52.89.49.22 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.89.49.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43925
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.89.49.22.			IN	A

;; AUTHORITY SECTION:
.			353	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030100 1800 900 604800 86400

;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 01 17:29:10 CST 2022
;; MSG SIZE  rcvd: 104

HOST信息:

22.49.89.52.in-addr.arpa domain name pointer ec2-52-89-49-22.us-west-2.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
22.49.89.52.in-addr.arpa	name = ec2-52-89-49-22.us-west-2.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
169.239.44.14	attackbotsspam	proto=tcp . spt=47862 . dpt=25 . (listed on Blocklist de Jun 21) (160)	2019-06-22 22:20:49
114.32.86.21	attackspam	23/tcp 23/tcp [2019-05-24/06-22]2pkt	2019-06-22 23:12:47
183.63.172.5	attackbotsspam	DATE:2019-06-22_16:47:36, IP:183.63.172.5, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2019-06-22 22:56:29
188.75.188.90	attackbotsspam	proto=tcp . spt=51200 . dpt=25 . (listed on Blocklist de Jun 21) (155)	2019-06-22 22:28:48
190.108.121.232	attackbots	SMTP-sasl brute force ...	2019-06-22 22:57:31
77.247.110.161	attackspambots	SIP Server BruteForce Attack	2019-06-22 23:00:12
35.221.118.87	attack	2019-06-21T20:36:13.458660Z 34361 [Note] Access denied for user 'nginx'@'35.221.118.87' (using password: YES) 2019-06-21T20:36:13.901613Z 34362 [Warning] IP address '35.221.118.87' has been resolved to the host name '87.118.221.35.bc.googleusercontent.com', which resembles IPv4-address itself. 2019-06-21T20:36:14.124303Z 34362 [Note] Access denied for user 'root'@'35.221.118.87' (using password: YES) 2019-06-21T20:36:14.568848Z 34363 [Warning] IP address '35.221.118.87' has been resolved to the host name '87.118.221.35.bc.googleusercontent.com', which resembles IPv4-address itself. 2019-06-21T20:36:14.789295Z 34363 [Note] Access denied for user 'http'@'35.221.118.87' (using password: YES) 2019-06-21T20:36:15.229755Z 34364 [Warning] IP address '35.221.118.87' has been resolved to the host name '87.118.221.35.bc.googleusercontent.com', which resembles IPv4-address itself.	2019-06-22 22:34:21
84.2.118.227	attackspambots	NAME : MT-BROADBAND-DYNAMIC-DSL CIDR : DDoS attack Hungary "" - block certain countries :) IP: 84.2.118.227 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-06-22 23:13:25
144.217.164.104	attackbotsspam	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.164.104 user=root Failed password for root from 144.217.164.104 port 60290 ssh2 Failed password for root from 144.217.164.104 port 60290 ssh2 Failed password for root from 144.217.164.104 port 60290 ssh2 Failed password for root from 144.217.164.104 port 60290 ssh2	2019-06-22 22:11:21
106.13.121.175	attackspambots	Jun 22 11:00:33 sshgateway sshd\[6072\]: Invalid user amsftp from 106.13.121.175 Jun 22 11:00:33 sshgateway sshd\[6072\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.121.175 Jun 22 11:00:35 sshgateway sshd\[6072\]: Failed password for invalid user amsftp from 106.13.121.175 port 45853 ssh2	2019-06-22 22:12:30
183.86.208.41	attackspam	Jun 19 03:09:26 mail01 postfix/postscreen[16840]: CONNECT from [183.86.208.41]:46238 to [94.130.181.95]:25 Jun 19 03:09:26 mail01 postfix/dnsblog[16842]: addr 183.86.208.41 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jun 19 03:09:27 mail01 postfix/postscreen[16840]: PREGREET 14 after 0.62 from [183.86.208.41]:46238: EHLO 122.com Jun 19 03:09:27 mail01 postfix/dnsblog[16843]: addr 183.86.208.41 listed by domain zen.spamhaus.org as 127.0.0.3 Jun 19 03:09:27 mail01 postfix/dnsblog[16843]: addr 183.86.208.41 listed by domain zen.spamhaus.org as 127.0.0.4 Jun 19 03:09:27 mail01 postfix/postscreen[16840]: DNSBL rank 4 for [183.86.208.41]:46238 Jun x@x Jun 19 03:09:29 mail01 postfix/postscreen[16840]: HANGUP after 1.9 from [183.86.208.41]:46238 in tests after SMTP handshake Jun 19 03:09:29 mail01 postfix/postscreen[16840]: DISCONNECT [183.86.208.41]:46238 Jun 20 23:02:50 mail01 postfix/postscreen[11345]: CONNECT from [183.86.208.41]:39717 to [94.130.181.95]:25 Jun 20 23........ -------------------------------	2019-06-22 22:23:08
45.70.0.17	attackbots	Jun 18 07:19:37 our-server-hostname postfix/smtpd[29541]: connect from unknown[45.70.0.17] Jun x@x Jun 18 07:19:40 our-server-hostname postfix/smtpd[29541]: lost connection after RCPT from unknown[45.70.0.17] Jun 18 07:19:40 our-server-hostname postfix/smtpd[29541]: disconnect from unknown[45.70.0.17] Jun 18 07:25:26 our-server-hostname postfix/smtpd[30227]: connect from unknown[45.70.0.17] Jun 18 07:25:33 our-server-hostname postfix/smtpd[30227]: NOQUEUE: reject: RCPT from unknown[45.70.0.17]: 554 5.7.1 Service un .... truncated .... ble; x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun 19 02:30:48 our-server-hostname postfix/smtpd[3522]: too many errors after RCPT from unknown[45.70.0.17] Jun 19 02:30:48 our-server-hostname postfix/smtpd[3522]: disconnect from unknown[45.70.0.17] Jun 19 02:31:50 our-server-hostname postfix/smtpd[5324]: connect from unknown[45.70.0.17] Jun x........ -------------------------------	2019-06-22 22:32:11
45.34.126.202	attack	Brute forcing RDP port 3389	2019-06-22 22:58:08
195.214.223.84	attackbotsspam	Jun 22 16:47:37 mail sshd[3040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.214.223.84 user=root Jun 22 16:47:39 mail sshd[3040]: Failed password for root from 195.214.223.84 port 41480 ssh2 ...	2019-06-22 22:55:01
200.6.173.58	attackbots	Sending SPAM email	2019-06-22 22:19:28

最近上报的IP列表

205.209.133.139	157.87.8.77	171.244.143.132	17.13.22.151
91.230.61.253	179.86.85.173	176.145.250.2	196.56.141.233
1.93.163.62	161.247.18.229	79.92.8.118	147.121.53.28
103.211.18.190	109.250.0.249	109.250.21.104	166.5.104.155
163.235.240.105	1.66.96.54	109.63.226.183	24.240.194.19