104.248.142.207

基本信息:

城市(city): Frankfurt am Main

省份(region): Hessen

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.248.142.140	attack	www.goldgier.de 104.248.142.140 [19/May/2020:08:27:16 +0200] "POST /wp-login.php HTTP/1.1" 200 8695 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" www.goldgier.de 104.248.142.140 [19/May/2020:08:27:16 +0200] "POST /wp-login.php HTTP/1.1" 200 8695 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-23 07:08:20
104.248.142.140	attackspam	104.248.142.140 - - [22/May/2020:13:48:35 +0200] "GET /wp-login.php HTTP/1.1" 200 5865 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.142.140 - - [22/May/2020:13:48:36 +0200] "POST /wp-login.php HTTP/1.1" 200 6116 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.142.140 - - [22/May/2020:13:48:36 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-23 03:02:36
104.248.142.61	attackspam	Wordpress Admin Login attack	2020-04-24 22:52:51
104.248.142.62	attackspambots	C2,DEF GET /w00tw00t.at.blackhats.romanian.anti-sec:) GET /phpMyAdmin/scripts/setup.php GET /phpmyadmin/scripts/setup.php GET /myadmin/scripts/setup.php GET /MyAdmin/scripts/setup.php	2020-04-07 13:19:45
104.248.142.140	attack	104.248.142.140 - - [06/Apr/2020:19:45:52 +0200] "GET /wp-login.php HTTP/1.1" 200 5821 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.142.140 - - [06/Apr/2020:19:45:52 +0200] "POST /wp-login.php HTTP/1.1" 200 6601 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.142.140 - - [06/Apr/2020:19:45:53 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-07 03:46:18
104.248.142.140	attackbots	CMS (WordPress or Joomla) login attempt.	2020-03-30 12:44:24
104.248.142.140	attackbots	104.248.142.140 - - [09/Mar/2020:14:06:11 +0000] "POST /wp-login.php HTTP/1.1" 200 6409 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.142.140 - - [09/Mar/2020:14:06:12 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-03-09 23:30:59
104.248.142.47	attackbots	C1,DEF GET /wp-login.php	2020-02-21 06:31:18
104.248.142.47	attack	Unauthorized connection attempt detected, IP banned.	2020-02-18 01:37:52
104.248.142.47	attack	SS5,WP GET /wp-login.php	2020-02-07 00:43:41
104.248.142.140	attackbots	104.248.142.140 - - [13/Jan/2020:08:27:02 +0100] "GET /wp-login.php HTTP/1.1" 404 4095 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.142.140 - - [13/Jan/2020:08:27:02 +0100] "GET /wp-login.php HTTP/1.1" 404 4095 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.142.140 - - [13/Jan/2020:08:27:03 +0100] "GET /wp-login.php HTTP/1.1" 404 4095 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-01-13 16:26:00
104.248.142.140	attack	104.248.142.140 - - \[03/Jan/2020:18:12:23 +0100\] "POST /wp-login.php HTTP/1.0" 200 7778 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 104.248.142.140 - - \[03/Jan/2020:18:12:24 +0100\] "POST /wp-login.php HTTP/1.0" 200 7592 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 104.248.142.140 - - \[03/Jan/2020:18:12:25 +0100\] "POST /wp-login.php HTTP/1.0" 200 7601 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-01-04 01:10:29
104.248.142.47	attack	Automatic report - XMLRPC Attack	2019-12-30 19:01:22
104.248.142.47	attackbots	WordPress login Brute force / Web App Attack on client site.	2019-12-22 21:27:29
104.248.142.47	attackspam	fail2ban honeypot	2019-12-06 14:59:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.142.207
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40446
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.142.207.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025110800 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 08 19:01:59 CST 2025
;; MSG SIZE  rcvd: 108

HOST信息:

