164.132.104.114

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): France

运营商(isp): OVH SAS

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	164.132.104.114 - - [14/Jul/2020:07:47:22 +0100] "POST /wp-login.php HTTP/1.1" 200 2225 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.132.104.114 - - [14/Jul/2020:07:47:23 +0100] "POST /wp-login.php HTTP/1.1" 200 2154 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.132.104.114 - - [14/Jul/2020:07:47:23 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-14 16:10:59

类型

评论内容

时间

attackbotsspam

164.132.104.114 - - [14/Jul/2020:07:47:22 +0100] "POST /wp-login.php HTTP/1.1" 200 2225 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
164.132.104.114 - - [14/Jul/2020:07:47:23 +0100] "POST /wp-login.php HTTP/1.1" 200 2154 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
164.132.104.114 - - [14/Jul/2020:07:47:23 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...

2020-07-14 16:10:59

相同子网IP讨论:

IP	类型	评论内容	时间
164.132.104.58	attackbotsspam	Nov 25 06:21:14 microserver sshd[22716]: Invalid user test from 164.132.104.58 port 48806 Nov 25 06:21:14 microserver sshd[22716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.104.58 Nov 25 06:21:16 microserver sshd[22716]: Failed password for invalid user test from 164.132.104.58 port 48806 ssh2 Nov 25 06:27:14 microserver sshd[23406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.104.58 user=root Nov 25 06:27:16 microserver sshd[23406]: Failed password for root from 164.132.104.58 port 56236 ssh2 Nov 25 06:39:05 microserver sshd[24822]: Invalid user sysadmin from 164.132.104.58 port 42866 Nov 25 06:39:05 microserver sshd[24822]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.104.58 Nov 25 06:39:07 microserver sshd[24822]: Failed password for invalid user sysadmin from 164.132.104.58 port 42866 ssh2 Nov 25 06:45:04 microserver sshd[25667]: Invalid user lotze f	2019-12-02 15:08:12
164.132.104.58	attack	fail2ban	2019-12-01 07:34:36
164.132.104.58	attackbots	Nov 29 21:51:48 auw2 sshd\[18055\]: Invalid user hegarty from 164.132.104.58 Nov 29 21:51:48 auw2 sshd\[18055\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.ip-164-132-104.eu Nov 29 21:51:51 auw2 sshd\[18055\]: Failed password for invalid user hegarty from 164.132.104.58 port 36878 ssh2 Nov 29 21:54:44 auw2 sshd\[18235\]: Invalid user wz123wz123 from 164.132.104.58 Nov 29 21:54:44 auw2 sshd\[18235\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.ip-164-132-104.eu	2019-11-30 17:21:28
164.132.104.58	attackspambots	2019-11-29T08:17:25.962459shield sshd\[7358\]: Invalid user hyunkie from 164.132.104.58 port 33276 2019-11-29T08:17:25.967276shield sshd\[7358\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.ip-164-132-104.eu 2019-11-29T08:17:28.383483shield sshd\[7358\]: Failed password for invalid user hyunkie from 164.132.104.58 port 33276 ssh2 2019-11-29T08:21:23.110567shield sshd\[8230\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.ip-164-132-104.eu user=root 2019-11-29T08:21:24.864730shield sshd\[8230\]: Failed password for root from 164.132.104.58 port 42190 ssh2	2019-11-29 22:17:14
