104.21.95.246 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.95.246
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4552
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.95.246.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 03:20:06 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 246.95.21.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 246.95.21.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
58.153.30.2	attackspambots	Honeypot attack, port: 5555, PTR: n058153030002.netvigator.com.	2020-02-08 15:39:30
222.110.210.239	attack	Honeypot attack, port: 5555, PTR: PTR record not found	2020-02-08 15:20:25
87.27.56.84	attack	Honeypot attack, port: 81, PTR: host-87-27-56-84.business.telecomitalia.it.	2020-02-08 15:23:49
193.56.28.239	attackbotsspam	2020-02-08T06:39:25.313483www postfix/smtpd[17071]: warning: unknown[193.56.28.239]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-02-08T06:39:33.152018www postfix/smtpd[17071]: warning: unknown[193.56.28.239]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-02-08T06:39:45.145911www postfix/smtpd[17071]: warning: unknown[193.56.28.239]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-02-08 15:41:16
222.65.220.191	attackbots	Honeypot attack, port: 445, PTR: 191.220.65.222.broad.xw.sh.dynamic.163data.com.cn.	2020-02-08 15:59:26
94.191.93.34	attack	SSH Brute Force	2020-02-08 15:21:17
125.212.152.84	attackspam	Honeypot attack, port: 445, PTR: dynamic-ip-adsl.viettel.vn.	2020-02-08 15:25:30
112.85.42.187	attack	Feb 8 07:30:11 ns381471 sshd[22904]: Failed password for root from 112.85.42.187 port 43614 ssh2	2020-02-08 15:29:48
193.57.40.38	attack	[Sat Feb 08 03:00:44.867749 2020] [:error] [pid 191934] [client 193.57.40.38:44216] [client 193.57.40.38] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "91"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "200.132.59.212"] [uri "/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php"] [unique_id "Xj5OjDeJsqfIXB4ykMLoEwAAAAI"] ...	2020-02-08 15:21:50
113.190.62.126	attackspam	Feb 7 18:56:29 sachi sshd\[23314\]: Invalid user admin from 113.190.62.126 Feb 7 18:56:29 sachi sshd\[23314\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.190.62.126 Feb 7 18:56:30 sachi sshd\[23314\]: Failed password for invalid user admin from 113.190.62.126 port 60856 ssh2 Feb 7 18:56:36 sachi sshd\[23319\]: Invalid user admin from 113.190.62.126 Feb 7 18:56:36 sachi sshd\[23319\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.190.62.126	2020-02-08 15:26:00
80.250.217.50	attackbots	Feb 8 08:56:02 server sshd\[14739\]: Invalid user wbb from 80.250.217.50 Feb 8 08:56:02 server sshd\[14739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.250.217.50 Feb 8 08:56:04 server sshd\[14739\]: Failed password for invalid user wbb from 80.250.217.50 port 4727 ssh2 Feb 8 08:59:29 server sshd\[14921\]: Invalid user aib from 80.250.217.50 Feb 8 08:59:29 server sshd\[14921\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.250.217.50 ...	2020-02-08 15:57:23
45.143.223.68	attack	Brute forcing email accounts	2020-02-08 15:31:07
175.153.255.140	attackbotsspam	DATE:2020-02-08 05:54:46, IP:175.153.255.140, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-02-08 15:52:41
103.59.165.12	attackspam	Hacking	2020-02-08 15:49:42
78.128.112.114	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 72 - port: 632 proto: TCP cat: Misc Attack	2020-02-08 15:36:31

最近上报的IP列表

104.21.95.240	104.21.95.233	104.21.95.247	104.21.95.249
104.21.95.250	104.21.95.248	104.21.95.252	104.21.95.251
104.21.95.27	104.21.95.254	104.21.95.253	104.21.95.26
104.21.95.29	104.21.95.30	104.21.95.32	104.21.95.36
104.21.95.34	104.21.95.38	104.21.95.37	104.21.95.39