94.11.212.52 - IPInfo

基本信息:

城市(city): Billingham

省份(region): England

国家(country): United Kingdom

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.11.212.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15643
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.11.212.52.			IN	A

;; AUTHORITY SECTION:
.			162	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062602 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 27 07:26:25 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

52.212.11.94.in-addr.arpa domain name pointer 5e0bd434.bb.sky.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.212.11.94.in-addr.arpa	name = 5e0bd434.bb.sky.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
34.73.254.71	attackspam	Aug 30 14:42:04 hanapaa sshd\[30019\]: Invalid user deploy from 34.73.254.71 Aug 30 14:42:04 hanapaa sshd\[30019\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.254.73.34.bc.googleusercontent.com Aug 30 14:42:06 hanapaa sshd\[30019\]: Failed password for invalid user deploy from 34.73.254.71 port 59194 ssh2 Aug 30 14:46:05 hanapaa sshd\[30336\]: Invalid user mon from 34.73.254.71 Aug 30 14:46:05 hanapaa sshd\[30336\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.254.73.34.bc.googleusercontent.com	2019-08-31 09:01:39
163.172.65.171	attack	Hits on port : 22	2019-08-31 09:04:43
62.162.103.206	attackspam	fail2ban honeypot	2019-08-31 08:27:29
81.22.45.83	attackspam	Aug 30 22:22:29 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.83 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=31952 PROTO=TCP SPT=52738 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-08-31 08:41:47
193.56.28.47	attack	2019-08-30 UTC: 3x - (3x)	2019-08-31 08:53:54
73.29.192.106	attackbots	SSH/22 MH Probe, BF, Hack -	2019-08-31 08:40:33
14.121.144.39	attackspambots	Unauthorised access (Aug 30) SRC=14.121.144.39 LEN=40 TTL=50 ID=4199 TCP DPT=8080 WINDOW=45800 SYN Unauthorised access (Aug 30) SRC=14.121.144.39 LEN=40 TTL=50 ID=21657 TCP DPT=8080 WINDOW=17083 SYN Unauthorised access (Aug 29) SRC=14.121.144.39 LEN=40 TTL=49 ID=24521 TCP DPT=8080 WINDOW=46931 SYN Unauthorised access (Aug 28) SRC=14.121.144.39 LEN=40 TTL=49 ID=814 TCP DPT=8080 WINDOW=58181 SYN	2019-08-31 08:39:11
95.86.32.4	attack	Aug 30 23:48:21 smtp postfix/smtpd[59126]: NOQUEUE: reject: RCPT from unknown[95.86.32.4]: 554 5.7.1 Service unavailable; Client host [95.86.32.4] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?95.86.32.4; from= to= proto=ESMTP helo= ...	2019-08-31 08:21:09
103.44.0.247	attackspam	port scan and connect, tcp 23 (telnet)	2019-08-31 08:28:29
103.221.222.198	attackspambots	WordPress wp-login brute force :: 103.221.222.198 0.160 BYPASS [31/Aug/2019:10:25:36 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-08-31 09:00:25
195.43.189.10	attackbotsspam	Invalid user jude from 195.43.189.10 port 52562	2019-08-31 08:32:40
134.175.1.247	attackspambots	[Fri Aug 30 23:18:03.716745 2019] [:error] [pid 17144:tid 139870275426048] [client 134.175.1.247:45822] [client 134.175.1.247] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.1.1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "792"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.1.1"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/TP/public/index.php"] [unique_id "XWlMO-NHSrxYlcjcnyLJRgAAAEM"] ...	2019-08-31 08:42:04
189.112.102.89	attackspambots	19/8/30@12:18:14: FAIL: Alarm-Intrusion address from=189.112.102.89 ...	2019-08-31 08:36:02
40.112.248.127	attackbots	Aug 31 01:51:15 localhost sshd\[7156\]: Invalid user admin from 40.112.248.127 port 8256 Aug 31 01:51:15 localhost sshd\[7156\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.112.248.127 Aug 31 01:51:18 localhost sshd\[7156\]: Failed password for invalid user admin from 40.112.248.127 port 8256 ssh2	2019-08-31 08:22:46
45.58.139.98	attack	Aug 30 18:37:50 hermescis postfix/smtpd\[16009\]: NOQUEUE: reject: RCPT from unknown\[45.58.139.98\]: 550 5.1.1 \: Recipient address rejected:* from=\ to=\ proto=ESMTP helo=\	2019-08-31 08:26:29

最近上报的IP列表

176.130.255.87	120.152.97.7	87.251.74.93	31.62.174.3
97.167.171.117	140.158.45.146	96.254.197.239	52.250.116.142
162.78.66.241	123.185.210.147	191.174.168.209	54.205.27.3
186.84.245.252	129.213.194.239	201.95.198.105	192.135.141.207
216.74.102.56	103.39.235.126	91.82.108.13	171.8.242.107