94.102.56.55 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United Kingdom

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
94.102.56.238	attackspam	Too many connections or unauthorized access detected from Yankee banned ip	2020-10-12 03:37:21
94.102.56.238	attack	2020-10-11 14:30:32 dovecot_login authenticator failed for (User) [94.102.56.238]: 535 Incorrect authentication data (set_id=office@usmancity.ru) 2020-10-11 14:30:38 dovecot_login authenticator failed for (User) [94.102.56.238]: 535 Incorrect authentication data (set_id=office@usmancity.ru) 2020-10-11 14:30:48 dovecot_login authenticator failed for (User) [94.102.56.238]: 535 Incorrect authentication data (set_id=office@usmancity.ru) ...	2020-10-11 19:32:44
94.102.56.238	attackspam	Oct 10 14:08:39 mail postfix/smtpd[102206]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: generic failure Oct 10 14:08:39 mail postfix/smtpd[102206]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: generic failure Oct 10 14:08:39 mail postfix/smtpd[102206]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: generic failure Oct 10 14:08:39 mail postfix/smtpd[102206]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: generic failure Oct 10 14:08:39 mail postfix/smtpd[102206]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: generic failure ...	2020-10-10 22:16:54
94.102.56.238	attackbotsspam	Oct 10 06:36:11 ns308116 postfix/smtpd[8160]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: authentication failure Oct 10 06:36:11 ns308116 postfix/smtpd[8160]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: authentication failure Oct 10 06:36:11 ns308116 postfix/smtpd[8160]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: authentication failure Oct 10 06:36:11 ns308116 postfix/smtpd[8160]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: authentication failure Oct 10 06:36:11 ns308116 postfix/smtpd[8160]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: authentication failure Oct 10 06:36:11 ns308116 postfix/smtpd[8160]: warning: unknown[94.102.56.238]: SASL LOGIN authentication failed: authentication failure ...	2020-10-10 14:10:32
94.102.56.238	attackspambots	2020-10-10 02:08:19 auth_plain authenticator failed for (User) [94.102.56.238]: 535 Incorrect authentication data (set_id=test@lavrinenko.info,) 2020-10-10 02:08:19 SMTP call from (User) [94.102.56.238] dropped: too many nonmail commands (last was "RSET") ...	2020-10-10 07:48:07
94.102.56.238	attackbotsspam	Oct 9 18:07:38 srv3 postfix/smtpd\[26675\]: warning: unknown\[94.102.56.238\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 9 18:07:44 srv3 postfix/smtpd\[26675\]: warning: unknown\[94.102.56.238\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 9 18:07:54 srv3 postfix/smtpd\[26675\]: warning: unknown\[94.102.56.238\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-10 00:10:00
94.102.56.238	attackspam	SMTP AUTH break-in attempt.	2020-10-09 15:55:55
94.102.56.151	attackbots	Persistent port scanning [69 denied]	2020-10-06 02:03:26
94.102.56.238	attack	warning: unknown[94.102.56.238]: SASL LOGIN authentication failed	2020-10-06 01:30:36
94.102.56.151	attackbots	Persistent port scanning [69 denied]	2020-10-05 17:51:34
94.102.56.238	attackspam	SASL LOGIN authentication failed: authentication failure	2020-10-05 17:22:19
94.102.56.216	attack	UDP 94.102.56.216:58033 -> port 9136, len 57	2020-10-04 06:42:37
94.102.56.238	attackspambots	Port probe and connect to SMTP:25. Auth intiated but dropped.	2020-10-04 03:59:49
94.102.56.216	attackbots	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-03 22:50:19
94.102.56.238	attackbots	2020-10-03 13:06:53 dovecot_login authenticator failed for \(User\) \[94.102.56.238\]: 535 Incorrect authentication data \(set_id=info@no-server.de\) 2020-10-03 13:06:59 dovecot_login authenticator failed for \(User\) \[94.102.56.238\]: 535 Incorrect authentication data \(set_id=info@no-server.de\) 2020-10-03 13:07:09 dovecot_login authenticator failed for \(User\) \[94.102.56.238\]: 535 Incorrect authentication data \(set_id=info@no-server.de\) 2020-10-03 13:07:26 dovecot_login authenticator failed for \(User\) \[94.102.56.238\]: 535 Incorrect authentication data \(set_id=info@no-server.de\) 2020-10-03 13:07:43 dovecot_login authenticator failed for \(User\) \[94.102.56.238\]: 535 Incorrect authentication data \(set_id=info@no-server.de\) 2020-10-03 13:08:00 dovecot_login authenticator failed for \(User\) \[94.102.56.238\]: 535 Incorrect authentication data \(set_id=info@no-server.de\) 2020-10-03 13:08:00 SMTP call from \(User\) \[94.102.56.238\] dropped: too many nonmail commands \(l ...	2020-10-03 20:01:35

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.102.56.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63627
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;94.102.56.55.			IN	A

