必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
104.248.145.254 attackbots
[N1.H1.VM1] Port Scanner Detected Blocked by UFW
2020-09-29 04:25:26
104.248.145.254 attack
[N3.H3.VM3] Port Scanner Detected Blocked by UFW
2020-09-28 20:40:54
104.248.145.254 attackspam
firewall-block, port(s): 4205/tcp
2020-09-28 12:47:46
104.248.145.254 attack
 TCP (SYN) 104.248.145.254:59928 -> port 15830, len 44
2020-09-04 03:43:34
104.248.145.254 attackspam
TCP ports : 11182 / 15830
2020-09-03 19:19:07
104.248.145.254 attack
 TCP (SYN) 104.248.145.254:51047 -> port 31845, len 44
2020-08-13 04:54:36
104.248.145.254 attackbots
" "
2020-08-07 07:34:25
104.248.145.254 attack
Aug  6 16:45:53 debian-2gb-nbg1-2 kernel: \[18983609.468139\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.248.145.254 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x40 TTL=242 ID=16833 PROTO=TCP SPT=43412 DPT=32345 WINDOW=1024 RES=0x00 SYN URGP=0
2020-08-07 03:27:55
104.248.145.254 attackbots
scans once in preceeding hours on the ports (in chronological order) 8748 resulting in total of 6 scans from 104.248.0.0/16 block.
2020-08-05 20:37:31
104.248.145.254 attackbotsspam
 TCP (SYN) 104.248.145.254:48778 -> port 2378, len 44
2020-08-02 23:36:48
104.248.145.254 attack
Port scan denied
2020-07-28 02:07:35
104.248.145.254 attackbots
firewall-block, port(s): 8532/tcp
2020-07-18 19:01:14
104.248.145.254 attackspam
firewall-block, port(s): 29634/tcp
2020-07-07 00:13:46
104.248.145.163 attackspam
Invalid user acj from 104.248.145.163 port 60982
2020-02-12 02:45:08
104.248.145.163 attackbots
Jan 31 00:05:40 php1 sshd\[4148\]: Invalid user sumita from 104.248.145.163
Jan 31 00:05:40 php1 sshd\[4148\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.145.163
Jan 31 00:05:42 php1 sshd\[4148\]: Failed password for invalid user sumita from 104.248.145.163 port 49590 ssh2
Jan 31 00:09:03 php1 sshd\[4514\]: Invalid user ilavalagi from 104.248.145.163
Jan 31 00:09:03 php1 sshd\[4514\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.145.163
2020-01-31 18:14:00
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.145.156
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11265
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.145.156.		IN	A

;; AUTHORITY SECTION:
.			165	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031500 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 16 02:00:27 CST 2022
;; MSG SIZE  rcvd: 108
HOST信息:
156.145.248.104.in-addr.arpa domain name pointer do-sgp1-01.redhill.web.lk.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
156.145.248.104.in-addr.arpa	name = do-sgp1-01.redhill.web.lk.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
94.102.50.166 attack
[MK-VM5] Blocked by UFW
2020-09-08 02:59:20
139.59.92.19 attackspambots
 TCP (SYN) 139.59.92.19:54389 -> port 17475, len 44
2020-09-08 02:43:17
212.72.214.149 attack
Automatic report - Banned IP Access
2020-09-08 03:12:19
103.120.160.178 attack
Wordpress attack
2020-09-08 02:45:04
46.118.114.118 attackspambots
46.118.114.118 - - [07/Sep/2020:19:30:58 +0200] "POST //xmlrpc.php HTTP/1.1" 403 41485 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
46.118.114.118 - - [07/Sep/2020:19:30:59 +0200] "POST //xmlrpc.php HTTP/1.1" 403 41485 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
...
2020-09-08 02:58:52
177.54.49.69 attackspam
2020-09-07T02:51:40.814084linuxbox-skyline sshd[129536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.54.49.69  user=root
2020-09-07T02:51:42.908364linuxbox-skyline sshd[129536]: Failed password for root from 177.54.49.69 port 36260 ssh2
...
2020-09-08 03:06:39
10.197.32.140 attack
Received: from 10.197.32.140
 by atlas116.free.mail.bf1.yahoo.com with HTTP; Sat, 5 Sep 2020 18:48:07 +0000
Return-Path: 
Received: from 209.85.217.66 (EHLO mail-vs1-f66.google.com)
 by 10.197.32.140 with SMTPs; Sat, 5 Sep 2020 18:48:07 +0000
X-Originating-Ip: [209.85.217.66]
Received-SPF: pass (domain of gmail.com designates 209.85.217.66 as permitted sender)
Authentication-Results: atlas116.free.mail.bf1.yahoo.com;
 dkim=pass header.i=@gmail.com header.s=20161025;
 spf=pass smtp.mailfrom=gmail.com;
 dmarc=success(p=NONE,sp=QUARANTINE) header.from=gmail.com;
X-Apparently-To: ledlib@yahoo.com; Sat, 5 Sep 2020 18:48:0
2020-09-08 03:07:30
24.142.34.181 attackbots
Brute-force attempt banned
2020-09-08 03:08:32
192.241.239.82 attack
Port scan denied
2020-09-08 03:06:08
45.171.144.36 attack
Lines containing failures of 45.171.144.36
Sep  4 05:04:00 shared02 sshd[25546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.171.144.36  user=r.r
Sep  4 05:04:02 shared02 sshd[25546]: Failed password for r.r from 45.171.144.36 port 54672 ssh2
Sep  4 05:04:02 shared02 sshd[25546]: Received disconnect from 45.171.144.36 port 54672:11: Bye Bye [preauth]
Sep  4 05:04:02 shared02 sshd[25546]: Disconnected from authenticating user r.r 45.171.144.36 port 54672 [preauth]
Sep  4 05:12:07 shared02 sshd[28560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.171.144.36  user=r.r
Sep  4 05:12:09 shared02 sshd[28560]: Failed password for r.r from 45.171.144.36 port 59738 ssh2
Sep  4 05:12:09 shared02 sshd[28560]: Received disconnect from 45.171.144.36 port 59738:11: Bye Bye [preauth]
Sep  4 05:12:09 shared02 sshd[28560]: Disconnected from authenticating user r.r 45.171.144.36 port 59738 [preauth........
------------------------------
2020-09-08 02:54:56
41.251.254.98 attackspambots
Sep 07 03:08:19 askasleikir sshd[92403]: Failed password for root from 41.251.254.98 port 58206 ssh2
2020-09-08 03:04:47
91.121.173.41 attackspam
SSH brute-force attempt
2020-09-08 03:04:06
118.193.35.172 attack
Brute%20Force%20SSH
2020-09-08 03:12:51
34.97.185.35 attack
Port scanning [2 denied]
2020-09-08 03:09:11
218.191.223.71 attackspambots
2020-09-07T17:31:01.776316luisaranguren sshd[783979]: Failed password for root from 218.191.223.71 port 38317 ssh2
2020-09-07T17:31:03.100659luisaranguren sshd[783979]: Connection closed by authenticating user root 218.191.223.71 port 38317 [preauth]
...
2020-09-08 03:17:29

最近上报的IP列表

104.248.144.126 190.32.141.121 104.248.145.196 104.248.145.246
104.248.147.192 104.248.148.229 104.248.148.255 104.248.149.170
104.248.149.186 104.248.15.78 104.248.150.221 104.248.151.122
104.248.151.221 104.248.152.245 104.248.153.91 104.248.156.232
104.248.211.1 104.248.225.176 104.248.228.132 251.236.200.33