94.102.49.152 - IPInfo

基本信息:

城市(city): Amsterdam

省份(region): North Holland

国家(country): Netherlands

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
94.102.49.193	botsattackproxy	Bot	2024-04-11 12:03:13
94.102.49.190	proxy	VPN fraud	2023-05-29 12:52:27
94.102.49.191	attackspam	ET DROP Dshield Block Listed Source group 1 - port: 132 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:37:55
94.102.49.191	attackspambots	Port-scan: detected 174 distinct ports within a 24-hour window.	2020-10-07 17:07:10
94.102.49.117	attack	massive Port Scan	2020-10-07 04:15:40
94.102.49.59	attack	port scan	2020-10-07 00:57:42
94.102.49.117	attackspambots	massive Port Scan	2020-10-06 20:19:06
94.102.49.59	attack	Hacker	2020-10-06 16:51:13
94.102.49.193	attackbots	TCP (SYN) 94.102.49.193:6707 -> port 502, len 44	2020-10-05 03:01:09
94.102.49.193	attackspambots	TCP (SYN) 94.102.49.193:6707 -> port 502, len 44	2020-10-04 18:45:20
94.102.49.93	attackbotsspam	Port-scan: detected 200 distinct ports within a 24-hour window.	2020-10-04 06:25:39
94.102.49.93	attackbotsspam	Port-scan: detected 200 distinct ports within a 24-hour window.	2020-10-03 22:30:11
94.102.49.93	attackspam	[Sun Sep 27 22:47:43 2020] - Syn Flood From IP: 94.102.49.93 Port: 59653	2020-10-03 14:13:26
94.102.49.137	attackspam	Fri, 2020-10-02 08:33:48 - TCP Packet - Source:94.102.49.137 Destination:xxx.xxx.xxx.xxx - [PORT SCAN]	2020-10-03 04:32:19
94.102.49.137	attack	Oct 2 15:35:22 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:30:e4:db:97:3e:3f:08:00 SRC=94.102.49.137 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=42330 PROTO=TCP SPT=45720 DPT=11117 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 2 15:35:22 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:30:e4:db:97:3e:3f:08:00 SRC=94.102.49.137 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=28079 PROTO=TCP SPT=45720 DPT=11218 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 2 15:35:25 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:30:e4:db:97:3e:3f:08:00 SRC=94.102.49.137 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=3153 PROTO=TCP SPT=45720 DPT=11222 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 2 15:35:25 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:30:e4:db:97:3e:3f:08:00 SRC=94.102.49.137 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=16947 PROTO=TCP SPT=45720 DPT=11215 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 2 15: ...	2020-10-02 23:52:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.102.49.152
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44095
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;94.102.49.152.			IN	A

;; AUTHORITY SECTION:
.			426	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022010301 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 04 10:39:02 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

152.49.102.94.in-addr.arpa domain name pointer tor-exit.ubermen.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
152.49.102.94.in-addr.arpa	name = tor-exit.ubermen.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.186.30.57	attackspam	Jan 24 13:22:24 server sshd\[11267\]: Failed password for root from 222.186.30.57 port 38190 ssh2 Jan 24 13:22:26 server sshd\[11264\]: Failed password for root from 222.186.30.57 port 29290 ssh2 Jan 24 13:22:26 server sshd\[11267\]: Failed password for root from 222.186.30.57 port 38190 ssh2 Jan 24 19:45:58 server sshd\[7073\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.57 user=root Jan 24 19:46:00 server sshd\[7081\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.57 user=root ...	2020-01-25 00:47:18
37.139.1.197	attackbotsspam	Unauthorized connection attempt detected from IP address 37.139.1.197 to port 2220 [J]	2020-01-25 00:34:32
5.62.56.34	attackbotsspam	Brute forcing RDP port 3389	2020-01-25 01:02:26
104.248.126.170	attackbotsspam	Jan 24 17:44:35 sd-53420 sshd\[14031\]: User root from 104.248.126.170 not allowed because none of user's groups are listed in AllowGroups Jan 24 17:44:35 sd-53420 sshd\[14031\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.126.170 user=root Jan 24 17:44:36 sd-53420 sshd\[14031\]: Failed password for invalid user root from 104.248.126.170 port 43922 ssh2 Jan 24 17:49:07 sd-53420 sshd\[15131\]: Invalid user cms from 104.248.126.170 Jan 24 17:49:07 sd-53420 sshd\[15131\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.126.170 ...	2020-01-25 01:11:12
114.119.151.197	attackspam	badbot	2020-01-25 00:43:47
63.81.87.193	attackspambots	Jan 24 14:38:05 grey postfix/smtpd\[26261\]: NOQUEUE: reject: RCPT from pets.jcnovel.com\[63.81.87.193\]: 554 5.7.1 Service unavailable\; Client host \[63.81.87.193\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[63.81.87.193\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-25 00:44:30
106.12.36.21	attackspam	Unauthorized connection attempt detected from IP address 106.12.36.21 to port 2220 [J]	2020-01-25 00:46:30
195.176.3.24	attackbots	0,53-01/01 [bc01/m23] PostRequest-Spammer scoring: Durban01	2020-01-25 00:37:59
63.80.184.137	attack	Jan 24 14:41:01 grey postfix/smtpd\[31316\]: NOQUEUE: reject: RCPT from box.sapuxfiori.com\[63.80.184.137\]: 554 5.7.1 Service unavailable\; Client host \[63.80.184.137\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[63.80.184.137\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-25 01:11:47
134.175.17.32	attackbots	Jan 24 05:44:40 eddieflores sshd\[23240\]: Invalid user oracle from 134.175.17.32 Jan 24 05:44:40 eddieflores sshd\[23240\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.17.32 Jan 24 05:44:42 eddieflores sshd\[23240\]: Failed password for invalid user oracle from 134.175.17.32 port 59606 ssh2 Jan 24 05:48:34 eddieflores sshd\[23823\]: Invalid user nicholas from 134.175.17.32 Jan 24 05:48:34 eddieflores sshd\[23823\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.17.32	2020-01-25 00:39:40
40.117.125.206	attack	Mail/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2020-01-25 01:07:39
103.216.81.25	attackbotsspam	Unauthorized connection attempt from IP address 103.216.81.25 on Port 445(SMB)	2020-01-25 01:11:24
78.88.229.104	attackspambots	Jan 24 13:34:24 exim[25224]: [1\31] 1iuyAJ-0006Yq-Ah H=078088229104.kielce.vectranet.pl [78.88.229.104] F= rejected after DATA: This message scored 103.5 spam points.	2020-01-25 00:49:26
176.49.160.170	attackbotsspam	445/tcp [2020-01-24]1pkt	2020-01-25 00:59:35
171.224.178.183	attackbots	1579869285 - 01/24/2020 13:34:45 Host: 171.224.178.183/171.224.178.183 Port: 445 TCP Blocked	2020-01-25 01:10:46

最近上报的IP列表

140.73.176.94	11.29.232.24	109.129.210.175	52.250.32.86
92.53.45.62	251.209.121.198	87.25.83.136	143.145.11.81
5.83.163.16	151.47.86.186	45.87.82.63	41.13.118.59
18.138.231.55	1.82.170.60	207.54.75.193	91.146.6.147
105.35.53.168	208.167.199.207	200.233.50.243	194.140.176.95