104.168.14.85 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.168.14.36	attackspambots	Found on Blocklist de / proto=6 . srcport=42398 . dstport=22 SSH . (991)	2020-10-07 02:37:31
104.168.14.36	attackbots	Found on Blocklist de / proto=6 . srcport=42398 . dstport=22 SSH . (991)	2020-10-06 18:34:54
104.168.14.122	attack	TCP (SYN) 104.168.14.122:41260 -> port 22, len 44	2020-08-31 08:30:32
104.168.141.181	attack	Email spam message	2020-06-24 21:18:29
104.168.142.194	attackbotsspam	port 23	2020-06-20 04:42:22
104.168.141.201	attackbots	TCP Port: 25 invalid blocked abuseat-org also barracuda and zen-spamhaus (282)	2020-06-02 08:12:47
104.168.145.99	attackspam	$f2bV_matches	2020-05-26 05:07:13
104.168.142.227	attackbots	lfd: (smtpauth) Failed SMTP AUTH login from 104.168.142.227 (hwsrv-273223.hostwindsdns.com): 5 in the last 3600 secs - Fri Jun 22 19:11:59 2018	2020-04-30 13:06:04
104.168.148.42	attackspambots	Lines containing failures of 104.168.148.42 Apr 19 08:13:27 UTC__SANYALnet-Labs__cac12 sshd[19340]: Connection from 104.168.148.42 port 48714 on 45.62.253.138 port 22 Apr 19 08:13:28 UTC__SANYALnet-Labs__cac12 sshd[19340]: Invalid user ch from 104.168.148.42 port 48714 Apr 19 08:13:30 UTC__SANYALnet-Labs__cac12 sshd[19340]: Failed password for invalid user ch from 104.168.148.42 port 48714 ssh2 Apr 19 08:13:30 UTC__SANYALnet-Labs__cac12 sshd[19340]: Received disconnect from 104.168.148.42 port 48714:11: Bye Bye [preauth] Apr 19 08:13:30 UTC__SANYALnet-Labs__cac12 sshd[19340]: Disconnected from 104.168.148.42 port 48714 [preauth] Apr 19 08:24:40 UTC__SANYALnet-Labs__cac12 sshd[19617]: Connection from 104.168.148.42 port 49250 on 45.62.253.138 port 22 Apr 19 08:24:44 UTC__SANYALnet-Labs__cac12 sshd[19617]: Failed password for invalid user r.r from 104.168.148.42 port 49250 ssh2 Apr 19 08:24:44 UTC__SANYALnet-Labs__cac12 sshd[19617]: Received disconnect from 104.168.148.42 ........ ------------------------------	2020-04-19 20:48:20
104.168.148.189	attackbots	Fail2Ban Ban Triggered	2020-03-05 15:39:20
104.168.142.227	attackbotsspam	lfd: (smtpauth) Failed SMTP AUTH login from 104.168.142.227 (hwsrv-273223.hostwindsdns.com): 5 in the last 3600 secs - Fri Jun 22 19:11:59 2018	2020-02-23 23:48:05
104.168.144.77	attackbotsspam	lfd: (smtpauth) Failed SMTP AUTH login from 104.168.144.77 (US/United States/hwsrv-238723.hostwindsdns.com): 5 in the last 3600 secs - Thu May 3 12:14:48 2018	2020-02-07 06:46:19
104.168.142.229	attack	2020-01-19T23:42:11.3404711495-001 sshd[29566]: Invalid user lena from 104.168.142.229 port 55354 2020-01-19T23:42:11.3496611495-001 sshd[29566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=hwsrv-656802.hostwindsdns.com 2020-01-19T23:42:11.3404711495-001 sshd[29566]: Invalid user lena from 104.168.142.229 port 55354 2020-01-19T23:42:13.0808461495-001 sshd[29566]: Failed password for invalid user lena from 104.168.142.229 port 55354 ssh2 2020-01-19T23:44:41.3200111495-001 sshd[29648]: Invalid user admin from 104.168.142.229 port 50442 2020-01-19T23:44:41.3232021495-001 sshd[29648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=hwsrv-656802.hostwindsdns.com 2020-01-19T23:44:41.3200111495-001 sshd[29648]: Invalid user admin from 104.168.142.229 port 50442 2020-01-19T23:44:42.9783291495-001 sshd[29648]: Failed password for invalid user admin from 104.168.142.229 port 50442 ssh2 2020-01-19T23:47:09.1872401 ...	2020-01-20 13:09:22
104.168.142.229	attackspambots	Jan 17 14:51:45 dedicated sshd[8525]: Invalid user vnc from 104.168.142.229 port 39966	2020-01-17 23:38:18
104.168.142.229	attackbots	Unauthorized connection attempt detected from IP address 104.168.142.229 to port 2220 [J]	2020-01-17 04:56:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.168.14.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62106
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.168.14.85.			IN	A

;; AUTHORITY SECTION:
.			480	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 19:37:26 CST 2022
;; MSG SIZE  rcvd: 106

