37.139.13.105 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Netherlands

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Apr 1 20:03:57 NPSTNNYC01T sshd[28453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 Apr 1 20:04:00 NPSTNNYC01T sshd[28453]: Failed password for invalid user suporte from 37.139.13.105 port 59136 ssh2 Apr 1 20:05:47 NPSTNNYC01T sshd[28628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 ...	2020-04-02 08:42:11
attackbots	Invalid user oracle from 37.139.13.105 port 42898	2020-02-27 04:56:39
attack	Feb 24 14:46:15 dev0-dcde-rnet sshd[22323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 Feb 24 14:46:18 dev0-dcde-rnet sshd[22323]: Failed password for invalid user oracle from 37.139.13.105 port 37136 ssh2 Feb 24 14:49:45 dev0-dcde-rnet sshd[22430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105	2020-02-24 22:02:30
attackspam	Feb 6 03:43:20 vps647732 sshd[14143]: Failed password for root from 37.139.13.105 port 59818 ssh2 Feb 6 03:44:48 vps647732 sshd[14148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 ...	2020-02-06 10:53:33
attackspambots	$f2bV_matches	2020-01-27 18:12:42
attackbotsspam	Jan 14 22:16:25 v22018053744266470 sshd[2464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 Jan 14 22:16:27 v22018053744266470 sshd[2464]: Failed password for invalid user vmadmin from 37.139.13.105 port 52106 ssh2 Jan 14 22:17:22 v22018053744266470 sshd[2531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 ...	2020-01-15 05:40:52
attackbotsspam	$f2bV_matches	2019-12-21 22:34:42
attackspam	Dec 20 17:53:15 sso sshd[1730]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 Dec 20 17:53:17 sso sshd[1730]: Failed password for invalid user user from 37.139.13.105 port 44292 ssh2 ...	2019-12-21 00:58:46
attackspam	Dec 20 15:15:53 herz-der-gamer sshd[15054]: Invalid user user from 37.139.13.105 port 35092 Dec 20 15:15:53 herz-der-gamer sshd[15054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 Dec 20 15:15:53 herz-der-gamer sshd[15054]: Invalid user user from 37.139.13.105 port 35092 Dec 20 15:15:55 herz-der-gamer sshd[15054]: Failed password for invalid user user from 37.139.13.105 port 35092 ssh2 ...	2019-12-20 22:16:29
attackspambots	"Fail2Ban detected SSH brute force attempt"	2019-12-19 04:41:30
attackspambots	SSH brutforce	2019-12-08 20:50:48
attackbots	Dec 5 00:54:41 server sshd\[30538\]: Invalid user postgres from 37.139.13.105 Dec 5 00:54:41 server sshd\[30538\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 Dec 5 00:54:44 server sshd\[30538\]: Failed password for invalid user postgres from 37.139.13.105 port 45686 ssh2 Dec 5 02:17:21 server sshd\[22117\]: Invalid user tomcat from 37.139.13.105 Dec 5 02:17:21 server sshd\[22117\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 ...	2019-12-05 07:22:27
attackspambots	SSH invalid-user multiple login attempts	2019-12-03 06:52:10
attack	2019-11-24T19:30:25.203294abusebot-8.cloudsearch.cf sshd\[23551\]: Invalid user dbuser from 37.139.13.105 port 55498	2019-11-25 05:26:26
attackspambots	Nov 20 03:25:34 ws24vmsma01 sshd[135277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 Nov 20 03:25:36 ws24vmsma01 sshd[135277]: Failed password for invalid user ftp from 37.139.13.105 port 44202 ssh2 ...	2019-11-20 18:21:50
attack	Nov 11 13:11:18 srv3 sshd\[25912\]: Invalid user postgres from 37.139.13.105 Nov 11 13:11:18 srv3 sshd\[25912\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 Nov 11 13:11:20 srv3 sshd\[25912\]: Failed password for invalid user postgres from 37.139.13.105 port 49120 ssh2 ...	2019-11-12 03:13:22
