107.21.106.148

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 107.21.106.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11078
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;107.21.106.148.			IN	A

;; AUTHORITY SECTION:
.			39	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022000 1800 900 604800 86400

;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 20 23:07:16 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

148.106.21.107.in-addr.arpa domain name pointer ec2-107-21-106-148.compute-1.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.106.21.107.in-addr.arpa	name = ec2-107-21-106-148.compute-1.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.186.175.217	attackbots	2020-01-16T05:55:48.238089scmdmz1 sshd[19986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root 2020-01-16T05:55:50.265913scmdmz1 sshd[19986]: Failed password for root from 222.186.175.217 port 6182 ssh2 2020-01-16T05:55:54.998424scmdmz1 sshd[19986]: Failed password for root from 222.186.175.217 port 6182 ssh2 2020-01-16T05:55:48.238089scmdmz1 sshd[19986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root 2020-01-16T05:55:50.265913scmdmz1 sshd[19986]: Failed password for root from 222.186.175.217 port 6182 ssh2 2020-01-16T05:55:54.998424scmdmz1 sshd[19986]: Failed password for root from 222.186.175.217 port 6182 ssh2 2020-01-16T05:55:48.238089scmdmz1 sshd[19986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root 2020-01-16T05:55:50.265913scmdmz1 sshd[19986]: Failed password for root from 222.186.175.217 port 6182 ssh	2020-01-16 13:02:57
75.103.66.13	attack	Automatic report - XMLRPC Attack	2020-01-16 13:25:42
124.156.55.156	attackbotsspam	Unauthorized connection attempt detected from IP address 124.156.55.156 to port 6000 [J]	2020-01-16 09:26:41
103.113.3.74	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 16-01-2020 04:55:10.	2020-01-16 13:34:26
137.59.0.6	attack	Unauthorized connection attempt detected from IP address 137.59.0.6 to port 2220 [J]	2020-01-16 13:24:19
218.92.0.178	attack	SSH Brute Force, server-1 sshd[26804]: Failed password for root from 218.92.0.178 port 46676 ssh2	2020-01-16 13:38:00
116.212.151.214	attack	Unauthorized connection attempt detected from IP address 116.212.151.214 to port 8080 [J]	2020-01-16 09:28:25
46.246.12.14	attack	Jan 16 05:42:30 h2177944 sshd\[26691\]: Invalid user httpfs from 46.246.12.14 port 47502 Jan 16 05:42:30 h2177944 sshd\[26691\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.246.12.14 Jan 16 05:42:32 h2177944 sshd\[26691\]: Failed password for invalid user httpfs from 46.246.12.14 port 47502 ssh2 Jan 16 05:56:00 h2177944 sshd\[27071\]: Invalid user ftpuser from 46.246.12.14 port 41308 Jan 16 05:56:00 h2177944 sshd\[27071\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.246.12.14 ...	2020-01-16 13:01:45
90.84.242.170	attack	2020-01-16T04:52:53.243549shield sshd\[16430\]: Invalid user jason from 90.84.242.170 port 60600 2020-01-16T04:52:53.252809shield sshd\[16430\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ecs-90-84-242-170.compute.prod-cloud-ocb.orange-business.com 2020-01-16T04:52:55.259799shield sshd\[16430\]: Failed password for invalid user jason from 90.84.242.170 port 60600 ssh2 2020-01-16T04:55:56.747796shield sshd\[18121\]: Invalid user ftptest from 90.84.242.170 port 58268 2020-01-16T04:55:56.751294shield sshd\[18121\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ecs-90-84-242-170.compute.prod-cloud-ocb.orange-business.com	2020-01-16 13:05:33
