必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): Frankfurt am Main

省份(region): Hesse

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
104.248.139.121 attackspambots
May 14 08:55:32 NPSTNNYC01T sshd[14068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121
May 14 08:55:34 NPSTNNYC01T sshd[14068]: Failed password for invalid user user from 104.248.139.121 port 49288 ssh2
May 14 08:59:01 NPSTNNYC01T sshd[14354]: Failed password for root from 104.248.139.121 port 56564 ssh2
...
2020-05-14 21:25:45
104.248.139.121 attackbotsspam
May  3 06:22:00 legacy sshd[5370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121
May  3 06:22:02 legacy sshd[5370]: Failed password for invalid user mf from 104.248.139.121 port 40166 ssh2
May  3 06:25:38 legacy sshd[5637]: Failed password for root from 104.248.139.121 port 49638 ssh2
...
2020-05-03 12:34:29
104.248.139.121 attackspam
SSH auth scanning - multiple failed logins
2020-04-30 07:33:34
104.248.139.121 attack
2020-04-27T13:03:38.800886abusebot-3.cloudsearch.cf sshd[30948]: Invalid user hung from 104.248.139.121 port 41966
2020-04-27T13:03:38.810081abusebot-3.cloudsearch.cf sshd[30948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121
2020-04-27T13:03:38.800886abusebot-3.cloudsearch.cf sshd[30948]: Invalid user hung from 104.248.139.121 port 41966
2020-04-27T13:03:40.381859abusebot-3.cloudsearch.cf sshd[30948]: Failed password for invalid user hung from 104.248.139.121 port 41966 ssh2
2020-04-27T13:07:22.168837abusebot-3.cloudsearch.cf sshd[31229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121  user=root
2020-04-27T13:07:24.161636abusebot-3.cloudsearch.cf sshd[31229]: Failed password for root from 104.248.139.121 port 53746 ssh2
2020-04-27T13:11:04.475551abusebot-3.cloudsearch.cf sshd[31503]: Invalid user znc from 104.248.139.121 port 37302
...
2020-04-27 22:58:33
104.248.139.121 attackbots
Apr 27 11:44:11 dev0-dcde-rnet sshd[22559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121
Apr 27 11:44:14 dev0-dcde-rnet sshd[22559]: Failed password for invalid user udp from 104.248.139.121 port 52906 ssh2
Apr 27 11:50:16 dev0-dcde-rnet sshd[22729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121
2020-04-27 18:07:05
104.248.139.121 attackspam
Unauthorised connection attempt detected at AUO NODE 1. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)
2020-04-24 23:09:01
104.248.139.121 attackbotsspam
Invalid user od from 104.248.139.121 port 53734
2020-04-23 04:11:27
104.248.139.121 attack
Wordpress malicious attack:[sshd]
2020-04-20 12:17:42
104.248.139.121 attackspam
Apr 20 00:12:29 debian-2gb-nbg1-2 kernel: \[9593314.391754\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.248.139.121 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=23968 PROTO=TCP SPT=59620 DPT=19842 WINDOW=1024 RES=0x00 SYN URGP=0
2020-04-20 08:07:04
104.248.139.121 attackbots
scans once in preceeding hours on the ports (in chronological order) 19153 resulting in total of 5 scans from 104.248.0.0/16 block.
2020-04-20 00:13:49
104.248.139.121 attack
Apr 17 13:56:38 sso sshd[29563]: Failed password for root from 104.248.139.121 port 42032 ssh2
Apr 17 14:00:28 sso sshd[30000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121
...
2020-04-17 22:34:21
104.248.139.121 attackbotsspam
Apr 17 09:49:30 vpn01 sshd[24030]: Failed password for root from 104.248.139.121 port 47328 ssh2
...
2020-04-17 16:50:57
104.248.139.121 attackspambots
Apr  8 06:00:12 sso sshd[10238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121
Apr  8 06:00:14 sso sshd[10238]: Failed password for invalid user aman from 104.248.139.121 port 60516 ssh2
...
