104.131.52.16 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	2020-05-27T19:37:48.043223shield sshd\[2051\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.52.16 user=root 2020-05-27T19:37:49.805876shield sshd\[2051\]: Failed password for root from 104.131.52.16 port 56850 ssh2 2020-05-27T19:41:05.062076shield sshd\[2782\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.52.16 user=root 2020-05-27T19:41:07.868744shield sshd\[2782\]: Failed password for root from 104.131.52.16 port 59372 ssh2 2020-05-27T19:44:16.243548shield sshd\[3309\]: Invalid user 987654321 from 104.131.52.16 port 33660	2020-05-28 03:53:01
attackbots	May 24 13:31:04 mockhub sshd[28814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.52.16 May 24 13:31:06 mockhub sshd[28814]: Failed password for invalid user rfielding from 104.131.52.16 port 40895 ssh2 ...	2020-05-25 05:43:34
attack	May 22 20:46:59 santamaria sshd\[8690\]: Invalid user xno from 104.131.52.16 May 22 20:46:59 santamaria sshd\[8690\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.52.16 May 22 20:47:01 santamaria sshd\[8690\]: Failed password for invalid user xno from 104.131.52.16 port 53500 ssh2 ...	2020-05-23 03:28:33
attackbotsspam	May 16 09:12:43 rotator sshd\[12445\]: Invalid user dell from 104.131.52.16May 16 09:12:44 rotator sshd\[12445\]: Failed password for invalid user dell from 104.131.52.16 port 33999 ssh2May 16 09:16:19 rotator sshd\[13233\]: Invalid user user2 from 104.131.52.16May 16 09:16:21 rotator sshd\[13233\]: Failed password for invalid user user2 from 104.131.52.16 port 37188 ssh2May 16 09:19:50 rotator sshd\[13265\]: Invalid user zai from 104.131.52.16May 16 09:19:52 rotator sshd\[13265\]: Failed password for invalid user zai from 104.131.52.16 port 40377 ssh2 ...	2020-05-17 01:05:06
attackspam	May 13 12:32:34 xeon sshd[40922]: Failed password for root from 104.131.52.16 port 49912 ssh2	2020-05-13 18:52:19
attackbots	prod11 ...	2020-05-09 19:58:11
attackbotsspam	Apr 26 20:08:53 XXX sshd[55185]: Invalid user bot from 104.131.52.16 port 60923	2020-04-27 06:16:56
attackspam	Apr 21 04:06:35 ns392434 sshd[13320]: Invalid user l from 104.131.52.16 port 53625 Apr 21 04:06:35 ns392434 sshd[13320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.52.16 Apr 21 04:06:35 ns392434 sshd[13320]: Invalid user l from 104.131.52.16 port 53625 Apr 21 04:06:37 ns392434 sshd[13320]: Failed password for invalid user l from 104.131.52.16 port 53625 ssh2 Apr 21 04:15:58 ns392434 sshd[13831]: Invalid user ve from 104.131.52.16 port 44733 Apr 21 04:15:58 ns392434 sshd[13831]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.52.16 Apr 21 04:15:58 ns392434 sshd[13831]: Invalid user ve from 104.131.52.16 port 44733 Apr 21 04:16:00 ns392434 sshd[13831]: Failed password for invalid user ve from 104.131.52.16 port 44733 ssh2 Apr 21 04:21:39 ns392434 sshd[14069]: Invalid user ubuntu from 104.131.52.16 port 54362	2020-04-26 18:26:10
