104.248.150.150

基本信息:

城市(city): Singapore

省份(region): Central Singapore Community Development Council

国家(country): Singapore

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	SSH Brute Force	2020-04-29 13:30:36
attackbotsspam	Feb 15 16:26:49 thevastnessof sshd[17084]: Failed password for root from 104.248.150.150 port 54700 ssh2 ...	2020-02-16 00:43:28
attackspambots	Automatic report - Banned IP Access	2020-01-31 23:15:13
attackspam	" "	2020-01-02 18:04:59
attack	Dec 5 15:36:22 sshd: Connection from 104.248.150.150 port 41721 Dec 5 15:37:10 sshd: Failed password for news from 104.248.150.150 port 41721 ssh2 Dec 5 15:37:12 sshd: Received disconnect from 104.248.150.150: 11: Bye Bye [preauth]	2019-12-06 04:06:48
attack	Automatic report - Banned IP Access	2019-12-01 21:12:15
attackbotsspam	SSH Brute Force	2019-11-01 12:02:39
attack	Oct 4 15:55:26 thevastnessof sshd[23519]: Failed password for root from 104.248.150.150 port 52067 ssh2 ...	2019-10-05 01:55:57
attackspam	Sep 8 01:13:06 bouncer sshd\[28484\]: Invalid user sdtdserver from 104.248.150.150 port 53258 Sep 8 01:13:06 bouncer sshd\[28484\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150 Sep 8 01:13:08 bouncer sshd\[28484\]: Failed password for invalid user sdtdserver from 104.248.150.150 port 53258 ssh2 ...	2019-09-08 08:00:45
attackbotsspam	Sep 1 14:46:24 * sshd[7641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150 Sep 1 14:46:26 * sshd[7641]: Failed password for invalid user webuser from 104.248.150.150 port 38361 ssh2	2019-09-01 20:48:11
attack	Repeated brute force against a port	2019-08-15 12:23:40
attackspam	Aug 7 19:22:53 MK-Soft-VM5 sshd\[1684\]: Invalid user teacher from 104.248.150.150 port 56084 Aug 7 19:22:53 MK-Soft-VM5 sshd\[1684\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150 Aug 7 19:22:55 MK-Soft-VM5 sshd\[1684\]: Failed password for invalid user teacher from 104.248.150.150 port 56084 ssh2 ...	2019-08-08 09:32:23
attack	Jul 12 11:47:39 core01 sshd\[18717\]: Invalid user emmanuel from 104.248.150.150 port 36740 Jul 12 11:47:39 core01 sshd\[18717\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150 ...	2019-07-12 18:07:17
attackspambots	Jul 12 02:27:28 core01 sshd\[25766\]: Invalid user vmail from 104.248.150.150 port 51010 Jul 12 02:27:28 core01 sshd\[25766\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150 ...	2019-07-12 08:28:01
attackbots	Jul 8 18:42:57 MK-Soft-VM4 sshd\[4234\]: Invalid user user from 104.248.150.150 port 44764 Jul 8 18:42:57 MK-Soft-VM4 sshd\[4234\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150 Jul 8 18:42:59 MK-Soft-VM4 sshd\[4234\]: Failed password for invalid user user from 104.248.150.150 port 44764 ssh2 ...	2019-07-09 06:16:33
attack	2019-07-08T01:56:17.890202abusebot-4.cloudsearch.cf sshd\[21153\]: Invalid user testmail from 104.248.150.150 port 53478 2019-07-08T01:56:17.894293abusebot-4.cloudsearch.cf sshd\[21153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=legolas.kodewave.com	2019-07-08 10:16:01
attackspam	Jun 22 06:29:42 jane sshd\[19176\]: Invalid user gui from 104.248.150.150 port 50025 Jun 22 06:29:42 jane sshd\[19176\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150 Jun 22 06:29:44 jane sshd\[19176\]: Failed password for invalid user gui from 104.248.150.150 port 50025 ssh2 ...	2019-06-22 17:07:56

