104.206.128.14

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): GDNP LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-09-29 00:27:38
attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-09-28 16:29:52
attackspam	TCP (SYN) 104.206.128.14:63567 -> port 1433, len 44	2020-09-25 02:27:38
attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-09-24 18:08:39
attack	Icarus honeypot on github	2020-09-11 01:17:23
attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-09-10 16:37:11
attackbots	TCP (SYN) 104.206.128.14:52176 -> port 3306, len 44	2020-09-10 07:13:29
attackspam	trying to access non-authorized port	2020-09-05 01:45:48
attackspambots	TCP (SYN) 104.206.128.14:60394 -> port 3389, len 44	2020-09-04 17:06:36
attackspambots	TCP port : 5786	2020-06-30 13:19:57
attackbots	TCP (SYN) 104.206.128.14:54613 -> port 3389, len 44	2020-06-13 05:00:35
attackspambots	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2020-06-06 08:29:06
attack	Port Scan: Events[1] countPorts[1]: 5060 ..	2020-04-18 04:02:10
attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-19 23:37:21
attack	Unauthorized connection attempt detected from IP address 104.206.128.14 to port 5432 [J]	2020-01-30 01:20:08

相同子网IP讨论:

IP	类型	评论内容	时间
104.206.128.6	attackspambots	Automatic report - Banned IP Access	2020-10-09 02:32:26
104.206.128.6	attackbots	bruteforce, ssh, scan port	2020-10-08 18:31:18
104.206.128.34	attackbots	TCP (SYN) 104.206.128.34:62942 -> port 3389, len 44	2020-10-06 04:52:48
104.206.128.74	attackspambots	UDP 104.206.128.74:57326 -> port 161, len 71	2020-10-06 04:12:44
104.206.128.2	attackspambots	TCP (SYN) 104.206.128.2:60162 -> port 1433, len 44	2020-10-06 04:10:28
104.206.128.42	attackbots	TCP (SYN) 104.206.128.42:50739 -> port 23, len 44	2020-10-06 02:55:43
104.206.128.66	attackbotsspam	TCP (SYN) 104.206.128.66:63773 -> port 3306, len 44	2020-10-06 00:59:51
104.206.128.34	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-05 20:55:21
104.206.128.74	attackspambots	TCP (SYN) 104.206.128.74:55896 -> port 3389, len 44	2020-10-05 20:11:31
104.206.128.2	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-05 20:09:04
104.206.128.42	attackbots	Icarus honeypot on github	2020-10-05 18:46:02
104.206.128.34	attackbotsspam	Found on Alienvault / proto=6 . srcport=64630 . dstport=5900 . (3726)	2020-10-05 12:44:44
104.206.128.74	attackbots	TCP (SYN) 104.206.128.74:55896 -> port 3389, len 44	2020-10-05 12:03:44
104.206.128.2	attackspambots	Found on Binary Defense / proto=6 . srcport=52605 . dstport=21 FTP . (3566)	2020-10-05 12:01:30
104.206.128.6	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-10-03 04:43:15

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.206.128.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44232
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.206.128.14.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012901 1800 900 604800 86400

;; Query time: 214 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 01:20:02 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

