104.236.52.94 - IPInfo

基本信息:

城市(city): Clifton

省份(region): New Jersey

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Apr 3 15:32:58 vps sshd[246443]: Failed password for invalid user test_dw123 from 104.236.52.94 port 39754 ssh2 Apr 3 15:37:12 vps sshd[269773]: Invalid user 4321 from 104.236.52.94 port 50010 Apr 3 15:37:12 vps sshd[269773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 Apr 3 15:37:14 vps sshd[269773]: Failed password for invalid user 4321 from 104.236.52.94 port 50010 ssh2 Apr 3 15:41:20 vps sshd[293188]: Invalid user Root@54321 from 104.236.52.94 port 60266 ...	2020-04-03 23:04:34
attackspambots	2020-03-19T10:51:06.792279mail.thespaminator.com sshd[20456]: Failed password for root from 104.236.52.94 port 59108 ssh2 2020-03-19T10:59:17.868995mail.thespaminator.com sshd[21458]: Invalid user testuser from 104.236.52.94 port 37722 ...	2020-03-20 03:12:48
attackbotsspam	Mar 14 04:45:37 areeb-Workstation sshd[25593]: Failed password for root from 104.236.52.94 port 42016 ssh2 ...	2020-03-14 07:32:00
attack	Mar 8 22:41:50 vps647732 sshd[752]: Failed password for root from 104.236.52.94 port 33138 ssh2 ...	2020-03-09 05:51:09
attack	$f2bV_matches	2020-03-06 17:24:56
attackbotsspam	21 attempts against mh-ssh on cloud	2020-02-21 20:09:32
attackspambots	Feb 18 05:55:52 sd-53420 sshd\[16182\]: Invalid user eds from 104.236.52.94 Feb 18 05:55:52 sd-53420 sshd\[16182\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 Feb 18 05:55:55 sd-53420 sshd\[16182\]: Failed password for invalid user eds from 104.236.52.94 port 41140 ssh2 Feb 18 05:58:34 sd-53420 sshd\[16399\]: User bind from 104.236.52.94 not allowed because none of user's groups are listed in AllowGroups Feb 18 05:58:34 sd-53420 sshd\[16399\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 user=bind ...	2020-02-18 13:06:50
attackspam	SSH Login Failed	2020-02-12 21:31:02
attackbotsspam	Unauthorized connection attempt detected from IP address 104.236.52.94 to port 2220 [J]	2020-01-07 13:08:51
attack	Dec 19 18:14:41 vps691689 sshd[32433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 Dec 19 18:14:43 vps691689 sshd[32433]: Failed password for invalid user gladsoe from 104.236.52.94 port 48948 ssh2 ...	2019-12-20 01:24:52
attackspambots	Dec 18 09:40:34 hell sshd[1348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 Dec 18 09:40:37 hell sshd[1348]: Failed password for invalid user admin from 104.236.52.94 port 34940 ssh2 ...	2019-12-18 18:26:28
attack	Dec 15 06:54:34 loxhost sshd\[12952\]: Invalid user operator from 104.236.52.94 port 35406 Dec 15 06:54:34 loxhost sshd\[12952\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 Dec 15 06:54:36 loxhost sshd\[12952\]: Failed password for invalid user operator from 104.236.52.94 port 35406 ssh2 Dec 15 06:59:56 loxhost sshd\[13126\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 user=www-data Dec 15 06:59:58 loxhost sshd\[13126\]: Failed password for www-data from 104.236.52.94 port 42892 ssh2 ...	2019-12-15 14:05:20
attackbotsspam	Dec 10 15:09:26 * sshd[32547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 Dec 10 15:09:29 * sshd[32547]: Failed password for invalid user eeee from 104.236.52.94 port 33468 ssh2	2019-12-10 22:47:10
attackbotsspam	2019-12-06T08:04:17.845440scmdmz1 sshd\[21298\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 user=root 2019-12-06T08:04:19.694335scmdmz1 sshd\[21298\]: Failed password for root from 104.236.52.94 port 33258 ssh2 2019-12-06T08:10:04.436672scmdmz1 sshd\[21899\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 user=root ...	2019-12-06 15:21:27
attackbotsspam	Dec 4 13:52:19 sd-53420 sshd\[4883\]: User root from 104.236.52.94 not allowed because none of user's groups are listed in AllowGroups Dec 4 13:52:19 sd-53420 sshd\[4883\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 user=root Dec 4 13:52:21 sd-53420 sshd\[4883\]: Failed password for invalid user root from 104.236.52.94 port 38236 ssh2 Dec 4 13:58:04 sd-53420 sshd\[5847\]: User root from 104.236.52.94 not allowed because none of user's groups are listed in AllowGroups Dec 4 13:58:04 sd-53420 sshd\[5847\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 user=root ...	2019-12-04 21:04:55