相同子网IP讨论:

IP	类型	评论内容	时间
104.248.150.143	attackspam	2020-08-30T06:16:00.198114linuxbox-skyline sshd[34850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.143 user=root 2020-08-30T06:16:01.987366linuxbox-skyline sshd[34850]: Failed password for root from 104.248.150.143 port 10983 ssh2 ...	2020-08-30 20:59:56
104.248.150.143	attackspambots	2020-08-29T22:17:03.969103n23.at sshd[3032426]: Invalid user ali from 104.248.150.143 port 35280 2020-08-29T22:17:05.603190n23.at sshd[3032426]: Failed password for invalid user ali from 104.248.150.143 port 35280 ssh2 2020-08-29T22:27:36.085636n23.at sshd[3041262]: Invalid user ftpuser from 104.248.150.143 port 42616 ...	2020-08-30 05:24:32
104.248.150.143	attack	$f2bV_matches	2020-08-28 14:09:40
104.248.150.213	attack	xmlrpc attack	2020-06-24 12:31:02
104.248.150.206	attackbotsspam	(sshd) Failed SSH login from 104.248.150.206 (SG/Singapore/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 23 06:38:55 ubnt-55d23 sshd[8736]: Invalid user cristiano from 104.248.150.206 port 15216 Jun 23 06:38:57 ubnt-55d23 sshd[8736]: Failed password for invalid user cristiano from 104.248.150.206 port 15216 ssh2	2020-06-23 17:50:20
104.248.150.213	attackspam	Automatic report - XMLRPC Attack	2020-06-06 22:12:56
104.248.150.213	attack	104.248.150.213 - - [27/May/2020:12:12:38 +0200] "POST /wp-login.php HTTP/1.1" 200 3449 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.150.213 - - [27/May/2020:12:12:42 +0200] "POST /wp-login.php HTTP/1.1" 200 3411 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-05-27 18:35:32
104.248.150.63	attackbots	2020-04-20T10:21:53.198343homeassistant sshd[2825]: Invalid user ca from 104.248.150.63 port 43056 2020-04-20T10:21:53.212272homeassistant sshd[2825]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.63 ...	2020-04-20 18:46:16
104.248.150.63	attackbotsspam	Apr 19 03:45:09 lanister sshd[13211]: Failed password for invalid user test001 from 104.248.150.63 port 34992 ssh2 Apr 19 03:56:12 lanister sshd[13725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.63 user=root Apr 19 03:56:15 lanister sshd[13725]: Failed password for root from 104.248.150.63 port 49488 ssh2 Apr 19 04:03:40 lanister sshd[13862]: Invalid user au from 104.248.150.63	2020-04-19 17:57:10
104.248.150.47	attackspambots	xmlrpc attack	2020-04-06 22:34:41
104.248.150.47	attackspambots	Automatic report - XMLRPC Attack	2020-03-18 16:03:31
104.248.150.47	attack	Automatic report - XMLRPC Attack	2020-03-11 11:59:25
104.248.150.47	attackspambots	$f2bV_matches	2020-02-28 14:11:34
104.248.150.47	attackbotsspam	$f2bV_matches	2020-02-10 19:23:37
104.248.150.69	attackspambots	Jan 27 13:52:30 MK-Soft-Root2 sshd[12344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.69 Jan 27 13:52:32 MK-Soft-Root2 sshd[12344]: Failed password for invalid user tylor from 104.248.150.69 port 48398 ssh2 ...	2020-01-27 20:55:25

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.150.150
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45976
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.248.150.150.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019033001 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Mar 31 10:29:09 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:

