189.94.116.21 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Brazil

运营商(isp): Claro

主机名(hostname): unknown

机构(organization): Claro S/A

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.94.116.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47134
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;189.94.116.21.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 29 00:47:43 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

21.116.94.189.in-addr.arpa has no PTR record

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 21.116.94.189.in-addr.arpa.: No answer

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
76.240.101.164	attackbots	Lines containing failures of 76.240.101.164 Aug 21 22:07:23 MAKserver05 sshd[425]: Did not receive identification string from 76.240.101.164 port 58096 Aug 21 22:07:27 MAKserver05 sshd[432]: Invalid user ubnt from 76.240.101.164 port 58481 Aug 21 22:07:27 MAKserver05 sshd[432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.240.101.164 Aug 21 22:07:29 MAKserver05 sshd[432]: Failed password for invalid user ubnt from 76.240.101.164 port 58481 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=76.240.101.164	2020-08-22 07:46:15
201.236.182.92	attack	Phone is hacked	2020-08-22 11:45:37
152.231.140.150	attackbotsspam	2020-08-21T18:14:45.9717501495-001 sshd[10757]: Failed password for root from 152.231.140.150 port 44672 ssh2 2020-08-21T18:18:08.9869251495-001 sshd[11060]: Invalid user jenkins from 152.231.140.150 port 40729 2020-08-21T18:18:08.9900551495-001 sshd[11060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.231.140.150 2020-08-21T18:18:08.9869251495-001 sshd[11060]: Invalid user jenkins from 152.231.140.150 port 40729 2020-08-21T18:18:11.2511111495-001 sshd[11060]: Failed password for invalid user jenkins from 152.231.140.150 port 40729 ssh2 2020-08-21T18:21:32.0615531495-001 sshd[11317]: Invalid user sysadmin from 152.231.140.150 port 36787 ...	2020-08-22 08:19:54
108.166.202.222	attackbots	Aug 22 01:20:51 prod4 sshd\[12932\]: Address 108.166.202.222 maps to 222-202-166-108-dedicated.multacom.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Aug 22 01:20:51 prod4 sshd\[12932\]: Invalid user zsq from 108.166.202.222 Aug 22 01:20:52 prod4 sshd\[12932\]: Failed password for invalid user zsq from 108.166.202.222 port 50306 ssh2 ...	2020-08-22 08:13:56
36.155.112.131	attack	Aug 21 23:37:38 santamaria sshd\[23801\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.112.131 user=root Aug 21 23:37:40 santamaria sshd\[23801\]: Failed password for root from 36.155.112.131 port 42478 ssh2 Aug 21 23:43:34 santamaria sshd\[23882\]: Invalid user suporte from 36.155.112.131 Aug 21 23:43:34 santamaria sshd\[23882\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.112.131 ...	2020-08-22 08:07:31
190.6.218.80	attackbots	Ssh brute force	2020-08-22 08:05:22
187.217.199.20	attack	Aug 21 22:15:22 onepixel sshd[2692460]: Failed password for root from 187.217.199.20 port 50906 ssh2 Aug 21 22:19:33 onepixel sshd[2693120]: Invalid user router from 187.217.199.20 port 59926 Aug 21 22:19:33 onepixel sshd[2693120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.217.199.20 Aug 21 22:19:33 onepixel sshd[2693120]: Invalid user router from 187.217.199.20 port 59926 Aug 21 22:19:35 onepixel sshd[2693120]: Failed password for invalid user router from 187.217.199.20 port 59926 ssh2	2020-08-22 07:46:58
49.69.129.73	attack	Aug 21 22:06:58 hgb10502 sshd[1152]: Bad protocol version identification '' from 49.69.129.73 port 47909 Aug 21 22:07:48 hgb10502 sshd[1153]: Invalid user ubnt from 49.69.129.73 port 48051 Aug 21 22:07:48 hgb10502 sshd[1153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.69.129.73 Aug 21 22:07:50 hgb10502 sshd[1153]: Failed password for invalid user ubnt from 49.69.129.73 port 48051 ssh2 Aug 21 22:07:50 hgb10502 sshd[1153]: Connection closed by 49.69.129.73 port 48051 [preauth] Aug 21 22:07:52 hgb10502 sshd[1275]: Invalid user osboxes from 49.69.129.73 port 33995 Aug 21 22:07:52 hgb10502 sshd[1275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.69.129.73 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=49.69.129.73	2020-08-22 07:48:50
