94.102.49.26 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Netherlands

运营商(isp): Incrediserve Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized connection attempt detected from IP address 94.102.49.26	2020-06-26 06:05:57

相同子网IP讨论:

IP	类型	评论内容	时间
94.102.49.193	botsattackproxy	Bot	2024-04-11 12:03:13
94.102.49.190	proxy	VPN fraud	2023-05-29 12:52:27
94.102.49.191	attackspam	ET DROP Dshield Block Listed Source group 1 - port: 132 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:37:55
94.102.49.191	attackspambots	Port-scan: detected 174 distinct ports within a 24-hour window.	2020-10-07 17:07:10
94.102.49.117	attack	massive Port Scan	2020-10-07 04:15:40
94.102.49.59	attack	port scan	2020-10-07 00:57:42
94.102.49.117	attackspambots	massive Port Scan	2020-10-06 20:19:06
94.102.49.59	attack	Hacker	2020-10-06 16:51:13
94.102.49.193	attackbots	TCP (SYN) 94.102.49.193:6707 -> port 502, len 44	2020-10-05 03:01:09
94.102.49.193	attackspambots	TCP (SYN) 94.102.49.193:6707 -> port 502, len 44	2020-10-04 18:45:20
94.102.49.93	attackbotsspam	Port-scan: detected 200 distinct ports within a 24-hour window.	2020-10-04 06:25:39
94.102.49.93	attackbotsspam	Port-scan: detected 200 distinct ports within a 24-hour window.	2020-10-03 22:30:11
94.102.49.93	attackspam	[Sun Sep 27 22:47:43 2020] - Syn Flood From IP: 94.102.49.93 Port: 59653	2020-10-03 14:13:26
94.102.49.137	attackspam	Fri, 2020-10-02 08:33:48 - TCP Packet - Source:94.102.49.137 Destination:xxx.xxx.xxx.xxx - [PORT SCAN]	2020-10-03 04:32:19
94.102.49.137	attack	Oct 2 15:35:22 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:30:e4:db:97:3e:3f:08:00 SRC=94.102.49.137 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=42330 PROTO=TCP SPT=45720 DPT=11117 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 2 15:35:22 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:30:e4:db:97:3e:3f:08:00 SRC=94.102.49.137 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=28079 PROTO=TCP SPT=45720 DPT=11218 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 2 15:35:25 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:30:e4:db:97:3e:3f:08:00 SRC=94.102.49.137 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=3153 PROTO=TCP SPT=45720 DPT=11222 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 2 15:35:25 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:30:e4:db:97:3e:3f:08:00 SRC=94.102.49.137 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=16947 PROTO=TCP SPT=45720 DPT=11215 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 2 15: ...	2020-10-02 23:52:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.102.49.26
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38474
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.102.49.26.			IN	A

;; AUTHORITY SECTION:
.			254	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062502 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 26 06:05:54 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

