94.102.50.155 - IPInfo

基本信息:

城市(city): Amsterdam

省份(region): North Holland

国家(country): Netherlands

运营商(isp): Incrediserve Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	22622/tcp 22522/tcp 22422/tcp... [2020-08-20/09-29]675pkt,229pt.(tcp)	2020-09-30 04:39:30
attackspam	firewall-block, port(s): 22422/tcp	2020-09-29 20:47:46
attackspam	TCP (SYN) 94.102.50.155:60000 -> port 22222, len 44	2020-09-29 12:58:12
attackspam	" "	2020-09-01 07:44:57
attackspam	SmallBizIT.US 3 packets to tcp(4622,4722,4822)	2020-08-28 18:14:26
attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 81 - port: 4222 proto: tcp cat: Misc Attackbytes: 60	2020-08-28 01:01:04
attackbots	TCP (SYN) 94.102.50.155:60000 -> port 3622, len 44	2020-08-27 00:35:44
attackbots	TCP (SYN) 94.102.50.155:60000 -> port 3000, len 44	2020-08-20 17:01:24
attackbotsspam	May 12 19:25:31 debian-2gb-nbg1-2 kernel: \[11563192.794360\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=94.102.50.155 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=64252 PROTO=TCP SPT=49350 DPT=2029 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-13 01:34:10
attackspambots	firewall-block, port(s): 9921/tcp	2020-05-11 08:28:32
attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 89 - port: 58222 proto: TCP cat: Misc Attack	2020-05-09 21:40:49
attackspambots	ET DROP Dshield Block Listed Source group 1 - port: 50222 proto: TCP cat: Misc Attack	2020-05-06 23:51:39
attackspambots	Multiport scan : 5 ports scanned 28222 29222 30222 31222 32222	2020-05-03 07:13:54

相同子网IP讨论:

IP	类型	评论内容	时间
94.102.50.137	attackspambots	Port scan: Attack repeated for 24 hours	2020-10-12 04:05:47
94.102.50.137	attackbots	" "	2020-10-11 20:04:25
94.102.50.137	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 83 - port: 61122 proto: tcp cat: Misc Attackbytes: 60	2020-10-11 12:03:26
94.102.50.137	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 83 - port: 61022 proto: tcp cat: Misc Attackbytes: 60	2020-10-11 05:28:23
94.102.50.175	attackbotsspam	Sep 20 18:59:01 hidden postfix/postscreen[25497]: DNSBL rank 3 for [94.102.50.175]:55451	2020-10-10 22:31:14
94.102.50.176	attackspambots	Sep 9 17:08:32 hidden postfix/postscreen[28795]: DNSBL rank 3 for [94.102.50.176]:52261	2020-10-10 22:27:10
94.102.50.183	attackspambots	Sep 14 04:05:17 hidden postfix/postscreen[17355]: DNSBL rank 3 for [94.102.50.183]:62951	2020-10-10 22:26:06
94.102.50.175	attack	Sep 20 18:59:01 hidden postfix/postscreen[25497]: DNSBL rank 3 for [94.102.50.175]:55451	2020-10-10 14:24:04
94.102.50.176	attackspam	Sep 9 17:08:32 hidden postfix/postscreen[28795]: DNSBL rank 3 for [94.102.50.176]:52261	2020-10-10 14:20:22
94.102.50.183	attackbotsspam	Sep 14 04:05:17 hidden postfix/postscreen[17355]: DNSBL rank 3 for [94.102.50.183]:62951	2020-10-10 14:19:12
94.102.50.137	attackspam	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-09 07:42:25
94.102.50.137	attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 84 - port: 58422 proto: tcp cat: Misc Attackbytes: 60	2020-10-09 00:14:19
94.102.50.137	attackbotsspam	Port scanning [7 denied]	2020-10-08 16:10:28
94.102.50.137	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 82 - port: 55522 proto: tcp cat: Misc Attackbytes: 60	2020-10-05 04:28:52
94.102.50.137	attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 82 - port: 55322 proto: tcp cat: Misc Attackbytes: 60	2020-10-04 20:23:03

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.102.50.155
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22704
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.102.50.155.			IN	A

;; AUTHORITY SECTION:
.			270	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050201 1800 900 604800 86400

