94.102.52.147 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: Incrediserve Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
94.102.52.36	attackspam	Sent packet to closed port: 22	2020-08-09 23:44:48
94.102.52.57	attackbots	[Thu May 21 12:06:10 2020] - DDoS Attack From IP: 94.102.52.57 Port: 56548	2020-07-09 03:53:58
94.102.52.44	attackspambots	May 27 00:05:26 pop3-login: Info: Disconnected: Inactivity \(auth failed, 1 attempts in 180 secs\): user=\, method=PLAIN, rip=94.102.52.44, lip=192.168.100.101, session=\<9W41QJSmrABeZjQs\>\ May 27 00:47:06 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=94.102.52.44, lip=192.168.100.101, session=\\ May 27 00:50:24 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=94.102.52.44, lip=192.168.100.101, session=\\ May 27 00:59:20 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=94.102.52.44, lip=192.168.100.101, session=\\ May 27 00:59:24 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 6 secs\): user=\, method=PLAIN, rip=94.102.52.44, lip=192.168.100.101, session=\\ May 27 01	2020-05-27 07:46:46
94.102.52.44	attackspam	May 26 18:59:50 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=94.102.52.44, lip=185.118.198.210, session= May 26 19:00:07 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=94.102.52.44, lip=185.118.198.210, session=<0DPwBpCmxk5eZjQs> May 26 19:00:19 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=94.102.52.44, lip=185.118.198.210, session= May 26 19:01:43 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=94.102.52.44, lip=185.118.198.210, session= May 26 19:02:11 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=	2020-05-27 01:15:11
94.102.52.44	attack	May 26 04:04:28 ns3042688 courier-pop3d: LOGIN FAILED, user=postmaster@sikla-shop.eu, ip=\[::ffff:94.102.52.44\] ...	2020-05-26 10:11:53
94.102.52.44	attackbotsspam	May 25 19:44:30 ns3042688 courier-pop3d: LOGIN FAILED, user=office@sikla-systems.es, ip=\[::ffff:94.102.52.44\] ...	2020-05-26 02:06:54
94.102.52.44	attackbotsspam	May 25 07:48:22 ns3042688 courier-pop3d: LOGIN FAILED, user=test@makita-dolmar.info, ip=\[::ffff:94.102.52.44\] ...	2020-05-25 13:49:29
94.102.52.57	attackbotsspam	05/24/2020-18:33:20.532373 94.102.52.57 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-05-25 06:51:24
94.102.52.44	attackbotsspam	May 24 13:56:10 ns3042688 courier-pop3d: LOGIN FAILED, user=webmaster@tienda-sikla.eu, ip=\[::ffff:94.102.52.44\] ...	2020-05-24 20:15:14
94.102.52.57	attack	Port scanning [23 denied]	2020-05-23 17:57:54
94.102.52.44	attack	May 22 21:47:50 ns3042688 courier-pop3d: LOGIN FAILED, user=reception@tienda-cmt.org, ip=\[::ffff:94.102.52.44\] ...	2020-05-23 03:49:51
94.102.52.44	attackbots	May 22 13:47:30 ns3042688 courier-pop3d: LOGIN FAILED, user=support@sikla-shop.eu, ip=\[::ffff:94.102.52.44\] ...	2020-05-22 19:54:43
94.102.52.57	attack	TCP ports : 11 / 338 / 448 / 564 / 911	2020-05-22 01:22:15
94.102.52.57	attackspambots	05/20/2020-13:13:08.646937 94.102.52.57 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-05-21 01:31:46
94.102.52.44	attackbotsspam	May 20 18:50:14 ns3042688 courier-pop3d: LOGIN FAILED, user=info@tienda-cmt.com, ip=\[::ffff:94.102.52.44\] ...	2020-05-21 00:57:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.102.52.147
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22382
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.102.52.147.			IN	A

;; AUTHORITY SECTION:
.			582	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050201 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 03 13:01:12 CST 2020
;; MSG SIZE  rcvd: 117