164.132.104.58	attackbots	Nov 25 11:56:08 serwer sshd\[2350\]: Invalid user hung from 164.132.104.58 port 52646 Nov 25 11:56:08 serwer sshd\[2350\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.104.58 Nov 25 11:56:09 serwer sshd\[2350\]: Failed password for invalid user hung from 164.132.104.58 port 52646 ssh2 ...	2019-11-25 22:07:56
164.132.104.58	attackspambots	Nov 19 11:30:57 areeb-Workstation sshd[303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.104.58 Nov 19 11:31:00 areeb-Workstation sshd[303]: Failed password for invalid user warden from 164.132.104.58 port 59816 ssh2 ...	2019-11-19 14:09:46
164.132.104.58	attackbotsspam	Nov 12 01:27:29 hpm sshd\[32348\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.ip-164-132-104.eu user=root Nov 12 01:27:31 hpm sshd\[32348\]: Failed password for root from 164.132.104.58 port 48706 ssh2 Nov 12 01:31:38 hpm sshd\[32702\]: Invalid user lisa from 164.132.104.58 Nov 12 01:31:38 hpm sshd\[32702\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.ip-164-132-104.eu Nov 12 01:31:40 hpm sshd\[32702\]: Failed password for invalid user lisa from 164.132.104.58 port 56138 ssh2	2019-11-12 20:19:42
164.132.104.58	attackspambots	Nov 10 10:07:19 server sshd\[3229\]: Invalid user glenn from 164.132.104.58 Nov 10 10:07:19 server sshd\[3229\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.ip-164-132-104.eu Nov 10 10:07:21 server sshd\[3229\]: Failed password for invalid user glenn from 164.132.104.58 port 33488 ssh2 Nov 10 10:30:10 server sshd\[9602\]: Invalid user login from 164.132.104.58 Nov 10 10:30:10 server sshd\[9602\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.ip-164-132-104.eu ...	2019-11-10 16:30:49
164.132.104.58	attackspam	Nov 9 18:56:21 server sshd\[24409\]: Invalid user 123 from 164.132.104.58 port 47228 Nov 9 18:56:21 server sshd\[24409\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.104.58 Nov 9 18:56:23 server sshd\[24409\]: Failed password for invalid user 123 from 164.132.104.58 port 47228 ssh2 Nov 9 19:00:01 server sshd\[19675\]: Invalid user 123Paris from 164.132.104.58 port 56074 Nov 9 19:00:01 server sshd\[19675\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.104.58	2019-11-10 04:33:26
164.132.104.58	attackbotsspam	$f2bV_matches	2019-11-06 23:10:47
164.132.104.58	attack	Nov 4 09:51:42 vps01 sshd[19984]: Failed password for root from 164.132.104.58 port 59930 ssh2 Nov 4 09:59:48 vps01 sshd[20081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.104.58	2019-11-04 17:15:32
164.132.104.58	attack	Automatic report - Banned IP Access	2019-11-04 03:41:24
164.132.104.58	attack	Oct 31 20:22:00 plusreed sshd[6269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.104.58 user=root Oct 31 20:22:02 plusreed sshd[6269]: Failed password for root from 164.132.104.58 port 60704 ssh2 ...	2019-11-01 08:23:13
164.132.104.58	attackbotsspam	"Fail2Ban detected SSH brute force attempt"	2019-11-01 01:34:58
164.132.104.58	attack	Oct 27 15:25:46 SilenceServices sshd[22076]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.104.58 Oct 27 15:25:49 SilenceServices sshd[22076]: Failed password for invalid user cfs1035 from 164.132.104.58 port 53480 ssh2 Oct 27 15:29:52 SilenceServices sshd[24669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.104.58	2019-10-27 22:39:20

