104.248.142.207

基本信息:

城市(city): Frankfurt am Main

省份(region): Hessen

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.248.142.140	attack	www.goldgier.de 104.248.142.140 [19/May/2020:08:27:16 +0200] "POST /wp-login.php HTTP/1.1" 200 8695 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" www.goldgier.de 104.248.142.140 [19/May/2020:08:27:16 +0200] "POST /wp-login.php HTTP/1.1" 200 8695 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-23 07:08:20
104.248.142.140	attackspam	104.248.142.140 - - [22/May/2020:13:48:35 +0200] "GET /wp-login.php HTTP/1.1" 200 5865 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.142.140 - - [22/May/2020:13:48:36 +0200] "POST /wp-login.php HTTP/1.1" 200 6116 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.142.140 - - [22/May/2020:13:48:36 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-23 03:02:36
104.248.142.61	attackspam	Wordpress Admin Login attack	2020-04-24 22:52:51
104.248.142.62	attackspambots	C2,DEF GET /w00tw00t.at.blackhats.romanian.anti-sec:) GET /phpMyAdmin/scripts/setup.php GET /phpmyadmin/scripts/setup.php GET /myadmin/scripts/setup.php GET /MyAdmin/scripts/setup.php	2020-04-07 13:19:45
104.248.142.140	attack	104.248.142.140 - - [06/Apr/2020:19:45:52 +0200] "GET /wp-login.php HTTP/1.1" 200 5821 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.142.140 - - [06/Apr/2020:19:45:52 +0200] "POST /wp-login.php HTTP/1.1" 200 6601 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.142.140 - - [06/Apr/2020:19:45:53 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-07 03:46:18
104.248.142.140	attackbots	CMS (WordPress or Joomla) login attempt.	2020-03-30 12:44:24
104.248.142.140	attackbots	104.248.142.140 - - [09/Mar/2020:14:06:11 +0000] "POST /wp-login.php HTTP/1.1" 200 6409 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.142.140 - - [09/Mar/2020:14:06:12 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-03-09 23:30:59
104.248.142.47	attackbots	C1,DEF GET /wp-login.php	2020-02-21 06:31:18
104.248.142.47	attack	Unauthorized connection attempt detected, IP banned.	2020-02-18 01:37:52
104.248.142.47	attack	SS5,WP GET /wp-login.php	2020-02-07 00:43:41
104.248.142.140	attackbots	104.248.142.140 - - [13/Jan/2020:08:27:02 +0100] "GET /wp-login.php HTTP/1.1" 404 4095 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.142.140 - - [13/Jan/2020:08:27:02 +0100] "GET /wp-login.php HTTP/1.1" 404 4095 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.142.140 - - [13/Jan/2020:08:27:03 +0100] "GET /wp-login.php HTTP/1.1" 404 4095 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-01-13 16:26:00
104.248.142.140	attack	104.248.142.140 - - \[03/Jan/2020:18:12:23 +0100\] "POST /wp-login.php HTTP/1.0" 200 7778 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 104.248.142.140 - - \[03/Jan/2020:18:12:24 +0100\] "POST /wp-login.php HTTP/1.0" 200 7592 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 104.248.142.140 - - \[03/Jan/2020:18:12:25 +0100\] "POST /wp-login.php HTTP/1.0" 200 7601 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-01-04 01:10:29
104.248.142.47	attack	Automatic report - XMLRPC Attack	2019-12-30 19:01:22
104.248.142.47	attackbots	WordPress login Brute force / Web App Attack on client site.	2019-12-22 21:27:29
104.248.142.47	attackspam	fail2ban honeypot	2019-12-06 14:59:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.142.207
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40446
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.142.207.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025110800 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 08 19:01:59 CST 2025
;; MSG SIZE  rcvd: 108

HOST信息:

