189.89.130.104

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Brazil

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.89.130.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38928
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;189.89.130.104.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012801 1800 900 604800 86400

;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 05:53:08 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

104.130.89.189.in-addr.arpa domain name pointer 189-89-130-104.STATIC.itsbrasil.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
104.130.89.189.in-addr.arpa	name = 189-89-130-104.STATIC.itsbrasil.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
74.120.14.36	attack	Unauthorized connection attempt from IP address 74.120.14.36 on Port 587(SMTP-MSA)	2020-09-22 01:29:09
118.128.190.153	attack	Sep 21 14:48:31 prod4 sshd\[2325\]: Address 118.128.190.153 maps to www.ksae.org, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 21 14:48:31 prod4 sshd\[2325\]: Invalid user elastic from 118.128.190.153 Sep 21 14:48:32 prod4 sshd\[2325\]: Failed password for invalid user elastic from 118.128.190.153 port 53494 ssh2 ...	2020-09-22 01:25:43
156.96.128.222	attackspambots	TCP (SYN) 156.96.128.222:59165 -> port 443, len 44	2020-09-22 01:05:25
186.234.80.162	attack	186.234.80.162 - - [20/Sep/2020:18:00:14 +0100] "POST /wp-login.php HTTP/1.1" 200 2252 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 186.234.80.162 - - [20/Sep/2020:18:00:16 +0100] "POST /wp-login.php HTTP/1.1" 200 2231 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 186.234.80.162 - - [20/Sep/2020:18:00:16 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-22 00:52:00
90.150.198.59	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-09-22 00:55:53
45.145.67.175	attack	RDP Bruteforce	2020-09-22 01:14:51
103.199.136.48	attackspam	Unauthorized connection attempt from IP address 103.199.136.48 on Port 445(SMB)	2020-09-22 00:55:23
61.93.240.65	attackspam	2020-09-21T20:24:36.935004paragon sshd[263447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.93.240.65 2020-09-21T20:24:36.930957paragon sshd[263447]: Invalid user tony from 61.93.240.65 port 51432 2020-09-21T20:24:39.163055paragon sshd[263447]: Failed password for invalid user tony from 61.93.240.65 port 51432 ssh2 2020-09-21T20:28:41.835522paragon sshd[263556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.93.240.65 user=root 2020-09-21T20:28:44.031907paragon sshd[263556]: Failed password for root from 61.93.240.65 port 53962 ssh2 ...	2020-09-22 01:05:39
68.168.142.29	attack	Time: Mon Sep 21 16:16:30 2020 +0200 IP: 68.168.142.29 (US/United States/68.168.142.29.16clouds.com) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 21 15:59:59 3-1 sshd[45536]: Failed password for root from 68.168.142.29 port 33232 ssh2 Sep 21 16:10:43 3-1 sshd[46595]: Invalid user user from 68.168.142.29 port 38250 Sep 21 16:10:45 3-1 sshd[46595]: Failed password for invalid user user from 68.168.142.29 port 38250 ssh2 Sep 21 16:16:25 3-1 sshd[46969]: Invalid user nagios from 68.168.142.29 port 52066 Sep 21 16:16:27 3-1 sshd[46969]: Failed password for invalid user nagios from 68.168.142.29 port 52066 ssh2	2020-09-22 00:50:18
172.255.251.196	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-09-22 01:20:56
116.72.202.226	attackbots	DATE:2020-09-20 18:58:05, IP:116.72.202.226, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-09-22 01:29:25
93.76.71.130	attackbots	RDP Bruteforce	2020-09-22 01:13:16
36.71.142.108	attackbotsspam	Sep 20 16:06:48 XXXXXX sshd[5779]: Invalid user sniffer from 36.71.142.108 port 39609	2020-09-22 01:27:00
122.51.192.105	attackbots	$f2bV_matches	2020-09-22 00:57:28
128.199.212.15	attackbotsspam	Sep 21 16:00:42 XXXXXX sshd[11674]: Invalid user qwerty from 128.199.212.15 port 33094	2020-09-22 01:28:11

最近上报的IP列表

6.44.243.194	63.158.140.44	237.25.5.150	211.143.0.12
67.176.141.0	35.191.129.53	137.37.212.92	44.252.66.10
251.13.221.38	155.227.25.50	63.155.223.39	166.191.23.17
130.137.231.255	66.57.235.43	66.61.175.70	211.182.224.176
244.121.46.127	67.210.198.230	234.129.67.178	67.76.110.236