14.128.206.104.in-addr.arpa domain name pointer 14-128.206.104.serverhubrdns.in-addr.arpa.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
14.128.206.104.in-addr.arpa	name = 14-128.206.104.serverhubrdns.in-addr.arpa.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
101.71.129.8	attack	SSH invalid-user multiple login try	2020-05-12 02:41:15
88.238.127.194	attackbots	Unauthorized connection attempt detected from IP address 88.238.127.194 to port 23	2020-05-12 02:24:47
198.211.126.154	attack	(sshd) Failed SSH login from 198.211.126.154 (NL/Netherlands/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 11 13:35:36 andromeda sshd[28738]: Invalid user sci from 198.211.126.154 port 56130 May 11 13:35:38 andromeda sshd[28738]: Failed password for invalid user sci from 198.211.126.154 port 56130 ssh2 May 11 13:40:50 andromeda sshd[29052]: Invalid user roberts from 198.211.126.154 port 58004	2020-05-12 02:34:37
175.16.165.161	attackspambots	Unauthorised access (May 11) SRC=175.16.165.161 LEN=40 TTL=46 ID=20822 TCP DPT=8080 WINDOW=14847 SYN Unauthorised access (May 11) SRC=175.16.165.161 LEN=40 TTL=46 ID=28602 TCP DPT=8080 WINDOW=37711 SYN	2020-05-12 02:28:44
168.228.64.146	attackbotsspam	[Mon May 11 07:22:09 2020] - Syn Flood From IP: 168.228.64.146 Port: 60025	2020-05-12 02:33:52
170.106.50.166	attackbots	May 11 14:03:21 vpn01 sshd[5867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.106.50.166 May 11 14:03:23 vpn01 sshd[5867]: Failed password for invalid user admin1 from 170.106.50.166 port 47776 ssh2 ...	2020-05-12 02:33:21
5.11.221.127	attackspambots	Automatic report - Port Scan Attack	2020-05-12 02:14:33
200.206.81.154	attackspambots	...	2020-05-12 02:42:33
167.172.175.9	attackspam	May 11 16:37:45 ns3033917 sshd[22200]: Invalid user ykim from 167.172.175.9 port 39438 May 11 16:37:47 ns3033917 sshd[22200]: Failed password for invalid user ykim from 167.172.175.9 port 39438 ssh2 May 11 16:43:50 ns3033917 sshd[22307]: Invalid user admin from 167.172.175.9 port 46322 ...	2020-05-12 02:31:35
194.149.33.10	attackspambots	2020-05-11T12:45:44.604615shield sshd\[558\]: Invalid user felix from 194.149.33.10 port 43010 2020-05-11T12:45:44.608242shield sshd\[558\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.149.33.10 2020-05-11T12:45:46.418879shield sshd\[558\]: Failed password for invalid user felix from 194.149.33.10 port 43010 ssh2 2020-05-11T12:49:46.054832shield sshd\[1626\]: Invalid user deploy from 194.149.33.10 port 51416 2020-05-11T12:49:46.058359shield sshd\[1626\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.149.33.10	2020-05-12 02:10:31
211.24.246.50	attack	Dovecot Invalid User Login Attempt.	2020-05-12 02:31:16
124.156.111.197	attackbotsspam	May 11 19:44:22 MainVPS sshd[5633]: Invalid user vp from 124.156.111.197 port 18431 May 11 19:44:22 MainVPS sshd[5633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.111.197 May 11 19:44:22 MainVPS sshd[5633]: Invalid user vp from 124.156.111.197 port 18431 May 11 19:44:23 MainVPS sshd[5633]: Failed password for invalid user vp from 124.156.111.197 port 18431 ssh2 May 11 19:52:05 MainVPS sshd[11940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.111.197 user=root May 11 19:52:07 MainVPS sshd[11940]: Failed password for root from 124.156.111.197 port 54956 ssh2 ...	2020-05-12 02:13:24
111.229.34.241	attackspam	May 11 09:08:09 lanister sshd[6115]: Invalid user guest from 111.229.34.241 May 11 09:08:09 lanister sshd[6115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.34.241 May 11 09:08:09 lanister sshd[6115]: Invalid user guest from 111.229.34.241 May 11 09:08:12 lanister sshd[6115]: Failed password for invalid user guest from 111.229.34.241 port 52504 ssh2	2020-05-12 02:34:26
5.135.120.247	attack	Port probing on unauthorized port 445	2020-05-12 02:26:52
27.22.111.17	attackbots	SASL broute force	2020-05-12 02:22:08

最近上报的IP列表

2.30.116.31	68.217.137.138	197.3.86.56	2.30.113.232
189.205.177.99	177.159.188.27	2.29.44.147	110.77.201.230
2.29.31.127	95.37.237.127	2.25.144.144	187.178.144.67
163.47.137.156	3.104.228.90	2.247.248.144	2.25.106.153
181.30.28.46	121.233.166.145	2.24.17.34	124.120.205.248