104.168.14.74 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.168.14.36	attackspambots	Found on Blocklist de / proto=6 . srcport=42398 . dstport=22 SSH . (991)	2020-10-07 02:37:31
104.168.14.36	attackbots	Found on Blocklist de / proto=6 . srcport=42398 . dstport=22 SSH . (991)	2020-10-06 18:34:54
104.168.14.122	attack	TCP (SYN) 104.168.14.122:41260 -> port 22, len 44	2020-08-31 08:30:32
104.168.141.181	attack	Email spam message	2020-06-24 21:18:29
104.168.142.194	attackbotsspam	port 23	2020-06-20 04:42:22
104.168.141.201	attackbots	TCP Port: 25 invalid blocked abuseat-org also barracuda and zen-spamhaus (282)	2020-06-02 08:12:47
104.168.145.99	attackspam	$f2bV_matches	2020-05-26 05:07:13
104.168.142.227	attackbots	lfd: (smtpauth) Failed SMTP AUTH login from 104.168.142.227 (hwsrv-273223.hostwindsdns.com): 5 in the last 3600 secs - Fri Jun 22 19:11:59 2018	2020-04-30 13:06:04
104.168.148.42	attackspambots	Lines containing failures of 104.168.148.42 Apr 19 08:13:27 UTC__SANYALnet-Labs__cac12 sshd[19340]: Connection from 104.168.148.42 port 48714 on 45.62.253.138 port 22 Apr 19 08:13:28 UTC__SANYALnet-Labs__cac12 sshd[19340]: Invalid user ch from 104.168.148.42 port 48714 Apr 19 08:13:30 UTC__SANYALnet-Labs__cac12 sshd[19340]: Failed password for invalid user ch from 104.168.148.42 port 48714 ssh2 Apr 19 08:13:30 UTC__SANYALnet-Labs__cac12 sshd[19340]: Received disconnect from 104.168.148.42 port 48714:11: Bye Bye [preauth] Apr 19 08:13:30 UTC__SANYALnet-Labs__cac12 sshd[19340]: Disconnected from 104.168.148.42 port 48714 [preauth] Apr 19 08:24:40 UTC__SANYALnet-Labs__cac12 sshd[19617]: Connection from 104.168.148.42 port 49250 on 45.62.253.138 port 22 Apr 19 08:24:44 UTC__SANYALnet-Labs__cac12 sshd[19617]: Failed password for invalid user r.r from 104.168.148.42 port 49250 ssh2 Apr 19 08:24:44 UTC__SANYALnet-Labs__cac12 sshd[19617]: Received disconnect from 104.168.148.42 ........ ------------------------------	2020-04-19 20:48:20
104.168.148.189	attackbots	Fail2Ban Ban Triggered	2020-03-05 15:39:20
104.168.142.227	attackbotsspam	lfd: (smtpauth) Failed SMTP AUTH login from 104.168.142.227 (hwsrv-273223.hostwindsdns.com): 5 in the last 3600 secs - Fri Jun 22 19:11:59 2018	2020-02-23 23:48:05
104.168.144.77	attackbotsspam	lfd: (smtpauth) Failed SMTP AUTH login from 104.168.144.77 (US/United States/hwsrv-238723.hostwindsdns.com): 5 in the last 3600 secs - Thu May 3 12:14:48 2018	2020-02-07 06:46:19
104.168.142.229	attack	2020-01-19T23:42:11.3404711495-001 sshd[29566]: Invalid user lena from 104.168.142.229 port 55354 2020-01-19T23:42:11.3496611495-001 sshd[29566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=hwsrv-656802.hostwindsdns.com 2020-01-19T23:42:11.3404711495-001 sshd[29566]: Invalid user lena from 104.168.142.229 port 55354 2020-01-19T23:42:13.0808461495-001 sshd[29566]: Failed password for invalid user lena from 104.168.142.229 port 55354 ssh2 2020-01-19T23:44:41.3200111495-001 sshd[29648]: Invalid user admin from 104.168.142.229 port 50442 2020-01-19T23:44:41.3232021495-001 sshd[29648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=hwsrv-656802.hostwindsdns.com 2020-01-19T23:44:41.3200111495-001 sshd[29648]: Invalid user admin from 104.168.142.229 port 50442 2020-01-19T23:44:42.9783291495-001 sshd[29648]: Failed password for invalid user admin from 104.168.142.229 port 50442 ssh2 2020-01-19T23:47:09.1872401 ...	2020-01-20 13:09:22
104.168.142.229	attackspambots	Jan 17 14:51:45 dedicated sshd[8525]: Invalid user vnc from 104.168.142.229 port 39966	2020-01-17 23:38:18
104.168.142.229	attackbots	Unauthorized connection attempt detected from IP address 104.168.142.229 to port 2220 [J]	2020-01-17 04:56:59

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.168.14.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36079
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.168.14.74.			IN	A

;; AUTHORITY SECTION:
.			345	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 19:37:22 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

