必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): Singapore

省份(region): Central Singapore Community Development Council

国家(country): Singapore

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attackbotsspam
SSH Brute Force
2020-04-29 13:30:36
attackbotsspam
Feb 15 16:26:49 thevastnessof sshd[17084]: Failed password for root from 104.248.150.150 port 54700 ssh2
...
2020-02-16 00:43:28
attackspambots
Automatic report - Banned IP Access
2020-01-31 23:15:13
attackspam
" "
2020-01-02 18:04:59
attack
Dec  5 15:36:22 sshd: Connection from 104.248.150.150 port 41721
Dec  5 15:37:10 sshd: Failed password for news from 104.248.150.150 port 41721 ssh2
Dec  5 15:37:12 sshd: Received disconnect from 104.248.150.150: 11: Bye Bye [preauth]
2019-12-06 04:06:48
attack
Automatic report - Banned IP Access
2019-12-01 21:12:15
attackbotsspam
SSH Brute Force
2019-11-01 12:02:39
attack
Oct  4 15:55:26 thevastnessof sshd[23519]: Failed password for root from 104.248.150.150 port 52067 ssh2
...
2019-10-05 01:55:57
attackspam
Sep  8 01:13:06 bouncer sshd\[28484\]: Invalid user sdtdserver from 104.248.150.150 port 53258
Sep  8 01:13:06 bouncer sshd\[28484\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150 
Sep  8 01:13:08 bouncer sshd\[28484\]: Failed password for invalid user sdtdserver from 104.248.150.150 port 53258 ssh2
...
2019-09-08 08:00:45
attackbotsspam
Sep  1 14:46:24 * sshd[7641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150
Sep  1 14:46:26 * sshd[7641]: Failed password for invalid user webuser from 104.248.150.150 port 38361 ssh2
2019-09-01 20:48:11
attack
Repeated brute force against a port
2019-08-15 12:23:40
attackspam
Aug  7 19:22:53 MK-Soft-VM5 sshd\[1684\]: Invalid user teacher from 104.248.150.150 port 56084
Aug  7 19:22:53 MK-Soft-VM5 sshd\[1684\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150
Aug  7 19:22:55 MK-Soft-VM5 sshd\[1684\]: Failed password for invalid user teacher from 104.248.150.150 port 56084 ssh2
...
2019-08-08 09:32:23
attack
Jul 12 11:47:39 core01 sshd\[18717\]: Invalid user emmanuel from 104.248.150.150 port 36740
Jul 12 11:47:39 core01 sshd\[18717\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150
...
2019-07-12 18:07:17
attackspambots
Jul 12 02:27:28 core01 sshd\[25766\]: Invalid user vmail from 104.248.150.150 port 51010
Jul 12 02:27:28 core01 sshd\[25766\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150
...
2019-07-12 08:28:01
attackbots
Jul  8 18:42:57 MK-Soft-VM4 sshd\[4234\]: Invalid user user from 104.248.150.150 port 44764
Jul  8 18:42:57 MK-Soft-VM4 sshd\[4234\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150
Jul  8 18:42:59 MK-Soft-VM4 sshd\[4234\]: Failed password for invalid user user from 104.248.150.150 port 44764 ssh2
...
2019-07-09 06:16:33
attack
2019-07-08T01:56:17.890202abusebot-4.cloudsearch.cf sshd\[21153\]: Invalid user testmail from 104.248.150.150 port 53478
2019-07-08T01:56:17.894293abusebot-4.cloudsearch.cf sshd\[21153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=legolas.kodewave.com
2019-07-08 10:16:01
attackspam
Jun 22 06:29:42 jane sshd\[19176\]: Invalid user gui from 104.248.150.150 port 50025
Jun 22 06:29:42 jane sshd\[19176\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.150
Jun 22 06:29:44 jane sshd\[19176\]: Failed password for invalid user gui from 104.248.150.150 port 50025 ssh2
...
2019-06-22 17:07:56
相同子网IP讨论:
IP 类型 评论内容 时间
104.248.150.143 attackspam
