104.248.251.97

基本信息:

城市(city): Frankfurt am Main

省份(region): Hessen

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.248.251.166	attackspambots	Nov 24 15:44:08 sanyalnet-cloud-vps3 sshd[4893]: Connection from 104.248.251.166 port 55676 on 45.62.248.66 port 22 Nov 24 15:44:08 sanyalnet-cloud-vps3 sshd[4893]: Invalid user clela from 104.248.251.166 Nov 24 15:44:08 sanyalnet-cloud-vps3 sshd[4893]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.251.166 Nov 24 15:44:10 sanyalnet-cloud-vps3 sshd[4893]: Failed password for invalid user clela from 104.248.251.166 port 55676 ssh2 Nov 24 15:44:10 sanyalnet-cloud-vps3 sshd[4893]: Received disconnect from 104.248.251.166: 11: Bye Bye [preauth] Nov 24 16:27:30 sanyalnet-cloud-vps3 sshd[5821]: Connection from 104.248.251.166 port 47136 on 45.62.248.66 port 22 Nov 24 16:27:31 sanyalnet-cloud-vps3 sshd[5821]: Invalid user ubnt from 104.248.251.166 Nov 24 16:27:31 sanyalnet-cloud-vps3 sshd[5821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.251.166 Nov 24 16:27:33 sanyalnet-clo........ -------------------------------	2019-11-25 05:03:52

类型

评论内容

时间

104.248.251.166

attackspambots

Nov 24 15:44:08 sanyalnet-cloud-vps3 sshd[4893]: Connection from 104.248.251.166 port 55676 on 45.62.248.66 port 22
Nov 24 15:44:08 sanyalnet-cloud-vps3 sshd[4893]: Invalid user clela from 104.248.251.166
Nov 24 15:44:08 sanyalnet-cloud-vps3 sshd[4893]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.251.166 
Nov 24 15:44:10 sanyalnet-cloud-vps3 sshd[4893]: Failed password for invalid user clela from 104.248.251.166 port 55676 ssh2
Nov 24 15:44:10 sanyalnet-cloud-vps3 sshd[4893]: Received disconnect from 104.248.251.166: 11: Bye Bye [preauth]
Nov 24 16:27:30 sanyalnet-cloud-vps3 sshd[5821]: Connection from 104.248.251.166 port 47136 on 45.62.248.66 port 22
Nov 24 16:27:31 sanyalnet-cloud-vps3 sshd[5821]: Invalid user ubnt from 104.248.251.166
Nov 24 16:27:31 sanyalnet-cloud-vps3 sshd[5821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.251.166 
Nov 24 16:27:33 sanyalnet-clo........
-------------------------------

2019-11-25 05:03:52

WHOIS信息:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       104.248.0.0 - 104.248.255.255
CIDR:           104.248.0.0/16
NetName:        DIGITALOCEAN-104-248-0-0
NetHandle:      NET-104-248-0-0-1
Parent:         NET104 (NET-104-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   DigitalOcean, LLC (DO-13)
RegDate:        2018-08-06
Updated:        2020-04-03
Comment:        Routing and Peering Policy can be found at https://www.as14061.net
Comment:        
Comment:        Please submit abuse reports at https://www.digitalocean.com/company/contact/#abuse
Ref:            https://rdap.arin.net/registry/ip/104.248.0.0



OrgName:        DigitalOcean, LLC
OrgId:          DO-13
Address:        105 Edgeview Drive, Suite 425
City:           Broomfield
StateProv:      CO
PostalCode:     80021
Country:        US
RegDate:        2012-05-14
Updated:        2025-04-11
Ref:            https://rdap.arin.net/registry/entity/DO-13


OrgAbuseHandle: DIGIT19-ARIN
OrgAbuseName:   DigitalOcean Abuse
OrgAbusePhone:  +1-646-827-4366 
OrgAbuseEmail:  abuse@digitalocean.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/DIGIT19-ARIN

OrgNOCHandle: NOC32014-ARIN
OrgNOCName:   Network Operations Center
OrgNOCPhone:  +1-646-827-4366 
OrgNOCEmail:  noc@digitalocean.com
OrgNOCRef:    https://rdap.arin.net/registry/entity/NOC32014-ARIN

OrgTechHandle: NOC32014-ARIN
OrgTechName:   Network Operations Center
OrgTechPhone:  +1-646-827-4366 
OrgTechEmail:  noc@digitalocean.com
OrgTechRef:    https://rdap.arin.net/registry/entity/NOC32014-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.251.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51680
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.251.97.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026022402 1800 900 604800 86400

;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 25 11:00:32 CST 2026
;; MSG SIZE  rcvd: 107

HOST信息:

Host 97.251.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 97.251.248.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.105.239.24	attackspambots	port scan and connect, tcp 23 (telnet)	2019-11-10 00:09:57
49.88.112.72	attack	Nov 9 16:54:57 sauna sshd[87427]: Failed password for root from 49.88.112.72 port 28470 ssh2 ...	2019-11-10 00:09:21
47.63.249.26	attackbotsspam	port 23 attempt blocked	2019-11-09 23:43:15
201.150.5.14	attackbots	Nov 9 04:52:14 tdfoods sshd\[25806\]: Invalid user aq1sw2de3fr4 from 201.150.5.14 Nov 9 04:52:14 tdfoods sshd\[25806\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.150.5.14 Nov 9 04:52:16 tdfoods sshd\[25806\]: Failed password for invalid user aq1sw2de3fr4 from 201.150.5.14 port 60396 ssh2 Nov 9 04:56:33 tdfoods sshd\[26190\]: Invalid user 123jyq!@\# from 201.150.5.14 Nov 9 04:56:33 tdfoods sshd\[26190\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.150.5.14	2019-11-09 23:44:03
92.118.38.38	attackspambots	Nov 9 16:32:42 andromeda postfix/smtpd\[55571\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: authentication failure Nov 9 16:33:02 andromeda postfix/smtpd\[3151\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: authentication failure Nov 9 16:33:06 andromeda postfix/smtpd\[55571\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: authentication failure Nov 9 16:33:18 andromeda postfix/smtpd\[3843\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: authentication failure Nov 9 16:33:37 andromeda postfix/smtpd\[49174\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: authentication failure	2019-11-09 23:40:47
49.68.39.23	attackspambots	port 23 attempt blocked	2019-11-09 23:36:55
80.82.78.100	attackspam	09.11.2019 15:02:11 Connection to port 512 blocked by firewall	2019-11-10 00:06:48
141.212.123.195	attackspam	Connection by 141.212.123.195 on port: 7 got caught by honeypot at 11/9/2019 1:55:51 PM	2019-11-10 00:13:07
103.114.104.210	attack	Nov 9 21:55:40 itv-usvr-01 sshd[8644]: Invalid user admin from 103.114.104.210	2019-11-10 00:16:50
188.166.251.87	attack	Nov 9 15:56:27 vpn01 sshd[31174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.251.87 Nov 9 15:56:29 vpn01 sshd[31174]: Failed password for invalid user bliss from 188.166.251.87 port 52440 ssh2 ...	2019-11-09 23:46:53
2001:41d0:2:4c25::	attack	WordPress login Brute force / Web App Attack on client site.	2019-11-10 00:11:42
104.131.68.92	attackspam	www.ft-1848-basketball.de 104.131.68.92 \[09/Nov/2019:15:56:31 +0100\] "POST /wp-login.php HTTP/1.1" 200 2172 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.ft-1848-basketball.de 104.131.68.92 \[09/Nov/2019:15:56:32 +0100\] "POST /wp-login.php HTTP/1.1" 200 2143 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-09 23:46:14
202.54.157.6	attack	Automatic report - Banned IP Access	2019-11-09 23:41:16
118.126.64.217	attackbotsspam	Nov 9 16:59:47 MK-Soft-VM5 sshd[10163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.126.64.217 Nov 9 16:59:49 MK-Soft-VM5 sshd[10163]: Failed password for invalid user powerapp from 118.126.64.217 port 49108 ssh2 ...	2019-11-10 00:10:18
106.12.25.143	attackbots	Nov 9 16:08:38 microserver sshd[52646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.25.143 user=root Nov 9 16:08:40 microserver sshd[52646]: Failed password for root from 106.12.25.143 port 51610 ssh2 Nov 9 16:13:39 microserver sshd[53308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.25.143 user=root Nov 9 16:13:41 microserver sshd[53308]: Failed password for root from 106.12.25.143 port 60866 ssh2 Nov 9 16:18:37 microserver sshd[54002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.25.143 user=root Nov 9 16:28:40 microserver sshd[55359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.25.143 user=root Nov 9 16:28:42 microserver sshd[55359]: Failed password for root from 106.12.25.143 port 60392 ssh2 Nov 9 16:33:53 microserver sshd[56039]: Invalid user robert from 106.12.25.143 port 41434 Nov 9 16:33:5	2019-11-10 00:00:51

最近上报的IP列表

134.209.157.69	178.156.229.216	163.7.4.249	54.226.204.22
54.226.195.155	185.242.3.196	14.212.61.202	176.65.149.157
63.143.95.250	194.187.177.217	194.187.177.209	47.92.255.70
143.110.174.150	111.55.205.57	23.225.40.13	23.225.40.136
23.225.40.237	2408:8207:1833:ca1:2560:fd31:4cc3:ec64	2408:8207:1833:12e0:73d:4cad:bf73:4cfb	192.168.1.32