104.248.150.150

基本信息:

城市(city): Singapore

省份(region): Central Singapore Community Development Council

国家(country): Singapore

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	SSH Brute Force	2020-04-29 13:30:36
attackbotsspam	Feb 15 16:26:49 thevastnessof sshd[17084]: Failed password for root from 104.248.150.150 port 54700 ssh2 ...	2020-02-16 00:43:28
attackspambots	Automatic report - Banned IP Access	2020-01-31 23:15:13
attackspam	" "	2020-01-02 18:04:59
attack	Dec 5 15:36:22 sshd: Connection from 104.248.150.150 port 41721 Dec 5 15:37:10 sshd: Failed password for news from 104.248.150.150 port 41721 ssh2 Dec 5 15:37:12 sshd: Received disconnect from 104.248.150.150: 11: Bye Bye [preauth]	2019-12-06 04:06:48
attack	Automatic report - Banned IP Access	2019-12-01 21:12:15
attackbotsspam	SSH Brute Force	2019-11-01 12:02:39
attack	Oct 4 15:55:26 thevastnessof sshd[23519]: Failed password for root from 104.248.150.150 port 52067 ssh2 ...	2019-10-05 01:55:57
attackspam	Sep 8 01:13:06 bouncer sshd\[28484\]: Invalid user sdtdserver from 104.248.150.150 port 53258 Sep 8 01:13:06 bouncer sshd\[28484\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150 Sep 8 01:13:08 bouncer sshd\[28484\]: Failed password for invalid user sdtdserver from 104.248.150.150 port 53258 ssh2 ...	2019-09-08 08:00:45
attackbotsspam	Sep 1 14:46:24 * sshd[7641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150 Sep 1 14:46:26 * sshd[7641]: Failed password for invalid user webuser from 104.248.150.150 port 38361 ssh2	2019-09-01 20:48:11
attack	Repeated brute force against a port	2019-08-15 12:23:40
attackspam	Aug 7 19:22:53 MK-Soft-VM5 sshd\[1684\]: Invalid user teacher from 104.248.150.150 port 56084 Aug 7 19:22:53 MK-Soft-VM5 sshd\[1684\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150 Aug 7 19:22:55 MK-Soft-VM5 sshd\[1684\]: Failed password for invalid user teacher from 104.248.150.150 port 56084 ssh2 ...	2019-08-08 09:32:23
attack	Jul 12 11:47:39 core01 sshd\[18717\]: Invalid user emmanuel from 104.248.150.150 port 36740 Jul 12 11:47:39 core01 sshd\[18717\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150 ...	2019-07-12 18:07:17
attackspambots	Jul 12 02:27:28 core01 sshd\[25766\]: Invalid user vmail from 104.248.150.150 port 51010 Jul 12 02:27:28 core01 sshd\[25766\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150 ...	2019-07-12 08:28:01
attackbots	Jul 8 18:42:57 MK-Soft-VM4 sshd\[4234\]: Invalid user user from 104.248.150.150 port 44764 Jul 8 18:42:57 MK-Soft-VM4 sshd\[4234\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150 Jul 8 18:42:59 MK-Soft-VM4 sshd\[4234\]: Failed password for invalid user user from 104.248.150.150 port 44764 ssh2 ...	2019-07-09 06:16:33
attack	2019-07-08T01:56:17.890202abusebot-4.cloudsearch.cf sshd\[21153\]: Invalid user testmail from 104.248.150.150 port 53478 2019-07-08T01:56:17.894293abusebot-4.cloudsearch.cf sshd\[21153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=legolas.kodewave.com	2019-07-08 10:16:01
attackspam	Jun 22 06:29:42 jane sshd\[19176\]: Invalid user gui from 104.248.150.150 port 50025 Jun 22 06:29:42 jane sshd\[19176\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150 Jun 22 06:29:44 jane sshd\[19176\]: Failed password for invalid user gui from 104.248.150.150 port 50025 ssh2 ...	2019-06-22 17:07:56

相同子网IP讨论:

