94.102.51.98 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Netherlands

运营商(isp): Incrediserve Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Port scan on 20 port(s): 2377 2496 3439 3475 4441 4479 5435 6418 6486 6490 12439 12440 34440 45358 45397 45406 45432 45481 56415 56453	2019-10-20 12:33:17
attack	Port scan on 6 port(s): 2443 5454 6406 23350 23488 34385	2019-10-18 22:05:31
attackbots	Port scan on 3 port(s): 2466 3489 3491	2019-10-16 14:13:47
attackspambots	Port scan on 9 port(s): 3381 3396 3480 4388 4453 4458 34492 45367 56477	2019-10-14 05:54:53
attackspambots	Port scan on 3 port(s): 3342 3368 4489	2019-10-11 07:38:44
attackbots	CloudCIX Reconnaissance Scan Detected, PTR: scanner55.openportstats.com.	2019-08-29 00:16:23
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-19 23:30:57
attackspam	CloudCIX Reconnaissance Scan Detected, PTR: scanner55.openportstats.com.	2019-08-05 09:34:28

相同子网IP讨论:

IP	类型	评论内容	时间
94.102.51.28	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 86 - port: 14265 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:18:39
94.102.51.28	attackbots	[portscan] Port scan	2020-10-13 20:55:07
94.102.51.17	attackspambots	Fail2Ban Ban Triggered	2020-10-13 12:24:11
94.102.51.28	attack	Oct 13 05:48:00 [host] kernel: [2892792.420159] [U Oct 13 05:52:10 [host] kernel: [2893042.585542] [U Oct 13 05:59:27 [host] kernel: [2893479.003593] [U Oct 13 06:00:45 [host] kernel: [2893556.972194] [U Oct 13 06:02:58 [host] kernel: [2893690.599550] [U Oct 13 06:03:57 [host] kernel: [2893748.886505] [U	2020-10-13 12:23:49
94.102.51.17	attack	[MK-Root1] Blocked by UFW	2020-10-13 05:13:55
94.102.51.28	attackbotsspam	Oct 12 22:53:57 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=50790 PROTO=TCP SPT=46594 DPT=45355 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 12 22:58:36 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=4168 PROTO=TCP SPT=46594 DPT=47667 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 12 23:01:47 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=40976 PROTO=TCP SPT=46594 DPT=13886 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 12 23:08:05 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=34845 PROTO=TCP SPT=46594 DPT=29762 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 12 23:09:15 *hidd ...	2020-10-13 05:13:37
94.102.51.17	attackbotsspam	firewall-block, port(s): 5275/tcp	2020-10-11 01:43:06
94.102.51.78	attackspambots	Oct 9 12:46:02 haigwepa sshd[8112]: Failed password for root from 94.102.51.78 port 45205 ssh2 Oct 9 12:46:06 haigwepa sshd[8112]: Failed password for root from 94.102.51.78 port 45205 ssh2 ...	2020-10-10 02:03:42
94.102.51.78	attackbots	[MK-VM3] SSH login failed	2020-10-09 17:48:16
94.102.51.28	attackspambots	TCP (SYN) 94.102.51.28:45039 -> port 42954, len 44	2020-10-09 05:42:43
94.102.51.28	attack	49164/tcp 52334/tcp 60882/tcp... [2020-08-07/10-08]47445pkt,38785pt.(tcp)	2020-10-08 21:57:39
94.102.51.28	attack	[H1.VM2] Blocked by UFW	2020-10-08 13:52:57
94.102.51.28	attackbots	TCP (SYN) 94.102.51.28:45039 -> port 19163, len 44	2020-10-08 02:53:29
94.102.51.28	attackbots	Oct 7 12:48:08 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=46543 PROTO=TCP SPT=45039 DPT=31360 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 7 12:49:13 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=21421 PROTO=TCP SPT=45039 DPT=53281 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 7 13:01:05 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=43131 PROTO=TCP SPT=45039 DPT=23703 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 7 13:03:35 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=43904 PROTO=TCP SPT=45039 DPT=44237 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 7 13:05:31 hidden ...	2020-10-07 19:07:31
94.102.51.28	attackbotsspam	Port scan: Attack repeated for 24 hours	2020-10-01 07:40:34

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.102.51.98
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49146
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.102.51.98.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu May 02 03:48:29 +08 2019
;; MSG SIZE  rcvd: 116

HOST信息:

98.51.102.94.in-addr.arpa domain name pointer scanner55.openportstats.com.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
98.51.102.94.in-addr.arpa	name = scanner55.openportstats.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
68.183.106.84	attackspam	Jul 9 23:34:16 unicornsoft sshd\[15234\]: Invalid user gj from 68.183.106.84 Jul 9 23:34:16 unicornsoft sshd\[15234\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.106.84 Jul 9 23:34:18 unicornsoft sshd\[15234\]: Failed password for invalid user gj from 68.183.106.84 port 49316 ssh2	2019-07-10 08:37:32
31.14.252.130	attackbotsspam	Jul 10 00:28:59 mail sshd\[2619\]: Failed password for invalid user scott from 31.14.252.130 port 36941 ssh2 Jul 10 00:44:33 mail sshd\[2773\]: Invalid user riley from 31.14.252.130 port 38982 Jul 10 00:44:33 mail sshd\[2773\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.14.252.130 ...	2019-07-10 08:21:29
200.11.15.114	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-08 19:53:47,990 INFO [shellcode_manager] (200.11.15.114) no match, writing hexdump (4fb4c635ce1a942ab2ce7fca60a9e422 :1861296) - MS17010 (EternalBlue)	2019-07-10 08:33:14
176.31.100.19	attackbots	2019-07-10T07:19:38.502947enmeeting.mahidol.ac.th sshd\[24726\]: Invalid user nagios from 176.31.100.19 port 40736 2019-07-10T07:19:38.516992enmeeting.mahidol.ac.th sshd\[24726\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns388913.ip-176-31-100.eu 2019-07-10T07:19:40.796986enmeeting.mahidol.ac.th sshd\[24726\]: Failed password for invalid user nagios from 176.31.100.19 port 40736 ssh2 ...	2019-07-10 08:52:18
177.125.164.225	attackspam	Jul 10 01:34:50 dev sshd\[17725\]: Invalid user ftpuser from 177.125.164.225 port 43478 Jul 10 01:34:50 dev sshd\[17725\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.125.164.225 ...	2019-07-10 08:24:11
193.70.90.59	attackspambots	Invalid user guest from 193.70.90.59 port 35048 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.90.59 Failed password for invalid user guest from 193.70.90.59 port 35048 ssh2 Invalid user user123 from 193.70.90.59 port 58734 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.90.59	2019-07-10 08:41:58
110.45.145.178	attackspambots	$f2bV_matches	2019-07-10 08:40:52
139.59.135.84	attackbotsspam	Jul 10 00:30:22 mail sshd\[2641\]: Failed password for invalid user nadege from 139.59.135.84 port 43036 ssh2 Jul 10 00:46:53 mail sshd\[2794\]: Invalid user scott from 139.59.135.84 port 60708 Jul 10 00:46:53 mail sshd\[2794\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.135.84 ...	2019-07-10 08:18:28
217.238.166.113	attackspam	2019-07-10T01:31:51.160762stark.klein-stark.info sshd\[21301\]: Invalid user gregory from 217.238.166.113 port 49768 2019-07-10T01:31:51.168524stark.klein-stark.info sshd\[21301\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=pd9eea671.dip0.t-ipconnect.de 2019-07-10T01:31:52.955622stark.klein-stark.info sshd\[21301\]: Failed password for invalid user gregory from 217.238.166.113 port 49768 ssh2 ...	2019-07-10 09:06:37
45.119.212.168	attackbots	Jul 10 00:31:52 mail sshd\[2652\]: Failed password for invalid user nadege from 45.119.212.168 port 50168 ssh2 Jul 10 00:47:13 mail sshd\[2816\]: Invalid user git from 45.119.212.168 port 50106 Jul 10 00:47:13 mail sshd\[2816\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.119.212.168 ...	2019-07-10 08:20:41
197.60.217.35	attackspambots	port scan and connect, tcp 23 (telnet)	2019-07-10 08:57:55
34.248.98.185	attackbots	10.07.2019 01:34:58 - RDP Login Fail Detected by https://www.elinox.de/RDP-Wächter	2019-07-10 08:23:44
200.222.29.142	attack	19/7/9@19:34:39: FAIL: Alarm-Intrusion address from=200.222.29.142 ...	2019-07-10 08:31:06
180.76.100.178	attackspam	Jul 10 01:33:26 * sshd[28089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.100.178 Jul 10 01:33:28 * sshd[28089]: Failed password for invalid user slr from 180.76.100.178 port 45724 ssh2	2019-07-10 08:55:23
43.251.104.247	attackbots	port scan and connect, tcp 80 (http)	2019-07-10 08:48:03

最近上报的IP列表

214.168.212.231	36.112.5.4	66.244.62.102	143.73.7.102
11.165.121.53	144.17.186.111	119.90.40.23	109.119.227.85
204.16.247.172	113.166.122.49	185.25.123.143	45.6.72.3
59.188.243.102	254.217.234.124	121.170.176.34	120.234.76.187
232.167.120.17	179.52.255.253	201.195.83.176	154.150.103.21