74.14.168.104.in-addr.arpa domain name pointer 104-168-14-74-host.colocrossing.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
74.14.168.104.in-addr.arpa	name = 104-168-14-74-host.colocrossing.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
91.121.132.116	attack	Jul 3 12:12:12 localhost sshd[18100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.132.116 Jul 3 12:12:14 localhost sshd[18100]: Failed password for invalid user odoo from 91.121.132.116 port 50270 ssh2 Jul 3 12:14:54 localhost sshd[18128]: Failed password for root from 91.121.132.116 port 53992 ssh2 Jul 3 12:17:03 localhost sshd[18142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.132.116 ...	2019-07-04 00:44:31
31.206.222.24	attackbots	2019-07-03 15:14:03 H=([31.206.222.24]) [31.206.222.24]:24543 I=[10.100.18.22]:25 sender verify fail for : all relevant MX records point to non-existent hosts 2019-07-03 x@x 2019-07-03 15:14:03 unexpected disconnection while reading SMTP command from ([31.206.222.24]) [31.206.222.24]:24543 I=[10.100.18.22]:25 (error: Connection reset by peer) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=31.206.222.24	2019-07-04 01:21:52
178.128.79.169	attackspam	Jul 3 17:53:57 nextcloud sshd\[22254\]: Invalid user forms from 178.128.79.169 Jul 3 17:53:57 nextcloud sshd\[22254\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.79.169 Jul 3 17:53:59 nextcloud sshd\[22254\]: Failed password for invalid user forms from 178.128.79.169 port 56034 ssh2 ...	2019-07-04 00:32:31
177.246.222.111	attackspambots	WordPress XMLRPC scan :: 177.246.222.111 0.192 BYPASS [03/Jul/2019:23:23:18 1000] [censored_4] "GET /xmlrpc.php HTTP/1.1" 405 53 "-" "Mozilla/5.0 (X11; Linux i686; rv:2.0.1) Gecko/20100101 Firefox/4.0.1"	2019-07-04 00:39:06
91.80.166.133	attack	Jul 3 14:58:55 * sshd[6726]: Did not receive identification string from 91.80.166.133 port 35540 Jul 3 14:58:55 * sshd[6728]: Did not receive identification string from 91.80.166.133 port 60402 Jul 3 14:59:00 * sshd[6761]: Did not receive identification string from 91.80.166.133 port 38766 Jul 3 14:59:05 * sshd[6924]: Connection closed by 91.80.166.133 port 60431 [preauth] Jul 3 14:59:05 * sshd[6915]: Connection closed by 91.80.166.133 port 38784 [preauth] Jul 3 15:10:08 * sshd[18195]: Invalid user admin from 91.80.166.133 port 35682 Jul 3 15:10:08 * sshd[18194]: Invalid user admin from 91.80.166.133 port 60532 Jul 3 15:10:10 * sshd[18195]: Failed password for invalid user admin from 91.80.166.133 port 35682 ssh2 Jul 3 15:10:10 * sshd[18194]: Failed password for invalid user admin from 91.80.166.133 port 60532 ssh2 Jul 3 15:10:11 * sshd[18195]: Received disconnect from 91.80.166.133 port 35682:11: Bye Bye [preauth] Jul 3 15:10:11 *** sshd[........ -------------------------------	2019-07-04 01:05:20
91.134.231.96	attack	C1,DEF GET /wp-login.php	2019-07-04 01:09:17
93.141.135.123	attackspam	2019-07-03 14:47:52 H=93-141-135-123.adsl.net.t-com.hr [93.141.135.123]:16810 I=[10.100.18.20]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=93.141.135.123) 2019-07-03 14:47:53 unexpected disconnection while reading SMTP command from 93-141-135-123.adsl.net.t-com.hr [93.141.135.123]:16810 I=[10.100.18.20]:25 (error: Connection reset by peer) 2019-07-03 15:11:22 H=93-141-135-123.adsl.net.t-com.hr [93.141.135.123]:41470 I=[10.100.18.20]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=93.141.135.123) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=93.141.135.123	2019-07-04 01:10:34
185.20.179.62	attackbots	proto=tcp . spt=47328 . dpt=25 . (listed on Blocklist de Jul 02) (724)	2019-07-04 01:00:00
192.241.180.95	attack	proto=tcp . spt=41435 . dpt=25 . (listed on Blocklist de Jul 02) (727)	2019-07-04 00:55:51
81.170.250.118	attackbots	proto=tcp . spt=48570 . dpt=25 . (listed on Blocklist de Jul 02) (733)	2019-07-04 00:46:09
185.36.81.173	attackspambots	Rude login attack (14 tries in 1d)	2019-07-04 00:24:12
90.188.16.246	attackbotsspam	proto=tcp . spt=46274 . dpt=25 . (listed on Blocklist de Jul 02) (736)	2019-07-04 00:39:37
62.173.149.176	attack	Jul 3 12:47:15 debian sshd\[26455\]: Invalid user roberto from 62.173.149.176 port 35760 Jul 3 12:47:15 debian sshd\[26455\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.173.149.176 Jul 3 12:47:17 debian sshd\[26455\]: Failed password for invalid user roberto from 62.173.149.176 port 35760 ssh2 ...	2019-07-04 00:56:59
182.61.164.210	attackbotsspam	Jul 3 11:15:38 plusreed sshd[8778]: Invalid user postgres01 from 182.61.164.210 ...	2019-07-04 01:09:56
159.203.200.42	attackbotsspam	proto=tcp . spt=57226 . dpt=25 . (listed on Blocklist de Jul 02) (729)	2019-07-04 00:51:48

最近上报的IP列表

104.168.14.56	104.168.14.48	104.168.14.39	104.168.14.85
104.168.14.72	104.168.14.91	104.168.14.64	104.168.14.80
101.109.191.178	104.168.14.98	104.168.141.178	104.168.143.247
104.168.141.251	104.168.144.174	104.168.143.117	104.168.141.85
104.168.145.71	104.168.140.80	101.109.191.18	104.168.144.183

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表