89.218.21.54 - IPInfo

基本信息:

城市(city): Almaty

省份(region): Almaty

国家(country): Kazakhstan

运营商(isp): Kazakhtelecom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
89.218.218.202	attackspam	08/08/2020-08:14:52.809896 89.218.218.202 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-08-08 23:35:52
89.218.218.202	attackbots	Microsoft SQL Server User Authentication Brute Force Attempt, PTR: PTR record not found	2020-02-15 01:56:48
89.218.213.62	attackspambots	Unauthorized connection attempt detected from IP address 89.218.213.62 to port 1433 [J]	2020-02-03 23:57:12
89.218.213.62	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-02 19:10:18
89.218.217.242	attack	Unauthorized connection attempt detected from IP address 89.218.217.242 to port 445	2019-12-21 20:32:05
89.218.218.202	attack	SMB Server BruteForce Attack	2019-09-25 15:48:21
89.218.217.242	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-08 08:13:32,735 INFO [shellcode_manager] (89.218.217.242) no match, writing hexdump (8b120b746ffb1bff13a9fc462e9d0d44 :1847426) - MS17010 (EternalBlue)	2019-07-08 23:58:27
89.218.218.202	attackspambots	445/tcp 445/tcp 445/tcp... [2019-05-11/06-28]10pkt,1pt.(tcp)	2019-06-29 13:20:48

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 89.218.21.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5153
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;89.218.21.54.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025011700 1800 900 604800 86400

;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 17 20:18:37 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

54.21.218.89.in-addr.arpa domain name pointer 89.218.21.54.dynamic.telecom.kz.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
54.21.218.89.in-addr.arpa	name = 89.218.21.54.dynamic.telecom.kz.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
81.0.39.183	attackbotsspam	SASL Brute Force	2019-09-20 16:32:14
128.199.185.42	attackspambots	Port Scan detected from 128.199.185.42 (SG/Singapore/portal.techmaster.us). 4 hits in the last 75 seconds	2019-09-20 16:26:37
118.89.27.248	attackbotsspam	SSH Brute Force	2019-09-20 16:56:18
103.130.218.125	attack	Sep 19 22:22:44 hanapaa sshd\[29884\]: Invalid user souleke from 103.130.218.125 Sep 19 22:22:44 hanapaa sshd\[29884\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.130.218.125 Sep 19 22:22:45 hanapaa sshd\[29884\]: Failed password for invalid user souleke from 103.130.218.125 port 56140 ssh2 Sep 19 22:29:51 hanapaa sshd\[30566\]: Invalid user guest from 103.130.218.125 Sep 19 22:29:51 hanapaa sshd\[30566\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.130.218.125	2019-09-20 16:37:11
45.55.231.94	attack	Invalid user svn from 45.55.231.94 port 42262	2019-09-20 16:39:28
185.143.221.103	attackbotsspam	Sep 20 09:26:20 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=185.143.221.103 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=19068 PROTO=TCP SPT=40001 DPT=13391 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-09-20 16:31:29
103.117.33.84	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/103.117.33.84/ IN - 1H : (36) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IN NAME ASN : ASN137609 IP : 103.117.33.84 CIDR : 103.117.33.0/24 PREFIX COUNT : 4 UNIQUE IP COUNT : 1024 WYKRYTE ATAKI Z ASN137609 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 INFO : SYN Flood DDoS Attack Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery	2019-09-20 16:56:33
101.71.2.111	attackspambots	SSH Brute-Force reported by Fail2Ban	2019-09-20 16:31:46
117.50.38.202	attack	Sep 20 10:18:44 mail sshd\[12168\]: Invalid user webmaster from 117.50.38.202 port 52528 Sep 20 10:18:44 mail sshd\[12168\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.38.202 Sep 20 10:18:46 mail sshd\[12168\]: Failed password for invalid user webmaster from 117.50.38.202 port 52528 ssh2 Sep 20 10:24:04 mail sshd\[12802\]: Invalid user pc from 117.50.38.202 port 34348 Sep 20 10:24:04 mail sshd\[12802\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.38.202	2019-09-20 16:40:23
45.55.20.128	attackbotsspam	2019-09-20T10:07:49.997405 sshd[22440]: Invalid user ftpsecure from 45.55.20.128 port 57051 2019-09-20T10:07:50.012161 sshd[22440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.20.128 2019-09-20T10:07:49.997405 sshd[22440]: Invalid user ftpsecure from 45.55.20.128 port 57051 2019-09-20T10:07:52.084046 sshd[22440]: Failed password for invalid user ftpsecure from 45.55.20.128 port 57051 ssh2 2019-09-20T10:14:09.993463 sshd[22478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.20.128 user=root 2019-09-20T10:14:11.763988 sshd[22478]: Failed password for root from 45.55.20.128 port 54853 ssh2 ...	2019-09-20 16:59:39
114.35.207.77	attack	firewall-block, port(s): 23/tcp	2019-09-20 16:39:00
221.150.22.201	attack	Sep 19 19:03:21 home sshd[26522]: Invalid user friends from 221.150.22.201 port 55594 Sep 19 19:03:21 home sshd[26522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.22.201 Sep 19 19:03:21 home sshd[26522]: Invalid user friends from 221.150.22.201 port 55594 Sep 19 19:03:24 home sshd[26522]: Failed password for invalid user friends from 221.150.22.201 port 55594 ssh2 Sep 19 19:13:35 home sshd[26617]: Invalid user mortimer from 221.150.22.201 port 16674 Sep 19 19:13:35 home sshd[26617]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.22.201 Sep 19 19:13:35 home sshd[26617]: Invalid user mortimer from 221.150.22.201 port 16674 Sep 19 19:13:37 home sshd[26617]: Failed password for invalid user mortimer from 221.150.22.201 port 16674 ssh2 Sep 19 19:18:00 home sshd[26649]: Invalid user test2 from 221.150.22.201 port 58380 Sep 19 19:18:00 home sshd[26649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eui	2019-09-20 16:39:58
112.217.225.59	attackbotsspam	$f2bV_matches_ltvn	2019-09-20 16:22:39
66.214.40.126	attack	SSH-bruteforce attempts	2019-09-20 16:19:47
222.186.175.8	attack	Sep 20 03:31:05 aat-srv002 sshd[5077]: Failed password for root from 222.186.175.8 port 51364 ssh2 Sep 20 03:31:21 aat-srv002 sshd[5077]: error: maximum authentication attempts exceeded for root from 222.186.175.8 port 51364 ssh2 [preauth] Sep 20 03:31:38 aat-srv002 sshd[5087]: Failed password for root from 222.186.175.8 port 62236 ssh2 Sep 20 03:31:59 aat-srv002 sshd[5087]: Failed password for root from 222.186.175.8 port 62236 ssh2 Sep 20 03:31:59 aat-srv002 sshd[5087]: error: maximum authentication attempts exceeded for root from 222.186.175.8 port 62236 ssh2 [preauth] ...	2019-09-20 16:34:13

最近上报的IP列表

90.236.39.38	171.19.114.123	49.26.220.135	126.146.60.9
175.143.105.29	123.215.155.84	127.219.173.88	4.56.192.229
226.212.216.209	22.215.165.64	219.131.142.154	185.120.118.106
177.113.85.192	2a02:a03f:6784:e200:a9ba:2394:3d7f:1124	76.182.198.181	82.227.206.247
175.32.247.112	57.207.137.223	162.69.116.142	67.69.171.48