104.40.4.51 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Microsoft Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	$f2bV_matches	2019-11-07 23:58:24
attack	Nov 7 02:17:20 hosting sshd[15916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51 user=root Nov 7 02:17:22 hosting sshd[15916]: Failed password for root from 104.40.4.51 port 20416 ssh2 ...	2019-11-07 07:55:10
attackspambots	Nov 2 05:00:16 legacy sshd[12900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51 Nov 2 05:00:19 legacy sshd[12900]: Failed password for invalid user wz from 104.40.4.51 port 22144 ssh2 Nov 2 05:03:59 legacy sshd[12964]: Failed password for root from 104.40.4.51 port 22144 ssh2 ...	2019-11-02 12:22:12
attack	Oct 29 04:54:51 MK-Soft-VM4 sshd[20405]: Failed password for root from 104.40.4.51 port 19392 ssh2 ...	2019-10-29 12:22:27
attackbots	Oct 27 03:58:45 www_kotimaassa_fi sshd[22659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51 Oct 27 03:58:47 www_kotimaassa_fi sshd[22659]: Failed password for invalid user frank from 104.40.4.51 port 29312 ssh2 ...	2019-10-27 12:12:56
attackspambots	'Fail2Ban'	2019-10-26 16:22:34
attack	Oct 20 18:12:11 herz-der-gamer sshd[30226]: Invalid user yang from 104.40.4.51 port 55552 Oct 20 18:12:11 herz-der-gamer sshd[30226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51 Oct 20 18:12:11 herz-der-gamer sshd[30226]: Invalid user yang from 104.40.4.51 port 55552 Oct 20 18:12:13 herz-der-gamer sshd[30226]: Failed password for invalid user yang from 104.40.4.51 port 55552 ssh2 ...	2019-10-21 01:04:53
attack	Oct 17 08:01:57 vpn01 sshd[19081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51 Oct 17 08:01:59 vpn01 sshd[19081]: Failed password for invalid user secadmin from 104.40.4.51 port 63808 ssh2 ...	2019-10-17 14:58:09
attackbots	Oct 1 07:33:34 server sshd\[400\]: Invalid user oracle from 104.40.4.51 port 17024 Oct 1 07:33:34 server sshd\[400\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51 Oct 1 07:33:37 server sshd\[400\]: Failed password for invalid user oracle from 104.40.4.51 port 17024 ssh2 Oct 1 07:41:39 server sshd\[22465\]: Invalid user ocstest1 from 104.40.4.51 port 43896 Oct 1 07:41:39 server sshd\[22465\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51	2019-10-01 12:56:59
attackspam	Sep 29 00:59:23 pkdns2 sshd\[1456\]: Invalid user dumitru from 104.40.4.51Sep 29 00:59:25 pkdns2 sshd\[1456\]: Failed password for invalid user dumitru from 104.40.4.51 port 29184 ssh2Sep 29 01:03:36 pkdns2 sshd\[1661\]: Invalid user chef from 104.40.4.51Sep 29 01:03:39 pkdns2 sshd\[1661\]: Failed password for invalid user chef from 104.40.4.51 port 29184 ssh2Sep 29 01:07:44 pkdns2 sshd\[1865\]: Invalid user guest from 104.40.4.51Sep 29 01:07:46 pkdns2 sshd\[1865\]: Failed password for invalid user guest from 104.40.4.51 port 29184 ssh2 ...	2019-09-29 06:26:20
attackspambots	F2B jail: sshd. Time: 2019-09-28 17:01:18, Reported by: VKReport	2019-09-28 23:18:05
attackbotsspam	Sep 27 22:21:50 php1 sshd\[15965\]: Invalid user Password from 104.40.4.51 Sep 27 22:21:50 php1 sshd\[15965\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51 Sep 27 22:21:52 php1 sshd\[15965\]: Failed password for invalid user Password from 104.40.4.51 port 54185 ssh2 Sep 27 22:27:34 php1 sshd\[16592\]: Invalid user 123 from 104.40.4.51 Sep 27 22:27:34 php1 sshd\[16592\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51	2019-09-28 16:32:25
