37.139.8.104 - IPInfo

基本信息:

城市(city): Amsterdam

省份(region): North Holland

国家(country): Netherlands

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	CMS (WordPress or Joomla) login attempt.	2020-08-21 23:03:57
attackspambots	REQUESTED PAGE: /wp-login.php	2020-06-04 13:40:56
attackspambots	xmlrpc attack	2019-10-17 07:11:02
attackspam	Automatic report - Banned IP Access	2019-08-21 05:42:58

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 37.139.8.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61260
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;37.139.8.104.			IN	A

;; AUTHORITY SECTION:
.			3055	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061300 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jun 14 00:15:48 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 104.8.139.37.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 104.8.139.37.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.52.106.61	attackbotsspam	May 11 14:30:59 OPSO sshd\[2504\]: Invalid user jett from 106.52.106.61 port 36292 May 11 14:30:59 OPSO sshd\[2504\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.106.61 May 11 14:31:00 OPSO sshd\[2504\]: Failed password for invalid user jett from 106.52.106.61 port 36292 ssh2 May 11 14:32:40 OPSO sshd\[2613\]: Invalid user eam from 106.52.106.61 port 58014 May 11 14:32:40 OPSO sshd\[2613\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.106.61	2020-05-11 23:39:52
138.68.94.142	attackbotsspam	May 11 17:09:51 OPSO sshd\[27570\]: Invalid user deploy from 138.68.94.142 port 39868 May 11 17:09:51 OPSO sshd\[27570\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.94.142 May 11 17:09:53 OPSO sshd\[27570\]: Failed password for invalid user deploy from 138.68.94.142 port 39868 ssh2 May 11 17:17:34 OPSO sshd\[28725\]: Invalid user support from 138.68.94.142 port 44447 May 11 17:17:34 OPSO sshd\[28725\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.94.142	2020-05-11 23:47:28
93.174.93.195	attackspambots	05/11/2020-11:29:41.400001 93.174.93.195 Protocol: 17 ET DROP Dshield Block Listed Source group 1	2020-05-11 23:46:13
106.12.3.28	attackbots	Fail2Ban - SSH Bruteforce Attempt	2020-05-11 23:43:44
140.143.233.133	attackspam	May 11 14:46:02 vps687878 sshd\[28955\]: Failed password for invalid user user from 140.143.233.133 port 41078 ssh2 May 11 14:50:43 vps687878 sshd\[29405\]: Invalid user deluge from 140.143.233.133 port 37272 May 11 14:50:43 vps687878 sshd\[29405\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.233.133 May 11 14:50:45 vps687878 sshd\[29405\]: Failed password for invalid user deluge from 140.143.233.133 port 37272 ssh2 May 11 14:55:33 vps687878 sshd\[29812\]: Invalid user user from 140.143.233.133 port 33470 May 11 14:55:33 vps687878 sshd\[29812\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.233.133 ...	2020-05-11 23:37:14
106.13.73.59	attackspambots	May 11 13:57:02 ns382633 sshd\[3032\]: Invalid user paula from 106.13.73.59 port 33800 May 11 13:57:02 ns382633 sshd\[3032\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.73.59 May 11 13:57:04 ns382633 sshd\[3032\]: Failed password for invalid user paula from 106.13.73.59 port 33800 ssh2 May 11 14:05:34 ns382633 sshd\[4888\]: Invalid user ftpuser from 106.13.73.59 port 60454 May 11 14:05:34 ns382633 sshd\[4888\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.73.59	2020-05-12 00:06:29
37.139.1.197	attackspambots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-05-12 00:00:13
27.72.146.60	attackspambots	Icarus honeypot on github	2020-05-11 23:50:45
68.48.247.106	attack	May 11 16:53:11 rotator sshd\[5512\]: Invalid user batch from 68.48.247.106May 11 16:53:13 rotator sshd\[5512\]: Failed password for invalid user batch from 68.48.247.106 port 34949 ssh2May 11 16:57:46 rotator sshd\[6281\]: Invalid user composer from 68.48.247.106May 11 16:57:47 rotator sshd\[6281\]: Failed password for invalid user composer from 68.48.247.106 port 42973 ssh2May 11 17:01:19 rotator sshd\[7075\]: Invalid user admin from 68.48.247.106May 11 17:01:21 rotator sshd\[7075\]: Failed password for invalid user admin from 68.48.247.106 port 47545 ssh2 ...	2020-05-11 23:57:41
114.67.80.217	attackspambots	May 11 14:01:04 srv01 sshd[15641]: Invalid user deploy from 114.67.80.217 port 55412 May 11 14:01:04 srv01 sshd[15641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.217 May 11 14:01:04 srv01 sshd[15641]: Invalid user deploy from 114.67.80.217 port 55412 May 11 14:01:05 srv01 sshd[15641]: Failed password for invalid user deploy from 114.67.80.217 port 55412 ssh2 May 11 14:05:25 srv01 sshd[16668]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.217 user=postgres May 11 14:05:27 srv01 sshd[16668]: Failed password for postgres from 114.67.80.217 port 53368 ssh2 ...	2020-05-12 00:14:49
45.142.195.6	attack	$f2bV_matches	2020-05-12 00:18:05
68.183.232.132	attack	May 11 17:28:40 DAAP sshd[32633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.232.132 user=root May 11 17:28:42 DAAP sshd[32633]: Failed password for root from 68.183.232.132 port 56784 ssh2 May 11 17:34:37 DAAP sshd[32694]: Invalid user user from 68.183.232.132 port 58172 May 11 17:34:37 DAAP sshd[32694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.232.132 May 11 17:34:37 DAAP sshd[32694]: Invalid user user from 68.183.232.132 port 58172 May 11 17:34:40 DAAP sshd[32694]: Failed password for invalid user user from 68.183.232.132 port 58172 ssh2 ...	2020-05-12 00:21:55
151.101.38.214	attackspambots	05/11/2020-18:20:35.907440 151.101.38.214 Protocol: 6 SURICATA TLS invalid record/traffic	2020-05-12 00:23:55
182.148.55.93	attackspambots	" "	2020-05-11 23:51:20
222.186.180.147	attack	May 11 15:32:12 ip-172-31-62-245 sshd\[13162\]: Failed password for root from 222.186.180.147 port 17136 ssh2\ May 11 15:32:26 ip-172-31-62-245 sshd\[13162\]: Failed password for root from 222.186.180.147 port 17136 ssh2\ May 11 15:32:35 ip-172-31-62-245 sshd\[13168\]: Failed password for root from 222.186.180.147 port 34514 ssh2\ May 11 15:32:38 ip-172-31-62-245 sshd\[13168\]: Failed password for root from 222.186.180.147 port 34514 ssh2\ May 11 15:32:41 ip-172-31-62-245 sshd\[13168\]: Failed password for root from 222.186.180.147 port 34514 ssh2\	2020-05-11 23:38:40

最近上报的IP列表

36.81.7.198	61.22.41.117	144.156.155.123	36.228.23.223
90.63.119.207	70.213.215.188	201.16.129.68	117.80.16.210
207.107.86.56	152.214.200.17	215.175.237.206	174.29.9.77
36.17.81.148	28.171.120.171	159.197.160.141	237.97.39.221
58.251.160.35	69.153.222.205	51.38.191.87	186.207.213.57