Host 207.142.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 207.142.248.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
71.6.232.5	attack	11/28/2019-08:01:39.371899 71.6.232.5 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 71	2019-11-28 21:29:34
106.13.182.173	attackbots	Invalid user http from 106.13.182.173 port 52762	2019-11-28 21:49:08
113.186.88.19	attack	Unauthorized connection attempt from IP address 113.186.88.19 on Port 445(SMB)	2019-11-28 22:01:23
45.136.108.68	attackspam	Nov 28 08:54:54 nopemail postfix/smtps/smtpd[32657]: SSL_accept error from unknown[45.136.108.68]: -1 ...	2019-11-28 21:54:09
49.235.7.47	attack	Nov 28 08:34:08 pkdns2 sshd\[24434\]: Failed password for root from 49.235.7.47 port 44222 ssh2Nov 28 08:37:11 pkdns2 sshd\[24570\]: Invalid user tmopro from 49.235.7.47Nov 28 08:37:14 pkdns2 sshd\[24570\]: Failed password for invalid user tmopro from 49.235.7.47 port 41874 ssh2Nov 28 08:40:22 pkdns2 sshd\[24712\]: Invalid user taher from 49.235.7.47Nov 28 08:40:24 pkdns2 sshd\[24712\]: Failed password for invalid user taher from 49.235.7.47 port 39524 ssh2Nov 28 08:43:19 pkdns2 sshd\[24811\]: Invalid user tkepinski from 49.235.7.47 ...	2019-11-28 21:47:26
78.128.113.18	attack	Connection by 78.128.113.18 on port: 5500 got caught by honeypot at 11/28/2019 10:29:17 AM	2019-11-28 21:37:07
115.21.4.207	attackspam	Telnet/23 MH Probe, BF, Hack -	2019-11-28 21:58:03
5.8.47.47	attackbotsspam	REQUESTED PAGE: /hsvc_gallery/main.php?g2_view=shutterfly.PrintPhotos&g2_itemId=2005&g2_returnUrl=http%3A%2F%2Fwww2.hsvc.co.nz%2Fhsvc_gallery%2Fmain.php%3Fg2_itemId%3D2005&g2_authToken=e738bc5500ed	2019-11-28 21:51:16
165.22.148.76	attackspambots	2019-11-28T08:26:07.754635scmdmz1 sshd\[14746\]: Invalid user backup from 165.22.148.76 port 54056 2019-11-28T08:26:07.757561scmdmz1 sshd\[14746\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.148.76 2019-11-28T08:26:09.726047scmdmz1 sshd\[14746\]: Failed password for invalid user backup from 165.22.148.76 port 54056 ssh2 ...	2019-11-28 21:53:41
68.183.86.76	attackspam	2019-11-28T07:19:12.346005stark.klein-stark.info sshd\[4622\]: Invalid user test from 68.183.86.76 port 48116 2019-11-28T07:19:12.353394stark.klein-stark.info sshd\[4622\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.86.76 2019-11-28T07:19:13.800568stark.klein-stark.info sshd\[4622\]: Failed password for invalid user test from 68.183.86.76 port 48116 ssh2 ...	2019-11-28 21:25:50
190.98.10.156	attack	Brute force attempt	2019-11-28 22:00:17
220.202.210.196	attackbotsspam	[Aegis] @ 2019-11-28 06:18:06 0000 -> Sendmail rejected due to pre-greeting.	2019-11-28 21:50:27
59.49.99.124	attack	Nov 28 04:45:39 TORMINT sshd\[31017\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.49.99.124 user=root Nov 28 04:45:41 TORMINT sshd\[31017\]: Failed password for root from 59.49.99.124 port 61715 ssh2 Nov 28 04:53:25 TORMINT sshd\[31505\]: Invalid user beevor from 59.49.99.124 Nov 28 04:53:25 TORMINT sshd\[31505\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.49.99.124 ...	2019-11-28 21:38:11
129.28.31.102	attackbotsspam	Nov 27 23:52:57 php1 sshd\[15030\]: Invalid user lersbryggen from 129.28.31.102 Nov 27 23:52:57 php1 sshd\[15030\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.31.102 Nov 27 23:53:00 php1 sshd\[15030\]: Failed password for invalid user lersbryggen from 129.28.31.102 port 44514 ssh2 Nov 28 00:00:23 php1 sshd\[15637\]: Invalid user rosin from 129.28.31.102 Nov 28 00:00:23 php1 sshd\[15637\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.31.102	2019-11-28 21:55:10
106.124.137.103	attackspambots	Nov 28 10:00:49 MK-Soft-VM5 sshd[15884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.103 Nov 28 10:00:51 MK-Soft-VM5 sshd[15884]: Failed password for invalid user jboss from 106.124.137.103 port 59522 ssh2 ...	2019-11-28 21:28:56

最近上报的IP列表

82.165.93.36	195.78.54.77	147.185.133.111	45.142.193.171
120.239.11.85	112.97.193.142	147.185.133.188	2001:1600:aaaf:102:f816:3eff:fe39:bd0
20.163.10.187	14.1.150.118	38.240.36.246	247.129.96.154
103.120.91.227	27.224.127.11	216.132.108.123	27.224.127.203
3.79.2.152	113.195.55.205	143.198.13.10	8.105.238.76