161.204.187.21

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 161.204.187.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7697
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;161.204.187.21.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025031500 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 15 13:50:34 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 21.187.204.161.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 21.187.204.161.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
60.169.66.243	attackspam	11/12/2019-01:32:01.300492 60.169.66.243 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-11-12 15:27:48
154.66.113.78	attackbotsspam	2019-11-12T06:31:48.997274abusebot-4.cloudsearch.cf sshd\[23766\]: Invalid user rianon from 154.66.113.78 port 49718	2019-11-12 15:20:15
35.237.108.17	attack	Nov 12 11:28:51 gw1 sshd[6075]: Failed password for root from 35.237.108.17 port 38664 ssh2 Nov 12 11:32:24 gw1 sshd[6171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.237.108.17 ...	2019-11-12 15:23:20
106.251.67.78	attackbotsspam	Nov 12 08:10:49 ns37 sshd[5467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.251.67.78 Nov 12 08:10:51 ns37 sshd[5467]: Failed password for invalid user andy from 106.251.67.78 port 40798 ssh2 Nov 12 08:14:31 ns37 sshd[5715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.251.67.78	2019-11-12 15:34:15
86.35.174.66	attack	Automatic report - Port Scan Attack	2019-11-12 15:21:38
112.112.7.202	attackbotsspam	2019-11-12T06:32:06.122927abusebot-8.cloudsearch.cf sshd\[29474\]: Invalid user bkandeh from 112.112.7.202 port 54358	2019-11-12 15:12:37
136.228.161.66	attack	Nov 12 09:20:30 server sshd\[6358\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.228.161.66 user=root Nov 12 09:20:32 server sshd\[6358\]: Failed password for root from 136.228.161.66 port 39738 ssh2 Nov 12 09:31:52 server sshd\[10145\]: Invalid user suva from 136.228.161.66 Nov 12 09:31:52 server sshd\[10145\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.228.161.66 Nov 12 09:31:53 server sshd\[10145\]: Failed password for invalid user suva from 136.228.161.66 port 49966 ssh2 ...	2019-11-12 15:11:27
106.39.15.168	attackspambots	2019-11-12T07:25:49.260065shield sshd\[9290\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.39.15.168 user=root 2019-11-12T07:25:51.312990shield sshd\[9290\]: Failed password for root from 106.39.15.168 port 42374 ssh2 2019-11-12T07:31:07.283555shield sshd\[9917\]: Invalid user pcap from 106.39.15.168 port 59836 2019-11-12T07:31:07.289114shield sshd\[9917\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.39.15.168 2019-11-12T07:31:09.331770shield sshd\[9917\]: Failed password for invalid user pcap from 106.39.15.168 port 59836 ssh2	2019-11-12 15:34:46
193.32.160.152	attack	Nov 12 07:32:32 relay postfix/smtpd\[27999\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.152\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.151\]\> Nov 12 07:32:32 relay postfix/smtpd\[27999\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.152\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.151\]\> Nov 12 07:32:32 relay postfix/smtpd\[27999\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.152\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.151\]\> Nov 12 07:32:32 relay postfix/smtpd\[27999\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.152\]: 554 5.7.1 \: Relay access denied\; from=\	2019-11-12 15:23:48
202.100.182.250	attack	Nov 11 20:30:49 web9 sshd\[11614\]: Invalid user admin from 202.100.182.250 Nov 11 20:30:49 web9 sshd\[11614\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.100.182.250 Nov 11 20:30:51 web9 sshd\[11614\]: Failed password for invalid user admin from 202.100.182.250 port 44258 ssh2 Nov 11 20:30:53 web9 sshd\[11614\]: Failed password for invalid user admin from 202.100.182.250 port 44258 ssh2 Nov 11 20:30:54 web9 sshd\[11614\]: Failed password for invalid user admin from 202.100.182.250 port 44258 ssh2	2019-11-12 15:39:48
