104.168.21.1 - IPInfo

基本信息:

城市(city): San Jose

省份(region): California

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.168.214.53	attackspambots	[f2b] sshd bruteforce, retries: 1	2020-10-12 05:31:58
104.168.214.53	attack	[f2b] sshd bruteforce, retries: 1	2020-10-11 21:38:42
104.168.214.53	attack	5x Failed Password	2020-10-11 13:35:31
104.168.214.53	attackbotsspam	20 attempts against mh-ssh on ice	2020-10-11 06:59:12
104.168.214.86	attack	Oct 8 11:05:14 mail postfix/smtpd[27643]: warning: hwsrv-786714.hostwindsdns.com[104.168.214.86]: SASL login authentication failed: authentication failure	2020-10-09 05:12:13
104.168.214.86	attack	Oct 7 22:46:27 mellenthin postfix/smtpd[26683]: warning: hwsrv-786714.hostwindsdns.com[104.168.214.86]: SASL login authentication failed: UGFzc3dvcmQ6 Oct 7 22:46:34 mellenthin postfix/smtpd[26683]: warning: hwsrv-786714.hostwindsdns.com[104.168.214.86]: SASL login authentication failed: UGFzc3dvcmQ6	2020-10-08 21:25:49
104.168.214.86	attack	Oct 7 22:46:27 mellenthin postfix/smtpd[26683]: warning: hwsrv-786714.hostwindsdns.com[104.168.214.86]: SASL login authentication failed: UGFzc3dvcmQ6 Oct 7 22:46:34 mellenthin postfix/smtpd[26683]: warning: hwsrv-786714.hostwindsdns.com[104.168.214.86]: SASL login authentication failed: UGFzc3dvcmQ6	2020-10-08 13:19:54
104.168.214.86	attackspam	Oct 7 22:46:27 mellenthin postfix/smtpd[26683]: warning: hwsrv-786714.hostwindsdns.com[104.168.214.86]: SASL login authentication failed: UGFzc3dvcmQ6 Oct 7 22:46:34 mellenthin postfix/smtpd[26683]: warning: hwsrv-786714.hostwindsdns.com[104.168.214.86]: SASL login authentication failed: UGFzc3dvcmQ6	2020-10-08 08:40:21
104.168.214.168	attack	DATE:2020-08-17 05:56:55, IP:104.168.214.168, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-08-17 17:12:38
104.168.21.186	attack		2020-08-14 23:01:33
104.168.219.192	attack	14 - Undeliverable: Emails for p*r@rc.com	2020-08-06 07:41:11
104.168.21.186	attack	Automatic report - Banned IP Access	2020-08-01 18:08:31
104.168.219.197	attackspam	13.07.2020 12:23:00 Recursive DNS scan	2020-07-13 22:02:03
104.168.219.181	attack	Port Scan	2020-05-29 20:45:06
104.168.219.2	attack	Unauthorized connection attempt detected from IP address 104.168.219.2 to port 23	2020-04-03 16:35:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.168.21.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54059
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.168.21.1.			IN	A

;; AUTHORITY SECTION:
.			228	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2021111702 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 18 02:20:50 CST 2021
;; MSG SIZE  rcvd: 105

HOST信息:

1.21.168.104.in-addr.arpa domain name pointer 104-168-21-1-host.colocrossing.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
1.21.168.104.in-addr.arpa	name = 104-168-21-1-host.colocrossing.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
192.223.27.22	attack	Unknown connection	2020-07-08 03:07:12
167.99.157.37	attackspam	Jul 7 20:38:12 abendstille sshd\[17277\]: Invalid user user from 167.99.157.37 Jul 7 20:38:12 abendstille sshd\[17277\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.157.37 Jul 7 20:38:14 abendstille sshd\[17277\]: Failed password for invalid user user from 167.99.157.37 port 41092 ssh2 Jul 7 20:42:05 abendstille sshd\[21563\]: Invalid user chelsey from 167.99.157.37 Jul 7 20:42:05 abendstille sshd\[21563\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.157.37 ...	2020-07-08 03:11:39
37.208.77.44	spamnormal	HAKKERS!	2020-07-08 03:12:41
52.14.85.230	attackspambots	mue-0 : Trying access unauthorized files=>/images/jdownloads/screenshots/update.php()	2020-07-08 03:28:55
82.137.26.42	attackspambots	Automatic report - Banned IP Access	2020-07-08 03:15:33
190.128.175.6	attackbotsspam	$f2bV_matches	2020-07-08 03:10:28
117.212.117.133	attackspambots	07/07/2020-07:55:54.307595 117.212.117.133 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-07-08 03:25:38
103.74.111.84	attackbots	103.74.111.84 - - [07/Jul/2020:17:00:17 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 103.74.111.84 - - [07/Jul/2020:17:00:18 +0100] "POST /wp-login.php HTTP/1.1" 200 5815 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 103.74.111.84 - - [07/Jul/2020:17:03:09 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ...	2020-07-08 03:30:26
161.35.194.178	attackspambots	Jul 7 11:48:29 ws12vmsma01 sshd[35786]: Invalid user fake from 161.35.194.178 Jul 7 11:48:31 ws12vmsma01 sshd[35786]: Failed password for invalid user fake from 161.35.194.178 port 37106 ssh2 Jul 7 11:48:33 ws12vmsma01 sshd[35798]: Invalid user admin from 161.35.194.178 ...	2020-07-08 03:04:35
213.197.180.91	attack	WordPress login Brute force / Web App Attack on client site.	2020-07-08 03:09:36
218.92.0.171	attack	Repeated brute force against a port	2020-07-08 03:05:19
222.186.173.142	attackbots	Jul 7 14:54:12 NPSTNNYC01T sshd[8701]: Failed password for root from 222.186.173.142 port 55924 ssh2 Jul 7 14:54:24 NPSTNNYC01T sshd[8701]: error: maximum authentication attempts exceeded for root from 222.186.173.142 port 55924 ssh2 [preauth] Jul 7 14:54:30 NPSTNNYC01T sshd[8717]: Failed password for root from 222.186.173.142 port 2106 ssh2 ...	2020-07-08 03:02:50
84.17.46.8	attackspambots	100s of forms	2020-07-08 03:28:26
117.206.243.223	attackspambots	1594123000 - 07/07/2020 13:56:40 Host: 117.206.243.223/117.206.243.223 Port: 445 TCP Blocked	2020-07-08 02:52:36
122.156.219.212	attackbots	Jul 7 21:19:02 abendstille sshd\[25353\]: Invalid user mysql from 122.156.219.212 Jul 7 21:19:02 abendstille sshd\[25353\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.156.219.212 Jul 7 21:19:04 abendstille sshd\[25353\]: Failed password for invalid user mysql from 122.156.219.212 port 47258 ssh2 Jul 7 21:20:43 abendstille sshd\[26977\]: Invalid user www from 122.156.219.212 Jul 7 21:20:43 abendstille sshd\[26977\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.156.219.212 ...	2020-07-08 03:22:03

最近上报的IP列表

73.194.130.66	60.219.194.200	124.240.42.85	103.117.36.173
64.222.245.70	84.47.19.222	205.161.23.50	209.198.126.154
46.96.166.185	31.172.80.96	52.226.139.187	170.82.77.36
125.142.30.147	221.12.174.68	185.197.30.211	83.59.123.109
151.115.54.41	151.115.57.175	151.115.37.33	151.115.37.36