104.248.124.68

基本信息:

城市(city): North Bergen

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.248.124.109	attack	104.248.124.109 - - [01/Oct/2020:21:54:13 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [01/Oct/2020:21:54:14 +0200] "POST /wp-login.php HTTP/1.1" 200 2698 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [01/Oct/2020:21:54:16 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [01/Oct/2020:21:54:17 +0200] "POST /wp-login.php HTTP/1.1" 200 2697 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [01/Oct/2020:21:54:19 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [01/Oct/2020:21:54:23 +0200] "POST /wp-login.php HTTP/1.1" 200 2696 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/ ...	2020-10-02 05:30:49
104.248.124.109	attackbotsspam	104.248.124.109 - - [30/Sep/2020:21:40:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2673 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [30/Sep/2020:21:40:10 +0100] "POST /wp-login.php HTTP/1.1" 200 2656 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [30/Sep/2020:21:40:21 +0100] "POST /wp-login.php HTTP/1.1" 200 2639 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-01 21:52:14
104.248.124.109	attackbotsspam	104.248.124.109 - - [30/Sep/2020:21:40:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2673 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [30/Sep/2020:21:40:10 +0100] "POST /wp-login.php HTTP/1.1" 200 2656 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [30/Sep/2020:21:40:21 +0100] "POST /wp-login.php HTTP/1.1" 200 2639 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-01 14:08:47
104.248.124.109	attackspambots	104.248.124.109 - - [23/Aug/2020:13:23:57 +0100] "POST /wp-login.php HTTP/1.1" 200 2178 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [23/Aug/2020:13:24:05 +0100] "POST /wp-login.php HTTP/1.1" 200 2154 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [23/Aug/2020:13:24:09 +0100] "POST /wp-login.php HTTP/1.1" 200 2157 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-23 21:56:02
104.248.124.109	attack	104.248.124.109 - - [22/Aug/2020:05:10:04 +0100] "POST /wp-login.php HTTP/1.1" 200 2121 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [22/Aug/2020:05:10:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2091 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [22/Aug/2020:05:10:11 +0100] "POST /wp-login.php HTTP/1.1" 200 2092 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-22 13:01:24
104.248.124.109	attackbots	104.248.124.109 - - [14/Aug/2020:05:03:26 +0100] "POST /wp-login.php HTTP/1.1" 200 1791 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [14/Aug/2020:05:03:28 +0100] "POST /wp-login.php HTTP/1.1" 200 1772 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [14/Aug/2020:05:03:31 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-14 13:11:53
104.248.124.109	attackbots	104.248.124.109 - - [10/Aug/2020:08:22:33 +0200] "GET /wp-login.php HTTP/1.1" 200 5738 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [10/Aug/2020:08:22:39 +0200] "POST /wp-login.php HTTP/1.1" 200 5989 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [10/Aug/2020:08:22:40 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-10 14:48:30
104.248.124.109	attackspambots	104.248.124.109 - - [26/Jul/2020:14:52:45 +0100] "POST /wp-login.php HTTP/1.1" 200 1795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [26/Jul/2020:14:52:48 +0100] "POST /wp-login.php HTTP/1.1" 200 1772 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [26/Jul/2020:14:52:49 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-26 23:56:21
104.248.124.109	attackbots	Brute-force general attack.	2020-07-10 18:29:03
104.248.124.119	attackspam	This IP is associated with RDP abuse. It was found in a paste by https://twitter.com/RdpSnitch - https://pastebin.com/4Ddmuksx For more information, or to report interesting/incorrect findings, contact us - bot@tines.io	2020-04-26 21:15:15
104.248.124.109	attackspam	$f2bV_matches	2020-04-19 05:59:44
104.248.124.165	attackspam	IP: 104.248.124.165 ASN: AS14061 DigitalOcean LLC Port: Simple Mail Transfer 25 Found in one or more Blacklists Date: 16/12/2019 10:07:44 AM UTC	2019-12-16 18:17:31
104.248.124.163	attackbotsspam	2019-09-19T21:10:03.519170abusebot.cloudsearch.cf sshd\[25024\]: Invalid user johnh from 104.248.124.163 port 50326	2019-09-20 05:35:56
104.248.124.163	attack	Aug 15 21:51:33 web8 sshd\[31835\]: Invalid user design from 104.248.124.163 Aug 15 21:51:33 web8 sshd\[31835\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.124.163 Aug 15 21:51:35 web8 sshd\[31835\]: Failed password for invalid user design from 104.248.124.163 port 42758 ssh2 Aug 15 21:55:37 web8 sshd\[1323\]: Invalid user fffff from 104.248.124.163 Aug 15 21:55:37 web8 sshd\[1323\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.124.163	2019-08-16 05:55:52
104.248.124.163	attackbots	Brute force SMTP login attempted. ...	2019-08-10 01:35:06

