104.168.132.138

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#


NetRange:       104.168.128.0 - 104.168.255.255
CIDR:           104.168.128.0/17
NetName:        HOSTWINDS-17-7
NetHandle:      NET-104-168-128-0-1
Parent:         NET104 (NET-104-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   Hostwinds LLC. (HL-29)
RegDate:        2014-09-03
Updated:        2021-09-23
Comment:        https://www.hostwinds.com
Comment:        Abuse Contact: abuse@hostwinds.com
Ref:            https://rdap.arin.net/registry/ip/104.168.128.0


OrgName:        Hostwinds LLC.
OrgId:          HL-29
Address:        12101 Tukwila International Blvd, 3rd Floor, Suite 320
City:           Seattle
StateProv:      WA
PostalCode:     98168
Country:        US
RegDate:        2011-11-30
Updated:        2024-11-25
Comment:        https://www.hostwinds.com
Comment:        Abuse Contact: abuse@hostwinds.com
Ref:            https://rdap.arin.net/registry/entity/HL-29

ReferralServer:  rwhois://rwhois.hostwinds.net:4321

OrgTechHandle: HNOC9-ARIN
OrgTechName:   Hostwinds Network Operations Center
OrgTechPhone:  +1-206-886-0665 
OrgTechEmail:  support@hostwinds.com
OrgTechRef:    https://rdap.arin.net/registry/entity/HNOC9-ARIN

OrgAbuseHandle: HAC3-ARIN
OrgAbuseName:   Hostwinds Abuse Center
OrgAbusePhone:  +1-206-886-0665 
OrgAbuseEmail:  abuse@hostwinds.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/HAC3-ARIN

OrgNOCHandle: HNOC9-ARIN
OrgNOCName:   Hostwinds Network Operations Center
OrgNOCPhone:  +1-206-886-0665 
OrgNOCEmail:  support@hostwinds.com
OrgNOCRef:    https://rdap.arin.net/registry/entity/HNOC9-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#



Found a referral to rwhois.hostwinds.net:4321.

%rwhois V-1.5:003fff:00 rwhois.hostwinds.net (by Network Solutions, Inc. V-1.5.9.6)
network:Class-Name:network
network:ID:Hostwinds Block-104.168.132.0/24
network:Auth-Area:104.168.132.0/24
network:Network-Name:Hostwinds Seattle Network
network:IP-Network:104.168.132.0/24
network:IP-Network-Block:104.168.132.0 - 104.168.132.255
network:Customer Organization:Hostwinds Seattle
network:Customer Address;I:12101 Tukwila Intl Blvd.  3rd Floor, Suite 320
network:Customer City;I:Seattle
network:Customer State/Province;I:Washington
network:Customer Postal Code;I:98168
network:Customer Country Code;I:US
network:Organization;I:Hostwinds LLC
network:Tech-Contact;I:Abuse@hostwinds.com
network:Admin-Contact;I:Abuse@hostwinds.com
network:Abuse-Contact;I:Abuse@hostwinds.com

network:Class-Name:network
network:ID:Hostwinds Block-104.168.128.0/17
network:Auth-Area:104.168.128.0/17
network:Network-Name:Hostwinds Seattle Network
network:IP-Network:104.168.128.0/17
network:IP-Network-Block:104.168.128.0 - 104.168.255.255
network:Customer Organization:Hostwinds Seattle
network:Customer Address;I:12101 Tukwila Intl Blvd.  3rd Floor, Suite 320
network:Customer City;I:Seattle
network:Customer State/Province;I:Washington
network:Customer Postal Code;I:98168
network:Customer Country Code;I:US
network:Organization;I:Hostwinds LLC
network:Tech-Contact;I:Abuse@hostwinds.com
network:Admin-Contact;I:Abuse@hostwinds.com
network:Abuse-Contact;I:Abuse@hostwinds.com

%ok

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.168.132.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31297
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.168.132.138.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025111000 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 10 19:31:33 CST 2025
;; MSG SIZE  rcvd: 108

HOST信息:

