212.116.89.50 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.116.89.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63329
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;212.116.89.50.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020600 1800 900 604800 86400

;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 06 18:28:51 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

50.89.116.212.in-addr.arpa domain name pointer h-212-116-89-50.NA.cust.bahnhof.se.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
50.89.116.212.in-addr.arpa	name = h-212-116-89-50.NA.cust.bahnhof.se.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
162.236.5.117	attackspam	DATE:2019-10-12 15:55:42, IP:162.236.5.117, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc-bis)	2019-10-13 05:24:08
83.219.136.196	attackbotsspam	Oct 12 15:51:49 tamoto postfix/smtpd[4334]: connect from cgn-pool-83-219-136-196.tis-dialog.ru[83.219.136.196] Oct 12 15:51:50 tamoto postfix/smtpd[4334]: warning: cgn-pool-83-219-136-196.tis-dialog.ru[83.219.136.196]: SASL CRAM-MD5 authentication failed: authentication failure Oct 12 15:51:50 tamoto postfix/smtpd[4334]: lost connection after AUTH from cgn-pool-83-219-136-196.tis-dialog.ru[83.219.136.196] Oct 12 15:51:50 tamoto postfix/smtpd[4334]: disconnect from cgn-pool-83-219-136-196.tis-dialog.ru[83.219.136.196] Oct 12 15:51:51 tamoto postfix/smtpd[4334]: connect from cgn-pool-83-219-136-196.tis-dialog.ru[83.219.136.196] Oct 12 15:51:51 tamoto postfix/smtpd[4334]: warning: cgn-pool-83-219-136-196.tis-dialog.ru[83.219.136.196]: SASL CRAM-MD5 authentication failed: authentication failure Oct 12 15:51:51 tamoto postfix/smtpd[4334]: lost connection after AUTH from cgn-pool-83-219-136-196.tis-dialog.ru[83.219.136.196] Oct 12 15:51:51 tamoto postfix/smtpd[4334]: disconne........ -------------------------------	2019-10-13 05:14:59
104.131.15.189	attack	Invalid user 321 from 104.131.15.189 port 53668	2019-10-13 05:28:53
157.230.188.24	attackbotsspam	Oct 12 09:50:33 web9 sshd\[23439\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.188.24 user=root Oct 12 09:50:35 web9 sshd\[23439\]: Failed password for root from 157.230.188.24 port 39162 ssh2 Oct 12 09:54:29 web9 sshd\[24023\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.188.24 user=root Oct 12 09:54:31 web9 sshd\[24023\]: Failed password for root from 157.230.188.24 port 51210 ssh2 Oct 12 09:58:28 web9 sshd\[24719\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.188.24 user=root	2019-10-13 05:38:50
218.75.132.59	attackbots	Oct 12 10:30:03 plusreed sshd[6533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.75.132.59 user=root Oct 12 10:30:05 plusreed sshd[6533]: Failed password for root from 218.75.132.59 port 53463 ssh2 ...	2019-10-13 05:16:42
95.165.163.229	attackspambots	Sat Oct 12 20:00:04 CEST 2019: Custom script for mail.log monitoring - Spammer	2019-10-13 05:30:16
23.129.64.169	attackspambots	Oct 12 22:40:22 vpn01 sshd[5816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.169 Oct 12 22:40:24 vpn01 sshd[5816]: Failed password for invalid user centos from 23.129.64.169 port 52971 ssh2 ...	2019-10-13 05:34:33
103.88.76.66	attackbotsspam	Oct 12 09:06:37 mailman postfix/smtpd[21263]: NOQUEUE: reject: RCPT from unknown[103.88.76.66]: 554 5.7.1 Service unavailable; Client host [103.88.76.66] blocked using dnsbl.dronebl.org; Open SOCKS proxy; from= to= proto=ESMTP helo= Oct 12 09:06:38 mailman postfix/smtpd[21263]: NOQUEUE: reject: RCPT from unknown[103.88.76.66]: 554 5.7.1 Service unavailable; Client host [103.88.76.66] blocked using dnsbl.dronebl.org; Open SOCKS proxy; from= to= proto=ESMTP helo=	2019-10-13 05:25:02
222.186.175.150	attack	$f2bV_matches	2019-10-13 05:25:58
58.22.194.44	attack	Oct 12 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 6 secs$: user=\, method=PLAIN, rip=58.22.194.44, lip=REMOVED, TLS, session=\ Oct 12 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 12 secs$: user=\, method=PLAIN, rip=58.22.194.44, lip=REMOVED, TLS: Disconnected, session=\<2yFmB7eUBeo6FsIs\> Oct 12 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 9 secs$: user=\, method=PLAIN, rip=58.22.194.44, lip=REMOVED, TLS: Disconnected, session=\	2019-10-13 05:25:40
128.199.52.45	attackspambots	Oct 12 20:40:22 vps647732 sshd[5087]: Failed password for root from 128.199.52.45 port 56838 ssh2 ...	2019-10-13 05:17:21
195.181.81.37	attack	Lines containing failures of 195.181.81.37 Oct 12 15:55:58 shared04 sshd[2224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.181.81.37 user=r.r Oct 12 15:56:01 shared04 sshd[2224]: Failed password for r.r from 195.181.81.37 port 46267 ssh2 Oct 12 15:56:02 shared04 sshd[2224]: Failed password for r.r from 195.181.81.37 port 46267 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=195.181.81.37	2019-10-13 05:16:58
96.125.172.61	attack	Sql/code injection probe	2019-10-13 05:13:29
109.191.202.110	attackspambots	10/12/2019-10:06:12.868092 109.191.202.110 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-10-13 05:24:30
223.83.155.77	attackbotsspam	Oct 12 19:04:32 minden010 sshd[29653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.83.155.77 Oct 12 19:04:34 minden010 sshd[29653]: Failed password for invalid user admin from 223.83.155.77 port 51094 ssh2 Oct 12 19:13:23 minden010 sshd[3995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.83.155.77 ...	2019-10-13 05:06:20

最近上报的IP列表

199.220.5.91	154.109.185.246	4.27.112.86	209.146.210.68
47.82.244.83	166.205.77.146	109.231.179.194	157.68.147.20
39.195.65.175	29.41.82.65	193.45.244.249	39.175.62.54
116.77.220.243	236.116.25.43	114.150.170.113	238.190.82.164
224.104.226.22	19.97.154.0	7.68.222.190	65.135.6.61