必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
104.248.57.44 attack
123
2023-03-21 07:11:39
104.248.52.139 attackspam
" "
2020-10-06 07:58:35
104.248.52.139 attackspambots
 TCP (SYN) 104.248.52.139:52595 -> port 22, len 40
2020-10-06 00:19:49
104.248.52.139 attackbots
 TCP (SYN) 104.248.52.139:54796 -> port 22, len 44
2020-10-05 16:19:36
104.248.57.44 attack
$f2bV_matches
2020-10-04 03:25:15
104.248.57.44 attackbotsspam
(sshd) Failed SSH login from 104.248.57.44 (US/United States/-): 5 in the last 3600 secs
2020-10-03 19:19:48
104.248.57.44 attack
Sep 26 17:17:10 ns392434 sshd[31440]: Invalid user teacher from 104.248.57.44 port 45812
Sep 26 17:17:10 ns392434 sshd[31440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.57.44
Sep 26 17:17:10 ns392434 sshd[31440]: Invalid user teacher from 104.248.57.44 port 45812
Sep 26 17:17:12 ns392434 sshd[31440]: Failed password for invalid user teacher from 104.248.57.44 port 45812 ssh2
Sep 26 17:24:42 ns392434 sshd[31569]: Invalid user cloud from 104.248.57.44 port 58364
Sep 26 17:24:42 ns392434 sshd[31569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.57.44
Sep 26 17:24:42 ns392434 sshd[31569]: Invalid user cloud from 104.248.57.44 port 58364
Sep 26 17:24:44 ns392434 sshd[31569]: Failed password for invalid user cloud from 104.248.57.44 port 58364 ssh2
Sep 26 17:27:22 ns392434 sshd[31652]: Invalid user test1 from 104.248.57.44 port 45422
2020-09-27 01:36:49
104.248.57.44 attackspambots
k+ssh-bruteforce
2020-09-26 17:29:46
104.248.57.44 attack
SSH invalid-user multiple login try
2020-09-16 01:59:00
104.248.57.44 attackbots
$f2bV_matches
2020-09-15 17:52:21
104.248.57.44 attackspam
Invalid user elias from 104.248.57.44 port 44796
2020-09-14 21:16:02
104.248.57.44 attackspam
Invalid user elias from 104.248.57.44 port 44796
2020-09-14 13:09:14
104.248.57.44 attackbotsspam
B: Abusive ssh attack
2020-09-14 05:10:11
104.248.57.44 attackspam
Sep  9 08:48:05 root sshd[24202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.57.44 
Sep  9 08:48:07 root sshd[24202]: Failed password for invalid user confluence1 from 104.248.57.44 port 57582 ssh2
...
2020-09-09 22:17:48
104.248.57.44 attack
Sep  9 08:48:05 root sshd[24202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.57.44 
Sep  9 08:48:07 root sshd[24202]: Failed password for invalid user confluence1 from 104.248.57.44 port 57582 ssh2
...
2020-09-09 16:02:50
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.5.31
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55729
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.5.31.			IN	A

;; AUTHORITY SECTION:
.			513	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400

;; Query time: 119 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 16:12:27 CST 2022
;; MSG SIZE  rcvd: 105
HOST信息:
31.5.248.104.in-addr.arpa domain name pointer sigflowtech.tempurl.host.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
31.5.248.104.in-addr.arpa	name = sigflowtech.tempurl.host.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
180.96.28.87 attackbotsspam
Nov  4 18:14:33 lcl-usvr-02 sshd[24879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.96.28.87  user=root
Nov  4 18:14:36 lcl-usvr-02 sshd[24879]: Failed password for root from 180.96.28.87 port 39129 ssh2
Nov  4 18:19:13 lcl-usvr-02 sshd[25918]: Invalid user kimber from 180.96.28.87 port 19840
Nov  4 18:19:13 lcl-usvr-02 sshd[25918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.96.28.87
Nov  4 18:19:13 lcl-usvr-02 sshd[25918]: Invalid user kimber from 180.96.28.87 port 19840
Nov  4 18:19:14 lcl-usvr-02 sshd[25918]: Failed password for invalid user kimber from 180.96.28.87 port 19840 ssh2
...
2019-11-04 22:13:11
64.39.99.194 attackbots
5x Failed Password
2019-11-04 21:36:31
60.12.13.98 attackspam
Nov  3 20:20:22 tdfoods sshd\[4305\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.12.13.98  user=root
Nov  3 20:20:24 tdfoods sshd\[4305\]: Failed password for root from 60.12.13.98 port 9894 ssh2
Nov  3 20:20:26 tdfoods sshd\[4325\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.12.13.98  user=root
Nov  3 20:20:27 tdfoods sshd\[4325\]: Failed password for root from 60.12.13.98 port 10162 ssh2
Nov  3 20:20:28 tdfoods sshd\[4327\]: Invalid user pi from 60.12.13.98
2019-11-04 21:54:51
43.251.104.190 attackbotsspam
Repeated brute force against a port
2019-11-04 21:36:58
118.25.196.31 attackbots
Nov  4 07:19:56 cp sshd[6531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.196.31
2019-11-04 22:11:16
159.203.201.25 attackspam
MultiHost/MultiPort Probe, Scan, Hack -
2019-11-04 21:50:54
159.65.30.66 attackspam
SSH Brute-Force reported by Fail2Ban
2019-11-04 21:28:31
23.247.81.45 attackspambots
Web App Attack
2019-11-04 21:38:03
118.89.240.188 attackbotsspam
Nov  4 09:25:12 localhost sshd\[20429\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.240.188  user=root
Nov  4 09:25:14 localhost sshd\[20429\]: Failed password for root from 118.89.240.188 port 42290 ssh2
Nov  4 09:30:22 localhost sshd\[21201\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.240.188  user=root
2019-11-04 21:52:13
92.112.254.68 attack
IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/92.112.254.68/ 
 
 UA - 1H : (47)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : UA 
 NAME ASN : ASN6849 
 
 IP : 92.112.254.68 
 
 CIDR : 92.112.254.0/23 
 
 PREFIX COUNT : 1366 
 
 UNIQUE IP COUNT : 1315840 
 
 
 ATTACKS DETECTED ASN6849 :  
  1H - 1 
  3H - 1 
  6H - 3 
 12H - 7 
 24H - 12 
 
 DateTime : 2019-11-04 07:20:12 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery
2019-11-04 22:04:31
86.188.246.2 attackspam
" "
2019-11-04 22:03:05
104.200.110.181 attack
$f2bV_matches
2019-11-04 21:30:43
125.212.207.205 attackspam
SSH Brute-Force reported by Fail2Ban
2019-11-04 21:32:09
176.9.187.114 attack
Malformed HTTP Protocol (Error: 10) : Malformed Request   httpbin.org
2019-11-04 21:43:05
67.254.207.61 attack
Automatic report - Banned IP Access
2019-11-04 22:08:34

最近上报的IP列表

104.248.5.205 104.248.51.125 104.248.5.81 104.248.51.244
104.248.5.68 104.248.51.254 104.248.51.47 104.248.51.138
104.248.52.189 104.248.51.90 104.248.53.109 104.248.53.13
104.248.53.72 104.248.53.255 104.248.54.115 104.248.52.141
104.248.53.46 104.248.55.108 104.248.56.1 104.248.56.219