104.21.49.65 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.49.65
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3553
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.49.65.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 02:33:48 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 65.49.21.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 65.49.21.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
161.35.60.45	attackspam	161.35.60.45 - - [14/Jul/2020:23:31:31 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 161.35.60.45 - - [14/Jul/2020:23:31:32 +0200] "POST /wp-login.php HTTP/1.1" 200 1704 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 161.35.60.45 - - [14/Jul/2020:23:31:32 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 161.35.60.45 - - [14/Jul/2020:23:31:32 +0200] "POST /wp-login.php HTTP/1.1" 200 1684 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 161.35.60.45 - - [14/Jul/2020:23:31:32 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 161.35.60.45 - - [14/Jul/2020:23:31:33 +0200] "POST /wp-login.php HTTP/1.1" 200 1688 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/6 ...	2020-07-15 07:54:33
220.133.88.72	attackspam	Honeypot attack, port: 81, PTR: 220-133-88-72.HINET-IP.hinet.net.	2020-07-15 08:02:57
49.88.112.113	attackspambots	Jul 14 13:23:17 php1 sshd\[23744\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Jul 14 13:23:19 php1 sshd\[23744\]: Failed password for root from 49.88.112.113 port 58415 ssh2 Jul 14 13:23:21 php1 sshd\[23744\]: Failed password for root from 49.88.112.113 port 58415 ssh2 Jul 14 13:23:23 php1 sshd\[23744\]: Failed password for root from 49.88.112.113 port 58415 ssh2 Jul 14 13:24:17 php1 sshd\[23804\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root	2020-07-15 07:45:56
54.37.75.210	attackbots	Jul 14 23:06:31 XXX sshd[65244]: Invalid user chad from 54.37.75.210 port 33780	2020-07-15 08:11:53
178.33.229.120	attackbots	Jul 8 17:57:46 server sshd[17370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.229.120 Jul 8 17:57:47 server sshd[17370]: Failed password for invalid user asterisk from 178.33.229.120 port 36632 ssh2 Jul 8 18:13:18 server sshd[18765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.229.120 Jul 8 18:13:20 server sshd[18765]: Failed password for invalid user wuwanze from 178.33.229.120 port 37477 ssh2	2020-07-15 08:16:46
193.142.146.203	attack	Multiport scan : 487 ports scanned 12000 12005 12008 12011 12022 12025 12028 12042 12059 12062 12075 12076 12079 12082 12085 12092 12093 12096 12099 12113 12116 12130 12133 12136 12145 12147 12148 12149 12150 12153 12164 12167 12170 12171 12182 12187 12199 12201 12204 12207 12218 12221 12238 12245 12252 12255 12258 12265 12268 12272 12275 12288 12289 12292 12295 12299 12302 12306 12319 12323 12326 12336 12338 12343 12346 12352 12356 .....	2020-07-15 07:49:43
31.42.11.180	attack	708. On Jul 14 2020 experienced a Brute Force SSH login attempt -> 3 unique times by 31.42.11.180.	2020-07-15 07:46:30
175.24.49.210	attackspambots	Ssh brute force	2020-07-15 08:04:04
122.201.19.99	attackspam	SSH break in attempt ...	2020-07-15 08:05:56
212.126.121.254	attack	Fail2Ban Ban Triggered SMTP Bruteforce Attempt	2020-07-15 08:09:13
196.240.54.12	attack	(mod_security) mod_security (id:210492) triggered by 196.240.54.12 (LV/Latvia/-): 5 in the last 3600 secs	2020-07-15 08:08:06
192.42.116.17	attackbots	Ein möglicherweise gefährlicher Request.Form-Wert wurde vom Client (="	2020-07-15 08:03:46
42.104.109.194	attackspambots	Ssh brute force	2020-07-15 08:07:06
79.137.74.57	attackbotsspam	2020-07-14T23:01:49.996980server.espacesoutien.com sshd[20898]: Invalid user testuser from 79.137.74.57 port 57523 2020-07-14T23:01:50.010064server.espacesoutien.com sshd[20898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.74.57 2020-07-14T23:01:49.996980server.espacesoutien.com sshd[20898]: Invalid user testuser from 79.137.74.57 port 57523 2020-07-14T23:01:52.246626server.espacesoutien.com sshd[20898]: Failed password for invalid user testuser from 79.137.74.57 port 57523 ssh2 ...	2020-07-15 07:58:52
45.143.222.174	attackbots	(pop3d) Failed POP3 login from 45.143.222.174 (NL/Netherlands/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jul 14 22:54:49 ir1 dovecot[2885757]: pop3-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=45.143.222.174, lip=5.63.12.44, session=	2020-07-15 07:52:56

最近上报的IP列表

104.21.49.44	104.21.49.63	104.21.49.66	104.21.49.56
104.21.7.177	104.21.49.67	104.21.49.68	104.21.49.7
104.21.49.69	104.21.49.78	104.21.49.8	104.21.7.179
104.21.49.81	104.21.49.77	104.21.49.74	104.21.49.87
104.21.49.83	104.21.49.93	104.21.49.89	104.21.49.71