114.119.160.45	attack	[N10.H1.VM1] SPAM Detected Blocked by UFW	2020-08-22 08:11:29
222.186.173.215	attackspambots	Aug 22 05:57:54 vps1 sshd[12324]: Failed none for invalid user root from 222.186.173.215 port 55880 ssh2 Aug 22 05:57:54 vps1 sshd[12324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root Aug 22 05:57:56 vps1 sshd[12324]: Failed password for invalid user root from 222.186.173.215 port 55880 ssh2 Aug 22 05:58:00 vps1 sshd[12324]: Failed password for invalid user root from 222.186.173.215 port 55880 ssh2 Aug 22 05:58:05 vps1 sshd[12324]: Failed password for invalid user root from 222.186.173.215 port 55880 ssh2 Aug 22 05:58:09 vps1 sshd[12324]: Failed password for invalid user root from 222.186.173.215 port 55880 ssh2 Aug 22 05:58:13 vps1 sshd[12324]: Failed password for invalid user root from 222.186.173.215 port 55880 ssh2 Aug 22 05:58:15 vps1 sshd[12324]: error: maximum authentication attempts exceeded for invalid user root from 222.186.173.215 port 55880 ssh2 [preauth] ...	2020-08-22 12:00:18
185.211.188.190	attackspambots	Lines containing failures of 185.211.188.190 (max 1000) Aug 21 20:17:40 UTC__SANYALnet-Labs__cac12 sshd[2552]: Connection from 185.211.188.190 port 51274 on 64.137.176.104 port 22 Aug 21 20:17:41 UTC__SANYALnet-Labs__cac12 sshd[2552]: Address 185.211.188.190 maps to 185-211-188-190.jimmynet.cz, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Aug 21 20:17:41 UTC__SANYALnet-Labs__cac12 sshd[2552]: User r.r from 185.211.188.190 not allowed because not listed in AllowUsers Aug 21 20:17:41 UTC__SANYALnet-Labs__cac12 sshd[2552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.211.188.190 user=r.r Aug 21 20:17:43 UTC__SANYALnet-Labs__cac12 sshd[2552]: Failed password for invalid user r.r from 185.211.188.190 port 51274 ssh2 Aug 21 20:17:43 UTC__SANYALnet-Labs__cac12 sshd[2552]: Received disconnect from 185.211.188.190 port 51274:11: Bye Bye [preauth] Aug 21 20:17:43 UTC__SANYALnet-Labs__cac12 sshd[2552]: Discon........ ------------------------------	2020-08-22 08:15:01
106.13.90.78	attackspam	Aug 22 00:31:15 rocket sshd[6693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.90.78 Aug 22 00:31:17 rocket sshd[6693]: Failed password for invalid user sri from 106.13.90.78 port 39708 ssh2 ...	2020-08-22 07:47:26
103.63.109.74	attackspam	Aug 22 01:37:45 mout sshd[2878]: Invalid user smart from 103.63.109.74 port 45004 Aug 22 01:37:47 mout sshd[2878]: Failed password for invalid user smart from 103.63.109.74 port 45004 ssh2 Aug 22 01:37:49 mout sshd[2878]: Disconnected from invalid user smart 103.63.109.74 port 45004 [preauth]	2020-08-22 08:03:28
218.92.0.138	attackspambots	2020-08-21T23:34:21.960266abusebot-3.cloudsearch.cf sshd[26955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root 2020-08-21T23:34:23.347702abusebot-3.cloudsearch.cf sshd[26955]: Failed password for root from 218.92.0.138 port 28833 ssh2 2020-08-21T23:34:26.989056abusebot-3.cloudsearch.cf sshd[26955]: Failed password for root from 218.92.0.138 port 28833 ssh2 2020-08-21T23:34:21.960266abusebot-3.cloudsearch.cf sshd[26955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root 2020-08-21T23:34:23.347702abusebot-3.cloudsearch.cf sshd[26955]: Failed password for root from 218.92.0.138 port 28833 ssh2 2020-08-21T23:34:26.989056abusebot-3.cloudsearch.cf sshd[26955]: Failed password for root from 218.92.0.138 port 28833 ssh2 2020-08-21T23:34:21.960266abusebot-3.cloudsearch.cf sshd[26955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rho ...	2020-08-22 07:45:41
165.227.66.224	attackbots	detected by Fail2Ban	2020-08-22 07:48:25

最近上报的IP列表

85.65.86.189	184.103.174.137	108.64.94.96	27.50.165.199
212.98.133.118	180.8.182.26	188.92.242.180	111.138.3.104
107.100.202.71	114.67.68.52	153.82.245.138	60.66.205.75
104.49.55.225	134.0.119.93	174.85.69.46	27.206.222.140
178.232.105.26	228.165.226.211	68.183.67.118	126.56.178.240