104.248.139.52

基本信息:

城市(city): Frankfurt am Main

省份(region): Hesse

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.248.139.121	attackspambots	May 14 08:55:32 NPSTNNYC01T sshd[14068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 May 14 08:55:34 NPSTNNYC01T sshd[14068]: Failed password for invalid user user from 104.248.139.121 port 49288 ssh2 May 14 08:59:01 NPSTNNYC01T sshd[14354]: Failed password for root from 104.248.139.121 port 56564 ssh2 ...	2020-05-14 21:25:45
104.248.139.121	attackbotsspam	May 3 06:22:00 legacy sshd[5370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 May 3 06:22:02 legacy sshd[5370]: Failed password for invalid user mf from 104.248.139.121 port 40166 ssh2 May 3 06:25:38 legacy sshd[5637]: Failed password for root from 104.248.139.121 port 49638 ssh2 ...	2020-05-03 12:34:29
104.248.139.121	attackspam	SSH auth scanning - multiple failed logins	2020-04-30 07:33:34
104.248.139.121	attack	2020-04-27T13:03:38.800886abusebot-3.cloudsearch.cf sshd[30948]: Invalid user hung from 104.248.139.121 port 41966 2020-04-27T13:03:38.810081abusebot-3.cloudsearch.cf sshd[30948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 2020-04-27T13:03:38.800886abusebot-3.cloudsearch.cf sshd[30948]: Invalid user hung from 104.248.139.121 port 41966 2020-04-27T13:03:40.381859abusebot-3.cloudsearch.cf sshd[30948]: Failed password for invalid user hung from 104.248.139.121 port 41966 ssh2 2020-04-27T13:07:22.168837abusebot-3.cloudsearch.cf sshd[31229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 user=root 2020-04-27T13:07:24.161636abusebot-3.cloudsearch.cf sshd[31229]: Failed password for root from 104.248.139.121 port 53746 ssh2 2020-04-27T13:11:04.475551abusebot-3.cloudsearch.cf sshd[31503]: Invalid user znc from 104.248.139.121 port 37302 ...	2020-04-27 22:58:33
104.248.139.121	attackbots	Apr 27 11:44:11 dev0-dcde-rnet sshd[22559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 Apr 27 11:44:14 dev0-dcde-rnet sshd[22559]: Failed password for invalid user udp from 104.248.139.121 port 52906 ssh2 Apr 27 11:50:16 dev0-dcde-rnet sshd[22729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121	2020-04-27 18:07:05
104.248.139.121	attackspam	Unauthorised connection attempt detected at AUO NODE 1. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-04-24 23:09:01
104.248.139.121	attackbotsspam	Invalid user od from 104.248.139.121 port 53734	2020-04-23 04:11:27
104.248.139.121	attack	Wordpress malicious attack:[sshd]	2020-04-20 12:17:42
104.248.139.121	attackspam	Apr 20 00:12:29 debian-2gb-nbg1-2 kernel: \[9593314.391754\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.248.139.121 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=23968 PROTO=TCP SPT=59620 DPT=19842 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-20 08:07:04
104.248.139.121	attackbots	scans once in preceeding hours on the ports (in chronological order) 19153 resulting in total of 5 scans from 104.248.0.0/16 block.	2020-04-20 00:13:49
104.248.139.121	attack	Apr 17 13:56:38 sso sshd[29563]: Failed password for root from 104.248.139.121 port 42032 ssh2 Apr 17 14:00:28 sso sshd[30000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 ...	2020-04-17 22:34:21
104.248.139.121	attackbotsspam	Apr 17 09:49:30 vpn01 sshd[24030]: Failed password for root from 104.248.139.121 port 47328 ssh2 ...	2020-04-17 16:50:57
104.248.139.121	attackspambots	Apr 8 06:00:12 sso sshd[10238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 Apr 8 06:00:14 sso sshd[10238]: Failed password for invalid user aman from 104.248.139.121 port 60516 ssh2 ...	2020-04-08 12:18:20
104.248.139.121	attackspam	(sshd) Failed SSH login from 104.248.139.121 (DE/Germany/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 4 09:34:42 ubnt-55d23 sshd[17241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 user=root Apr 4 09:34:44 ubnt-55d23 sshd[17241]: Failed password for root from 104.248.139.121 port 43664 ssh2	2020-04-04 16:11:55
104.248.139.121	attack	Mar 28 16:31:05 dev0-dcde-rnet sshd[3144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 Mar 28 16:31:06 dev0-dcde-rnet sshd[3144]: Failed password for invalid user oracle from 104.248.139.121 port 41678 ssh2 Mar 28 16:41:28 dev0-dcde-rnet sshd[3230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121	2020-03-29 00:22:33

