208.166.120.104

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 208.166.120.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12530
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;208.166.120.104.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020600 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 00:19:18 CST 2025
;; MSG SIZE  rcvd: 108

HOST信息:

Host 104.120.166.208.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 104.120.166.208.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
89.239.241.235	attack	DATE:2019-10-18 05:49:59, IP:89.239.241.235, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-10-18 16:22:28
106.12.120.155	attackspambots	SSH Brute-Force reported by Fail2Ban	2019-10-18 16:25:21
118.34.37.145	attackspambots	2019-10-18T05:15:45.360892shield sshd\[16485\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.34.37.145 user=root 2019-10-18T05:15:46.680760shield sshd\[16485\]: Failed password for root from 118.34.37.145 port 54448 ssh2 2019-10-18T05:20:27.518319shield sshd\[17631\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.34.37.145 user=root 2019-10-18T05:20:29.219469shield sshd\[17631\]: Failed password for root from 118.34.37.145 port 36880 ssh2 2019-10-18T05:25:10.980524shield sshd\[19222\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.34.37.145 user=root	2019-10-18 16:24:39
86.236.71.78	attackbots	firewall-block, port(s): 22/tcp	2019-10-18 16:18:49
206.189.239.103	attack	Oct 18 04:56:38 firewall sshd[26018]: Failed password for invalid user dev from 206.189.239.103 port 41894 ssh2 Oct 18 05:00:12 firewall sshd[26087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.239.103 user=root Oct 18 05:00:14 firewall sshd[26087]: Failed password for root from 206.189.239.103 port 52220 ssh2 ...	2019-10-18 16:03:39
116.14.223.233	attack	" "	2019-10-18 15:50:20
106.12.153.161	attackbots	2019-10-18T07:25:31.555249shield sshd\[15193\]: Invalid user a from 106.12.153.161 port 41482 2019-10-18T07:25:31.560100shield sshd\[15193\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.153.161 2019-10-18T07:25:34.098069shield sshd\[15193\]: Failed password for invalid user a from 106.12.153.161 port 41482 ssh2 2019-10-18T07:30:43.236241shield sshd\[15894\]: Invalid user tomcat from 106.12.153.161 port 51710 2019-10-18T07:30:43.241105shield sshd\[15894\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.153.161	2019-10-18 16:11:18
115.210.67.60	attack	Unauthorised access (Oct 18) SRC=115.210.67.60 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=48050 TCP DPT=8080 WINDOW=17862 SYN Unauthorised access (Oct 18) SRC=115.210.67.60 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=51550 TCP DPT=8080 WINDOW=64870 SYN Unauthorised access (Oct 16) SRC=115.210.67.60 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=513 TCP DPT=8080 WINDOW=64870 SYN Unauthorised access (Oct 16) SRC=115.210.67.60 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=55799 TCP DPT=8080 WINDOW=17862 SYN Unauthorised access (Oct 15) SRC=115.210.67.60 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=16943 TCP DPT=8080 WINDOW=32552 SYN Unauthorised access (Oct 15) SRC=115.210.67.60 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=36988 TCP DPT=8080 WINDOW=17862 SYN	2019-10-18 16:25:06
211.141.179.140	attackbots	MySQL Bruteforce attack	2019-10-18 15:44:05
154.8.154.104	attackbots	Oct 18 02:13:45 xtremcommunity sshd\[632659\]: Invalid user backup@123 from 154.8.154.104 port 59396 Oct 18 02:13:45 xtremcommunity sshd\[632659\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.154.104 Oct 18 02:13:47 xtremcommunity sshd\[632659\]: Failed password for invalid user backup@123 from 154.8.154.104 port 59396 ssh2 Oct 18 02:18:59 xtremcommunity sshd\[632836\]: Invalid user ytq from 154.8.154.104 port 39944 Oct 18 02:18:59 xtremcommunity sshd\[632836\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.154.104 ...	2019-10-18 16:19:10
41.227.18.113	attackspam	Oct 18 09:32:52 icinga sshd[11881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.227.18.113 Oct 18 09:32:54 icinga sshd[11881]: Failed password for invalid user WinD3str0y from 41.227.18.113 port 59952 ssh2 Oct 18 09:54:56 icinga sshd[26614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.227.18.113 ...	2019-10-18 16:02:26
106.13.133.80	attackspambots	Oct 18 08:13:08 vps647732 sshd[13884]: Failed password for root from 106.13.133.80 port 59766 ssh2 ...	2019-10-18 15:45:08
192.42.116.26	attackspam	Oct 18 09:59:12 rotator sshd\[6455\]: Failed password for root from 192.42.116.26 port 52840 ssh2Oct 18 09:59:14 rotator sshd\[6455\]: Failed password for root from 192.42.116.26 port 52840 ssh2Oct 18 09:59:16 rotator sshd\[6455\]: Failed password for root from 192.42.116.26 port 52840 ssh2Oct 18 09:59:19 rotator sshd\[6455\]: Failed password for root from 192.42.116.26 port 52840 ssh2Oct 18 09:59:22 rotator sshd\[6455\]: Failed password for root from 192.42.116.26 port 52840 ssh2Oct 18 09:59:24 rotator sshd\[6455\]: Failed password for root from 192.42.116.26 port 52840 ssh2 ...	2019-10-18 16:21:19
67.205.158.17	attackspam	Oct 18 11:27:55 our-server-hostname postfix/smtp[5911]: connect to mail1.anzcommunications.anz.worldwidesof.com[67.205.158.17]:25: Connection servered out Oct 18 11:28:17 our-server-hostname postfix/smtpd[9946]: connect from unknown[67.205.158.17] Oct 18 11:28:18 our-server-hostname postfix/smtpd[9946]: NOQUEUE: reject: RCPT from unknown[67.205.158.17]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x helo= Oct 18 11:28:18 our-server-hostname postfix/smtpd[9946]: disconnect from unknown[67.205.158.17] Oct 18 11:32:10 our-server-hostname postfix/smtpd[19277]: connect from unknown[67.205.158.17] Oct 18 11:32:11 our-server-hostname postfix/smtpd[19277]: NOQUEUE: reject: RCPT from unknown[67.205.158.17]: 504 5.5.2	2019-10-18 15:43:51
167.99.77.94	attackbotsspam	Invalid user socks from 167.99.77.94 port 36626	2019-10-18 16:23:44

最近上报的IP列表

91.201.120.66	67.52.191.89	228.255.184.122	196.24.224.255
68.190.137.156	78.159.111.251	138.212.224.29	80.81.208.206
224.174.79.167	38.80.77.197	186.108.150.4	162.1.6.251
58.30.14.19	65.72.8.36	26.186.215.115	151.6.156.36
66.101.216.216	6.231.45.29	215.184.152.232	182.158.115.93