26.49.102.94.in-addr.arpa domain name pointer lgbhk.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
26.49.102.94.in-addr.arpa	name = lgbhk.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.186.180.6	attack	Nov 20 06:22:31 localhost sshd\[17844\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root Nov 20 06:22:32 localhost sshd\[17844\]: Failed password for root from 222.186.180.6 port 32408 ssh2 Nov 20 06:22:36 localhost sshd\[17844\]: Failed password for root from 222.186.180.6 port 32408 ssh2 ...	2019-11-20 14:28:51
171.228.73.111	attack	port scan and connect, tcp 1433 (ms-sql-s)	2019-11-20 14:23:38
40.87.53.102	attackspam	Attempt to run wp-login.php	2019-11-20 14:42:08
94.23.215.90	attackbotsspam	Nov 20 13:10:34 webhost01 sshd[20042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.215.90 Nov 20 13:10:36 webhost01 sshd[20042]: Failed password for invalid user agnethe from 94.23.215.90 port 52659 ssh2 ...	2019-11-20 14:10:19
103.74.123.158	attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2019-11-20 14:05:09
51.91.20.174	attack	2019-11-20T00:45:35.4219091495-001 sshd\[35699\]: Invalid user qq from 51.91.20.174 port 49234 2019-11-20T00:45:35.4251041495-001 sshd\[35699\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.20.174 2019-11-20T00:45:36.9172671495-001 sshd\[35699\]: Failed password for invalid user qq from 51.91.20.174 port 49234 ssh2 2019-11-20T00:49:17.1399651495-001 sshd\[35825\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.20.174 user=root 2019-11-20T00:49:19.1082471495-001 sshd\[35825\]: Failed password for root from 51.91.20.174 port 57398 ssh2 2019-11-20T00:53:03.9484171495-001 sshd\[35927\]: Invalid user dunbar from 51.91.20.174 port 37328 2019-11-20T00:53:03.9590401495-001 sshd\[35927\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.20.174 ...	2019-11-20 14:14:22
49.234.87.24	attack	Nov 20 01:47:48 firewall sshd[14930]: Invalid user vcsa from 49.234.87.24 Nov 20 01:47:49 firewall sshd[14930]: Failed password for invalid user vcsa from 49.234.87.24 port 52414 ssh2 Nov 20 01:56:12 firewall sshd[15062]: Invalid user dominick from 49.234.87.24 ...	2019-11-20 13:58:00
106.54.113.118	attackspam	$f2bV_matches	2019-11-20 14:06:57
200.209.174.76	attack	Nov 20 05:56:24 pornomens sshd\[19833\]: Invalid user operator from 200.209.174.76 port 47337 Nov 20 05:56:24 pornomens sshd\[19833\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.209.174.76 Nov 20 05:56:26 pornomens sshd\[19833\]: Failed password for invalid user operator from 200.209.174.76 port 47337 ssh2 ...	2019-11-20 13:52:56
95.136.10.65	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/95.136.10.65/ PT - 1H : (13) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : PT NAME ASN : ASN12353 IP : 95.136.10.65 CIDR : 95.136.0.0/17 PREFIX COUNT : 32 UNIQUE IP COUNT : 1208064 ATTACKS DETECTED ASN12353 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 3 DateTime : 2019-11-20 05:55:02 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-20 14:29:45
115.95.135.61	attackspambots	Nov 20 06:43:02 OPSO sshd\[26555\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.95.135.61 user=root Nov 20 06:43:04 OPSO sshd\[26555\]: Failed password for root from 115.95.135.61 port 48226 ssh2 Nov 20 06:47:25 OPSO sshd\[27346\]: Invalid user com from 115.95.135.61 port 60962 Nov 20 06:47:25 OPSO sshd\[27346\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.95.135.61 Nov 20 06:47:28 OPSO sshd\[27346\]: Failed password for invalid user com from 115.95.135.61 port 60962 ssh2	2019-11-20 14:12:52
93.171.141.141	attack	Nov 19 19:53:04 php1 sshd\[25505\]: Invalid user hambleton from 93.171.141.141 Nov 19 19:53:04 php1 sshd\[25505\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.171.141.141 Nov 19 19:53:06 php1 sshd\[25505\]: Failed password for invalid user hambleton from 93.171.141.141 port 36310 ssh2 Nov 19 19:56:55 php1 sshd\[25821\]: Invalid user squid from 93.171.141.141 Nov 19 19:56:55 php1 sshd\[25821\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.171.141.141	2019-11-20 14:08:05
184.75.211.131	attackspam	(From maygar.ursula@gmail.com)(From maygar.ursula@gmail.com) Do you want more people to visit your website? Get tons of people who are ready to buy sent directly to your website. Boost revenues quick. Start seeing results in as little as 48 hours. To get details send a reply to: alfred4756will@gmail.com	2019-11-20 13:57:35
222.186.175.215	attackbots	Nov 20 07:42:49 MK-Soft-VM7 sshd[16098]: Failed password for root from 222.186.175.215 port 15232 ssh2 Nov 20 07:42:53 MK-Soft-VM7 sshd[16098]: Failed password for root from 222.186.175.215 port 15232 ssh2 ...	2019-11-20 14:43:01
181.112.221.66	attackspam	$f2bV_matches	2019-11-20 14:28:32

最近上报的IP列表

35.195.180.15	31.28.45.227	31.9.222.115	27.147.55.44
200.207.22.202	197.238.176.34	192.241.239.63	97.74.24.42
27.125.190.170	27.78.36.176	14.188.172.73	216.128.109.236
212.205.251.232	192.241.238.48	192.241.236.123	172.58.43.31
36.224.203.124	162.244.118.96	5.41.22.32	206.189.93.61