94.102.56.55 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United Kingdom

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
94.102.56.238	attackspam	Too many connections or unauthorized access detected from Yankee banned ip	2020-10-12 03:37:21
94.102.56.238	attack	2020-10-11 14:30:32 dovecot_login authenticator failed for (User) [94.102.56.238]: 535 Incorrect authentication data (set_id=office@usmancity.ru) 2020-10-11 14:30:38 dovecot_login authenticator failed for (User) [94.102.56.238]: 535 Incorrect authentication data (set_id=office@usmancity.ru) 2020-10-11 14:30:48 dovecot_login authenticator failed for (User) [94.102.56.238]: 535 Incorrect authentication data (set_id=office@usmancity.ru) ...	2020-10-11 19:32:44
94.102.56.238	attackspam	Oct 10 14:08:39 mail postfix/smtpd[102206]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: generic failure Oct 10 14:08:39 mail postfix/smtpd[102206]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: generic failure Oct 10 14:08:39 mail postfix/smtpd[102206]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: generic failure Oct 10 14:08:39 mail postfix/smtpd[102206]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: generic failure Oct 10 14:08:39 mail postfix/smtpd[102206]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: generic failure ...	2020-10-10 22:16:54
94.102.56.238	attackbotsspam	Oct 10 06:36:11 ns308116 postfix/smtpd[8160]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: authentication failure Oct 10 06:36:11 ns308116 postfix/smtpd[8160]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: authentication failure Oct 10 06:36:11 ns308116 postfix/smtpd[8160]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: authentication failure Oct 10 06:36:11 ns308116 postfix/smtpd[8160]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: authentication failure Oct 10 06:36:11 ns308116 postfix/smtpd[8160]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: authentication failure Oct 10 06:36:11 ns308116 postfix/smtpd[8160]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: authentication failure ...	2020-10-10 14:10:32
94.102.56.238	attackspambots	2020-10-10 02:08:19 auth_plain authenticator failed for (User) [94.102.56.238]: 535 Incorrect authentication data (set_id=test@lavrinenko.info,) 2020-10-10 02:08:19 SMTP call from (User) [94.102.56.238] dropped: too many nonmail commands (last was "RSET") ...	2020-10-10 07:48:07
94.102.56.238	attackbotsspam	Oct 9 18:07:38 srv3 postfix/smtpd\[26675\]: warning: unknown\[94.102.56.238\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 9 18:07:44 srv3 postfix/smtpd\[26675\]: warning: unknown\[94.102.56.238\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 9 18:07:54 srv3 postfix/smtpd\[26675\]: warning: unknown\[94.102.56.238\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-10 00:10:00
94.102.56.238	attackspam	SMTP AUTH break-in attempt.	2020-10-09 15:55:55
94.102.56.151	attackbots	Persistent port scanning [69 denied]	2020-10-06 02:03:26
94.102.56.238	attack	warning: unknown[94.102.56.238]: SASL LOGIN authentication failed	2020-10-06 01:30:36
94.102.56.151	attackbots	Persistent port scanning [69 denied]	2020-10-05 17:51:34
94.102.56.238	attackspam	SASL LOGIN authentication failed: authentication failure	2020-10-05 17:22:19
94.102.56.216	attack	UDP 94.102.56.216:58033 -> port 9136, len 57	2020-10-04 06:42:37
94.102.56.238	attackspambots	Port probe and connect to SMTP:25. Auth intiated but dropped.	2020-10-04 03:59:49
94.102.56.216	attackbots	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-03 22:50:19
94.102.56.238	attackbots	2020-10-03 13:06:53 dovecot_login authenticator failed for \(User\) \[94.102.56.238\]: 535 Incorrect authentication data \(set_id=info@no-server.de\) 2020-10-03 13:06:59 dovecot_login authenticator failed for \(User\) \[94.102.56.238\]: 535 Incorrect authentication data \(set_id=info@no-server.de\) 2020-10-03 13:07:09 dovecot_login authenticator failed for \(User\) \[94.102.56.238\]: 535 Incorrect authentication data \(set_id=info@no-server.de\) 2020-10-03 13:07:26 dovecot_login authenticator failed for \(User\) \[94.102.56.238\]: 535 Incorrect authentication data \(set_id=info@no-server.de\) 2020-10-03 13:07:43 dovecot_login authenticator failed for \(User\) \[94.102.56.238\]: 535 Incorrect authentication data \(set_id=info@no-server.de\) 2020-10-03 13:08:00 dovecot_login authenticator failed for \(User\) \[94.102.56.238\]: 535 Incorrect authentication data \(set_id=info@no-server.de\) 2020-10-03 13:08:00 SMTP call from \(User\) \[94.102.56.238\] dropped: too many nonmail commands \(l ...	2020-10-03 20:01:35

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.102.56.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63627
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;94.102.56.55.			IN	A

