104.248.12.112

基本信息:

城市(city): Clifton

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.248.123.197	attackspam	Oct 13 12:35:05 lavrea sshd[324863]: Invalid user duncan from 104.248.123.197 port 32850 ...	2020-10-13 21:59:09
104.248.123.197	attackspambots	(sshd) Failed SSH login from 104.248.123.197 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 13 00:31:51 server sshd[31645]: Invalid user whitney from 104.248.123.197 port 42348 Oct 13 00:31:53 server sshd[31645]: Failed password for invalid user whitney from 104.248.123.197 port 42348 ssh2 Oct 13 00:41:36 server sshd[1687]: Invalid user career from 104.248.123.197 port 45714 Oct 13 00:41:38 server sshd[1687]: Failed password for invalid user career from 104.248.123.197 port 45714 ssh2 Oct 13 00:46:19 server sshd[2980]: Invalid user foma from 104.248.123.197 port 48874	2020-10-13 13:24:45
104.248.123.197	attackspam	2020-10-12T23:58:41.827679news0 sshd[579]: User root from 104.248.123.197 not allowed because not listed in AllowUsers 2020-10-12T23:58:44.098078news0 sshd[579]: Failed password for invalid user root from 104.248.123.197 port 33122 ssh2 2020-10-13T00:02:57.159211news0 sshd[700]: User root from 104.248.123.197 not allowed because not listed in AllowUsers ...	2020-10-13 06:09:46
104.248.123.197	attack	Oct 11 19:28:53 web1 sshd\[13339\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.123.197 user=root Oct 11 19:28:55 web1 sshd\[13339\]: Failed password for root from 104.248.123.197 port 59144 ssh2 Oct 11 19:33:17 web1 sshd\[13851\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.123.197 user=mysql Oct 11 19:33:19 web1 sshd\[13851\]: Failed password for mysql from 104.248.123.197 port 34434 ssh2 Oct 11 19:37:41 web1 sshd\[14333\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.123.197 user=root	2020-10-12 13:45:39
104.248.123.197	attack	Sep 30 08:32:58 roki-contabo sshd\[2298\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.123.197 user=root Sep 30 08:33:00 roki-contabo sshd\[2298\]: Failed password for root from 104.248.123.197 port 47318 ssh2 Sep 30 08:42:37 roki-contabo sshd\[2394\]: Invalid user ian from 104.248.123.197 Sep 30 08:42:37 roki-contabo sshd\[2394\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.123.197 Sep 30 08:42:39 roki-contabo sshd\[2394\]: Failed password for invalid user ian from 104.248.123.197 port 56104 ssh2 ...	2020-10-05 04:10:54
104.248.123.197	attackspam	<6 unauthorized SSH connections	2020-10-04 20:02:04
104.248.124.109	attack	104.248.124.109 - - [01/Oct/2020:21:54:13 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [01/Oct/2020:21:54:14 +0200] "POST /wp-login.php HTTP/1.1" 200 2698 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [01/Oct/2020:21:54:16 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [01/Oct/2020:21:54:17 +0200] "POST /wp-login.php HTTP/1.1" 200 2697 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [01/Oct/2020:21:54:19 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [01/Oct/2020:21:54:23 +0200] "POST /wp-login.php HTTP/1.1" 200 2696 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/ ...	2020-10-02 05:30:49
104.248.124.109	attackbotsspam	104.248.124.109 - - [30/Sep/2020:21:40:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2673 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [30/Sep/2020:21:40:10 +0100] "POST /wp-login.php HTTP/1.1" 200 2656 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [30/Sep/2020:21:40:21 +0100] "POST /wp-login.php HTTP/1.1" 200 2639 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-01 21:52:14
104.248.124.109	attackbotsspam	104.248.124.109 - - [30/Sep/2020:21:40:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2673 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [30/Sep/2020:21:40:10 +0100] "POST /wp-login.php HTTP/1.1" 200 2656 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [30/Sep/2020:21:40:21 +0100] "POST /wp-login.php HTTP/1.1" 200 2639 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-01 14:08:47
104.248.122.143	attackspambots	Sep 18 14:55:34 sip sshd[1644402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.122.143 user=root Sep 18 14:55:37 sip sshd[1644402]: Failed password for root from 104.248.122.143 port 39224 ssh2 Sep 18 14:59:28 sip sshd[1644428]: Invalid user oracle from 104.248.122.143 port 50508 ...	2020-09-18 21:06:55
104.248.122.143	attackbots	" "	2020-09-18 13:26:09
104.248.122.143	attackbotsspam	Brute%20Force%20SSH	2020-09-18 03:40:30
104.248.123.197	attackbotsspam	Sep 15 17:14:11 pornomens sshd\[19627\]: Invalid user ubnt from 104.248.123.197 port 39688 Sep 15 17:14:11 pornomens sshd\[19627\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.123.197 Sep 15 17:14:14 pornomens sshd\[19627\]: Failed password for invalid user ubnt from 104.248.123.197 port 39688 ssh2 ...	2020-09-16 02:24:33
104.248.123.197	attack	[SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.	2020-09-15 18:20:22
104.248.122.143	attackspambots	scans once in preceeding hours on the ports (in chronological order) 10584 resulting in total of 5 scans from 104.248.0.0/16 block.	2020-09-11 03:22:38

