104.131.138.126

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Jun 6 23:44:45 minden010 sshd[8759]: Failed password for root from 104.131.138.126 port 32770 ssh2 Jun 6 23:46:38 minden010 sshd[10423]: Failed password for root from 104.131.138.126 port 36856 ssh2 ...	2020-06-07 07:53:51
attack	Jun 2 22:05:37 game-panel sshd[7599]: Failed password for root from 104.131.138.126 port 40660 ssh2 Jun 2 22:09:08 game-panel sshd[7859]: Failed password for root from 104.131.138.126 port 45942 ssh2	2020-06-03 06:37:39
attackspambots	Jun 2 06:45:22 ip-172-31-61-156 sshd[29713]: Failed password for root from 104.131.138.126 port 52244 ssh2 Jun 2 06:47:29 ip-172-31-61-156 sshd[29783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.138.126 user=root Jun 2 06:47:31 ip-172-31-61-156 sshd[29783]: Failed password for root from 104.131.138.126 port 58134 ssh2 Jun 2 06:47:29 ip-172-31-61-156 sshd[29783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.138.126 user=root Jun 2 06:47:31 ip-172-31-61-156 sshd[29783]: Failed password for root from 104.131.138.126 port 58134 ssh2 ...	2020-06-02 16:18:32
attackspambots	(sshd) Failed SSH login from 104.131.138.126 (US/United States/-): 5 in the last 3600 secs	2020-05-09 17:55:43
attackspam	$f2bV_matches	2020-05-06 13:44:00
attack	May 3 06:34:16 srv-ubuntu-dev3 sshd[99368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.138.126 user=root May 3 06:34:18 srv-ubuntu-dev3 sshd[99368]: Failed password for root from 104.131.138.126 port 37690 ssh2 May 3 06:37:56 srv-ubuntu-dev3 sshd[100388]: Invalid user admin from 104.131.138.126 May 3 06:37:56 srv-ubuntu-dev3 sshd[100388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.138.126 May 3 06:37:56 srv-ubuntu-dev3 sshd[100388]: Invalid user admin from 104.131.138.126 May 3 06:37:59 srv-ubuntu-dev3 sshd[100388]: Failed password for invalid user admin from 104.131.138.126 port 49142 ssh2 May 3 06:41:42 srv-ubuntu-dev3 sshd[100934]: Invalid user admin from 104.131.138.126 May 3 06:41:42 srv-ubuntu-dev3 sshd[100934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.138.126 May 3 06:41:42 srv-ubuntu-dev3 sshd[100934]: Invalid ...	2020-05-03 14:46:01
attack	Port Scan detected from 104.131.138.126 (US/United States/California/San Francisco/-). 4 hits in the last 105 seconds	2020-04-23 04:11:49
attackspam	2020-04-17T20:00:36.378530abusebot-6.cloudsearch.cf sshd[12419]: Invalid user r from 104.131.138.126 port 45948 2020-04-17T20:00:36.384250abusebot-6.cloudsearch.cf sshd[12419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.138.126 2020-04-17T20:00:36.378530abusebot-6.cloudsearch.cf sshd[12419]: Invalid user r from 104.131.138.126 port 45948 2020-04-17T20:00:38.339500abusebot-6.cloudsearch.cf sshd[12419]: Failed password for invalid user r from 104.131.138.126 port 45948 ssh2 2020-04-17T20:04:10.882939abusebot-6.cloudsearch.cf sshd[12631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.138.126 user=root 2020-04-17T20:04:13.219500abusebot-6.cloudsearch.cf sshd[12631]: Failed password for root from 104.131.138.126 port 52874 ssh2 2020-04-17T20:07:41.771598abusebot-6.cloudsearch.cf sshd[12849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.13 ...	2020-04-18 04:15:33
attack	Apr 11 22:53:04 vpn01 sshd[19431]: Failed password for root from 104.131.138.126 port 55416 ssh2 ...	2020-04-12 05:37:52
attackbots	Apr 7 10:57:26 santamaria sshd\[21921\]: Invalid user test from 104.131.138.126 Apr 7 10:57:26 santamaria sshd\[21921\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.138.126 Apr 7 10:57:29 santamaria sshd\[21921\]: Failed password for invalid user test from 104.131.138.126 port 35216 ssh2 ...	2020-04-07 17:51:59
attack	$f2bV_matches	2020-04-04 14:07:13
attack	ssh brute force	2020-03-26 14:05:54
attackspam	SSH Invalid Login	2020-03-25 07:39:08
attackspambots	invalid user	2020-03-23 20:19:35
attackspam	(sshd) Failed SSH login from 104.131.138.126 (US/United States/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 19 14:01:53 ubnt-55d23 sshd[10604]: Invalid user wrchang from 104.131.138.126 port 54684 Mar 19 14:01:55 ubnt-55d23 sshd[10604]: Failed password for invalid user wrchang from 104.131.138.126 port 54684 ssh2	2020-03-19 23:35:56
attackbotsspam	Mar 19 08:18:21 host01 sshd[21866]: Failed password for daemon from 104.131.138.126 port 36654 ssh2 Mar 19 08:22:21 host01 sshd[22478]: Failed password for root from 104.131.138.126 port 57418 ssh2 ...	2020-03-19 17:50:45
attack	Mar 18 10:27:12 mockhub sshd[6978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.138.126 Mar 18 10:27:14 mockhub sshd[6978]: Failed password for invalid user ubnt from 104.131.138.126 port 43882 ssh2 ...	2020-03-19 03:03:14
attackbotsspam	2020-03-09T17:22:19.986594abusebot-6.cloudsearch.cf sshd[4099]: Invalid user ptao from 104.131.138.126 port 37762 2020-03-09T17:22:19.992558abusebot-6.cloudsearch.cf sshd[4099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.138.126 2020-03-09T17:22:19.986594abusebot-6.cloudsearch.cf sshd[4099]: Invalid user ptao from 104.131.138.126 port 37762 2020-03-09T17:22:21.784790abusebot-6.cloudsearch.cf sshd[4099]: Failed password for invalid user ptao from 104.131.138.126 port 37762 ssh2 2020-03-09T17:30:25.899388abusebot-6.cloudsearch.cf sshd[4593]: Invalid user ag from 104.131.138.126 port 43372 2020-03-09T17:30:25.905173abusebot-6.cloudsearch.cf sshd[4593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.138.126 2020-03-09T17:30:25.899388abusebot-6.cloudsearch.cf sshd[4593]: Invalid user ag from 104.131.138.126 port 43372 2020-03-09T17:30:27.415617abusebot-6.cloudsearch.cf sshd[4593]: Failed pa ...	2020-03-10 01:58:07
attackspambots	Mar 5 01:21:53 NPSTNNYC01T sshd[27947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.138.126 Mar 5 01:21:55 NPSTNNYC01T sshd[27947]: Failed password for invalid user nx from 104.131.138.126 port 33924 ssh2 Mar 5 01:30:56 NPSTNNYC01T sshd[28532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.138.126 ...	2020-03-05 14:50:54
attackbots	Unauthorized connection attempt detected from IP address 104.131.138.126 to port 2220 [J]	2020-01-18 20:46:39
attackbotsspam	(sshd) Failed SSH login from 104.131.138.126 (US/United States/-): 10 in the last 3600 secs	2020-01-14 18:05:18
attackspambots	Invalid user dfh from 104.131.138.126 port 59198	2020-01-11 08:58:44
attackspam	2020-01-01T15:38:55.490847shield sshd\[3811\]: Invalid user dovecot from 104.131.138.126 port 46454 2020-01-01T15:38:55.494808shield sshd\[3811\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.138.126 2020-01-01T15:38:57.285272shield sshd\[3811\]: Failed password for invalid user dovecot from 104.131.138.126 port 46454 ssh2 2020-01-01T15:40:53.677020shield sshd\[5156\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.138.126 user=sshd 2020-01-01T15:40:56.333533shield sshd\[5156\]: Failed password for sshd from 104.131.138.126 port 35290 ssh2	2020-01-02 02:56:12