;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 03 07:13:50 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 155.50.102.94.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 155.50.102.94.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
213.32.88.138	attackbotsspam	$f2bV_matches	2020-02-26 22:44:17
130.83.73.87	attack	php WP PHPmyadamin ABUSE blocked for 12h	2020-02-26 22:29:21
213.87.101.176	attackspam	$f2bV_matches	2020-02-26 22:34:32
132.232.53.105	attack	Feb 26 16:07:47 MK-Soft-VM8 sshd[2973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.53.105 Feb 26 16:07:49 MK-Soft-VM8 sshd[2973]: Failed password for invalid user scan from 132.232.53.105 port 51370 ssh2 ...	2020-02-26 23:10:23
1.36.236.82	attackbotsspam	suspicious action Wed, 26 Feb 2020 10:37:37 -0300	2020-02-26 23:02:59
137.25.101.102	attackspam	Feb 26 15:28:58 vps691689 sshd[9251]: Failed password for root from 137.25.101.102 port 52278 ssh2 Feb 26 15:31:44 vps691689 sshd[9299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.25.101.102 ...	2020-02-26 22:39:36
222.186.173.154	attackbots	Feb 26 15:33:23 h2177944 sshd\[13626\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.154 user=root Feb 26 15:33:25 h2177944 sshd\[13626\]: Failed password for root from 222.186.173.154 port 60082 ssh2 Feb 26 15:33:28 h2177944 sshd\[13626\]: Failed password for root from 222.186.173.154 port 60082 ssh2 Feb 26 15:33:33 h2177944 sshd\[13626\]: Failed password for root from 222.186.173.154 port 60082 ssh2 ...	2020-02-26 22:37:55
106.75.108.218	attackbots	(sshd) Failed SSH login from 106.75.108.218 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 26 14:14:21 amsweb01 sshd[9506]: Invalid user irc from 106.75.108.218 port 35241 Feb 26 14:14:23 amsweb01 sshd[9506]: Failed password for invalid user irc from 106.75.108.218 port 35241 ssh2 Feb 26 14:22:07 amsweb01 sshd[10146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.108.218 user=root Feb 26 14:22:09 amsweb01 sshd[10146]: Failed password for root from 106.75.108.218 port 46252 ssh2 Feb 26 14:37:38 amsweb01 sshd[11540]: Invalid user alesiashavel from 106.75.108.218 port 40039	2020-02-26 22:54:59
213.176.61.59	attack	$f2bV_matches	2020-02-26 23:06:45
112.78.3.171	attackbotsspam	Feb 26 19:41:11 gw1 sshd[26781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.78.3.171 Feb 26 19:41:13 gw1 sshd[26781]: Failed password for invalid user kristof from 112.78.3.171 port 40560 ssh2 ...	2020-02-26 22:43:57
213.59.123.221	attack	$f2bV_matches	2020-02-26 22:42:07
222.186.175.150	attackspambots	Feb 26 12:05:58 firewall sshd[3469]: Failed password for root from 222.186.175.150 port 1364 ssh2 Feb 26 12:06:02 firewall sshd[3469]: Failed password for root from 222.186.175.150 port 1364 ssh2 Feb 26 12:06:06 firewall sshd[3469]: Failed password for root from 222.186.175.150 port 1364 ssh2 ...	2020-02-26 23:08:29
177.200.115.65	attackbots	1582724254 - 02/26/2020 14:37:34 Host: 177.200.115.65/177.200.115.65 Port: 445 TCP Blocked	2020-02-26 23:05:25
213.245.35.117	attack	$f2bV_matches	2020-02-26 22:52:45
45.67.15.100	attack	Feb 26 08:37:32 mail sshd\[14258\]: Invalid user oracle from 45.67.15.100 ...	2020-02-26 23:05:53

最近上报的IP列表

156.247.123.83	112.247.245.194	184.242.42.113	211.194.192.240
121.140.100.165	222.6.6.53	109.152.42.93	117.192.168.40
220.208.164.48	183.77.23.200	1.232.158.75	100.187.248.109
106.154.131.25	75.215.61.63	141.152.48.118	67.80.87.89
79.235.183.172	109.180.230.216	86.128.32.97	218.111.22.88