104.248.0.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.248.0.215	attackbots	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-03-06 15:50:30
104.248.0.33	attack	joshuajohannes.de 104.248.0.33 \[04/Jul/2019:16:08:54 +0200\] "POST /wp-login.php HTTP/1.1" 200 5606 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" joshuajohannes.de 104.248.0.33 \[04/Jul/2019:16:08:56 +0200\] "POST /wp-login.php HTTP/1.1" 200 5572 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-07-04 23:55:30

类型

评论内容

时间

104.248.0.215

attackbots

IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.

2020-03-06 15:50:30

104.248.0.33

attack

joshuajohannes.de 104.248.0.33 \[04/Jul/2019:16:08:54 +0200\] "POST /wp-login.php HTTP/1.1" 200 5606 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
joshuajohannes.de 104.248.0.33 \[04/Jul/2019:16:08:56 +0200\] "POST /wp-login.php HTTP/1.1" 200 5572 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"

2019-07-04 23:55:30

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.0.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26923
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.0.42.			IN	A

;; AUTHORITY SECTION:
.			121	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022000 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 20 22:04:34 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 42.0.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.0.248.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
212.129.9.216	attack	(sshd) Failed SSH login from 212.129.9.216 (FR/France/vm3.webtv-solution.com): 5 in the last 3600 secs	2020-05-05 12:48:06
46.38.144.32	attackspam	Rude login attack (219 tries in 1d)	2020-05-05 13:10:46
181.55.123.14	attackspambots	DATE:2020-05-05 06:07:47, IP:181.55.123.14, PORT:ssh SSH brute force auth (docker-dc)	2020-05-05 13:11:27
178.128.221.85	attackbots	web-1 [ssh] SSH Attack	2020-05-05 13:00:59
49.233.212.154	attack	May 5 05:44:42 inter-technics sshd[18506]: Invalid user remote from 49.233.212.154 port 37782 May 5 05:44:42 inter-technics sshd[18506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.212.154 May 5 05:44:42 inter-technics sshd[18506]: Invalid user remote from 49.233.212.154 port 37782 May 5 05:44:44 inter-technics sshd[18506]: Failed password for invalid user remote from 49.233.212.154 port 37782 ssh2 May 5 05:47:45 inter-technics sshd[20026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.212.154 user=root May 5 05:47:48 inter-technics sshd[20026]: Failed password for root from 49.233.212.154 port 41490 ssh2 ...	2020-05-05 12:51:19
36.111.182.37	attackspambots	May 5 06:26:40 ns382633 sshd\[8892\]: Invalid user apache2 from 36.111.182.37 port 52888 May 5 06:26:40 ns382633 sshd\[8892\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.111.182.37 May 5 06:26:42 ns382633 sshd\[8892\]: Failed password for invalid user apache2 from 36.111.182.37 port 52888 ssh2 May 5 06:28:13 ns382633 sshd\[9085\]: Invalid user moses from 36.111.182.37 port 37158 May 5 06:28:13 ns382633 sshd\[9085\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.111.182.37	2020-05-05 13:00:08
49.235.198.105	attack	$f2bV_matches	2020-05-05 12:59:04
109.230.81.5	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-05 12:42:04
72.94.181.219	attackspambots	SSH brute force attempt	2020-05-05 13:20:23
51.195.48.66	attackbots	May 5 03:38:25 OPSO sshd\[17196\]: Invalid user mariadb from 51.195.48.66 port 39232 May 5 03:38:25 OPSO sshd\[17196\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.195.48.66 May 5 03:38:26 OPSO sshd\[17196\]: Failed password for invalid user mariadb from 51.195.48.66 port 39232 ssh2 May 5 03:42:43 OPSO sshd\[17839\]: Invalid user elisabetta from 51.195.48.66 port 52598 May 5 03:42:43 OPSO sshd\[17839\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.195.48.66	2020-05-05 12:46:50
45.124.86.65	attackspambots	2020-05-05T02:08:56.815201homeassistant sshd[25393]: Invalid user dwb from 45.124.86.65 port 48656 2020-05-05T02:08:56.832780homeassistant sshd[25393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.124.86.65 ...	2020-05-05 13:03:16
110.45.155.101	attack	May 5 06:46:07 home sshd[11358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.45.155.101 May 5 06:46:09 home sshd[11358]: Failed password for invalid user sysadmin from 110.45.155.101 port 34120 ssh2 May 5 06:50:21 home sshd[11950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.45.155.101 ...	2020-05-05 13:07:09
185.143.74.133	attackspambots	May 5 07:02:26 relay postfix/smtpd\[27508\]: warning: unknown\[185.143.74.133\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 5 07:03:11 relay postfix/smtpd\[1997\]: warning: unknown\[185.143.74.133\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 5 07:03:49 relay postfix/smtpd\[9521\]: warning: unknown\[185.143.74.133\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 5 07:04:37 relay postfix/smtpd\[1997\]: warning: unknown\[185.143.74.133\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 5 07:05:11 relay postfix/smtpd\[2036\]: warning: unknown\[185.143.74.133\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-05 13:17:54
200.40.45.82	attack	May 5 04:41:49 vps639187 sshd\[5245\]: Invalid user bernard from 200.40.45.82 port 52900 May 5 04:41:49 vps639187 sshd\[5245\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.40.45.82 May 5 04:41:52 vps639187 sshd\[5245\]: Failed password for invalid user bernard from 200.40.45.82 port 52900 ssh2 ...	2020-05-05 12:42:49
106.12.114.35	attackbots	May 5 07:25:23 lukav-desktop sshd\[20411\]: Invalid user software from 106.12.114.35 May 5 07:25:23 lukav-desktop sshd\[20411\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35 May 5 07:25:25 lukav-desktop sshd\[20411\]: Failed password for invalid user software from 106.12.114.35 port 47940 ssh2 May 5 07:28:14 lukav-desktop sshd\[22902\]: Invalid user admin from 106.12.114.35 May 5 07:28:14 lukav-desktop sshd\[22902\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35	2020-05-05 12:57:30

最近上报的IP列表

104.24.59.17	104.248.126.247	104.248.130.194	104.248.131.157
104.248.131.196	104.248.132.94	104.248.135.77	104.248.14.206
104.248.141.162	104.248.143.19	104.248.149.20	104.248.149.70
104.248.15.181	104.248.15.210	104.248.151.31	104.248.152.145
104.248.155.193	104.248.156.45	104.248.157.64	104.248.158.126