100.1.53.14 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Verizon Communications Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Draytek Vigor Remote Command Execution Vulnerability, PTR: static-100-1-53-14.nwrknj.fios.verizon.net.	2020-04-23 19:15:48

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 100.1.53.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5944
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;100.1.53.14.			IN	A

;; AUTHORITY SECTION:
.			242	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042300 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 23 19:15:45 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

14.53.1.100.in-addr.arpa domain name pointer static-100-1-53-14.nwrknj.fios.verizon.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
14.53.1.100.in-addr.arpa	name = static-100-1-53-14.nwrknj.fios.verizon.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
198.108.67.92	attack	Portscan or hack attempt detected by psad/fwsnort	2019-07-08 09:14:07
129.213.172.170	attack	Jul 7 20:43:24 debian sshd\[4830\]: Invalid user utente from 129.213.172.170 port 35497 Jul 7 20:43:24 debian sshd\[4830\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.172.170 Jul 7 20:43:26 debian sshd\[4830\]: Failed password for invalid user utente from 129.213.172.170 port 35497 ssh2 ...	2019-07-08 08:44:47
178.128.177.180	attack	Jul 3 13:17:02 mxgate1 postfix/postscreen[19541]: CONNECT from [178.128.177.180]:37670 to [176.31.12.44]:25 Jul 3 13:17:02 mxgate1 postfix/dnsblog[19829]: addr 178.128.177.180 listed by domain zen.spamhaus.org as 127.0.0.3 Jul 3 13:17:02 mxgate1 postfix/dnsblog[19829]: addr 178.128.177.180 listed by domain zen.spamhaus.org as 127.0.0.4 Jul 3 13:17:02 mxgate1 postfix/dnsblog[19825]: addr 178.128.177.180 listed by domain cbl.abuseat.org as 127.0.0.2 Jul 3 13:17:02 mxgate1 postfix/dnsblog[19828]: addr 178.128.177.180 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jul 3 13:17:02 mxgate1 postfix/dnsblog[19827]: addr 178.128.177.180 listed by domain b.barracudacentral.org as 127.0.0.2 Jul 3 13:17:02 mxgate1 postfix/dnsblog[19826]: addr 178.128.177.180 listed by domain bl.spamcop.net as 127.0.0.2 Jul 3 13:17:08 mxgate1 postfix/postscreen[19541]: DNSBL rank 6 for [178.128.177.180]:37670 Jul x@x Jul 3 13:17:09 mxgate1 postfix/postscreen[19541]: HANGUP after 0.67 from........ -------------------------------	2019-07-08 09:05:00
36.90.253.106	attackspambots	(From hayden.laroche@hotmail.com) Hello YOU WANT LIVE BUT EXPIRED DOMAINS That Are Still Posted On Wikipedia And Youtube ? Can you imagine how powerful it is to be able to pick up an expired domain that is still posted below a YouTube video that is getting hundreds or even thousands of views per day? Or be able to pick up an expired domain that still has a live link from Wikipedia? MyTrafficJacker allows users to search by keyword on either Wikipedia and YouTube and find live but expired links that are still posted on these sites that you can pick up for as little as $10 and redirect that traffic and authority anywhere they’d like. NOW GET TRAFFIC and SALES in as little as 24 hours: without having to make or rank any videos, without having to create a website, without having to pay a dime for traffic... IF YOU ARE INTERESTED, CONTACT US ==> sayedasaliha748@gmail.com Once you Join TODAY, You'll Also GET AMAZING BONUSES Regards, TrafficJacker	2019-07-08 08:39:59
59.180.230.148	attackbotsspam	Jul 1 04:27:02 new sshd[14462]: reveeclipse mapping checking getaddrinfo for triband-del-59.180.230.148.bol.net.in [59.180.230.148] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 1 04:27:04 new sshd[14462]: Failed password for invalid user anicet from 59.180.230.148 port 54632 ssh2 Jul 1 04:27:04 new sshd[14462]: Received disconnect from 59.180.230.148: 11: Bye Bye [preauth] Jul 1 04:29:28 new sshd[14836]: reveeclipse mapping checking getaddrinfo for triband-del-59.180.230.148.bol.net.in [59.180.230.148] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 1 04:29:29 new sshd[14836]: Failed password for invalid user ang from 59.180.230.148 port 16460 ssh2 Jul 1 04:29:29 new sshd[14836]: Received disconnect from 59.180.230.148: 11: Bye Bye [preauth] Jul 1 04:31:32 new sshd[15758]: reveeclipse mapping checking getaddrinfo for triband-del-59.180.230.148.bol.net.in [59.180.230.148] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 1 04:31:35 new sshd[15758]: Failed password for invalid user mash........ -------------------------------	2019-07-08 08:55:50
45.230.2.37	attackspam	Jul 7 07:28:23 nirvana postfix/smtpd[11985]: connect from unknown[45.230.2.37] Jul 7 07:28:26 nirvana postfix/smtpd[11985]: warning: unknown[45.230.2.37]: SASL CRAM-MD5 authentication failed: authentication failure Jul 7 07:28:26 nirvana postfix/smtpd[11985]: warning: unknown[45.230.2.37]: SASL PLAIN authentication failed: authentication failure Jul 7 07:28:28 nirvana postfix/smtpd[11985]: warning: unknown[45.230.2.37]: SASL LOGIN authentication failed: authentication failure Jul 7 07:28:28 nirvana postfix/smtpd[11985]: disconnect from unknown[45.230.2.37] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=45.230.2.37	2019-07-08 09:03:40
