104.248.144.195

基本信息:

城市(city): Singapore

省份(region): unknown

国家(country): Singapore

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.248.144.94	attackbots	sshd jail - ssh hack attempt	2020-07-11 00:48:47
104.248.144.94	attackbotsspam	$f2bV_matches	2020-07-10 16:55:02
104.248.144.208	attack	104.248.144.208 - - [30/Jun/2020:13:44:09 +0100] "POST /wp-login.php HTTP/1.1" 200 1996 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.144.208 - - [30/Jun/2020:13:44:13 +0100] "POST /wp-login.php HTTP/1.1" 200 1924 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.144.208 - - [30/Jun/2020:13:44:15 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-01 00:47:22
104.248.144.208	attackspambots	104.248.144.208 - - [29/Jun/2020:04:58:23 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1865 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.144.208 - - [29/Jun/2020:04:58:26 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1857 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.144.208 - - [29/Jun/2020:04:58:27 +0100] "POST /wp/xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-06-29 12:14:39
104.248.144.208	attackspam	Attempt to log in with non-existing username: admin	2020-06-04 14:33:13
104.248.144.208	attackbots	104.248.144.208 - - [01/Jun/2020:14:27:58 +0200] "GET /wp-login.php HTTP/1.1" 200 6364 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.144.208 - - [01/Jun/2020:14:28:00 +0200] "POST /wp-login.php HTTP/1.1" 200 6615 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.144.208 - - [01/Jun/2020:14:28:07 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-01 23:04:31
104.248.144.208	attackspambots	104.248.144.208 - - [28/May/2020:14:03:14 +0200] "GET /wp-login.php HTTP/1.1" 200 5865 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.144.208 - - [28/May/2020:14:03:17 +0200] "POST /wp-login.php HTTP/1.1" 200 6116 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.144.208 - - [28/May/2020:14:03:18 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-28 20:54:25
104.248.144.208	attack	abasicmove.de 104.248.144.208 [10/May/2020:15:30:29 +0200] "POST /wp-login.php HTTP/1.1" 200 6098 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" abasicmove.de 104.248.144.208 [10/May/2020:15:30:30 +0200] "POST /wp-login.php HTTP/1.1" 200 5957 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-16 19:13:49
104.248.144.208	attackspambots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-05-15 08:20:54
104.248.144.208	attackbots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-05-11 04:01:42
104.248.144.208	attackbotsspam	CMS (WordPress or Joomla) login attempt.	2020-03-26 03:27:09
104.248.144.147	attack	Mar 16 15:35:18 sshd\[11502\]: User root from 104.248.144.147 not allowed because not listed in AllowUsersMar 16 15:35:20 sshd\[11502\]: Failed password for invalid user root from 104.248.144.147 port 39346 ssh2 ...	2020-03-17 07:07:58
104.248.144.208	attackspam	CMS (WordPress or Joomla) login attempt.	2020-03-14 09:32:48
104.248.144.208	attackspam	xmlrpc attack	2020-02-19 21:43:52
104.248.144.208	attack	Automatic report - XMLRPC Attack	2020-02-03 14:06:18