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.12.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12991
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.12.112.			IN	A

;; AUTHORITY SECTION:
.			590	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022060402 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 05 11:31:35 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 112.12.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 112.12.248.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
58.33.72.226	attackbotsspam	DATE:2020-06-23 09:27:33,IP:58.33.72.226,MATCHES:52,PORT:ssh	2020-06-23 18:51:02
114.67.80.134	attackspam	2020-06-22 UTC: (23x) - benutzer,caro,darwin,gs,hanson,kiran,kys,lko,q3server,root(5x),teamspeak3,test(2x),testa,unlock,user,vboxuser,vmail,zimbra	2020-06-23 18:24:58
205.185.116.157	attackbotsspam	Unauthorized connection attempt detected from IP address 205.185.116.157 to port 22	2020-06-23 18:44:02
92.63.197.61	attackbotsspam	06/23/2020-06:11:37.305986 92.63.197.61 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-06-23 18:42:34
115.236.8.253	attackspambots	Jun 23 10:27:20 ns382633 sshd\[19392\]: Invalid user webmaster from 115.236.8.253 port 57493 Jun 23 10:27:20 ns382633 sshd\[19392\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.236.8.253 Jun 23 10:27:22 ns382633 sshd\[19392\]: Failed password for invalid user webmaster from 115.236.8.253 port 57493 ssh2 Jun 23 10:37:12 ns382633 sshd\[21364\]: Invalid user user from 115.236.8.253 port 60438 Jun 23 10:37:12 ns382633 sshd\[21364\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.236.8.253	2020-06-23 18:17:25
69.28.234.130	attackbots	2020-06-23T09:41:08.275370scmdmz1 sshd[14205]: Failed password for root from 69.28.234.130 port 59443 ssh2 2020-06-23T09:42:50.753021scmdmz1 sshd[14406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.28.234.130 user=root 2020-06-23T09:42:52.842502scmdmz1 sshd[14406]: Failed password for root from 69.28.234.130 port 41151 ssh2 ...	2020-06-23 18:47:05
51.144.73.114	attackbots	51.144.73.114 - - [23/Jun/2020:09:10:18 +0100] "POST /wp-login.php HTTP/1.1" 200 1996 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.144.73.114 - - [23/Jun/2020:09:10:20 +0100] "POST /wp-login.php HTTP/1.1" 200 1924 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.144.73.114 - - [23/Jun/2020:09:10:22 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-06-23 18:34:34
185.220.101.199	attackspambots	2020-06-22 22:46:10.746635-0500 localhost sshd[92925]: Failed password for root from 185.220.101.199 port 15546 ssh2	2020-06-23 18:47:39
35.222.146.235	attackbots	Invalid user user from 35.222.146.235 port 49014	2020-06-23 18:22:50
185.176.27.106	attackspambots	06/23/2020-03:21:13.240027 185.176.27.106 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-06-23 18:32:03
217.182.38.3	attackbotsspam	Jun 23 13:10:46 webhost01 sshd[12636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.38.3 Jun 23 13:10:48 webhost01 sshd[12636]: Failed password for invalid user luke from 217.182.38.3 port 32978 ssh2 ...	2020-06-23 18:43:30
192.241.210.231	attackspambots	firewall-block, port(s): 5351/udp	2020-06-23 18:24:41
5.135.164.126	attackspam	5.135.164.126 - - [23/Jun/2020:08:54:49 +0100] "POST /wp-login.php HTTP/1.1" 200 2136 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 5.135.164.126 - - [23/Jun/2020:08:54:51 +0100] "POST /wp-login.php HTTP/1.1" 200 2111 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 5.135.164.126 - - [23/Jun/2020:08:54:51 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-06-23 18:20:38
54.37.68.191	attackspam	Jun 23 10:42:22 hell sshd[14634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.68.191 Jun 23 10:42:24 hell sshd[14634]: Failed password for invalid user pyramid from 54.37.68.191 port 42564 ssh2 ...	2020-06-23 18:35:33
150.136.220.58	attackbots	Fail2Ban Ban Triggered	2020-06-23 18:28:42

最近上报的IP列表

104.248.171.145	118.127.125.185	134.209.180.180	94.239.211.21
43.106.191.139	65.132.223.106	63.152.255.13	54.79.23.216
50.50.169.115	244.201.203.102	77.33.65.82	74.252.18.2
66.15.211.54	41.164.172.216	43.3.72.39	104.183.234.17
202.98.17.123	227.32.82.177	37.211.156.90	11.66.11.66