2020-04-08 12:18:20
104.248.139.121 attackspam
(sshd) Failed SSH login from 104.248.139.121 (DE/Germany/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr  4 09:34:42 ubnt-55d23 sshd[17241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121  user=root
Apr  4 09:34:44 ubnt-55d23 sshd[17241]: Failed password for root from 104.248.139.121 port 43664 ssh2
2020-04-04 16:11:55
104.248.139.121 attack
Mar 28 16:31:05 dev0-dcde-rnet sshd[3144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121
Mar 28 16:31:06 dev0-dcde-rnet sshd[3144]: Failed password for invalid user oracle from 104.248.139.121 port 41678 ssh2
Mar 28 16:41:28 dev0-dcde-rnet sshd[3230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121
2020-03-29 00:22:33
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.139.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44587
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.139.52.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 09:34:31 CST 2022
;; MSG SIZE  rcvd: 107
HOST信息:
Host 52.139.248.104.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 52.139.248.104.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
60.167.176.144 attackbots
Jul 12 03:19:09 gw1 sshd[24209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.167.176.144
Jul 12 03:19:11 gw1 sshd[24209]: Failed password for invalid user eliora from 60.167.176.144 port 60202 ssh2
...
2020-07-12 06:51:07
197.114.228.13 attackbotsspam
SMTP/25/465/587 Probe, BadAuth, SPAM, Hack -
2020-07-12 07:21:38
185.132.53.234 attackbotsspam
Jul 11 22:05:12 OPSO sshd\[7354\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.132.53.234  user=root
Jul 11 22:05:14 OPSO sshd\[7354\]: Failed password for root from 185.132.53.234 port 41724 ssh2
Jul 11 22:05:14 OPSO sshd\[7359\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.132.53.234  user=admin
Jul 11 22:05:16 OPSO sshd\[7359\]: Failed password for admin from 185.132.53.234 port 46960 ssh2
Jul 11 22:05:17 OPSO sshd\[7423\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.132.53.234  user=admin
2020-07-12 07:05:49
46.238.197.12 attack
Jul 11 21:53:49 mail.srvfarm.net postfix/smtps/smtpd[1520267]: warning: unknown[46.238.197.12]: SASL PLAIN authentication failed: 
Jul 11 21:53:49 mail.srvfarm.net postfix/smtps/smtpd[1520267]: lost connection after AUTH from unknown[46.238.197.12]
Jul 11 22:01:35 mail.srvfarm.net postfix/smtps/smtpd[1521271]: warning: unknown[46.238.197.12]: SASL PLAIN authentication failed: 
Jul 11 22:01:35 mail.srvfarm.net postfix/smtps/smtpd[1521271]: lost connection after AUTH from unknown[46.238.197.12]
Jul 11 22:01:53 mail.srvfarm.net postfix/smtpd[1517907]: warning: unknown[46.238.197.12]: SASL PLAIN authentication failed:
2020-07-12 06:58:14
117.50.34.131 attackbots
Jul 11 23:06:27 [host] sshd[5468]: Invalid user li
Jul 11 23:06:27 [host] sshd[5468]: pam_unix(sshd:a
Jul 11 23:06:29 [host] sshd[5468]: Failed password
2020-07-12 07:06:29
201.187.99.212 attack
 TCP (SYN) 201.187.99.212:9370 -> port 80, len 44
2020-07-12 07:22:41
181.31.129.12 attackbotsspam
SSH Invalid Login
2020-07-12 07:00:10
222.186.180.6 attack
2020-07-11T23:19:34.055203shield sshd\[11280\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6  user=root
2020-07-11T23:19:35.851727shield sshd\[11280\]: Failed password for root from 222.186.180.6 port 7148 ssh2
2020-07-11T23:19:39.365578shield sshd\[11280\]: Failed password for root from 222.186.180.6 port 7148 ssh2
2020-07-11T23:19:41.924105shield sshd\[11280\]: Failed password for root from 222.186.180.6 port 7148 ssh2
2020-07-11T23:19:45.229219shield sshd\[11280\]: Failed password for root from 222.186.180.6 port 7148 ssh2
2020-07-12 07:23:48
111.67.199.188 attackbotsspam
Invalid user tracker from 111.67.199.188 port 42748
2020-07-12 07:01:12
142.93.216.68 attack
Jul 11 21:58:30 nas sshd[11525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68 
Jul 11 21:58:32 nas sshd[11525]: Failed password for invalid user lxyhs from 142.93.216.68 port 36306 ssh2
Jul 11 22:12:25 nas sshd[12099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68 
...