Host info

147.52.102.94.in-addr.arpa domain name pointer no-reverse-dns-configured.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
147.52.102.94.in-addr.arpa	name = no-reverse-dns-configured.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
148.153.27.26	attackbotsspam	Unauthorized connection attempt from IP address 148.153.27.26 on Port 445(SMB)	2020-08-19 02:51:23
92.59.136.208	attackspam	Unauthorized connection attempt from IP address 92.59.136.208 on Port 445(SMB)	2020-08-19 02:13:51
217.182.77.186	attack	2020-08-18T10:23:12.770156hostname sshd[98775]: Failed password for invalid user teamspeak from 217.182.77.186 port 40166 ssh2 ...	2020-08-19 02:28:37
87.117.63.38	attackspambots	Unauthorized connection attempt from IP address 87.117.63.38 on Port 445(SMB)	2020-08-19 02:38:07
94.100.94.83	attackbotsspam	Unauthorized connection attempt from IP address 94.100.94.83 on Port 445(SMB)	2020-08-19 02:26:45
84.238.24.35	attackbotsspam	SSH login attempts.	2020-08-19 02:17:33
118.40.248.20	attack	detected by Fail2Ban	2020-08-19 02:47:48
103.195.6.57	attackspambots	Aug 18 18:41:01 datenbank sshd[108191]: Failed password for invalid user nr from 103.195.6.57 port 46628 ssh2 Aug 18 18:59:48 datenbank sshd[108265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.195.6.57 user=root Aug 18 18:59:50 datenbank sshd[108265]: Failed password for root from 103.195.6.57 port 48592 ssh2 ...	2020-08-19 02:35:06
120.86.127.45	attackspam	fail2ban detected brute force on sshd	2020-08-19 02:39:21
209.17.97.34	attack	Auto Detect Rule! proto TCP (SYN), 209.17.97.34:53941->gjan.info:8080, len 44	2020-08-19 02:50:40
5.196.117.232	attack	Aug 18 15:05:21 admin sendmail[24901]: 07ID5Buc024901: [5.196.117.232] did not issue MAIL/EXPN/VRFY/ETRN during connection to TLSMTA Aug 18 15:05:32 admin sendmail[25054]: 07ID5LWP025054: [5.196.117.232] did not issue MAIL/EXPN/VRFY/ETRN during connection to TLSMTA Aug 18 15:05:42 admin sendmail[25060]: 07ID5WcN025060: [5.196.117.232] did not issue MAIL/EXPN/VRFY/ETRN during connection to TLSMTA Aug 18 15:05:53 admin sendmail[25069]: 07ID5gf5025069: [5.196.117.232] did not issue MAIL/EXPN/VRFY/ETRN during connection to TLSMTA ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=5.196.117.232	2020-08-19 02:33:58
101.53.249.183	attackspambots	Unauthorized connection attempt from IP address 101.53.249.183 on Port 445(SMB)	2020-08-19 02:48:18
124.74.248.218	attackspambots	2020-08-18T12:25:03.203510shield sshd\[4159\]: Invalid user pers from 124.74.248.218 port 23531 2020-08-18T12:25:03.212750shield sshd\[4159\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.74.248.218 2020-08-18T12:25:05.293926shield sshd\[4159\]: Failed password for invalid user pers from 124.74.248.218 port 23531 ssh2 2020-08-18T12:30:56.227398shield sshd\[4494\]: Invalid user aa from 124.74.248.218 port 50927 2020-08-18T12:30:56.236555shield sshd\[4494\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.74.248.218	2020-08-19 02:14:50
49.233.197.173	attackbotsspam	Invalid user app from 49.233.197.173 port 40382	2020-08-19 02:45:30
103.81.211.196	attack	Unauthorized connection attempt from IP address 103.81.211.196 on Port 445(SMB)	2020-08-19 02:17:11

Recently Reported IPs

170.52.131.129	125.70.78.160	123.17.175.224	118.70.43.49
78.101.225.154	191.79.133.18	38.39.232.110	62.65.105.245
34.74.13.1	144.202.17.246	104.248.146.238	192.241.198.95
132.145.165.87	188.243.56.207	160.119.254.236	58.186.97.27
124.168.185.95	115.40.60.108	107.151.152.154	95.185.31.79