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.144.195
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18784
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.248.144.195.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062901 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jun 30 07:23:37 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 195.144.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 195.144.248.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
196.43.178.1	attackspam	2020-02-22T18:12:58.781555scmdmz1 sshd[32360]: Invalid user web from 196.43.178.1 port 7098 2020-02-22T18:12:58.784478scmdmz1 sshd[32360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.43.178.1 2020-02-22T18:12:58.781555scmdmz1 sshd[32360]: Invalid user web from 196.43.178.1 port 7098 2020-02-22T18:13:00.450260scmdmz1 sshd[32360]: Failed password for invalid user web from 196.43.178.1 port 7098 ssh2 2020-02-22T18:16:02.616146scmdmz1 sshd[32629]: Invalid user xiehongjun from 196.43.178.1 port 37860 ...	2020-02-23 05:40:44
95.10.237.13	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 22-02-2020 16:45:09.	2020-02-23 05:56:21
223.100.111.77	attackspam	suspicious action Sat, 22 Feb 2020 13:45:07 -0300	2020-02-23 05:57:55
134.209.175.243	attack	Feb 22 23:07:29 server sshd\[2876\]: Invalid user es from 134.209.175.243 Feb 22 23:07:29 server sshd\[2876\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.175.243 Feb 22 23:07:31 server sshd\[2876\]: Failed password for invalid user es from 134.209.175.243 port 41328 ssh2 Feb 22 23:20:08 server sshd\[5174\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.175.243 user=root Feb 22 23:20:10 server sshd\[5174\]: Failed password for root from 134.209.175.243 port 39216 ssh2 ...	2020-02-23 06:02:47
206.132.225.154	attackbots	Automatic report - XMLRPC Attack	2020-02-23 05:46:00
1.6.123.197	attackspambots	Unauthorized connection attempt from IP address 1.6.123.197 on Port 445(SMB)	2020-02-23 05:47:20
114.69.244.210	attackbotsspam	Sending SPAM email	2020-02-23 05:52:03
117.184.114.139	attackspam	Feb 22 10:27:30 askasleikir sshd[131493]: Failed password for invalid user web from 117.184.114.139 port 52748 ssh2	2020-02-23 06:03:56
91.230.153.121	attack	Feb 22 23:04:20 debian-2gb-nbg1-2 kernel: \[4668265.010997\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=91.230.153.121 DST=195.201.40.59 LEN=40 TOS=0x10 PREC=0x60 TTL=245 ID=60077 PROTO=TCP SPT=51268 DPT=52575 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-23 06:11:33
123.125.71.45	attackbots	Automatic report - Banned IP Access	2020-02-23 06:08:03
1.53.89.225	attackspambots	Unauthorized connection attempt from IP address 1.53.89.225 on Port 445(SMB)	2020-02-23 05:39:54
181.112.159.194	attackspam	suspicious action Sat, 22 Feb 2020 13:44:51 -0300	2020-02-23 06:14:47
46.162.74.49	attackbots	2020-02-22T17:45:18.671698vps773228.ovh.net sshd[8644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46-162-74-49.cust.bredband2.com user=root 2020-02-22T17:45:20.546605vps773228.ovh.net sshd[8644]: Failed password for root from 46.162.74.49 port 40014 ssh2 2020-02-22T17:45:21.766426vps773228.ovh.net sshd[8646]: Invalid user ethos from 46.162.74.49 port 40158 2020-02-22T17:45:21.837593vps773228.ovh.net sshd[8646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46-162-74-49.cust.bredband2.com 2020-02-22T17:45:21.766426vps773228.ovh.net sshd[8646]: Invalid user ethos from 46.162.74.49 port 40158 2020-02-22T17:45:24.371492vps773228.ovh.net sshd[8646]: Failed password for invalid user ethos from 46.162.74.49 port 40158 ssh2 2020-02-22T17:45:25.743964vps773228.ovh.net sshd[8648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46-162-74-49.cust.bredband2.com user=roo ...	2020-02-23 05:36:40
14.171.130.226	attackspam	port scan and connect, tcp 23 (telnet)	2020-02-23 05:48:55
190.0.159.86	attackbots	Feb 22 21:41:13 mail sshd[17316]: Invalid user tomcat from 190.0.159.86 ...	2020-02-23 05:45:36

最近上报的IP列表

114.80.216.162	106.51.64.85	106.51.53.212	103.115.195.42
103.87.31.205	103.48.21.58	101.99.6.122	92.252.166.85
92.252.156.184	77.247.108.127	59.124.222.3	46.98.80.163
200.66.113.88	168.228.148.167	106.52.104.231	95.64.77.154
14.173.5.58	187.109.59.1	207.46.13.21	180.244.102.126