attackspambots	2019-10-28T20:43:18.834619abusebot-3.cloudsearch.cf sshd\[25625\]: Invalid user zimbra from 37.139.13.105 port 47100	2019-10-29 06:12:13
attackbots	Oct 26 14:05:42 vps01 sshd[8939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 Oct 26 14:05:44 vps01 sshd[8939]: Failed password for invalid user ftpuser from 37.139.13.105 port 53346 ssh2	2019-10-26 20:16:30
attack	2019-10-26T10:19:44.560092abusebot-6.cloudsearch.cf sshd\[17311\]: Invalid user postgres from 37.139.13.105 port 54890	2019-10-26 18:36:44
attack	Invalid user ubuntu from 37.139.13.105 port 40186	2019-10-25 04:12:43
attackspam	Oct 21 20:02:51 server sshd\[17823\]: Failed password for invalid user jboss from 37.139.13.105 port 52550 ssh2 Oct 22 12:03:47 server sshd\[5007\]: Invalid user ubuntu from 37.139.13.105 Oct 22 12:03:47 server sshd\[5007\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 Oct 22 12:03:49 server sshd\[5007\]: Failed password for invalid user ubuntu from 37.139.13.105 port 41420 ssh2 Oct 22 12:08:08 server sshd\[6101\]: Invalid user support from 37.139.13.105 Oct 22 12:08:08 server sshd\[6101\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 ...	2019-10-22 17:30:01
attack	Triggered by Fail2Ban at Vostok web server	2019-10-16 04:57:38
attackbotsspam	Oct 9 11:43:49 thevastnessof sshd[22705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 ...	2019-10-09 22:16:53
attackbots	Aug 30 10:48:57 unicornsoft sshd\[30625\]: Invalid user test from 37.139.13.105 Aug 30 10:48:57 unicornsoft sshd\[30625\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 Aug 30 10:48:59 unicornsoft sshd\[30625\]: Failed password for invalid user test from 37.139.13.105 port 56626 ssh2	2019-08-30 19:56:51
attack	Invalid user test from 37.139.13.105 port 48634	2019-08-30 08:12:41
attack	Aug 29 18:57:11 work-partkepr sshd\[12654\]: Invalid user test from 37.139.13.105 port 40144 Aug 29 18:57:11 work-partkepr sshd\[12654\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 ...	2019-08-30 03:08:10
attack	2019-08-24T23:31:04.204192wiz-ks3 sshd[25513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 user=root 2019-08-24T23:31:05.662405wiz-ks3 sshd[25513]: Failed password for root from 37.139.13.105 port 32914 ssh2 2019-08-24T23:35:46.796103wiz-ks3 sshd[25546]: Invalid user radvd from 37.139.13.105 port 57222 2019-08-24T23:35:46.798222wiz-ks3 sshd[25546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 2019-08-24T23:35:46.796103wiz-ks3 sshd[25546]: Invalid user radvd from 37.139.13.105 port 57222 2019-08-24T23:35:48.637647wiz-ks3 sshd[25546]: Failed password for invalid user radvd from 37.139.13.105 port 57222 ssh2 2019-08-24T23:40:54.503620wiz-ks3 sshd[25580]: Invalid user jean from 37.139.13.105 port 54128 2019-08-24T23:40:54.505670wiz-ks3 sshd[25580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.13.105 2019-08-24T23:40:54.503620wiz-ks3 sshd[25580]: Inva	2019-08-29 11:09:06
attackbotsspam	<6 unauthorized SSH connections	2019-08-26 15:45:37
attackspam	Aug 25 14:48:08 [HOSTNAME] sshd[2645]: User removed from 37.139.13.105 not allowed because not listed in AllowUsers Aug 25 14:53:00 [HOSTNAME] sshd[2683]: Invalid user photo from 37.139.13.105 port 47748 Aug 25 14:58:18 [HOSTNAME] sshd[2719]: Invalid user angel from 37.139.13.105 port 44948 ...	2019-08-25 21:11:15
attackspambots	Aug 23 14:49:14 alx-lms-prod01 sshd\[9594\]: Invalid user anne from 37.139.13.105 Aug 23 14:55:52 alx-lms-prod01 sshd\[13712\]: Invalid user lnx from 37.139.13.105 Aug 23 17:02:13 alx-lms-prod01 sshd\[16962\]: Invalid user valid from 37.139.13.105 ...	2019-08-24 01:42:02

