104.248.149.55

基本信息:

城市(city): Singapore

省份(region): unknown

国家(country): Singapore

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.248.149.43	attack	104.248.149.43 - - [30/Sep/2020:00:20:22 +0100] "POST /wp-login.php HTTP/1.1" 200 2224 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.149.43 - - [30/Sep/2020:00:20:23 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.149.43 - - [30/Sep/2020:00:33:45 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 2480 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-30 09:40:37
104.248.149.43	attack	can 104.248.149.43 [29/Sep/2020:03:54:45 "-" "POST /wp-login.php 200 2021 104.248.149.43 [29/Sep/2020:20:52:24 "-" "GET /wp-login.php 200 4676 104.248.149.43 [29/Sep/2020:20:52:25 "-" "POST /wp-login.php 200 4676	2020-09-30 02:31:05
104.248.149.43	attackbotsspam	CMS (WordPress or Joomla) login attempt.	2020-09-29 18:33:58
104.248.149.130	attack	Invalid user student from 104.248.149.130 port 58998	2020-09-25 19:47:35
104.248.149.130	attack	$f2bV_matches	2020-09-19 01:01:39
104.248.149.130	attackbots	SSH Brute-Forcing (server2)	2020-09-18 17:03:26
104.248.149.130	attackspambots	SSH bruteforce	2020-09-18 07:18:38
104.248.149.130	attackbotsspam	SSH Login Bruteforce	2020-09-12 19:43:39
104.248.149.130	attackbotsspam	Sep 1 14:25:13 mail sshd\[21877\]: Invalid user hqy from 104.248.149.130 ...	2020-09-02 03:52:53
104.248.149.130	attackbots	Aug 21 09:20:58 pkdns2 sshd\[1477\]: Invalid user wup from 104.248.149.130Aug 21 09:21:00 pkdns2 sshd\[1477\]: Failed password for invalid user wup from 104.248.149.130 port 38152 ssh2Aug 21 09:25:09 pkdns2 sshd\[1683\]: Invalid user history from 104.248.149.130Aug 21 09:25:10 pkdns2 sshd\[1683\]: Failed password for invalid user history from 104.248.149.130 port 46970 ssh2Aug 21 09:29:33 pkdns2 sshd\[1836\]: Invalid user vladimir from 104.248.149.130Aug 21 09:29:35 pkdns2 sshd\[1836\]: Failed password for invalid user vladimir from 104.248.149.130 port 55920 ssh2 ...	2020-08-21 14:53:47
104.248.149.206	attackbotsspam	Aug 18 10:52:24 hidden sshd[10329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.149.206 Aug 18 10:52:27 hidden sshd[10329]: Failed password for invalid user mc3 from 104.248.149.206 port 43999 ssh2 Aug 18 11:04:39 hidden sshd[12496]: Invalid user nodejs from 104.248.149.206 port 64195	2020-08-19 21:36:24
104.248.149.130	attackbotsspam	Aug 15 14:35:55 abendstille sshd\[3088\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.149.130 user=root Aug 15 14:35:56 abendstille sshd\[3088\]: Failed password for root from 104.248.149.130 port 35778 ssh2 Aug 15 14:38:32 abendstille sshd\[5588\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.149.130 user=root Aug 15 14:38:34 abendstille sshd\[5588\]: Failed password for root from 104.248.149.130 port 46666 ssh2 Aug 15 14:41:16 abendstille sshd\[8294\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.149.130 user=root ...	2020-08-15 20:46:41
104.248.149.130	attackspam	Aug 14 09:11:31 ws24vmsma01 sshd[75930]: Failed password for root from 104.248.149.130 port 57374 ssh2 ...	2020-08-14 23:44:00
104.248.149.130	attackspambots	Port Scan detected from 104.248.149.130 (SG/Singapore/-/Singapore (Pioneer)/-). 4 hits in the last 85 seconds	2020-08-13 13:42:08
104.248.149.130	attackbotsspam	$f2bV_matches	2020-08-09 16:37:32

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.149.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31224
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.149.55.			IN	A

;; AUTHORITY SECTION:
.			470	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022052602 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 27 07:50:38 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