150.150.248.104.in-addr.arpa domain name pointer legolas.kodewave.com.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
150.150.248.104.in-addr.arpa	name = legolas.kodewave.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
69.94.135.190	attack	Mar 7 05:48:07 mail.srvfarm.net postfix/smtpd[2594963]: NOQUEUE: reject: RCPT from unknown[69.94.135.190]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 7 05:51:27 mail.srvfarm.net postfix/smtpd[2589512]: NOQUEUE: reject: RCPT from unknown[69.94.135.190]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 7 05:51:29 mail.srvfarm.net postfix/smtpd[2591616]: NOQUEUE: reject: RCPT from unknown[69.94.135.190]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 7 05:51:29 mail.srvfarm.net postfix/smtpd[2589497]: NOQUEUE: reject: RCPT from unknown[69.94.135.190]: 450 4.1.8	2020-03-07 18:48:30
179.104.43.136	attackbots	Mar 7 05:27:56 mail.srvfarm.net postfix/smtps/smtpd[2592684]: warning: unknown[179.104.43.136]: SASL PLAIN authentication failed: Mar 7 05:27:56 mail.srvfarm.net postfix/smtps/smtpd[2592684]: lost connection after AUTH from unknown[179.104.43.136] Mar 7 05:29:08 mail.srvfarm.net postfix/smtpd[2591599]: warning: unknown[179.104.43.136]: SASL PLAIN authentication failed: Mar 7 05:29:08 mail.srvfarm.net postfix/smtpd[2591599]: lost connection after AUTH from unknown[179.104.43.136] Mar 7 05:33:03 mail.srvfarm.net postfix/smtpd[2592951]: warning: unknown[179.104.43.136]: SASL PLAIN authentication failed:	2020-03-07 18:51:26
63.81.87.163	attackspam	Mar 7 05:33:28 mail.srvfarm.net postfix/smtpd[2592865]: NOQUEUE: reject: RCPT from unknown[63.81.87.163]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 7 05:35:19 mail.srvfarm.net postfix/smtpd[2588803]: NOQUEUE: reject: RCPT from unknown[63.81.87.163]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 7 05:35:56 mail.srvfarm.net postfix/smtpd[2593187]: NOQUEUE: reject: RCPT from unknown[63.81.87.163]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 7 05:37:04 mail.srvfarm.net postfix/smtpd[2594963]: NOQUEUE: reject: RCPT from unknown	2020-03-07 18:57:49
125.160.229.144	attackspam	1583556680 - 03/07/2020 05:51:20 Host: 125.160.229.144/125.160.229.144 Port: 445 TCP Blocked	2020-03-07 19:13:24
69.94.141.67	attackbots	Mar 7 06:34:52 mail.srvfarm.net postfix/smtpd[2613287]: NOQUEUE: reject: RCPT from unknown[69.94.141.67]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 7 06:34:52 mail.srvfarm.net postfix/smtpd[2609381]: NOQUEUE: reject: RCPT from unknown[69.94.141.67]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 7 06:34:52 mail.srvfarm.net postfix/smtpd[2613524]: NOQUEUE: reject: RCPT from unknown[69.94.141.67]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 7 06:34:52 mail.srvfarm.net postfix/smtpd[2613289]: NOQUEUE: reject: RCPT from unknown[69.94.141.67]: 450 4.1.8 : Sender	2020-03-07 18:55:06
159.89.170.191	attackspambots	POST /wp-login.php HTTP/1.1 200 3868 Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0	2020-03-07 18:46:19
51.68.251.201	attack	Mar 7 11:53:53 vps647732 sshd[6788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.251.201 Mar 7 11:53:55 vps647732 sshd[6788]: Failed password for invalid user vivek from 51.68.251.201 port 37888 ssh2 ...	2020-03-07 19:08:20
