104.21.61.68 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.61.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50688
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.61.68.			IN	A

;; AUTHORITY SECTION:
.			386	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021700 1800 900 604800 86400

;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 01:20:09 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 68.61.21.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 68.61.21.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
142.93.230.126	attackbotsspam	11/09/2019-22:05:29.002808 142.93.230.126 Protocol: 6 ET POLICY Cleartext WordPress Login	2019-11-10 06:45:11
80.234.51.135	attack	Chat Spam	2019-11-10 06:29:37
46.38.144.146	attackspambots	Nov 9 23:32:57 webserver postfix/smtpd\[19310\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 9 23:33:34 webserver postfix/smtpd\[18130\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 9 23:34:11 webserver postfix/smtpd\[18130\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 9 23:34:49 webserver postfix/smtpd\[19310\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 9 23:35:26 webserver postfix/smtpd\[19310\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-10 06:38:49
222.74.73.202	attackbots	Spam emails were sent from this SMTP server. Some of this kind of spam emails attempted to camouflage the SMTP servers with 27.85.176.228 (a KDDI's legitimate server). The URLs in the spam messages were such as : - http :// ds85e6a.xyz/asint/ura-ac02/prof.php?pid=1 (61.14.210.110) - http :// ds85e6a.xyz/asint/stop/ The spammer used the following domains for the email addresses in the sites.: - mlstp.0ch.biz (The domain "0ch.biz" used "ns01.kix.ad.jp" and "ns02" for the name servers. Its registrant was "MEDIAWARS CO.,Ltd.". Its registrar was "IDC Frontier Inc.".) - lover-amazing.com (Its registrar was "GMO Internet, Inc.".)	2019-11-10 06:22:21
187.0.88.41	attackbotsspam	Spam Timestamp : 09-Nov-19 15:15 BlockList Provider combined abuse (858)	2019-11-10 06:44:42
138.197.89.186	attackbotsspam	Nov 9 22:12:09 ovpn sshd\[24252\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.89.186 user=root Nov 9 22:12:11 ovpn sshd\[24252\]: Failed password for root from 138.197.89.186 port 41822 ssh2 Nov 9 22:17:13 ovpn sshd\[25316\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.89.186 user=root Nov 9 22:17:15 ovpn sshd\[25316\]: Failed password for root from 138.197.89.186 port 60808 ssh2 Nov 9 22:20:35 ovpn sshd\[26030\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.89.186 user=root	2019-11-10 06:42:53
139.59.32.51	attack	Nov 9 17:12:05 pornomens sshd\[8105\]: Invalid user user2 from 139.59.32.51 port 44356 Nov 9 17:12:05 pornomens sshd\[8105\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.32.51 Nov 9 17:12:07 pornomens sshd\[8105\]: Failed password for invalid user user2 from 139.59.32.51 port 44356 ssh2 ...	2019-11-10 06:37:47
51.91.158.51	attack	2019-11-09T20:39:44.007310shield sshd\[31111\]: Invalid user oracle from 51.91.158.51 port 41562 2019-11-09T20:39:44.011624shield sshd\[31111\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.ip-51-91-158.eu 2019-11-09T20:39:46.214306shield sshd\[31111\]: Failed password for invalid user oracle from 51.91.158.51 port 41562 ssh2 2019-11-09T20:40:08.759562shield sshd\[31125\]: Invalid user oracle from 51.91.158.51 port 51560 2019-11-09T20:40:08.764372shield sshd\[31125\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.ip-51-91-158.eu	2019-11-10 06:19:32
18.197.201.120	attackbotsspam	Web App Attack	2019-11-10 06:20:37
166.152.131.144	attack	Spam emails were sent from this SMTP server. Some of this kind of spam emails attempted to camouflage the SMTP servers with 27.85.176.228 (a KDDI's legitimate server). The URLs in the spam messages were such as : - http :// ds85e6a.xyz/asint/ura-ac02/prof.php?pid=1 (61.14.210.110) - http :// ds85e6a.xyz/asint/stop/ The spammer used the following domains for the email addresses in the sites.: - mlstp.0ch.biz (The domain "0ch.biz" used "ns01.kix.ad.jp" and "ns02" for the name servers. Its registrant was "MEDIAWARS CO.,Ltd.". Its registrar was "IDC Frontier Inc.".) - lover-amazing.com (Its registrar was "GMO Internet, Inc.".)	2019-11-10 06:26:41
34.76.63.183	attackbots	plussize.fitness 34.76.63.183 \[09/Nov/2019:17:11:49 +0100\] "POST /wp-login.php HTTP/1.1" 200 5629 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" plussize.fitness 34.76.63.183 \[09/Nov/2019:17:11:49 +0100\] "POST /wp-login.php HTTP/1.1" 200 5582 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-10 06:51:19
190.8.80.42	attackspambots	Automatic report - Banned IP Access	2019-11-10 06:35:00
95.76.1.166	attackbots	Spam Timestamp : 09-Nov-19 15:58 BlockList Provider combined abuse (864)	2019-11-10 06:38:15
114.67.82.150	attackbots	Nov 9 18:25:37 microserver sshd[6161]: Invalid user from 114.67.82.150 port 34726 Nov 9 18:25:37 microserver sshd[6161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.82.150 Nov 9 18:25:39 microserver sshd[6161]: Failed password for invalid user from 114.67.82.150 port 34726 ssh2 Nov 9 18:30:53 microserver sshd[6846]: Invalid user tractors from 114.67.82.150 port 42538 Nov 9 18:30:53 microserver sshd[6846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.82.150 Nov 9 18:47:27 microserver sshd[8958]: Invalid user s@123 from 114.67.82.150 port 37760 Nov 9 18:47:27 microserver sshd[8958]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.82.150 Nov 9 18:47:28 microserver sshd[8958]: Failed password for invalid user s@123 from 114.67.82.150 port 37760 ssh2 Nov 9 18:52:54 microserver sshd[9651]: Invalid user maxlaroche from 114.67.82.150 port 45574 Nov 9 18:52:54	2019-11-10 06:53:13
83.44.99.78	attackbotsspam	Nov 9 23:12:46 lcl-usvr-02 sshd[23589]: Invalid user pi from 83.44.99.78 port 41740 Nov 9 23:12:46 lcl-usvr-02 sshd[23591]: Invalid user pi from 83.44.99.78 port 41744 Nov 9 23:12:47 lcl-usvr-02 sshd[23589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.44.99.78 Nov 9 23:12:46 lcl-usvr-02 sshd[23589]: Invalid user pi from 83.44.99.78 port 41740 Nov 9 23:12:49 lcl-usvr-02 sshd[23589]: Failed password for invalid user pi from 83.44.99.78 port 41740 ssh2 Nov 9 23:12:47 lcl-usvr-02 sshd[23591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.44.99.78 Nov 9 23:12:46 lcl-usvr-02 sshd[23591]: Invalid user pi from 83.44.99.78 port 41744 Nov 9 23:12:49 lcl-usvr-02 sshd[23591]: Failed password for invalid user pi from 83.44.99.78 port 41744 ssh2 ...	2019-11-10 06:22:53

最近上报的IP列表

103.224.54.206	103.225.136.86	103.224.241.105	103.224.90.73
103.225.138.54	103.224.54.205	103.224.35.96	103.225.23.238
103.225.66.90	103.225.66.98	148.36.32.88	103.225.196.82
103.226.109.140	104.21.61.69	103.226.139.24	103.225.63.23
103.226.172.88	103.226.174.11	103.226.249.110	103.226.179.39