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.139.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44587
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.139.52.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 09:34:31 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 52.139.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 52.139.248.104.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
190.153.54.125	attackspam	Honeypot attack, port: 445, PTR: 125.54.153.190.net-uno.net.	2020-01-25 04:57:56
190.79.194.226	attackspam	Honeypot attack, port: 445, PTR: 190-79-194-226.dyn.dsl.cantv.net.	2020-01-25 05:08:15
61.81.101.108	attack	Honeypot attack, port: 81, PTR: PTR record not found	2020-01-25 05:21:23
79.170.185.146	attack	1579868942 - 01/24/2020 13:29:02 Host: 79.170.185.146/79.170.185.146 Port: 445 TCP Blocked	2020-01-25 04:50:52
213.147.97.225	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-25 05:27:40
109.61.229.208	attackspambots	Honeypot attack, port: 445, PTR: 109-61-229-208.dsl.orel.ru.	2020-01-25 05:22:17
222.186.175.167	attack	scan z	2020-01-25 05:07:07
177.140.146.69	attackspam	Honeypot attack, port: 81, PTR: b18c9245.virtua.com.br.	2020-01-25 05:05:31
115.78.94.97	attack	Honeypot attack, port: 81, PTR: PTR record not found	2020-01-25 05:09:18
196.41.48.84	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-25 05:16:46
222.186.180.17	attackspambots	Jan 24 22:22:53 legacy sshd[21169]: Failed password for root from 222.186.180.17 port 13004 ssh2 Jan 24 22:23:05 legacy sshd[21169]: error: maximum authentication attempts exceeded for root from 222.186.180.17 port 13004 ssh2 [preauth] Jan 24 22:23:11 legacy sshd[21177]: Failed password for root from 222.186.180.17 port 49472 ssh2 ...	2020-01-25 05:26:16
148.70.106.160	attack	Unauthorized connection attempt detected from IP address 148.70.106.160 to port 2220 [J]	2020-01-25 05:01:30
113.173.227.95	attackspam	Honeypot attack, port: 81, PTR: static.vnpt.vn.	2020-01-25 05:24:40
223.241.78.193	attackspambots	2020-01-24 14:52:56 H=(hNQRHcl4x0) [223.241.78.193]:59378 I=[192.147.25.65]:25 F= rejected RCPT <842777737@qq.com>: Sender verify failed 2020-01-24 14:53:01 dovecot_login authenticator failed for (O9jKCPOV) [223.241.78.193]:53487 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=lshone@lerctr.org) 2020-01-24 14:53:08 dovecot_login authenticator failed for (ZhEEWdQS) [223.241.78.193]:54923 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=lshone@lerctr.org) ...	2020-01-25 04:59:44
189.50.252.116	attack	Jan 24 21:52:46 grey postfix/smtpd\[3453\]: NOQUEUE: reject: RCPT from unknown\[189.50.252.116\]: 554 5.7.1 Service unavailable\; Client host \[189.50.252.116\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?189.50.252.116\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-25 05:21:44

最近上报的IP列表

104.248.31.121	104.244.225.193	104.247.208.125	104.244.75.172
104.248.8.234	104.248.9.210	104.251.243.254	104.249.62.103
104.248.156.29	104.252.179.162	104.255.72.29	104.37.76.19
104.32.132.24	104.252.179.180	104.45.210.140	104.252.179.120
104.47.4.254	104.35.46.131	105.100.12.44	105.0.6.208