104.248.47.126

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.47.126
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39486
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.47.126.			IN	A

;; AUTHORITY SECTION:
.			146	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022100700 1800 900 604800 86400

;; Query time: 74 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 07 20:31:32 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 126.47.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 126.47.248.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
192.236.194.154	attackbots	CloudCIX Reconnaissance Scan Detected, PTR: hwsrv-596324.hostwindsdns.com.	2019-10-09 02:54:39
103.44.27.58	attackspambots	Oct 8 14:24:38 xtremcommunity sshd\[318267\]: Invalid user 123 from 103.44.27.58 port 60575 Oct 8 14:24:38 xtremcommunity sshd\[318267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.44.27.58 Oct 8 14:24:40 xtremcommunity sshd\[318267\]: Failed password for invalid user 123 from 103.44.27.58 port 60575 ssh2 Oct 8 14:30:32 xtremcommunity sshd\[318372\]: Invalid user Bonjour2016 from 103.44.27.58 port 50582 Oct 8 14:30:32 xtremcommunity sshd\[318372\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.44.27.58 ...	2019-10-09 02:38:16
178.212.49.187	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/178.212.49.187/ PL - 1H : (145) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : PL NAME ASN : ASN197025 IP : 178.212.49.187 CIDR : 178.212.49.0/24 PREFIX COUNT : 8 UNIQUE IP COUNT : 2048 WYKRYTE ATAKI Z ASN197025 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 3 DateTime : 2019-10-08 13:48:42 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-09 02:24:12
49.88.112.113	attackbots	Oct 8 14:18:55 plusreed sshd[24265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Oct 8 14:18:57 plusreed sshd[24265]: Failed password for root from 49.88.112.113 port 54192 ssh2 ...	2019-10-09 02:24:57
93.190.217.43	attackbots	Oct 8 13:36:56 mxgate1 postfix/postscreen[551]: CONNECT from [93.190.217.43]:51788 to [176.31.12.44]:25 Oct 8 13:36:56 mxgate1 postfix/dnsblog[556]: addr 93.190.217.43 listed by domain zen.spamhaus.org as 127.0.0.3 Oct 8 13:36:56 mxgate1 postfix/dnsblog[552]: addr 93.190.217.43 listed by domain b.barracudacentral.org as 127.0.0.2 Oct 8 13:37:02 mxgate1 postfix/postscreen[551]: DNSBL rank 3 for [93.190.217.43]:51788 Oct x@x Oct 8 13:37:03 mxgate1 postfix/postscreen[551]: DISCONNECT [93.190.217.43]:51788 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=93.190.217.43	2019-10-09 02:41:48
58.210.96.156	attack	Aug 20 17:17:04 dallas01 sshd[5961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.210.96.156 Aug 20 17:17:06 dallas01 sshd[5961]: Failed password for invalid user fs from 58.210.96.156 port 50949 ssh2 Aug 20 17:21:30 dallas01 sshd[6887]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.210.96.156 Aug 20 17:21:33 dallas01 sshd[6887]: Failed password for invalid user video from 58.210.96.156 port 44452 ssh2	2019-10-09 02:22:03
168.128.13.252	attack	Oct 8 11:11:27 Tower sshd[2995]: Connection from 168.128.13.252 port 43080 on 192.168.10.220 port 22 Oct 8 11:11:28 Tower sshd[2995]: Failed password for root from 168.128.13.252 port 43080 ssh2 Oct 8 11:11:28 Tower sshd[2995]: Received disconnect from 168.128.13.252 port 43080:11: Bye Bye [preauth] Oct 8 11:11:28 Tower sshd[2995]: Disconnected from authenticating user root 168.128.13.252 port 43080 [preauth]	2019-10-09 02:55:15
194.5.94.148	attackbots	Oct 8 22:01:22 our-server-hostname postfix/smtpd[24515]: connect from unknown[194.5.94.148] Oct x@x Oct x@x Oct 8 22:01:26 our-server-hostname postfix/smtpd[24515]: disconnect from unknown[194.5.94.148] Oct 8 22:05:14 our-server-hostname postfix/smtpd[27865]: connect from unknown[194.5.94.148] Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=194.5.94.148	2019-10-09 02:50:09
