必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.104.252.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10895
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;109.104.252.117.		IN	A

;; AUTHORITY SECTION:
.			261	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022801 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 01 03:45:37 CST 2022
;; MSG SIZE  rcvd: 108
HOST信息:
Host 117.252.104.109.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 117.252.104.109.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
91.121.205.83 attackspambots
<6 unauthorized SSH connections
2020-09-11 16:06:39
141.98.80.58 attackspam
Automatic report - Banned IP Access
2020-09-11 15:42:15
94.102.49.159 attack
Sep 11 08:57:32 *hidden* kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.49.159 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=10669 PROTO=TCP SPT=47087 DPT=45524 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 11 08:59:11 *hidden* kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.49.159 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=11888 PROTO=TCP SPT=47087 DPT=43093 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 11 09:01:42 *hidden* kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.49.159 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=54909 PROTO=TCP SPT=47087 DPT=44686 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 11 09:19:07 *hidden* kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.49.159 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=16272 PROTO=TCP SPT=47087 DPT=42148 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 11 09:22:07 
...
2020-09-11 15:52:51
45.55.224.209 attackbots
2020-09-11T07:09:09.015832galaxy.wi.uni-potsdam.de sshd[24992]: Invalid user z from 45.55.224.209 port 53536
2020-09-11T07:09:10.773036galaxy.wi.uni-potsdam.de sshd[24992]: Failed password for invalid user z from 45.55.224.209 port 53536 ssh2
2020-09-11T07:11:10.048183galaxy.wi.uni-potsdam.de sshd[25317]: Invalid user slcinc from 45.55.224.209 port 42115
2020-09-11T07:11:10.050044galaxy.wi.uni-potsdam.de sshd[25317]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.224.209
2020-09-11T07:11:10.048183galaxy.wi.uni-potsdam.de sshd[25317]: Invalid user slcinc from 45.55.224.209 port 42115
2020-09-11T07:11:12.085989galaxy.wi.uni-potsdam.de sshd[25317]: Failed password for invalid user slcinc from 45.55.224.209 port 42115 ssh2
2020-09-11T07:13:09.068718galaxy.wi.uni-potsdam.de sshd[25591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.224.209  user=root
2020-09-11T07:13:11.109514galaxy.wi.uni-potsdam
...
2020-09-11 16:17:57
37.57.82.137 attack
Lines containing failures of 37.57.82.137 (max 1000)
Sep 10 15:54:16 UTC__SANYALnet-Labs__cac1 sshd[27968]: Connection from 37.57.82.137 port 44422 on 64.137.179.160 port 22
Sep 10 15:54:16 UTC__SANYALnet-Labs__cac1 sshd[27970]: Connection from 37.57.82.137 port 44616 on 64.137.179.160 port 22
Sep 10 15:54:19 UTC__SANYALnet-Labs__cac1 sshd[27970]: Address 37.57.82.137 maps to 137.82.57.37.triolan.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!
Sep 10 15:54:19 UTC__SANYALnet-Labs__cac1 sshd[27970]: User r.r from 37.57.82.137 not allowed because not listed in AllowUsers
Sep 10 15:54:19 UTC__SANYALnet-Labs__cac1 sshd[27970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.57.82.137  user=r.r
Sep 10 15:54:21 UTC__SANYALnet-Labs__cac1 sshd[27970]: Failed password for invalid user r.r from 37.57.82.137 port 44616 ssh2
Sep 10 15:54:21 UTC__SANYALnet-Labs__cac1 sshd[27970]: Connection closed by 37.57.82.137 p........
------------------------------
