104.168.196.14

基本信息:

城市(city): Seattle

省份(region): Washington

国家(country): United States

运营商(isp): Hostwinds LLC.

主机名(hostname): unknown

机构(organization): Hostwinds LLC.

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.168.196.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3245
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.168.196.14.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080601 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Aug 07 04:09:39 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

14.196.168.104.in-addr.arpa domain name pointer client-104-168-196-14.hostwindsdns.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
14.196.168.104.in-addr.arpa	name = client-104-168-196-14.hostwindsdns.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
81.68.128.180	attackspambots	$f2bV_matches	2020-10-13 18:40:42
212.83.162.123	attack	[portscan] tcp/22 [SSH] [scan/connect: 6 time(s)] in blocklist.de:'listed [ssh]' *(RWIN=64240)(10130956)	2020-10-13 18:25:09
106.54.47.171	attackbots	Oct 13 11:19:34 ourumov-web sshd\[30410\]: Invalid user yvette from 106.54.47.171 port 53976 Oct 13 11:19:34 ourumov-web sshd\[30410\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.47.171 Oct 13 11:19:37 ourumov-web sshd\[30410\]: Failed password for invalid user yvette from 106.54.47.171 port 53976 ssh2 ...	2020-10-13 18:24:16
43.229.55.61	attackspambots	Oct 13 08:17:55 vps-51d81928 sshd[811596]: Invalid user vill from 43.229.55.61 port 42568 Oct 13 08:17:55 vps-51d81928 sshd[811596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.229.55.61 Oct 13 08:17:55 vps-51d81928 sshd[811596]: Invalid user vill from 43.229.55.61 port 42568 Oct 13 08:17:57 vps-51d81928 sshd[811596]: Failed password for invalid user vill from 43.229.55.61 port 42568 ssh2 Oct 13 08:21:42 vps-51d81928 sshd[811720]: Invalid user massimo from 43.229.55.61 port 46448 ...	2020-10-13 18:19:36
111.62.40.36	attack	Oct 13 09:28:41 ws26vmsma01 sshd[157215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.62.40.36 Oct 13 09:28:43 ws26vmsma01 sshd[157215]: Failed password for invalid user gill from 111.62.40.36 port 37980 ssh2 ...	2020-10-13 17:57:47
139.199.80.75	attack	k+ssh-bruteforce	2020-10-13 18:11:39
152.136.130.29	attackbots	fail2ban/Oct 13 11:39:28 h1962932 sshd[4097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.130.29 user=root Oct 13 11:39:30 h1962932 sshd[4097]: Failed password for root from 152.136.130.29 port 51946 ssh2 Oct 13 11:48:10 h1962932 sshd[4849]: Invalid user ma from 152.136.130.29 port 60588 Oct 13 11:48:10 h1962932 sshd[4849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.130.29 Oct 13 11:48:10 h1962932 sshd[4849]: Invalid user ma from 152.136.130.29 port 60588 Oct 13 11:48:12 h1962932 sshd[4849]: Failed password for invalid user ma from 152.136.130.29 port 60588 ssh2	2020-10-13 18:38:34
85.48.56.42	attackspambots	Oct 13 10:35:36 WHD8 dovecot: pop3-login: Disconnected: Inactivity $auth failed, 1 attempts in 180 secs$: user=\, method=PLAIN, rip=85.48.56.42, lip=10.64.89.208, session=\ Oct 13 10:35:38 WHD8 dovecot: pop3-login: Disconnected: Inactivity $auth failed, 1 attempts in 180 secs$: user=\, method=PLAIN, rip=85.48.56.42, lip=10.64.89.208, session=\ Oct 13 10:47:17 WHD8 dovecot: pop3-login: Disconnected: Inactivity $auth failed, 1 attempts in 179 secs$: user=\, method=PLAIN, rip=85.48.56.42, lip=10.64.89.208, session=\ Oct 13 10:47:20 WHD8 dovecot: pop3-login: Disconnected: Inactivity $auth failed, 1 attempts in 180 secs$: user=\, method=PLAIN, rip=85.48.56.42, lip=10.64.89.208, session=\ Oct 13 10:57:06 WHD8 dovecot: pop3-login: Disconnected $auth failed, 1 attempts in 145 secs$: user=\	2020-10-13 18:15:49
193.202.14.34	attackbots	C1,Magento Bruteforce Login Attack POST /index.php/admin/	2020-10-13 18:02:06
190.187.112.66	attack	Oct 13 08:29:56 eventyay sshd[23003]: Failed password for root from 190.187.112.66 port 58770 ssh2 Oct 13 08:34:00 eventyay sshd[23150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.187.112.66 Oct 13 08:34:02 eventyay sshd[23150]: Failed password for invalid user admin from 190.187.112.66 port 58842 ssh2 ...	2020-10-13 18:04:55
185.28.181.164	attackspambots	20 attempts against mh_ha-misbehave-ban on lb	2020-10-13 18:09:29
51.91.99.233	attackspambots	51.91.99.233 - - [13/Oct/2020:12:23:32 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.91.99.233 - - [13/Oct/2020:12:23:33 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.91.99.233 - - [13/Oct/2020:12:23:33 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-13 18:37:55
61.177.172.168	attackspambots	Oct 13 12:20:47 server sshd[8721]: Failed none for root from 61.177.172.168 port 8790 ssh2 Oct 13 12:20:49 server sshd[8721]: Failed password for root from 61.177.172.168 port 8790 ssh2 Oct 13 12:20:55 server sshd[8721]: Failed password for root from 61.177.172.168 port 8790 ssh2	2020-10-13 18:21:10
159.89.133.144	attack	TCP port : 8400	2020-10-13 18:42:55
198.245.50.154	attackspambots	17 attacks on Wordpress URLs like: 198.245.50.154 - - [13/Oct/2020:01:12:10 +0100] "GET //sito/wp-includes/wlwmanifest.xml HTTP/1.1" 404 1895 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"	2020-10-13 18:30:35

最近上报的IP列表

45.168.30.173	42.127.84.38	92.71.7.38	182.119.120.195
104.220.150.208	161.251.103.156	105.108.199.196	219.119.99.146
219.130.234.85	94.255.147.12	62.41.45.42	23.25.251.95
195.191.139.148	211.75.74.78	151.46.242.152	117.85.158.229
200.166.128.6	89.96.39.190	132.17.254.231	219.183.194.99