104.194.11.205

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.194.11.173	attackbotsspam	Triggered: repeated knocking on closed ports.	2020-06-11 21:01:54
104.194.11.173	attackbotsspam	port	2020-06-07 02:14:59
104.194.11.204	attackspambots	Trying ports that it shouldn't be.	2020-06-05 06:36:22
104.194.11.180	attack	DATE:2020-05-15 22:49:47, IP:104.194.11.180, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-05-16 06:07:18
104.194.11.42	attackbots	May 7 15:51:30 debian-2gb-nbg1-2 kernel: \[11118375.210257\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.194.11.42 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=4112 PROTO=TCP SPT=57105 DPT=62034 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-07 22:54:21
104.194.11.42	attackspambots	May 7 13:18:53 debian-2gb-nbg1-2 kernel: \[11109219.070970\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.194.11.42 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=64586 PROTO=TCP SPT=57105 DPT=55120 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-07 19:28:35
104.194.11.42	attackbots	May 6 16:19:04 debian-2gb-nbg1-2 kernel: \[11033633.911454\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.194.11.42 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=33916 PROTO=TCP SPT=57105 DPT=61759 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-06 22:36:34
104.194.11.42	attackbotsspam	May 6 07:53:04 debian-2gb-nbg1-2 kernel: \[11003275.302584\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.194.11.42 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=28416 PROTO=TCP SPT=57105 DPT=55343 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-06 13:57:05
104.194.11.42	attackspambots	May 5 19:00:25 debian-2gb-nbg1-2 kernel: \[10956918.676732\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.194.11.42 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=56683 PROTO=TCP SPT=57041 DPT=47415 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-06 01:07:53
104.194.11.42	attackbotsspam	May 4 00:42:52 debian-2gb-nbg1-2 kernel: \[10804674.226420\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.194.11.42 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=58036 PROTO=TCP SPT=57041 DPT=46709 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-04 07:05:57
104.194.11.42	attack	May 3 06:33:32 debian-2gb-nbg1-2 kernel: \[10739317.117700\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.194.11.42 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=22171 PROTO=TCP SPT=57105 DPT=61013 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-03 12:38:21
104.194.11.42	attackbots	[MK-VM3] Blocked by UFW	2020-05-03 06:06:24
104.194.11.42	attack	May 2 11:23:08 [host] kernel: [5040300.661121] [U May 2 11:24:03 [host] kernel: [5040355.783353] [U May 2 11:25:23 [host] kernel: [5040436.085676] [U May 2 11:25:39 [host] kernel: [5040452.294599] [U May 2 11:28:45 [host] kernel: [5040638.154006] [U May 2 11:29:09 [host] kernel: [5040661.692723] [U	2020-05-02 17:47:29
104.194.11.244	attack	Mar 30 05:55:18 debian-2gb-nbg1-2 kernel: \[7799577.463955\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.194.11.244 DST=195.201.40.59 LEN=439 TOS=0x00 PREC=0x00 TTL=55 ID=6970 DF PROTO=UDP SPT=5276 DPT=5060 LEN=419	2020-03-30 13:56:03
104.194.11.244	attackbotsspam	Mar 28 20:14:27 debian-2gb-nbg1-2 kernel: \[7681932.165973\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.194.11.244 DST=195.201.40.59 LEN=438 TOS=0x00 PREC=0x00 TTL=55 ID=13353 DF PROTO=UDP SPT=5280 DPT=5060 LEN=418	2020-03-29 03:15:17

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.194.11.205
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35053
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.194.11.205.			IN	A

;; AUTHORITY SECTION:
.			593	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 06:30:39 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

