94.49.57.6 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Saudi Arabia

运营商(isp): Saudi Telecom Company JSC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	proto=tcp . spt=48282 . dpt=25 . (listed on Blocklist de Sep 12) (414)	2019-09-13 20:21:51

相同子网IP讨论:

IP	类型	评论内容	时间
94.49.57.43	attackspambots	2019-07-08 08:16:10 1hkMwb-00069Z-VO SMTP connection from \(\[94.49.57.43\]\) \[94.49.57.43\]:19379 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 08:16:23 1hkMwo-00069m-MB SMTP connection from \(\[94.49.57.43\]\) \[94.49.57.43\]:19486 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 08:16:35 1hkMx0-00069u-Gt SMTP connection from \(\[94.49.57.43\]\) \[94.49.57.43\]:19590 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2019-10-24 20:57:52

类型

评论内容

时间

94.49.57.43

attackspambots

2019-07-08 08:16:10 1hkMwb-00069Z-VO SMTP connection from \(\[94.49.57.43\]\) \[94.49.57.43\]:19379 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-07-08 08:16:23 1hkMwo-00069m-MB SMTP connection from \(\[94.49.57.43\]\) \[94.49.57.43\]:19486 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-07-08 08:16:35 1hkMx0-00069u-Gt SMTP connection from \(\[94.49.57.43\]\) \[94.49.57.43\]:19590 I=\[193.107.88.166\]:25 closed by DROP in ACL
...

2019-10-24 20:57:52

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.49.57.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32867
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.49.57.6.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091300 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Sep 13 20:21:46 CST 2019
;; MSG SIZE  rcvd: 114

HOST信息:

Host 6.57.49.94.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 6.57.49.94.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
183.2.217.68	attack	Reported by AbuseIPDB proxy server.	2019-07-02 10:06:19
51.68.201.21	attackspam	Port scan on 2 port(s): 139 445	2019-07-02 10:01:08
187.167.68.31	attack	Unauthorized connection attempt from IP address 187.167.68.31 on Port 445(SMB)	2019-07-02 10:39:43
211.205.95.9	attackbots	Unauthorized connection attempt from IP address 211.205.95.9 on Port 445(SMB)	2019-07-02 10:33:56
104.248.55.99	attackbots	2019-07-02T06:04:54.290684enmeeting.mahidol.ac.th sshd\[608\]: Invalid user jcseg from 104.248.55.99 port 36844 2019-07-02T06:04:54.309554enmeeting.mahidol.ac.th sshd\[608\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.55.99 2019-07-02T06:04:56.048574enmeeting.mahidol.ac.th sshd\[608\]: Failed password for invalid user jcseg from 104.248.55.99 port 36844 ssh2 ...	2019-07-02 10:17:50
109.245.38.42	attackspam	Trying to deliver email spam, but blocked by RBL	2019-07-02 10:42:40
78.85.16.96	attackspambots	Sending SPAM email	2019-07-02 10:11:15
177.72.0.134	attackspam	2019-07-02T02:36:33.034092scmdmz1 sshd\[20913\]: Invalid user redbot from 177.72.0.134 port 44642 2019-07-02T02:36:33.037362scmdmz1 sshd\[20913\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.72.0.134 2019-07-02T02:36:35.693398scmdmz1 sshd\[20913\]: Failed password for invalid user redbot from 177.72.0.134 port 44642 ssh2 ...	2019-07-02 10:41:26
140.143.4.188	attack	Jul 2 04:17:55 rpi sshd[12905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.4.188 Jul 2 04:17:58 rpi sshd[12905]: Failed password for invalid user demo from 140.143.4.188 port 56846 ssh2	2019-07-02 10:21:05
106.12.125.27	attackspambots	Jul 2 03:02:01 MainVPS sshd[3056]: Invalid user applmgr from 106.12.125.27 port 54430 Jul 2 03:02:01 MainVPS sshd[3056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.125.27 Jul 2 03:02:01 MainVPS sshd[3056]: Invalid user applmgr from 106.12.125.27 port 54430 Jul 2 03:02:03 MainVPS sshd[3056]: Failed password for invalid user applmgr from 106.12.125.27 port 54430 ssh2 Jul 2 03:08:28 MainVPS sshd[3492]: Invalid user zule from 106.12.125.27 port 45040 ...	2019-07-02 10:31:18
203.77.237.74	attackspam	Unauthorized connection attempt from IP address 203.77.237.74 on Port 445(SMB)	2019-07-02 10:47:04
61.50.130.146	attackbotsspam	failed_logins	2019-07-02 10:21:27
111.231.219.142	attackspam	Jul 1 23:05:12 MK-Soft-VM3 sshd\[12857\]: Invalid user jason from 111.231.219.142 port 48303 Jul 1 23:05:12 MK-Soft-VM3 sshd\[12857\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.219.142 Jul 1 23:05:14 MK-Soft-VM3 sshd\[12857\]: Failed password for invalid user jason from 111.231.219.142 port 48303 ssh2 ...	2019-07-02 10:08:30
200.52.113.98	attackspambots	Unauthorized connection attempt from IP address 200.52.113.98 on Port 445(SMB)	2019-07-02 10:44:09
42.153.140.220	attackbotsspam	Hit on /wp-login.php	2019-07-02 10:14:52

最近上报的IP列表

122.191.225.3	119.93.245.103	49.49.194.103	213.195.101.59
157.245.74.221	105.112.121.103	103.121.243.108	217.112.128.43
77.87.212.34	69.94.133.136	5.141.26.122	192.161.90.114
92.194.116.109	45.179.253.137	42.188.103.118	160.195.99.222
215.184.102.171	211.192.25.132	183.91.215.47	183.83.73.140