104.21.85.198 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.85.198
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52881
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.85.198.			IN	A

;; AUTHORITY SECTION:
.			195	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 03:07:12 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 198.85.21.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 198.85.21.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.12.69.53	attackbotsspam	Apr 25 23:01:18 srv-ubuntu-dev3 sshd[81559]: Invalid user teach from 106.12.69.53 Apr 25 23:01:18 srv-ubuntu-dev3 sshd[81559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.69.53 Apr 25 23:01:18 srv-ubuntu-dev3 sshd[81559]: Invalid user teach from 106.12.69.53 Apr 25 23:01:20 srv-ubuntu-dev3 sshd[81559]: Failed password for invalid user teach from 106.12.69.53 port 50056 ssh2 Apr 25 23:05:37 srv-ubuntu-dev3 sshd[82289]: Invalid user teamspeak from 106.12.69.53 Apr 25 23:05:37 srv-ubuntu-dev3 sshd[82289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.69.53 Apr 25 23:05:37 srv-ubuntu-dev3 sshd[82289]: Invalid user teamspeak from 106.12.69.53 Apr 25 23:05:40 srv-ubuntu-dev3 sshd[82289]: Failed password for invalid user teamspeak from 106.12.69.53 port 55226 ssh2 Apr 25 23:10:00 srv-ubuntu-dev3 sshd[83064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost ...	2020-04-26 05:27:47
218.92.0.210	attack	Apr 25 20:27:24 ip-172-31-61-156 sshd[24882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.210 user=root Apr 25 20:27:26 ip-172-31-61-156 sshd[24882]: Failed password for root from 218.92.0.210 port 34900 ssh2 ...	2020-04-26 05:17:12
182.61.40.214	attackbotsspam	2020-04-25T16:07:59.6037301495-001 sshd[64940]: Invalid user account from 182.61.40.214 port 36650 2020-04-25T16:08:01.7728271495-001 sshd[64940]: Failed password for invalid user account from 182.61.40.214 port 36650 ssh2 2020-04-25T16:10:28.7159131495-001 sshd[65041]: Invalid user arun from 182.61.40.214 port 36948 2020-04-25T16:10:28.7227831495-001 sshd[65041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.40.214 2020-04-25T16:10:28.7159131495-001 sshd[65041]: Invalid user arun from 182.61.40.214 port 36948 2020-04-25T16:10:31.3412351495-001 sshd[65041]: Failed password for invalid user arun from 182.61.40.214 port 36948 ssh2 ...	2020-04-26 05:38:05
34.92.80.247	attackspambots	Brute force SMTP login attempted. ...	2020-04-26 05:23:30
204.111.241.83	attackspam	Apr 26 03:27:08 webhost01 sshd[7083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.111.241.83 ...	2020-04-26 05:30:14
93.207.108.143	attackspambots	prod8 ...	2020-04-26 05:48:32
58.64.157.162	attack	HK_MAINT-HK-NEWWORLDTEL_<177>1587846434 [1:2403378:56948] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 40 [Classification: Misc Attack] [Priority: 2]: {TCP} 58.64.157.162:49318	2020-04-26 05:25:39
207.244.157.10	attackspambots	20 attempts against mh-misbehave-ban on twig	2020-04-26 05:25:06
