必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
104.248.49.155 attack
'Fail2Ban'
2020-05-09 07:09:53
104.248.49.171 attackspambots
SSH Brute Force
2020-04-29 13:27:14
104.248.49.55 attackbotsspam
Invalid user ftpuser1 from 104.248.49.55 port 33502
2020-04-21 15:46:13
104.248.49.55 attackbots
$f2bV_matches
2020-04-14 18:03:05
104.248.49.55 attackspambots
Apr 11 15:05:59 legacy sshd[16269]: Failed password for root from 104.248.49.55 port 49220 ssh2
Apr 11 15:09:57 legacy sshd[16388]: Failed password for root from 104.248.49.55 port 59046 ssh2
Apr 11 15:13:58 legacy sshd[16603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.55
...
2020-04-11 22:34:09
104.248.49.171 attackspambots
SSH Brute Force
2019-11-01 12:01:28
104.248.49.171 attackbotsspam
Sep  1 05:40:21 meumeu sshd[12185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 
Sep  1 05:40:24 meumeu sshd[12185]: Failed password for invalid user darian from 104.248.49.171 port 53712 ssh2
Sep  1 05:44:20 meumeu sshd[12609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 
...
2019-09-01 11:55:27
104.248.49.171 attack
Invalid user bank from 104.248.49.171 port 37986
2019-08-28 16:55:03
104.248.49.171 attackspam
Aug 26 02:39:25 lcprod sshd\[20704\]: Invalid user user from 104.248.49.171
Aug 26 02:39:25 lcprod sshd\[20704\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171
Aug 26 02:39:26 lcprod sshd\[20704\]: Failed password for invalid user user from 104.248.49.171 port 41734 ssh2
Aug 26 02:43:28 lcprod sshd\[21029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171  user=man
Aug 26 02:43:30 lcprod sshd\[21029\]: Failed password for man from 104.248.49.171 port 49748 ssh2
2019-08-26 20:50:20
104.248.49.171 attack
Aug 22 12:46:34 yabzik sshd[9861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171
Aug 22 12:46:36 yabzik sshd[9861]: Failed password for invalid user amstest from 104.248.49.171 port 45852 ssh2
Aug 22 12:50:35 yabzik sshd[11312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171
2019-08-22 18:02:43
104.248.49.171 attack
$f2bV_matches
2019-08-22 08:55:00
104.248.49.171 attackspambots
Aug 21 01:51:28 srv-4 sshd\[7509\]: Invalid user test from 104.248.49.171
Aug 21 01:51:28 srv-4 sshd\[7509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171
Aug 21 01:51:29 srv-4 sshd\[7509\]: Failed password for invalid user test from 104.248.49.171 port 37412 ssh2
...
2019-08-21 07:52:23
104.248.49.171 attackbotsspam
Invalid user gemma from 104.248.49.171 port 57412
2019-08-18 13:00:27
104.248.49.171 attack
Invalid user yd from 104.248.49.171 port 44470
2019-08-16 12:09:51
104.248.49.171 attack
Invalid user yd from 104.248.49.171 port 44470
2019-08-15 17:17:42
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.49.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29649
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.49.66.			IN	A

;; AUTHORITY SECTION:
.			494	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 16:12:25 CST 2022
;; MSG SIZE  rcvd: 106
HOST信息:
66.49.248.104.in-addr.arpa domain name pointer staging.geowellex.com.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
66.49.248.104.in-addr.arpa	name = staging.geowellex.com.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
37.230.113.234 attackspam
Jun 23 15:56:48 123flo sshd[19364]: Invalid user user from 37.230.113.234
Jun 23 15:56:48 123flo sshd[19364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.230.113.234 
Jun 23 15:56:48 123flo sshd[19364]: Invalid user user from 37.230.113.234
Jun 23 15:56:50 123flo sshd[19364]: Failed password for invalid user user from 37.230.113.234 port 36534 ssh2
Jun 23 15:56:52 123flo sshd[19370]: Invalid user user from 37.230.113.234
2019-06-24 09:40:26
170.244.13.7 attackspam
dovecot jail - smtp auth [ma]
2019-06-24 09:28:17
193.201.224.220 attackbots
[24/Jun/2019:02:20:42 +0200] Web-Request: "GET /wp-login.php", User-Agent: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)"
[24/Jun/2019:02:20:58 +0200] Web-Request: "GET /wp-login.php", User-Agent: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)"
2019-06-24 09:19:56
27.147.206.104 attack
Attempts to probe for or exploit a Drupal site on url: /wp-login.php. Reported by the module https://www.drupal.org/project/abuseipdb.
2019-06-24 09:39:49
91.225.77.71 attackbotsspam
Wordpress attack
2019-06-24 09:31:42
173.244.209.5 attackbots
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.244.209.5  user=root
Failed password for root from 173.244.209.5 port 53814 ssh2
Failed password for root from 173.244.209.5 port 53814 ssh2
Failed password for root from 173.244.209.5 port 53814 ssh2
Failed password for root from 173.244.209.5 port 53814 ssh2
2019-06-24 09:43:26
162.241.181.222 attack
8886/tcp 220/tcp 7000/tcp...
[2019-06-17/23]32pkt,10pt.(tcp)
2019-06-24 09:06:40
2a01:4f8:140:4475::2 attackspam
do not respect robot.txt
2019-06-24 09:02:01
103.138.109.106 attack
NAME : MTK-VN CIDR : 103.138.108.0/23 | EMAIL - SPAM {Looking for resource vulnerabilities} DDoS Attack Viet Nam - block certain countries :) IP: 103.138.109.106  Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN  - data recovery https://help-dysk.pl
2019-06-24 09:29:08
192.227.158.57 attack
NAME : CC-192-227-206-64-26 CIDR : 192.227.206.64/26 DDoS attack USA - New York - block certain countries :) IP: 192.227.158.57  Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN  - data recovery https://help-dysk.pl
2019-06-24 08:59:01
205.186.161.61 attackspam
205.186.161.61 - - \[23/Jun/2019:21:57:18 +0200\] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
205.186.161.61 - - \[23/Jun/2019:21:57:18 +0200\] "POST /wp-login.php HTTP/1.1" 200 1704 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
205.186.161.61 - - \[23/Jun/2019:21:57:19 +0200\] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
205.186.161.61 - - \[23/Jun/2019:21:57:19 +0200\] "POST /wp-login.php HTTP/1.1" 200 1684 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
205.186.161.61 - - \[23/Jun/2019:21:57:19 +0200\] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
205.186.161.61 - - \[23/Jun/2019:21:57:20 +0200\] "POST /wp-login.php HTTP/1.1" 200 1688 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:6
2019-06-24 09:33:38
106.1.184.222 attackspam
1561319918 - 06/24/2019 02:58:38 Host: 106.1.184.222/106.1.184.222 Port: 23 TCP Blocked
...
2019-06-24 09:18:16
179.7.192.210 attackspambots
Brute force attempt
2019-06-24 09:40:51
179.108.244.167 attackbots
dovecot jail - smtp auth [ma]
2019-06-24 09:32:57
210.74.148.94 attackspambots
3389BruteforceFW22
2019-06-24 09:47:09

最近上报的IP列表

104.248.48.8 104.248.49.136 104.248.48.252 104.248.48.251
104.248.48.239 104.248.48.84 104.248.48.233 104.248.49.76
104.248.5.78 104.248.50.109 104.248.5.205 104.248.5.31
104.248.51.125 104.248.5.81 104.248.51.244 104.248.5.68
104.248.51.254 104.248.51.47 104.248.51.138 104.248.52.189