104.248.34.190

基本信息:

城市(city): Frankfurt am Main

省份(region): Hesse

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.248.34.219	attack	2020/06/30 14:47:45 [error] 20617#20617: 3577399 open() "/usr/share/nginx/html/wp-login.php" failed (2: No such file or directory), client: 104.248.34.219, server: _, request: "GET /wp-login.php HTTP/1.1", host: "1-2-dsl.net" 2020/06/30 14:47:45 [error] 20617#20617: 3577400 open() "/usr/share/nginx/html/wp-login.php" failed (2: No such file or directory), client: 104.248.34.219, server: _, request: "GET /wp-login.php HTTP/1.1", host: "1-2-dsl.org"	2020-07-01 21:38:38
104.248.34.219	attackbots	104.248.34.219 - - [14/Jun/2020:14:43:38 +0200] "POST /xmlrpc.php HTTP/1.1" 403 11040 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.34.219 - - [14/Jun/2020:14:47:37 +0200] "POST /xmlrpc.php HTTP/1.1" 403 9565 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-06-14 23:57:53
104.248.34.219	attackbotsspam	104.248.34.219 - - [14/May/2020:18:49:25 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.34.219 - - [14/May/2020:18:49:25 +0200] "POST /wp-login.php HTTP/1.1" 200 2031 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.34.219 - - [14/May/2020:18:49:25 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.34.219 - - [14/May/2020:18:49:25 +0200] "POST /wp-login.php HTTP/1.1" 200 2008 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.34.219 - - [14/May/2020:18:49:25 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.34.219 - - [14/May/2020:18:49:25 +0200] "POST /wp-login.php HTTP/1.1" 200 2009 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ...	2020-05-15 04:04:32
104.248.34.192	attackbotsspam	Feb 9 08:59:09 MK-Soft-VM8 sshd[28974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.34.192 Feb 9 08:59:11 MK-Soft-VM8 sshd[28974]: Failed password for invalid user phi from 104.248.34.192 port 45958 ssh2 ...	2020-02-09 16:23:24
104.248.34.192	attackbotsspam	Feb 9 00:22:32 game-panel sshd[7635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.34.192 Feb 9 00:22:33 game-panel sshd[7635]: Failed password for invalid user zql from 104.248.34.192 port 38890 ssh2 Feb 9 00:25:22 game-panel sshd[7754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.34.192	2020-02-09 08:33:10
104.248.34.192	attackspambots	Unauthorized connection attempt detected from IP address 104.248.34.192 to port 2220 [J]	2020-02-06 02:07:07
104.248.34.192	attackspam	Jan 27 08:35:41 ns381471 sshd[19625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.34.192 Jan 27 08:35:44 ns381471 sshd[19625]: Failed password for invalid user es from 104.248.34.192 port 57222 ssh2	2020-01-27 17:10:59
104.248.34.192	attackspam	Unauthorized connection attempt detected from IP address 104.248.34.192 to port 2220 [J]	2020-01-22 00:53:16
104.248.34.192	attack	Brute SSH	2020-01-14 20:41:14
104.248.34.192	attackspambots	SSH-BruteForce	2020-01-07 08:47:43
104.248.34.192	attack	Dec 25 15:34:32 localhost sshd[34987]: Failed password for invalid user lexst from 104.248.34.192 port 40436 ssh2 Dec 25 15:52:01 localhost sshd[35954]: Failed password for invalid user petryna from 104.248.34.192 port 53592 ssh2 Dec 25 15:54:27 localhost sshd[36194]: Failed password for invalid user bagnato from 104.248.34.192 port 47490 ssh2	2019-12-26 01:05:58
104.248.34.192	attack	[ssh] SSH attack	2019-12-19 02:15:32
104.248.34.192	attack	Dec 17 11:46:50 php1 sshd\[24898\]: Invalid user roberts from 104.248.34.192 Dec 17 11:46:50 php1 sshd\[24898\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.34.192 Dec 17 11:46:52 php1 sshd\[24898\]: Failed password for invalid user roberts from 104.248.34.192 port 32942 ssh2 Dec 17 11:52:58 php1 sshd\[25510\]: Invalid user admin from 104.248.34.192 Dec 17 11:52:58 php1 sshd\[25510\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.34.192	2019-12-18 06:17:22
104.248.34.192	attackbots	Dec 13 05:50:10 localhost sshd\[1358\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.34.192 user=root Dec 13 05:50:12 localhost sshd\[1358\]: Failed password for root from 104.248.34.192 port 48630 ssh2 Dec 13 05:56:09 localhost sshd\[1995\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.34.192 user=root	2019-12-13 13:15:04
104.248.34.43	attackspambots	Port scan attempt detected by AWS-CCS, CTS, India	2019-07-15 18:04:26

