104.168.14.122

Basic Info

City: San Jose

Region: California

Country: United States

Internet Service Provider: Virtual Machine Solutions LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	TCP (SYN) 104.168.14.122:41260 -> port 22, len 44	2020-08-31 08:30:32

Comments on same subnet:

IP	Type	Details	Datetime
104.168.14.36	attackspambots	Found on Blocklist de / proto=6 . srcport=42398 . dstport=22 SSH . (991)	2020-10-07 02:37:31
104.168.14.36	attackbots	Found on Blocklist de / proto=6 . srcport=42398 . dstport=22 SSH . (991)	2020-10-06 18:34:54
104.168.141.181	attack	Email spam message	2020-06-24 21:18:29
104.168.142.194	attackbotsspam	port 23	2020-06-20 04:42:22
104.168.141.201	attackbots	TCP Port: 25 invalid blocked abuseat-org also barracuda and zen-spamhaus (282)	2020-06-02 08:12:47
104.168.145.99	attackspam	$f2bV_matches	2020-05-26 05:07:13
104.168.142.227	attackbots	lfd: (smtpauth) Failed SMTP AUTH login from 104.168.142.227 (hwsrv-273223.hostwindsdns.com): 5 in the last 3600 secs - Fri Jun 22 19:11:59 2018	2020-04-30 13:06:04
104.168.148.42	attackspambots	Lines containing failures of 104.168.148.42 Apr 19 08:13:27 UTC__SANYALnet-Labs__cac12 sshd[19340]: Connection from 104.168.148.42 port 48714 on 45.62.253.138 port 22 Apr 19 08:13:28 UTC__SANYALnet-Labs__cac12 sshd[19340]: Invalid user ch from 104.168.148.42 port 48714 Apr 19 08:13:30 UTC__SANYALnet-Labs__cac12 sshd[19340]: Failed password for invalid user ch from 104.168.148.42 port 48714 ssh2 Apr 19 08:13:30 UTC__SANYALnet-Labs__cac12 sshd[19340]: Received disconnect from 104.168.148.42 port 48714:11: Bye Bye [preauth] Apr 19 08:13:30 UTC__SANYALnet-Labs__cac12 sshd[19340]: Disconnected from 104.168.148.42 port 48714 [preauth] Apr 19 08:24:40 UTC__SANYALnet-Labs__cac12 sshd[19617]: Connection from 104.168.148.42 port 49250 on 45.62.253.138 port 22 Apr 19 08:24:44 UTC__SANYALnet-Labs__cac12 sshd[19617]: Failed password for invalid user r.r from 104.168.148.42 port 49250 ssh2 Apr 19 08:24:44 UTC__SANYALnet-Labs__cac12 sshd[19617]: Received disconnect from 104.168.148.42 ........ ------------------------------	2020-04-19 20:48:20
104.168.148.189	attackbots	Fail2Ban Ban Triggered	2020-03-05 15:39:20
104.168.142.227	attackbotsspam	lfd: (smtpauth) Failed SMTP AUTH login from 104.168.142.227 (hwsrv-273223.hostwindsdns.com): 5 in the last 3600 secs - Fri Jun 22 19:11:59 2018	2020-02-23 23:48:05
104.168.144.77	attackbotsspam	lfd: (smtpauth) Failed SMTP AUTH login from 104.168.144.77 (US/United States/hwsrv-238723.hostwindsdns.com): 5 in the last 3600 secs - Thu May 3 12:14:48 2018	2020-02-07 06:46:19
104.168.142.229	attack	2020-01-19T23:42:11.3404711495-001 sshd[29566]: Invalid user lena from 104.168.142.229 port 55354 2020-01-19T23:42:11.3496611495-001 sshd[29566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=hwsrv-656802.hostwindsdns.com 2020-01-19T23:42:11.3404711495-001 sshd[29566]: Invalid user lena from 104.168.142.229 port 55354 2020-01-19T23:42:13.0808461495-001 sshd[29566]: Failed password for invalid user lena from 104.168.142.229 port 55354 ssh2 2020-01-19T23:44:41.3200111495-001 sshd[29648]: Invalid user admin from 104.168.142.229 port 50442 2020-01-19T23:44:41.3232021495-001 sshd[29648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=hwsrv-656802.hostwindsdns.com 2020-01-19T23:44:41.3200111495-001 sshd[29648]: Invalid user admin from 104.168.142.229 port 50442 2020-01-19T23:44:42.9783291495-001 sshd[29648]: Failed password for invalid user admin from 104.168.142.229 port 50442 ssh2 2020-01-19T23:47:09.1872401 ...	2020-01-20 13:09:22
104.168.142.229	attackspambots	Jan 17 14:51:45 dedicated sshd[8525]: Invalid user vnc from 104.168.142.229 port 39966	2020-01-17 23:38:18
104.168.142.229	attackbots	Unauthorized connection attempt detected from IP address 104.168.142.229 to port 2220 [J]	2020-01-17 04:56:59
104.168.145.77	attack	Invalid user elliza from 104.168.145.77 port 57088	2019-12-26 14:28:20

