104.148.126.235

基本信息:

城市(city): Los Angeles

省份(region): California

国家(country): United States

运营商(isp): Global Frag Networks

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	email spam	2019-11-05 21:57:13

相同子网IP讨论:

IP	类型	评论内容	时间
104.148.126.239	attackbotsspam	email spam	2019-12-19 21:33:23

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.148.126.235
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31876
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.148.126.235.		IN	A

;; AUTHORITY SECTION:
.			503	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110500 1800 900 604800 86400

;; Query time: 118 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 05 21:57:08 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

235.126.148.104.in-addr.arpa domain name pointer a6.xgyzjg79.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
235.126.148.104.in-addr.arpa	name = a6.xgyzjg79.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
201.234.231.14	attackbotsspam	445/tcp 445/tcp 445/tcp... [2019-07-31/09-12]10pkt,1pt.(tcp)	2019-09-13 00:32:16
187.190.235.43	attack	Sep 12 05:09:09 aiointranet sshd\[11133\]: Invalid user newadmin from 187.190.235.43 Sep 12 05:09:09 aiointranet sshd\[11133\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=fixed-187-190-235-43.totalplay.net Sep 12 05:09:11 aiointranet sshd\[11133\]: Failed password for invalid user newadmin from 187.190.235.43 port 44233 ssh2 Sep 12 05:19:02 aiointranet sshd\[12034\]: Invalid user minecraft from 187.190.235.43 Sep 12 05:19:03 aiointranet sshd\[12034\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=fixed-187-190-235-43.totalplay.net	2019-09-13 01:47:10
81.30.208.114	attackbots	Sep 12 19:48:58 vps647732 sshd[8401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.30.208.114 Sep 12 19:49:01 vps647732 sshd[8401]: Failed password for invalid user 1q2w3e4r from 81.30.208.114 port 51983 ssh2 ...	2019-09-13 01:51:02
150.107.213.168	attack	Sep 12 19:49:17 mail sshd\[12969\]: Invalid user 1qaz@WSX from 150.107.213.168 port 46434 Sep 12 19:49:17 mail sshd\[12969\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.107.213.168 Sep 12 19:49:19 mail sshd\[12969\]: Failed password for invalid user 1qaz@WSX from 150.107.213.168 port 46434 ssh2 Sep 12 19:56:06 mail sshd\[13545\]: Invalid user password123 from 150.107.213.168 port 48682 Sep 12 19:56:06 mail sshd\[13545\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.107.213.168	2019-09-13 02:05:59
203.112.152.10	attackbots	445/tcp 445/tcp 445/tcp [2019-08-15/09-12]3pkt	2019-09-13 01:26:16
23.228.67.67	attackspam	Port Scan: TCP/25	2019-09-13 01:16:52
172.105.92.46	attackbots	Sep1216:50:43server2kernel:Firewall:\TCP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=172.105.92.46DST=136.243.224.53LEN=40TOS=0x00PREC=0x00TTL=57ID=44047PROTO=TCPSPT=3368DPT=23WINDOW=8192RES=0x00SYNURGP=0Sep1216:50:58server2kernel:Firewall:\TCP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=172.105.92.46DST=136.243.224.53LEN=40TOS=0x00PREC=0x00TTL=57ID=44047PROTO=TCPSPT=3368DPT=23WINDOW=8192RES=0x00SYNURGP=0Sep1216:51:18server2kernel:Firewall:\TCP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=172.105.92.46DST=136.243.224.53LEN=40TOS=0x00PREC=0x00TTL=57ID=44047PROTO=TCPSPT=3368DPT=23WINDOW=8192RES=0x00SYNURGP=0Sep1216:51:29server2kernel:Firewall:\TCP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=172.105.92.46DST=136.243.224.53LEN=40TOS=0x00PREC=0x00TTL=57ID=44047PROTO=TCPSPT=3368DPT=23WINDOW=8192RES=0x00SYNURGP=0Sep1216:51:30server2kernel:Firewall:\TCP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a	2019-09-13 00:41:52
51.75.247.13	attack	Sep 12 18:48:29 mail sshd\[6136\]: Invalid user temp from 51.75.247.13 port 41908 Sep 12 18:48:29 mail sshd\[6136\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.247.13 Sep 12 18:48:31 mail sshd\[6136\]: Failed password for invalid user temp from 51.75.247.13 port 41908 ssh2 Sep 12 18:53:43 mail sshd\[6722\]: Invalid user admin from 51.75.247.13 port 44230 Sep 12 18:53:43 mail sshd\[6722\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.247.13	2019-09-13 01:06:36
60.26.202.47	attackbots	Sep 12 15:59:25 xb3 sshd[20395]: reveeclipse mapping checking getaddrinfo for no-data [60.26.202.47] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 12 15:59:27 xb3 sshd[20395]: Failed password for invalid user musicbot from 60.26.202.47 port 34868 ssh2 Sep 12 15:59:28 xb3 sshd[20395]: Received disconnect from 60.26.202.47: 11: Bye Bye [preauth] Sep 12 16:03:30 xb3 sshd[18921]: reveeclipse mapping checking getaddrinfo for no-data [60.26.202.47] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 12 16:03:32 xb3 sshd[18921]: Failed password for invalid user musicbot from 60.26.202.47 port 50382 ssh2 Sep 12 16:03:32 xb3 sshd[18921]: Received disconnect from 60.26.202.47: 11: Bye Bye [preauth] Sep 12 16:06:03 xb3 sshd[12795]: reveeclipse mapping checking getaddrinfo for no-data [60.26.202.47] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 12 16:06:04 xb3 sshd[12795]: Failed password for invalid user 12345 from 60.26.202.47 port 51236 ssh2 Sep 12 16:06:04 xb3 sshd[12795]: Received disconnect from 60......... -------------------------------	2019-09-13 01:29:41
5.9.137.105	attackbots	SIPVicious Scanner Detection	2019-09-13 02:12:01
185.254.122.200	attack	09/12/2019-13:23:57.908204 185.254.122.200 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-09-13 02:03:55
149.56.202.72	attack	Spam	2019-09-13 00:59:43
36.75.52.159	attackbots	SSH/22 MH Probe, BF, Hack -	2019-09-13 01:49:35
193.124.64.174	attack	445/tcp 445/tcp 445/tcp... [2019-08-28/09-12]5pkt,1pt.(tcp)	2019-09-13 01:07:42
198.108.66.24	attack	5900/tcp 9200/tcp 16993/tcp... [2019-07-23/09-12]8pkt,7pt.(tcp)	2019-09-13 02:07:59

最近上报的IP列表

81.92.249.131	81.18.33.26	80.78.64.153	77.238.178.146
77.81.109.100	74.116.59.147	69.94.131.71	61.145.185.121
52.41.63.228	50.192.195.69	45.238.204.22	151.106.8.99
45.175.179.225	151.106.8.210	45.121.43.21	201.64.241.16
36.255.25.56	108.178.202.26	36.255.25.54	202.51.111.38