IP	类型	评论内容	时间
104.248.150.143	attackspam	2020-08-30T06:16:00.198114linuxbox-skyline sshd[34850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.143 user=root 2020-08-30T06:16:01.987366linuxbox-skyline sshd[34850]: Failed password for root from 104.248.150.143 port 10983 ssh2 ...	2020-08-30 20:59:56
104.248.150.143	attackspambots	2020-08-29T22:17:03.969103n23.at sshd[3032426]: Invalid user ali from 104.248.150.143 port 35280 2020-08-29T22:17:05.603190n23.at sshd[3032426]: Failed password for invalid user ali from 104.248.150.143 port 35280 ssh2 2020-08-29T22:27:36.085636n23.at sshd[3041262]: Invalid user ftpuser from 104.248.150.143 port 42616 ...	2020-08-30 05:24:32
104.248.150.143	attack	$f2bV_matches	2020-08-28 14:09:40
104.248.150.213	attack	xmlrpc attack	2020-06-24 12:31:02
104.248.150.206	attackbotsspam	(sshd) Failed SSH login from 104.248.150.206 (SG/Singapore/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 23 06:38:55 ubnt-55d23 sshd[8736]: Invalid user cristiano from 104.248.150.206 port 15216 Jun 23 06:38:57 ubnt-55d23 sshd[8736]: Failed password for invalid user cristiano from 104.248.150.206 port 15216 ssh2	2020-06-23 17:50:20
104.248.150.213	attackspam	Automatic report - XMLRPC Attack	2020-06-06 22:12:56
104.248.150.213	attack	104.248.150.213 - - [27/May/2020:12:12:38 +0200] "POST /wp-login.php HTTP/1.1" 200 3449 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.150.213 - - [27/May/2020:12:12:42 +0200] "POST /wp-login.php HTTP/1.1" 200 3411 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-05-27 18:35:32
104.248.150.63	attackbots	2020-04-20T10:21:53.198343homeassistant sshd[2825]: Invalid user ca from 104.248.150.63 port 43056 2020-04-20T10:21:53.212272homeassistant sshd[2825]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.63 ...	2020-04-20 18:46:16
104.248.150.63	attackbotsspam	Apr 19 03:45:09 lanister sshd[13211]: Failed password for invalid user test001 from 104.248.150.63 port 34992 ssh2 Apr 19 03:56:12 lanister sshd[13725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.63 user=root Apr 19 03:56:15 lanister sshd[13725]: Failed password for root from 104.248.150.63 port 49488 ssh2 Apr 19 04:03:40 lanister sshd[13862]: Invalid user au from 104.248.150.63	2020-04-19 17:57:10
104.248.150.47	attackspambots	xmlrpc attack	2020-04-06 22:34:41
104.248.150.47	attackspambots	Automatic report - XMLRPC Attack	2020-03-18 16:03:31
104.248.150.47	attack	Automatic report - XMLRPC Attack	2020-03-11 11:59:25
104.248.150.47	attackspambots	$f2bV_matches	2020-02-28 14:11:34
104.248.150.47	attackbotsspam	$f2bV_matches	2020-02-10 19:23:37
104.248.150.69	attackspambots	Jan 27 13:52:30 MK-Soft-Root2 sshd[12344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.69 Jan 27 13:52:32 MK-Soft-Root2 sshd[12344]: Failed password for invalid user tylor from 104.248.150.69 port 48398 ssh2 ...	2020-01-27 20:55:25

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.150.150
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45976
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.248.150.150.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019033001 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Mar 31 10:29:09 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:

150.150.248.104.in-addr.arpa domain name pointer legolas.kodewave.com.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
150.150.248.104.in-addr.arpa	name = legolas.kodewave.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
51.83.76.36	attackspam	$f2bV_matches	2019-08-19 07:33:04
31.11.131.233	attack	31.11.131.233 - - [19/Aug/2019:00:11:18 +0200] "GET /wp-login.php HTTP/1.1" 403 1023 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1"	2019-08-19 06:55:04
18.215.164.11	attack	Aug 19 00:17:30 vpn01 sshd\[13298\]: Invalid user areyes from 18.215.164.11 Aug 19 00:17:30 vpn01 sshd\[13298\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.215.164.11 Aug 19 00:17:32 vpn01 sshd\[13298\]: Failed password for invalid user areyes from 18.215.164.11 port 36198 ssh2	2019-08-19 07:33:51
68.183.83.89	attackspambots	Aug 19 01:54:10 server2 sshd\[2401\]: Invalid user fake from 68.183.83.89 Aug 19 01:54:11 server2 sshd\[2403\]: Invalid user user from 68.183.83.89 Aug 19 01:54:12 server2 sshd\[2405\]: Invalid user ubnt from 68.183.83.89 Aug 19 01:54:14 server2 sshd\[2407\]: Invalid user admin from 68.183.83.89 Aug 19 01:54:15 server2 sshd\[2409\]: User root from 68.183.83.89 not allowed because not listed in AllowUsers Aug 19 01:54:16 server2 sshd\[2411\]: Invalid user admin from 68.183.83.89	2019-08-19 07:06:30
180.168.36.86	attackspam	Aug 18 12:42:21 eddieflores sshd\[19448\]: Invalid user p@ssw0rd from 180.168.36.86 Aug 18 12:42:21 eddieflores sshd\[19448\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.36.86 Aug 18 12:42:23 eddieflores sshd\[19448\]: Failed password for invalid user p@ssw0rd from 180.168.36.86 port 2903 ssh2 Aug 18 12:46:54 eddieflores sshd\[19839\]: Invalid user ts3soundboard from 180.168.36.86 Aug 18 12:46:54 eddieflores sshd\[19839\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.36.86	2019-08-19 07:01:23
208.58.129.131	attackbotsspam	Aug 18 13:16:28 tdfoods sshd\[16165\]: Invalid user richards from 208.58.129.131 Aug 18 13:16:28 tdfoods sshd\[16165\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.58.129.131 Aug 18 13:16:30 tdfoods sshd\[16165\]: Failed password for invalid user richards from 208.58.129.131 port 60324 ssh2 Aug 18 13:20:37 tdfoods sshd\[16503\]: Invalid user ralph from 208.58.129.131 Aug 18 13:20:37 tdfoods sshd\[16503\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.58.129.131	2019-08-19 07:25:37
49.88.112.85	attack	Aug 19 01:12:47 root sshd[19676]: Failed password for root from 49.88.112.85 port 31412 ssh2 Aug 19 01:12:50 root sshd[19676]: Failed password for root from 49.88.112.85 port 31412 ssh2 Aug 19 01:12:52 root sshd[19676]: Failed password for root from 49.88.112.85 port 31412 ssh2 ...	2019-08-19 07:13:12
188.242.44.220	attackspam	Aug 18 12:55:59 web1 sshd\[13565\]: Invalid user manager from 188.242.44.220 Aug 18 12:55:59 web1 sshd\[13565\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.242.44.220 Aug 18 12:56:01 web1 sshd\[13565\]: Failed password for invalid user manager from 188.242.44.220 port 50016 ssh2 Aug 18 13:00:09 web1 sshd\[14036\]: Invalid user mike from 188.242.44.220 Aug 18 13:00:09 web1 sshd\[14036\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.242.44.220	2019-08-19 07:15:44
88.119.221.196	attack	2019-08-18T22:42:43.648033abusebot-6.cloudsearch.cf sshd\[25479\]: Invalid user test123 from 88.119.221.196 port 47922	2019-08-19 07:03:21
96.44.162.202	attackspam	Aug 18 13:25:15 eddieflores sshd\[23443\]: Invalid user developer from 96.44.162.202 Aug 18 13:25:15 eddieflores sshd\[23443\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.44.162.202 Aug 18 13:25:17 eddieflores sshd\[23443\]: Failed password for invalid user developer from 96.44.162.202 port 57768 ssh2 Aug 18 13:29:18 eddieflores sshd\[23760\]: Invalid user magento from 96.44.162.202 Aug 18 13:29:18 eddieflores sshd\[23760\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.44.162.202	2019-08-19 07:31:53
201.244.94.189	attackspam	$f2bV_matches	2019-08-19 07:19:11
169.0.160.111	attackbotsspam	2019-08-19T00:21:41.668728 sshd[17756]: Invalid user demouser from 169.0.160.111 port 36181 2019-08-19T00:21:41.682834 sshd[17756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=169.0.160.111 2019-08-19T00:21:41.668728 sshd[17756]: Invalid user demouser from 169.0.160.111 port 36181 2019-08-19T00:21:43.445328 sshd[17756]: Failed password for invalid user demouser from 169.0.160.111 port 36181 ssh2 2019-08-19T00:27:24.688529 sshd[17822]: Invalid user jun from 169.0.160.111 port 24729 ...	2019-08-19 06:56:01
90.187.62.121	attackbots	Aug 18 22:54:20 hb sshd\[19032\]: Invalid user mansour from 90.187.62.121 Aug 18 22:54:20 hb sshd\[19032\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=business-90-187-62-121.pool2.vodafone-ip.de Aug 18 22:54:22 hb sshd\[19032\]: Failed password for invalid user mansour from 90.187.62.121 port 46770 ssh2 Aug 18 23:03:13 hb sshd\[19873\]: Invalid user xiao from 90.187.62.121 Aug 18 23:03:13 hb sshd\[19873\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=business-90-187-62-121.pool2.vodafone-ip.de	2019-08-19 07:06:13
178.118.88.99	attackbotsspam	$f2bV_matches	2019-08-19 06:51:29
46.101.189.71	attackbotsspam	Aug 19 00:57:07 vps691689 sshd[4201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.189.71 Aug 19 00:57:09 vps691689 sshd[4201]: Failed password for invalid user mw from 46.101.189.71 port 46166 ssh2 ...	2019-08-19 07:06:57

最近上报的IP列表

87.98.171.226	14.231.87.27	87.197.7.25	193.169.39.254
86.247.169.12	84.118.144.115	77.241.66.92	66.7.149.135
83.99.26.199	54.38.192.96	164.132.42.32	51.38.90.195
174.21.149.122	211.159.152.252	177.144.136.133	94.102.56.252
82.100.63.189	222.122.202.35	162.252.156.95	114.113.144.104