94.102.51.98 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Netherlands

运营商(isp): Incrediserve Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Port scan on 20 port(s): 2377 2496 3439 3475 4441 4479 5435 6418 6486 6490 12439 12440 34440 45358 45397 45406 45432 45481 56415 56453	2019-10-20 12:33:17
attack	Port scan on 6 port(s): 2443 5454 6406 23350 23488 34385	2019-10-18 22:05:31
attackbots	Port scan on 3 port(s): 2466 3489 3491	2019-10-16 14:13:47
attackspambots	Port scan on 9 port(s): 3381 3396 3480 4388 4453 4458 34492 45367 56477	2019-10-14 05:54:53
attackspambots	Port scan on 3 port(s): 3342 3368 4489	2019-10-11 07:38:44
attackbots	CloudCIX Reconnaissance Scan Detected, PTR: scanner55.openportstats.com.	2019-08-29 00:16:23
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-19 23:30:57
attackspam	CloudCIX Reconnaissance Scan Detected, PTR: scanner55.openportstats.com.	2019-08-05 09:34:28

相同子网IP讨论:

IP	类型	评论内容	时间
94.102.51.28	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 86 - port: 14265 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:18:39
94.102.51.28	attackbots	[portscan] Port scan	2020-10-13 20:55:07
94.102.51.17	attackspambots	Fail2Ban Ban Triggered	2020-10-13 12:24:11
94.102.51.28	attack	Oct 13 05:48:00 [host] kernel: [2892792.420159] [U Oct 13 05:52:10 [host] kernel: [2893042.585542] [U Oct 13 05:59:27 [host] kernel: [2893479.003593] [U Oct 13 06:00:45 [host] kernel: [2893556.972194] [U Oct 13 06:02:58 [host] kernel: [2893690.599550] [U Oct 13 06:03:57 [host] kernel: [2893748.886505] [U	2020-10-13 12:23:49
94.102.51.17	attack	[MK-Root1] Blocked by UFW	2020-10-13 05:13:55
94.102.51.28	attackbotsspam	Oct 12 22:53:57 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=50790 PROTO=TCP SPT=46594 DPT=45355 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 12 22:58:36 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=4168 PROTO=TCP SPT=46594 DPT=47667 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 12 23:01:47 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=40976 PROTO=TCP SPT=46594 DPT=13886 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 12 23:08:05 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=34845 PROTO=TCP SPT=46594 DPT=29762 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 12 23:09:15 *hidd ...	2020-10-13 05:13:37
94.102.51.17	attackbotsspam	firewall-block, port(s): 5275/tcp	2020-10-11 01:43:06
94.102.51.78	attackspambots	Oct 9 12:46:02 haigwepa sshd[8112]: Failed password for root from 94.102.51.78 port 45205 ssh2 Oct 9 12:46:06 haigwepa sshd[8112]: Failed password for root from 94.102.51.78 port 45205 ssh2 ...	2020-10-10 02:03:42
94.102.51.78	attackbots	[MK-VM3] SSH login failed	2020-10-09 17:48:16
94.102.51.28	attackspambots	TCP (SYN) 94.102.51.28:45039 -> port 42954, len 44	2020-10-09 05:42:43
94.102.51.28	attack	49164/tcp 52334/tcp 60882/tcp... [2020-08-07/10-08]47445pkt,38785pt.(tcp)	2020-10-08 21:57:39
94.102.51.28	attack	[H1.VM2] Blocked by UFW	2020-10-08 13:52:57
94.102.51.28	attackbots	TCP (SYN) 94.102.51.28:45039 -> port 19163, len 44	2020-10-08 02:53:29
94.102.51.28	attackbots	Oct 7 12:48:08 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=46543 PROTO=TCP SPT=45039 DPT=31360 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 7 12:49:13 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=21421 PROTO=TCP SPT=45039 DPT=53281 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 7 13:01:05 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=43131 PROTO=TCP SPT=45039 DPT=23703 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 7 13:03:35 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=43904 PROTO=TCP SPT=45039 DPT=44237 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 7 13:05:31 hidden ...	2020-10-07 19:07:31
94.102.51.28	attackbotsspam	Port scan: Attack repeated for 24 hours	2020-10-01 07:40:34

