104.21.87.209 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.87.209
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33296
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.87.209.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 03:09:30 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 209.87.21.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 209.87.21.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
68.168.213.251	attackspambots	Scanned 2 times in the last 24 hours on port 22	2020-09-11 08:28:52
200.54.51.124	attack	(sshd) Failed SSH login from 200.54.51.124 (CL/Chile/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 10 16:58:03 optimus sshd[25456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.54.51.124 user=root Sep 10 16:58:05 optimus sshd[25456]: Failed password for root from 200.54.51.124 port 35168 ssh2 Sep 10 17:14:29 optimus sshd[30738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.54.51.124 user=root Sep 10 17:14:31 optimus sshd[30738]: Failed password for root from 200.54.51.124 port 58782 ssh2 Sep 10 17:18:54 optimus sshd[32097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.54.51.124 user=root	2020-09-11 08:49:01
116.75.94.19	attackspam	Icarus honeypot on github	2020-09-11 09:05:15
77.89.228.66	attackspam	srvr1: (mod_security) mod_security (id:920350) triggered by 77.89.228.66 (MD/-/static.77.89.228.66.tmg.md): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/11 02:29:01 [error] 12751#0: 27224 [client 77.89.228.66] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159978414175.892027"] [ref "o0,13v21,13"], client: 77.89.228.66, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-09-11 08:47:21
125.142.85.137	attack	Sep 10 18:23:34 marvibiene sshd[60916]: Invalid user admin from 125.142.85.137 port 37398 Sep 10 18:23:35 marvibiene sshd[60916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.142.85.137 Sep 10 18:23:34 marvibiene sshd[60916]: Invalid user admin from 125.142.85.137 port 37398 Sep 10 18:23:37 marvibiene sshd[60916]: Failed password for invalid user admin from 125.142.85.137 port 37398 ssh2	2020-09-11 09:04:41
119.29.231.121	attack	Sep 11 02:45:06 minden010 sshd[26088]: Failed password for root from 119.29.231.121 port 34746 ssh2 Sep 11 02:47:30 minden010 sshd[26980]: Failed password for root from 119.29.231.121 port 33818 ssh2 ...	2020-09-11 08:54:17
78.96.93.178	attackspambots	2020-09-10T21:55:35.887254mail.broermann.family sshd[13799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.96.93.178 2020-09-10T21:55:35.883226mail.broermann.family sshd[13799]: Invalid user turbo from 78.96.93.178 port 57952 2020-09-10T21:55:37.942437mail.broermann.family sshd[13799]: Failed password for invalid user turbo from 78.96.93.178 port 57952 ssh2 2020-09-10T21:59:43.764438mail.broermann.family sshd[13924]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.96.93.178 user=root 2020-09-10T21:59:45.197659mail.broermann.family sshd[13924]: Failed password for root from 78.96.93.178 port 45398 ssh2 ...	2020-09-11 08:56:21
185.220.101.213	attackbots	2020-09-11T00:38:24.065658abusebot-8.cloudsearch.cf sshd[19010]: Invalid user admin from 185.220.101.213 port 7602 2020-09-11T00:38:24.355839abusebot-8.cloudsearch.cf sshd[19010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.213 2020-09-11T00:38:24.065658abusebot-8.cloudsearch.cf sshd[19010]: Invalid user admin from 185.220.101.213 port 7602 2020-09-11T00:38:25.957566abusebot-8.cloudsearch.cf sshd[19010]: Failed password for invalid user admin from 185.220.101.213 port 7602 ssh2 2020-09-11T00:38:27.544279abusebot-8.cloudsearch.cf sshd[19014]: Invalid user admin from 185.220.101.213 port 16808 2020-09-11T00:38:27.862999abusebot-8.cloudsearch.cf sshd[19014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.213 2020-09-11T00:38:27.544279abusebot-8.cloudsearch.cf sshd[19014]: Invalid user admin from 185.220.101.213 port 16808 2020-09-11T00:38:30.543541abusebot-8.cloudsearch.cf sshd[190 ...	2020-09-11 08:39:29
201.57.40.70	attack	Ssh brute force	2020-09-11 09:08:59
218.92.0.133	attackbots	Sep 11 01:38:47 rocket sshd[4447]: Failed password for root from 218.92.0.133 port 40677 ssh2 Sep 11 01:39:00 rocket sshd[4447]: error: maximum authentication attempts exceeded for root from 218.92.0.133 port 40677 ssh2 [preauth] ...	2020-09-11 08:51:52
134.209.164.184	attack	Port Scan ...	2020-09-11 08:44:57
202.83.42.72	attack	" "	2020-09-11 08:42:08
51.91.151.69	attackbots	51.91.151.69 - - [11/Sep/2020:03:08:21 +0300] "GET /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.0" 404 63515 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 51.91.151.69 - - [11/Sep/2020:03:08:45 +0300] "GET /wp/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.0" 404 63796 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 51.91.151.69 - - [11/Sep/2020:03:09:05 +0300] "GET /wordpress/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.0" 404 63831 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 51.91.151.69 - - [11/Sep/2020:03:09:34 +0300] "GET /blog/wp- ...	2020-09-11 08:34:38
211.22.154.223	attackbots	2020-09-10T22:30:03+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-09-11 08:44:29
36.77.92.86	attackbotsspam	1599756826 - 09/10/2020 18:53:46 Host: 36.77.92.86/36.77.92.86 Port: 445 TCP Blocked	2020-09-11 08:56:59

最近上报的IP列表

104.21.87.211	104.21.87.214	104.21.87.215	104.21.87.218
104.21.87.212	104.21.87.219	104.21.87.217	104.21.87.22
104.21.87.226	104.21.87.228	104.21.87.221	104.21.87.224
104.21.87.227	104.21.87.23	104.21.87.232	104.21.87.233
104.21.87.234	104.21.87.236	104.21.87.235	104.21.87.237