attackbots	Sep 27 02:57:37 eddieflores sshd\[16924\]: Invalid user tech1234 from 104.40.4.51 Sep 27 02:57:37 eddieflores sshd\[16924\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51 Sep 27 02:57:38 eddieflores sshd\[16924\]: Failed password for invalid user tech1234 from 104.40.4.51 port 29184 ssh2 Sep 27 03:01:53 eddieflores sshd\[17307\]: Invalid user 123321 from 104.40.4.51 Sep 27 03:01:53 eddieflores sshd\[17307\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51	2019-09-28 01:48:05
attackspambots	Sep 26 00:35:10 hpm sshd\[13218\]: Invalid user postgres from 104.40.4.51 Sep 26 00:35:10 hpm sshd\[13218\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51 Sep 26 00:35:11 hpm sshd\[13218\]: Failed password for invalid user postgres from 104.40.4.51 port 29184 ssh2 Sep 26 00:39:28 hpm sshd\[13752\]: Invalid user oracle from 104.40.4.51 Sep 26 00:39:28 hpm sshd\[13752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51	2019-09-26 18:50:03
attackbotsspam	Sep 19 15:59:59 [snip] sshd[29522]: Invalid user bayonne from 104.40.4.51 port 44864 Sep 19 15:59:59 [snip] sshd[29522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51 Sep 19 16:00:02 [snip] sshd[29522]: Failed password for invalid user bayonne from 104.40.4.51 port 44864 ssh2[...]	2019-09-19 22:29:45
attackspam	Sep 17 03:15:53 ny01 sshd[29245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51 Sep 17 03:15:55 ny01 sshd[29245]: Failed password for invalid user webmail from 104.40.4.51 port 60224 ssh2 Sep 17 03:20:19 ny01 sshd[30070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51	2019-09-17 16:57:10
attack	Sep 15 08:59:29 core sshd[8384]: Invalid user blaa from 104.40.4.51 port 25664 Sep 15 08:59:31 core sshd[8384]: Failed password for invalid user blaa from 104.40.4.51 port 25664 ssh2 ...	2019-09-15 15:13:22
attackbotsspam	2019-09-11T10:04:50.908577abusebot-4.cloudsearch.cf sshd\[20281\]: Invalid user radio from 104.40.4.51 port 29440	2019-09-11 18:08:19
attackbotsspam	Automatic report - Banned IP Access	2019-08-26 07:53:41
attackspambots	Aug 25 19:48:59 meumeu sshd[27388]: Failed password for invalid user smceachern from 104.40.4.51 port 29184 ssh2 Aug 25 19:58:41 meumeu sshd[28511]: Failed password for invalid user jean from 104.40.4.51 port 29184 ssh2 ...	2019-08-26 02:19:19
attackbots	Aug 22 21:42:53 kapalua sshd\[18966\]: Invalid user pentaho from 104.40.4.51 Aug 22 21:42:53 kapalua sshd\[18966\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51 Aug 22 21:42:55 kapalua sshd\[18966\]: Failed password for invalid user pentaho from 104.40.4.51 port 18624 ssh2 Aug 22 21:47:17 kapalua sshd\[19436\]: Invalid user nginx from 104.40.4.51 Aug 22 21:47:17 kapalua sshd\[19436\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51	2019-08-23 16:04:30
attack	Aug 19 13:58:33 root sshd[10014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51 Aug 19 13:58:35 root sshd[10014]: Failed password for invalid user admin from 104.40.4.51 port 18624 ssh2 Aug 19 14:03:15 root sshd[10059]: Failed password for root from 104.40.4.51 port 18624 ssh2 ...	2019-08-19 20:09:22
attackspambots	Aug 17 05:15:53 TORMINT sshd\[26292\]: Invalid user gerrit2 from 104.40.4.51 Aug 17 05:15:53 TORMINT sshd\[26292\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51 Aug 17 05:15:55 TORMINT sshd\[26292\]: Failed password for invalid user gerrit2 from 104.40.4.51 port 18624 ssh2 ...	2019-08-17 17:32:32
attack	SSH Brute-Force reported by Fail2Ban	2019-06-29 19:51:39
