104.21.34.126 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.34.126
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39571
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.34.126.			IN	A

;; AUTHORITY SECTION:
.			380	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021700 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 02:25:00 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 126.34.21.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 126.34.21.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
112.85.42.185	attackbotsspam	Sep 1 10:27:51 localhost sshd[2494513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.185 user=root Sep 1 10:27:54 localhost sshd[2494513]: Failed password for root from 112.85.42.185 port 20058 ssh2 Sep 1 10:27:51 localhost sshd[2494513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.185 user=root Sep 1 10:27:54 localhost sshd[2494513]: Failed password for root from 112.85.42.185 port 20058 ssh2 Sep 1 10:27:58 localhost sshd[2494513]: Failed password for root from 112.85.42.185 port 20058 ssh2 ...	2020-09-01 18:34:36
49.88.112.115	attack	Sep 1 11:56:31 * sshd[11126]: Failed password for root from 49.88.112.115 port 26909 ssh2	2020-09-01 18:22:58
172.245.58.78	attackspam	(From eric@talkwithwebvisitor.com) Hey there, I just found your site, quick question… My name’s Eric, I found rusticichiropractickc.com after doing a quick search – you showed up near the top of the rankings, so whatever you’re doing for SEO, looks like it’s working well. So here’s my question – what happens AFTER someone lands on your site? Anything? Research tells us at least 70% of the people who find your site, after a quick once-over, they disappear… forever. That means that all the work and effort you put into getting them to show up, goes down the tubes. Why would you want all that good work – and the great site you’ve built – go to waste? Because the odds are they’ll just skip over calling or even grabbing their phone, leaving you high and dry. But here’s a thought… what if you could make it super-simple for someone to raise their hand, say, “okay, let’s talk” without requiring them to even pull their cell phone from their pocket? You can – thanks to revolutionary new softwa	2020-09-01 18:21:53
185.220.102.254	attackbots	Sep 1 12:06:56 debian64 sshd[7978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.102.254 Sep 1 12:06:59 debian64 sshd[7978]: Failed password for invalid user admin from 185.220.102.254 port 25672 ssh2 ...	2020-09-01 18:11:38
123.59.62.57	attackspam	Sep 1 10:40:35 server sshd[19961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.59.62.57 Sep 1 10:40:35 server sshd[19961]: Invalid user yxu from 123.59.62.57 port 52608 Sep 1 10:40:37 server sshd[19961]: Failed password for invalid user yxu from 123.59.62.57 port 52608 ssh2 Sep 1 10:43:58 server sshd[15686]: Invalid user sistemas from 123.59.62.57 port 47323 Sep 1 10:43:58 server sshd[15686]: Invalid user sistemas from 123.59.62.57 port 47323 ...	2020-09-01 18:14:15
161.47.70.199	attackbots	161.47.70.199 - - \[01/Sep/2020:09:28:19 +0200\] "POST /wp-login.php HTTP/1.0" 200 5983 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 161.47.70.199 - - \[01/Sep/2020:09:28:22 +0200\] "POST /wp-login.php HTTP/1.0" 200 5815 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 161.47.70.199 - - \[01/Sep/2020:09:28:23 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-09-01 18:19:46
13.68.171.41	attack	Invalid user mcadmin from 13.68.171.41 port 53208	2020-09-01 18:33:19
134.209.155.213	attackbotsspam	134.209.155.213 - - [01/Sep/2020:09:47:53 +0100] "POST /wp-login.php HTTP/1.1" 200 1801 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.155.213 - - [01/Sep/2020:09:47:59 +0100] "POST /wp-login.php HTTP/1.1" 200 1779 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.155.213 - - [01/Sep/2020:09:48:11 +0100] "POST /wp-login.php HTTP/1.1" 200 1781 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-01 18:03:43
82.65.27.68	attack	Invalid user admin from 82.65.27.68 port 37704	2020-09-01 18:05:09
185.100.87.41	attackspam	185.100.87.41 (RO/Romania/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 1 05:34:10 server5 sshd[32058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.100.87.41 user=root Sep 1 05:34:12 server5 sshd[32058]: Failed password for root from 185.100.87.41 port 42605 ssh2 Sep 1 05:58:52 server5 sshd[10177]: Failed password for root from 51.210.107.217 port 56936 ssh2 Sep 1 06:10:52 server5 sshd[15471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.172.76.4 user=root Sep 1 06:14:09 server5 sshd[17159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.120.145 user=root Sep 1 06:10:54 server5 sshd[15471]: Failed password for root from 203.172.76.4 port 37646 ssh2 IP Addresses Blocked:	2020-09-01 18:14:35
14.160.39.26	attack	CMS (WordPress or Joomla) login attempt.	2020-09-01 18:26:43
103.83.174.240	attack	Unauthorized connection attempt from IP address 103.83.174.240 on Port 445(SMB)	2020-09-01 18:40:01
193.169.253.52	attackbots	Sep 1 12:08:30 localhost postfix/smtpd\[2442\]: warning: unknown\[193.169.253.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 1 12:08:36 localhost postfix/smtpd\[1433\]: warning: unknown\[193.169.253.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 1 12:08:46 localhost postfix/smtpd\[2442\]: warning: unknown\[193.169.253.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 1 12:09:09 localhost postfix/smtpd\[1433\]: warning: unknown\[193.169.253.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 1 12:09:15 localhost postfix/smtpd\[2442\]: warning: unknown\[193.169.253.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-01 18:21:25
2a01:4f8:10b:4ce::2	attackbots	CF RAY ID: 5cbb6e52ba660625 IP Class: noRecord URI: /xmlrpc.php	2020-09-01 18:00:46
222.127.1.115	attackspam	Unauthorized connection attempt from IP address 222.127.1.115 on Port 445(SMB)	2020-09-01 18:40:29

最近上报的IP列表

104.21.34.124	104.21.34.138	104.21.34.147	104.21.34.15
104.21.34.152	104.21.34.153	104.21.34.154	104.21.69.172
104.21.34.158	104.21.34.131	104.21.34.175	104.21.34.173
104.21.34.18	104.21.34.179	104.21.34.190	104.21.34.196
104.21.34.195	104.21.34.192	104.21.34.200	104.21.34.201