104.21.40.25 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.40.25
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62834
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.40.25.			IN	A

;; AUTHORITY SECTION:
.			302	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 10:09:34 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 25.40.21.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 25.40.21.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
46.229.168.141	attackbotsspam	SQL injection attempt.	2020-08-01 02:02:21
176.57.208.157	attackspam	[portscan] Port scan	2020-08-01 01:58:23
14.188.0.14	attack	Lines containing failures of 14.188.0.14 (max 1000) Jul 31 11:57:50 UTC__SANYALnet-Labs__cac12 sshd[10853]: Connection from 14.188.0.14 port 51011 on 64.137.176.96 port 22 Jul 31 11:57:50 UTC__SANYALnet-Labs__cac12 sshd[10853]: Did not receive identification string from 14.188.0.14 port 51011 Jul 31 11:57:51 UTC__SANYALnet-Labs__cac12 sshd[10854]: Connection from 14.188.0.14 port 51024 on 64.137.176.104 port 22 Jul 31 11:57:51 UTC__SANYALnet-Labs__cac12 sshd[10854]: Did not receive identification string from 14.188.0.14 port 51024 Jul 31 11:57:54 UTC__SANYALnet-Labs__cac12 sshd[10855]: Connection from 14.188.0.14 port 51290 on 64.137.176.96 port 22 Jul 31 11:57:54 UTC__SANYALnet-Labs__cac12 sshd[10856]: Connection from 14.188.0.14 port 51291 on 64.137.176.104 port 22 Jul 31 11:57:56 UTC__SANYALnet-Labs__cac12 sshd[10855]: Address 14.188.0.14 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jul 31 11:57:56 UTC__SANYALnet-Labs_........ ------------------------------	2020-08-01 01:55:31
183.134.91.158	attackbots	SSH Brute Force	2020-08-01 02:20:47
195.54.161.104	attackspam	[LAN access from remote] from 195.54.161.104:54878	2020-08-01 02:28:39
61.72.255.26	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-31T16:19:57Z and 2020-07-31T16:24:09Z	2020-08-01 02:13:27
64.225.47.162	attack	Jul 31 04:46:16 web1 sshd\[16628\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.47.162 user=root Jul 31 04:46:18 web1 sshd\[16628\]: Failed password for root from 64.225.47.162 port 59014 ssh2 Jul 31 04:51:51 web1 sshd\[17006\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.47.162 user=root Jul 31 04:51:52 web1 sshd\[17006\]: Failed password for root from 64.225.47.162 port 53532 ssh2 Jul 31 04:55:14 web1 sshd\[17278\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.47.162 user=root	2020-08-01 02:27:44
77.247.178.201	attackspam	[2020-07-31 13:36:58] NOTICE[1248][C-00001e4c] chan_sip.c: Call from '' (77.247.178.201:55079) to extension '9011442037697638' rejected because extension not found in context 'public'. [2020-07-31 13:36:58] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-07-31T13:36:58.710-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011442037697638",SessionID="0x7f272007c5b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.178.201/55079",ACLName="no_extension_match" [2020-07-31 13:37:14] NOTICE[1248][C-00001e4d] chan_sip.c: Call from '' (77.247.178.201:53470) to extension '011442037693520' rejected because extension not found in context 'public'. [2020-07-31 13:37:14] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-07-31T13:37:14.098-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011442037693520",SessionID="0x7f2720091b18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4 ...	2020-08-01 02:23:37
103.90.233.35	attack	Jul 27 20:07:51 xxxxxxx4 sshd[9691]: Invalid user shiyang from 103.90.233.35 port 42180 Jul 27 20:07:51 xxxxxxx4 sshd[9691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.90.233.35 Jul 27 20:07:53 xxxxxxx4 sshd[9691]: Failed password for invalid user shiyang from 103.90.233.35 port 42180 ssh2 Jul 27 20:21:23 xxxxxxx4 sshd[11614]: Invalid user david from 103.90.233.35 port 38366 Jul 27 20:21:23 xxxxxxx4 sshd[11614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.90.233.35 Jul 27 20:21:24 xxxxxxx4 sshd[11614]: Failed password for invalid user david from 103.90.233.35 port 38366 ssh2 Jul 27 20:25:31 xxxxxxx4 sshd[12134]: Invalid user silvia from 103.90.233.35 port 41348 Jul 27 20:25:31 xxxxxxx4 sshd[12134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.90.233.35 Jul 27 20:25:33 xxxxxxx4 sshd[12134]: Failed password for invalid user silvia ........ ------------------------------	2020-08-01 02:17:39
14.181.29.197	attackbotsspam	Unauthorized connection attempt from IP address 14.181.29.197 on Port 445(SMB)	2020-08-01 02:22:21
155.93.130.60	attack	[ssh] SSH attack	2020-08-01 01:52:55
165.3.86.68	attackbots	2020-07-31T15:06:47.233100+02:00 lumpi kernel: [21490412.884937] INPUT:DROP:SPAMHAUS_DROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=165.3.86.68 DST=78.46.199.189 LEN=48 TOS=0x00 PREC=0x00 TTL=115 ID=27208 DF PROTO=TCP SPT=17845 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ...	2020-08-01 02:14:59
125.110.217.156	attack	Jul3114:03:03server2pure-ftpd:\(\?@125.110.217.156\)[WARNING]Authenticationfailedforuser[anonymous]Jul3114:03:22server2pure-ftpd:\(\?@125.110.217.156\)[WARNING]Authenticationfailedforuser[www]Jul3114:03:32server2pure-ftpd:\(\?@125.110.217.156\)[WARNING]Authenticationfailedforuser[www]Jul3114:03:38server2pure-ftpd:\(\?@125.110.217.156\)[WARNING]Authenticationfailedforuser[www]Jul3114:03:45server2pure-ftpd:\(\?@125.110.217.156\)[WARNING]Authenticationfailedforuser[www]	2020-08-01 01:50:19
103.84.71.238	attack	Jul 31 18:12:16 v22019038103785759 sshd\[30034\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.84.71.238 user=root Jul 31 18:12:18 v22019038103785759 sshd\[30034\]: Failed password for root from 103.84.71.238 port 36170 ssh2 Jul 31 18:17:13 v22019038103785759 sshd\[30135\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.84.71.238 user=root Jul 31 18:17:15 v22019038103785759 sshd\[30135\]: Failed password for root from 103.84.71.238 port 41974 ssh2 Jul 31 18:22:10 v22019038103785759 sshd\[30224\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.84.71.238 user=root ...	2020-08-01 01:51:04
93.144.159.163	attackspam	Automatic report - Banned IP Access	2020-08-01 01:56:57

最近上报的IP列表

104.21.40.49	104.21.40.38	104.21.40.50	104.21.40.54
104.21.40.61	104.21.40.59	104.21.40.68	104.21.40.67
13.225.71.122	104.21.40.71	104.21.40.75	104.21.40.79
104.21.40.78	13.225.71.123	104.21.40.82	104.21.40.84
104.21.40.80	104.21.40.91	104.21.40.93	104.21.41.11