55.149.248.104.in-addr.arpa domain name pointer do.02.singapore.01.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
55.149.248.104.in-addr.arpa	name = do.02.singapore.01.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.186.52.89	attackspambots	$f2bV_matches	2019-10-07 12:40:17
183.2.168.219	attackspambots	2019-10-07T05:49:46.9819931240 sshd\[11857\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.2.168.219 user=root 2019-10-07T05:49:49.6980811240 sshd\[11857\]: Failed password for root from 183.2.168.219 port 59154 ssh2 2019-10-07T05:53:56.8382481240 sshd\[12039\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.2.168.219 user=root ...	2019-10-07 12:43:28
177.98.108.65	attack	Automatic report - Port Scan Attack	2019-10-07 12:34:54
185.5.248.45	attackspambots	slow and persistent scanner	2019-10-07 12:50:04
106.12.92.88	attack	Oct 7 06:09:14 vps01 sshd[9797]: Failed password for root from 106.12.92.88 port 41056 ssh2	2019-10-07 12:18:18
77.247.109.72	attackbotsspam	\[2019-10-07 00:16:05\] NOTICE\[1887\] chan_sip.c: Registration from '"601" \' failed for '77.247.109.72:5692' - Wrong password \[2019-10-07 00:16:05\] SECURITY\[1898\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-07T00:16:05.491-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="601",SessionID="0x7fc3ac00c388",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.109.72/5692",Challenge="07a11234",ReceivedChallenge="07a11234",ReceivedHash="3ef0a022db9e4a63605f700c1ca6ff71" \[2019-10-07 00:16:05\] NOTICE\[1887\] chan_sip.c: Registration from '"601" \' failed for '77.247.109.72:5692' - Wrong password \[2019-10-07 00:16:05\] SECURITY\[1898\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-07T00:16:05.614-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="601",SessionID="0x7fc3ac866728",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.2	2019-10-07 12:29:37
182.116.56.228	attackbots	Oct 7 05:53:55 sso sshd[22200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.116.56.228 Oct 7 05:53:56 sso sshd[22200]: Failed password for invalid user P@ssw0rt!qaz from 182.116.56.228 port 27796 ssh2 ...	2019-10-07 12:44:00
60.255.181.245	attackbotsspam	Oct 6 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 7 secs$: user=\, method=PLAIN, rip=60.255.181.245, lip=REMOVED, TLS, session=\ Oct 7 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 6 secs$: user=\, method=PLAIN, rip=60.255.181.245, lip=REMOVED, TLS: Disconnected, session=\<+XUVAEeUQs08/7X1\> Oct 7 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 9 secs$: user=\, method=PLAIN, rip=60.255.181.245, lip=REMOVED, TLS, session=\	2019-10-07 12:33:55
106.12.48.30	attackspambots	Oct 7 04:12:46 localhost sshd\[94016\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.30 user=root Oct 7 04:12:48 localhost sshd\[94016\]: Failed password for root from 106.12.48.30 port 50250 ssh2 Oct 7 04:17:24 localhost sshd\[94132\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.30 user=root Oct 7 04:17:26 localhost sshd\[94132\]: Failed password for root from 106.12.48.30 port 57898 ssh2 Oct 7 04:21:58 localhost sshd\[94268\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.30 user=root ...	2019-10-07 12:22:37
198.100.154.186	attackbots	Oct 7 06:49:59 server sshd\[16431\]: User root from 198.100.154.186 not allowed because listed in DenyUsers Oct 7 06:49:59 server sshd\[16431\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.100.154.186 user=root Oct 7 06:50:01 server sshd\[16431\]: Failed password for invalid user root from 198.100.154.186 port 57368 ssh2 Oct 7 06:53:52 server sshd\[1778\]: User root from 198.100.154.186 not allowed because listed in DenyUsers Oct 7 06:53:52 server sshd\[1778\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.100.154.186 user=root	2019-10-07 12:48:14
54.37.138.172	attack	Oct 6 17:55:38 wbs sshd\[16836\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.ip-54-37-138.eu user=root Oct 6 17:55:40 wbs sshd\[16836\]: Failed password for root from 54.37.138.172 port 55480 ssh2 Oct 6 17:59:37 wbs sshd\[17181\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.ip-54-37-138.eu user=root Oct 6 17:59:38 wbs sshd\[17181\]: Failed password for root from 54.37.138.172 port 38812 ssh2 Oct 6 18:03:35 wbs sshd\[17559\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.ip-54-37-138.eu user=root	2019-10-07 12:16:04
122.14.213.88	attackbots	Oct 7 06:16:09 localhost sshd\[24343\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.14.213.88 user=root Oct 7 06:16:12 localhost sshd\[24343\]: Failed password for root from 122.14.213.88 port 54404 ssh2 Oct 7 06:20:35 localhost sshd\[24773\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.14.213.88 user=root	2019-10-07 12:27:31
222.186.30.152	attackspam	Oct 7 06:14:01 * sshd[32474]: Failed password for root from 222.186.30.152 port 54635 ssh2	2019-10-07 12:30:42
167.86.81.38	attackspam	Oct 7 00:26:20 xtremcommunity sshd\[266628\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.86.81.38 user=root Oct 7 00:26:22 xtremcommunity sshd\[266628\]: Failed password for root from 167.86.81.38 port 39764 ssh2 Oct 7 00:30:25 xtremcommunity sshd\[266675\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.86.81.38 user=root Oct 7 00:30:26 xtremcommunity sshd\[266675\]: Failed password for root from 167.86.81.38 port 52026 ssh2 Oct 7 00:34:29 xtremcommunity sshd\[266765\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.86.81.38 user=root ...	2019-10-07 12:37:31
92.63.194.26	attackbots	Oct 7 05:06:45 XXX sshd[61671]: Invalid user admin from 92.63.194.26 port 51342	2019-10-07 12:32:53

最近上报的IP列表

104.248.149.241	104.248.151.89	104.248.154.149	104.248.155.125
104.248.159.54	104.248.163.249	104.248.164.111	104.248.164.239
104.248.168.153	104.248.200.68	104.248.206.155	104.248.241.22
104.248.46.212	104.251.217.213	104.36.123.212	104.37.102.209
104.37.103.209	104.37.103.81	104.43.194.101	104.43.248.47

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表