2020-08-30T06:16:00.198114linuxbox-skyline sshd[34850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.143  user=root
2020-08-30T06:16:01.987366linuxbox-skyline sshd[34850]: Failed password for root from 104.248.150.143 port 10983 ssh2
...
2020-08-30 20:59:56
104.248.150.143 attackspambots
2020-08-29T22:17:03.969103n23.at sshd[3032426]: Invalid user ali from 104.248.150.143 port 35280
2020-08-29T22:17:05.603190n23.at sshd[3032426]: Failed password for invalid user ali from 104.248.150.143 port 35280 ssh2
2020-08-29T22:27:36.085636n23.at sshd[3041262]: Invalid user ftpuser from 104.248.150.143 port 42616
...
2020-08-30 05:24:32
104.248.150.143 attack
$f2bV_matches
2020-08-28 14:09:40
104.248.150.213 attack
xmlrpc attack
2020-06-24 12:31:02
104.248.150.206 attackbotsspam
(sshd) Failed SSH login from 104.248.150.206 (SG/Singapore/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 23 06:38:55 ubnt-55d23 sshd[8736]: Invalid user cristiano from 104.248.150.206 port 15216
Jun 23 06:38:57 ubnt-55d23 sshd[8736]: Failed password for invalid user cristiano from 104.248.150.206 port 15216 ssh2
2020-06-23 17:50:20
104.248.150.213 attackspam
Automatic report - XMLRPC Attack
2020-06-06 22:12:56
104.248.150.213 attack
104.248.150.213 - - [27/May/2020:12:12:38 +0200] "POST /wp-login.php HTTP/1.1" 200 3449 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
104.248.150.213 - - [27/May/2020:12:12:42 +0200] "POST /wp-login.php HTTP/1.1" 200 3411 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-05-27 18:35:32
104.248.150.63 attackbots
2020-04-20T10:21:53.198343homeassistant sshd[2825]: Invalid user ca from 104.248.150.63 port 43056
2020-04-20T10:21:53.212272homeassistant sshd[2825]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.63
...
2020-04-20 18:46:16
104.248.150.63 attackbotsspam
Apr 19 03:45:09 lanister sshd[13211]: Failed password for invalid user test001 from 104.248.150.63 port 34992 ssh2
Apr 19 03:56:12 lanister sshd[13725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.63  user=root
Apr 19 03:56:15 lanister sshd[13725]: Failed password for root from 104.248.150.63 port 49488 ssh2
Apr 19 04:03:40 lanister sshd[13862]: Invalid user au from 104.248.150.63
2020-04-19 17:57:10
104.248.150.47 attackspambots
xmlrpc attack
2020-04-06 22:34:41
104.248.150.47 attackspambots
Automatic report - XMLRPC Attack
2020-03-18 16:03:31
104.248.150.47 attack
Automatic report - XMLRPC Attack
2020-03-11 11:59:25
104.248.150.47 attackspambots
$f2bV_matches
2020-02-28 14:11:34
104.248.150.47 attackbotsspam
$f2bV_matches
2020-02-10 19:23:37
104.248.150.69 attackspambots
Jan 27 13:52:30 MK-Soft-Root2 sshd[12344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.150.69 
Jan 27 13:52:32 MK-Soft-Root2 sshd[12344]: Failed password for invalid user tylor from 104.248.150.69 port 48398 ssh2
...
2020-01-27 20:55:25
WHOIS信息:
b
DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.150.150
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45976
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.248.150.150.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019033001 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Mar 31 10:29:09 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:
150.150.248.104.in-addr.arpa domain name pointer legolas.kodewave.com.
NSLOOKUP信息:
Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
150.150.248.104.in-addr.arpa	name = legolas.kodewave.com.