78.128.112.114	attack	78.128.112.114 was recorded 127 times by 25 hosts attempting to connect to the following ports: 2314,1210,3164,1378,2511,2956,2725,1466,620,827,142,3110,930,3281,1354,615,2304,2189,521,2071,2839,2277,3248,883,462,2382,1711,1482,1311,2055,441,2399,2077,1879,2347,558,2934,1530,1607,987,1565,2116,1972,870,1507,754,2782,362,162,1497,2797,2393,1856,2315,2951,251,2389,613,16,2918,1333,2556,2935,2292,1024,902,188,2688,1993,2457,473,1681,1072,2614,1388,1326,2786,2475,3069,2719,595,1262,333,739,1123,1950,2632,17,1717,1952,2871,2669,3258,1775,2354,1173,1389,1511,69,3082,1099,1436,783,243,2969,3228,1147,1438,285,246,1658,950,1239,2581,938,1544,3217,954,1803,1057,1709,3203,1541,609. Incident counter (4h, 24h, all-time): 127, 902, 1710	2019-11-12 15:14:58
192.99.28.247	attackspam	2019-11-12T00:17:28.3766701495-001 sshd\[52884\]: Failed password for invalid user guest from 192.99.28.247 port 35181 ssh2 2019-11-12T01:18:44.7327661495-001 sshd\[54911\]: Invalid user spg123 from 192.99.28.247 port 36969 2019-11-12T01:18:44.7403051495-001 sshd\[54911\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.28.247 2019-11-12T01:18:46.8991481495-001 sshd\[54911\]: Failed password for invalid user spg123 from 192.99.28.247 port 36969 ssh2 2019-11-12T01:22:29.7505931495-001 sshd\[55031\]: Invalid user 1230 from 192.99.28.247 port 55344 2019-11-12T01:22:29.7608111495-001 sshd\[55031\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.28.247 ...	2019-11-12 14:59:47
185.175.93.18	attack	firewall-block, port(s): 6000/tcp, 10100/tcp, 12707/tcp, 36501/tcp, 51738/tcp	2019-11-12 15:24:10
81.22.45.65	attack	Nov 12 07:36:00 h2177944 kernel: \[6416105.404499\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.65 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=52158 PROTO=TCP SPT=45579 DPT=61708 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 12 07:36:26 h2177944 kernel: \[6416131.298899\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.65 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=41655 PROTO=TCP SPT=45579 DPT=61794 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 12 07:38:44 h2177944 kernel: \[6416268.802925\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.65 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=7051 PROTO=TCP SPT=45579 DPT=61984 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 12 07:40:08 h2177944 kernel: \[6416353.225863\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.65 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=34274 PROTO=TCP SPT=45579 DPT=62372 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 12 07:45:15 h2177944 kernel: \[6416659.660279\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.65 DST=85.214.117.9 LEN=40	2019-11-12 15:06:04
106.12.13.247	attackspambots	Nov 11 21:20:58 eddieflores sshd\[3600\]: Invalid user testtest from 106.12.13.247 Nov 11 21:20:58 eddieflores sshd\[3600\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.247 Nov 11 21:21:00 eddieflores sshd\[3600\]: Failed password for invalid user testtest from 106.12.13.247 port 55736 ssh2 Nov 11 21:26:00 eddieflores sshd\[4019\]: Invalid user 12345 from 106.12.13.247 Nov 11 21:26:00 eddieflores sshd\[4019\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.247	2019-11-12 15:35:29

最近上报的IP列表

21.18.234.142	85.109.101.70	138.70.45.243	103.221.164.92
165.4.111.40	83.161.218.121	122.248.22.243	212.112.113.29
186.58.82.116	117.86.14.86	75.116.223.23	103.234.17.89
232.211.201.1	236.99.78.59	249.113.177.90	14.149.123.194
53.108.235.107	26.71.161.89	21.197.110.217	122.57.14.105