attackspambots	Apr 25 17:38:34 NPSTNNYC01T sshd[23522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.52.16 Apr 25 17:38:36 NPSTNNYC01T sshd[23522]: Failed password for invalid user thora from 104.131.52.16 port 37083 ssh2 Apr 25 17:43:31 NPSTNNYC01T sshd[23996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.52.16 ...	2020-04-26 05:52:06
attackspam	Apr 23 18:14:54 game-panel sshd[4463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.52.16 Apr 23 18:14:56 game-panel sshd[4463]: Failed password for invalid user testtest from 104.131.52.16 port 58119 ssh2 Apr 23 18:19:55 game-panel sshd[4692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.52.16	2020-04-24 02:35:35
attackspam	Apr 18 08:20:47 web8 sshd\[17520\]: Invalid user ubuntu from 104.131.52.16 Apr 18 08:20:47 web8 sshd\[17520\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.52.16 Apr 18 08:20:49 web8 sshd\[17520\]: Failed password for invalid user ubuntu from 104.131.52.16 port 33350 ssh2 Apr 18 08:25:24 web8 sshd\[20020\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.52.16 user=root Apr 18 08:25:25 web8 sshd\[20020\]: Failed password for root from 104.131.52.16 port 36948 ssh2	2020-04-18 17:06:24
attack	Invalid user csserver from 104.131.52.16 port 57415	2020-04-16 17:10:22
attackbots	detected by Fail2Ban	2020-04-15 21:37:28
attack	Apr 10 05:58:20 [host] sshd[14693]: Invalid user w Apr 10 05:58:20 [host] sshd[14693]: pam_unix(sshd: Apr 10 05:58:21 [host] sshd[14693]: Failed passwor	2020-04-10 12:48:50
attack	Bruteforce detected by fail2ban	2020-04-10 01:50:04
attackspam	$f2bV_matches	2020-04-07 06:15:24
attackspambots	SSH/22 MH Probe, BF, Hack -	2020-04-05 22:02:52
attackbots	Fail2Ban - SSH Bruteforce Attempt	2020-04-05 00:09:20
attackbotsspam	Mar 30 10:29:12 localhost sshd[19911]: Invalid user fxr from 104.131.52.16 port 52421 ...	2020-03-30 18:02:46
attack	SSH Invalid Login	2020-03-28 06:54:06
attackspambots	5x Failed Password	2020-03-25 21:21:26
attackspam	$f2bV_matches	2020-03-22 17:07:19
attackbotsspam	Mar 17 23:52:11 ks10 sshd[2790243]: Failed password for root from 104.131.52.16 port 38279 ssh2 ...	2020-03-18 07:32:52
attackspam	2019-12-11T08:13:38.674245suse-nuc sshd[17004]: Invalid user styrax from 104.131.52.16 port 37894 ...	2020-02-18 04:33:44
attack	Feb 10 20:08:13 lnxmysql61 sshd[28168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.52.16	2020-02-11 03:40:41
attackspam	Feb 6 20:57:51 plex sshd[29691]: Invalid user pb from 104.131.52.16 port 47247	2020-02-07 04:04:23
attack	Unauthorized connection attempt detected from IP address 104.131.52.16 to port 2220 [J]	2020-01-24 06:16:38
attack	Unauthorized connection attempt detected from IP address 104.131.52.16 to port 2220 [J]	2020-01-07 15:14:15
attack	Unauthorized connection attempt detected from IP address 104.131.52.16 to port 2220 [J]	2020-01-05 18:55:37
attack	SSH/22 MH Probe, BF, Hack -	2019-12-26 02:31:04

