104.148.89.21 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.148.89.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16566
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.148.89.21.			IN	A

;; AUTHORITY SECTION:
.			209	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030302 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 11:45:47 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

21.89.148.104.in-addr.arpa domain name pointer aq5.xyz.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
21.89.148.104.in-addr.arpa	name = aq5.xyz.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
116.96.78.24	attack	Unauthorized connection attempt from IP address 116.96.78.24 on Port 445(SMB)	2020-08-22 02:37:13
103.115.128.106	attackbotsspam	Unauthorized connection attempt from IP address 103.115.128.106 on Port 445(SMB)	2020-08-22 02:33:40
106.54.114.208	attackspambots	Tried sshing with brute force.	2020-08-22 02:52:10
140.143.244.91	attackspambots	frenzy	2020-08-22 02:43:24
138.219.44.156	attack	Unauthorized connection attempt from IP address 138.219.44.156 on Port 445(SMB)	2020-08-22 02:52:34
103.226.84.241	attack	php WP PHPmyadamin ABUSE blocked for 12h	2020-08-22 02:51:19
138.121.170.194	attackbots	Aug 21 20:40:19 pve1 sshd[5594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.121.170.194 Aug 21 20:40:20 pve1 sshd[5594]: Failed password for invalid user deploy from 138.121.170.194 port 55378 ssh2 ...	2020-08-22 02:43:37
189.207.105.76	attackspam	Automatic report - Port Scan Attack	2020-08-22 02:27:41
222.186.175.148	attack	" "	2020-08-22 02:53:25
81.0.90.251	attack	srvr1: (mod_security) mod_security (id:942100) triggered by 81.0.90.251 (HU/-/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:01:58 [error] 482759#0: 840088 [client 81.0.90.251] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801131815.157417"] [ref ""], client: 81.0.90.251, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%29+OR+UPDATEXML%285947%2CCONCAT%280x2e%2C0x317167483543%2C%28SELECT+%28ELT%282836%3D2836%2C1%29%29%29%2C0x317167483543%29%2C5431%29--+YUZJ HTTP/1.1" [redacted]	2020-08-22 02:47:03
139.217.218.93	attackspam	Aug 21 06:35:57 propaganda sshd[20377]: Connection from 139.217.218.93 port 55844 on 10.0.0.161 port 22 rdomain "" Aug 21 06:35:57 propaganda sshd[20377]: Connection closed by 139.217.218.93 port 55844 [preauth]	2020-08-22 02:19:28
105.178.104.200	attackbots	20/8/21@08:02:27: FAIL: Alarm-Network address from=105.178.104.200 20/8/21@08:02:28: FAIL: Alarm-Network address from=105.178.104.200 ...	2020-08-22 02:16:02
36.110.68.138	attack	Aug 21 17:35:49 vps1 sshd[1156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.110.68.138 Aug 21 17:35:51 vps1 sshd[1156]: Failed password for invalid user hqy from 36.110.68.138 port 2470 ssh2 Aug 21 17:38:13 vps1 sshd[1204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.110.68.138 Aug 21 17:38:15 vps1 sshd[1204]: Failed password for invalid user user01 from 36.110.68.138 port 2471 ssh2 Aug 21 17:40:34 vps1 sshd[1282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.110.68.138 Aug 21 17:40:36 vps1 sshd[1282]: Failed password for invalid user tom from 36.110.68.138 port 2472 ssh2 ...	2020-08-22 02:47:32
201.149.55.53	attackspam	Aug 21 20:09:19 * sshd[25102]: Failed password for root from 201.149.55.53 port 36716 ssh2 Aug 21 20:16:55 * sshd[26379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.149.55.53	2020-08-22 02:23:18
192.241.239.146	attack	Port Scan detected! ...	2020-08-22 02:23:05

最近上报的IP列表

104.148.21.156	104.148.36.71	104.148.76.148	112.66.108.210
104.148.89.22	104.148.80.110	104.148.27.153	104.148.80.108
104.148.39.157	104.148.89.29	104.148.92.156	112.66.108.222
104.148.92.69	104.149.141.134	104.149.0.14	104.149.167.214
104.149.173.59	104.149.158.12	104.149.0.20	104.149.175.92