94.159.104.1 - IPInfo

基本信息:

城市(city): Frankfurt am Main

省份(region): Hessen

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See https://docs.db.ripe.net/terms-conditions.html

% Note: this output has been filtered.
%       To receive output for a database update, use the "-B" flag.

% Information related to '94.159.104.0 - 94.159.111.255'

% Abuse contact for '94.159.104.0 - 94.159.111.255' is 'abuse@h2.nexus'

inetnum:        94.159.104.0 - 94.159.111.255
netname:        H2NEXUS
country:        DE
descr:          H2.NEXUS Frankfurt Network
geoloc:         50.0379 8.5622
org:            ORG-HL357-RIPE
remarks:        H2.NEXUS Frankfurt Network
admin-c:        HL5106-RIPE
tech-c:         HL5106-RIPE
status:         ASSIGNED PA
mnt-by:         NHT-MNT
mnt-by:         NEXUS-MNT
created:        2024-09-16T14:06:29Z
last-modified:  2024-09-16T14:06:29Z
source:         RIPE

organisation:   ORG-HL357-RIPE
org-name:       H2NEXUS LTD
org-type:       OTHER
address:        71-75 Shelton Street, Covent Garden, London, United Kingdom, WC2H 9JQ
country:        GB
abuse-c:        HL5106-RIPE
mnt-ref:        NHT-MNT
mnt-ref:        Renets-mnt
mnt-ref:        NEXUS-MNT
mnt-by:         NEXUS-MNT
created:        2024-09-10T21:42:41Z
last-modified:  2024-09-28T20:52:04Z
source:         RIPE # Filtered

role:           H2NEXUS LTD
address:        71-75, Shelton Street, Covent Garden, London, United Kingdom, WC2H 9JQ
abuse-mailbox:  abuse@h2.nexus
nic-hdl:        HL5106-RIPE
mnt-by:         NEXUS-MNT
created:        2024-01-10T16:19:44Z
last-modified:  2026-02-21T00:14:31Z
source:         RIPE # Filtered

% Information related to '94.159.96.0/20AS215730'

route:          94.159.96.0/20
origin:         AS215730
mnt-by:         NHT-MNT
created:        2024-09-25T09:40:42Z
last-modified:  2024-09-25T09:40:42Z
source:         RIPE

% This query was served by the RIPE Database Query Service version 1.121 (DEXTER)

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.159.104.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42051
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;94.159.104.1.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026030800 1800 900 604800 86400

;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 08 19:18:19 CST 2026
;; MSG SIZE  rcvd: 105

HOST信息:

1.104.159.94.in-addr.arpa domain name pointer 88555.h2.nexus.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
1.104.159.94.in-addr.arpa	name = 88555.h2.nexus.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
111.229.61.251	attackbots	k+ssh-bruteforce	2020-09-10 20:30:03
189.237.88.14	attackbotsspam	Unauthorized connection attempt from IP address 189.237.88.14 on Port 445(SMB)	2020-09-10 20:01:59
18.27.197.252	attackspambots	Sep 10 06:40:17 HPCompaq6200-Xubuntu sshd[1211074]: Invalid user admin from 18.27.197.252 port 33308 Sep 10 06:40:17 HPCompaq6200-Xubuntu sshd[1211074]: Connection closed by invalid user admin 18.27.197.252 port 33308 [preauth] Sep 10 06:40:17 HPCompaq6200-Xubuntu sshd[1211074]: Invalid user admin from 18.27.197.252 port 33308 Sep 10 06:40:17 HPCompaq6200-Xubuntu sshd[1211074]: Connection closed by invalid user admin 18.27.197.252 port 33308 [preauth] Sep 10 06:40:19 HPCompaq6200-Xubuntu sshd[1211077]: Invalid user admin from 18.27.197.252 port 36720 ...	2020-09-10 20:37:51
13.76.90.35	attack	Blocked spam. Hailstorm spammer. Microsoft Azure cloud spam sewer	2020-09-10 20:03:16
94.192.83.189	attackbotsspam	Sep 10 18:43:36 itachi1706steam sshd[34881]: Invalid user pi from 94.192.83.189 port 44180 Sep 10 18:43:36 itachi1706steam sshd[34882]: Invalid user pi from 94.192.83.189 port 44182 ...	2020-09-10 20:09:28
185.163.21.208	attackspam	srvr2: (mod_security) mod_security (id:920350) triggered by 185.163.21.208 (AT/-/-): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/09 18:58:54 [error] 862802#0: 448705 [client 185.163.21.208] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "15996707344.371839"] [ref "o0,14v21,14"], client: 185.163.21.208, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-09-10 20:26:48
180.183.4.150	attackspam	Unauthorized connection attempt from IP address 180.183.4.150 on Port 445(SMB)	2020-09-10 19:55:10
51.83.129.84	attackbots	Sep 10 07:27:25 r.ca sshd[15277]: Failed password for root from 51.83.129.84 port 43743 ssh2	2020-09-10 20:06:32
119.144.124.54	attackspambots	Attempted connection to port 1433.	2020-09-10 19:58:10
190.86.109.147	attackbots	Unauthorized connection attempt from IP address 190.86.109.147 on Port 445(SMB)	2020-09-10 20:00:52
5.57.33.71	attackspam	Time: Wed Sep 9 16:57:58 2020 +0000 IP: 5.57.33.71 (IR/Iran/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 9 16:45:38 pv-14-ams2 sshd[26998]: Invalid user ian1 from 5.57.33.71 port 38162 Sep 9 16:45:40 pv-14-ams2 sshd[26998]: Failed password for invalid user ian1 from 5.57.33.71 port 38162 ssh2 Sep 9 16:54:28 pv-14-ams2 sshd[23280]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.57.33.71 user=root Sep 9 16:54:30 pv-14-ams2 sshd[23280]: Failed password for root from 5.57.33.71 port 15147 ssh2 Sep 9 16:57:54 pv-14-ams2 sshd[2034]: Invalid user wpyan from 5.57.33.71 port 26352	2020-09-10 20:15:05
153.203.223.252	attackbots	Attempted connection to port 445.	2020-09-10 19:56:34
5.152.159.31	attackspambots	Sep 10 12:41:26 journals sshd\[121304\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.152.159.31 user=root Sep 10 12:41:29 journals sshd\[121304\]: Failed password for root from 5.152.159.31 port 60643 ssh2 Sep 10 12:45:03 journals sshd\[121652\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.152.159.31 user=root Sep 10 12:45:05 journals sshd\[121652\]: Failed password for root from 5.152.159.31 port 35243 ssh2 Sep 10 12:48:52 journals sshd\[122082\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.152.159.31 user=root ...	2020-09-10 20:14:39
113.105.174.9	attackspambots	Sep 10 11:43:30 rancher-0 sshd[1521287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.105.174.9 user=root Sep 10 11:43:32 rancher-0 sshd[1521287]: Failed password for root from 113.105.174.9 port 47822 ssh2 ...	2020-09-10 20:16:26
5.188.86.164	attackspam	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-10T10:27:55Z	2020-09-10 20:13:16

最近上报的IP列表

38.95.122.75	192.168.4.6	78.166.31.86	2a00:1d36:c015:8801:ef5f:404c:4ed2:ce45
172.67.4.142	69.17.3.136	69.17.3.60	223.104.87.50
39.100.83.160	142.202.4.50	112.40.16.1	192.177.148.11
20.215.208.157	87.121.84.76	58.19.79.120	1.24.16.180
122.96.28.240	124.238.165.237	20.169.50.188	38.128.155.49