211.142.138.108	attack	01/15/2020-23:55:32.738250 211.142.138.108 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-01-16 13:25:08
119.153.101.106	attack	Unauthorized connection attempt detected from IP address 119.153.101.106 to port 23 [J]	2020-01-16 13:32:58
77.222.61.193	attack	2020-01-16T04:55:30.771369+00:00 suse sshd[3395]: Invalid user admin from 77.222.61.193 port 39948 2020-01-16T04:55:33.153002+00:00 suse sshd[3395]: error: PAM: User not known to the underlying authentication module for illegal user admin from 77.222.61.193 2020-01-16T04:55:30.771369+00:00 suse sshd[3395]: Invalid user admin from 77.222.61.193 port 39948 2020-01-16T04:55:33.153002+00:00 suse sshd[3395]: error: PAM: User not known to the underlying authentication module for illegal user admin from 77.222.61.193 2020-01-16T04:55:30.771369+00:00 suse sshd[3395]: Invalid user admin from 77.222.61.193 port 39948 2020-01-16T04:55:33.153002+00:00 suse sshd[3395]: error: PAM: User not known to the underlying authentication module for illegal user admin from 77.222.61.193 2020-01-16T04:55:33.154414+00:00 suse sshd[3395]: Failed keyboard-interactive/pam for invalid user admin from 77.222.61.193 port 39948 ssh2 ...	2020-01-16 13:11:09
114.46.29.156	attackbots	Telnet Server BruteForce Attack	2020-01-16 13:08:19
103.85.22.148	attackbotsspam	Jan 15 07:38:24 Tower sshd[9711]: refused connect from 106.54.245.86 (106.54.245.86) Jan 15 23:55:37 Tower sshd[9711]: Connection from 103.85.22.148 port 52032 on 192.168.10.220 port 22 rdomain "" Jan 15 23:55:38 Tower sshd[9711]: Invalid user roland from 103.85.22.148 port 52032 Jan 15 23:55:38 Tower sshd[9711]: error: Could not get shadow information for NOUSER Jan 15 23:55:38 Tower sshd[9711]: Failed password for invalid user roland from 103.85.22.148 port 52032 ssh2 Jan 15 23:55:39 Tower sshd[9711]: Received disconnect from 103.85.22.148 port 52032:11: Bye Bye [preauth] Jan 15 23:55:39 Tower sshd[9711]: Disconnected from invalid user roland 103.85.22.148 port 52032 [preauth]	2020-01-16 13:14:38
2001:41d0:d:c3e::	attackspambots	[ThuJan1605:38:10.9664172020][:error][pid29751:tid139885998446336][client2001:41d0:d:c3e:::42324][client2001:41d0:d:c3e::]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\\\\\\\\.php"atARGS:img.[file"/usr/local/apache.ea3/conf/modsec_rules/99_asl_jitp.conf"][line"782"][id"337479"][rev"2"][msg"Atomicorp.comWAFRules-VirtualJustInTimePatch:WordpressRevslidernon-imagefiledownloadAttack"][severity"CRITICAL"][hostname"adparchitetti.ch"][uri"/wp-admin/admin-ajax.php"][unique_id"Xh-osgywvlK0WHL-z6HMEwAAAFA"][ThuJan1605:55:38.4264372020][:error][pid29987:tid139885966976768][client2001:41d0:d:c3e:::36661][client2001:41d0:d:c3e::]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\\\\\\\\.php"atARGS:img.[file"/usr/local/apache.ea3/conf/modsec_rules/99_asl_jitp.conf"][line"782"][id"337479"][rev"2"][msg"Atomicorp.comWAFRules-VirtualJustInTimePatch:WordpressRevslidernon-imagefiledownloadAttack"][severity"CRITICAL"][hostname"aress2030.ch"][uri"/wp-admin/admin-ajax.php\	2020-01-16 13:18:17

最近上报的IP列表

107.21.103.214	107.21.106.167	107.21.107.7	107.21.108.106
140.156.166.2	107.21.109.167	107.21.115.56	107.21.118.188
107.21.122.15	107.21.13.180	107.21.130.168	61.170.54.173
107.21.131.222	107.21.161.80	107.21.169.7	107.21.19.226
107.21.2.215	107.21.202.103	107.21.205.34	107.21.21.237