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.138.126
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64972
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.131.138.126.		IN	A

;; AUTHORITY SECTION:
.			463	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010102 1800 900 604800 86400

;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 02 02:56:09 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 126.138.131.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 126.138.131.104.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
199.47.87.142	attack	20 attempts against mh-misbehave-ban on ice.magehost.pro	2019-07-01 22:01:24
45.13.39.23	attackbots	Jul 1 16:00:34 mail postfix/smtpd\[18884\]: warning: unknown\[45.13.39.23\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 1 16:01:22 mail postfix/smtpd\[19069\]: warning: unknown\[45.13.39.23\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 1 16:02:10 mail postfix/smtpd\[19071\]: warning: unknown\[45.13.39.23\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-01 22:08:30
190.116.55.89	attackbotsspam	Jul 1 15:41:49 mail postfix/smtpd[31622]: lost connection after HELO from unknown[190.116.55.89] ...	2019-07-01 21:51:51
1.20.156.243	attackspambots	445/tcp [2019-07-01]1pkt	2019-07-01 21:52:59
62.133.58.66	attackbots	Jul 1 15:27:00 mail postfix/smtpd\[13056\]: warning: unknown\[62.133.58.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 1 15:27:29 mail postfix/smtpd\[12744\]: warning: unknown\[62.133.58.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 1 16:00:21 mail postfix/smtpd\[14032\]: warning: unknown\[62.133.58.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 1 16:00:49 mail postfix/smtpd\[14032\]: warning: unknown\[62.133.58.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-07-01 22:07:59
124.13.71.146	spambots	用了别人户口登记	2019-07-01 22:07:22
103.71.230.195	attack	Spam	2019-07-01 22:43:26
179.108.245.33	attackspam	failed_logins	2019-07-01 22:14:28
211.177.48.222	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-01 22:22:30
211.103.131.75	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-01 22:04:32
92.52.168.225	attackspam	" "	2019-07-01 22:36:35
201.180.40.71	attackspam	TCP port 445 (SMB) attempt blocked by firewall. [2019-07-01 15:40:18]	2019-07-01 22:48:09
88.3.235.72	attackbotsspam	Brute force SMTP login attempts.	2019-07-01 22:16:48
126.14.243.159	attack	23/tcp [2019-07-01]1pkt	2019-07-01 22:13:30
139.210.220.117	attackspam	23/tcp 23/tcp [2019-06-30/07-01]2pkt	2019-07-01 22:49:35

最近上报的IP列表

35.79.248.110	86.36.172.108	35.107.11.65	211.30.142.161
54.16.187.72	212.174.170.190	222.98.9.172	42.19.146.206
5.139.250.92	150.159.192.49	215.210.113.137	161.135.152.212
115.203.178.52	96.76.40.27	150.105.228.24	220.166.6.159
60.185.132.140	37.69.30.122	143.188.103.170	24.42.189.78