104.21.10.204 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.10.204
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3194
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.10.204.			IN	A

;; AUTHORITY SECTION:
.			314	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021602 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 17 07:46:09 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 204.10.21.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 204.10.21.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
149.28.67.130	attackspam	[portscan] tcp/23 [TELNET] [scan/connect: 2 time(s)] *(RWIN=8192)(08301000)	2019-08-30 16:55:43
13.250.246.243	attackspambots	Aug 29 20:49:12 tdfoods sshd\[28434\]: Invalid user sinusbot from 13.250.246.243 Aug 29 20:49:12 tdfoods sshd\[28434\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-13-250-246-243.ap-southeast-1.compute.amazonaws.com Aug 29 20:49:14 tdfoods sshd\[28434\]: Failed password for invalid user sinusbot from 13.250.246.243 port 37656 ssh2 Aug 29 20:53:57 tdfoods sshd\[28855\]: Invalid user ze from 13.250.246.243 Aug 29 20:53:57 tdfoods sshd\[28855\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-13-250-246-243.ap-southeast-1.compute.amazonaws.com	2019-08-30 16:19:58
66.8.205.220	attackbots	Aug 29 22:35:05 hcbb sshd\[8400\]: Invalid user admin from 66.8.205.220 Aug 29 22:35:05 hcbb sshd\[8400\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-66-8-205-220.hawaii.res.rr.com Aug 29 22:35:07 hcbb sshd\[8400\]: Failed password for invalid user admin from 66.8.205.220 port 45208 ssh2 Aug 29 22:39:39 hcbb sshd\[8871\]: Invalid user september from 66.8.205.220 Aug 29 22:39:39 hcbb sshd\[8871\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-66-8-205-220.hawaii.res.rr.com	2019-08-30 16:50:14
194.28.112.140	attackspambots	An intrusion has been detected. The packet has been dropped automatically. You can toggle this rule between "drop" and "alert only" in WebAdmin. Details about the intrusion alert: Message........: OS-WINDOWS Microsoft Windows Terminal server RDP over non-standard port attempt Details........: https://www.snort.org/search?query=49040 Time...........: 2019-08-29 21:37:12 Packet dropped.: yes Priority.......: high Classification.: Attempted User Privilege Gain IP protocol....: 6 (TCP) Source IP address: 194.28.112.140 (h140-112.fcsrv.net) Source port: 51783 Destination IP address: xxx Destination port: 2222 (rockwell-csp2)	2019-08-30 17:08:13
95.178.156.21	attack	Telnetd brute force attack detected by fail2ban	2019-08-30 16:34:45
138.197.180.16	attack	Invalid user test from 138.197.180.16 port 33120	2019-08-30 17:02:34
185.175.93.45	attackbots	08/30/2019-05:07:24.192231 185.175.93.45 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-08-30 17:07:34
103.121.117.180	attack	Aug 30 06:00:44 hcbbdb sshd\[31736\]: Invalid user atscale from 103.121.117.180 Aug 30 06:00:44 hcbbdb sshd\[31736\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.121.117.180 Aug 30 06:00:46 hcbbdb sshd\[31736\]: Failed password for invalid user atscale from 103.121.117.180 port 30579 ssh2 Aug 30 06:08:19 hcbbdb sshd\[32520\]: Invalid user intekhab from 103.121.117.180 Aug 30 06:08:19 hcbbdb sshd\[32520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.121.117.180	2019-08-30 16:34:10
106.12.16.107	attack	Aug 30 10:07:47 h2177944 sshd\[19138\]: Invalid user new_paco from 106.12.16.107 port 47108 Aug 30 10:07:47 h2177944 sshd\[19138\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.16.107 Aug 30 10:07:48 h2177944 sshd\[19138\]: Failed password for invalid user new_paco from 106.12.16.107 port 47108 ssh2 Aug 30 10:15:56 h2177944 sshd\[19404\]: Invalid user adrian from 106.12.16.107 port 39294 Aug 30 10:15:56 h2177944 sshd\[19404\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.16.107 ...	2019-08-30 16:36:44
103.45.149.216	attack	Aug 30 12:40:13 lcl-usvr-01 sshd[7629]: Invalid user celia from 103.45.149.216 Aug 30 12:40:13 lcl-usvr-01 sshd[7629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.149.216 Aug 30 12:40:13 lcl-usvr-01 sshd[7629]: Invalid user celia from 103.45.149.216 Aug 30 12:40:15 lcl-usvr-01 sshd[7629]: Failed password for invalid user celia from 103.45.149.216 port 49791 ssh2 Aug 30 12:45:54 lcl-usvr-01 sshd[9215]: Invalid user dresden from 103.45.149.216	2019-08-30 17:06:11
138.197.72.48	attackspam	"Fail2Ban detected SSH brute force attempt"	2019-08-30 16:31:40
116.4.97.66	attackbotsspam	Automatic report - Port Scan Attack	2019-08-30 16:20:45
159.65.46.224	attackspambots	Aug 30 04:19:53 vps200512 sshd\[18801\]: Invalid user bayonne from 159.65.46.224 Aug 30 04:19:53 vps200512 sshd\[18801\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.46.224 Aug 30 04:19:56 vps200512 sshd\[18801\]: Failed password for invalid user bayonne from 159.65.46.224 port 55502 ssh2 Aug 30 04:23:51 vps200512 sshd\[18918\]: Invalid user sra from 159.65.46.224 Aug 30 04:23:51 vps200512 sshd\[18918\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.46.224	2019-08-30 16:31:09
185.176.27.6	attackspam	08/30/2019-04:14:58.921600 185.176.27.6 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-08-30 16:22:27
160.153.154.22	attackbots	\[Fri Aug 30 07:46:06.513154 2019\] \[access_compat:error\] \[pid 5310:tid 140516716943104\] \[client 160.153.154.22:44855\] AH01797: client denied by server configuration: /var/www/lug/xmlrpc.php ...	2019-08-30 16:57:52

最近上报的IP列表

104.21.10.175	104.21.10.249	104.21.10.3	104.21.10.51
104.21.10.54	104.21.10.55	104.21.10.58	104.21.10.64
104.21.10.68	104.21.10.73	115.175.163.19	104.21.10.74
104.21.10.89	104.21.11.149	94.180.249.78	104.21.11.153
66.30.62.246	104.21.11.176	104.21.11.191	104.21.11.201