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.124.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52188
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.124.68.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022033000 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 30 14:38:20 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

68.124.248.104.in-addr.arpa domain name pointer tokenizer.php.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
68.124.248.104.in-addr.arpa	name = tokenizer.php.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
178.128.201.224	attackspambots	Invalid user julius from 178.128.201.224 port 41702	2019-07-28 08:37:19
85.26.40.243	attackbots	Invalid user support from 85.26.40.243 port 59850	2019-07-28 08:03:38
123.214.186.186	attackspambots	Invalid user nagios from 123.214.186.186 port 56724	2019-07-28 08:01:31
117.50.27.57	attackspam	2019-07-28T06:43:29.193597enmeeting.mahidol.ac.th sshd\[28975\]: User root from 117.50.27.57 not allowed because not listed in AllowUsers 2019-07-28T06:43:29.315009enmeeting.mahidol.ac.th sshd\[28975\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.27.57 user=root 2019-07-28T06:43:31.792176enmeeting.mahidol.ac.th sshd\[28975\]: Failed password for invalid user root from 117.50.27.57 port 53048 ssh2 ...	2019-07-28 08:01:49
81.74.229.246	attack	Jul 28 01:30:17 cvbmail sshd\[8678\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.74.229.246 user=root Jul 28 01:30:19 cvbmail sshd\[8678\]: Failed password for root from 81.74.229.246 port 42748 ssh2 Jul 28 01:39:54 cvbmail sshd\[8746\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.74.229.246 user=root	2019-07-28 08:16:13
54.37.205.162	attack	Invalid user student from 54.37.205.162 port 60184	2019-07-28 08:04:20
142.93.198.86	attackbotsspam	Invalid user test7 from 142.93.198.86 port 36166	2019-07-28 08:12:14
62.4.25.2	attack	Time: Sat Jul 27 20:29:35 2019 -0300 IP: 62.4.25.2 (FR/France/-) Failures: 50 (WordPressBruteForceGET) Interval: 3600 seconds Blocked: Permanent Block	2019-07-28 08:17:22
5.3.6.82	attackspambots	Invalid user soporte from 5.3.6.82 port 47228	2019-07-28 08:35:21
31.17.27.67	attackbotsspam	2019-07-27T17:22:03.188672WS-Zach sshd[1663]: User root from 31.17.27.67 not allowed because none of user's groups are listed in AllowGroups 2019-07-27T17:22:03.199904WS-Zach sshd[1663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.17.27.67 user=root 2019-07-27T17:22:03.188672WS-Zach sshd[1663]: User root from 31.17.27.67 not allowed because none of user's groups are listed in AllowGroups 2019-07-27T17:22:04.693400WS-Zach sshd[1663]: Failed password for invalid user root from 31.17.27.67 port 52084 ssh2 2019-07-27T18:15:32.769171WS-Zach sshd[2688]: User root from 31.17.27.67 not allowed because none of user's groups are listed in AllowGroups ...	2019-07-28 08:19:49
88.167.95.9	attackspam	Invalid user v from 88.167.95.9 port 47610	2019-07-28 08:43:06
188.213.172.41	attackbotsspam	WordPress wp-login brute force :: 188.213.172.41 0.040 BYPASS [28/Jul/2019:02:45:05 1000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-07-28 08:21:40
166.157.232.1	attack	Invalid user redis from 166.157.232.1 port 40410	2019-07-28 08:38:57
79.106.191.5	attack	Invalid user vps from 79.106.191.5 port 56504	2019-07-28 08:16:59
37.187.46.74	attack	Invalid user user from 37.187.46.74 port 37494	2019-07-28 08:18:30

最近上报的IP列表

104.248.12.1	104.248.124.78	104.248.125.149	104.248.125.156
104.248.130.141	104.248.132.63	104.248.133.167	104.248.143.122
104.248.143.92	104.248.144.76	104.248.148.179	104.248.156.216
104.248.156.30	104.248.156.31	104.248.16.194	104.248.162.231
104.248.163.205	104.248.165.155	104.248.166.120	104.248.168.12