104.21.77.158 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.77.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46724
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.77.158.			IN	A

;; AUTHORITY SECTION:
.			539	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 02:56:19 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 158.77.21.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 158.77.21.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.12.89.173	attackspambots	Jul 3 20:35:56 itv-usvr-01 sshd[31020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.89.173 user=root Jul 3 20:35:58 itv-usvr-01 sshd[31020]: Failed password for root from 106.12.89.173 port 46688 ssh2 Jul 3 20:38:57 itv-usvr-01 sshd[31135]: Invalid user comp from 106.12.89.173 Jul 3 20:38:57 itv-usvr-01 sshd[31135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.89.173 Jul 3 20:38:57 itv-usvr-01 sshd[31135]: Invalid user comp from 106.12.89.173 Jul 3 20:38:59 itv-usvr-01 sshd[31135]: Failed password for invalid user comp from 106.12.89.173 port 53794 ssh2	2020-07-03 22:49:06
14.181.211.102	attackbots	1593742225 - 07/03/2020 04:10:25 Host: 14.181.211.102/14.181.211.102 Port: 445 TCP Blocked	2020-07-03 22:56:50
35.223.106.60	attackspambots	Jun 30 07:23:31 plesk sshd[29564]: Invalid user teamspeak3 from 35.223.106.60 Jun 30 07:23:33 plesk sshd[29564]: Failed password for invalid user teamspeak3 from 35.223.106.60 port 46894 ssh2 Jun 30 07:23:33 plesk sshd[29564]: Received disconnect from 35.223.106.60: 11: Bye Bye [preauth] Jun 30 07:32:18 plesk sshd[30203]: Failed password for r.r from 35.223.106.60 port 47054 ssh2 Jun 30 07:32:18 plesk sshd[30203]: Received disconnect from 35.223.106.60: 11: Bye Bye [preauth] Jun 30 07:35:23 plesk sshd[30319]: Failed password for backup from 35.223.106.60 port 46534 ssh2 Jun 30 07:35:23 plesk sshd[30319]: Received disconnect from 35.223.106.60: 11: Bye Bye [preauth] Jun 30 07:38:30 plesk sshd[30567]: Failed password for r.r from 35.223.106.60 port 46008 ssh2 Jun 30 07:38:31 plesk sshd[30567]: Received disconnect from 35.223.106.60: 11: Bye Bye [preauth] Jun 30 07:41:33 plesk sshd[30847]: Invalid user xing from 35.223.106.60 Jun 30 07:41:35 plesk sshd[30847]: Failed passw........ -------------------------------	2020-07-03 22:39:08
142.93.246.42	attackspambots	SSH Bruteforce attack	2020-07-03 22:57:48
218.92.0.252	attackbots	Jul 3 15:38:03 rocket sshd[17600]: Failed password for root from 218.92.0.252 port 14085 ssh2 Jul 3 15:38:07 rocket sshd[17600]: Failed password for root from 218.92.0.252 port 14085 ssh2 Jul 3 15:38:16 rocket sshd[17600]: error: maximum authentication attempts exceeded for root from 218.92.0.252 port 14085 ssh2 [preauth] ...	2020-07-03 22:42:07
52.136.123.137	attackspambots	[FriJul0304:10:29.7145652020][:error][pid4579:tid47692509116160][client52.136.123.137:55805][client52.136.123.137]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof"rx\^0\$"against"REQUEST_HEADERS:Content-Length"required.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"96"][id"392301"][rev"8"][msg"Atomicorp.comWAFRules:RequestContainingContent\,butMissingContent-Typeheader"][severity"NOTICE"][tag"no_ar"][hostname"mood4apps.com"][uri"/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php"][unique_id"Xv6TlVcXxBsSq-KRygI61wAAAMU"][FriJul0304:10:29.9080772020][:error][pid4657:tid47692513318656][client52.136.123.137:55808][client52.136.123.137]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof"rx\^0\$"against"REQUEST_HEADERS:Content-Length"required.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"96"][id"392301"][rev"8"][msg"Atomicorp.comWAFRules:RequestContainingContent\,butMissingContent-Typeheader"][severity"NOTICE"][tag"no_ar"][hostname	2020-07-03 22:54:56
