104.236.13.180

基本信息:

城市(city): Clifton

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.236.134.112	attackspambots	16876/tcp 8622/tcp 5677/tcp... [2020-07-14/09-14]185pkt,72pt.(tcp)	2020-09-14 22:38:14
104.236.134.112	attackspam	Port scan denied	2020-09-14 14:30:30
104.236.134.112	attackbotsspam	2020-09-13T18:52:57.740639correo.[domain] sshd[44193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mon.do.safelinkinternet.com user=root 2020-09-13T18:52:59.815200correo.[domain] sshd[44193]: Failed password for root from 104.236.134.112 port 60284 ssh2 2020-09-13T18:59:00.283664correo.[domain] sshd[44792]: Invalid user admin from 104.236.134.112 port 38430 ...	2020-09-14 06:27:12
104.236.134.112	attackspambots	TCP ports : 2807 / 6031 / 15177 / 26630	2020-09-04 22:07:50
104.236.134.112	attack	Time: Fri Sep 4 04:33:56 2020 +0000 IP: 104.236.134.112 (US/United States/mon.do.safelinkinternet.com) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 4 04:12:48 hosting sshd[1960]: Invalid user ftp-user from 104.236.134.112 port 40197 Sep 4 04:12:50 hosting sshd[1960]: Failed password for invalid user ftp-user from 104.236.134.112 port 40197 ssh2 Sep 4 04:28:09 hosting sshd[3022]: Invalid user sofia from 104.236.134.112 port 47001 Sep 4 04:28:11 hosting sshd[3022]: Failed password for invalid user sofia from 104.236.134.112 port 47001 ssh2 Sep 4 04:33:52 hosting sshd[3433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.134.112 user=root	2020-09-04 13:45:56
104.236.134.112	attackspam	" "	2020-09-04 06:12:45
104.236.134.112	attackspam	Aug 31 20:04:49 OPSO sshd\[18613\]: Invalid user rajesh from 104.236.134.112 port 41313 Aug 31 20:04:49 OPSO sshd\[18613\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.134.112 Aug 31 20:04:51 OPSO sshd\[18613\]: Failed password for invalid user rajesh from 104.236.134.112 port 41313 ssh2 Aug 31 20:09:45 OPSO sshd\[19294\]: Invalid user uftp from 104.236.134.112 port 40457 Aug 31 20:09:45 OPSO sshd\[19294\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.134.112	2020-09-01 02:24:42
104.236.134.112	attackbotsspam	TCP port : 1329	2020-08-26 18:19:25
104.236.134.112	attack	Port scan denied	2020-08-07 14:00:03
104.236.134.112	attackbots	firewall-block, port(s): 27002/tcp	2020-08-06 21:45:31
104.236.134.112	attackspam	Port scan denied	2020-07-30 13:59:16
104.236.134.112	attackbots	TCP port : 15184	2020-07-29 18:54:48
104.236.134.112	attackspam	TCP (SYN) 104.236.134.112:45165 -> port 2835, len 44	2020-07-18 14:05:23
104.236.136.172	attackspambots	Jul 13 20:28:02 debian-2gb-nbg1-2 kernel: \[16923455.791984\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.236.136.172 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=235 ID=31587 PROTO=TCP SPT=51977 DPT=23202 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-14 02:33:53
104.236.134.112	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2020-07-09 13:12:24

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.236.13.180
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5039
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.236.13.180.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 09:34:29 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

180.13.236.104.in-addr.arpa domain name pointer web1.uithosting.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
180.13.236.104.in-addr.arpa	name = web1.uithosting.com.

Authoritative answers can be found from:

IP	类型	评论内容	时间
185.156.73.3	attackbotsspam	20119/tcp 20120/tcp 20121/tcp... [2019-10-17/25]756pkt,213pt.(tcp)	2019-10-26 07:47:04
51.91.212.81	attackbotsspam	10/26/2019-01:25:00.823513 51.91.212.81 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 53	2019-10-26 07:36:12
89.248.174.214	attackbotsspam	10/25/2019-18:18:39.551982 89.248.174.214 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 98	2019-10-26 07:30:23
164.132.200.54	attack	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2019-10-26 07:49:00
185.156.73.7	attack	15031/tcp 15032/tcp 15033/tcp... [2019-10-17/25]762pkt,213pt.(tcp)	2019-10-26 07:20:36
185.156.73.42	attackspam	Automatic report - Port Scan	2019-10-26 07:44:04
81.22.45.29	attackbotsspam	10/25/2019-18:44:50.295094 81.22.45.29 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-26 07:32:42
198.108.67.95	attackspam	4100/tcp 9093/tcp 8180/tcp... [2019-08-25/10-25]113pkt,109pt.(tcp)	2019-10-26 07:15:55
195.154.32.212	attackbotsspam	ET SCAN Sipvicious User-Agent Detected (friendly-scanner) - port: 5060 proto: UDP cat: Attempted Information Leak	2019-10-26 07:16:44
112.175.120.177	attackspambots	ET SCAN Potential SSH Scan - port: 22 proto: TCP cat: Attempted Information Leak	2019-10-26 07:25:41
31.184.215.236	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 16 - port: 43380 proto: TCP cat: Misc Attack	2019-10-26 07:13:07
185.175.93.25	attackbotsspam	ET DROP Dshield Block Listed Source group 1 - port: 3392 proto: TCP cat: Misc Attack	2019-10-26 07:19:16
112.175.120.114	attackspam	ET SCAN Potential SSH Scan - port: 22 proto: TCP cat: Attempted Information Leak	2019-10-26 07:26:09
194.105.205.42	attack	Invalid user ethos from 194.105.205.42 port 55564	2019-10-26 07:40:04
183.87.157.202	attack	2019-10-25T23:40:16.409465abusebot-4.cloudsearch.cf sshd\[8899\]: Invalid user ad from 183.87.157.202 port 39584	2019-10-26 07:47:17

最近上报的IP列表

104.227.106.173	104.227.59.217	104.243.155.88	104.237.147.87
104.237.225.242	104.248.31.121	104.248.139.52	104.244.225.193
104.247.208.125	104.244.75.172	104.248.8.234	104.248.9.210
104.251.243.254	104.249.62.103	104.248.156.29	104.252.179.162
104.255.72.29	104.37.76.19	104.32.132.24	104.252.179.180