148.227.224.17	attackspambots	$f2bV_matches	2019-07-08 08:44:16
5.62.19.38	attack	\[2019-07-08 02:08:14\] NOTICE\[9010\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '\' failed for '5.62.19.38:2767' $callid: 343400005-956404847-1620976198$ - Failed to authenticate \[2019-07-08 02:08:14\] SECURITY\[3671\] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2019-07-08T02:08:14.417+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="\",SessionID="343400005-956404847-1620976198",LocalAddress="IPV4/UDP/188.40.118.248/5060",RemoteAddress="IPV4/UDP/5.62.19.38/2767",Challenge="1562544494/54ce85a6321bf25484ae320a87711d21",Response="20936bbaca899497878f56a605b5b085",ExpectedResponse="" \[2019-07-08 02:08:14\] NOTICE\[11540\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '\' failed for '5.62.19.38:2767' $callid: 343400005-956404847-1620976198$ - Failed to authenticate \[2019-07-08 02:08:14\] SECURITY\[3671\] res_security_log.c: SecurityEvent="ChallengeResponseFailed",Event	2019-07-08 08:39:41
92.118.37.84	attackbotsspam	Jul 8 00:13:29 mail kernel: [3042658.165750] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.84 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=61242 PROTO=TCP SPT=41610 DPT=39402 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 8 00:13:33 mail kernel: [3042661.885059] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.84 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=48964 PROTO=TCP SPT=41610 DPT=32492 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 8 00:15:09 mail kernel: [3042758.708549] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.84 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=55492 PROTO=TCP SPT=41610 DPT=65150 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 8 00:16:34 mail kernel: [3042843.158705] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.84 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=63976 PROTO=TCP SPT=41610 DPT=22200 WINDOW=1024 RES=0x00 SYN	2019-07-08 08:36:14
149.56.202.72	attackbots	TCP src-port=33195 dst-port=25 spamcop (2)	2019-07-08 08:53:50
49.150.155.221	attackbotsspam	PHI,WP GET /wp-login.php	2019-07-08 08:56:45
82.149.5.205	attack	Jul 3 22:05:47 mxgate1 postfix/postscreen[8069]: CONNECT from [82.149.5.205]:48195 to [176.31.12.44]:25 Jul 3 22:05:47 mxgate1 postfix/dnsblog[8072]: addr 82.149.5.205 listed by domain cbl.abuseat.org as 127.0.0.2 Jul 3 22:05:47 mxgate1 postfix/dnsblog[8074]: addr 82.149.5.205 listed by domain zen.spamhaus.org as 127.0.0.4 Jul 3 22:05:48 mxgate1 postfix/dnsblog[8071]: addr 82.149.5.205 listed by domain bl.spamcop.net as 127.0.0.2 Jul 3 22:05:53 mxgate1 postfix/postscreen[8069]: DNSBL rank 4 for [82.149.5.205]:48195 Jul x@x Jul 3 22:05:53 mxgate1 postfix/postscreen[8069]: HANGUP after 0.44 from [82.149.5.205]:48195 in tests after SMTP handshake Jul 3 22:05:53 mxgate1 postfix/postscreen[8069]: DISCONNECT [82.149.5.205]:48195 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=82.149.5.205	2019-07-08 09:14:34
185.232.67.13	attackspam	07.07.2019 23:43:58 Connection to port 1723 blocked by firewall	2019-07-08 09:03:03
45.227.253.213	attack	Jul 8 02:29:37 mail postfix/smtpd\[27341\]: warning: unknown\[45.227.253.213\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 8 02:29:44 mail postfix/smtpd\[27551\]: warning: unknown\[45.227.253.213\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 8 02:29:59 mail postfix/smtpd\[27469\]: warning: unknown\[45.227.253.213\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-08 08:39:17
198.12.152.118	attack	Jul 2 14:35:30 GIZ-Server-02 sshd[2246]: Address 198.12.152.118 maps to ip-198.12-152-118.ip.secureserver.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jul 2 14:35:30 GIZ-Server-02 sshd[2246]: Invalid user admin from 198.12.152.118 Jul 2 14:35:30 GIZ-Server-02 sshd[2246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.12.152.118 Jul 2 14:35:32 GIZ-Server-02 sshd[2246]: Failed password for invalid user admin from 198.12.152.118 port 40702 ssh2 Jul 2 14:35:35 GIZ-Server-02 sshd[2246]: Failed password for invalid user admin from 198.12.152.118 port 40702 ssh2 Jul 2 14:35:37 GIZ-Server-02 sshd[2246]: Failed password for invalid user admin from 198.12.152.118 port 40702 ssh2 Jul 2 14:35:40 GIZ-Server-02 sshd[2246]: Failed password for invalid user admin from 198.12.152.118 port 40702 ssh2 Jul 2 14:35:42 GIZ-Server-02 sshd[2246]: Failed password for invalid user admin from 198.12.152.118 port ........ -------------------------------	2019-07-08 09:07:19

最近上报的IP列表

185.202.1.154	185.202.1.153	155.159.216.179	185.202.1.152
185.202.1.150	185.202.1.119	185.202.1.118	185.36.81.20
183.167.240.116	177.222.144.124	171.224.181.22	157.51.91.37
182.234.174.220	25.231.123.194	103.103.35.202	103.35.72.44
38.235.13.55	102.19.130.175	208.140.42.97	143.32.122.123