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 37.139.13.105
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5677
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;37.139.13.105.			IN	A

;; AUTHORITY SECTION:
.			2502	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019032900 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Mar 29 15:45:57 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 105.13.139.37.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 105.13.139.37.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
85.105.241.46	attack	09/29/2019-22:49:33.031177 85.105.241.46 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 90	2019-09-30 07:39:38
95.217.13.119	attack	Port scan on 18 port(s): 200 800 3333 4012 4014 5003 5801 7004 7777 8084 8106 8580 8778 8881 9999 34567 50030 51510	2019-09-30 07:06:24
218.92.0.192	attackbotsspam	Sep 30 01:09:11 legacy sshd[29242]: Failed password for root from 218.92.0.192 port 12793 ssh2 Sep 30 01:09:54 legacy sshd[29248]: Failed password for root from 218.92.0.192 port 27041 ssh2 ...	2019-09-30 07:28:39
185.216.140.252	attackspam	09/29/2019-19:27:18.510946 185.216.140.252 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-09-30 07:36:38
114.143.132.178	attack	Unauthorised access (Sep 29) SRC=114.143.132.178 LEN=48 PREC=0x20 TTL=106 ID=26428 DF TCP DPT=445 WINDOW=8192 SYN	2019-09-30 07:34:48
164.52.24.162	attackspam	firewall-block, port(s): 443/tcp	2019-09-30 07:05:54
121.222.67.85	attackspambots	firewall-block, port(s): 9090/tcp	2019-09-30 07:09:27
150.95.109.183	attackspambots	Sep 30 00:59:55 tux-35-217 sshd\[19223\]: Invalid user admin from 150.95.109.183 port 22192 Sep 30 00:59:55 tux-35-217 sshd\[19223\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.95.109.183 Sep 30 00:59:57 tux-35-217 sshd\[19223\]: Failed password for invalid user admin from 150.95.109.183 port 22192 ssh2 Sep 30 01:04:30 tux-35-217 sshd\[19241\]: Invalid user j2deployer from 150.95.109.183 port 61606 Sep 30 01:04:30 tux-35-217 sshd\[19241\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.95.109.183 ...	2019-09-30 07:37:11
195.223.54.18	attackbots	Sep 30 00:33:56 srv206 sshd[21728]: Invalid user lynda from 195.223.54.18 ...	2019-09-30 07:42:41
103.133.105.245	attackbotsspam	3389/tcp [2019-09-29]1pkt	2019-09-30 07:04:16
103.76.21.181	attack	(sshd) Failed SSH login from 103.76.21.181 (ID/Indonesia/North Sumatra/Medan/-/[AS23947 PT.Mora Telematika Indonesia]): 1 in the last 3600 secs	2019-09-30 07:20:10
42.117.26.142	attackbots	23/tcp [2019-09-29]1pkt	2019-09-30 07:26:10
130.61.121.105	attackspambots	Sep 29 19:05:32 plusreed sshd[5137]: Invalid user glenn from 130.61.121.105 ...	2019-09-30 07:17:42
212.64.44.69	attackspambots	Sep 29 23:23:34 www_kotimaassa_fi sshd[15625]: Failed password for root from 212.64.44.69 port 36740 ssh2 ...	2019-09-30 07:40:01
140.148.227.92	attackspam	Sep 29 20:49:20 hermescis postfix/smtpd\[26486\]: NOQUEUE: reject: RCPT from unknown\[140.148.227.92\]: 550 5.1.1 \: Recipient address rejected:* from=\ to=\ proto=ESMTP helo=\	2019-09-30 07:42:16

最近上报的IP列表

81.139.60.251	37.187.0.20	5.196.75.178	220.130.221.140
218.89.241.68	217.182.95.16	207.154.215.236	206.189.145.152
201.17.130.197	181.129.14.218	165.227.150.158	142.93.74.45
140.143.25.35	132.248.52.241	129.204.108.143	128.134.30.40
122.166.14.59	119.254.100.209	114.255.211.1	111.230.110.87