84.200.139Sep 14 01:08:22 site1 sshd\[23226\]: Failed password for invalid user jack from 88.84.200.139 port 46740 ssh2Sep 14 01:12:19 site1 sshd\[23927\]: Invalid user demo from 88.84.200.139Sep 14 01:12:21 site1 sshd\[23927\]: Failed password for invalid user demo from 88.84.200.139 port 40509 ssh2 ...	2019-09-14 06:12:59
103.28.52.65	attackbots	xmlrpc attack	2019-09-14 06:15:54
164.132.54.215	attackspam	Sep 13 11:35:25 lcdev sshd\[17861\]: Invalid user 229 from 164.132.54.215 Sep 13 11:35:25 lcdev sshd\[17861\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=215.ip-164-132-54.eu Sep 13 11:35:27 lcdev sshd\[17861\]: Failed password for invalid user 229 from 164.132.54.215 port 41724 ssh2 Sep 13 11:39:42 lcdev sshd\[18345\]: Invalid user 123456 from 164.132.54.215 Sep 13 11:39:43 lcdev sshd\[18345\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=215.ip-164-132-54.eu	2019-09-14 05:48:53
80.82.65.60	attack	Sep 13 23:55:33 relay dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=80.82.65.60, lip=176.9.177.164, session=\ Sep 13 23:55:43 relay dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 6 secs\): user=\, method=PLAIN, rip=80.82.65.60, lip=176.9.177.164, session=\ Sep 13 23:55:59 relay dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 10 secs\): user=\, method=PLAIN, rip=80.82.65.60, lip=176.9.177.164, session=\ Sep 13 23:58:01 relay dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=80.82.65.60, lip=176.9.177.164, session=\ Sep 14 00:00:23 relay dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\	2019-09-14 06:10:46
3.8.125.176	attackspambots	Chat Spam	2019-09-14 05:46:05
93.114.77.11	attackspam	Automatic report - Banned IP Access	2019-09-14 06:17:15
80.211.0.160	attackspam	Sep 13 23:46:56 plex sshd[12696]: Invalid user 1q2w3e from 80.211.0.160 port 58402	2019-09-14 05:58:24
196.41.122.39	attack	xmlrpc attack	2019-09-14 06:09:59
111.231.215.20	attackbots	2019-09-13T21:54:23.479327abusebot-5.cloudsearch.cf sshd\[14261\]: Invalid user rodomantsev123 from 111.231.215.20 port 48816	2019-09-14 06:03:34
221.132.17.74	attackbots	Sep 13 12:19:38 hcbb sshd\[1673\]: Invalid user user from 221.132.17.74 Sep 13 12:19:38 hcbb sshd\[1673\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.132.17.74 Sep 13 12:19:39 hcbb sshd\[1673\]: Failed password for invalid user user from 221.132.17.74 port 42368 ssh2 Sep 13 12:24:55 hcbb sshd\[2087\]: Invalid user sftp from 221.132.17.74 Sep 13 12:24:55 hcbb sshd\[2087\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.132.17.74	2019-09-14 06:26:34
41.74.4.114	attack	Sep 13 11:33:37 sachi sshd\[1236\]: Invalid user guest3 from 41.74.4.114 Sep 13 11:33:37 sachi sshd\[1236\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.74.4.114 Sep 13 11:33:39 sachi sshd\[1236\]: Failed password for invalid user guest3 from 41.74.4.114 port 49244 ssh2 Sep 13 11:38:57 sachi sshd\[1709\]: Invalid user uftp from 41.74.4.114 Sep 13 11:38:57 sachi sshd\[1709\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.74.4.114	2019-09-14 05:48:24
189.135.116.34	attack	Automatic report - Port Scan Attack	2019-09-14 05:53:08
117.185.62.146	attackspam	Sep 13 23:22:43 saschabauer sshd[1977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.185.62.146 Sep 13 23:22:45 saschabauer sshd[1977]: Failed password for invalid user nagios from 117.185.62.146 port 53946 ssh2	2019-09-14 05:55:56
186.179.100.226	attackbotsspam	Chat Spam	2019-09-14 06:02:28

最近上报的IP列表

188.162.199.219	103.200.118.61	77.105.152.126	222.254.229.39
212.164.233.151	173.212.207.189	45.71.89.254	202.224.120.208
33.230.53.132	189.172.43.180	189.45.42.230	248.106.7.115
180.171.160.226	99.220.209.107	160.85.0.35	253.118.161.88
102.6.252.67	190.90.247.32	178.87.250.217	171.251.221.118