206.189.23.207	attackbots	" "	2020-03-07 19:07:21
36.68.123.255	attack	Honeypot attack, port: 81, PTR: PTR record not found	2020-03-07 19:13:55
5.135.73.91	attackbotsspam	20/3/6@23:51:13: FAIL: Alarm-Intrusion address from=5.135.73.91 ...	2020-03-07 19:20:20
142.93.181.214	attack	Mar 07 03:40:14 askasleikir sshd[45711]: Failed password for root from 142.93.181.214 port 41332 ssh2 Mar 07 03:23:37 askasleikir sshd[45044]: Failed password for root from 142.93.181.214 port 48506 ssh2 Mar 07 03:28:54 askasleikir sshd[45254]: Failed password for invalid user sirius from 142.93.181.214 port 47106 ssh2	2020-03-07 18:41:33
63.82.49.174	attackbotsspam	Mar 7 05:25:21 web01 postfix/smtpd[14096]: connect from ripe.kaagaan.com[63.82.49.174] Mar 7 05:25:21 web01 policyd-spf[14101]: None; identhostnamey=helo; client-ip=63.82.49.174; helo=ripe.tawarak.com; envelope-from=x@x Mar 7 05:25:21 web01 policyd-spf[14101]: Pass; identhostnamey=mailfrom; client-ip=63.82.49.174; helo=ripe.tawarak.com; envelope-from=x@x Mar x@x Mar 7 05:25:22 web01 postfix/smtpd[14096]: 607034C48C: client=ripe.kaagaan.com[63.82.49.174] Mar 7 05:25:22 web01 postfix/smtpd[14096]: disconnect from ripe.kaagaan.com[63.82.49.174] Mar 7 05:30:55 web01 postfix/smtpd[14100]: connect from ripe.kaagaan.com[63.82.49.174] Mar 7 05:30:55 web01 postfix/smtpd[14098]: connect from ripe.kaagaan.com[63.82.49.174] Mar 7 05:30:56 web01 policyd-spf[14107]: None; identhostnamey=helo; client-ip=63.82.49.174; helo=ripe.tawarak.com; envelope-from=x@x Mar 7 05:30:56 web01 policyd-spf[14107]: Pass; identhostnamey=mailfrom; client-ip=63.82.49.174; helo=ripe.tawarak.com; e........ -------------------------------	2020-03-07 18:56:48
45.146.202.132	attackbots	Mar 7 05:41:10 mail.srvfarm.net postfix/smtpd[2576628]: NOQUEUE: reject: RCPT from unknown[45.146.202.132]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 7 05:41:10 mail.srvfarm.net postfix/smtpd[2592816]: NOQUEUE: reject: RCPT from unknown[45.146.202.132]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 7 05:41:10 mail.srvfarm.net postfix/smtpd[2593157]: NOQUEUE: reject: RCPT from unknown[45.146.202.132]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 7 05:41:10 mail.srvfarm.net postfix/smtpd[2591596]: NOQUEUE: reject: RCPT from unknown[45.146.202.132]: 450 4.1.8 : Se	2020-03-07 18:58:22
116.230.48.59	attackspambots	Mar 7 11:57:23 vserver sshd\[17891\]: Invalid user griger from 116.230.48.59Mar 7 11:57:24 vserver sshd\[17891\]: Failed password for invalid user griger from 116.230.48.59 port 48998 ssh2Mar 7 12:02:23 vserver sshd\[17928\]: Invalid user griger from 116.230.48.59Mar 7 12:02:24 vserver sshd\[17928\]: Failed password for invalid user griger from 116.230.48.59 port 46782 ssh2 ...	2020-03-07 19:09:35
94.23.219.41	attack	Automatic report - XMLRPC Attack	2020-03-07 19:05:28

最近上报的IP列表

87.98.171.226	14.231.87.27	87.197.7.25	193.169.39.254
86.247.169.12	84.118.144.115	77.241.66.92	66.7.149.135
83.99.26.199	54.38.192.96	164.132.42.32	51.38.90.195
174.21.149.122	211.159.152.252	177.144.136.133	94.102.56.252
82.100.63.189	222.122.202.35	162.252.156.95	114.113.144.104