37.139.8.104 - IPInfo

基本信息:

城市(city): Amsterdam

省份(region): North Holland

国家(country): Netherlands

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	CMS (WordPress or Joomla) login attempt.	2020-08-21 23:03:57
attackspambots	REQUESTED PAGE: /wp-login.php	2020-06-04 13:40:56
attackspambots	xmlrpc attack	2019-10-17 07:11:02
attackspam	Automatic report - Banned IP Access	2019-08-21 05:42:58

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 37.139.8.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61260
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;37.139.8.104.			IN	A

;; AUTHORITY SECTION:
.			3055	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061300 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jun 14 00:15:48 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 104.8.139.37.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 104.8.139.37.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
103.36.103.48	attack	2020-06-13T13:14:38.246852shield sshd\[8795\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.36.103.48 user=root 2020-06-13T13:14:40.208623shield sshd\[8795\]: Failed password for root from 103.36.103.48 port 57068 ssh2 2020-06-13T13:17:50.954922shield sshd\[9950\]: Invalid user amax from 103.36.103.48 port 52012 2020-06-13T13:17:50.958667shield sshd\[9950\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.36.103.48 2020-06-13T13:17:53.276905shield sshd\[9950\]: Failed password for invalid user amax from 103.36.103.48 port 52012 ssh2	2020-06-13 21:32:26
196.65.250.186	attackbots	1592051266 - 06/13/2020 14:27:46 Host: 196.65.250.186/196.65.250.186 Port: 445 TCP Blocked	2020-06-13 21:30:49
189.157.11.249	attack	1592051315 - 06/13/2020 14:28:35 Host: 189.157.11.249/189.157.11.249 Port: 445 TCP Blocked	2020-06-13 20:53:04
165.227.198.144	attackbotsspam	$f2bV_matches	2020-06-13 21:00:54
79.139.56.217	attackspambots	DATE:2020-06-13 14:27:49, IP:79.139.56.217, PORT:1433 - MSSQL brute force auth on a honeypot server (epe-dc)	2020-06-13 21:28:33
192.241.246.167	attack	Jun 13 14:40:24 vps sshd[811791]: Failed password for invalid user eswar from 192.241.246.167 port 12052 ssh2 Jun 13 14:42:43 vps sshd[819848]: Invalid user quantip from 192.241.246.167 port 31131 Jun 13 14:42:43 vps sshd[819848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.246.167 Jun 13 14:42:45 vps sshd[819848]: Failed password for invalid user quantip from 192.241.246.167 port 31131 ssh2 Jun 13 14:45:03 vps sshd[829111]: Invalid user ydx from 192.241.246.167 port 50210 ...	2020-06-13 20:58:24
222.186.175.216	attackbots	Jun 13 15:16:04 cosmoit sshd[9232]: Failed password for root from 222.186.175.216 port 28034 ssh2	2020-06-13 21:24:13
138.197.5.191	attackbotsspam	$f2bV_matches	2020-06-13 21:10:31
176.110.42.161	attackbotsspam	Jun 13 14:27:51 serwer sshd\[9120\]: Invalid user storage from 176.110.42.161 port 54242 Jun 13 14:27:51 serwer sshd\[9120\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.110.42.161 Jun 13 14:27:53 serwer sshd\[9120\]: Failed password for invalid user storage from 176.110.42.161 port 54242 ssh2 ...	2020-06-13 21:22:59
218.92.0.172	attack	Jun 13 08:36:05 NPSTNNYC01T sshd[20526]: Failed password for root from 218.92.0.172 port 7838 ssh2 Jun 13 08:36:08 NPSTNNYC01T sshd[20526]: Failed password for root from 218.92.0.172 port 7838 ssh2 Jun 13 08:36:11 NPSTNNYC01T sshd[20526]: Failed password for root from 218.92.0.172 port 7838 ssh2 Jun 13 08:36:14 NPSTNNYC01T sshd[20526]: Failed password for root from 218.92.0.172 port 7838 ssh2 ...	2020-06-13 20:55:27
54.39.138.251	attackspam	Jun 13 05:49:55 dignus sshd[8636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.138.251 user=root Jun 13 05:49:57 dignus sshd[8636]: Failed password for root from 54.39.138.251 port 55840 ssh2 Jun 13 05:52:42 dignus sshd[8898]: Invalid user sunsf from 54.39.138.251 port 47154 Jun 13 05:52:42 dignus sshd[8898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.138.251 Jun 13 05:52:44 dignus sshd[8898]: Failed password for invalid user sunsf from 54.39.138.251 port 47154 ssh2 ...	2020-06-13 20:57:51
222.186.175.215	attackbots	2020-06-13T15:42:43.263927lavrinenko.info sshd[7046]: Failed password for root from 222.186.175.215 port 27272 ssh2 2020-06-13T15:42:46.667848lavrinenko.info sshd[7046]: Failed password for root from 222.186.175.215 port 27272 ssh2 2020-06-13T15:42:51.402762lavrinenko.info sshd[7046]: Failed password for root from 222.186.175.215 port 27272 ssh2 2020-06-13T15:42:56.665392lavrinenko.info sshd[7046]: Failed password for root from 222.186.175.215 port 27272 ssh2 2020-06-13T15:43:01.388079lavrinenko.info sshd[7046]: Failed password for root from 222.186.175.215 port 27272 ssh2 ...	2020-06-13 20:51:59
194.28.50.114	attackspambots	$f2bV_matches	2020-06-13 21:32:47
51.15.118.114	attackspambots	(sshd) Failed SSH login from 51.15.118.114 (NL/Netherlands/114-118-15-51.rev.cloud.scaleway.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 13 14:17:34 amsweb01 sshd[24737]: Invalid user soyinka from 51.15.118.114 port 45410 Jun 13 14:17:35 amsweb01 sshd[24737]: Failed password for invalid user soyinka from 51.15.118.114 port 45410 ssh2 Jun 13 14:25:23 amsweb01 sshd[26069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.118.114 user=root Jun 13 14:25:25 amsweb01 sshd[26069]: Failed password for root from 51.15.118.114 port 34176 ssh2 Jun 13 14:28:28 amsweb01 sshd[26452]: Invalid user gg from 51.15.118.114 port 33930	2020-06-13 20:57:17
167.86.99.106	attackspam	SSH Brute-Force reported by Fail2Ban	2020-06-13 21:28:04

最近上报的IP列表

36.81.7.198	61.22.41.117	144.156.155.123	36.228.23.223
90.63.119.207	70.213.215.188	201.16.129.68	117.80.16.210
207.107.86.56	152.214.200.17	215.175.237.206	174.29.9.77
36.17.81.148	28.171.120.171	159.197.160.141	237.97.39.221
58.251.160.35	69.153.222.205	51.38.191.87	186.207.213.57