必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
104.248.145.254 attackbots
[N1.H1.VM1] Port Scanner Detected Blocked by UFW
2020-09-29 04:25:26
104.248.145.254 attack
[N3.H3.VM3] Port Scanner Detected Blocked by UFW
2020-09-28 20:40:54
104.248.145.254 attackspam
firewall-block, port(s): 4205/tcp
2020-09-28 12:47:46
104.248.145.254 attack
 TCP (SYN) 104.248.145.254:59928 -> port 15830, len 44
2020-09-04 03:43:34
104.248.145.254 attackspam
TCP ports : 11182 / 15830
2020-09-03 19:19:07
104.248.145.254 attack
 TCP (SYN) 104.248.145.254:51047 -> port 31845, len 44
2020-08-13 04:54:36
104.248.145.254 attackbots
" "
2020-08-07 07:34:25
104.248.145.254 attack
Aug  6 16:45:53 debian-2gb-nbg1-2 kernel: \[18983609.468139\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.248.145.254 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x40 TTL=242 ID=16833 PROTO=TCP SPT=43412 DPT=32345 WINDOW=1024 RES=0x00 SYN URGP=0
2020-08-07 03:27:55
104.248.145.254 attackbots
scans once in preceeding hours on the ports (in chronological order) 8748 resulting in total of 6 scans from 104.248.0.0/16 block.
2020-08-05 20:37:31
104.248.145.254 attackbotsspam
 TCP (SYN) 104.248.145.254:48778 -> port 2378, len 44
2020-08-02 23:36:48
104.248.145.254 attack
Port scan denied
2020-07-28 02:07:35
104.248.145.254 attackbots
firewall-block, port(s): 8532/tcp
2020-07-18 19:01:14
104.248.145.254 attackspam
firewall-block, port(s): 29634/tcp
2020-07-07 00:13:46
104.248.145.163 attackspam
Invalid user acj from 104.248.145.163 port 60982
2020-02-12 02:45:08
104.248.145.163 attackbots
Jan 31 00:05:40 php1 sshd\[4148\]: Invalid user sumita from 104.248.145.163
Jan 31 00:05:40 php1 sshd\[4148\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.145.163
Jan 31 00:05:42 php1 sshd\[4148\]: Failed password for invalid user sumita from 104.248.145.163 port 49590 ssh2
Jan 31 00:09:03 php1 sshd\[4514\]: Invalid user ilavalagi from 104.248.145.163
Jan 31 00:09:03 php1 sshd\[4514\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.145.163
2020-01-31 18:14:00
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.145.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11813
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.145.6.			IN	A