attack	fail2ban	2019-11-29 20:30:05
attack	2019-11-13T00:11:38.158315abusebot-8.cloudsearch.cf sshd\[1155\]: Invalid user wuchunpeng123 from 104.236.52.94 port 43098	2019-11-13 08:47:50
attackspam	2019-11-07T09:33:25.363656tmaserv sshd\[3968\]: Failed password for root from 104.236.52.94 port 45320 ssh2 2019-11-07T10:36:57.777877tmaserv sshd\[7106\]: Invalid user smartkey from 104.236.52.94 port 60748 2019-11-07T10:36:57.782781tmaserv sshd\[7106\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 2019-11-07T10:36:59.350649tmaserv sshd\[7106\]: Failed password for invalid user smartkey from 104.236.52.94 port 60748 ssh2 2019-11-07T10:41:24.602386tmaserv sshd\[7325\]: Invalid user uriel from 104.236.52.94 port 41694 2019-11-07T10:41:24.607290tmaserv sshd\[7325\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 ...	2019-11-07 19:29:33
attackspambots	Invalid user system from 104.236.52.94 port 56030	2019-11-03 13:59:15
attackbots	Invalid user mr from 104.236.52.94 port 36220	2019-10-27 02:53:28
attack	SSH Brute Force, server-1 sshd[6725]: Failed password for root from 104.236.52.94 port 44188 ssh2	2019-10-13 19:25:01
attack	Oct 12 18:12:42 apollo sshd\[540\]: Failed password for root from 104.236.52.94 port 47616 ssh2Oct 12 18:19:01 apollo sshd\[583\]: Failed password for root from 104.236.52.94 port 34286 ssh2Oct 12 18:24:26 apollo sshd\[607\]: Failed password for root from 104.236.52.94 port 46098 ssh2 ...	2019-10-13 02:16:42
attackspam	Oct 12 00:21:05 * sshd[11627]: Failed password for root from 104.236.52.94 port 52512 ssh2	2019-10-12 13:43:12
attack	Sep 19 18:06:07 kapalua sshd\[1362\]: Invalid user arma3sync from 104.236.52.94 Sep 19 18:06:07 kapalua sshd\[1362\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 Sep 19 18:06:09 kapalua sshd\[1362\]: Failed password for invalid user arma3sync from 104.236.52.94 port 41504 ssh2 Sep 19 18:11:06 kapalua sshd\[2098\]: Invalid user awilliams from 104.236.52.94 Sep 19 18:11:06 kapalua sshd\[2098\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94	2019-09-20 12:28:56
attack	Sep 19 01:19:38 kapalua sshd\[31065\]: Invalid user ubuntu from 104.236.52.94 Sep 19 01:19:38 kapalua sshd\[31065\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 Sep 19 01:19:40 kapalua sshd\[31065\]: Failed password for invalid user ubuntu from 104.236.52.94 port 53746 ssh2 Sep 19 01:24:58 kapalua sshd\[31565\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 user=proxy Sep 19 01:25:00 kapalua sshd\[31565\]: Failed password for proxy from 104.236.52.94 port 42240 ssh2	2019-09-19 19:39:43
attackspambots	Sep 14 23:19:20 lnxded64 sshd[16437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94	2019-09-15 07:16:16
attackbotsspam	Sep 11 00:12:14 hb sshd\[3695\]: Invalid user mysql from 104.236.52.94 Sep 11 00:12:14 hb sshd\[3695\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 Sep 11 00:12:16 hb sshd\[3695\]: Failed password for invalid user mysql from 104.236.52.94 port 59886 ssh2 Sep 11 00:19:47 hb sshd\[4409\]: Invalid user test2 from 104.236.52.94 Sep 11 00:19:47 hb sshd\[4409\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94	2019-09-11 15:38:54
attackbots	Sep 4 08:39:22 auw2 sshd\[2246\]: Invalid user test2 from 104.236.52.94 Sep 4 08:39:22 auw2 sshd\[2246\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 Sep 4 08:39:24 auw2 sshd\[2246\]: Failed password for invalid user test2 from 104.236.52.94 port 55102 ssh2 Sep 4 08:44:46 auw2 sshd\[2702\]: Invalid user zhu from 104.236.52.94 Sep 4 08:44:46 auw2 sshd\[2702\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94	2019-09-05 04:22:29
attack	Aug 26 11:30:33 yabzik sshd[26961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94 Aug 26 11:30:35 yabzik sshd[26961]: Failed password for invalid user atscale from 104.236.52.94 port 57328 ssh2 Aug 26 11:35:21 yabzik sshd[28690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.52.94	2019-08-26 21:37:39
attack	$f2bV_matches	2019-08-20 18:11:06

