21.208.173.104

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 21.208.173.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42520
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;21.208.173.104.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025010602 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 07 12:18:22 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 104.173.208.21.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 104.173.208.21.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.173.238	attackspambots	Mar 19 23:28:37 eventyay sshd[25529]: Failed password for root from 222.186.173.238 port 13370 ssh2 Mar 19 23:28:50 eventyay sshd[25529]: Failed password for root from 222.186.173.238 port 13370 ssh2 Mar 19 23:28:50 eventyay sshd[25529]: error: maximum authentication attempts exceeded for root from 222.186.173.238 port 13370 ssh2 [preauth] ...	2020-03-20 06:34:52
27.78.14.83	attack	Mar 19 19:45:15 firewall sshd[26777]: Failed password for invalid user ubnt from 27.78.14.83 port 47242 ssh2 Mar 19 19:45:41 firewall sshd[26796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.78.14.83 user=root Mar 19 19:45:44 firewall sshd[26796]: Failed password for root from 27.78.14.83 port 53946 ssh2 ...	2020-03-20 06:47:22
201.38.80.115	attack	-	2020-03-20 06:41:41
217.217.90.149	attackbotsspam	Mar 19 22:53:44 v22018086721571380 sshd[24735]: Failed password for invalid user xulei from 217.217.90.149 port 55784 ssh2	2020-03-20 06:41:14
216.10.31.137	attack	(From keithhoff@imail.party) Hello, I have not received an update regarding measures you're taking to combat COVID-19. I hope you'll assure us that you are following all recently released guidelines and taking every precaution to protect our community? I'm very concerned that countless young people are not taking COVID-19 seriously (ex. the Spring Break beaches are still packed). I think the only way to combat this 'whatever attitude' is by sharing as much information as possible. I hope you will add an alert banner with a link to the CDC's coronavirus page (https://www.cdc.gov/coronavirus/2019-ncov/index.html) or the WHO's page. More importantly, please consider copy & pasting this Creative Commons 4.0 (free to re-publish) article to your site (https://covidblog.info). Without strict measures and an educated community, the number of cases will increase exponentially throughout the global population! Stay safe, Keith	2020-03-20 06:20:07
45.143.220.208	attackspambots	Mar 19 22:53:49 debian-2gb-nbg1-2 kernel: \[6913934.055485\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.143.220.208 DST=195.201.40.59 LEN=443 TOS=0x00 PREC=0x00 TTL=54 ID=0 DF PROTO=UDP SPT=5085 DPT=5060 LEN=423	2020-03-20 06:37:50
177.68.173.8	attackbotsspam	Automatic report - Port Scan Attack	2020-03-20 06:22:20
37.187.104.135	attack	Mar 19 22:40:42 icinga sshd[64840]: Failed password for root from 37.187.104.135 port 50840 ssh2 Mar 19 22:49:05 icinga sshd[14334]: Failed password for root from 37.187.104.135 port 55406 ssh2 ...	2020-03-20 06:25:09
220.178.75.153	attackbots	2020-03-19T22:07:09.151732shield sshd\[23611\]: Invalid user cod from 220.178.75.153 port 53730 2020-03-19T22:07:09.155937shield sshd\[23611\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.178.75.153 2020-03-19T22:07:10.925668shield sshd\[23611\]: Failed password for invalid user cod from 220.178.75.153 port 53730 ssh2 2020-03-19T22:11:32.890577shield sshd\[24452\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.178.75.153 user=root 2020-03-19T22:11:34.765675shield sshd\[24452\]: Failed password for root from 220.178.75.153 port 34904 ssh2	2020-03-20 06:24:25
91.134.242.199	attackspam	Mar 19 22:47:39 legacy sshd[31421]: Failed password for root from 91.134.242.199 port 38756 ssh2 Mar 19 22:54:10 legacy sshd[31587]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.242.199 Mar 19 22:54:12 legacy sshd[31587]: Failed password for invalid user teste from 91.134.242.199 port 60576 ssh2 ...	2020-03-20 06:22:34
134.175.8.54	attackbots	Mar 19 18:46:55 ws24vmsma01 sshd[123946]: Failed password for root from 134.175.8.54 port 46046 ssh2 ...	2020-03-20 06:54:56
45.40.143.13	attackspam	[ThuMar1922:54:11.9945442020][:error][pid23230:tid47868506552064][client45.40.143.13:42166][client45.40.143.13]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\$mozilla\^\\|mozilla/[45]\\\\\\\\.[1-9]\\|\^mozilla/4\\\\\\\\.0\$$"atREQUEST_HEADERS:User-Agent.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"426"][id"330131"][rev"3"][msg"Atomicorp.comWAFRules:MaliciousBotBlocked$FakeMozillaUserAgentStringDetected$"][severity"CRITICAL"][hostname"wwlc.ch"][uri"/wp-load.php"][unique_id"XnPqA0vPV7rtHP0gxJm4BwAAAUc"]\,referer:wwlc.ch[ThuMar1922:54:13.1609842020][:error][pid8165:tid47868523362048][client45.40.143.13:57346][client45.40.143.13]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\$mozilla\^\\|mozilla/[45]\\\\\\\\.[1-9]\\|\^mozilla/4\\\\\\\\.0\$$"atREQUEST_HEADERS:User-Agent.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"426"][id"330131"][rev"3"][msg"Atomicorp.comWAFRules:MaliciousBotBlocked\(FakeMozillaUser	2020-03-20 06:21:48
35.230.162.59	attackspambots	WordPress login Brute force / Web App Attack on client site.	2020-03-20 06:21:01
41.232.6.139	attack	Mar 19 21:53:26 *** sshd[9462]: User root from 41.232.6.139 not allowed because not listed in AllowUsers	2020-03-20 06:53:16
91.193.103.214	attackbots	RDP Brute-Force (honeypot 3)	2020-03-20 06:35:51

最近上报的IP列表

146.104.180.80	179.55.201.59	55.237.111.82	173.231.55.113
58.94.102.237	227.120.238.35	71.138.189.119	8.3.105.224
208.123.150.32	9.78.99.2	204.252.213.83	79.97.162.194
201.196.248.247	100.209.169.43	173.94.116.238	165.133.200.84
214.248.245.44	243.163.140.228	63.6.195.148	169.75.90.186