Host info

85.14.168.104.in-addr.arpa domain name pointer 104-168-14-85-host.colocrossing.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
85.14.168.104.in-addr.arpa	name = 104-168-14-85-host.colocrossing.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
194.102.35.244	attackbots	Nov 26 23:56:23 webhost01 sshd[3565]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.102.35.244 Nov 26 23:56:25 webhost01 sshd[3565]: Failed password for invalid user hague from 194.102.35.244 port 55652 ssh2 ...	2019-11-27 05:23:59
157.245.60.56	attackspambots	IDS	2019-11-27 05:12:48
185.162.235.107	attackspambots	Nov 26 22:27:11 mail postfix/smtpd[32455]: warning: unknown[185.162.235.107]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 26 22:27:57 mail postfix/smtpd[1504]: warning: unknown[185.162.235.107]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 26 22:28:22 mail postfix/smtpd[3490]: warning: unknown[185.162.235.107]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-27 05:40:15
54.38.207.237	attackbots	INDICATOR-SCAN User-Agent known malicious user-agent Masscan	2019-11-27 05:22:58
186.236.30.245	attackspambots	Automatic report - Port Scan Attack	2019-11-27 05:18:01
106.13.30.80	attackbots	Nov 26 20:56:55 game-panel sshd[16997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.30.80 Nov 26 20:56:57 game-panel sshd[16997]: Failed password for invalid user meineke from 106.13.30.80 port 51780 ssh2 Nov 26 21:04:09 game-panel sshd[17216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.30.80	2019-11-27 05:20:24
185.143.223.183	attack	2019-11-26T22:04:59.255484+01:00 lumpi kernel: [92266.226624] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=185.143.223.183 DST=78.46.199.189 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=25517 PROTO=TCP SPT=52456 DPT=12863 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-27 05:30:14
172.81.250.106	attack	SSH Brute Force, server-1 sshd[14175]: Failed password for invalid user smell from 172.81.250.106 port 37790 ssh2	2019-11-27 05:04:55
45.55.173.225	attackbotsspam	Nov 26 18:10:11 server sshd\[9070\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.173.225 user=lp Nov 26 18:10:12 server sshd\[9070\]: Failed password for lp from 45.55.173.225 port 57082 ssh2 Nov 26 18:16:13 server sshd\[28367\]: Invalid user emo from 45.55.173.225 port 46406 Nov 26 18:16:13 server sshd\[28367\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.173.225 Nov 26 18:16:15 server sshd\[28367\]: Failed password for invalid user emo from 45.55.173.225 port 46406 ssh2	2019-11-27 05:15:53
46.38.144.57	attackspam	Nov 26 22:13:57 relay postfix/smtpd\[16320\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 26 22:14:15 relay postfix/smtpd\[15187\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 26 22:14:44 relay postfix/smtpd\[15155\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 26 22:14:59 relay postfix/smtpd\[15187\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 26 22:15:29 relay postfix/smtpd\[16320\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-27 05:21:58
179.0.12.222	attackbots	Automatic report - Port Scan	2019-11-27 05:24:48
49.88.112.114	attackspambots	Nov 26 11:30:58 php1 sshd\[4259\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Nov 26 11:31:00 php1 sshd\[4259\]: Failed password for root from 49.88.112.114 port 40207 ssh2 Nov 26 11:31:52 php1 sshd\[4328\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Nov 26 11:31:54 php1 sshd\[4328\]: Failed password for root from 49.88.112.114 port 36382 ssh2 Nov 26 11:31:56 php1 sshd\[4328\]: Failed password for root from 49.88.112.114 port 36382 ssh2	2019-11-27 05:38:03
218.92.0.154	attackspambots	Nov 26 01:35:34 microserver sshd[48682]: Failed password for root from 218.92.0.154 port 1206 ssh2 Nov 26 01:35:38 microserver sshd[48682]: Failed password for root from 218.92.0.154 port 1206 ssh2 Nov 26 01:35:41 microserver sshd[48682]: Failed password for root from 218.92.0.154 port 1206 ssh2 Nov 26 01:35:44 microserver sshd[48682]: Failed password for root from 218.92.0.154 port 1206 ssh2 Nov 26 01:35:48 microserver sshd[48682]: Failed password for root from 218.92.0.154 port 1206 ssh2 Nov 26 01:35:51 microserver sshd[48682]: Failed password for root from 218.92.0.154 port 1206 ssh2 Nov 26 01:35:51 microserver sshd[48682]: error: maximum authentication attempts exceeded for root from 218.92.0.154 port 1206 ssh2 [preauth] Nov 26 03:15:53 microserver sshd[62401]: Failed none for root from 218.92.0.154 port 23620 ssh2 Nov 26 03:15:53 microserver sshd[62401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.154 user=root Nov 26 03:15:56 microserver sshd[62401]:	2019-11-27 05:07:59
104.244.72.98	attackspam	Invalid user fake from 104.244.72.98 port 47834	2019-11-27 05:15:23
185.71.82.39	attackspam	IMAP brute force ...	2019-11-27 05:38:24

Recently Reported IPs

104.168.14.39	104.168.14.72	104.168.14.91	104.168.14.64
104.168.14.80	101.109.191.178	104.168.14.98	104.168.141.178
104.168.143.247	104.168.141.251	104.168.144.174	104.168.143.117
104.168.141.85	104.168.145.71	104.168.140.80	101.109.191.18
104.168.144.183	104.168.146.125	104.168.146.104	104.168.144.243