2020-09-11 15:41:11
49.88.112.70 attack
2020-09-11T02:58:37.892996shield sshd\[23599\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.70  user=root
2020-09-11T02:58:40.121194shield sshd\[23599\]: Failed password for root from 49.88.112.70 port 16677 ssh2
2020-09-11T02:58:43.016699shield sshd\[23599\]: Failed password for root from 49.88.112.70 port 16677 ssh2
2020-09-11T02:58:45.325040shield sshd\[23599\]: Failed password for root from 49.88.112.70 port 16677 ssh2
2020-09-11T03:00:34.775116shield sshd\[24136\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.70  user=root
2020-09-11 16:02:03
27.50.48.186 attackbots
Sep  9 00:02:57 server sshd[20372]: Address 27.50.48.186 maps to smtp-4.rolexinsider.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!
Sep  9 00:02:57 server sshd[20372]: Connection closed by 27.50.48.186 [preauth]
Sep  9 00:02:59 server sshd[20374]: Address 27.50.48.186 maps to smtp-4.rolexinsider.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!
Sep  9 00:02:59 server sshd[20374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.50.48.186  user=r.r
Sep  9 00:03:00 server sshd[20374]: Failed password for r.r from 27.50.48.186 port 39076 ssh2
Sep  9 00:03:02 server sshd[20374]: Failed password for r.r from 27.50.48.186 port 39076 ssh2
Sep  9 00:03:04 server sshd[20374]: Failed password for r.r from 27.50.48.186 port 39076 ssh2
Sep  9 00:03:07 server sshd[20374]: Failed password for r.r from 27.50.48.186 port 39076 ssh2
Sep  9 00:03:09 server sshd[20374]: Failed password for r.r........
-------------------------------
2020-09-11 15:57:59
142.93.100.171 attackspambots
Sep 11 06:44:01 localhost sshd[2398706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.100.171 
Sep 11 06:44:01 localhost sshd[2398706]: Invalid user carter from 142.93.100.171 port 55218
Sep 11 06:44:03 localhost sshd[2398706]: Failed password for invalid user carter from 142.93.100.171 port 55218 ssh2
Sep 11 06:47:54 localhost sshd[2406558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.100.171  user=root
Sep 11 06:47:56 localhost sshd[2406558]: Failed password for root from 142.93.100.171 port 40184 ssh2
...
2020-09-11 16:08:23
83.143.86.62 attackspam
"Found User-Agent associated with security scanner - Matched Data: zgrab found within REQUEST_HEADERS:User-Agent: mozilla/5.0 zgrab/0.x"
2020-09-11 15:53:41
121.201.107.32 attackspam
[portscan] tcp/25 [smtp]
[scan/connect: 3 time(s)]
in blocklist.de:'listed [sasl]'
*(RWIN=29200)(09110913)
2020-09-11 16:13:43
114.4.227.194 attackbotsspam
 TCP (SYN) 114.4.227.194:59733 -> port 14619, len 44
2020-09-11 16:17:15
176.31.226.188 attackbotsspam
Scanned 1 times in the last 24 hours on port 5060
2020-09-11 15:55:23
94.228.182.244 attack
...
2020-09-11 15:47:31
203.163.244.6 attackspambots
DATE:2020-09-10 18:54:56, IP:203.163.244.6, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)
2020-09-11 16:01:06
23.129.64.200 attackbotsspam
2020-09-11T07:54[Censored Hostname] sshd[18584]: Failed password for root from 23.129.64.200 port 29346 ssh2
2020-09-11T07:54[Censored Hostname] sshd[18584]: Failed password for root from 23.129.64.200 port 29346 ssh2
2020-09-11T07:54[Censored Hostname] sshd[18584]: Failed password for root from 23.129.64.200 port 29346 ssh2[...]
2020-09-11 16:14:56

最近上报的IP列表

109.104.252.113 109.104.252.126 109.104.252.118 109.104.252.12
109.104.252.128 109.104.252.130 109.104.252.121 109.104.252.138
109.104.252.14 109.104.252.141 109.104.252.144 109.104.252.151
109.104.252.157 109.104.252.146 109.104.252.152 109.104.252.154
109.104.252.163 109.104.252.160 109.104.252.165 109.104.252.158