14.11.194.203 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Japan

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.11.194.203
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11196
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.11.194.203.			IN	A

;; AUTHORITY SECTION:
.			178	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011001 1800 900 604800 86400

;; Query time: 26 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 11 02:15:45 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

203.194.11.14.in-addr.arpa domain name pointer M014011194203.v4.enabler.ne.jp.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
203.194.11.14.in-addr.arpa	name = M014011194203.v4.enabler.ne.jp.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
45.142.195.2	attackspambots	Mar 30 07:05:23 relay postfix/smtpd\[17341\]: warning: unknown\[45.142.195.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 30 07:06:01 relay postfix/smtpd\[11654\]: warning: unknown\[45.142.195.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 30 07:06:13 relay postfix/smtpd\[17341\]: warning: unknown\[45.142.195.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 30 07:06:50 relay postfix/smtpd\[9670\]: warning: unknown\[45.142.195.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 30 07:07:03 relay postfix/smtpd\[9671\]: warning: unknown\[45.142.195.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-03-30 13:12:44
106.13.96.248	attackspam	Mar 30 06:30:25 markkoudstaal sshd[10649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.96.248 Mar 30 06:30:28 markkoudstaal sshd[10649]: Failed password for invalid user bws from 106.13.96.248 port 42566 ssh2 Mar 30 06:34:00 markkoudstaal sshd[11185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.96.248	2020-03-30 12:44:00
150.242.213.189	attack	SSH Brute-Forcing (server2)	2020-03-30 13:21:43
212.64.77.154	attack	Mar 30 06:51:48 silence02 sshd[21539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.77.154 Mar 30 06:51:50 silence02 sshd[21539]: Failed password for invalid user ofv from 212.64.77.154 port 58442 ssh2 Mar 30 06:56:55 silence02 sshd[22185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.77.154	2020-03-30 12:58:53
136.232.13.114	attackspam	Unauthorized connection attempt detected from IP address 136.232.13.114 to port 1433	2020-03-30 13:15:23
45.71.244.26	attackbotsspam	Mar 30 07:50:06 www1 sshd\[56705\]: Invalid user nmf from 45.71.244.26Mar 30 07:50:08 www1 sshd\[56705\]: Failed password for invalid user nmf from 45.71.244.26 port 47834 ssh2Mar 30 07:54:14 www1 sshd\[57093\]: Invalid user syp from 45.71.244.26Mar 30 07:54:16 www1 sshd\[57093\]: Failed password for invalid user syp from 45.71.244.26 port 50454 ssh2Mar 30 07:58:26 www1 sshd\[57550\]: Invalid user ulx from 45.71.244.26Mar 30 07:58:28 www1 sshd\[57550\]: Failed password for invalid user ulx from 45.71.244.26 port 53058 ssh2 ...	2020-03-30 13:13:10
54.36.163.141	attackspam	Mar 30 06:54:45 eventyay sshd[9097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.163.141 Mar 30 06:54:46 eventyay sshd[9097]: Failed password for invalid user vce from 54.36.163.141 port 59738 ssh2 Mar 30 06:58:47 eventyay sshd[9180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.163.141 ...	2020-03-30 12:59:54
201.202.107.35	attack	20/3/29@23:55:48: FAIL: Alarm-Telnet address from=201.202.107.35 ...	2020-03-30 13:19:54
49.51.160.107	attackbots	Port scan: Attack repeated for 24 hours	2020-03-30 13:20:32
180.109.19.92	attack	$f2bV_matches	2020-03-30 13:18:22
106.12.48.217	attack	SSH bruteforce (Triggered fail2ban)	2020-03-30 13:20:16
194.113.34.212	attackspam	X-Barracuda-Apparent-Source-IP: 194.113.34.212 Received: from yvuygvpa.host-stage-dns.com (unknown [38.68.38.24]) by vps.multingtech.ga (Postfix) with ESMTPA id 51B2C2DED for ; Mon, 30 Mar 2020 00:47:43 +0000 (UTC) Content-Type: multipart/alternative; boundary="===============0530462433==" MIME-Version: 1.0 Subject: You have received a new file via WeTransfer To: niels@nielsongering.nl X-ASG-Orig-Subj: You have received a new file via WeTransfer From: "WeTransfer" Date: Mon, 30 Mar 2020 02:47:42 +0200 X-Barracuda-Connect: vps.multingtech.ga[194.113.34.212] X-Barracuda-Start-Time: 1585529264 X-Barracuda-URL: https://185.135.240.41:443/cgi-mod/mark.cgi	2020-03-30 12:42:52
46.238.40.2	attackbotsspam	Mar 30 05:55:45 ks10 sshd[1467584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.238.40.2 Mar 30 05:55:47 ks10 sshd[1467584]: Failed password for invalid user vcsa from 46.238.40.2 port 59330 ssh2 ...	2020-03-30 13:24:34
222.186.30.35	attackspam	Mar 30 07:42:51 server2 sshd\[32505\]: User root from 222.186.30.35 not allowed because not listed in AllowUsers Mar 30 07:45:55 server2 sshd\[345\]: User root from 222.186.30.35 not allowed because not listed in AllowUsers Mar 30 07:48:39 server2 sshd\[447\]: User root from 222.186.30.35 not allowed because not listed in AllowUsers Mar 30 07:49:03 server2 sshd\[470\]: User root from 222.186.30.35 not allowed because not listed in AllowUsers Mar 30 07:49:03 server2 sshd\[455\]: User root from 222.186.30.35 not allowed because not listed in AllowUsers Mar 30 07:49:03 server2 sshd\[480\]: User root from 222.186.30.35 not allowed because not listed in AllowUsers	2020-03-30 12:52:20
5.45.207.85	attackspam	[Mon Mar 30 10:56:13.073433 2020] [:error] [pid 4522:tid 140217289807616] [client 5.45.207.85:60839] [client 5.45.207.85] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XoFt3d-uWogOK2yIquIrSQAAALQ"] ...	2020-03-30 12:57:26

最近上报的IP列表

15.98.216.80	193.199.10.254	146.126.184.152	170.228.137.197
17.148.241.123	144.194.138.78	208.103.86.246	13.154.88.123
14.218.158.180	113.206.214.121	15.93.153.67	216.4.153.139
58.181.76.94	138.98.251.255	168.98.174.17	143.201.124.197
235.236.51.106	198.97.175.74	122.103.34.90	236.75.4.75