14.146.94.223	attackspam	2020-04-25T16:07:10.0765411495-001 sshd[64879]: Invalid user moves from 14.146.94.223 port 49432 2020-04-25T16:07:12.1884831495-001 sshd[64879]: Failed password for invalid user moves from 14.146.94.223 port 49432 ssh2 2020-04-25T16:10:31.8867751495-001 sshd[65043]: Invalid user qwe123 from 14.146.94.223 port 58626 2020-04-25T16:10:31.8936361495-001 sshd[65043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.146.94.223 2020-04-25T16:10:31.8867751495-001 sshd[65043]: Invalid user qwe123 from 14.146.94.223 port 58626 2020-04-25T16:10:33.5889861495-001 sshd[65043]: Failed password for invalid user qwe123 from 14.146.94.223 port 58626 ssh2 ...	2020-04-26 05:19:56
109.242.36.77	attackspambots	Port probing on unauthorized port 23	2020-04-26 05:22:17
89.129.17.5	attackspambots	Apr 25 22:16:44 ns382633 sshd\[7629\]: Invalid user oraprod from 89.129.17.5 port 39572 Apr 25 22:16:44 ns382633 sshd\[7629\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.129.17.5 Apr 25 22:16:46 ns382633 sshd\[7629\]: Failed password for invalid user oraprod from 89.129.17.5 port 39572 ssh2 Apr 25 22:27:16 ns382633 sshd\[9552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.129.17.5 user=root Apr 25 22:27:18 ns382633 sshd\[9552\]: Failed password for root from 89.129.17.5 port 48340 ssh2	2020-04-26 05:22:46
222.186.42.155	attackbots	Apr 25 23:17:31 v22018053744266470 sshd[21984]: Failed password for root from 222.186.42.155 port 26294 ssh2 Apr 25 23:17:38 v22018053744266470 sshd[21992]: Failed password for root from 222.186.42.155 port 28173 ssh2 ...	2020-04-26 05:20:51
112.91.176.67	attackspam	2020-04-2522:26:111jSRNK-0004Yr-St\<=info@whatsup2013.chH=\(localhost\)[89.218.204.194]:33157P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2981id=80d365363d163c34a8ad1bb750a48e923ef498@whatsup2013.chT="Flymetothesun"forredneck57@gmail.comgargentandco@gmail.com2020-04-2522:25:471jSRMw-0004Xz-D3\<=info@whatsup2013.chH=\(localhost\)[27.79.146.175]:45460P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3233id=8615bc858ea57083a05ea8fbf0241d3112f84c2e6c@whatsup2013.chT="Pleasefireupmysoul."forfloydpat1957@gmail.comwilliekmoore1961@gmail.com2020-04-2522:27:191jSROQ-0004d7-SR\<=info@whatsup2013.chH=\(localhost\)[190.129.66.225]:45331P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3206id=8e5578fdf6dd08fbd826d083885c65496a807a8311@whatsup2013.chT="fromLaverntoabsolutelynotatroll"forabsolutelynotatroll@yahoo.comranyochoa@yahoo.com2020-04-2522:27:091jSROF-0004cR-F9\<=info@whatsup2013.chH=	2020-04-26 05:15:08
80.211.78.82	attack	Apr 25 23:29:04 legacy sshd[420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.78.82 Apr 25 23:29:06 legacy sshd[420]: Failed password for invalid user rostami from 80.211.78.82 port 49798 ssh2 Apr 25 23:32:20 legacy sshd[584]: Failed password for nobody from 80.211.78.82 port 49472 ssh2 ...	2020-04-26 05:42:36
51.83.108.93	attack	51.83.108.93 - - \[25/Apr/2020:22:26:48 +0200\] "POST /wp-login.php HTTP/1.0" 200 6809 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 51.83.108.93 - - \[25/Apr/2020:22:26:49 +0200\] "POST /wp-login.php HTTP/1.0" 200 6629 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 51.83.108.93 - - \[25/Apr/2020:22:26:51 +0200\] "POST /wp-login.php HTTP/1.0" 200 6637 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-04-26 05:44:34

最近上报的IP列表

104.21.85.190	104.21.85.193	104.21.85.199	104.21.85.2
104.21.85.200	104.21.85.195	104.21.85.203	104.21.85.192
104.21.85.201	104.21.85.202	104.21.85.204	104.21.85.205
104.21.85.209	104.21.85.206	104.21.85.21	104.21.85.211
104.21.85.210	104.21.85.213	104.21.85.217	104.21.85.218