attackbots	Jun 24 23:30:46 admin sshd[21154]: Bad protocol version identification '' from 104.40.4.51 port 18752 Jun 24 23:31:08 admin sshd[21180]: Invalid user ubnt from 104.40.4.51 port 18753 Jun 24 23:31:12 admin sshd[21180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51 Jun 24 23:31:14 admin sshd[21180]: Failed password for invalid user ubnt from 104.40.4.51 port 18753 ssh2 Jun 24 23:31:16 admin sshd[21180]: Connection closed by 104.40.4.51 port 18753 [preauth] Jun 24 23:33:08 admin sshd[21228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.51 user=r.r Jun 24 23:33:10 admin sshd[21228]: Failed password for r.r from 104.40.4.51 port 18752 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=104.40.4.51	2019-06-27 08:37:27

相同子网IP讨论:

IP	类型	评论内容	时间
104.40.4.156	attackbotsspam	Nov 1 07:33:59 vps647732 sshd[7913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.156 Nov 1 07:34:01 vps647732 sshd[7913]: Failed password for invalid user mammamia from 104.40.4.156 port 30720 ssh2 ...	2019-11-01 17:14:45
104.40.4.156	attackbotsspam	Oct 27 11:13:58 lnxmysql61 sshd[29374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.156	2019-10-27 19:41:41
104.40.4.156	attackspambots	SSHScan	2019-10-27 00:39:14
104.40.4.156	attackbots	Sep 19 13:28:29 rpi sshd[7223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.4.156 Sep 19 13:28:31 rpi sshd[7223]: Failed password for invalid user pass from 104.40.4.156 port 30848 ssh2	2019-09-19 19:40:13
104.40.49.47	attack	Sep 5 04:14:10 www2 sshd\[46583\]: Invalid user myftp from 104.40.49.47Sep 5 04:14:13 www2 sshd\[46583\]: Failed password for invalid user myftp from 104.40.49.47 port 55064 ssh2Sep 5 04:18:51 www2 sshd\[47114\]: Invalid user Password123 from 104.40.49.47 ...	2019-09-05 09:28:45
104.40.49.47	attack	Sep 4 07:25:59 markkoudstaal sshd[17854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.49.47 Sep 4 07:26:00 markkoudstaal sshd[17854]: Failed password for invalid user ruby from 104.40.49.47 port 50472 ssh2 Sep 4 07:30:34 markkoudstaal sshd[18328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.49.47	2019-09-04 20:22:42
104.40.4.156	attackspambots	2019-08-31T16:01:49.775370abusebot-3.cloudsearch.cf sshd\[17109\]: Invalid user provider from 104.40.4.156 port 31360	2019-09-01 02:15:51
104.40.49.47	attackspambots	Aug 19 12:44:32 dev0-dcfr-rnet sshd[30415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.49.47 Aug 19 12:44:34 dev0-dcfr-rnet sshd[30415]: Failed password for invalid user mirror05 from 104.40.49.47 port 58316 ssh2 Aug 19 12:49:20 dev0-dcfr-rnet sshd[30447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.49.47	2019-08-19 19:24:24
104.40.49.47	attack	Aug 18 19:42:55 motanud sshd\[19538\]: Invalid user submit from 104.40.49.47 port 44590 Aug 18 19:42:55 motanud sshd\[19538\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.49.47 Aug 18 19:42:57 motanud sshd\[19538\]: Failed password for invalid user submit from 104.40.49.47 port 44590 ssh2	2019-08-19 01:20:12
104.40.4.156	attack	2019-08-17T19:47:40.211220abusebot-7.cloudsearch.cf sshd\[3594\]: Invalid user kerri from 104.40.4.156 port 31360	2019-08-18 04:04:11
104.40.4.156	attackspam	DATE:2019-07-20_03:27:19, IP:104.40.4.156, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-07-20 15:40:11

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.40.4.51
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5417
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.40.4.51.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062602 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 27 08:37:22 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 51.4.40.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 51.4.40.104.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
219.76.200.27	attackspam	Failed password for invalid user prueba from 219.76.200.27 port 35722 ssh2	2020-09-04 15:53:29
