94.102.57.172 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: Incrediserve Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Port scan on 6 port(s): 36543 36549 36576 36731 36806 36920	2020-09-25 02:17:59
attack	Excessive Port-Scanning	2020-09-24 17:58:06
attack	Port scan on 16 port(s): 6004 6039 6047 6176 6255 6338 6417 6437 6440 6555 6640 6723 6744 6830 6834 6925	2020-09-24 00:25:27
attackbotsspam	Port scan on 5 port(s): 6170 6474 6845 6861 6965	2020-09-23 16:34:23

Comments on same subnet:

IP	Type	Details	Datetime
94.102.57.187	attackspam	Sep 25 05:01:15 [host] kernel: [1334884.005629] [U Sep 25 05:01:58 [host] kernel: [1334926.461116] [U Sep 25 05:03:01 [host] kernel: [1334989.502462] [U Sep 25 05:05:23 [host] kernel: [1335132.013666] [U Sep 25 05:08:12 [host] kernel: [1335300.942416] [U Sep 25 05:09:13 [host] kernel: [1335361.827473] [U	2020-09-25 11:42:12
94.102.57.185	attackbots	TCP port : 11869	2020-09-25 02:20:11
94.102.57.153	attack	[HOST2] Port Scan detected	2020-09-25 00:27:48
94.102.57.177	attackspambots	[MK-VM6] Blocked by UFW	2020-09-25 00:27:28
94.102.57.186	attackspam	[H1] Blocked by UFW	2020-09-24 22:50:43
94.102.57.181	attackspambots	[H1.VM4] Blocked by UFW	2020-09-24 22:43:26
94.102.57.185	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-24 18:00:16
94.102.57.153	attackspam	1600924631 - 09/24/2020 07:17:11 Host: 94.102.57.153/94.102.57.153 Port: 4000 TCP Blocked	2020-09-24 16:08:08
94.102.57.177	attackspam	[MK-VM3] Blocked by UFW	2020-09-24 16:07:38
94.102.57.186	attackspam	Port scan on 2 port(s): 26500 26949	2020-09-24 14:40:24
94.102.57.181	attackbotsspam	Multiport scan : 320 ports scanned 23001 23002 23009 23010 23012 23013 23018 23020 23021 23023 23025 23027 23031 23034 23040 23041 23043 23044 23045 23046 23050 23065 23068 23070 23077 23080 23082 23085 23087 23088 23089 23092 23094 23099 23102 23103 23105 23106 23112 23113 23118 23119 23121 23126 23127 23128 23129 23131 23136 23137 23138 23140 23141 23144 23145 23147 23150 23156 23159 23161 23165 23166 23169 23170 23174 23175 23181 .....	2020-09-24 14:34:24
94.102.57.153	attack	Triggered: repeated knocking on closed ports.	2020-09-24 07:32:41
94.102.57.177	attackbots	Multiport scan : 281 ports scanned 24004 24005 24007 24009 24011 24013 24022 24024 24039 24055 24057 24062 24064 24067 24069 24071 24072 24075 24078 24080 24081 24085 24089 24094 24101 24104 24105 24106 24108 24110 24116 24118 24122 24123 24127 24130 24146 24158 24180 24182 24190 24191 24192 24194 24195 24197 24202 24204 24209 24212 24214 24215 24225 24227 24229 24232 24235 24238 24239 24241 24250 24252 24253 24259 24261 24266 24268 .....	2020-09-24 07:32:10
94.102.57.186	attack	Port scan on 16 port(s): 26001 26054 26078 26107 26112 26137 26166 26210 26261 26363 26433 26479 26525 26532 26703 26893	2020-09-24 06:09:06
94.102.57.181	attackspam	Port scan on 15 port(s): 23140 23159 23247 23251 23266 23332 23501 23527 23536 23712 23724 23725 23792 23794 23972	2020-09-24 06:02:16

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.102.57.172
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2103
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.102.57.172.			IN	A

