104.21.83.156 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.83.156
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62927
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.83.156.			IN	A

;; AUTHORITY SECTION:
.			104	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022000 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 20 20:55:43 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 156.83.21.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 156.83.21.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
61.177.172.168	attackbotsspam	Aug 21 10:13:11 NPSTNNYC01T sshd[15194]: Failed password for root from 61.177.172.168 port 58409 ssh2 Aug 21 10:13:23 NPSTNNYC01T sshd[15194]: error: maximum authentication attempts exceeded for root from 61.177.172.168 port 58409 ssh2 [preauth] Aug 21 10:13:29 NPSTNNYC01T sshd[15231]: Failed password for root from 61.177.172.168 port 18592 ssh2 ...	2020-08-21 22:16:31
123.5.53.159	attack	Aug 21 04:13:36 risk sshd[23667]: reveeclipse mapping checking getaddrinfo for hn.kd.ny.adsl [123.5.53.159] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 21 04:13:36 risk sshd[23667]: Invalid user syed from 123.5.53.159 Aug 21 04:13:36 risk sshd[23667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.5.53.159 Aug 21 04:13:38 risk sshd[23667]: Failed password for invalid user syed from 123.5.53.159 port 59172 ssh2 Aug 21 04:19:20 risk sshd[23875]: reveeclipse mapping checking getaddrinfo for hn.kd.ny.adsl [123.5.53.159] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 21 04:19:20 risk sshd[23875]: Invalid user jules from 123.5.53.159 Aug 21 04:19:20 risk sshd[23875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.5.53.159 Aug 21 04:19:21 risk sshd[23875]: Failed password for invalid user jules from 123.5.53.159 port 3076 ssh2 Aug 21 04:22:23 risk sshd[23937]: reveeclipse mapping checking getaddri........ -------------------------------	2020-08-21 22:28:57
165.227.7.5	attackspam	2020-08-21T14:04:49.371919n23.at sshd[1472695]: Failed password for nginx from 165.227.7.5 port 59076 ssh2 2020-08-21T14:06:10.287077n23.at sshd[1473982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.7.5 user=root 2020-08-21T14:06:11.474030n23.at sshd[1473982]: Failed password for root from 165.227.7.5 port 49798 ssh2 ...	2020-08-21 22:18:03
45.88.12.72	attackspambots	fail2ban/Aug 21 16:07:02 h1962932 sshd[27252]: Invalid user llq from 45.88.12.72 port 52822 Aug 21 16:07:03 h1962932 sshd[27252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.88.12.72 Aug 21 16:07:02 h1962932 sshd[27252]: Invalid user llq from 45.88.12.72 port 52822 Aug 21 16:07:03 h1962932 sshd[27252]: Failed password for invalid user llq from 45.88.12.72 port 52822 ssh2 Aug 21 16:11:09 h1962932 sshd[27374]: Invalid user Administrator from 45.88.12.72 port 52020	2020-08-21 22:23:24
195.54.160.68	attackspam	Unauthorized connection attempt detected from IP address 195.54.160.68 to port 80 [T]	2020-08-21 22:22:19
5.154.243.131	attackbotsspam	Aug 21 16:21:23 home sshd[2729459]: Invalid user ec2-user from 5.154.243.131 port 45784 Aug 21 16:21:23 home sshd[2729459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.154.243.131 Aug 21 16:21:23 home sshd[2729459]: Invalid user ec2-user from 5.154.243.131 port 45784 Aug 21 16:21:24 home sshd[2729459]: Failed password for invalid user ec2-user from 5.154.243.131 port 45784 ssh2 Aug 21 16:25:29 home sshd[2730989]: Invalid user ec2-user from 5.154.243.131 port 49995 ...	2020-08-21 22:35:49
178.62.231.130	attackspam	2020-08-21T03:11:05.756387mail.arvenenaske.de sshd[16612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.231.130 user=r.r 2020-08-21T03:11:07.384583mail.arvenenaske.de sshd[16612]: Failed password for r.r from 178.62.231.130 port 41100 ssh2 2020-08-21T03:11:17.966027mail.arvenenaske.de sshd[16614]: Invalid user oracle from 178.62.231.130 port 42760 2020-08-21T03:11:17.971376mail.arvenenaske.de sshd[16614]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.231.130 user=oracle 2020-08-21T03:11:17.972331mail.arvenenaske.de sshd[16614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.231.130 2020-08-21T03:11:17.966027mail.arvenenaske.de sshd[16614]: Invalid user oracle from 178.62.231.130 port 42760 2020-08-21T03:11:19.578959mail.arvenenaske.de sshd[16614]: Failed password for invalid user oracle from 178.62.231.130 port 42760 ssh2 2020........ ------------------------------	2020-08-21 22:15:18
104.198.100.105	attack	Aug 21 16:14:41 abendstille sshd\[18220\]: Invalid user gaurav from 104.198.100.105 Aug 21 16:14:41 abendstille sshd\[18220\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.198.100.105 Aug 21 16:14:42 abendstille sshd\[18220\]: Failed password for invalid user gaurav from 104.198.100.105 port 56042 ssh2 Aug 21 16:20:27 abendstille sshd\[23521\]: Invalid user zhangle from 104.198.100.105 Aug 21 16:20:27 abendstille sshd\[23521\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.198.100.105 ...	2020-08-21 22:45:14
185.67.82.114	attackspam	Joomla Brute Force	2020-08-21 22:49:29
222.186.30.35	attackbots	21.08.2020 14:24:56 SSH access blocked by firewall	2020-08-21 22:30:24
78.107.251.75	attack	Dovecot Invalid User Login Attempt.	2020-08-21 22:52:01
54.37.154.113	attackspambots	Total attacks: 2	2020-08-21 22:44:42
34.72.230.1	attackspambots	34.72.230.1 - - [21/Aug/2020:14:09:46 +0200] "GET /wp-login.php HTTP/1.1" 200 9040 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.72.230.1 - - [21/Aug/2020:14:09:47 +0200] "POST /wp-login.php HTTP/1.1" 200 9291 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.72.230.1 - - [21/Aug/2020:14:09:48 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-21 22:31:00
92.87.123.126	attackspambots	srvr1: (mod_security) mod_security (id:942100) triggered by 92.87.123.126 (RO/-/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:05:53 [error] 482759#0: 840598 [client 92.87.123.126] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801155334.954754"] [ref ""], client: 92.87.123.126, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%27%29%29+OR+++%28%282192%3D2192 HTTP/1.1" [redacted]	2020-08-21 22:32:17
58.219.255.214	attack	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-08-21T12:04:48Z and 2020-08-21T12:05:43Z	2020-08-21 22:46:19

最近上报的IP列表

104.21.83.128	104.21.83.157	104.21.83.174	130.156.51.0
104.21.83.189	130.14.16.4	130.14.16.110	130.159.18.136
130.185.118.59	130.102.96.5	130.117.93.122	130.164.140.254
130.0.78.8	130.162.41.113	130.160.7.46	130.183.17.94
104.21.83.215	130.185.125.211	130.185.251.15	130.185.152.186