5.104.107.138 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): myLoc managed IT AG

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
5.104.107.28	attackspambots	fail2ban	2020-03-10 13:58:21
5.104.107.28	attackspambots	Dec 2 09:27:28 sd1 sshd[20599]: Invalid user bonsack from 5.104.107.28 Dec 2 09:27:30 sd1 sshd[20599]: Failed password for invalid user bonsack from 5.104.107.28 port 46626 ssh2 Dec 2 09:40:44 sd1 sshd[21170]: Invalid user ew from 5.104.107.28 Dec 2 09:40:46 sd1 sshd[21170]: Failed password for invalid user ew from 5.104.107.28 port 37958 ssh2 Dec 2 09:48:09 sd1 sshd[21440]: Invalid user test from 5.104.107.28 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=5.104.107.28	2019-12-02 19:29:44
5.104.107.28	attackspambots	2019-11-13T16:56:56.343569shield sshd\[13589\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=kvm-28.server-rapid-host.de user=root 2019-11-13T16:56:58.544343shield sshd\[13589\]: Failed password for root from 5.104.107.28 port 41286 ssh2 2019-11-13T17:02:30.692535shield sshd\[14313\]: Invalid user admin from 5.104.107.28 port 50472 2019-11-13T17:02:30.697082shield sshd\[14313\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=kvm-28.server-rapid-host.de 2019-11-13T17:02:33.424922shield sshd\[14313\]: Failed password for invalid user admin from 5.104.107.28 port 50472 ssh2	2019-11-14 05:37:19
5.104.107.143	attackbotsspam	Spam (kolistar.network, Jul 26 00:40)	2019-07-26 16:14:01

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.104.107.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10874
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.104.107.138.			IN	A

;; AUTHORITY SECTION:
.			1759	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061300 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 13 18:39:11 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

138.107.104.5.in-addr.arpa domain name pointer mail.bestorbit.eu.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 138.107.104.5.in-addr.arpa.: No answer

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
118.24.143.233	attack	$f2bV_matches	2019-11-27 04:54:05
5.196.217.177	attack	Nov 26 21:15:44 mail postfix/smtpd[9675]: warning: unknown[5.196.217.177]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 26 21:16:40 mail postfix/smtpd[9670]: warning: unknown[5.196.217.177]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 26 21:16:45 mail postfix/smtpd[10005]: warning: unknown[5.196.217.177]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-27 04:36:53
151.80.145.8	attack	Nov 26 05:08:45 php1 sshd\[2027\]: Invalid user alma123 from 151.80.145.8 Nov 26 05:08:45 php1 sshd\[2027\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.145.8 Nov 26 05:08:47 php1 sshd\[2027\]: Failed password for invalid user alma123 from 151.80.145.8 port 47562 ssh2 Nov 26 05:14:54 php1 sshd\[2674\]: Invalid user puong from 151.80.145.8 Nov 26 05:14:54 php1 sshd\[2674\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.145.8	2019-11-27 05:09:05
45.82.153.78	attack	Nov 26 19:14:25 srv01 postfix/smtpd\[28497\]: warning: unknown\[45.82.153.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 26 19:14:35 srv01 postfix/smtpd\[28504\]: warning: unknown\[45.82.153.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 26 19:18:36 srv01 postfix/smtpd\[28497\]: warning: unknown\[45.82.153.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 26 19:18:59 srv01 postfix/smtpd\[28504\]: warning: unknown\[45.82.153.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 26 19:24:04 srv01 postfix/smtpd\[28504\]: warning: unknown\[45.82.153.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-27 04:41:31
183.105.217.170	attack	Nov 26 21:19:47 MK-Soft-VM4 sshd[30838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.105.217.170 Nov 26 21:19:49 MK-Soft-VM4 sshd[30838]: Failed password for invalid user mara from 183.105.217.170 port 60867 ssh2 ...	2019-11-27 04:40:51
68.183.142.240	attackbotsspam	Nov 26 18:20:28 mail sshd[7755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.142.240 Nov 26 18:20:30 mail sshd[7755]: Failed password for invalid user oracle from 68.183.142.240 port 34818 ssh2 Nov 26 18:26:40 mail sshd[8839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.142.240	2019-11-27 04:35:51
64.52.173.125	attack	Attempted hack into email account. i.p. comes from cloudroute llc. I tried to make contact but phone system hangs up on you. Terrence emdy is attached to this i.p. 872-814-8008. No answer.	2019-11-27 04:57:42
185.176.27.6	attack	Nov 26 21:34:54 mc1 kernel: \[6086724.832628\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.6 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=19460 PROTO=TCP SPT=44897 DPT=28547 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 26 21:36:05 mc1 kernel: \[6086796.110090\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.6 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=51026 PROTO=TCP SPT=44897 DPT=18871 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 26 21:37:23 mc1 kernel: \[6086874.027669\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.6 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=8411 PROTO=TCP SPT=44897 DPT=22797 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-27 05:04:42
168.63.25.221	attack	Unauthorized connection attempt from IP address 168.63.25.221 on Port 3389(RDP)	2019-11-27 04:39:34
91.191.223.219	attackbotsspam	91.191.223.219 has been banned for [spam] ...	2019-11-27 05:08:50
130.105.67.68	attack	port scan and connect, tcp 23 (telnet)	2019-11-27 05:08:27
163.172.93.133	attackbotsspam	Nov 26 06:43:01 hpm sshd\[26825\]: Invalid user gwenette from 163.172.93.133 Nov 26 06:43:01 hpm sshd\[26825\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.93.133 Nov 26 06:43:03 hpm sshd\[26825\]: Failed password for invalid user gwenette from 163.172.93.133 port 39748 ssh2 Nov 26 06:49:15 hpm sshd\[27404\]: Invalid user admin from 163.172.93.133 Nov 26 06:49:15 hpm sshd\[27404\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.93.133	2019-11-27 04:40:35
218.56.138.164	attackbotsspam	2019-11-26T17:50:38.933772abusebot.cloudsearch.cf sshd\[29829\]: Invalid user tollman from 218.56.138.164 port 33870	2019-11-27 04:58:06
49.235.226.55	attack	SSH Brute-Force reported by Fail2Ban	2019-11-27 04:48:25
37.49.229.169	attackbots	SIP:5060 - unauthorized VoIP call to 420597010519 using	2019-11-27 05:00:44

最近上报的IP列表

14.162.213.228	41.144.133.145	31.134.197.243	170.210.203.66
124.236.58.232	155.7.224.152	170.110.15.220	53.14.216.230
99.168.27.50	160.150.133.179	109.185.97.192	36.225.113.223
78.62.19.47	221.123.43.50	90.154.146.85	181.225.220.44
169.48.78.67	18.195.211.60	49.151.47.163	102.160.217.199