;; AUTHORITY SECTION:
.			268	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062700 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 27 15:19:04 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 55.56.102.94.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 55.56.102.94.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
185.143.72.23	attack	2020-07-05 17:14:16 dovecot_login authenticator failed for \(User\) \[185.143.72.23\]: 535 Incorrect authentication data \(set_id=tempuser@no-server.de\) 2020-07-05 17:14:19 dovecot_login authenticator failed for \(User\) \[185.143.72.23\]: 535 Incorrect authentication data \(set_id=tempuser@no-server.de\) 2020-07-05 17:14:47 dovecot_login authenticator failed for \(User\) \[185.143.72.23\]: 535 Incorrect authentication data \(set_id=goofy@no-server.de\) 2020-07-05 17:14:53 dovecot_login authenticator failed for \(User\) \[185.143.72.23\]: 535 Incorrect authentication data \(set_id=goofy@no-server.de\) 2020-07-05 17:14:54 dovecot_login authenticator failed for \(User\) \[185.143.72.23\]: 535 Incorrect authentication data \(set_id=goofy@no-server.de\) ...	2020-07-05 23:22:41
45.145.66.5	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 25 - port: 35724 proto: TCP cat: Misc Attack	2020-07-05 23:12:19
14.231.148.235	attackspam	Jul 3 10:32:44 CT3029 sshd[21588]: Invalid user admin from 14.231.148.235 port 56972 Jul 3 10:32:44 CT3029 sshd[21588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.231.148.235 Jul 3 10:32:47 CT3029 sshd[21588]: Failed password for invalid user admin from 14.231.148.235 port 56972 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.231.148.235	2020-07-05 23:55:58
197.251.178.197	attackspambots	Failed IMAP Bruteforce attempt	2020-07-05 23:30:26
123.191.45.189	attackspam	Honeypot attack, port: 81, PTR: PTR record not found	2020-07-05 23:57:35
140.206.223.43	attackspam	Jul 5 17:29:48 debian-2gb-nbg1-2 kernel: \[16221601.412723\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=140.206.223.43 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=228 ID=39724 PROTO=TCP SPT=55942 DPT=7070 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-05 23:35:04
2.236.188.179	attackspambots	SSH Brute-Force. Ports scanning.	2020-07-05 23:41:03
192.99.245.135	attackspambots	3x Failed Password	2020-07-05 23:47:56
46.38.148.2	attackbots	Attempted Brute Force (dovecot)	2020-07-05 23:27:53
110.50.85.28	attackspam	Jul 5 15:14:43 rancher-0 sshd[143609]: Invalid user st from 110.50.85.28 port 56970 ...	2020-07-05 23:25:47
192.3.255.230	attackspambots	(From tidwell.colby@gmail.com) Hi, Do you have a Website? Of course you do because I am looking at your website greenriverchiropractic.net now. Are you struggling for Leads and Sales? You’re not the only one. So many Website owners struggle to convert their Visitors into Leads & Sales. There’s a simple way to fix this problem. You could use a Live Chat app on your Website greenriverchiropractic.net and hire Chat Agents. But only if you’ve got deep pockets and you’re happy to fork out THOUSANDS of dollars for the quality you need. ===== But what if you could automate Live Chat so it’s HUMAN-FREE? What if you could exploit NEW “AI” Technology to engage with your Visitors INSTANTLY. And AUTOMATICALLY convert them into Leads & Sales. WITHOUT spending THOUSANDS of dollars on Live Chat Agents. And WITHOUT hiring expensive coders. In fact, all you need to do to activate this LATEST “AI” Website Tech.. ..is to COPY & PASTE a single line of “Website Code”. ==> http://www	2020-07-05 23:52:05
188.247.65.179	attack	Jul 5 14:07:54 ns382633 sshd\[21121\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.247.65.179 user=root Jul 5 14:07:56 ns382633 sshd\[21121\]: Failed password for root from 188.247.65.179 port 47432 ssh2 Jul 5 14:24:38 ns382633 sshd\[24034\]: Invalid user sonarqube from 188.247.65.179 port 51386 Jul 5 14:24:38 ns382633 sshd\[24034\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.247.65.179 Jul 5 14:24:40 ns382633 sshd\[24034\]: Failed password for invalid user sonarqube from 188.247.65.179 port 51386 ssh2	2020-07-05 23:21:58
86.4.163.123	attackbotsspam	SSH Brute-Force reported by Fail2Ban	2020-07-05 23:35:31
40.73.39.26	attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 18 - port: 11435 proto: TCP cat: Misc Attack	2020-07-05 23:13:00
40.79.64.109	attack	Jul 5 14:11:22 ssh2 sshd[25541]: User root from 40.79.64.109 not allowed because not listed in AllowUsers Jul 5 14:11:22 ssh2 sshd[25541]: Failed password for invalid user root from 40.79.64.109 port 16011 ssh2 Jul 5 14:11:22 ssh2 sshd[25541]: Disconnected from invalid user root 40.79.64.109 port 16011 [preauth] ...	2020-07-05 23:28:46

最近上报的IP列表

94.102.49.5	80.82.69.158	94.102.48.215	189.222.22.152
189.159.126.12	106.38.241.210	80.82.76.119	220.181.108.220
80.82.76.60	80.82.67.19	80.82.76.240	80.82.76.161
80.82.64.237	89.248.160.254	80.82.70.233	220.181.108.17
106.120.173.28	180.76.114.208	123.41.0.36	198.235.24.3