182.75.159.22	attackbots	Sep 3 18:47:25 mellenthin postfix/smtpd[19006]: NOQUEUE: reject: RCPT from unknown[182.75.159.22]: 554 5.7.1 Service unavailable; Client host [182.75.159.22] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/182.75.159.22; from= to= proto=ESMTP helo=	2020-09-04 15:24:07
91.207.181.144	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-04 15:52:23
167.172.36.232	attackbots	Sep 4 04:42:52 electroncash sshd[5961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.36.232 Sep 4 04:42:52 electroncash sshd[5961]: Invalid user gpadmin from 167.172.36.232 port 36736 Sep 4 04:42:55 electroncash sshd[5961]: Failed password for invalid user gpadmin from 167.172.36.232 port 36736 ssh2 Sep 4 04:46:27 electroncash sshd[6908]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.36.232 user=root Sep 4 04:46:28 electroncash sshd[6908]: Failed password for root from 167.172.36.232 port 41982 ssh2 ...	2020-09-04 15:32:45
114.141.132.88	attackbots	Sep 4 03:41:36 Tower sshd[9952]: Connection from 114.141.132.88 port 44608 on 192.168.10.220 port 22 rdomain "" Sep 4 03:41:38 Tower sshd[9952]: Invalid user philip from 114.141.132.88 port 44608 Sep 4 03:41:38 Tower sshd[9952]: error: Could not get shadow information for NOUSER Sep 4 03:41:38 Tower sshd[9952]: Failed password for invalid user philip from 114.141.132.88 port 44608 ssh2 Sep 4 03:41:39 Tower sshd[9952]: Received disconnect from 114.141.132.88 port 44608:11: Bye Bye [preauth] Sep 4 03:41:39 Tower sshd[9952]: Disconnected from invalid user philip 114.141.132.88 port 44608 [preauth]	2020-09-04 15:56:57
81.68.118.120	attackbots	Invalid user zy from 81.68.118.120 port 52790	2020-09-04 15:22:59
82.55.217.156	attackspam	Sep 2 10:47:21 xxxx sshd[19700]: Invalid user pi from 82.55.217.156 Sep 2 10:47:21 xxxx sshd[19700]: Failed none for invalid user pi from 82.55.217.156 port 53156 ssh2 Sep 2 10:47:21 xxxx sshd[19702]: Invalid user pi from 82.55.217.156 Sep 2 10:47:21 xxxx sshd[19702]: Failed none for invalid user pi from 82.55.217.156 port 53158 ssh2 Sep 2 10:47:21 xxxx sshd[19700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-82-55-217-156.retail.telecomhostnamealia.hostname Sep 2 10:47:21 xxxx sshd[19702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-82-55-217-156.retail.telecomhostnamealia.hostname Sep 2 10:47:23 xxxx sshd[19700]: Failed password for invalid user pi from 82.55.217.156 port 53156 ssh2 Sep 2 10:47:23 xxxx sshd[19702]: Failed password for invalid user pi from 82.55.217.156 port 53158 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=82.55.217.156	2020-09-04 15:39:47
201.48.26.193	attackbotsspam	Honeypot attack, port: 445, PTR: 201-048-026-193.static.ctbctelecom.com.br.	2020-09-04 15:20:42
45.142.120.183	attackspam	SMTP Brute-Forcing	2020-09-04 15:40:18
73.186.246.242	attackbotsspam	Firewall Dropped Connection	2020-09-04 15:30:52
189.192.100.139	attack	Invalid user tzq from 189.192.100.139 port 56190	2020-09-04 15:27:04
61.177.172.128	attack	Sep 4 09:17:43 pve1 sshd[1725]: Failed password for root from 61.177.172.128 port 30008 ssh2 Sep 4 09:17:47 pve1 sshd[1725]: Failed password for root from 61.177.172.128 port 30008 ssh2 ...	2020-09-04 15:28:27
124.207.165.138	attack	Invalid user user from 124.207.165.138 port 46230	2020-09-04 15:50:45
104.206.128.42	attack	2020-09-03 18:59:53 Reject access to port(s):3389 1 times a day	2020-09-04 15:14:43
222.186.31.166	attackbots	SSH bruteforce	2020-09-04 15:20:18

最近上报的IP列表

193.242.151.217	37.1.222.169	190.206.252.205	189.112.238.170
46.176.52.86	156.67.202.248	45.13.39.120	42.236.10.73
94.100.50.196	79.203.75.86	109.201.154.134	37.49.224.138
128.199.219.121	109.201.152.21	109.201.154.211	7.193.73.36
46.166.190.153	198.64.117.1	126.211.161.131	29.101.53.183