;; AUTHORITY SECTION:
.			228	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092202 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 23 08:31:07 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 172.57.102.94.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 172.57.102.94.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
59.22.233.81	attack	Sep 3 15:18:44 IngegnereFirenze sshd[29107]: Failed password for invalid user bruna from 59.22.233.81 port 28454 ssh2 ...	2020-09-04 00:36:36
129.250.206.86	attackbotsspam	UDP 129.250.206.86:8920 -> port 53, len 75	2020-09-04 00:08:57
156.204.80.73	attack	Attempted connection to port 23.	2020-09-04 00:20:18
144.217.12.194	attackbots	Sep 3 18:38:26 marvibiene sshd[20706]: Failed password for root from 144.217.12.194 port 46802 ssh2	2020-09-04 00:53:47
125.27.59.105	attackspam	Unauthorized connection attempt from IP address 125.27.59.105 on Port 445(SMB)	2020-09-04 00:30:54
27.19.176.239	attackspam	SP-Scan 55210:1433 detected 2020.09.02 11:29:23 blocked until 2020.10.22 04:32:10	2020-09-04 00:12:20
202.129.1.154	attackspam	Unauthorized connection attempt from IP address 202.129.1.154 on Port 445(SMB)	2020-09-04 00:12:34
190.184.201.99	attack	Unauthorized connection attempt from IP address 190.184.201.99 on Port 445(SMB)	2020-09-04 00:14:23
213.202.101.114	attackbots	Sep 3 09:45:29 server sshd[687]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.202.101.114 Sep 3 09:45:31 server sshd[687]: Failed password for invalid user ssl from 213.202.101.114 port 59496 ssh2 Sep 3 09:54:43 server sshd[1034]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.202.101.114 user=root Sep 3 09:54:45 server sshd[1034]: Failed password for invalid user root from 213.202.101.114 port 39982 ssh2	2020-09-04 00:47:35
178.233.128.130	attack	Attempted connection to port 445.	2020-09-04 00:18:38
119.183.126.125	attack	Unauthorised access (Sep 3) SRC=119.183.126.125 LEN=40 TTL=46 ID=29328 TCP DPT=8080 WINDOW=808 SYN Unauthorised access (Sep 2) SRC=119.183.126.125 LEN=40 TTL=46 ID=51053 TCP DPT=8080 WINDOW=808 SYN Unauthorised access (Aug 31) SRC=119.183.126.125 LEN=40 TTL=46 ID=12139 TCP DPT=8080 WINDOW=10785 SYN Unauthorised access (Aug 31) SRC=119.183.126.125 LEN=40 TTL=46 ID=62060 TCP DPT=8080 WINDOW=10785 SYN Unauthorised access (Aug 30) SRC=119.183.126.125 LEN=40 TTL=46 ID=3693 TCP DPT=8080 WINDOW=10785 SYN	2020-09-04 00:40:32
187.107.67.41	attack	Invalid user nfe from 187.107.67.41 port 45828	2020-09-04 00:52:58
196.37.111.217	attack	$f2bV_matches	2020-09-04 00:36:52
5.138.253.51	attack	Attempted connection to port 23.	2020-09-04 00:06:01
222.186.30.35	attackbotsspam	2020-09-03T19:40:43.155973snf-827550 sshd[22040]: Failed password for root from 222.186.30.35 port 48826 ssh2 2020-09-03T19:40:45.142992snf-827550 sshd[22040]: Failed password for root from 222.186.30.35 port 48826 ssh2 2020-09-03T19:40:47.197100snf-827550 sshd[22040]: Failed password for root from 222.186.30.35 port 48826 ssh2 ...	2020-09-04 00:41:16

Recently Reported IPs

34.221.43.220	125.142.0.104	162.226.22.47	31.12.57.39
117.14.87.252	75.109.120.242	198.254.66.20	35.3.100.166
187.60.183.39	173.244.114.51	47.26.80.159	234.173.227.98
46.207.146.202	35.20.51.226	205.163.111.141	112.247.190.39
24.10.94.114	165.55.227.180	45.91.176.154	41.251.152.170