194.11.103.4 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Switzerland

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 194.11.103.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52802
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;194.11.103.4.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022802 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 01 11:10:47 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 4.103.11.194.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 4.103.11.194.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.240.223.85	attackspam	$lgm	2020-09-03 02:05:08
139.59.68.15	attackspambots	Sep 2 11:43:32 mail sshd[31985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.68.15 Sep 2 11:43:35 mail sshd[31985]: Failed password for invalid user pradeep from 139.59.68.15 port 34068 ssh2 ...	2020-09-03 01:59:19
188.80.49.202	attack	Sep 2 13:07:10 Tower sshd[29146]: Connection from 188.80.49.202 port 55882 on 192.168.10.220 port 22 rdomain "" Sep 2 13:07:11 Tower sshd[29146]: Invalid user pi from 188.80.49.202 port 55882 Sep 2 13:07:11 Tower sshd[29146]: error: Could not get shadow information for NOUSER Sep 2 13:07:11 Tower sshd[29146]: Failed password for invalid user pi from 188.80.49.202 port 55882 ssh2 Sep 2 13:07:11 Tower sshd[29146]: Connection closed by invalid user pi 188.80.49.202 port 55882 [preauth]	2020-09-03 01:52:22
187.160.8.47	attackbots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-03 01:54:56
112.85.42.174	attackbots	Sep 2 19:23:50 minden010 sshd[29686]: Failed password for root from 112.85.42.174 port 31723 ssh2 Sep 2 19:24:00 minden010 sshd[29686]: Failed password for root from 112.85.42.174 port 31723 ssh2 Sep 2 19:24:03 minden010 sshd[29686]: Failed password for root from 112.85.42.174 port 31723 ssh2 Sep 2 19:24:03 minden010 sshd[29686]: error: maximum authentication attempts exceeded for root from 112.85.42.174 port 31723 ssh2 [preauth] ...	2020-09-03 01:37:14
42.176.29.208	attack	TCP (SYN) 42.176.29.208:29168 -> port 8080, len 40	2020-09-03 01:58:16
61.149.245.77	attackbots	(sshd) Failed SSH login from 61.149.245.77 (CN/China/Beijing/Jinrongjie (Xicheng District)/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 1 12:42:47 atlas sshd[29463]: Invalid user admin from 61.149.245.77 port 55542 Sep 1 12:42:49 atlas sshd[29463]: Failed password for invalid user admin from 61.149.245.77 port 55542 ssh2 Sep 1 12:42:54 atlas sshd[29485]: Invalid user admin from 61.149.245.77 port 55665 Sep 1 12:42:56 atlas sshd[29485]: Failed password for invalid user admin from 61.149.245.77 port 55665 ssh2 Sep 1 12:43:00 atlas sshd[29528]: Invalid user admin from 61.149.245.77 port 55830	2020-09-03 01:51:57
125.211.216.210	attackbotsspam	DATE:2020-09-01 18:42:03, IP:125.211.216.210, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-09-03 02:02:37
213.136.93.171	attackspam	xmlrpc attack	2020-09-03 02:09:33
192.99.34.42	attack	192.99.34.42 - - [02/Sep/2020:09:17:15 +0100] "POST /wp-login.php HTTP/1.1" 200 5249 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.99.34.42 - - [02/Sep/2020:09:20:17 +0100] "POST /wp-login.php HTTP/1.1" 200 5249 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.99.34.42 - - [02/Sep/2020:09:23:18 +0100] "POST /wp-login.php HTTP/1.1" 200 5249 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ...	2020-09-03 01:53:32
171.25.209.203	attack	Invalid user lin from 171.25.209.203 port 41274	2020-09-03 01:56:20
186.249.209.148	attackspam	186.249.209.148 - - [01/Sep/2020:19:02:38 +0200] "POST /xmlrpc.php HTTP/1.1" 200 257 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" 186.249.209.148 - - [01/Sep/2020:19:02:42 +0200] "POST /xmlrpc.php HTTP/1.1" 200 257 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" 186.249.209.148 - - [01/Sep/2020:19:02:51 +0200] "POST /xmlrpc.php HTTP/1.1" 200 257 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" 186.249.209.148 - - [01/Sep/2020:19:02:56 +0200] "POST /xmlrpc.php HTTP/1.1" 200 257 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" 186.249.209.148 - - [01/Sep/2020:19:03:05 +0200] "POST /xmlrpc.php HTTP/1.1" 200 257 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome ...	2020-09-03 02:00:21
212.52.131.9	attack	Repeated brute force against a port	2020-09-03 01:39:03
45.143.223.22	attackbotsspam	[2020-09-01 12:37:49] NOTICE[1185][C-00009736] chan_sip.c: Call from '' (45.143.223.22:58024) to extension '810441904911013' rejected because extension not found in context 'public'. [2020-09-01 12:37:49] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-01T12:37:49.975-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="810441904911013",SessionID="0x7f10c4208538",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.223.22/58024",ACLName="no_extension_match" [2020-09-01 12:42:54] NOTICE[1185][C-00009741] chan_sip.c: Call from '' (45.143.223.22:55947) to extension '9011441904911013' rejected because extension not found in context 'public'. [2020-09-01 12:42:54] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-01T12:42:54.451-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441904911013",SessionID="0x7f10c4208538",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UD ...	2020-09-03 02:01:39
171.34.173.17	attackbots	" "	2020-09-03 02:14:24

最近上报的IP列表

117.189.130.97	51.33.39.156	122.29.118.138	233.128.132.213
175.13.153.13	60.64.168.64	244.38.34.43	94.97.144.62
64.48.82.170	21.154.254.141	164.177.56.234	99.184.149.121
41.224.123.173	93.82.48.104	101.248.211.241	194.45.203.96
53.206.119.68	208.47.72.37	8.206.104.184	237.248.5.115