2020-07-12 07:15:04
78.128.113.114 attack
Jul 12 00:43:42 websrv1.derweidener.de postfix/smtpd[3223010]: warning: unknown[78.128.113.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jul 12 00:43:42 websrv1.derweidener.de postfix/smtpd[3223010]: lost connection after AUTH from unknown[78.128.113.114]
Jul 12 00:43:47 websrv1.derweidener.de postfix/smtpd[3223266]: lost connection after AUTH from unknown[78.128.113.114]
Jul 12 00:43:52 websrv1.derweidener.de postfix/smtpd[3223266]: lost connection after AUTH from unknown[78.128.113.114]
Jul 12 00:43:57 websrv1.derweidener.de postfix/smtpd[3223010]: lost connection after AUTH from unknown[78.128.113.114]
2020-07-12 06:57:45
183.67.94.130 attack
2020-07-11T16:14:02.695600linuxbox-skyline sshd[868949]: Invalid user admin from 183.67.94.130 port 58810
...
2020-07-12 07:27:16
190.25.49.114 attack
Jul 11 22:43:39 game-panel sshd[9994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.25.49.114
Jul 11 22:43:41 game-panel sshd[9994]: Failed password for invalid user yz from 190.25.49.114 port 54947 ssh2
Jul 11 22:50:04 game-panel sshd[10306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.25.49.114
2020-07-12 07:02:40
185.143.73.175 attackspam
Jul 12 00:48:44 srv01 postfix/smtpd\[14116\]: warning: unknown\[185.143.73.175\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jul 12 00:49:25 srv01 postfix/smtpd\[14557\]: warning: unknown\[185.143.73.175\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jul 12 00:50:07 srv01 postfix/smtpd\[14116\]: warning: unknown\[185.143.73.175\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jul 12 00:50:49 srv01 postfix/smtpd\[15516\]: warning: unknown\[185.143.73.175\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jul 12 00:51:31 srv01 postfix/smtpd\[14254\]: warning: unknown\[185.143.73.175\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
...
2020-07-12 06:55:39
81.29.214.123 attackspam
Jul 11 23:01:59 lukav-desktop sshd\[6703\]: Invalid user dingxiaoming from 81.29.214.123
Jul 11 23:01:59 lukav-desktop sshd\[6703\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.29.214.123
Jul 11 23:02:00 lukav-desktop sshd\[6703\]: Failed password for invalid user dingxiaoming from 81.29.214.123 port 44794 ssh2
Jul 11 23:04:56 lukav-desktop sshd\[6777\]: Invalid user f12 from 81.29.214.123
Jul 11 23:04:56 lukav-desktop sshd\[6777\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.29.214.123
2020-07-12 07:26:45

最近上报的IP列表

104.248.31.121 104.244.225.193 104.247.208.125 104.244.75.172
104.248.8.234 104.248.9.210 104.251.243.254 104.249.62.103
104.248.156.29 104.252.179.162 104.255.72.29 104.37.76.19
104.32.132.24 104.252.179.180 104.45.210.140 104.252.179.120
104.47.4.254 104.35.46.131 105.100.12.44 105.0.6.208