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.132.104.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14986
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;164.132.104.114.		IN	A

;; AUTHORITY SECTION:
.			565	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071400 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jul 14 16:10:55 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

114.104.132.164.in-addr.arpa domain name pointer 114.ip-164-132-104.eu.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
114.104.132.164.in-addr.arpa	name = 114.ip-164-132-104.eu.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
43.248.14.42	attackspam	Fail2Ban - HTTP Auth Bruteforce Attempt	2020-04-06 22:19:02
46.165.230.5	attackbots	xmlrpc attack	2020-04-06 21:55:56
93.99.104.117	attackbots	20 attempts against mh-misbehave-ban on cell	2020-04-06 21:42:44
113.161.230.244	attackspam	Unauthorized connection attempt from IP address 113.161.230.244 on Port 445(SMB)	2020-04-06 21:54:57
79.137.33.20	attack	Apr 6 12:37:36 localhost sshd[16639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.ip-79-137-33.eu user=root Apr 6 12:37:38 localhost sshd[16639]: Failed password for root from 79.137.33.20 port 53445 ssh2 Apr 6 12:41:24 localhost sshd[17018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.ip-79-137-33.eu user=root Apr 6 12:41:26 localhost sshd[17018]: Failed password for root from 79.137.33.20 port 58405 ssh2 Apr 6 12:45:10 localhost sshd[17362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.ip-79-137-33.eu user=root Apr 6 12:45:12 localhost sshd[17362]: Failed password for root from 79.137.33.20 port 35134 ssh2 ...	2020-04-06 22:06:19
193.169.252.228	attackspambots	Unauthorized connection attempt detected from IP address 193.169.252.228 to port 22	2020-04-06 22:25:41
207.46.13.118	attackspam	Automatic report - Banned IP Access	2020-04-06 22:29:44
72.192.84.230	attackspambots	Apr 6 14:58:44 mout sshd[17475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=72.192.84.230 user=pi Apr 6 14:58:46 mout sshd[17475]: Failed password for pi from 72.192.84.230 port 17834 ssh2 Apr 6 14:58:46 mout sshd[17475]: Connection closed by 72.192.84.230 port 17834 [preauth]	2020-04-06 21:49:51
36.67.75.225	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 06-04-2020 13:45:12.	2020-04-06 22:10:44
112.47.164.5	attack	Lines containing failures of 112.47.164.5 Apr 6 15:32:24 ks3370873 postfix/smtpd[11607]: connect from unknown[112.47.164.5] Apr x@x Apr 6 15:32:26 ks3370873 postfix/smtpd[11607]: disconnect from unknown[112.47.164.5] ehlo=1 mail=1 rcpt=0/1 eclipset=1 quhostname=1 commands=4/5 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=112.47.164.5	2020-04-06 22:22:40
125.127.53.203	attack	GPON Home Routers Remote Code Execution Vulnerability	2020-04-06 21:41:45
157.230.227.105	attack	157.230.227.105 - - [06/Apr/2020:15:19:00 +0200] "POST /wp-login.php HTTP/1.0" 200 2504 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.230.227.105 - - [06/Apr/2020:15:19:03 +0200] "POST /wp-login.php HTTP/1.0" 200 2485 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-04-06 21:44:27
41.32.231.161	attack	Unauthorized connection attempt from IP address 41.32.231.161 on Port 445(SMB)	2020-04-06 22:19:23
14.215.51.241	attack	Lines containing failures of 14.215.51.241 (max 1000) Apr 6 00:16:29 localhost sshd[26168]: User r.r from 14.215.51.241 not allowed because listed in DenyUsers Apr 6 00:16:29 localhost sshd[26168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.215.51.241 user=r.r Apr 6 00:16:31 localhost sshd[26168]: Failed password for invalid user r.r from 14.215.51.241 port 37654 ssh2 Apr 6 00:16:33 localhost sshd[26168]: Received disconnect from 14.215.51.241 port 37654:11: Bye Bye [preauth] Apr 6 00:16:33 localhost sshd[26168]: Disconnected from invalid user r.r 14.215.51.241 port 37654 [preauth] Apr 6 00:29:48 localhost sshd[29864]: User r.r from 14.215.51.241 not allowed because listed in DenyUsers Apr 6 00:29:48 localhost sshd[29864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.215.51.241 user=r.r Apr 6 00:29:51 localhost sshd[29864]: Failed password for invalid user r.r from 14......... ------------------------------	2020-04-06 22:07:02
103.21.53.11	attack	Apr 6 14:27:16 lock-38 sshd[642064]: Failed password for root from 103.21.53.11 port 52956 ssh2 Apr 6 14:34:49 lock-38 sshd[642288]: Failed password for root from 103.21.53.11 port 53754 ssh2 Apr 6 14:38:21 lock-38 sshd[642411]: Failed password for root from 103.21.53.11 port 40234 ssh2 Apr 6 14:41:55 lock-38 sshd[642569]: Failed password for root from 103.21.53.11 port 55088 ssh2 Apr 6 14:45:14 lock-38 sshd[642678]: Failed password for root from 103.21.53.11 port 41652 ssh2 ...	2020-04-06 22:01:30

最近上报的IP列表

65.116.135.253	95.80.214.73	208.184.71.72	105.42.149.4
81.166.216.48	114.103.84.218	5.137.193.56	14.167.193.31
59.187.234.103	29.214.75.153	178.172.56.213	153.3.161.21
189.173.118.200	118.170.168.67	139.162.70.76	116.234.8.254
61.3.215.177	13.127.199.211	110.49.109.152	3.7.202.194