195.133.216.215	attack	2019-10-08T09:23:44.8818611495-001 sshd\[9656\]: Failed password for root from 195.133.216.215 port 46614 ssh2 2019-10-08T09:36:10.3374601495-001 sshd\[10540\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195-133-216-215.in-addr.mastertelecom.ru user=root 2019-10-08T09:36:12.5670711495-001 sshd\[10540\]: Failed password for root from 195.133.216.215 port 51392 ssh2 2019-10-08T09:40:23.2302321495-001 sshd\[10744\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195-133-216-215.in-addr.mastertelecom.ru user=root 2019-10-08T09:40:25.7112791495-001 sshd\[10744\]: Failed password for root from 195.133.216.215 port 34166 ssh2 2019-10-08T09:44:28.9516191495-001 sshd\[11064\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195-133-216-215.in-addr.mastertelecom.ru user=root ...	2019-10-09 02:25:28
77.40.3.223	attack	2019-10-08 dovecot_login authenticator failed for \(localhost.localdomain\) \[77.40.3.223\]: 535 Incorrect authentication data \(set_id=invoices@REMOVED.de\) 2019-10-08 dovecot_login authenticator failed for \(localhost.localdomain\) \[77.40.3.223\]: 535 Incorrect authentication data \(set_id=invoices@REMOVED.de\) 2019-10-08 dovecot_login authenticator failed for \(localhost.localdomain\) \[77.40.3.223\]: 535 Incorrect authentication data \(set_id=kontakt@REMOVED.de\)	2019-10-09 02:30:40
58.56.198.222	attackspam	Unauthorised access (Oct 8) SRC=58.56.198.222 LEN=40 TOS=0x10 PREC=0x40 TTL=47 ID=50363 TCP DPT=8080 WINDOW=44951 SYN Unauthorised access (Oct 8) SRC=58.56.198.222 LEN=40 TOS=0x10 PREC=0x40 TTL=47 ID=3198 TCP DPT=8080 WINDOW=21631 SYN Unauthorised access (Oct 7) SRC=58.56.198.222 LEN=40 TOS=0x10 PREC=0x40 TTL=47 ID=62260 TCP DPT=8080 WINDOW=21631 SYN Unauthorised access (Oct 7) SRC=58.56.198.222 LEN=40 TOS=0x10 PREC=0x40 TTL=47 ID=45997 TCP DPT=8080 WINDOW=47091 SYN Unauthorised access (Oct 7) SRC=58.56.198.222 LEN=40 TOS=0x10 PREC=0x40 TTL=47 ID=4549 TCP DPT=8080 WINDOW=47091 SYN Unauthorised access (Oct 6) SRC=58.56.198.222 LEN=40 TOS=0x10 PREC=0x40 TTL=47 ID=27696 TCP DPT=8080 WINDOW=21631 SYN	2019-10-09 02:19:50
77.247.110.201	attackbotsspam	\[2019-10-08 14:26:34\] NOTICE\[1887\] chan_sip.c: Registration from '\' failed for '77.247.110.201:55550' - Wrong password \[2019-10-08 14:26:34\] SECURITY\[1898\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-08T14:26:34.121-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="7881",SessionID="0x7fc3ac2ed548",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.201/55550",Challenge="15232825",ReceivedChallenge="15232825",ReceivedHash="b930e5d48f5e40a1088dd9a3895818ca" \[2019-10-08 14:26:34\] NOTICE\[1887\] chan_sip.c: Registration from '\' failed for '77.247.110.201:55544' - Wrong password \[2019-10-08 14:26:34\] SECURITY\[1898\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-08T14:26:34.123-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="7881",SessionID="0x7fc3acd749b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.201/55544",	2019-10-09 02:34:28
104.248.115.231	attackspam	Oct 8 19:42:53 arianus sshd\[15019\]: Unable to negotiate with 104.248.115.231 port 44406: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 \[preauth\] ...	2019-10-09 02:19:18
182.61.55.239	attack	Oct 8 16:32:53 vps691689 sshd[4278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.55.239 Oct 8 16:32:55 vps691689 sshd[4278]: Failed password for invalid user !@#admin123 from 182.61.55.239 port 20888 ssh2 ...	2019-10-09 02:44:33
54.36.150.171	attackbotsspam	Automatic report - Banned IP Access	2019-10-09 02:55:55

最近上报的IP列表

180.183.39.207	34.85.254.36	193.233.231.94	221.165.80.239
103.172.41.166	103.126.162.102	121.183.98.107	113.24.159.170
180.106.224.29	103.250.142.7	128.90.59.90	125.204.14.91
154.16.243.85	45.86.244.39	211.237.240.2	103.71.21.135
103.27.229.131	45.128.77.117	178.208.163.191	121.226.229.60