104.16.172.213

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.16.172.213
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13346
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.16.172.213.			IN	A

;; AUTHORITY SECTION:
.			594	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022100 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 22 01:17:07 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 213.172.16.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 213.172.16.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
103.19.201.83	attack	(smtpauth) Failed SMTP AUTH login from 103.19.201.83 (IN/India/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-07-10 08:26:40 plain authenticator failed for ([103.19.201.83]) [103.19.201.83]: 535 Incorrect authentication data (set_id=info@espadanahotel.com)	2020-07-10 13:03:16
212.70.149.82	attackbots	Jul 10 06:52:19 relay postfix/smtpd\[4166\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 10 06:52:32 relay postfix/smtpd\[1978\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 10 06:52:46 relay postfix/smtpd\[28646\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 10 06:52:59 relay postfix/smtpd\[2428\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 10 06:53:14 relay postfix/smtpd\[28646\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-10 12:55:32
118.24.102.148	attackbots	Jul 10 06:23:56 inter-technics sshd[27335]: Invalid user pathplan from 118.24.102.148 port 54462 Jul 10 06:23:56 inter-technics sshd[27335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.102.148 Jul 10 06:23:56 inter-technics sshd[27335]: Invalid user pathplan from 118.24.102.148 port 54462 Jul 10 06:23:59 inter-technics sshd[27335]: Failed password for invalid user pathplan from 118.24.102.148 port 54462 ssh2 Jul 10 06:27:59 inter-technics sshd[13134]: Invalid user music from 118.24.102.148 port 41074 ...	2020-07-10 13:16:07
45.143.221.54	attack	Jul 10 08:03:55 server2 sshd\[21807\]: User root from 45.143.221.54 not allowed because not listed in AllowUsers Jul 10 08:04:13 server2 sshd\[21841\]: User root from 45.143.221.54 not allowed because not listed in AllowUsers Jul 10 08:04:33 server2 sshd\[21853\]: User root from 45.143.221.54 not allowed because not listed in AllowUsers Jul 10 08:04:54 server2 sshd\[21865\]: User root from 45.143.221.54 not allowed because not listed in AllowUsers Jul 10 08:05:14 server2 sshd\[22058\]: User root from 45.143.221.54 not allowed because not listed in AllowUsers Jul 10 08:05:35 server2 sshd\[22065\]: User root from 45.143.221.54 not allowed because not listed in AllowUsers	2020-07-10 13:09:13
138.68.226.175	attackbots	Jul 10 06:27:11 h2779839 sshd[31209]: Invalid user rock from 138.68.226.175 port 60532 Jul 10 06:27:11 h2779839 sshd[31209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.226.175 Jul 10 06:27:11 h2779839 sshd[31209]: Invalid user rock from 138.68.226.175 port 60532 Jul 10 06:27:13 h2779839 sshd[31209]: Failed password for invalid user rock from 138.68.226.175 port 60532 ssh2 Jul 10 06:30:23 h2779839 sshd[31285]: Invalid user aman from 138.68.226.175 port 56126 Jul 10 06:30:23 h2779839 sshd[31285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.226.175 Jul 10 06:30:23 h2779839 sshd[31285]: Invalid user aman from 138.68.226.175 port 56126 Jul 10 06:30:25 h2779839 sshd[31285]: Failed password for invalid user aman from 138.68.226.175 port 56126 ssh2 Jul 10 06:33:26 h2779839 sshd[31388]: Invalid user userid from 138.68.226.175 port 51726 ...	2020-07-10 13:18:31
31.3.224.240	attackspam	Jul 10 05:56:30 debian-2gb-nbg1-2 kernel: \[16611980.856647\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=31.3.224.240 DST=195.201.40.59 LEN=52 TOS=0x00 PREC=0x00 TTL=117 ID=4362 DF PROTO=TCP SPT=61324 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0	2020-07-10 13:12:21
118.25.152.231	attackbotsspam	Jul 10 06:09:34 eventyay sshd[27945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.152.231 Jul 10 06:09:36 eventyay sshd[27945]: Failed password for invalid user inada from 118.25.152.231 port 41974 ssh2 Jul 10 06:14:17 eventyay sshd[28019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.152.231 ...	2020-07-10 13:03:42
1.2.132.220	attack	1594353375 - 07/10/2020 10:56:15 Host: node-yk.pool-1-2.dynamic.totinternet.net/1.2.132.220 Port: 26 TCP Blocked ...	2020-07-10 13:23:57
185.36.81.232	attackbots	[2020-07-10 00:43:51] NOTICE[1150] chan_sip.c: Registration from '"4004" ' failed for '185.36.81.232:53347' - Wrong password [2020-07-10 00:43:51] SECURITY[1167] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-10T00:43:51.593-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="4004",SessionID="0x7fcb4c0dfe08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.36.81.232/53347",Challenge="2eb89d12",ReceivedChallenge="2eb89d12",ReceivedHash="56416cf638141c7c6f5697679a00e246" [2020-07-10 00:44:51] NOTICE[1150] chan_sip.c: Registration from '"4005" ' failed for '185.36.81.232:64594' - Wrong password [2020-07-10 00:44:51] SECURITY[1167] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-10T00:44:51.570-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="4005",SessionID="0x7fcb4c0dfe08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP ...	2020-07-10 12:52:47
78.174.148.64	attackbotsspam	Automatic report - Port Scan Attack	2020-07-10 13:04:34
118.70.217.142	attack	Jul 10 06:16:41 l02a sshd[12378]: Invalid user system from 118.70.217.142 Jul 10 06:16:41 l02a sshd[12378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.70.217.142 Jul 10 06:16:41 l02a sshd[12378]: Invalid user system from 118.70.217.142 Jul 10 06:16:43 l02a sshd[12378]: Failed password for invalid user system from 118.70.217.142 port 53129 ssh2	2020-07-10 13:21:29
222.186.175.216	attack	Jul 9 21:57:22 dignus sshd[10443]: Failed password for root from 222.186.175.216 port 57916 ssh2 Jul 9 21:57:26 dignus sshd[10443]: Failed password for root from 222.186.175.216 port 57916 ssh2 Jul 9 21:57:26 dignus sshd[10443]: error: maximum authentication attempts exceeded for root from 222.186.175.216 port 57916 ssh2 [preauth] Jul 9 21:57:31 dignus sshd[10479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.216 user=root Jul 9 21:57:34 dignus sshd[10479]: Failed password for root from 222.186.175.216 port 12310 ssh2 ...	2020-07-10 12:57:41
63.83.73.249	attackbotsspam		2020-07-10 13:23:28
109.24.243.250	attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2020-07-10 12:54:02
78.131.11.10	attackbots	Jul 10 15:05:27 localhost sshd[858316]: Invalid user pi from 78.131.11.10 port 48300 ...	2020-07-10 13:13:39

最近上报的IP列表

104.16.171.213	104.16.173.213	235.201.12.34	104.16.173.80
104.16.174.213	140.95.234.4	104.16.223.21	104.16.224.21
104.16.228.249	104.16.228.94	104.16.229.249	104.16.229.94
104.16.23.66	104.16.233.25	104.16.234.4	190.179.34.242
104.16.235.4	104.16.238.72	104.16.239.72	104.16.24.66