104.131.8.187 Threat Intelligence and Host Information

Share on:
Mar 12, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Host and Network Information

  • Mitre ATT&CK IDs: T1110 - Brute Force
  • Tags: Bruteforce, Nextray, SSH, bruteforce, cowrie, cyber security, fail2ban, ioc, la, lafusioncenter, louisiana, malicious, phishing, ssh, tsec

  • View other sources: Spamhaus VirusTotal

  • Country: United States of America
  • Network: AS14061 digitalocean llc
  • Noticed: 50 times
  • Protcols Attacked: SSH
  • Countries Attacked: Australia, Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: 104-131-8-187.ipv4.nknlabs.io glutenbee.com

Open Ports Detected

22 443 80

CVEs Detected

CVE-2006-20001 CVE-2020-13674 CVE-2020-13675 CVE-2020-13676 CVE-2020-13677 CVE-2021-41164 CVE-2021-41165 CVE-2021-41183 CVE-2021-41184 CVE-2022-24728 CVE-2022-24729 CVE-2022-24775 CVE-2022-25270 CVE-2022-25271 CVE-2022-29248 CVE-2022-31042 CVE-2022-31043 CVE-2022-36760 CVE-2022-37436 CVE-2022-39261

Map

Whois Information

  • NetRange: 104.131.0.0 - 104.131.255.255
  • CIDR: 104.131.0.0/16
  • NetName: DIGITALOCEAN-104-131-0-0
  • NetHandle: NET-104-131-0-0-1
  • Parent: NET104 (NET-104-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS: AS14061
  • Organization: DigitalOcean, LLC (DO-13)
  • RegDate: 2014-06-02
  • Updated: 2020-04-03
  • Comment: Routing and Peering Policy can be found at https://www.as14061.net
  • Comment:
  • Ref: https://rdap.arin.net/registry/ip/104.131.0.0
  • OrgName: DigitalOcean, LLC
  • OrgId: DO-13
  • Address: 101 Ave of the Americas
  • Address: FL2
  • City: New York
  • StateProv: NY
  • PostalCode: 10013
  • Country: US
  • RegDate: 2012-05-14
  • Updated: 2022-05-19
  • Ref: https://rdap.arin.net/registry/entity/DO-13
  • OrgTechHandle: NOC32014-ARIN
  • OrgTechName: Network Operations Center
  • OrgTechPhone: +1-347-875-6044
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
  • OrgAbuseHandle: ABUSE5232-ARIN
  • OrgAbuseName: Abuse, DigitalOcean
  • OrgAbusePhone: +1-347-875-6044
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE5232-ARIN
  • OrgNOCHandle: NOC32014-ARIN
  • OrgNOCName: Network Operations Center
  • OrgNOCPhone: +1-347-875-6044
  • OrgNOCEmail: [email protected]
  • OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN

Links to attack logs

bruteforce-ip-list-2020-10-27 bruteforce-ip-list-2020-12-12 bruteforce-ip-list-2020-10-28

Links to attack logs

bruteforce-ip-list-2020-10-27 bruteforce-ip-list-2020-12-12 bruteforce-ip-list-2020-10-28