Host 207.142.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 207.142.248.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
109.73.188.130	attackspambots	Automatic report - Port Scan Attack	2019-07-17 07:36:34
159.89.126.117	attack	Jul 16 22:16:08 email sshd\[2901\]: Invalid user user from 159.89.126.117 Jul 16 22:16:08 email sshd\[2901\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.126.117 Jul 16 22:16:10 email sshd\[2901\]: Failed password for invalid user user from 159.89.126.117 port 49852 ssh2 Jul 16 22:17:25 email sshd\[3155\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.126.117 user=mail Jul 16 22:17:28 email sshd\[3155\]: Failed password for mail from 159.89.126.117 port 49288 ssh2 ...	2019-07-17 08:01:09
117.102.88.119	attackspam	2019-07-16T23:26:49.099558abusebot-5.cloudsearch.cf sshd\[32435\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.102.88.119 user=root	2019-07-17 07:27:01
109.230.47.100	attackspam	WordPress wp-login brute force :: 109.230.47.100 0.104 BYPASS [17/Jul/2019:07:08:51 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-07-17 07:43:07
181.48.29.35	attackbotsspam	Jul 17 01:31:27 giegler sshd[11846]: Invalid user sftp from 181.48.29.35 port 42559	2019-07-17 07:40:33
92.119.160.145	attackbots	Jul 16 16:13:10 localhost kernel: [14552183.761853] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=92.119.160.145 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=61992 PROTO=TCP SPT=47102 DPT=33886 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 16 16:13:10 localhost kernel: [14552183.761877] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=92.119.160.145 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=61992 PROTO=TCP SPT=47102 DPT=33886 SEQ=2399147528 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 16 18:53:02 localhost kernel: [14561775.907718] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=92.119.160.145 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=13277 PROTO=TCP SPT=47102 DPT=60300 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 16 18:53:02 localhost kernel: [14561775.907743] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=92.119.160.145 DST=[mungedIP2] LEN=40 TO	2019-07-17 07:30:44
159.65.183.47	attackbotsspam	Jul 17 01:02:33 debian sshd\[23163\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.183.47 user=sync Jul 17 01:02:35 debian sshd\[23163\]: Failed password for sync from 159.65.183.47 port 57814 ssh2 ...	2019-07-17 08:03:43
193.34.145.6	attackbots	2019-07-14 06:27:54 -> 2019-07-16 23:01:46 : 1171 login attempts (193.34.145.6)	2019-07-17 07:53:37
134.73.129.4	attackbots	Automatic report - SSH Brute-Force Attack	2019-07-17 08:02:48
71.6.232.4	attackspam	firewall-block, port(s): 587/tcp	2019-07-17 07:29:15
140.129.1.237	attackbotsspam	SSH Brute-Force reported by Fail2Ban	2019-07-17 07:32:12
64.113.32.29	attackbotsspam	Jul 17 00:27:39 km20725 sshd\[27559\]: Failed password for root from 64.113.32.29 port 40282 ssh2Jul 17 00:27:42 km20725 sshd\[27559\]: Failed password for root from 64.113.32.29 port 40282 ssh2Jul 17 00:27:45 km20725 sshd\[27559\]: Failed password for root from 64.113.32.29 port 40282 ssh2Jul 17 00:27:48 km20725 sshd\[27559\]: Failed password for root from 64.113.32.29 port 40282 ssh2 ...	2019-07-17 08:04:54
120.92.104.116	attackspambots	Jul 1 13:46:14 server sshd\[69914\]: Invalid user miu from 120.92.104.116 Jul 1 13:46:15 server sshd\[69914\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.104.116 Jul 1 13:46:16 server sshd\[69914\]: Failed password for invalid user miu from 120.92.104.116 port 8148 ssh2 ...	2019-07-17 07:35:09
112.140.185.64	attack	Jul 17 00:02:29 cvbmail sshd\[26922\]: Invalid user kbecker from 112.140.185.64 Jul 17 00:02:29 cvbmail sshd\[26922\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.140.185.64 Jul 17 00:02:31 cvbmail sshd\[26922\]: Failed password for invalid user kbecker from 112.140.185.64 port 56062 ssh2	2019-07-17 07:36:16
222.186.15.110	attackspambots	SSH Brute-Force reported by Fail2Ban	2019-07-17 07:49:48

最近上报的IP列表

82.165.93.36	195.78.54.77	147.185.133.111	45.142.193.171
120.239.11.85	112.97.193.142	147.185.133.188	2001:1600:aaaf:102:f816:3eff:fe39:bd0
20.163.10.187	14.1.150.118	38.240.36.246	247.129.96.154
103.120.91.227	27.224.127.11	216.132.108.123	27.224.127.203
3.79.2.152	113.195.55.205	143.198.13.10	8.105.238.76