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.236.52.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22093
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.236.52.94.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040600 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Apr 07 01:15:54 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 94.52.236.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 94.52.236.104.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
51.77.140.111	attackspambots	Feb 27 23:18:30 XXXXXX sshd[11508]: Invalid user demo from 51.77.140.111 port 52230	2020-02-28 10:05:58
85.209.3.205	attackspambots	RDP Bruteforce	2020-02-28 13:22:57
185.217.1.242	attackspambots	firewall-block, port(s): 5351/udp	2020-02-28 13:22:24
218.149.14.228	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 13:21:20
84.38.181.187	attackspambots	Invalid user minecraft from 84.38.181.187 port 56670	2020-02-28 10:03:32
116.62.174.68	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-28 13:12:14
178.33.255.189	attackbotsspam	Honeypot attack, port: 445, PTR: ip189.ip-178-33-255.eu.	2020-02-28 13:09:46
46.101.164.47	attackbots	Invalid user dev from 46.101.164.47 port 40199	2020-02-28 10:07:03
190.64.204.140	attack	Feb 28 01:59:13 localhost sshd\[55615\]: Invalid user yueyimin from 190.64.204.140 port 52444 Feb 28 01:59:13 localhost sshd\[55615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.64.204.140 Feb 28 01:59:15 localhost sshd\[55615\]: Failed password for invalid user yueyimin from 190.64.204.140 port 52444 ssh2 Feb 28 02:09:32 localhost sshd\[55823\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.64.204.140 user=root Feb 28 02:09:34 localhost sshd\[55823\]: Failed password for root from 190.64.204.140 port 34493 ssh2 ...	2020-02-28 10:14:03
206.189.142.107	attackbots	Invalid user miyazawa from 206.189.142.107 port 58764	2020-02-28 10:13:11
206.189.146.13	attack	Feb 27 23:54:44 NPSTNNYC01T sshd[30493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.146.13 Feb 27 23:54:45 NPSTNNYC01T sshd[30493]: Failed password for invalid user prueba from 206.189.146.13 port 50459 ssh2 Feb 27 23:57:16 NPSTNNYC01T sshd[30677]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.146.13 ...	2020-02-28 13:07:37
36.78.211.185	attackspam	20/2/27@23:57:06: FAIL: Alarm-Network address from=36.78.211.185 20/2/27@23:57:06: FAIL: Alarm-Network address from=36.78.211.185 ...	2020-02-28 13:15:22
37.235.227.170	attackspam	Honeypot attack, port: 445, PTR: 37-235-227-170.dynamic.customer.lanta.me.	2020-02-28 13:18:39
218.92.0.148	attack	Feb 28 13:14:08 bacztwo sshd[20428]: error: PAM: Authentication failure for root from 218.92.0.148 Feb 28 13:14:12 bacztwo sshd[20428]: error: PAM: Authentication failure for root from 218.92.0.148 Feb 28 13:14:16 bacztwo sshd[20428]: error: PAM: Authentication failure for root from 218.92.0.148 Feb 28 13:14:16 bacztwo sshd[20428]: Failed keyboard-interactive/pam for root from 218.92.0.148 port 9528 ssh2 Feb 28 13:14:05 bacztwo sshd[20428]: error: PAM: Authentication failure for root from 218.92.0.148 Feb 28 13:14:08 bacztwo sshd[20428]: error: PAM: Authentication failure for root from 218.92.0.148 Feb 28 13:14:12 bacztwo sshd[20428]: error: PAM: Authentication failure for root from 218.92.0.148 Feb 28 13:14:16 bacztwo sshd[20428]: error: PAM: Authentication failure for root from 218.92.0.148 Feb 28 13:14:16 bacztwo sshd[20428]: Failed keyboard-interactive/pam for root from 218.92.0.148 port 9528 ssh2 Feb 28 13:14:21 bacztwo sshd[20428]: error: PAM: Authentication failure for root from ...	2020-02-28 13:17:43
222.99.52.216	attackbots	SASL PLAIN auth failed: ruser=...	2020-02-28 10:10:36

最近上报的IP列表

139.162.122.110	178.128.144.227	200.172.91.170	23.236.76.25
128.199.242.84	84.125.148.147	157.230.155.4	41.131.119.107
202.29.30.206	201.6.99.139	209.126.68.72	195.82.149.121
162.243.122.187	107.170.203.223	101.81.10.160	145.131.5.245
190.180.73.56	159.89.47.199	36.100.254.3	14.18.34.150