37.104.2.221 - IPInfo

Basic Info

City: Riyadh

Region: Riyadh Region

Country: Saudi Arabia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
37.104.210.184	attack	$f2bV_matches	2020-03-20 19:33:04
37.104.252.43	attackspambots	Jul 18 03:27:13 server postfix/smtpd[19730]: NOQUEUE: reject: RCPT from unknown[37.104.252.43]: 554 5.7.1 Service unavailable; Client host [37.104.252.43] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/37.104.252.43; from= to= proto=ESMTP helo=<[37.104.252.43]>	2019-07-18 11:10:31
37.104.247.12	attackspambots	Lines containing failures of 37.104.247.12 Jul 13 16:56:54 mellenthin postfix/smtpd[5323]: connect from unknown[37.104.247.12] Jul x@x Jul 13 16:56:54 mellenthin postfix/smtpd[5323]: lost connection after DATA from unknown[37.104.247.12] Jul 13 16:56:54 mellenthin postfix/smtpd[5323]: disconnect from unknown[37.104.247.12] ehlo=1 mail=1 rcpt=0/1 data=0/1 commands=2/4 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=37.104.247.12	2019-07-14 07:38:58
37.104.227.44	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 02:31:21,951 INFO [amun_request_handler] PortScan Detected on Port: 445 (37.104.227.44)	2019-07-11 16:23:07
37.104.236.29	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(06240931)	2019-06-25 06:02:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 37.104.2.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52184
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;37.104.2.221.			IN	A

;; AUTHORITY SECTION:
.			132	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020200 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 02 17:50:35 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 221.2.104.37.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 221.2.104.37.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
157.245.217.80	attackbotsspam	Mar 7 01:15:20 MK-Soft-VM3 sshd[21037]: Failed password for root from 157.245.217.80 port 41694 ssh2 ...	2020-03-07 08:55:50
39.104.133.74	attackbotsspam	Mar 6 22:43:59 Horstpolice sshd[2579]: Invalid user sphinx from 39.104.133.74 port 7310 Mar 6 22:43:59 Horstpolice sshd[2579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.104.133.74 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=39.104.133.74	2020-03-07 08:53:47
189.113.185.114	attack	1583532169 - 03/06/2020 23:02:49 Host: 189.113.185.114/189.113.185.114 Port: 445 TCP Blocked	2020-03-07 08:53:16
78.128.113.93	attackbots	2020-03-07T00:59:32.504581beta postfix/smtpd[11917]: warning: unknown[78.128.113.93]: SASL LOGIN authentication failed: authentication failure 2020-03-07T00:59:35.916760beta postfix/smtpd[11917]: warning: unknown[78.128.113.93]: SASL LOGIN authentication failed: authentication failure 2020-03-07T01:00:49.453898beta postfix/smtpd[11917]: warning: unknown[78.128.113.93]: SASL LOGIN authentication failed: authentication failure ...	2020-03-07 09:06:05
183.120.206.231	attackbots	" "	2020-03-07 09:10:49
94.191.50.139	attackspambots	$f2bV_matches	2020-03-07 08:50:22
185.2.140.155	attackspam	2020-03-06T17:03:33.461424linuxbox-skyline sshd[9402]: Invalid user update from 185.2.140.155 port 43420 ...	2020-03-07 08:51:57
222.186.175.148	attack	Mar 7 08:15:01 webhost01 sshd[28176]: Failed password for root from 222.186.175.148 port 37548 ssh2 Mar 7 08:15:12 webhost01 sshd[28176]: error: maximum authentication attempts exceeded for root from 222.186.175.148 port 37548 ssh2 [preauth] ...	2020-03-07 09:16:34
45.232.20.65	attackspambots	Email rejected due to spam filtering	2020-03-07 09:20:05
121.242.140.66	attack	Unauthorized connection attempt from IP address 121.242.140.66 on Port 445(SMB)	2020-03-07 09:01:45
222.186.30.76	attack	Mar 7 01:40:04 vpn01 sshd[14066]: Failed password for root from 222.186.30.76 port 64419 ssh2 Mar 7 01:40:07 vpn01 sshd[14066]: Failed password for root from 222.186.30.76 port 64419 ssh2 ...	2020-03-07 08:45:54
36.71.232.21	attack	Unauthorized connection attempt from IP address 36.71.232.21 on Port 445(SMB)	2020-03-07 09:10:17
112.35.27.98	attack	Mar 6 22:55:10 srv-ubuntu-dev3 sshd[7970]: Invalid user hongli from 112.35.27.98 Mar 6 22:55:10 srv-ubuntu-dev3 sshd[7970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.35.27.98 Mar 6 22:55:10 srv-ubuntu-dev3 sshd[7970]: Invalid user hongli from 112.35.27.98 Mar 6 22:55:13 srv-ubuntu-dev3 sshd[7970]: Failed password for invalid user hongli from 112.35.27.98 port 52542 ssh2 Mar 6 22:58:55 srv-ubuntu-dev3 sshd[8546]: Invalid user yamashita from 112.35.27.98 Mar 6 22:58:55 srv-ubuntu-dev3 sshd[8546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.35.27.98 Mar 6 22:58:55 srv-ubuntu-dev3 sshd[8546]: Invalid user yamashita from 112.35.27.98 Mar 6 22:58:57 srv-ubuntu-dev3 sshd[8546]: Failed password for invalid user yamashita from 112.35.27.98 port 50776 ssh2 Mar 6 23:02:47 srv-ubuntu-dev3 sshd[9201]: Invalid user mssql from 112.35.27.98 ...	2020-03-07 08:56:52
111.67.195.165	attackspam	Mar 7 01:04:08 dev0-dcde-rnet sshd[19936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.195.165 Mar 7 01:04:10 dev0-dcde-rnet sshd[19936]: Failed password for invalid user osmc from 111.67.195.165 port 36796 ssh2 Mar 7 01:06:25 dev0-dcde-rnet sshd[19959]: Failed password for root from 111.67.195.165 port 41352 ssh2	2020-03-07 09:02:15
203.189.206.109	attackbots	Mar 7 00:11:18 l03 sshd[1150]: Invalid user ubuntu from 203.189.206.109 port 36212 ...	2020-03-07 09:09:11

Recently Reported IPs

43.151.244.91	6.54.178.234	55.92.162.59	206.189.145.43
219.148.217.51	111.223.143.245	48.169.178.86	76.62.49.66
85.125.127.19	206.189.145.34	18.184.97.222	5.3.67.121
214.17.74.17	34.122.210.145	170.128.91.150	177.199.16.186
100.207.28.92	41.21.228.55	103.154.20.176	240.98.252.71