104.21.85.130 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.85.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60802
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.85.130.			IN	A

;; AUTHORITY SECTION:
.			539	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 03:06:52 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 130.85.21.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 130.85.21.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
5.39.163.224	attackbotsspam	k+ssh-bruteforce	2019-10-16 18:21:30
150.129.112.180	attackspam	10/15/2019-23:20:58.059531 150.129.112.180 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-10-16 18:37:37
113.23.28.92	attack	PHI,WP GET /wp-login.php	2019-10-16 18:27:44
45.67.14.152	attack	Oct 16 03:26:49 **** sshd[5015]: User root from 45.67.14.152 not allowed because not listed in AllowUsers	2019-10-16 18:19:06
209.17.97.114	attackbots	Connection by 209.17.97.114 on port: 8888 got caught by honeypot at 10/16/2019 2:17:05 AM	2019-10-16 18:50:03
78.186.252.142	attack	scan z	2019-10-16 18:45:28
138.68.77.235	attackspambots	Oct 16 00:04:46 auw2 sshd\[24444\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.77.235 user=root Oct 16 00:04:48 auw2 sshd\[24444\]: Failed password for root from 138.68.77.235 port 44002 ssh2 Oct 16 00:08:15 auw2 sshd\[24717\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.77.235 user=root Oct 16 00:08:17 auw2 sshd\[24717\]: Failed password for root from 138.68.77.235 port 55212 ssh2 Oct 16 00:11:46 auw2 sshd\[25146\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.77.235 user=root	2019-10-16 18:28:09
139.99.121.6	attackbots	ENG,WP GET /wp-login.php	2019-10-16 18:23:41
193.70.114.154	attackbots	Oct 16 10:35:56 SilenceServices sshd[32054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.114.154 Oct 16 10:35:57 SilenceServices sshd[32054]: Failed password for invalid user akhenaton123 from 193.70.114.154 port 38596 ssh2 Oct 16 10:39:38 SilenceServices sshd[644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.114.154	2019-10-16 18:37:18
103.41.66.20	attack	Port 1433 Scan	2019-10-16 18:29:41
151.237.53.55	attack	3389BruteforceFW23	2019-10-16 18:24:42
45.227.255.75	attackspam	RDP Bruteforce	2019-10-16 18:42:03
198.46.140.106	attack	\[2019-10-16 06:25:34\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-16T06:25:34.428-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146586739262",SessionID="0x7fc3ac00c388",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/198.46.140.106/57433",ACLName="no_extension_match" \[2019-10-16 06:29:57\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-16T06:29:57.523-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="901146586739262",SessionID="0x7fc3ac5226d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/198.46.140.106/50336",ACLName="no_extension_match" \[2019-10-16 06:34:39\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-16T06:34:39.501-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="801146586739262",SessionID="0x7fc3ac999078",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/198.46.140.106/63411",ACLName="no_e	2019-10-16 18:38:21
141.8.132.35	attack	[Wed Oct 16 10:21:00.960797 2019] [:error] [pid 30195:tid 140011680777984] [client 141.8.132.35:37423] [client 141.8.132.35] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XaaMnLM@ItsqtwqqCPDkWQAAAFA"] ...	2019-10-16 18:35:13
123.206.190.82	attack	$f2bV_matches	2019-10-16 18:29:26

最近上报的IP列表

104.21.85.127	104.21.85.135	104.21.85.133	104.21.85.132
104.21.85.134	104.21.85.14	104.21.85.138	104.21.85.142
104.21.85.137	104.21.85.13	104.21.85.141	104.21.85.143
104.21.85.144	104.21.85.147	104.21.85.146	104.21.85.152
104.21.85.153	104.21.85.154	104.21.85.157	104.21.85.158