Authoritative answers can be found from:

相关IP信息:
最新评论:
IP 类型 评论内容 时间
51.83.76.36 attackspam
$f2bV_matches
2019-08-19 07:33:04
31.11.131.233 attack
31.11.131.233 - - [19/Aug/2019:00:11:18 +0200] "GET /wp-login.php HTTP/1.1" 403 1023 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1"
2019-08-19 06:55:04
18.215.164.11 attack
Aug 19 00:17:30 vpn01 sshd\[13298\]: Invalid user areyes from 18.215.164.11
Aug 19 00:17:30 vpn01 sshd\[13298\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.215.164.11
Aug 19 00:17:32 vpn01 sshd\[13298\]: Failed password for invalid user areyes from 18.215.164.11 port 36198 ssh2
2019-08-19 07:33:51
68.183.83.89 attackspambots
Aug 19 01:54:10 server2 sshd\[2401\]: Invalid user fake from 68.183.83.89
Aug 19 01:54:11 server2 sshd\[2403\]: Invalid user user from 68.183.83.89
Aug 19 01:54:12 server2 sshd\[2405\]: Invalid user ubnt from 68.183.83.89
Aug 19 01:54:14 server2 sshd\[2407\]: Invalid user admin from 68.183.83.89
Aug 19 01:54:15 server2 sshd\[2409\]: User root from 68.183.83.89 not allowed because not listed in AllowUsers
Aug 19 01:54:16 server2 sshd\[2411\]: Invalid user admin from 68.183.83.89
2019-08-19 07:06:30
180.168.36.86 attackspam
Aug 18 12:42:21 eddieflores sshd\[19448\]: Invalid user p@ssw0rd from 180.168.36.86
Aug 18 12:42:21 eddieflores sshd\[19448\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.36.86
Aug 18 12:42:23 eddieflores sshd\[19448\]: Failed password for invalid user p@ssw0rd from 180.168.36.86 port 2903 ssh2
Aug 18 12:46:54 eddieflores sshd\[19839\]: Invalid user ts3soundboard from 180.168.36.86
Aug 18 12:46:54 eddieflores sshd\[19839\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.36.86
2019-08-19 07:01:23
208.58.129.131 attackbotsspam
Aug 18 13:16:28 tdfoods sshd\[16165\]: Invalid user richards from 208.58.129.131
Aug 18 13:16:28 tdfoods sshd\[16165\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.58.129.131
Aug 18 13:16:30 tdfoods sshd\[16165\]: Failed password for invalid user richards from 208.58.129.131 port 60324 ssh2
Aug 18 13:20:37 tdfoods sshd\[16503\]: Invalid user ralph from 208.58.129.131
Aug 18 13:20:37 tdfoods sshd\[16503\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.58.129.131
2019-08-19 07:25:37
49.88.112.85 attack
Aug 19 01:12:47 root sshd[19676]: Failed password for root from 49.88.112.85 port 31412 ssh2
Aug 19 01:12:50 root sshd[19676]: Failed password for root from 49.88.112.85 port 31412 ssh2
Aug 19 01:12:52 root sshd[19676]: Failed password for root from 49.88.112.85 port 31412 ssh2
...
2019-08-19 07:13:12
188.242.44.220 attackspam
Aug 18 12:55:59 web1 sshd\[13565\]: Invalid user manager from 188.242.44.220
Aug 18 12:55:59 web1 sshd\[13565\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.242.44.220
Aug 18 12:56:01 web1 sshd\[13565\]: Failed password for invalid user manager from 188.242.44.220 port 50016 ssh2
Aug 18 13:00:09 web1 sshd\[14036\]: Invalid user mike from 188.242.44.220
Aug 18 13:00:09 web1 sshd\[14036\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.242.44.220
2019-08-19 07:15:44
88.119.221.196 attack
2019-08-18T22:42:43.648033abusebot-6.cloudsearch.cf sshd\[25479\]: Invalid user test123 from 88.119.221.196 port 47922
2019-08-19 07:03:21
96.44.162.202 attackspam
Aug 18 13:25:15 eddieflores sshd\[23443\]: Invalid user developer from 96.44.162.202
Aug 18 13:25:15 eddieflores sshd\[23443\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.44.162.202
Aug 18 13:25:17 eddieflores sshd\[23443\]: Failed password for invalid user developer from 96.44.162.202 port 57768 ssh2
Aug 18 13:29:18 eddieflores sshd\[23760\]: Invalid user magento from 96.44.162.202
Aug 18 13:29:18 eddieflores sshd\[23760\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.44.162.202
2019-08-19 07:31:53
201.244.94.189 attackspam
$f2bV_matches
2019-08-19 07:19:11
169.0.160.111 attackbotsspam
2019-08-19T00:21:41.668728  sshd[17756]: Invalid user demouser from 169.0.160.111 port 36181
2019-08-19T00:21:41.682834  sshd[17756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=169.0.160.111
2019-08-19T00:21:41.668728  sshd[17756]: Invalid user demouser from 169.0.160.111 port 36181
2019-08-19T00:21:43.445328  sshd[17756]: Failed password for invalid user demouser from 169.0.160.111 port 36181 ssh2
2019-08-19T00:27:24.688529  sshd[17822]: Invalid user jun from 169.0.160.111 port 24729
...
2019-08-19 06:56:01
90.187.62.121 attackbots
Aug 18 22:54:20 hb sshd\[19032\]: Invalid user mansour from 90.187.62.121
Aug 18 22:54:20 hb sshd\[19032\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=business-90-187-62-121.pool2.vodafone-ip.de
Aug 18 22:54:22 hb sshd\[19032\]: Failed password for invalid user mansour from 90.187.62.121 port 46770 ssh2
Aug 18 23:03:13 hb sshd\[19873\]: Invalid user xiao from 90.187.62.121
Aug 18 23:03:13 hb sshd\[19873\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=business-90-187-62-121.pool2.vodafone-ip.de
2019-08-19 07:06:13
178.118.88.99 attackbotsspam
$f2bV_matches
2019-08-19 06:51:29
46.101.189.71 attackbotsspam
Aug 19 00:57:07 vps691689 sshd[4201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.189.71
Aug 19 00:57:09 vps691689 sshd[4201]: Failed password for invalid user mw from 46.101.189.71 port 46166 ssh2
...
2019-08-19 07:06:57

最近上报的IP列表

87.98.171.226 14.231.87.27 87.197.7.25 193.169.39.254
86.247.169.12 84.118.144.115 77.241.66.92 66.7.149.135
83.99.26.199 54.38.192.96 164.132.42.32 51.38.90.195
174.21.149.122 211.159.152.252 177.144.136.133 94.102.56.252
82.100.63.189 222.122.202.35 162.252.156.95 114.113.144.104