138.132.168.104.in-addr.arpa domain name pointer hwsrv-1306010.hostwindsdns.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.132.168.104.in-addr.arpa	name = hwsrv-1306010.hostwindsdns.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
220.167.100.60	attack	SSH brute force attempt (f)	2020-09-09 12:02:32
49.235.74.168	attack	Failed password for root from 49.235.74.168 port 43358 ssh2 Failed password for root from 49.235.74.168 port 43514 ssh2	2020-09-09 08:43:48
114.219.133.7	attackspambots	Sep 9 01:53:58 minden010 sshd[6792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.219.133.7 Sep 9 01:54:00 minden010 sshd[6792]: Failed password for invalid user test from 114.219.133.7 port 3349 ssh2 Sep 9 01:57:45 minden010 sshd[8085]: Failed password for root from 114.219.133.7 port 3350 ssh2 ...	2020-09-09 12:12:29
173.54.247.22	attackbots	TCP (SYN) 173.54.247.22:39599 -> port 8080, len 44	2020-09-09 12:01:27
47.94.215.35	attackspambots	SSH	2020-09-09 12:23:39
222.186.175.151	attackspam	Sep 9 06:16:03 server sshd[60593]: Failed none for root from 222.186.175.151 port 36088 ssh2 Sep 9 06:16:06 server sshd[60593]: Failed password for root from 222.186.175.151 port 36088 ssh2 Sep 9 06:16:09 server sshd[60593]: Failed password for root from 222.186.175.151 port 36088 ssh2	2020-09-09 12:22:14
123.125.21.125	attackbotsspam	(sshd) Failed SSH login from 123.125.21.125 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 8 20:09:17 server sshd[26641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.125.21.125 user=root Sep 8 20:09:20 server sshd[26641]: Failed password for root from 123.125.21.125 port 39894 ssh2 Sep 8 20:17:00 server sshd[29012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.125.21.125 user=root Sep 8 20:17:02 server sshd[29012]: Failed password for root from 123.125.21.125 port 47968 ssh2 Sep 8 20:20:41 server sshd[29945]: Invalid user nologin from 123.125.21.125 port 49700	2020-09-09 08:44:16
2a00:23c4:b60b:e700:a532:1987:ad6:c26f	attack	xmlrpc attack	2020-09-09 12:20:29
181.50.253.53	attackbotsspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root	2020-09-09 12:11:51
92.127.204.215	attackspam	Attempted Email Sync. Password Hacking/Probing.	2020-09-09 08:36:52
61.177.172.177	attackspambots	Sep 9 04:17:39 marvibiene sshd[51058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.177 user=root Sep 9 04:17:41 marvibiene sshd[51058]: Failed password for root from 61.177.172.177 port 36001 ssh2 Sep 9 04:17:45 marvibiene sshd[51058]: Failed password for root from 61.177.172.177 port 36001 ssh2 Sep 9 04:17:39 marvibiene sshd[51058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.177 user=root Sep 9 04:17:41 marvibiene sshd[51058]: Failed password for root from 61.177.172.177 port 36001 ssh2 Sep 9 04:17:45 marvibiene sshd[51058]: Failed password for root from 61.177.172.177 port 36001 ssh2	2020-09-09 12:20:04
61.177.172.168	attackbots	Sep 9 09:16:52 gw1 sshd[17988]: Failed password for root from 61.177.172.168 port 60990 ssh2 Sep 9 09:17:03 gw1 sshd[17988]: Failed password for root from 61.177.172.168 port 60990 ssh2 ...	2020-09-09 12:28:10
51.83.42.212	attackspam	(sshd) Failed SSH login from 51.83.42.212 (FR/France/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 8 12:33:02 server sshd[17400]: Invalid user roman from 51.83.42.212 Sep 8 12:33:05 server sshd[17400]: Failed password for invalid user roman from 51.83.42.212 port 38096 ssh2 Sep 8 12:49:22 server sshd[18935]: Failed password for root from 51.83.42.212 port 34236 ssh2 Sep 8 12:52:34 server sshd[19254]: Invalid user tankcommander117 from 51.83.42.212 Sep 8 12:52:36 server sshd[19254]: Failed password for invalid user tankcommander117 from 51.83.42.212 port 39682 ssh2	2020-09-09 08:45:05
45.227.255.4	attackbots	honeypot 22 port	2020-09-09 12:04:09
185.220.103.4	attackspam	2020-09-09T02:26[Censored Hostname] sshd[17140]: Failed password for root from 185.220.103.4 port 51436 ssh2 2020-09-09T02:26[Censored Hostname] sshd[17140]: Failed password for root from 185.220.103.4 port 51436 ssh2 2020-09-09T02:26[Censored Hostname] sshd[17140]: Failed password for root from 185.220.103.4 port 51436 ssh2[...]	2020-09-09 12:05:40

最近上报的IP列表

113.200.184.131	34.151.168.136	205.210.31.52	20.124.93.107
92.223.31.12	185.23.182.123	117.157.22.147	34.40.133.2
61.219.165.1	123.51.237.8	210.61.142.157	210.66.9.232
88.151.34.37	3.5.249.224	154.12.84.130	194.114.129.186
217.142.232.16	199.130.237.220	159.226.47.20	185.180.140.126