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.34.190
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9082
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.34.190.			IN	A

;; AUTHORITY SECTION:
.			576	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022052401 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 25 04:01:55 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 190.34.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 190.34.248.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
110.137.215.8	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 16-10-2019 04:20:21.	2019-10-16 19:05:40
51.254.79.235	attackbots	Oct 16 05:31:51 ns381471 sshd[14169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.79.235 Oct 16 05:31:53 ns381471 sshd[14169]: Failed password for invalid user madalina from 51.254.79.235 port 52972 ssh2 Oct 16 05:35:47 ns381471 sshd[14277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.79.235	2019-10-16 19:08:04
132.232.86.7	attackbotsspam	2019-10-16T10:19:42.036036enmeeting.mahidol.ac.th sshd\[336\]: User root from 132.232.86.7 not allowed because not listed in AllowUsers 2019-10-16T10:19:42.158472enmeeting.mahidol.ac.th sshd\[336\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.86.7 user=root 2019-10-16T10:19:44.152782enmeeting.mahidol.ac.th sshd\[336\]: Failed password for invalid user root from 132.232.86.7 port 54573 ssh2 ...	2019-10-16 19:24:05
1.1.181.8	attack	Honeypot attack, port: 445, PTR: node-ah4.pool-1-1.dynamic.totinternet.net.	2019-10-16 19:05:59
91.200.115.215	attackspambots	firewall-block, port(s): 445/tcp	2019-10-16 19:11:34
113.167.110.244	attackspambots	firewall-block, port(s): 445/tcp	2019-10-16 19:07:43
157.230.42.76	attackbotsspam	Oct 15 19:11:06 hanapaa sshd\[12142\]: Invalid user 123Toys from 157.230.42.76 Oct 15 19:11:06 hanapaa sshd\[12142\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.42.76 Oct 15 19:11:08 hanapaa sshd\[12142\]: Failed password for invalid user 123Toys from 157.230.42.76 port 55763 ssh2 Oct 15 19:18:56 hanapaa sshd\[12795\]: Invalid user hyw19810405 from 157.230.42.76 Oct 15 19:18:56 hanapaa sshd\[12795\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.42.76	2019-10-16 18:49:42
116.102.222.160	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 16-10-2019 04:20:22.	2019-10-16 19:01:28
93.39.116.254	attack	2019-10-16T11:07:44.228849abusebot-7.cloudsearch.cf sshd\[2969\]: Invalid user qwerty from 93.39.116.254 port 33645	2019-10-16 19:17:58
79.155.112.192	attack	Automatic report - Banned IP Access	2019-10-16 19:17:35
106.13.27.14	attackbots	Oct 16 12:54:29 areeb-Workstation sshd[27757]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.27.14 Oct 16 12:54:32 areeb-Workstation sshd[27757]: Failed password for invalid user abc@123 from 106.13.27.14 port 53742 ssh2 ...	2019-10-16 19:10:06
134.209.106.112	attack	Oct 15 17:44:17 php1 sshd\[9150\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.106.112 user=root Oct 15 17:44:19 php1 sshd\[9150\]: Failed password for root from 134.209.106.112 port 45360 ssh2 Oct 15 17:50:21 php1 sshd\[10023\]: Invalid user wow from 134.209.106.112 Oct 15 17:50:21 php1 sshd\[10023\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.106.112 Oct 15 17:50:23 php1 sshd\[10023\]: Failed password for invalid user wow from 134.209.106.112 port 56692 ssh2	2019-10-16 18:55:16
36.189.255.162	attack	Oct 16 08:01:43 *** sshd[6995]: User root from 36.189.255.162 not allowed because not listed in AllowUsers	2019-10-16 19:25:32
143.137.129.247	attackspam	Unauthorised access (Oct 16) SRC=143.137.129.247 LEN=52 TTL=111 ID=32720 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-16 19:15:20
202.84.45.250	attackbotsspam	2019-10-16T09:06:37.550563abusebot.cloudsearch.cf sshd\[21851\]: Invalid user www from 202.84.45.250 port 38661 2019-10-16T09:06:37.553850abusebot.cloudsearch.cf sshd\[21851\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.84.45.250	2019-10-16 19:16:50

最近上报的IP列表

104.248.31.66	104.248.44.49	104.248.47.110	104.248.49.166
104.248.52.180	104.248.52.235	104.248.54.102	104.248.54.109
104.248.58.81	104.248.60.75	104.248.62.79	104.248.67.99
104.248.69.54	104.248.74.54	104.248.76.130	104.248.8.215
104.248.82.134	104.248.84.152	104.248.86.117	104.248.87.173