114.239.89.21 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.239.89.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49096
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;114.239.89.21.			IN	A

;; AUTHORITY SECTION:
.			336	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022100602 1800 900 604800 86400

;; Query time: 28 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 07 04:29:52 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 21.89.239.114.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 21.89.239.114.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
1.71.129.210	attackspam	2019-10-30T22:05:28.198348abusebot-5.cloudsearch.cf sshd\[22420\]: Invalid user max from 1.71.129.210 port 54379	2019-10-31 06:31:32
94.177.224.127	attack	Oct 30 18:41:07 TORMINT sshd\[23856\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.224.127 user=root Oct 30 18:41:09 TORMINT sshd\[23856\]: Failed password for root from 94.177.224.127 port 48686 ssh2 Oct 30 18:44:56 TORMINT sshd\[24023\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.224.127 user=root ...	2019-10-31 06:52:30
139.59.40.233	attackbotsspam	schuetzenmusikanten.de 139.59.40.233 \[30/Oct/2019:22:28:01 +0100\] "POST /wp-login.php HTTP/1.1" 200 5681 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" schuetzenmusikanten.de 139.59.40.233 \[30/Oct/2019:22:28:02 +0100\] "POST /wp-login.php HTTP/1.1" 200 5647 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-10-31 06:54:25
37.189.101.188	attackspambots	Oct 28 20:03:07 penfold postfix/smtpd[31296]: warning: hostname bl28-101-188.dsl.telepac.pt does not resolve to address 37.189.101.188: Name or service not known Oct 28 20:03:07 penfold postfix/smtpd[31296]: connect from unknown[37.189.101.188] Oct x@x Oct 28 20:03:08 penfold postfix/smtpd[31296]: disconnect from unknown[37.189.101.188] ehlo=1 mail=1 rcpt=0/1 quhostname=1 commands=3/4 Oct 29 17:26:22 penfold postfix/smtpd[6451]: warning: hostname bl28-101-188.dsl.telepac.pt does not resolve to address 37.189.101.188: Name or service not known Oct 29 17:26:22 penfold postfix/smtpd[6451]: connect from unknown[37.189.101.188] Oct x@x Oct 29 17:26:23 penfold postfix/smtpd[6451]: disconnect from unknown[37.189.101.188] ehlo=1 mail=1 rcpt=0/1 quhostname=1 commands=3/4 Oct 29 20:25:48 penfold postfix/smtpd[12541]: warning: hostname bl28-101-188.dsl.telepac.pt does not resolve to address 37.189.101.188: Name or service not known Oct 29 20:25:48 penfold postfix/smtpd[12541]: con........ -------------------------------	2019-10-31 06:29:55
193.32.160.152	attack	2019-10-30T22:44:41.642645mail01 postfix/smtpd[14067]: NOQUEUE: reject: RCPT from unknown[193.32.160.152]: 550	2019-10-31 06:41:23
182.138.223.169	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/182.138.223.169/ CN - 1H : (727) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 182.138.223.169 CIDR : 182.136.0.0/14 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 ATTACKS DETECTED ASN4134 : 1H - 8 3H - 31 6H - 65 12H - 141 24H - 300 DateTime : 2019-10-30 21:26:54 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-31 06:27:46
123.126.20.94	attackspambots	Oct 30 21:54:08 localhost sshd\[14977\]: Invalid user \ from 123.126.20.94 Oct 30 21:54:08 localhost sshd\[14977\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.126.20.94 Oct 30 21:54:10 localhost sshd\[14977\]: Failed password for invalid user \ from 123.126.20.94 port 49410 ssh2 Oct 30 21:58:12 localhost sshd\[15192\]: Invalid user devrey from 123.126.20.94 Oct 30 21:58:12 localhost sshd\[15192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.126.20.94 ...	2019-10-31 06:34:39
106.241.16.105	attack	SSH Brute-Force attacks	2019-10-31 06:38:50
