161.189.204.104

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 161.189.204.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60886
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;161.189.204.104.		IN	A

;; AUTHORITY SECTION:
.			259	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 91 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 10:37:41 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

104.204.189.161.in-addr.arpa domain name pointer ec2-161-189-204-104.cn-northwest-1.compute.amazonaws.com.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
104.204.189.161.in-addr.arpa	name = ec2-161-189-204-104.cn-northwest-1.compute.amazonaws.com.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
14.225.17.7	attackspam	14.225.17.7 - - [13/Oct/2019:22:15:25 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 14.225.17.7 - - [13/Oct/2019:22:15:26 +0200] "POST /wp-login.php HTTP/1.1" 200 1704 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 14.225.17.7 - - [13/Oct/2019:22:15:27 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 14.225.17.7 - - [13/Oct/2019:22:15:28 +0200] "POST /wp-login.php HTTP/1.1" 200 1710 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 14.225.17.7 - - [13/Oct/2019:22:15:29 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 14.225.17.7 - - [13/Oct/2019:22:15:30 +0200] "POST /wp-login.php HTTP/1.1" 200 1710 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-10-14 05:25:33
58.1.134.41	attack	Oct 13 22:42:13 dev0-dcde-rnet sshd[515]: Failed password for root from 58.1.134.41 port 52183 ssh2 Oct 13 22:46:38 dev0-dcde-rnet sshd[527]: Failed password for root from 58.1.134.41 port 44476 ssh2	2019-10-14 05:24:50
167.99.81.101	attackspambots	May 13 09:01:47 yesfletchmain sshd\[12157\]: Invalid user jay from 167.99.81.101 port 52462 May 13 09:01:47 yesfletchmain sshd\[12157\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.81.101 May 13 09:01:50 yesfletchmain sshd\[12157\]: Failed password for invalid user jay from 167.99.81.101 port 52462 ssh2 May 13 09:05:58 yesfletchmain sshd\[12197\]: Invalid user huang from 167.99.81.101 port 39690 May 13 09:05:58 yesfletchmain sshd\[12197\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.81.101 ...	2019-10-14 05:15:15
167.99.76.71	attack	May 4 14:07:18 yesfletchmain sshd\[3133\]: Invalid user gr from 167.99.76.71 port 57454 May 4 14:07:18 yesfletchmain sshd\[3133\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.76.71 May 4 14:07:20 yesfletchmain sshd\[3133\]: Failed password for invalid user gr from 167.99.76.71 port 57454 ssh2 May 4 14:11:42 yesfletchmain sshd\[3300\]: Invalid user mie from 167.99.76.71 port 34530 May 4 14:11:42 yesfletchmain sshd\[3300\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.76.71 ...	2019-10-14 05:20:17
52.247.219.36	attackspambots	WordPress brute force	2019-10-14 05:46:09
58.162.140.172	attack	Oct 14 00:00:28 sauna sshd[170248]: Failed password for root from 58.162.140.172 port 48394 ssh2 ...	2019-10-14 05:13:59
51.75.25.164	attackspam	Oct 13 23:16:04 MK-Soft-VM4 sshd[23948]: Failed password for root from 51.75.25.164 port 55650 ssh2 ...	2019-10-14 05:25:18
158.69.210.117	attackbots	Oct 13 21:03:01 ip-172-31-1-72 sshd\[7875\]: Invalid user 123QAZ123 from 158.69.210.117 Oct 13 21:03:01 ip-172-31-1-72 sshd\[7875\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.210.117 Oct 13 21:03:03 ip-172-31-1-72 sshd\[7875\]: Failed password for invalid user 123QAZ123 from 158.69.210.117 port 36536 ssh2 Oct 13 21:06:36 ip-172-31-1-72 sshd\[7940\]: Invalid user !QAZXCDE\# from 158.69.210.117 Oct 13 21:06:36 ip-172-31-1-72 sshd\[7940\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.210.117	2019-10-14 05:19:59
139.219.137.246	attackspambots	Oct 13 14:50:44 askasleikir sshd[570685]: Failed password for root from 139.219.137.246 port 50342 ssh2	2019-10-14 05:49:43
107.158.84.170	attackspam	Automatic report - Banned IP Access	2019-10-14 05:17:03
211.181.237.52	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 13-10-2019 21:15:21.	2019-10-14 05:33:01
167.99.54.4	attackbots	Feb 11 03:59:32 dillonfme sshd\[9518\]: Invalid user xw from 167.99.54.4 port 59128 Feb 11 03:59:32 dillonfme sshd\[9518\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.54.4 Feb 11 03:59:34 dillonfme sshd\[9518\]: Failed password for invalid user xw from 167.99.54.4 port 59128 ssh2 Feb 11 04:04:06 dillonfme sshd\[9582\]: Invalid user ubuntu from 167.99.54.4 port 50280 Feb 11 04:04:06 dillonfme sshd\[9582\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.54.4 ...	2019-10-14 05:38:59
222.186.180.223	attackbots	Oct 14 02:58:52 areeb-Workstation sshd[19425]: Failed password for root from 222.186.180.223 port 23054 ssh2 Oct 14 02:58:56 areeb-Workstation sshd[19425]: Failed password for root from 222.186.180.223 port 23054 ssh2 ...	2019-10-14 05:39:41
168.128.86.35	attack	Feb 16 17:44:43 dillonfme sshd\[20269\]: Invalid user admin from 168.128.86.35 port 33422 Feb 16 17:44:43 dillonfme sshd\[20269\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.128.86.35 Feb 16 17:44:45 dillonfme sshd\[20269\]: Failed password for invalid user admin from 168.128.86.35 port 33422 ssh2 Feb 16 17:52:27 dillonfme sshd\[20825\]: Invalid user bobby from 168.128.86.35 port 52776 Feb 16 17:52:27 dillonfme sshd\[20825\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.128.86.35 ...	2019-10-14 05:10:10
168.0.148.116	attackbotsspam	Feb 21 22:21:25 dillonfme sshd\[20937\]: Invalid user zabbix from 168.0.148.116 port 57700 Feb 21 22:21:25 dillonfme sshd\[20937\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.0.148.116 Feb 21 22:21:28 dillonfme sshd\[20937\]: Failed password for invalid user zabbix from 168.0.148.116 port 57700 ssh2 Feb 21 22:30:46 dillonfme sshd\[21528\]: Invalid user ftptest from 168.0.148.116 port 38404 Feb 21 22:30:46 dillonfme sshd\[21528\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.0.148.116 ...	2019-10-14 05:12:16

最近上报的IP列表

14.185.137.196	120.85.119.134	152.74.15.44	32.212.14.118
54.176.20.17	82.114.122.18	89.205.39.239	103.193.254.11
91.195.210.165	219.148.180.62	197.245.50.233	182.56.197.128
177.101.118.43	59.95.79.0	192.177.139.160	78.31.93.153
112.2.242.145	90.150.58.65	125.41.227.118	113.116.245.169