;; AUTHORITY SECTION:
.			41	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 20:23:44 CST 2022
;; MSG SIZE  rcvd: 106
HOST信息:
6.145.248.104.in-addr.arpa domain name pointer newsletter.thnic.or.th.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
6.145.248.104.in-addr.arpa	name = newsletter.thnic.or.th.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
46.101.18.47 attackbots
Automatic report - XMLRPC Attack
2019-10-27 04:36:41
5.196.217.177 attack
Oct 26 23:01:16 mail postfix/smtpd[22821]: warning: unknown[5.196.217.177]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Oct 26 23:02:09 mail postfix/smtpd[22388]: warning: unknown[5.196.217.177]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Oct 26 23:02:14 mail postfix/smtpd[22101]: warning: unknown[5.196.217.177]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2019-10-27 05:09:13
42.176.5.132 attack
Unauthorised access (Oct 26) SRC=42.176.5.132 LEN=40 TTL=49 ID=29658 TCP DPT=8080 WINDOW=58535 SYN 
Unauthorised access (Oct 26) SRC=42.176.5.132 LEN=40 TTL=49 ID=1155 TCP DPT=8080 WINDOW=3171 SYN 
Unauthorised access (Oct 26) SRC=42.176.5.132 LEN=40 TTL=49 ID=14765 TCP DPT=8080 WINDOW=3171 SYN 
Unauthorised access (Oct 25) SRC=42.176.5.132 LEN=40 TTL=49 ID=19324 TCP DPT=8080 WINDOW=58535 SYN 
Unauthorised access (Oct 24) SRC=42.176.5.132 LEN=40 TTL=49 ID=13681 TCP DPT=8080 WINDOW=39418 SYN 
Unauthorised access (Oct 24) SRC=42.176.5.132 LEN=40 TTL=49 ID=6372 TCP DPT=8080 WINDOW=39418 SYN
2019-10-27 04:57:40
46.105.16.246 attackbots
Oct 26 23:19:43 server sshd\[31964\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=246.ip-46-105-16.eu  user=root
Oct 26 23:19:45 server sshd\[31964\]: Failed password for root from 46.105.16.246 port 60846 ssh2
Oct 26 23:28:49 server sshd\[1650\]: Invalid user netopia from 46.105.16.246
Oct 26 23:28:49 server sshd\[1650\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=246.ip-46-105-16.eu 
Oct 26 23:28:51 server sshd\[1650\]: Failed password for invalid user netopia from 46.105.16.246 port 43116 ssh2
...
2019-10-27 04:59:30
112.85.42.88 attackspambots
Oct 26 20:28:10 localhost sshd[14140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.88  user=root
Oct 26 20:28:12 localhost sshd[14140]: Failed password for root from 112.85.42.88 port 14416 ssh2
Oct 26 20:28:10 localhost sshd[14140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.88  user=root
Oct 26 20:28:12 localhost sshd[14140]: Failed password for root from 112.85.42.88 port 14416 ssh2
Oct 26 20:28:15 localhost sshd[14140]: Failed password for root from 112.85.42.88 port 14416 ssh2
2019-10-27 04:49:13
124.82.156.29 attackspambots
2019-10-26T20:29:30.304471abusebot.cloudsearch.cf sshd\[26899\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.82.156.29  user=root
2019-10-27 04:38:21
107.219.88.23 attack
Connection by 107.219.88.23 on port: 23 got caught by honeypot at 10/26/2019 1:28:33 PM
2019-10-27 05:09:35
222.186.175.154 attackbots
detected by Fail2Ban
2019-10-27 04:50:35
222.186.173.142 attack
2019-10-26T21:02:01.388662shield sshd\[7295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142  user=root
2019-10-26T21:02:03.454718shield sshd\[7295\]: Failed password for root from 222.186.173.142 port 33712 ssh2
2019-10-26T21:02:07.299868shield sshd\[7295\]: Failed password for root from 222.186.173.142 port 33712 ssh2
2019-10-26T21:02:11.361505shield sshd\[7295\]: Failed password for root from 222.186.173.142 port 33712 ssh2
2019-10-26T21:02:15.639892shield sshd\[7295\]: Failed password for root from 222.186.173.142 port 33712 ssh2
2019-10-27 05:02:26
222.186.175.202 attack
Oct 26 10:51:41 web1 sshd\[20197\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202  user=root
Oct 26 10:51:43 web1 sshd\[20197\]: Failed password for root from 222.186.175.202 port 65170 ssh2
Oct 26 10:52:09 web1 sshd\[20243\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202  user=root
Oct 26 10:52:11 web1 sshd\[20243\]: Failed password for root from 222.186.175.202 port 63938 ssh2
Oct 26 10:52:27 web1 sshd\[20243\]: Failed password for root from 222.186.175.202 port 63938 ssh2
2019-10-27 04:57:19
185.176.27.254 attack
10/26/2019-16:46:00.914469 185.176.27.254 Protocol: 6 ET SCAN NMAP -sS window 1024
2019-10-27 04:47:31
182.61.35.76 attackbots
SSH brutforce
2019-10-27 04:41:10
222.186.173.215 attackspam
2019-10-24 21:20:04 -> 2019-10-26 13:07:32 : 27 login attempts (222.186.173.215)
2019-10-27 05:06:51
138.197.152.113 attack
$f2bV_matches
2019-10-27 04:36:21
180.64.71.114 attackspambots
IP attempted unauthorised action
2019-10-27 04:43:45

最近上报的IP列表

104.248.145.60 104.248.146.100 104.248.145.240 101.109.59.152
104.248.146.104 104.248.146.12 104.248.146.137 104.248.146.145
104.248.146.157 104.248.146.159 104.248.146.29 104.248.146.253
104.248.146.235 101.109.59.158 104.248.146.174 104.248.146.46
104.248.147.104 104.248.147.162 104.248.147.15 104.248.147.196