21.91.117.74 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 21.91.117.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6559
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;21.91.117.74.			IN	A

;; AUTHORITY SECTION:
.			586	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022600 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 26 22:22:43 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 74.117.91.21.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 74.117.91.21.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
68.183.127.13	attackbots	Sep 24 07:55:57 ns41 sshd[7428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.127.13	2019-09-24 16:44:51
222.186.169.192	attackspam	Sep 24 00:19:25 debian sshd[16021]: Unable to negotiate with 222.186.169.192 port 22862: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] Sep 24 04:13:36 debian sshd[26348]: Unable to negotiate with 222.186.169.192 port 28114: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ...	2019-09-24 16:34:37
37.139.4.138	attack	Sep 24 06:48:53 site3 sshd\[24076\]: Invalid user yz from 37.139.4.138 Sep 24 06:48:53 site3 sshd\[24076\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 Sep 24 06:48:56 site3 sshd\[24076\]: Failed password for invalid user yz from 37.139.4.138 port 32947 ssh2 Sep 24 06:52:27 site3 sshd\[24160\]: Invalid user verwalter from 37.139.4.138 Sep 24 06:52:27 site3 sshd\[24160\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 ...	2019-09-24 16:42:35
202.107.238.94	attack	Sep 24 10:15:40 v22019058497090703 sshd[24473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.107.238.94 Sep 24 10:15:41 v22019058497090703 sshd[24473]: Failed password for invalid user testuser from 202.107.238.94 port 39546 ssh2 Sep 24 10:20:53 v22019058497090703 sshd[24892]: Failed password for test from 202.107.238.94 port 59546 ssh2 ...	2019-09-24 16:43:51
49.88.112.68	attack	2019-09-23 11:21:11,654 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 49.88.112.68 2019-09-23 11:51:58,194 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 49.88.112.68 2019-09-23 12:22:31,738 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 49.88.112.68 2019-09-23 12:53:16,885 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 49.88.112.68 2019-09-24 06:59:31,217 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 49.88.112.68 ...	2019-09-24 17:07:40
23.129.64.204	attackbotsspam	2019-09-24T07:42:40.814617abusebot.cloudsearch.cf sshd\[31615\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.204 user=root	2019-09-24 16:37:36
49.143.95.121	attackbotsspam	[TueSep2405:52:27.1114172019][:error][pid26675:tid47560302733056][client49.143.95.121:44905][client49.143.95.121]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][severity"CRITICAL"][hostname"boltonholding.com"][uri"/boltonholding.sql"][unique_id"XYmS@yUY647fdT5XzKC6LAAAABU"][TueSep2405:52:29.4647092019][:error][pid26753:tid47560302733056][client49.143.95.121:45164][client49.143.95.121]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][sever	2019-09-24 16:41:30
134.209.252.119	attackspambots	Sep 24 10:47:06 MK-Soft-VM3 sshd[23733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.252.119 Sep 24 10:47:08 MK-Soft-VM3 sshd[23733]: Failed password for invalid user madalina from 134.209.252.119 port 48738 ssh2 ...	2019-09-24 17:05:24
211.54.40.81	attackbotsspam	Automatic report - Banned IP Access	2019-09-24 16:47:42
54.39.29.105	attackbotsspam	Sep 24 09:56:50 pornomens sshd\[29898\]: Invalid user andreyandrey from 54.39.29.105 port 47834 Sep 24 09:56:50 pornomens sshd\[29898\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.29.105 Sep 24 09:56:52 pornomens sshd\[29898\]: Failed password for invalid user andreyandrey from 54.39.29.105 port 47834 ssh2 ...	2019-09-24 16:40:31
58.246.149.142	attack	Sep 24 06:52:29 www5 sshd\[29202\]: Invalid user salvia from 58.246.149.142 Sep 24 06:52:29 www5 sshd\[29202\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.246.149.142 Sep 24 06:52:31 www5 sshd\[29202\]: Failed password for invalid user salvia from 58.246.149.142 port 56616 ssh2 ...	2019-09-24 16:38:33
128.199.78.191	attack	Sep 24 05:52:27 vpn01 sshd[12689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.78.191 Sep 24 05:52:29 vpn01 sshd[12689]: Failed password for invalid user zaednicka from 128.199.78.191 port 59390 ssh2	2019-09-24 16:44:07
103.27.202.18	attackspambots	Sep 24 10:56:24 mail sshd\[12088\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.27.202.18 Sep 24 10:56:25 mail sshd\[12088\]: Failed password for invalid user wc from 103.27.202.18 port 34323 ssh2 Sep 24 11:01:10 mail sshd\[13357\]: Invalid user cristina from 103.27.202.18 port 54851 Sep 24 11:01:10 mail sshd\[13357\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.27.202.18 Sep 24 11:01:12 mail sshd\[13357\]: Failed password for invalid user cristina from 103.27.202.18 port 54851 ssh2	2019-09-24 17:06:50
103.79.143.113	attackbots	19/9/23@23:52:28: FAIL: Alarm-SSH address from=103.79.143.113 ...	2019-09-24 16:43:21
150.93.20.36	attackspambots	Sep 23 18:51:01 web9 sshd\[23752\]: Invalid user atn from 150.93.20.36 Sep 23 18:51:01 web9 sshd\[23752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.93.20.36 Sep 23 18:51:03 web9 sshd\[23752\]: Failed password for invalid user atn from 150.93.20.36 port 45704 ssh2 Sep 23 18:55:38 web9 sshd\[24771\]: Invalid user yona from 150.93.20.36 Sep 23 18:55:38 web9 sshd\[24771\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.93.20.36	2019-09-24 16:26:32

最近上报的IP列表

134.210.187.181	111.90.120.225	191.134.147.129	232.121.183.146
249.27.170.195	138.233.41.238	152.168.94.217	9.240.164.134
89.8.239.24	78.141.70.229	61.119.103.48	93.168.148.93
85.87.142.127	92.133.1.4	195.240.195.67	10.245.177.147
234.98.176.7	21.246.18.97	10.22.148.32	224.144.12.169