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.102.51.98
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49146
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.102.51.98.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu May 02 03:48:29 +08 2019
;; MSG SIZE  rcvd: 116

HOST信息:

98.51.102.94.in-addr.arpa domain name pointer scanner55.openportstats.com.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
98.51.102.94.in-addr.arpa	name = scanner55.openportstats.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
106.13.81.162	attackspam	Oct 21 12:57:36 cp sshd[27867]: Failed password for root from 106.13.81.162 port 50724 ssh2 Oct 21 12:57:36 cp sshd[27867]: Failed password for root from 106.13.81.162 port 50724 ssh2	2019-10-21 19:10:34
71.6.147.254	attackspam	Fail2Ban Ban Triggered	2019-10-21 19:19:22
104.211.242.189	attackspam	2019-10-21T11:01:04.072151abusebot.cloudsearch.cf sshd\[5828\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.242.189 user=root	2019-10-21 19:15:16
207.46.13.52	attack	Automatic report - Banned IP Access	2019-10-21 19:05:46
80.150.162.146	attackspambots	ssh brute force	2019-10-21 19:14:49
185.176.27.6	attack	Oct 21 09:55:45 TCP Attack: SRC=185.176.27.6 DST=[Masked] LEN=40 TOS=0x08 PREC=0x20 TTL=243 PROTO=TCP SPT=50209 DPT=4939 WINDOW=1024 RES=0x00 SYN URGP=0	2019-10-21 19:00:10
187.73.214.94	attackbotsspam	Automatic report - Port Scan Attack	2019-10-21 19:22:20
89.151.133.81	attackbots	Oct 21 12:33:58 cvbnet sshd[6097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.151.133.81 Oct 21 12:33:59 cvbnet sshd[6097]: Failed password for invalid user taittiri from 89.151.133.81 port 55922 ssh2 ...	2019-10-21 18:50:15
92.38.157.101	attackbots	Oct 21 09:52:08 vpn01 sshd[3928]: Failed password for root from 92.38.157.101 port 35088 ssh2 Oct 21 09:56:00 vpn01 sshd[3959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.38.157.101 ...	2019-10-21 19:07:47
124.74.248.218	attackspambots	Oct 21 11:29:10 h2177944 sshd\[20762\]: Invalid user lea from 124.74.248.218 port 46968 Oct 21 11:29:10 h2177944 sshd\[20762\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.74.248.218 Oct 21 11:29:12 h2177944 sshd\[20762\]: Failed password for invalid user lea from 124.74.248.218 port 46968 ssh2 Oct 21 11:33:07 h2177944 sshd\[20958\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.74.248.218 user=root ...	2019-10-21 18:49:47
49.88.112.116	attackspam	Oct 21 12:47:02 localhost sshd\[12698\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.116 user=root Oct 21 12:47:03 localhost sshd\[12698\]: Failed password for root from 49.88.112.116 port 24583 ssh2 Oct 21 12:47:06 localhost sshd\[12698\]: Failed password for root from 49.88.112.116 port 24583 ssh2	2019-10-21 18:48:56
212.8.242.12	attackspambots	Bad user agent	2019-10-21 18:57:49
106.53.77.81	attackbotsspam	F2B jail: sshd. Time: 2019-10-21 12:22:09, Reported by: VKReport	2019-10-21 18:43:50
217.27.78.164	attack	Repeated brute force against a port	2019-10-21 19:04:16
101.89.139.49	attackspam	Oct 21 13:30:52 hosting sshd[16386]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.89.139.49 user=root Oct 21 13:30:54 hosting sshd[16386]: Failed password for root from 101.89.139.49 port 15879 ssh2 ...	2019-10-21 18:51:52

最近上报的IP列表

214.168.212.231	36.112.5.4	66.244.62.102	143.73.7.102
11.165.121.53	144.17.186.111	119.90.40.23	109.119.227.85
204.16.247.172	113.166.122.49	185.25.123.143	45.6.72.3
59.188.243.102	254.217.234.124	121.170.176.34	120.234.76.187
232.167.120.17	179.52.255.253	201.195.83.176	154.150.103.21