必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): myLoc managed IT AG

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attackbots
Automated report - ssh fail2ban:
Jul 18 21:48:23 Disconnected from authenticating user root 5.104.108.4 port=34383 [preauth]
Jul 18 21:49:39 Connection closed by 5.104.108.4 port=35692 [preauth]
Jul 18 21:50:41 Connection closed by 5.104.108.4 port=37001 [preauth]
Jul 18 21:51:52 Connection closed by 5.104.108.4 port=38309 [preauth]
2020-07-19 04:21:35
attackbots
2019-12-10T17:59:38.447234abusebot-2.cloudsearch.cf sshd\[13813\]: Invalid user vagner from 5.104.108.4 port 45375
2019-12-11 02:08:17
相同子网IP讨论:
IP 类型 评论内容 时间
5.104.108.151 attackspambots
Invalid user suresh from 5.104.108.151 port 36344
2020-05-01 16:38:56
5.104.108.18 attack
Unauthorized connection attempt detected from IP address 5.104.108.18 to port 2220 [J]
2020-02-01 15:27:43
5.104.108.132 attackbotsspam
abuse-sasl
2019-07-17 02:05:38
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.104.108.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 687
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.104.108.4.			IN	A

;; AUTHORITY SECTION:
.			405	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121001 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 11 02:08:14 CST 2019
;; MSG SIZE  rcvd: 115
HOST信息:
4.108.104.5.in-addr.arpa domain name pointer ve1039.venus.fastwebserver.de.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
4.108.104.5.in-addr.arpa	name = ve1039.venus.fastwebserver.de.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
177.189.210.42 attack
Aug 30 09:23:20 hanapaa sshd\[31841\]: Invalid user olga from 177.189.210.42
Aug 30 09:23:20 hanapaa sshd\[31841\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.189.210.42
Aug 30 09:23:22 hanapaa sshd\[31841\]: Failed password for invalid user olga from 177.189.210.42 port 42250 ssh2
Aug 30 09:28:30 hanapaa sshd\[32319\]: Invalid user gabriel from 177.189.210.42
Aug 30 09:28:30 hanapaa sshd\[32319\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.189.210.42
2019-08-31 04:13:28
116.239.107.6 attackspam
SSH invalid-user multiple login try
2019-08-31 04:25:31
139.59.59.187 attack
Automated report - ssh fail2ban:
Aug 30 21:57:34 authentication failure 
Aug 30 21:57:36 wrong password, user=test, port=36904, ssh2
Aug 30 22:03:20 authentication failure
2019-08-31 04:18:59
14.186.219.133 attackspambots
Lines containing failures of 14.186.219.133
Aug 30 18:18:50 shared06 sshd[2242]: Invalid user admin from 14.186.219.133 port 34465
Aug 30 18:18:50 shared06 sshd[2242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.186.219.133
Aug 30 18:18:52 shared06 sshd[2242]: Failed password for invalid user admin from 14.186.219.133 port 34465 ssh2
Aug 30 18:18:52 shared06 sshd[2242]: Connection closed by invalid user admin 14.186.219.133 port 34465 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=14.186.219.133
2019-08-31 04:07:00
112.85.42.237 attackspambots
Aug 30 21:27:09 ubuntu-2gb-nbg1-dc3-1 sshd[21091]: Failed password for root from 112.85.42.237 port 17681 ssh2
Aug 30 21:27:14 ubuntu-2gb-nbg1-dc3-1 sshd[21091]: error: maximum authentication attempts exceeded for root from 112.85.42.237 port 17681 ssh2 [preauth]
...
2019-08-31 04:07:27
211.25.119.131 attackspam
Aug 30 21:54:20 ArkNodeAT sshd\[32199\]: Invalid user info2 from 211.25.119.131
Aug 30 21:54:20 ArkNodeAT sshd\[32199\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.25.119.131
Aug 30 21:54:22 ArkNodeAT sshd\[32199\]: Failed password for invalid user info2 from 211.25.119.131 port 60438 ssh2
2019-08-31 04:03:26
81.22.45.70 attackspam
Aug 30 21:26:58 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.70 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=44735 PROTO=TCP SPT=52728 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2019-08-31 03:49:11
144.217.165.133 attack
Aug 31 02:21:31 webhost01 sshd[26393]: Failed password for root from 144.217.165.133 port 60780 ssh2
Aug 31 02:21:45 webhost01 sshd[26393]: error: maximum authentication attempts exceeded for root from 144.217.165.133 port 60780 ssh2 [preauth]
...
2019-08-31 03:57:30
104.0.143.234 attackbotsspam
Aug 30 19:44:05 hcbbdb sshd\[29102\]: Invalid user test from 104.0.143.234
Aug 30 19:44:05 hcbbdb sshd\[29102\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104-0-143-234.lightspeed.austtx.sbcglobal.net
Aug 30 19:44:07 hcbbdb sshd\[29102\]: Failed password for invalid user test from 104.0.143.234 port 10706 ssh2
Aug 30 19:48:54 hcbbdb sshd\[29655\]: Invalid user atscale from 104.0.143.234
Aug 30 19:48:54 hcbbdb sshd\[29655\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104-0-143-234.lightspeed.austtx.sbcglobal.net
2019-08-31 03:57:48
42.51.224.210 attackbots
2019-08-30T20:05:51.519604abusebot-4.cloudsearch.cf sshd\[27948\]: Invalid user student7 from 42.51.224.210 port 57318
2019-08-31 04:29:39
133.130.119.178 attackspambots
Aug 30 20:12:02 game-panel sshd[30137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.119.178
Aug 30 20:12:04 game-panel sshd[30137]: Failed password for invalid user resin from 133.130.119.178 port 30929 ssh2
Aug 30 20:16:37 game-panel sshd[30322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.119.178
2019-08-31 04:30:59
81.47.128.178 attack
Aug 30 21:41:07 vps691689 sshd[1595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.47.128.178
Aug 30 21:41:09 vps691689 sshd[1595]: Failed password for invalid user jack from 81.47.128.178 port 34366 ssh2
...
2019-08-31 03:48:12
139.99.187.177 attackspambots
php WP PHPmyadamin ABUSE blocked for 12h
2019-08-31 03:52:15
83.97.20.158 attackspam
Scanning random ports - tries to find possible vulnerable services
2019-08-31 03:51:44
92.45.248.234 attackbotsspam
port scan and connect, tcp 23 (telnet)
2019-08-31 04:21:07

最近上报的IP列表

65.111.78.232 162.58.23.126 130.84.31.249 160.166.7.133
19.106.211.37 179.66.13.48 39.75.47.56 107.199.124.207
31.69.186.48 41.55.187.65 230.17.153.135 171.109.120.211
116.239.106.193 89.97.0.61 177.214.1.40 106.75.76.139
223.111.150.115 61.118.238.68 111.68.98.152 126.9.86.143