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.168.14.122
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65139
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.168.14.122.			IN	A

;; AUTHORITY SECTION:
.			352	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020083001 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Aug 31 08:30:20 CST 2020
;; MSG SIZE  rcvd: 118

Host info

122.14.168.104.in-addr.arpa domain name pointer 104-168-14-122-host.colocrossing.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
122.14.168.104.in-addr.arpa	name = 104-168-14-122-host.colocrossing.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.91.136.28	attackspambots	xmlrpc attack	2020-08-22 06:59:16
159.89.114.40	attackspambots	Aug 21 22:48:23 ip-172-31-16-56 sshd\[17662\]: Failed password for root from 159.89.114.40 port 55882 ssh2\ Aug 21 22:51:57 ip-172-31-16-56 sshd\[17668\]: Invalid user hw from 159.89.114.40\ Aug 21 22:51:58 ip-172-31-16-56 sshd\[17668\]: Failed password for invalid user hw from 159.89.114.40 port 36926 ssh2\ Aug 21 22:55:49 ip-172-31-16-56 sshd\[17704\]: Invalid user felix from 159.89.114.40\ Aug 21 22:55:51 ip-172-31-16-56 sshd\[17704\]: Failed password for invalid user felix from 159.89.114.40 port 46184 ssh2\	2020-08-22 07:02:27
186.206.157.34	attackbotsspam	Aug 22 00:45:01 electroncash sshd[30180]: Failed password for invalid user ftp from 186.206.157.34 port 3332 ssh2 Aug 22 00:49:23 electroncash sshd[31408]: Invalid user bdl from 186.206.157.34 port 31258 Aug 22 00:49:23 electroncash sshd[31408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.206.157.34 Aug 22 00:49:23 electroncash sshd[31408]: Invalid user bdl from 186.206.157.34 port 31258 Aug 22 00:49:26 electroncash sshd[31408]: Failed password for invalid user bdl from 186.206.157.34 port 31258 ssh2 ...	2020-08-22 06:54:57
218.25.89.99	attack	Invalid user mns from 218.25.89.99 port 11031	2020-08-22 07:14:41
123.207.19.105	attackspambots	Aug 21 19:46:15 firewall sshd[3237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.19.105 Aug 21 19:46:14 firewall sshd[3237]: Invalid user mama from 123.207.19.105 Aug 21 19:46:16 firewall sshd[3237]: Failed password for invalid user mama from 123.207.19.105 port 39588 ssh2 ...	2020-08-22 07:07:42
45.55.242.212	attack	Aug 22 00:28:39 jane sshd[19723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212 Aug 22 00:28:40 jane sshd[19723]: Failed password for invalid user 09 from 45.55.242.212 port 32842 ssh2 ...	2020-08-22 07:06:48
157.245.243.14	attackbots	WordPress wp-login brute force :: 157.245.243.14 0.200 - [21/Aug/2020:20:22:25 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 2411 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-08-22 07:20:57