159.89.153.54	attackspambots	Oct 30 21:22:29 tux-35-217 sshd\[18547\]: Invalid user razvan from 159.89.153.54 port 47716 Oct 30 21:22:29 tux-35-217 sshd\[18547\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.153.54 Oct 30 21:22:31 tux-35-217 sshd\[18547\]: Failed password for invalid user razvan from 159.89.153.54 port 47716 ssh2 Oct 30 21:26:17 tux-35-217 sshd\[18549\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.153.54 user=root ...	2019-10-31 06:48:59
45.136.110.44	attackspambots	Oct 30 22:45:59 h2177944 kernel: \[5347697.523253\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.44 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=7187 PROTO=TCP SPT=54188 DPT=2857 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 30 23:15:20 h2177944 kernel: \[5349457.967494\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.44 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=39276 PROTO=TCP SPT=54188 DPT=2836 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 30 23:17:31 h2177944 kernel: \[5349588.909910\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.44 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=8319 PROTO=TCP SPT=54188 DPT=2800 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 30 23:21:28 h2177944 kernel: \[5349825.785813\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.44 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=31898 PROTO=TCP SPT=54188 DPT=2931 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 30 23:30:28 h2177944 kernel: \[5350365.813547\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.44 DST=85.214.117.9 L	2019-10-31 06:51:59
103.100.153.101	attackspam	SSH Brute-Force reported by Fail2Ban	2019-10-31 06:55:53
202.71.176.134	attackspam	2019-10-30T22:30:01.805578abusebot-5.cloudsearch.cf sshd\[22745\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.176.71.202.sta.prodatanet.com.ph user=root	2019-10-31 06:52:11
196.189.89.82	attackbotsspam	Oct 30 21:17:33 georgia postfix/smtpd[50706]: connect from unknown[196.189.89.82] Oct 30 21:17:34 georgia postfix/smtpd[50706]: warning: unknown[196.189.89.82]: SASL LOGIN authentication failed: authentication failure Oct 30 21:17:35 georgia postfix/smtpd[50706]: lost connection after AUTH from unknown[196.189.89.82] Oct 30 21:17:35 georgia postfix/smtpd[50706]: disconnect from unknown[196.189.89.82] ehlo=1 auth=0/1 commands=1/2 Oct 30 21:17:36 georgia postfix/smtpd[50706]: connect from unknown[196.189.89.82] Oct 30 21:17:37 georgia postfix/smtpd[50706]: warning: unknown[196.189.89.82]: SASL LOGIN authentication failed: authentication failure Oct 30 21:17:37 georgia postfix/smtpd[50706]: lost connection after AUTH from unknown[196.189.89.82] Oct 30 21:17:37 georgia postfix/smtpd[50706]: disconnect from unknown[196.189.89.82] ehlo=1 auth=0/1 commands=1/2 Oct 30 21:17:42 georgia postfix/smtpd[50706]: connect from unknown[196.189.89.82] Oct 30 21:17:43 georgia postfix/smtp........ -------------------------------	2019-10-31 06:23:03
14.166.200.35	attackspambots	Oct 31 06:44:39 our-server-hostname postfix/smtpd[29978]: connect from unknown[14.166.200.35] Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct 31 06:44:43 our-server-hostname postfix/smtpd[29978]: too many errors after RCPT from unknown[14.166.200.35] Oct 31 06:44:43 our-server-hostname postfix/smtpd[29978]: disconnect from unknown[14.166.200.35] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.166.200.35	2019-10-31 06:31:13
104.197.75.152	attackspam	enlinea.de 104.197.75.152 \[30/Oct/2019:21:26:47 +0100\] "POST /wp-login.php HTTP/1.1" 200 5768 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" enlinea.de 104.197.75.152 \[30/Oct/2019:21:26:48 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 4076 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-10-31 06:30:07

最近上报的IP列表

49.116.170.53	44.210.145.93	167.71.254.148	144.126.210.132
177.234.169.14	44.228.254.114	144.22.234.168	45.138.101.248
51.222.84.118	121.62.22.165	154.53.62.26	34.125.64.33
31.17.186.234	36.27.21.156	34.209.135.130	39.101.192.182
34.87.146.211	31.191.19.194	34.78.244.222	34.76.221.153