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.52.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36357
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.131.52.16.			IN	A

;; AUTHORITY SECTION:
.			546	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121500 1800 900 604800 86400

;; Query time: 126 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 15 13:57:23 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 16.52.131.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 16.52.131.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
42.112.136.91	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 03:39:10
166.62.36.222	attack	WordPress wp-login brute force :: 166.62.36.222 0.104 - [28/Feb/2020:13:27:15 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 1806 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-02-29 03:49:43
104.236.94.202	attackbotsspam	Feb 28 20:48:58 localhost sshd\[13826\]: Invalid user delta from 104.236.94.202 port 53662 Feb 28 20:48:58 localhost sshd\[13826\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.94.202 Feb 28 20:49:00 localhost sshd\[13826\]: Failed password for invalid user delta from 104.236.94.202 port 53662 ssh2	2020-02-29 04:01:10
218.21.45.102	attack	Unauthorised access (Feb 28) SRC=218.21.45.102 LEN=52 TTL=45 ID=4784 DF TCP DPT=1433 WINDOW=8192 SYN	2020-02-29 03:43:20
85.93.20.66	attackspam	21 attempts against mh-misbehave-ban on rock	2020-02-29 03:31:34
167.71.236.240	attackbotsspam	[munged]::443 167.71.236.240 - - [28/Feb/2020:19:41:26 +0100] "POST /[munged]: HTTP/1.1" 200 7275 "-" "-" [munged]::443 167.71.236.240 - - [28/Feb/2020:19:41:42 +0100] "POST /[munged]: HTTP/1.1" 200 7275 "-" "-" [munged]::443 167.71.236.240 - - [28/Feb/2020:19:41:42 +0100] "POST /[munged]: HTTP/1.1" 200 7275 "-" "-" [munged]::443 167.71.236.240 - - [28/Feb/2020:19:41:58 +0100] "POST /[munged]: HTTP/1.1" 200 7275 "-" "-" [munged]::443 167.71.236.240 - - [28/Feb/2020:19:41:58 +0100] "POST /[munged]: HTTP/1.1" 200 7275 "-" "-" [munged]::443 167.71.236.240 - - [28/Feb/2020:19:42:14 +0100] "POST /[munged]: HTTP/1.1" 200 7275 "-" "-"	2020-02-29 04:02:03
171.13.19.171	attackspam	[portscan] Port scan	2020-02-29 03:39:39
139.170.83.117	attack	Automatic report - Port Scan	2020-02-29 04:03:28
41.38.57.123	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 04:01:43
45.143.220.190	attack	suspicious action Fri, 28 Feb 2020 10:26:51 -0300	2020-02-29 04:03:00
178.46.27.203	attackbotsspam	1582896423 - 02/28/2020 14:27:03 Host: 178.46.27.203/178.46.27.203 Port: 445 TCP Blocked	2020-02-29 03:58:03
66.249.75.94	attackbots	Automatic report - Banned IP Access	2020-02-29 03:35:36
185.234.219.81	attackspam	Feb 28 20:05:25 web01.agentur-b-2.de postfix/smtpd[231922]: warning: unknown[185.234.219.81]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 28 20:08:21 web01.agentur-b-2.de postfix/smtpd[231922]: warning: unknown[185.234.219.81]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 28 20:10:15 web01.agentur-b-2.de postfix/smtpd[232041]: warning: unknown[185.234.219.81]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-02-29 04:07:15
87.138.218.182	attackspam	Feb 28 20:19:59 web01.agentur-b-2.de postfix/smtpd[228864]: warning: outlook.klepper-partner.de[87.138.218.182]: SASL login authentication failed: UGFzc3dvcmQ6 Feb 28 20:19:59 web01.agentur-b-2.de postfix/smtpd[231922]: warning: outlook.klepper-partner.de[87.138.218.182]: SASL login authentication failed: UGFzc3dvcmQ6 Feb 28 20:20:01 web01.agentur-b-2.de postfix/smtpd[238985]: warning: outlook.klepper-partner.de[87.138.218.182]: SASL login authentication failed: UGFzc3dvcmQ6 Feb 28 20:20:01 web01.agentur-b-2.de postfix/smtpd[230796]: warning: outlook.klepper-partner.de[87.138.218.182]: SASL login authentication failed: UGFzc3dvcmQ6	2020-02-29 04:09:47
111.230.165.183	attack	Feb 28 12:08:22 mail sshd\[33751\]: Invalid user csczserver from 111.230.165.183 Feb 28 12:08:22 mail sshd\[33751\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.165.183 ...	2020-02-29 04:05:40

最近上报的IP列表

58.56.92.218	189.26.20.197	119.122.115.220	98.100.163.115
251.193.209.121	128.70.116.96	44.243.89.132	54.39.104.29
163.172.21.100	106.217.163.143	223.149.207.253	186.219.242.54
125.162.242.71	77.34.46.126	115.232.191.240	59.33.68.149
194.187.251.150	185.212.170.183	134.73.146.226	133.123.62.2