104.248.53.58 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.248.53.168	attackspam	This IP is associated with RDP abuse. It was found in a paste by https://twitter.com/RdpSnitch - https://pastebin.com/4Ddmuksx For more information, or to report interesting/incorrect findings, contact us - bot@tines.io	2020-04-26 21:42:31
104.248.53.106	attackspam	8080/tcp 8080/tcp 8080/tcp [2019-07-10]3pkt	2019-07-11 02:05:40

类型

评论内容

时间

104.248.53.168

attackspam

This IP is associated with RDP abuse. It was found in a paste by https://twitter.com/RdpSnitch - https://pastebin.com/4Ddmuksx  
For more information, or to report interesting/incorrect findings, contact us - bot@tines.io

2020-04-26 21:42:31

104.248.53.106

attackspam

8080/tcp 8080/tcp 8080/tcp
[2019-07-10]3pkt

2019-07-11 02:05:40

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.53.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17261
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.53.58.			IN	A

;; AUTHORITY SECTION:
.			558	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030301 1800 900 604800 86400

;; Query time: 85 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 02:02:43 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 58.53.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 58.53.248.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
110.164.91.50	attackbotsspam	Brute Force - Postfix	2020-05-01 04:19:59
222.186.52.39	attack	odoo8 ...	2020-05-01 04:23:20
138.68.72.7	attackbotsspam	Apr 30 21:08:24 eventyay sshd[2656]: Failed password for root from 138.68.72.7 port 55458 ssh2 Apr 30 21:12:51 eventyay sshd[2774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.72.7 Apr 30 21:12:52 eventyay sshd[2774]: Failed password for invalid user cib from 138.68.72.7 port 39428 ssh2 ...	2020-05-01 04:05:19
185.53.88.61	attack	[2020-04-30 12:30:21] NOTICE[1170][C-00008fc9] chan_sip.c: Call from '' (185.53.88.61:5078) to extension '5011972594771385' rejected because extension not found in context 'public'. [2020-04-30 12:30:21] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-30T12:30:21.907-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="5011972594771385",SessionID="0x7f6c080c72b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.61/5078",ACLName="no_extension_match" [2020-04-30 12:39:58] NOTICE[1170][C-00008fd2] chan_sip.c: Call from '' (185.53.88.61:5070) to extension '1011972594771385' rejected because extension not found in context 'public'. [2020-04-30 12:39:58] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-30T12:39:58.677-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="1011972594771385",SessionID="0x7f6c080b4a38",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/18 ...	2020-05-01 04:16:22
111.230.223.94	attackbotsspam	2020-04-30T15:48:08.577201upcloud.m0sh1x2.com sshd[17606]: Invalid user sl from 111.230.223.94 port 53456	2020-05-01 04:13:38
49.235.91.59	attack	5x Failed Password	2020-05-01 04:43:10
92.249.247.202	attackspam	Apr 30 18:31:41 XXX sshd[26577]: Did not receive identification string from 92.249.247.202 Apr 30 18:31:41 XXX sshd[26576]: Did not receive identification string from 92.249.247.202 Apr 30 18:31:41 XXX sshd[26574]: Did not receive identification string from 92.249.247.202 Apr 30 18:31:41 XXX sshd[26575]: Did not receive identification string from 92.249.247.202 Apr 30 18:31:41 XXX sshd[26582]: Did not receive identification string from 92.249.247.202 Apr 30 18:31:41 XXX sshd[26583]: Did not receive identification string from 92.249.247.202 Apr 30 18:31:41 XXX sshd[26578]: Did not receive identification string from 92.249.247.202 Apr 30 18:31:41 XXX sshd[26584]: Did not receive identification string from 92.249.247.202 Apr 30 18:31:41 XXX sshd[26581]: Did not receive identification string from 92.249.247.202 Apr 30 18:31:41 XXX sshd[26579]: Did not receive identification string from 92.249.247.202 Apr 30 18:31:41 XXX sshd[26580]: Did not receive identification string fro........ -------------------------------	2020-05-01 04:14:45
164.132.44.218	attackspam	Apr 30 20:51:11 v22019038103785759 sshd\[9000\]: Invalid user nagios from 164.132.44.218 port 57713 Apr 30 20:51:11 v22019038103785759 sshd\[9000\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.44.218 Apr 30 20:51:12 v22019038103785759 sshd\[9000\]: Failed password for invalid user nagios from 164.132.44.218 port 57713 ssh2 Apr 30 20:55:19 v22019038103785759 sshd\[9236\]: Invalid user scan from 164.132.44.218 port 35312 Apr 30 20:55:19 v22019038103785759 sshd\[9236\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.44.218 ...	2020-05-01 04:01:27
185.143.74.108	attackspam	Apr 30 21:29:16 mail postfix/smtpd\[14020\]: warning: unknown\[185.143.74.108\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Apr 30 22:00:19 mail postfix/smtpd\[15161\]: warning: unknown\[185.143.74.108\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Apr 30 22:01:27 mail postfix/smtpd\[15355\]: warning: unknown\[185.143.74.108\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Apr 30 22:02:33 mail postfix/smtpd\[15161\]: warning: unknown\[185.143.74.108\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-05-01 04:04:27
178.91.70.95	attackbots	SMB Server BruteForce Attack	2020-05-01 04:41:52
180.180.123.227	attackbotsspam	Apr 30 15:43:49 mail sshd[13679]: Invalid user easy from 180.180.123.227 Apr 30 15:43:49 mail sshd[13679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.180.123.227 Apr 30 15:43:49 mail sshd[13679]: Invalid user easy from 180.180.123.227 Apr 30 15:43:50 mail sshd[13679]: Failed password for invalid user easy from 180.180.123.227 port 43395 ssh2 Apr 30 15:51:05 mail sshd[14732]: Invalid user dia from 180.180.123.227 ...	2020-05-01 04:24:24
162.243.137.210	attackbots	20/4/30@08:24:01: FAIL: Alarm-Intrusion address from=162.243.137.210 ...	2020-05-01 04:31:16
45.227.253.147	attackspambots	1 attempts against mh-modsecurity-ban on milky	2020-05-01 04:26:37
193.112.213.248	attackbotsspam	Apr 30 15:15:40 ift sshd\[12908\]: Failed password for root from 193.112.213.248 port 38648 ssh2Apr 30 15:21:10 ift sshd\[13821\]: Invalid user ajit from 193.112.213.248Apr 30 15:21:12 ift sshd\[13821\]: Failed password for invalid user ajit from 193.112.213.248 port 41726 ssh2Apr 30 15:23:52 ift sshd\[13960\]: Invalid user dw from 193.112.213.248Apr 30 15:23:55 ift sshd\[13960\]: Failed password for invalid user dw from 193.112.213.248 port 43268 ssh2 ...	2020-05-01 04:35:28
122.51.58.42	attackbotsspam	$f2bV_matches	2020-05-01 04:29:06

最近上报的IP列表

104.248.51.232	104.248.6.39	104.248.8.188	104.248.81.238
104.248.85.53	104.249.173.213	104.249.174.66	104.249.174.67
104.25.19.47	104.25.190.13	104.25.191.13	71.116.66.240
104.25.194.53	104.25.199.209	104.25.20.122	104.25.20.47
104.25.208.57	104.25.219.39	104.25.220.39	104.25.224.124