21.196.74.40 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 21.196.74.40
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33686
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;21.196.74.40.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025030100 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 02 01:12:04 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 40.74.196.21.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 40.74.196.21.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
178.41.187.18	attack	Jan 11 05:54:47 grey postfix/smtpd\[10128\]: NOQUEUE: reject: RCPT from bband-dyn18.178-41-187.t-com.sk\[178.41.187.18\]: 554 5.7.1 Service unavailable\; Client host \[178.41.187.18\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[178.41.187.18\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-11 15:50:39
82.64.25.207	attackbotsspam	Brute force attempt	2020-01-11 15:46:08
202.218.128.207	attackspambots	01/11/2020-05:54:48.528474 202.218.128.207 Protocol: 6 SURICATA TLS invalid record/traffic	2020-01-11 15:50:05
76.170.69.190	attack	Jan 8 15:33:03 vh1 sshd[14028]: Invalid user test from 76.170.69.190 Jan 8 15:33:03 vh1 sshd[14028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-76-170-69-190.socal.res.rr.com Jan 8 15:33:05 vh1 sshd[14028]: Failed password for invalid user test from 76.170.69.190 port 55755 ssh2 Jan 8 15:33:05 vh1 sshd[14029]: Received disconnect from 76.170.69.190: 11: Bye Bye Jan 8 15:37:46 vh1 sshd[14149]: Invalid user four from 76.170.69.190 Jan 8 15:37:46 vh1 sshd[14149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-76-170-69-190.socal.res.rr.com ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=76.170.69.190	2020-01-11 15:53:13
117.4.117.240	attackspam	" "	2020-01-11 15:58:52
222.252.16.140	attackbots	Jan 11 05:54:15 nextcloud sshd\[1827\]: Invalid user passfeel from 222.252.16.140 Jan 11 05:54:15 nextcloud sshd\[1827\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.16.140 Jan 11 05:54:17 nextcloud sshd\[1827\]: Failed password for invalid user passfeel from 222.252.16.140 port 35032 ssh2 ...	2020-01-11 16:03:37
142.4.204.122	attack	$f2bV_matches	2020-01-11 15:47:21
123.22.229.31	attackspam	01/10/2020-23:55:17.180697 123.22.229.31 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-01-11 15:29:47
60.160.28.187	attackspam	Fail2Ban - FTP Abuse Attempt	2020-01-11 15:46:53
178.167.121.37	attackbots	[Sat Jan 11 11:54:07.162593 2020] [:error] [pid 8800:tid 140478062237440] [client 178.167.121.37:39267] [client 178.167.121.37] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197:80"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XhlU70FSo6M0xj5ZHKj41wAAAAo"] ...	2020-01-11 16:09:27
180.242.223.66	attackspambots	port scan and connect, tcp 23 (telnet)	2020-01-11 16:08:06
131.255.191.175	attackbotsspam	Jan 11 08:32:31 mout sshd[12211]: Invalid user localhost@1234 from 131.255.191.175 port 33566	2020-01-11 16:01:04
39.37.230.209	attackspambots	1578718513 - 01/11/2020 05:55:13 Host: 39.37.230.209/39.37.230.209 Port: 445 TCP Blocked	2020-01-11 15:32:07
138.118.56.22	attackspambots	01/11/2020-05:54:26.030192 138.118.56.22 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-01-11 16:00:42
205.185.113.140	attack	Jan 11 07:47:44 vtv3 sshd[10063]: Failed password for root from 205.185.113.140 port 35674 ssh2 Jan 11 07:51:13 vtv3 sshd[11798]: Failed password for root from 205.185.113.140 port 52970 ssh2 Jan 11 08:05:02 vtv3 sshd[17936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=205.185.113.140 Jan 11 08:05:04 vtv3 sshd[17936]: Failed password for invalid user Office@12124 from 205.185.113.140 port 32872 ssh2 Jan 11 08:06:54 vtv3 sshd[19041]: Failed password for root from 205.185.113.140 port 50166 ssh2 Jan 11 08:17:42 vtv3 sshd[23962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=205.185.113.140 Jan 11 08:17:43 vtv3 sshd[23962]: Failed password for invalid user tesing0 from 205.185.113.140 port 51942 ssh2 Jan 11 08:19:29 vtv3 sshd[24662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=205.185.113.140 Jan 11 08:30:03 vtv3 sshd[29948]: pam_unix(sshd:auth): authentication failure; logname= ui	2020-01-11 15:52:19

最近上报的IP列表

6.146.28.42	133.106.88.135	251.153.235.208	196.197.27.97
45.217.56.30	116.16.207.176	91.43.173.182	61.120.39.140
127.177.61.165	31.223.20.204	166.233.184.18	202.154.243.247
141.229.57.32	34.131.113.219	12.86.166.141	141.188.88.114
88.22.186.141	85.232.14.200	123.211.8.224	16.131.84.109