107.22.195.49	attackspam	Jul304:09:07server2kernel:Firewall:\TCP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=107.22.195.49DST=136.243.224.50LEN=64TOS=0x00PREC=0x00TTL=220ID=32027PROTO=TCPSPT=40428DPT=8082WINDOW=43521RES=0x00SYNURGP=0Jul304:09:11server2kernel:Firewall:\TCP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=107.22.195.49DST=136.243.224.57LEN=64TOS=0x00PREC=0x00TTL=221ID=28585PROTO=TCPSPT=40428DPT=8002WINDOW=43521RES=0x00SYNURGP=0Jul304:09:21server2kernel:Firewall:\TCP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=107.22.195.49DST=136.243.224.57LEN=64TOS=0x00PREC=0x00TTL=227ID=25328PROTO=TCPSPT=40428DPT=8082WINDOW=43521RES=0x00SYNURGP=0Jul304:09:23server2kernel:Firewall:\TCP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=107.22.195.49DST=136.243.224.53LEN=64TOS=0x00PREC=0x00TTL=220ID=44454PROTO=TCPSPT=40428DPT=8083WINDOW=43521RES=0x00SYNURGP=0Jul304:09:31server2kernel:Firewall:\TCP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7	2020-07-03 22:50:46
197.243.48.18	attackbotsspam	Jul 3 07:33:16 Host-KLAX-C dovecot: imap-login: Disconnected (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=197.243.48.18, lip=185.198.26.142, TLS: Disconnected, session= ...	2020-07-03 23:15:25
114.67.103.13	attackbots	Jul 3 13:50:43 ip-172-31-62-245 sshd\[23920\]: Invalid user steven from 114.67.103.13\ Jul 3 13:50:45 ip-172-31-62-245 sshd\[23920\]: Failed password for invalid user steven from 114.67.103.13 port 36878 ssh2\ Jul 3 13:53:41 ip-172-31-62-245 sshd\[23934\]: Invalid user test1 from 114.67.103.13\ Jul 3 13:53:43 ip-172-31-62-245 sshd\[23934\]: Failed password for invalid user test1 from 114.67.103.13 port 42524 ssh2\ Jul 3 13:56:42 ip-172-31-62-245 sshd\[23969\]: Invalid user service from 114.67.103.13\	2020-07-03 23:04:05
120.50.18.42	attackbots	Lines containing failures of 120.50.18.42 Jul 3 04:03:04 own sshd[18788]: Invalid user admin from 120.50.18.42 port 37808 Jul 3 04:03:04 own sshd[18788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.50.18.42 Jul 3 04:03:09 own sshd[18788]: Failed password for invalid user admin from 120.50.18.42 port 37808 ssh2 Jul 3 04:03:09 own sshd[18788]: Connection closed by invalid user admin 120.50.18.42 port 37808 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=120.50.18.42	2020-07-03 22:56:20
58.87.123.166	attackspam	Jul 3 02:09:14 *** sshd[27536]: Invalid user shuang from 58.87.123.166	2020-07-03 23:07:41
83.12.171.68	attackspambots	Jul 2 20:08:18 server1 sshd\[12056\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.12.171.68 Jul 2 20:08:20 server1 sshd\[12056\]: Failed password for invalid user oracle from 83.12.171.68 port 40623 ssh2 Jul 2 20:11:32 server1 sshd\[13166\]: Invalid user swc from 83.12.171.68 Jul 2 20:11:32 server1 sshd\[13166\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.12.171.68 Jul 2 20:11:34 server1 sshd\[13166\]: Failed password for invalid user swc from 83.12.171.68 port 65214 ssh2 ...	2020-07-03 22:35:47
185.143.73.157	attackbotsspam	Jul 3 16:43:06 relay postfix/smtpd\[7867\]: warning: unknown\[185.143.73.157\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 3 16:43:49 relay postfix/smtpd\[22310\]: warning: unknown\[185.143.73.157\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 3 16:44:33 relay postfix/smtpd\[7867\]: warning: unknown\[185.143.73.157\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 3 16:45:18 relay postfix/smtpd\[7836\]: warning: unknown\[185.143.73.157\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 3 16:46:01 relay postfix/smtpd\[7836\]: warning: unknown\[185.143.73.157\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-03 22:47:47
83.110.220.32	attackspam	Jul 3 13:16:29 onepixel sshd[520039]: Failed password for root from 83.110.220.32 port 2111 ssh2 Jul 3 13:19:25 onepixel sshd[521473]: Invalid user suraj from 83.110.220.32 port 3498 Jul 3 13:19:25 onepixel sshd[521473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.110.220.32 Jul 3 13:19:25 onepixel sshd[521473]: Invalid user suraj from 83.110.220.32 port 3498 Jul 3 13:19:28 onepixel sshd[521473]: Failed password for invalid user suraj from 83.110.220.32 port 3498 ssh2	2020-07-03 22:59:50
185.38.3.138	attackspam	2020-07-03T16:38:30.974629ks3355764 sshd[18853]: Invalid user test1 from 185.38.3.138 port 43714 2020-07-03T16:38:32.730468ks3355764 sshd[18853]: Failed password for invalid user test1 from 185.38.3.138 port 43714 ssh2 ...	2020-07-03 22:53:31

最近上报的IP列表

104.21.77.154	104.21.77.160	104.21.77.161	104.21.77.163
104.21.77.164	104.21.77.166	104.21.77.159	104.21.77.17
104.21.77.169	104.21.77.170	104.21.77.168	104.21.77.172
104.21.77.176	104.21.77.175	104.21.77.173	104.21.77.180
104.21.77.177	104.21.77.185	104.21.77.181	104.21.77.182