134.209.146.100	attackspam	Lines containing failures of 134.209.146.100 (max 1000) Aug 21 01:44:05 Tosca sshd[4139030]: Invalid user rakesh from 134.209.146.100 port 55960 Aug 21 01:44:05 Tosca sshd[4139030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.146.100 Aug 21 01:44:07 Tosca sshd[4139030]: Failed password for invalid user rakesh from 134.209.146.100 port 55960 ssh2 Aug 21 01:44:07 Tosca sshd[4139030]: Received disconnect from 134.209.146.100 port 55960:11: Bye Bye [preauth] Aug 21 01:44:07 Tosca sshd[4139030]: Disconnected from invalid user rakesh 134.209.146.100 port 55960 [preauth] Aug 21 01:54:11 Tosca sshd[4147234]: Invalid user test from 134.209.146.100 port 40372 Aug 21 01:54:11 Tosca sshd[4147234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.146.100 Aug 21 01:54:13 Tosca sshd[4147234]: Failed password for invalid user test from 134.209.146.100 port 40372 ssh2 Aug 21 01:54:15 Tosc........ ------------------------------	2020-08-22 06:45:43
129.226.184.94	attackbots	129.226.184.94 - - [21/Aug/2020:22:22:22 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 129.226.184.94 - - [21/Aug/2020:22:22:23 +0200] "POST /wp-login.php HTTP/1.1" 200 1704 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 129.226.184.94 - - [21/Aug/2020:22:22:23 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 129.226.184.94 - - [21/Aug/2020:22:22:24 +0200] "POST /wp-login.php HTTP/1.1" 200 1684 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 129.226.184.94 - - [21/Aug/2020:22:22:25 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 129.226.184.94 - - [21/Aug/2020:22:22:26 +0200] "POST /wp-login.php HTTP/1.1" 200 1688 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ...	2020-08-22 07:20:11
124.167.226.214	attackbots	Invalid user amal from 124.167.226.214 port 34964	2020-08-22 07:12:17
35.200.168.65	attack	Aug 21 20:14:11 ip-172-31-16-56 sshd\[14802\]: Failed password for root from 35.200.168.65 port 53668 ssh2\ Aug 21 20:18:35 ip-172-31-16-56 sshd\[14870\]: Invalid user wordpress from 35.200.168.65\ Aug 21 20:18:37 ip-172-31-16-56 sshd\[14870\]: Failed password for invalid user wordpress from 35.200.168.65 port 34838 ssh2\ Aug 21 20:23:04 ip-172-31-16-56 sshd\[14944\]: Invalid user usu from 35.200.168.65\ Aug 21 20:23:06 ip-172-31-16-56 sshd\[14944\]: Failed password for invalid user usu from 35.200.168.65 port 44044 ssh2\	2020-08-22 06:54:42
118.24.149.173	attack	Aug 21 22:49:07 abendstille sshd\[17385\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.149.173 user=root Aug 21 22:49:09 abendstille sshd\[17385\]: Failed password for root from 118.24.149.173 port 58878 ssh2 Aug 21 22:53:23 abendstille sshd\[21310\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.149.173 user=root Aug 21 22:53:25 abendstille sshd\[21310\]: Failed password for root from 118.24.149.173 port 59910 ssh2 Aug 21 22:55:06 abendstille sshd\[23231\]: Invalid user wum from 118.24.149.173 Aug 21 22:55:06 abendstille sshd\[23231\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.149.173 ...	2020-08-22 07:01:08
144.34.240.47	attackspam	Invalid user xyc from 144.34.240.47 port 44482	2020-08-22 07:01:42
158.69.35.227	attackbots	SSH Invalid Login	2020-08-22 06:48:25
41.224.59.242	attack	Invalid user max from 41.224.59.242 port 39723	2020-08-22 07:20:40

Recently Reported IPs

116.77.174.149	118.5.90.200	73.66.246.175	185.32.46.176
24.149.248.104	51.79.144.95	205.69.189.65	1.129.113.213
194.209.222.95	139.158.179.139	49.246.85.152	125.164.125.137
160.238.81.124	54.162.34.221	87.2.59.195	91.173.212.29
233.52.224.59	190.204.166.219	103.55.9.118	35.79.51.86