205.11.194.104.in-addr.arpa domain name pointer taoholding.space.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
205.11.194.104.in-addr.arpa	name = taoholding.space.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
94.23.70.116	attackspam	$f2bV_matches	2020-02-18 22:08:29
88.225.224.196	attack	DATE:2020-02-18 14:25:43, IP:88.225.224.196, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-02-18 21:32:26
80.82.77.227	attackbotsspam	firewall-block, port(s): 9100/tcp	2020-02-18 22:10:23
182.61.54.45	attack	2020-02-18T13:27:17.526825homeassistant sshd[15265]: Invalid user core from 182.61.54.45 port 39670 2020-02-18T13:27:17.534213homeassistant sshd[15265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.54.45 ...	2020-02-18 21:42:20
139.162.72.191	attackbotsspam	Feb 18 14:27:14 debian-2gb-nbg1-2 kernel: \[4291649.872543\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=139.162.72.191 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=59762 DPT=3127 WINDOW=65535 RES=0x00 SYN URGP=0	2020-02-18 21:45:32
139.59.67.82	attackspam	Feb 18 14:23:01 legacy sshd[14069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.67.82 Feb 18 14:23:03 legacy sshd[14069]: Failed password for invalid user data from 139.59.67.82 port 47092 ssh2 Feb 18 14:26:54 legacy sshd[14250]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.67.82 ...	2020-02-18 22:01:27
67.143.176.47	attack	Brute forcing email accounts	2020-02-18 21:49:50
185.61.92.178	attack	Feb 18 14:27:22 h2177944 kernel: \[5230334.867726\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.61.92.178 DST=85.214.117.9 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=59649 DF PROTO=TCP SPT=42563 DPT=40 WINDOW=14400 RES=0x00 SYN URGP=0 Feb 18 14:27:22 h2177944 kernel: \[5230334.867740\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.61.92.178 DST=85.214.117.9 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=59649 DF PROTO=TCP SPT=42563 DPT=40 WINDOW=14400 RES=0x00 SYN URGP=0 Feb 18 14:27:23 h2177944 kernel: \[5230335.860293\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.61.92.178 DST=85.214.117.9 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=59650 DF PROTO=TCP SPT=42563 DPT=40 WINDOW=14400 RES=0x00 SYN URGP=0 Feb 18 14:27:23 h2177944 kernel: \[5230335.860307\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.61.92.178 DST=85.214.117.9 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=59650 DF PROTO=TCP SPT=42563 DPT=40 WINDOW=14400 RES=0x00 SYN URGP=0 Feb 18 14:27:25 h2177944 kernel: \[5230337.859902\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.61.92.178 DST=85.214.1	2020-02-18 21:36:07
222.186.30.167	attack	Feb 18 13:31:19 marvibiene sshd[48596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.167 user=root Feb 18 13:31:21 marvibiene sshd[48596]: Failed password for root from 222.186.30.167 port 32256 ssh2 Feb 18 13:31:24 marvibiene sshd[48596]: Failed password for root from 222.186.30.167 port 32256 ssh2 Feb 18 13:31:19 marvibiene sshd[48596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.167 user=root Feb 18 13:31:21 marvibiene sshd[48596]: Failed password for root from 222.186.30.167 port 32256 ssh2 Feb 18 13:31:24 marvibiene sshd[48596]: Failed password for root from 222.186.30.167 port 32256 ssh2 ...	2020-02-18 21:32:46
45.119.82.17	attackspambots	WordPress wp-login brute force :: 45.119.82.17 0.120 BYPASS [18/Feb/2020:13:26:46 0000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 2287 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-02-18 22:09:20
103.134.34.109	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 21:36:46
106.12.27.213	attackbots	SSH brutforce	2020-02-18 21:43:12
213.77.77.253	attack	SSH login attempts	2020-02-18 22:13:42
103.134.181.64	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 21:38:10
1.189.90.30	attack	Port probing on unauthorized port 2323	2020-02-18 21:51:38

最近上报的IP列表

104.196.104.237	104.196.22.115	104.197.138.6	104.197.244.255
104.199.76.46	104.199.226.249	104.199.8.232	104.208.107.228
104.21.46.181	104.21.5.213	104.21.79.254	104.210.60.82
104.21.9.246	104.211.100.57	104.215.83.138	104.216.55.178
104.218.157.154	104.216.55.185	104.216.55.183	104.219.80.123

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表