;; AUTHORITY SECTION:
.			268	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062700 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 27 15:19:04 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 55.56.102.94.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 55.56.102.94.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
89.40.115.154	attack	Jun 1 01:50:58 xxxxxxx sshd[26436]: reveeclipse mapping checking getaddrinfo for host154-115-40-89.static.arubacloud.fr [89.40.115.154] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 1 01:50:58 xxxxxxx sshd[26436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.40.115.154 user=r.r Jun 1 01:51:00 xxxxxxx sshd[26436]: Failed password for r.r from 89.40.115.154 port 40000 ssh2 Jun 1 01:51:00 xxxxxxx sshd[26436]: Received disconnect from 89.40.115.154: 11: Bye Bye [preauth] Jun 1 01:59:04 xxxxxxx sshd[27442]: reveeclipse mapping checking getaddrinfo for host154-115-40-89.static.arubacloud.fr [89.40.115.154] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 1 01:59:04 xxxxxxx sshd[27442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.40.115.154 user=r.r Jun 1 01:59:06 xxxxxxx sshd[27442]: Failed password for r.r from 89.40.115.154 port 53398 ssh2 Jun 1 01:59:06 xxxxxxx sshd[27442]: Received dis........ -------------------------------	2020-06-01 18:19:03
41.139.159.25	attackspambots	2020-06-0108:07:471jfdbu-0000pn-Kq\<=info@whatsup2013.chH=\(localhost\)[123.20.184.137]:57914P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2226id=9F9A2C7F74A08FCC10155CE4206DEA96@whatsup2013.chT="Justdemandasmallamountofyourowninterest"forstevep30@hotmail.com2020-06-0108:07:051jfdbD-0000m7-Up\<=info@whatsup2013.chH=\(localhost\)[123.20.179.254]:52178P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3029id=20c87e2d260d272fb3b600ac4b3f150935e9f2@whatsup2013.chT="tochris.gaillard.chris"forchris.gaillard.chris@gmail.commfpika13@gmail.comacostaeduard133@gmail.com2020-06-0108:07:101jfdbG-0000mh-Se\<=info@whatsup2013.chH=41-139-159-25.safaricombusiness.co.ke\(localhost\)[41.139.159.25]:47903P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2243id=FFFA4C1F14C0EFAC70753C8440944CD1@whatsup2013.chT="Justrequireabitofyourpersonalinterest"formakss1122ma@gmail.com2020-06-0108:10:011jfde4-0001	2020-06-01 18:22:09
103.108.187.98	attackbotsspam	Jun 1 05:25:57 extapp sshd[5931]: Failed password for r.r from 103.108.187.98 port 48048 ssh2 Jun 1 05:30:08 extapp sshd[8463]: Failed password for r.r from 103.108.187.98 port 54542 ssh2 Jun 1 05:34:15 extapp sshd[10617]: Failed password for r.r from 103.108.187.98 port 32812 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.108.187.98	2020-06-01 18:21:40
111.229.76.117	attack	2020-06-01T10:02:28.961250sd-86998 sshd[25807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.76.117 user=root 2020-06-01T10:02:30.699982sd-86998 sshd[25807]: Failed password for root from 111.229.76.117 port 38452 ssh2 2020-06-01T10:07:03.513349sd-86998 sshd[26411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.76.117 user=root 2020-06-01T10:07:05.674836sd-86998 sshd[26411]: Failed password for root from 111.229.76.117 port 33240 ssh2 2020-06-01T10:11:43.846646sd-86998 sshd[27070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.76.117 user=root 2020-06-01T10:11:46.113505sd-86998 sshd[27070]: Failed password for root from 111.229.76.117 port 56258 ssh2 ...	2020-06-01 18:49:11
5.236.131.208	attack	Unauthorized connection attempt from IP address 5.236.131.208 on Port 445(SMB)	2020-06-01 18:35:52
149.126.97.26	attackspam	Unauthorized connection attempt from IP address 149.126.97.26 on Port 445(SMB)	2020-06-01 18:32:51
52.73.169.169	attack	UDP 52.73.169.169:59344 -> port 19, len 57	2020-06-01 18:29:22
87.251.74.137	attackbotsspam	Jun 1 11:40:26 debian-2gb-nbg1-2 kernel: \[13263198.954615\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.137 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=44983 PROTO=TCP SPT=55536 DPT=4422 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-01 18:38:25
122.117.10.10	attackspam	port 23	2020-06-01 18:27:43
106.12.93.141	attackbotsspam	(sshd) Failed SSH login from 106.12.93.141 (CN/China/-): 5 in the last 3600 secs	2020-06-01 18:30:55
185.234.216.210	attackbots	Jun 1 11:54:24 daenerys postfix/smtpd[46894]: warning: unknown[185.234.216.210]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 1 11:54:30 daenerys postfix/smtpd[46894]: warning: unknown[185.234.216.210]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 1 11:54:40 daenerys postfix/smtpd[47002]: warning: unknown[185.234.216.210]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 1 11:54:50 daenerys postfix/smtpd[46894]: warning: unknown[185.234.216.210]: SASL LOGIN authentication failed: Connection lost to authentication server Jun 1 11:55:00 daenerys postfix/smtpd[47002]: warning: unknown[185.234.216.210]: SASL LOGIN authentication failed: Connection lost to authentication server	2020-06-01 18:24:11
58.251.37.197	attackspam	Jun 1 12:29:32 home sshd[31148]: Failed password for root from 58.251.37.197 port 4830 ssh2 Jun 1 12:33:08 home sshd[31477]: Failed password for root from 58.251.37.197 port 30104 ssh2 ...	2020-06-01 18:37:54
201.32.178.190	attackspam	Brute-force attempt banned	2020-06-01 18:46:42
144.34.210.56	attack	prod11 ...	2020-06-01 18:22:32
187.189.61.7	attackspambots	Jun 1 11:55:24 webhost01 sshd[24566]: Failed password for root from 187.189.61.7 port 42739 ssh2 ...	2020-06-01 18:16:31

最近上报的IP列表

94.102.49.5	80.82.69.158	94.102.48.215	189.222.22.152
189.159.126.12	106.38.241.210	80.82.76.119	220.181.108.220
80.82.76.60	80.82.67.19	80.82.76.240	80.82.76.161
80.82.64.237	89.248.160.254	80.82.70.233	220.181.108.17
106.120.173.28	180.76.114.208	123.41.0.36	198.235.24.3